Guest

Preview Tool

Cisco Bug: CSCtc20435 - Possible ACL Tree Corruption During Repartitioning and Rule Reallocation

Last Modified

Sep 30, 2017

Products (1)

  • Cisco Catalyst 6500 Series Firewall Services Module

Known Affected Releases

4.0(11) 4.0(6) 4.1(3)

Description (partial)

Symptom:

Upon re-configuring the number of partitions with <cmdbold>resource acl-partition</cmdbold> command coupled with re-allocating rules with <cmdbold>size</cmdbold> command under <cmdbold>resource partition</cmdbold> section and/or allocating contexts with <cmdbold>allocate-acl-partition</cmdbold> command on FIrewall Services Module (FWSM) running 4.x software, certain Access Control List (ACL) changes done under one context may results in other ACLs denying traffic under same or other contexts as well as other unpredictable ACL configuration results.

Conditions:

Attempted changes in the number of ACL partitions, rule re-allocation, and/or exclusive context assignments that are not valid under the existing or desired limits.
Bug details contain sensitive information and therefore require a Cisco.com account to be viewed.

Bug Details Include

  • Full Description (including symptoms, conditions and workarounds)
  • Status
  • Severity
  • Known Fixed Releases
  • Related Community Discussions
  • Number of Related Support Cases
Bug information is viewable for customers and partners who have a service contract. Registered users can view up to 200 bugs per month without a service contract.