Preview Tool

Cisco Bug: CSCtb60330 - VTI: Missed DPD ACK on phase 1 expiry causing phase 2 deletion.

Last Modified

Apr 18, 2018

Products (1)

  • Cisco IOS

Known Affected Releases

12.2(33)XNF1 12.4(20)T3

Description (partial)

Symptoms: SVTI tunnel flaps at phase 1 expiry when a DPD ACK is not received.
 The line protocol on the tunnel interface goes down.
  Conditions: The symptom is observed with SVTI tunnels and when DPDs are enabled.

Related Community Discussions

Cisco 6500 Mode-Config problem
Hi all, In an IPSec port to DUT scenario, with Mode-Config set so as the DUT sends the IP address to the port, I get to a situation in which the DUT continuously enter the "Need config/address" state for the port, even if the port sends its ACK packet to every set IP address from the DUT. The DUT is a Cisco 6500 Version 12.2 (33) SXI3, having Mode-Configuration configured to provide clients with IP addresses from a local pool. I enabled the "debug crypto isakmp" on Cisco, and below is an extract ...
Latest activity: Jul 18, 2011
Bug details contain sensitive information and therefore require a account to be viewed.

Bug Details Include

  • Full Description (including symptoms, conditions and workarounds)
  • Status
  • Severity
  • Known Fixed Releases
  • Related Community Discussions
  • Number of Related Support Cases
Bug information is viewable for customers and partners who have a service contract. Registered users can view up to 200 bugs per month without a service contract.