Cisco Bug: CSCsz23556 - Port security stops working after Violation on PVLAN promiscuous ports

Last Modified

Feb 16, 2017

Products (2)

Cisco Nexus 1000V Switch for VMware vSphere
Cisco Nexus 1000V Switch

Known Affected Releases

4.0(4)SV1(1)

Description (partial)

Symptom:
When we have both "PVLAN Promiscuous veth ports"(1) and "PVLAN Host mode"(2) veth ports having the same primary VLAN, port security cannot be enabled on veths in (1), since we will have PVLAN static macs configured for veths in (2) on the primary vlan.

Pre-Requisites:: 
1. One  vethernet interface(veth x) which is in PVLAN Host Mode with Primary vlan "A" and secondary vlan "B. 2. One vethernet interface(veth y) which is in PVLAN Promiscuous mode with Primary VLAN "A" and secondary vlan "C"

Condition:
With "veth x" already UP,  PVLAN static MACs will be programmed on Primary vlan "A". With this condition, when port security is enabled on "veth y", it will fail.

View Bug Details in Bug Search Tool Login Required

Why Is Login Required?

Bug details contain sensitive information and therefore require a Cisco.com account to be viewed.

Bug Details Include

Full Description (including symptoms, conditions and workarounds)
Status
Severity
Known Fixed Releases
Related Community Discussions
Number of Related Support Cases

Bug information is viewable for customers and partners who have a service contract. Registered users can view up to 200 bugs per month without a service contract.

Learn More About Cisco Service Contracts