SSL Visibility Host Categorization file descriptor leak mitigation
search cancel

SSL Visibility Host Categorization file descriptor leak mitigation


Article ID: 271263


Updated On:


SV-1800 SV-2800 SV-3800 SV-800 SV-S550


The purpose of this Critical Alert is to inform of a potential problem that has been recently identified with SSL Visibility with BCIS Host Categorization.  Please read the information provided below and follow the instructions to avoid being impacted by this problem.


SSL Visibility software versions, and and up, running with Host Categorization are potentially impacted. 

If your SSL Visibility is not categorizing flows using a Host Categorization subscription, it will not be impacted.


When SSLV is configured with Host Categorization subscription there is a small file descriptor leak which can cause following errors after 4-5 months.  When the issue starts to impact you will see the following logging in the syslog file:


ssldata[xxx]: [E] RPC connection terminated:X_RPC [0x0000000180110001;code:1;sub:1] Internal error

ssldata[xxx]: [E] RPC connection terminated:X_RPC [0x0f00000e80110004;code:4;sub:251658254] Bad address


This logging and the file descriptor leak will eventually leading to a crash, which can cause a temporary outage depending on configuration.


If SSLV is running software versions mentioned above and is configured to utilize Host Categorization subscription and is approaching uptime of 4 months or above.

•    Reboot SSLV during maintenance window.
•    Upgrade to SSLV software or or

If you are upgrading to version or or please check the article: Upgrade to SSL Visibility, and may result in Host Categorization updates failing.