| |
Bug Id: | CSCui56867 |
Title: | switch isolated on 'no monitor session <id> filter packet-type good rx' |
|
Description: | Symptom:
Removing default config of 'monitor session filter packet-type good rx' from an active SPAN session triggers HSRP and EIGRP flaps making switch unreachable from directly connected peers.
Conditions:
Removing default config of 'monitor session filter packet-type good rx' from an active SPAN session is the trigger for switch isolation.
Workaround:
Restoring the default config of 'monitor session filter packet-type good rx' and bouncing 'err-disabled' ports restores normalcy.
More Info:
|
|
Status: | Fixed |
|
Severity: | 2 Severe |
Last Modified: | 04-JUN-2015 |
|
Known Affected Releases: | 15.1(2)SG, 15.1(2)SG1.80 |
|
Known Fixed Releases: | 15.1(1)XO0.18, 15.1(1)XO1, 15.1(1.0.33)XO1, 15.1(2)SG3.0.152, 15.1(2)SG4, 15.2(2)E, 15.2(2b)E |
|
|
| |
| |
Bug Id: | CSCut64189 |
Title: | Catalyst4500-TELNET can enter Privileged Mode without Enable Password |
|
Description: | Symptom:
Under some conditions, users logged in to the device over telnet or
SSH are able to enter privileged command mode without being asked
for a password even when "enable password" and/or "enable secret" is
configured.
Access to non-privileged command mode is not affected by this defect.
Conditions:
The defect is specific to Catalyst 4500.
The defect is observed on all Catalyst 4500 redundant systems (VSS as
well as dual-supervisor chassis). The defect is observed only after a
HA switchover, when a supervisor that used to operate in a Standby
role takes over as the Active.
Workaround:
After a switchover, execute:
clear line vty
for all the configured VTY lines on the new Active supervisor.
The following EEM script can be used to automate this action:
--------------------------------------------------------------------------------
event manager applet CSCut64189-Workaround
event rf event RF_PROG_ACTIVE_FAST
action 1 cli command "enable"
action 2 cli command "show line vty 0 16"
action 3 set show_line_vty_op "$_cli_result"
action 4 foreach this_line "$show_line_vty_op" "\n"
action 4.1 regexp "^(.) *([0-9]+) VTY" $this_line match this_line_flag this_line_num
action 4.2 if "$_regexp_result" ne "0"
action 4.2.1 subtract $this_line_num 1
action 4.2.2 set actual_vty_line_to_clear "$_result"
action 4.2.3 string equal "$this_line_flag" "*"
action 4.2.4 if "$_string_result" ne "1"
action 4.2.4.1 cli command "clear line vty $actual_vty_line_to_clear" pattern "[confirm]"
action 4.2.4.2 cli command "y"
action 4.2.4.3 syslog msg "VTY $actual_vty_line_to_clear cleared"
action 4.2.5 else
action 4.2.5.1 syslog msg "Not clearing vty $actual_vty_line_to_clear because it is in use (probably by this applet)"
action 4.2.6 end
action 4.3 end
action 5 end
action 6 cli command "disable"
action 7 exit
--------------------------------------------------------------------------------
|
|
Status: | Fixed |
|
Severity: | 2 Severe |
Last Modified: | 10-JUN-2015 |
|
Known Affected Releases: | 15.2(3.7.1E) |
|
Known Fixed Releases: | |
|
|
| |
| |
Bug Id: | CSCua52800 |
Title: | 4500-Sup7E when rebooted causes the int of 2k/3K to errdisabl |
|
Description: | Symptom:
downstream DSBU switches' int goes err-disable if we reload 4500 Sup7E connected to them
Conditions:
cat4500e-universalk9.SPA.03.01.00.SG.150-1.XO.bin ----- No issue
cat4500e-universalk9.SPA.03.01.01.SG.150-1.XO1.bin ----No issue
cat4500e-universalk9.SPA.03.02.01.SG.150-2.SG1.bin ------- No Issue
cat4500e-universalk9.SPA.03.02.02.SG.150-2.SG2.bin ------- 3550 affected but not 2960(tried twice to make sure...)
cat4500e-universalk9.SPA.03.02.03.SG.150-2.SG3.bin -------- Issue exists
cat4500e-universalk9.SPA.03.02.04.SG.150-2.SG4.bin ------ Issue exists
cat4500e-universalk9.SPA.03.03.00.SG.151-1.SG.bin ------ Issue exists
Workaround:
enable err-dsiable recovery time
|
|
Status: | Fixed |
|
Severity: | 2 Severe |
Last Modified: | 12-JUN-2015 |
|
Known Affected Releases: | 15.2(3.7.1) |
|
Known Fixed Releases: | 15.0(2)SG5.5.38, 15.0(2)SG5.5.39, 15.0(2)SG6, 15.0(2)SG7, 15.0(2)SG8, 15.0(2)SG8.0.131, 15.1(1.25)SID, 15.1(2)SG, 15.1(2)SG1, 15.1(2)SG2 |
|
|
| |
| |
Bug Id: | CSCuu40317 |
Title: | Applying Medianet to interface bypasses SA Miss queue on 4500 |
|
Description: | Symptom:
Using Medianet on L2 trunks, we see unknown unicast flooding because MACs are not being learned on interfaces that medianet is configured. When medianet is applied, the SA MISS CPU queue does not increment but medianet CPU queue does.
Conditions:
3.6.0 4500 Sup8 using medianet on the interface, where the medianetMonitor has a match-all criteria specified
Workaround:
For medianet configure a policy with a criteria other than a match-all. Preferably the MediaMonitor policy should match specific flows , that are of interest.
Further Problem Description:
Impacts 4500e and 4500es8 switches
|
|
Status: | Fixed |
|
Severity: | 2 Severe |
Last Modified: | 12-JUN-2015 |
|
Known Affected Releases: | 3.6(0) |
|
Known Fixed Releases: | 15.2(4.10.62)PI5 |
|
|
| |
| |
Bug Id: | CSCum08763 |
Title: | WS-C4948E stops unknown unicast flooding after configuration change |
|
Description: | Symptom:
WS-C4948E running on 15.1(2)SG2 stops unknown unicast flooding after configuration change.
Conditions:
Adding/Removing allowed vlan from trunk port.
Not easily re-creatable.
Occurs in condition where continuous review is set for a VLAN.
Eg: One of them is, Adding/Removing allowed VLAN from trunk port.
Occurs only for VLAN configured with SVI.
Workaround:
Any event which triggers the review,
1) like adding or removing a port from the affected VLAN
2) shut/no shut of the port
3) removing and adding the affected VLAN.
4) System reload.
Further Problem Description:
|
|
Status: | Fixed |
|
Severity: | 2 Severe |
Last Modified: | 16-JUN-2015 |
|
Known Affected Releases: | 15.1(2)SG, 15.1(2)SG2.0.1 |
|
Known Fixed Releases: | 15.1(2)SG3.0.135, 15.1(2)SG4, 15.2(2)E, 15.2(2b)E, 3.6(0)E |
|
|
| |
| |
Bug Id: | CSCut55114 |
Title: | Slow memory leak in IOSd on sup7E |
|
Description: | Symptom:
Slow memory leak in IOSd on sup7E
Conditions:
Unknown
Workaround:
None
Further Problem Description:
None
|
|
Status: | Open |
|
Severity: | 2 Severe |
Last Modified: | 18-JUN-2015 |
|
Known Affected Releases: | n/a |
|
Known Fixed Releases: | |
|
|
| |
| |
Bug Id: | CSCuu88479 |
Title: | Some ports on WS-X4248-FE-SFP remain down/down |
|
Description: | Symptom:
Sometimes the FastEthernet ports on WS-X4248-FE-SFP stuck in down/down state, although transceiver and fiber are working properly. Bouncing interface with "shutdown/no shutdown" or reconfiguring from default doesn't fix the issue.
Conditions:
Issue is seen on Catalyst 4506-E with Sup8-E. There are WS-X4248-FE-SFP modules populated with only GLC-FE-100BX-D.
Workaround:
Reset particular linecard or reload chassis
Further Problem Description:
|
|
Status: | Other |
|
Severity: | 2 Severe |
Last Modified: | 18-JUN-2015 |
|
Known Affected Releases: | 15.2(2)E2 |
|
Known Fixed Releases: | |
|
|
| |
| |
Bug Id: | CSCur20444 |
Title: | I/O memory leak due to DHCPv6 packets. |
|
Description: | Symptom:
I/O memory leak observed with small or middle buffer pools showing very few buffers in the free list.
Conditions:
The issue is seen when DHCPv6 packets are received on the switch, and the port is configured with 'ipv6 dhcp guard'.
Workaround:
The workaround is to remove the 'ipv6 dhcp guard' configuration from the interface on which DHCPv6 packets are being received.
Further Problem Description:
|
|
Status: | Fixed |
|
Severity: | 2 Severe |
Last Modified: | 19-JUN-2015 |
|
Known Affected Releases: | 15.2(2)E |
|
Known Fixed Releases: | 15.2(2)E2, 15.2(2.1)EB, 15.2(2.2.35)EB, 15.2(2.9.2)EA2, 15.2(3)E1, 15.4(1)S3.2, 15.4(1)S4, 15.4(2)S2.19, 15.4(2)S3, 15.4(3)S2.4 |
|
|
| |
| |
Bug Id: | CSCuq54573 |
Title: | Service Policy disappears from Running Configuration of the interface |
|
Description: | Symptom:
Service Policy disappears when link flaps or when negotiate for the speed.
Log is seen " Strict priority cannot be guaranteed"
Happens on both the port connected PC / Phone / switch which negotiate the speed lesser than 1Gig
Conditions:
Speed is lesser than 1Gig
and
Bandwidth remaining command used in the class
example:
policy-map Test
class Class1
priority
class Class2
bandwidth remaining percent 40
class Class3
bandwidth remaining percent 40
Workaround:
configure Police under Priority class
or
Configure Speed on the switch port
Further Problem Description:
|
|
Status: | Fixed |
|
Severity: | 2 Severe |
Last Modified: | 23-JUN-2015 |
|
Known Affected Releases: | 3.6(0) |
|
Known Fixed Releases: | |
|
|
| |
| |
Bug Id: | CSCuu21997 |
Title: | BOOTP Reply packets flooded when wireless module is installed on sup8 |
|
Description: | Symptom:
BOOTP Reply packets flooded when wireless module is installed on sup8
Conditions:
- DHCP snooping enabled
- WS-UA-SUP8E installed on Sup8
- It is enough to receive on switch one DHCP BOOTP Reply packet
- Problem is seen with 3.7.0E and 3.7.1E release
Workaround:
Disable IP DHCP Snooping for vlan in which DHCP packet is received or delete vlan.
Further Problem Description:
|
|
Status: | Open |
|
Severity: | 2 Severe |
Last Modified: | 25-JUN-2015 |
|
Known Affected Releases: | 3.7(0)E |
|
Known Fixed Releases: | |
|
|
| |
| |
Bug Id: | CSCus13479 |
Title: | 4500X VSS: multicast traffic blackholed on orphan L3 egress portchannel |
|
Description: | Symptom:
4500X VSS multicast traffic blackholed on orphan L3 egress portchannel. During problem symptom, traffic hits L2 floodset entry even though L3 entry si present and get dropped.There is a mismatch seen in state of ipv4MulticastEn between active and standby when switch is in this state.
hrn3-4500x-vss-01#sh platfo hardware rxvlan-map-table vl 200 <<< Ingress port
Executing the command on VSS member switch role = VSS Active, id = 1
Vlan 200:
l2LookupId: 200
srcMissIgnored: 0
ipv4UnicastEn: 1
ipv4MulticastEn: 1 <<<<<
ipv6UnicastEn: 0
ipv6MulticastEn: 0
mplsUnicastEn: 0
mplsMulticastEn: 0
privateVlanMode: Normal
ipv4UcastRpfMode: None
ipv6UcastRpfMode: None
routingTableId: 1
rpSet: 0
flcIpLookupKeyType: IpForUcastAndMcast
flcOtherL3LookupKeyTypeIndex: 0
vlanFlcKeyCtrlTableIndex: 0
vlanFlcCtrl: 0
Executing the command on VSS member switch role = VSS Standby, id = 2
Vlan 200:
l2LookupId: 200
srcMissIgnored: 0
ipv4UnicastEn: 1
ipv4MulticastEn: 0 <<<<<
ipv6UnicastEn: 0
ipv6MulticastEn: 0
mplsUnicastEn: 0
mplsMulticastEn: 0
privateVlanMode: Normal
ipv4UcastRpfMode: None
ipv6UcastRpfMode: None
routingTableId: 1
rpSet: 0
flcIpLookupKeyType: IpForUcastAndMcast
flcOtherL3LookupKeyTypeIndex: 0
vlanFlcKeyCtrlTableIndex: 0
vlanFlcCtrl: 0
Conditions:
NA
Workaround:
Unconfigure and reconfigure PIM on the ingress L3 port. For eg:
hrn3-4500x-vss-01#sh int po11 | i rate
Queueing strategy: fifo
30 second input rate 0 bits/sec, 0 packets/sec
30 second output rate 0 bits/sec, 0 packets/sec <<< OIL not sending traffic
hrn3-4500x-vss-01#
hrn3-4500x-vss-01#
hrn3-4500x-vss-01#conf t
Enter configuration commands, one per line. End with CNTL/Z.
hrn3-4500x-vss-01(config)#int vl 200 <<< Ingress L3 port
hrn3-4500x-vss-01(config-if)#no ip pim sparse-mode
hrn3-4500x-vss-01(config-if)# ip pim sparse-mode
hrn3-4500x-vss-01(config-if)
|
没有评论:
发表评论