| |
|
Alert Type: | Updated * |
Bug Id: | CSCux98348 | Title: * | LACP ping is failing |
|
Status: | Fixed |
|
Severity: | 1 Catastrophic |
Description: | Symptom:
LACp ping is failing
Conditions:
ping
Protocol [ip]: ip
Target IP address: 1.2.1.2
Repeat count [5]: 100
Datagram size [100]: 64
Timeout in seconds [2]:
Extended commands [n]: y
Source address or interface: 1.2.1.1
Type of service [0]:
Set DF bit in IP header? [no]:
Validate reply data? [no]:
Data pattern [0xABCD]:
Loose, Strict, Record, Timestamp, Verbose[none]:
Sweep range of sizes [n]: n
Type escape sequence to abort.
Sending 100, 64-byte ICMP Echos to 1.2.1.2, timeout is 2 seconds:
Packet sent with a source address of 1.2.1.1
......................................................................
..............................
Success rate is 0 percent (0/100)
cat3750#
Workaround:
None
Further Problem Description:
|
|
Last Modified: | 31-MAY-2016 |
|
Known Affected Releases: | 16.2(0), Denali-16.1.2, Denali-16.2.1 |
|
Known Fixed Releases: | 16.1(2.22), 16.2(0.295), 16.3(0.94) |
|
|
| |
| |
|
Alert Type: | Updated * |
Bug Id: | CSCuy86016 | Title: | SMD proc may be held-down with EAP-FAST local & Multi Auth Host Mode |
|
Status: | Terminated |
|
Severity: | 1 Catastrophic |
Description: * | Symptom:
The process smd has been held down with EAP-FAST local authentication and Multi-Auth Host Mode. It will happen when concerned interface have more than one session.
Conditions:
This issue will be seen only with local authentication (EAP-FAST) & multi-auth host mode only.
Workaround:
There is no workaround.
Further Problem Description:
|
|
Last Modified: | 11-MAY-2016 |
|
Known Affected Releases: | Denali-16.3.1 |
|
Known Fixed Releases: | |
|
|
| |
| |
|
Alert Type: | Updated * |
Bug Id: | CSCuy61234 | Title: * | Traceback and crash observed in active switch with dot1x and MAB |
|
Status: | Fixed |
|
Severity: | 1 Catastrophic |
Description: | Symptom:
SMD process crashes during prr_add_target when it tries to insert the node into AVL tree.
Conditions:
Application of "authentication violation" CLI on the interface may result in this scenario.
Workaround:
Only if the "authentication violation" CLI isnt applied onto the interface.
Further Problem Description:
When "authentication voilation" CLI is applied to the interface, target is added into AVL tree for Targets and Queue for Violation actions. Because the same structure is added in two different Data-structures, it results in corruption which causes the crash.
|
|
Last Modified: | 31-MAY-2016 |
|
Known Affected Releases: | Denali-16.2.1, Denali-16.3.1 |
|
Known Fixed Releases: | 16.1(2.48), 16.2(0.355), 16.3(0.140) |
|
|
| |
| |
|
Alert Type: | Updated * |
Bug Id: | CSCuj10443 | Title: | Standby sw crash@crypto_engine/sw/src/keylib/lib_key_storage.c:646 |
|
Status: | Fixed |
|
Severity: | 2 Severe |
Description: | Symptom:
Switch crashes when being added to stack after switchoer
Conditions:
This occurs in switchover scenarios
Workaround:
Reload the complete stack and boot again.
Further Problem Description:
|
|
Last Modified: | 09-MAY-2016 |
|
Known Affected Releases: | 15.0(11.98)EMP, 15.0(12.3)EMP, 15.2(2.2.94)E |
|
Known Fixed Releases: * | 12.2(60)EZ2, 12.2(60)EZ3, 15.0(1)EZ, 15.0(1)EZ1, 15.0(12.14)EZD, 15.0(14.1)TSR, 15.0(14.49)EZD, 15.0(2)EX5, 15.0(2)EX7, 15.0(2)SE7 |
|
|
| |
| |
|
Alert Type: | Updated * |
Bug Id: | CSCuz65463 | Title: * | Storm-control is not working after 3850 reload |
|
Status: | Open |
|
Severity: | 2 Severe |
Description: | Symptom:
storm-control is not working after 3850 reload
Conditions:
-storm-control is set under interface
-after 3850 reload
Workaround:
reconfig storm-control under interface
Further Problem Description:
|
|
Last Modified: | 31-MAY-2016 |
|
Known Affected Releases: | Denali-16.2.1 |
|
Known Fixed Releases: | |
|
|
| |
| |
|
Alert Type: | Updated * |
Bug Id: | CSCuy06768 | Title: * | Secure LDAP with wired 1k dot1x sessions may reload the system |
|
Status: | Fixed |
|
Severity: | 2 Severe |
Description: | Secure ldap with wired dot1x is not widely used
Symptom:
Active switch may reboot while trying to bring up more than 1k dot1x sessions with secure ldap authentication
Conditions:
Bring up more than 1k dot1x sessions with secure ldap authentication
Workaround:
None
Further Problem Description:
|
|
Last Modified: | 31-MAY-2016 |
|
Known Affected Releases: | 16.1(0) |
|
Known Fixed Releases: | 12.2(54)SG1, 12.2(58)EZ, 12.2(58)SE1, 12.2(58)SE2, 12.2(60)EZ, 12.2(60)EZ1, 12.2(60)EZ2, 12.2(60)EZ3, 12.2(60)EZ4, 12.2(60)EZ5 |
|
|
| |
| |
|
Alert Type: | New |
Bug Id: | CSCuy54279 | Title: | duplicate entries in OBFL CLI chain and error while clearing OBFL log |
|
Status: | Fixed |
|
Severity: | 2 Severe |
Description: | Symptom:
Boot up on the stack, Duplicate entries in the OBFL CLI chain.
Conditions:
Can be seen during all conditions..
Switch#clear logging ?
onboard Switch
onboard onboard information
persistent Delete persistent logging files
xml Clear XML logging buffer
Switch#clear logging onboard ?
switch Switch
switch Switch
Switch#clear logging onboard switch ?
<1-9> Switch number
<1-9> Switch number
active Active instance
standby Standby instance
Switch#clear logging onboard switch 1 ?
counter Clear onboard Counter log file
counter Clear onboard Counter log file
environment Clear onboard Environment log file
environment Clear onboard Environment log file
message Clear onboard Message log file
message Clear onboard Message log file
poe Clear onboard POE log file
poe Clear onboard POE log file
temperature Clear onboard Temperature log file
temperature Clear onboard Temperature log file
uptime Clear onboard Uptime log file
voltage Clear onboard Voltage log file
voltage Clear onboard Voltage log file
Switch#clear logging onboard switch 1
% Ambiguous command: "clear logging onboard switch 1 "
Switch#
Switch#
Also, when try to clear the OBFL log, will see this error:
Switch#clear logging onboard switch 1
% Ambiguous command: "clear logging onboard switch 1 "
Workaround:
None
Further Problem Description:
|
|
Last Modified: | 20-MAY-2016 |
|
Known Affected Releases: | Denali-16.2.1 |
|
Known Fixed Releases: | 16.1(2.28), 16.2(0.315), 16.3(0.113) |
|
|
| |
| |
|
Alert Type: | Updated * |
Bug Id: | CSCuw56706 | Title: * | LACP with 16 ports: after switchover, ports in H state change to D state |
|
Status: | Fixed |
|
Severity: | 2 Severe |
Description: | Symptom:
Consider an etherchannel running the LACP protocol and with one or more hot standby ports. Prior to switchover, these ports will be in the "H" state and ready to take over if one of the active port channel members go down. After a switchover, these ports will be marked as "D" (link down) and will not be able to take over if one of the active port channel members were to go down.
Conditions:
As mentioned in the symtoms
Workaround:
After switchover, do a 'shut' 'no shut' on the affected ports. This should move them back to the correct state
Further Problem Description:
This issue only happens after a switchover. The hot-standby functionality in LACP will work correctly without a switchover
|
|
Last Modified: | 31-MAY-2016 |
|
Known Affected Releases: | 16.1(0) |
|
Known Fixed Releases: | 16.2(0.275), 16.3(0.75) |
|
|
| |
| |
|
Alert Type: | New |
Bug Id: | CSCuy45574 | Title: | Polaris MR1: Iosd crash seen with baseline and webauth roaming |
|
Status: | Fixed |
|
Severity: | 2 Severe |
Description: | Symptom:
System will reload with reason Iosd crash.
Conditions:
Issue will be seen after 3-4 days of roaming clients between Mobility controller and mobility agent. Clients will be webauth clients who are already logged in and keep roaming between Mobility controller and mobility agent.
Workaround:
None
Further Problem Description:
This issue is fixed in 16.2 release.
|
|
Last Modified: | 20-MAY-2016 |
|
Known Affected Releases: | Denali-16.1.2 |
|
Known Fixed Releases: | 16.1(2.13), 16.2(0.305), 16.3(0.103) |
|
|
| |
| |
|
Alert Type: | Updated * |
Bug Id: | CSCuy87829 | Title: | Memory leak at QoS WPM node |
|
Status: | Fixed |
|
Severity: | 2 Severe |
Description: | Symptom:
Memory leak(QoS WPM Node) in chunk after client associates to QoS enabled WLANs and it increments if roaming rate is high.
Conditions:
Leak is happening if wireless client associates to QoS enabled WLANs and it increments if roaming rate is high
Workaround:
WLAN with out applying wireless QoS
Further Problem Description:
|
|
Last Modified: | 16-MAY-2016 |
|
Known Affected Releases: | 16.2.0 |
|
Known Fixed Releases: * | 16.2(1.18), 16.3(0.206), 16.4(0.28) |
|
|
| |
| |
|
Alert Type: | Updated * |
Bug Id: | CSCuz26115 | Title: | HFL packet has not been sent to interface when topology change occur |
|
Status: | Fixed |
|
Severity: | 2 Severe |
Description: | Symptom:
HFL packet has not been sent to interface when topology change occur
Conditions:
1. topology change occur
2. it occur at 3850/3650
Workaround:
none
Further Problem Description:
|
|
Last Modified: | 31-MAY-2016 |
|
Known Affected Releases: | Denali-16.2.1 |
|
Known Fixed Releases: * | 16.2(1.25), 16.3(0.219), 16.4(0.41) |
|
|
| |
| |
|
Alert Type: | Updated * |
Bug Id: | CSCuy40283 | Title: | c3850 RRM TPC - txpower unchanged on MC for 2.4GHz |
|
Status: | Fixed |
|
Severity: | 2 Severe |
Description: | Symptom:
Polaris MC and MA RF members do not get transmit power assignments from group leader.
Conditions:
When RF group leader is 5508 controller, Polaris MC and MA RF members do not get power assignments from group leader for TPC. When RF group leader is Polaris MC, MA RF members do not get power assignments from group leader for TPC.
Workaround:
None
Further Problem Description:
|
|
Last Modified: | 20-MAY-2016 |
|
Known Affected Releases: | Denali-16.2.1 |
|
Known Fixed Releases: * | 16.2(1.20), 16.3(0.206), 16.4(0.16) |
|
|
| |
| |
|
Alert Type: | New |
Bug Id: | CSCuy30244 | Title: | Memory increase : 60MB increase in WCM USS |
|
Status: | Fixed |
|
Severity: | 2 Severe |
Description: | Symptom:
memory jump of 1.5% of WCM which means WCM is using 1.5% more of the total memory available in the system
Conditions:
Workaround:
none currently known
Further Problem Description:
|
|
Last Modified: | 19-MAY-2016 |
|
Known Affected Releases: | Denali-16.2.1 |
|
Known Fixed Releases: | 16.1(2.69), 16.2(0.303), 16.3(0.102) |
|
|
| |
| |
|
Alert Type: | New |
Bug Id: | CSCux91239 | Title: | Observing SMD crash with secure LDAP |
|
Status: | Fixed |
|
Severity: | 2 Severe |
Description: | Symptom:
Active switch reboots while trying to bring up more than 1k dot1x sessions with secure ldap authentication
Conditions:
Bring up more than 1k dot1x sessions with secure ldap
Workaround:
None
Further Problem Description:
|
|
Last Modified: | 19-MAY-2016 |
|
Known Affected Releases: | 16.1(0) |
|
Known Fixed Releases: | 16.1(2.40), 16.2(0.280), 16.3(0.77) |
|
|
| |
| |
|
Alert Type: | Updated * |
Bug Id: | CSCux78543 | Title: * | Device-tracking database not updated after client moves |
|
Status: | Fixed |
|
Severity: | 2 Severe |
Description: | Symptom:
device-tracking database not updated afer client moves
Conditions:
Device-tracking database not updated after a SANET client moves from one port ( eg behind a Phone ) to another port
The database still shows the client on former port ( which then goes to STALE ) but new port is never shown
Workaround:
None
Further Problem Description:
|
|
Last Modified: | 31-MAY-2016 |
|
Known Affected Releases: | 16.2 |
|
Known Fixed Releases: | 16.1(2.58), 16.2(0.271), 16.3(0.62) |
|
|
| |
| |
|
Alert Type: | Updated * |
Bug Id: | CSCux09478 | Title: * | sh proc mem platform sorted output is incorrect with low free memory |
|
Status: | Fixed |
|
Severity: | 2 Severe |
Description: | Symptom:
"show process memory platform" currently displays memory usage that may appear to be very high. This is due to the over-committed memory by processes running in the underlying LINUX environment.
Conditions:
Even default configuration may show high memory usage system-wide.
Workaround:
NONE
Further Problem Description:
NONE
|
|
Last Modified: | 31-MAY-2016 |
|
Known Affected Releases: | 16.1(0), 16.2(0) |
|
Known Fixed Releases: | |
|
|
| |
| |
|
Alert Type: | Updated * |
Bug Id: | CSCuy49397 | Title: * | Bundling the AP1852E fix with IOS XE Denali 16.1 and 16.2 |
|
Status: | Fixed |
|
Severity: | 3 Moderate |
Description: | Symptom:
Bundling the Corsica - 1830, 1850 - AP fix with Denali 16.2.1 and Polaris 16.1.x
Conditions:
This change includes required fixes for Corsica AP support
Workaround:
Resolved
Further Problem Description:
None
|
|
Last Modified: | 31-MAY-2016 |
|
Known Affected Releases: | 16.2.1 |
|
Known Fixed Releases: | 16.1(2.64), 16.2(0.308) |
|
|
| |
| |
|
Alert Type: | Updated * |
Bug Id: | CSCuw17864 | Title: | 3650 will not forward 5246 with ip helper |
|
Status: | Open |
|
Severity: * | 3 Moderate |
Description: | Symptom:
When using the 3650, and presumably the 3850, as a layer 3 switch it will not forward the AP WLC L3 discovery packet using an ip helper. The switch is using the command " ip forward-protocol udp 5246" with an ip helper on the SVI of the AP management VLAN pointing to the WLC. There are no wireless configs on the switch. When the switch was using the LAN base license this config worked fine, once it was upgraded to the ip services license this is when the issue happens. This only affects APs attached to the 3650s with the ip services license. This does not stop the ip helper address from forwarding DHCP broadcasts.
Conditions:
3650 switch must have the ip services (maybe the ip base) license and the APs must be attached to that switch.
Workaround:
Use any other WLC discovery method.
Further Problem Description:
This is easily recreated. The customer is running 3.3.5 and my lab is running 3.6.0, this is seen on both versions of code.
|
|
Last Modified: | 31-MAY-2016 |
|
Known Affected Releases: | 10.3(3.109) |
|
Known Fixed Releases: | |
|
|
| |
| |
|
Alert Type: | Updated * |
Bug Id: | CSCux96301 | Title: | "% failed to initialize nvram" upon booting with default config |
|
Status: | Terminated |
|
Severity: | 3 Moderate |
Description: * | Symptom:
Upon booting with a default configuration, you'll see the following messages on your console:
% failed to initialize nvram
%IOSXE_RP_NV-3-NV_ACCESS_FAIL: Initial read of NVRAM contents failed
Conditions:
You can run into the issue when:
-boot up of a brand new switch with Cisco IOS XE Release Denali 16.1.1 which has a default config
-write erase, reload, boot up Cisco IOS XE Release Denali 16.1.1 with a default config
Reference to Cisco IOS XE Release Denali 16.1.1:
http://www.cisco.com/c/en/us/support/ios-nx-os-software/denali-16-1-1/model.html
Workaround:
If you do a wr mem and save the config, upon the next reboot, the messages will not be seen.
Further Problem Description:
|
|
Last Modified: | 31-MAY-2016 |
|
Known Affected Releases: | Denali-16.1.1 |
|
Known Fixed Releases: | |
|
|
| |
| |
|
Alert Type: | New |
Bug Id: | CSCuz89095 | Title: | 3850 switch at Provisoned state after a random reload/power outage |
|
Status: | Open |
|
Severity: | 3 Moderate |
Description: | Symptom:
One of the 3850 switches within a stack doesn't join back and it remains in Provisioned state.
Conditions:
Stack running 3.7.3 image.
The problems happens very randomly.
Workaround:
Reload the Provisioned switch to join back the stack.
Further Problem Description:
Console output of Provisioned switch shows nothing, no boot loop nor ROMmon prompt.
|
|
Last Modified: | 31-MAY-2016 |
|
Known Affected Releases: | none |
|
Known Fixed Releases: | |
|
|
| |
| |
|
Alert Type: | Updated * |
Bug Id: | CSCuz40711 | Title: * | Wireless configuration lost after 4th switchover |
|
Status: | Fixed |
|
Severity: | 3 Moderate |
Description: | Symptom:
Wireless related configurations(wlan, ap group, mobility,etc) are missing
Conditions:
Multiple switchovers, it was 4th switchover when the issue first found.
Workaround:
Backup configurations before switchover.
Further Problem Description:
|
|
Last Modified: | 31-MAY-2016 |
|
Known Affected Releases: | Denali-16.1.3 |
|
Known Fixed Releases: | 16.1(2.66), 16.2(1.8), 16.3(0.196), 16.4(0.15) |
|
|
| |
| |
|
Alert Type: | Updated * |
Bug Id: | CSCur54635 | Title: * | 3850/SSH: Traceback and dummy watched message after switch deployment |
|
Status: | Fixed |
|
Severity: | 3 Moderate |
Description: | Symptom:
Catalyst 3850 switch reports following traceback and error message:
Traceback= 1#58bc7daf4fe087af80f5f05af9e15bb7 :55443000+1FB56C4 :55443000+34ABFC0 :55443000+34AE540 :55443000+E0F568 :55443000+E0F730 :55443000+E0F834 :55443000+E0FA20 :55443000+E4CCD0 :55443000+E4CEF0 :55443000+E50478 :55443000+1EBA378
Oct 29 19:50:50.799 EDT: %SCHED-3-THRASHING: Process thrashing on watched message queue 'dummy watched message'. -Process= "SSH Process", ipl= 0, pid= 299
Conditions:
When the show CLI "show interface transceiver" and its sub commands are execute manually or throught script. The error is not seen all the issue we issue the command.
The trigger for the error is unknown, but this error could be seen only while executing "show interface transceiver" and its sub commands
Workaround:
None.
Further Problem Description:
|
|
Last Modified: | 31-MAY-2016 |
|
Known Affected Releases: | 15.0(2)SE4 |
|
Known Fixed Releases: | 15.2(2)E4, 16.1(2.43), 16.2(0.260), 16.3(0.28), 3.6(4)E |
|
|
| |
| |
|
Alert Type: | Updated * |
Bug Id: | CSCuw08909 | Title: * | After reload, reapply the service policy for the traffic policer to work |
|
Status: | Fixed |
|
Severity: | 3 Moderate |
Description: | Symptom:
after switch reload traffic policy stops working untill manually reapplied. There are no confirmed or exceeded counters increment. The value is always 0.
Conditions:
seen on WS-C3850-24XS with 03.07.02.E
Workaround:
reapplying the policy manually with no service-policy/service-policy
Further Problem Description:
|
|
Last Modified: | 31-MAY-2016 |
|
Known Affected Releases: | 3.7(0)E |
|
Known Fixed Releases: | 15.2(3)E3, 3.7(3)E |
|
|
| |
| |
|
Alert Type: | Updated * |
Bug Id: | CSCux82059 | Title: * | Unknown package type msg when upgrading from 16.1.1 to 16.1.x or 16.x |
|
Status: | Terminated |
|
Severity: | 3 Moderate |
Description: | Symptom:
When you upgrade/downgrade from 16.1.1 to future 16.1.X or 16.X releases, you will see the message "Unknown package type 21" when you use the "request platform software package install switch all file flash:image.bin new auto-copy" command. There is no functional impact to the software install due to this message. The install will be successful.
Conditions:
Upgrading/downgrading from 16.1.1 to future 16.1.X or 16.X releases
Workaround:
N/A
Further Problem Description:
|
|
Last Modified: | 31-MAY-2016 |
|
Known Affected Releases: | Denali-16.1.1 |
|
Known Fixed Releases: | |
|
|
| |
| |
|
Alert Type: | Updated * |
Bug Id: | CSCuz86222 | Title: | WLAN passwords are deleted upon reboot (with 'password encr aes') |
|
Status: | Open |
|
Severity: | 3 Moderate |
Description: | Symptom:
WLAN passwords are removed after a reboot of the WLC and the WPA-PSK WLANs are shut down.
Conditions:
Denali software
'password encryption aes' is enabled
Workaround:
Use 'no password encryption aes' and save the configuration before rebooting.
Further Problem Description:
Console output upon bootup shows the following:
% Error enabling encryption in binos
% Password encryption failed
% switch-1:dbm:Invalid WLAN configuration. Either dot1x or psk authentication must be configured under wpa.
% Password encryption failed
% switch-1:dbm:Invalid WLAN configuration. Either dot1x or psk authentication must be configured under wpa.
|
|
Last Modified: | 30-MAY-2016 |
|
Known Affected Releases: * | Denali-16.2.2 |
|
Known Fixed Releases: | |
|
|
| |
| |
|
Alert Type: | Updated * |
Bug Id: | CSCuz02766 | Title: | NOVA: Crash in IOSd with 'EPC SM Liaison Update proc' |
|
Status: | Fixed |
|
Severity: | 3 Moderate |
Description: | Symptom:
A nova-based switch (3850, 4500) can crash when removing an existing capture point before it is stopped.
The crash will be within IOSd:
IOSD-EXT-SIGNAL: Segmentation fault(11), Process = EPC SM Liaison Update proc
Conditions:
The existing capture point is removed before it can be deactivated asynchronously. It is triggered on "no monitor capture "
Workaround:
The workaround would be to stop the capture before removing it. i.e:
'monitor capture stop'
'no monitor capture '
Further Problem Description:
|
|
Last Modified: | 31-MAY-2016 |
|
Known Affected Releases: | 3.6(3)E, 3.7(3)E |
|
Known Fixed Releases: * | 15.2(5.1.75i)E, 16.3(0.192), 16.4(0.46) |
|
|
| |
| |
|
Alert Type: | Updated * |
Bug Id: | CSCux11452 | Title: | Cat3850 crash while executing "no queue-limit" command |
|
Status: | Fixed |
|
Severity: | 3 Moderate |
Description: | Symptom:
crash occur when execute "no queue-limit" command on Cat3850, when there exists 'queue-limit cos|dscp value ...' configuration.
Conditions:
Execute "no queue-limit" command when there exists "queue-limit cos values .." or "queue-limit dscp values .." configuration.
Workaround:
Remove by executing specific CLI - "no queue-limit cos values .." or "no queue-limit dscp values .." which will work fine as intended. "no queue-limit" in working scenario is a no-op in this case because it is not specific enough.
Further Problem Description:
User should use specific 'no queue-limit ...' command with parameters to remove. 'no queue-limit' when there exists detailed queue-limit will simply be ignored.
|
|
Last Modified: | 27-MAY-2016 |
|
Known Affected Releases: | 15.2(2)E3, 15.2(3)E |
|
Known Fixed Releases: * | 15.2(5.1.48i)E, 15.4(3)S5.12, 16.3(0.113) |
|
|
| |
| |
|
Alert Type: | Updated * |
Bug Id: | CSCut87285 | Title: | MAC address being learnt on an individual Port-channel member interface |
|
Status: | Fixed |
|
Severity: | 3 Moderate |
Description: | Symptom:
MAC addresses flapping messages may be displayed on a 3850 stack
In the "show mac address-table" output, some MAC addresses will be seen on the port-channel interface and others will be seen on the port-channel member interfaces while they are still bundled in the port-channel.
%SW_MATM-4-MACFLAP_NOTIF: Host 54ee.753a.4112 in vlan 999 is flapping between port Te1/1/3 and port Po32
%SW_MATM-4-MACFLAP_NOTIF: Host 54ee.753a.4112 in vlan 999 is flapping between port Te1/1/3 and port Po32
%SW_MATM-4-MACFLAP_NOTIF: Host a0a8.cd60.2944 in vlan 883 is flapping between port Te1/1/3 and port Po3
Traffic destined to a mac learned a port-channel member interface may experience a service impact for that traffic.
Conditions:
Seen on 3850 stacks running 03.06.00E or later
Issue has not been seen on releases prior to 03.06.xx
Workaround:
Disabling IPDT on the trunk interface may decrease the amount of MAC moves if their reporting is excessive.
Clearing the mac address in question may also allow the system to re-learn the address correctly on the port-channel interface.
Further Problem Description:
|
|
Last Modified: | 25-MAY-2016 |
|
Known Affected Releases: | 15.2(2)E |
|
Known Fixed Releases: * | 15.2(2)E4, 15.2(3)E3, 16.1(1.21), 16.1.2, 16.2(1.23), 16.3(0.4), 3.6(4)E, 3.7(3)E, Denali-16.1.2 |
|
|
| |
| |
|
Alert Type: | Updated * |
Bug Id: | CSCuz50876 | Title: | 3850 Denali 16.1.1E - Bootflash is missing from system-report |
|
Status: | Open |
|
Severity: | 3 Moderate |
Description: * | Symptom:
bootflash is not present in the system-report running Denali 16.1.1E code on 3850
Conditions:
generate a system -report
Workaround:
none
Further Problem Description:
|
|
Last Modified: | 25-MAY-2016 |
|
Known Affected Releases: | Denali-16.1.1 |
|
Known Fixed Releases: | |
|
|
| |
| |
|
Alert Type: | Updated * |
Bug Id: | CSCux09139 | Title: | Lanbase with "vlan template" does not work - use "advanced template" |
|
Status: * | Other |
|
Severity: * | 3 Moderate |
Description: | Symptom:Switch is not functional from data path point of view.
Conditions:When the "vlan" template is chosen.
E.g.,
switch(config)#sdm prefer vlan
Changes to the running SDM preferences have been stored, but cannot take effect until the next reload. Use 'show sdm prefer' to see what SDM preference is currently active.
Workaround:Do not choose "vlan" template. Use "advanced" template. By default "advanced" template is used.
More Info:For Hardware resource allocation among various features is mostly same for both the templates "advanced" and "vlan". By default "advanced" template is chosen.
|
|
Last Modified: | 25-MAY-2016 |
|
Known Affected Releases: | 16.1(0) |
|
Known Fixed Releases: | |
|
|
| |
| |
|
Alert Type: | Updated * |
Bug Id: | CSCuy81151 | Title: | ATF not working after reload |
|
Status: | Fixed |
|
Severity: | 3 Moderate |
Description: | Symptom:
Airtime Fairness enforcement and policies do not take affect although show to be configured when reloading the system (all members of the stack). ATF works as expected when SSO occurs.
Conditions:
Airtime Fairness enforcement and policies are configured on wlan(s) and saved. Reload of Polaris controller stack.
Workaround:
Reconfigure Airtime Fairness wlan changes and enforcement changes.
Further Problem Description:
|
|
Last Modified: | 23-MAY-2016 |
|
Known Affected Releases: | Denali-16.2.1 |
|
Known Fixed Releases: * | 16.2(1.21), 16.3(0.211), 16.4(0.34) |
|
|
| |
| |
|
Alert Type: | New |
Bug Id: | CSCuy34601 | Title: | SMD leak@OBJ_MAB_METH_MAC,CWA roam in webauth_pending |
|
Status: | Fixed |
|
Severity: | 3 Moderate |
Description: | Symptom:
SMD memory leak with process OBJ_MAB_METH_MAC
Conditions:
Roam CWA clients in webauth_pending state
Workaround:
Move CWA clients to UP state before roaming
Further Problem Description:
|
|
Last Modified: | 20-MAY-2016 |
|
Known Affected Releases: | Denali-16.2.1 |
|
Known Fixed Releases: | 16.1(2.63), 16.2(0.304), 16.3(0.103) |
|
|
| |
| |
|
Alert Type: | Updated * |
Bug Id: | CSCuj96033 | Title: | Process "btelnet.sh:" STANDBY:2 ng_dumper: terminated abnormally |
|
Status: | Fixed |
|
Severity: | 3 Moderate |
Description: | Symptom:
The following message is received in the log of a 3850MCP_SYS-0-ASSERTION_FAILED: STANDBY:2 btelnet.sh: Assertion failed: "Assertion failed: /ws/abdz/waf_workspace-4975487/2/nova/access/btelnet/telnet/commands.c::
1644: "!mcp_btelnet_disable_commands()" " errmsg:2BEB5000+E2C binos:2BB2B000+2784 :10000000+8250 :10000000+82C0 :10000000+9AE8 :10000000+10E68 :10000000+F5F0 :10000000+133CC :10000000+134C4 :10000000+9270 :10000000+A814 c:2C2B0000+17000
Oct 21 23:11:46.912: Process btelnet.sh: STANDBY:2 ng_dumper: terminated abnormally.
Conditions:
Unknown at this time
Workaround:
None at this time
Further Problem Description:
None
|
|
Last Modified: | 20-MAY-2016 |
|
Known Affected Releases: | 15.0(1)EX3 |
|
Known Fixed Releases: * | 15.2(2)E2, 15.2(3)E1, 16.1(0.353), 16.1.1, 16.2(0.50), 3.6(2)E, 3.7(1)E, Denali-16.1.1 |
|
|
| |
| |
|
Alert Type: | Updated * |
Bug Id: | CSCuy67349 | Title: | 3650/3850 IPv6 ND RAGUARD drops RS packets (ICMPv6 type 133) |
|
Status: | Fixed |
|
Severity: | 3 Moderate |
Description: | Symptom:
Whenever we configure IPv6 ND RAGUARD and apply it on the interface, so to block any RA and Router Redirect, device also drops RS packets, which is causing issue with IPv6 address assignment for end hosts. RS is dropped, hence it is not received by the router and no RA is sent by the router. End host finally received RA depending on the RA interval set on the router.
!
ipv6 nd raguard policy CLIENT_POLICY
device-role host
!
ipv6 nd raguard policy ROUTER_POLICY
device-role router
!
!
interface
ipv6 nd raguard attach-policy CLIENT_POLICY
!
interface
ipv6 nd raguard attach-policy ROUTER_POLICY
!
Conditions:
- 3650/3850 running 3.6.3E version
- ipv6 nd raguard policy applied on a port
- port towards IPv6 router is configured as Trunk
Workaround:
- all works fine if port towards IPv6 router is configured as Access
- using DHCP for IPv6 address assignment
- decreasing RA interval on a router (however this may increase CPU utilization and we will have more messages flooded in this vlan - RA destination is multicast all nodes)
Further Problem Description:
|
|
Last Modified: | 20-MAY-2016 |
|
Known Affected Releases: | 3.6(3)E |
|
Known Fixed Releases: * | 16.2(1.20), 16.3(0.205), 16.4(0.28) |
|
|
| |
| |
|
Alert Type: | New |
Bug Id: | CSCuy32054 | Title: | Observing issue with "show access-session" output post SSO |
|
Status: | Fixed |
|
Severity: | 3 Moderate |
Description: | Symptom:
Not a functional issue. The issue is with "show access-session" CLI only.
"show access-session" displays incorrect session count post SSO
Conditions:
Perform SSO and bring down all dot1x sessions. "show access-session" shows incorrect session count.
Workaround:
Do not perform SSO.
Further Problem Description:
|
|
Last Modified: | 19-MAY-2016 |
|
Known Affected Releases: | 16.1(0) |
|
Known Fixed Releases: | 16.1(2.35), 16.2(0.305), 16.3(0.102) |
|
|
| |
| |
|
Alert Type: | Updated * |
Bug Id: | CSCuz56180 | Title: | Netflow stats are not being exported to the flow collecter |
|
Status: | Open |
|
Severity: * | 3 Moderate |
Description: | Symptom:
Flow records are not been sent to Flow collector. Flow collector is reachable. Flow monitor has been applied on the wlan in inout direction.
Conditions:
unknown
Workaround:
unknown
Further Problem Description:
|
|
Last Modified: | 18-MAY-2016 |
|
Known Affected Releases: | 3.6(4)E |
|
Known Fixed Releases: | |
|
|
| |
| |
|
Alert Type: | Updated * |
Bug Id: | CSCuy19892 | Title: | Doc: Working with Cisco IOS XE Software Bundles should be rewitten |
|
Status: | Fixed |
|
Severity: | 3 Moderate |
Description: * | Symptom:
The 16.1.1 software configuration guides have a chapter how to work with software bundles with IOS-XE but does not have a chapter on how to work with software bundles with IOS 16.1.1 .
Conditions:
Workaround:
Updated the doc. Here are the updated links:
3850:
http://www.cisco.com/c/en/us/td/docs/switches/lan/catalyst3850/software/release/16-1/configuration_guide/b_161_consolidated_3850_cg/b_161_consolidated_3850_cg_chapter_01111000.html
3650:
http://www.cisco.com/c/en/us/td/docs/switches/lan/catalyst3650/software/release/16-1/configuration_guide/b_161_consolidated_3650_cg/b_161_consolidated_3650_cg_chapter_010001110.html
Further Problem Description:
|
|
Last Modified: | 09-MAY-2016 |
|
Known Affected Releases: | Denali-16.1.1 |
|
Known Fixed Releases: | |
|
|
| |
| |
|
Alert Type: | Updated * |
Bug Id: | CSCud91494 | Title: | control packet SA learning disable function needs to be persistent |
|
Status: | Fixed |
|
Severity: | 3 Moderate |
Description: * | Symptom:
mac-address table updated with BPDU SA from neighbor switch
Conditions:
control packets sent from neighbor switch cause MAC learning
Workaround:
In 3.2.nSE, use test command "test matm ctrl_pkt_lrn" in enable mode to disable this feature
Note that even with the workaround/fix loopback protocol packets will still cause source learning.
More Info:
|
|
Last Modified: | 03-MAY-2016 |
|
Known Affected Releases: | 15.0(9.32)EXP |
|
Known Fixed Releases: | 15.0(1)EZ, 15.0(10.66)EMW, 15.0(9.0)PKD, 3.3(0)SE |
|
|
| |
| |
|
Alert Type: | Updated * |
Bug Id: | CSCuy47917 | Title: | fman-fp failed to send NACK back upon client creation |
|
Status: | Fixed |
|
Severity: | 3 Moderate |
Description: | Symptom:
clients will get stuck in IPLEARN
Conditions:
After prolonged UP time, around 10-12 Hours, possibility of clients getting stuck in IPLEARN
Workaround:
Reload the controller
Further Problem Description:
|
|
Last Modified: | 03-MAY-2016 |
|
Known Affected Releases: | 16.3(0) |
|
Known Fixed Releases: * | 16.2(1.3), 16.3(0.195), 16.4(0.8) |
|
|
| |
| |
|
Alert Type: | Updated * |
Bug Id: | CSCuy46011 | Title: * | Software rollback fails between 16.1.1 and 16.1.2/16.2.1 |
|
Status: | Other |
|
Severity: | 3 Moderate |
Description: | Symptom:
When you use software rollback to go between 16.1.1 and 16.1.2/16.X releases, you'll see the following error:
FAILED: Aborting issu between mixed images
FAILED: rollback failed on switch 2
The error causes the software rollback command "request platform software package install switch all rollback on-reboot auto-copy" to fail.
Conditions:
When using the following commands to rollback the image on your switch/stack:
request platform software package install switch all rollback on-reboot auto-copy
request platform software package install switch all rollback on-reboot new auto-copy
Workaround:
The workaround is to use "ignore-compat-check" option:
request platform software package install switch all rollback ignore-compat-check on-reboot
Further Problem Description:
|
|
Last Modified: | 31-MAY-2016 |
|
Known Affected Releases: | Denali-16.1.2 |
|
Known Fixed Releases: | |
|
|
| |
| |
|
Alert Type: | Updated * |
Bug Id: | CSCuy42327 | Title: * | New domain lists do not get updated in the show access-session details |
|
Status: | Fixed |
|
Severity: | 3 Moderate |
Description: | Symptom:
Mapping new FQDN domain list to the existing parameter map will not work
Conditions:
Wireless clients will get redirected to the login page, when a new domain list is mapped to the existing local webauth parameter map
Workaround:
Configure a new WLAN, new LWA parameter map and add the newly created domain list
or
Edit the existing domain list and add or remove the URLs which are no more valid or required
Further Problem Description:
|
|
Last Modified: | 31-MAY-2016 |
|
Known Affected Releases: | 16.1(1.2) |
|
Known Fixed Releases: | 16.4(0.39) |
|
|
| |
| |
|
Alert Type: | New |
Bug Id: | CSCuz88395 | Title: | 3850: issue when routes packets from SNAP to ARPA or vice versa |
|
Status: | Open |
|
Severity: | 3 Moderate |
Description: | Symptom:
3850 cannot forward SNAP packets to arpa device or vise versa.
Conditions:
one device is learnt as SNAP in the arp table of 3850
Workaround:
set the SNAP arp entry to static arp (arpa)
Further Problem Description:
None
|
|
Last Modified: | 31-MAY-2016 |
|
Known Affected Releases: | none |
|
Known Fixed Releases: | |
|
|
| |
| |
|
Alert Type: | Updated * |
Bug Id: | CSCux66659 | Title: * | Wireless Mobility Multicast: IP config validation issues observed |
|
Status: | Fixed |
|
Severity: | 3 Moderate |
Description: | Symptom:
Wireless mobility multicast IP address can be configured same as of other multicast addresses.
Conditions:
While configuring the mobility multicast IP address, the same IP address can be configured for multicast address of AP and other mobility group.
Workaround:
None
Further Problem Description:
|
|
Last Modified: | 31-MAY-2016 |
|
Known Affected Releases: | 16.1(0) |
|
Known Fixed Releases: | 16.1(2.59), 16.2(0.295), 16.3(0.94) |
|
|
| |
| |
|
Alert Type: | Updated * |
Bug Id: | CSCuy05242 | Title: * | With invalid downloadable ACL in ACS 5.2 server, wireless client joined |
|
Status: | Fixed |
|
Severity: | 3 Moderate |
Description: | Symptom:
No Errors reported when invalid DACLs are downloaded for wireless client.
Conditions:
3850 is loaded with 16.1.1 (Polaris) image
1.configure invalid DACL in Cisco ACS 5.2, Attach DACL to user profile.
2.On associating wireless client to above user profile, Wireless Client goes to run state instead of excluded state.
Workaround:
N/A
Further Problem Description:
|
|
Last Modified: | 31-MAY-2016 |
|
Known Affected Releases: | 16.1(1) |
|
Known Fixed Releases: | 16.1(2.40), 16.2(0.294), 16.3(0.93) |
|
|
| |
| |
|
Alert Type: | Updated * |
Bug Id: | CSCuy12760 | Title: * | 'show inventory' cmd does not show the stack cable |
|
Status: | Fixed |
|
Severity: | 3 Moderate |
Description: | Symptom:
Stack Port and Stack Port Adaptor values are not showing up in the show inventory or entity mib polling
Conditions:
Stack port if inserted in 3850 switch needs to be showing up in show inventory or entity mib polling
Stack port and stack port adaptor if inserted in 3650 switch needs to be showing up in show inventory or entity mib polling
Workaround:
None
Further Problem Description:
Issue is fixed in Denali 16.3, Customers can pick up in future releases
|
|
Last Modified: | 31-MAY-2016 |
|
Known Affected Releases: | Denali-16.2.1 |
|
Known Fixed Releases: | 16.1(2.65), 16.2(1.4), 16.3(0.119) |
|
|
| |
| |
|
Alert Type: | New |
Bug Id: | CSCuz69486 | Title: | port LED is amber on new replaced switch |
|
Status: | Open |
|
Severity: | 4 Minor |
Description: | Symptom:
after replacing one of 3850 stack switches, trunk port LED are amber
Conditions:
--ports are set as trunk ports
--after replacing one 3850 switch from stack
Workaround:
none
Further Problem Description:
|
|
Last Modified: | 17-MAY-2016 |
|
Known Affected Releases: | 15.2(3)E2 |
|
Known Fixed Releases: | |
|
|
| |
| |
|
Alert Type: | Updated * |
Bug Id: | CSCur81577 | Title: * | LED status change while adding/removing vlan to trunk interface |
|
Status: | Fixed |
|
Severity: | 4 Minor |
Description: | Symptom:
On 3.6.0SE, LED status change on port occurred when remove/add vlan on interface.
LED status on port changes from Green to Orange when removing a vlan on interface,
and when adding the vlan again , LED status on port changes from Orange to Green.
It is not seen on 3.3.0SE.
-Command
switchport trunk allow vlan remove
switchport trunk allow vlan add
Conditions:
My customer installed Cat3850 in the following topology.
3850 create port-channel to Juniper MX80 MC-LAG.
++++++++
+++++++------------------+ MX 80+
+ + ++++++++
+ 3850 + Po1 MX-80 MC-LAG
+ + ++++++++
+++++++------------------+ MX 80 +
+++++++++
When user do configuration change(add/remove vlan) on interface on 3850 with 3.6.0SE,
LED status change on port occurred
Also seen on 3650 platform.
Workaround:
N/A
Further Problem Description:
|
|
Last Modified: | 18-MAY-2016 |
|
Known Affected Releases: | 15.2(2)E, 3.3(5)SE |
|
Known Fixed Releases: | |
|
|
| |
| |
|
Alert Type: | Updated * |
Bug Id: | CSCuw90085 | Title: * | No version of parameter-map cmd allowed when active session exists |
|
Status: | Open |
|
Severity: | 6 Enhancement |
Description: | Symptom:
Unconfiguring of parameter-map configuration is allowed when active wired/wireless session exists.
Conditions:
Users still able to remove the parameter-map config when sessions are still active
Workaround:
Please shut the wlan/port so that sessions are removed and then remove/edit webauth parameter-map
Further Problem Description:
|
|
Last Modified: | 31-MAY-2016 |
|
Known Affected Releases: | 16.1(0) |
|
Known Fixed Releases: | |
|
|
| |
| |
|
Alert Type: | New |
Bug Id: | CSCuz86625 | Title: | Enh: need CLI to tune buffers on Egress port without service policy |
|
Status: | Open |
|
Severity: | 6 Enhancement |
Description: | Symptom:
On Catalyst 3560/3850 switch stack its possible to increase the number of buffers available per port using the qos queue-softmax-multiplier commmand. This only impacts ports with a service policy attached.
This enhancement request to have an equivelant option for ports without an egress service policy attached
Conditions:
Workaround:
Further Problem Description:
|
|
Last Modified: | 28-MAY-2016 |
|
Known Affected Releases: | 3.6(5) |
|
Known Fixed Releases: | |
|
|
| |
| |
|
Alert Type: | Updated * |
Bug Id: | CSCux15679 | Title: * | Dynamic SGT with VRF not being mapped under VRF SGT mapping table |
|
Status: | Fixed |
|
Severity: | 6 Enhancement |
Description: | Symptom:
The Dynamic SGT with VRF is not saved in the VRF SGT-Map table. Rather, the binding is seen in the global RBM binding table.
Conditions:
If the New end point is assigned a tag and the binding is tied to an interface, the bindings are not saved in a VRF RBM table. This is because, the "cts role-based l2-vrf " creates a mapping between the vlan id and the VRF id. The CLI is not supported in polaris based platforms today. Without the CLI, the correlation of VRF to VLAN cannot be done and hence the binding will not be saved in right database.
Workaround:
There is no workaround. The CLI "cts role-based l2-vrf" needs to be supported to have mapping between VLAN and VRF.
Further Problem Description:
|
|
Last Modified: | 31-MAY-2016 |
|
Known Affected Releases: | 16.2.0 |
|
Known Fixed Releases: | 16.3(0.148) |
|
|
| |
没有评论:
发表评论