| Message Code | PIX-5-717014 |
| Severity | Notification |
| Description | Unable to cache a CRL received from CDP due to size limitations (CRL size = size, available cache space = space) |
| Explanation | When the device is configured to authenticate IPSec tunnels using digital certificates, Certificate Revocation Lists (CRLs) may be cached in memory to avoid requiring a CRL download during each connection. This log event will be generated if a received CRL is too large to fit in the cache. |
| User Action | No action necessary. The large CRLs are still supported even though they are not cached. This means that the CRL will be downloaded with each IPSec connection. This may impact performance during IPSec connection bursts. |
| Reference Links |
Catch threats immediately
We work side-by-side with you to rapidly detect cyberthreats
and thwart attacks before they cause damage.