Guest

Preview Tool

Cisco Bug: CSCsz58766 - After enabling VACL, CSM sends unsupported command to 6500 Sup1

Last Modified

Nov 10, 2016

Products (1)

  • Cisco Security Manager

Known Affected Releases

3.2(2)

Description (partial)

Symptom:

In CSM 3.2.2, 6509/Sup1 is discovered and worked fine, but after configuring VACL in CSM (Platform -> VLAN Access List), CSM creates configuration that contains "vlan access-log ratelimit 2000" command.  This command is supported by Sup2 but not supported by Sup1:

http://www.cisco.com/en/US/docs/switches/lan/catalyst6500/ios/12.1E/native/command/reference/V1.html#wpxref62310

Configuration deployment CSM -> 6500/Sup1 fails and stops with error message like that one:

Router(config)#vlan access-log ratelimit 2000
                       ^
% Invalid input detected at '^' marker.

Conditions:

- VACL is configured in CSM, and deployed to 6500/Sup1.  No issues on Sup2.
Bug details contain sensitive information and therefore require a Cisco.com account to be viewed.

Bug Details Include

  • Full Description (including symptoms, conditions and workarounds)
  • Status
  • Severity
  • Known Fixed Releases
  • Related Community Discussions
  • Number of Related Support Cases
Bug information is viewable for customers and partners who have a service contract. Registered users can view up to 200 bugs per month without a service contract.