Preview Tool

Cisco Bug: CSCtc30851 - QOS: reject policies that contain an ACL with a DENY operation

Last Modified

Jan 17, 2017

Products (1)

  • Cisco ASR 9000 Series Aggregation Services Routers

Known Affected Releases


Description (partial)


Traffic that should be 'denied' is in fact matched and permitted. As per the MQC specification, 'actions' (permit or deny) defined within an ACL which is used for packet classification, are ignored when used within a QOS policy. All lines within the ACL are considered to be 'permit' lines even if the action has been defined as 'deny'.

A QOS policy which has a class-map using an ACL for packet matching, which in turn has ACL entries with 'deny' set as the 'action'.
Bug details contain sensitive information and therefore require a account to be viewed.

Bug Details Include

  • Full Description (including symptoms, conditions and workarounds)
  • Status
  • Severity
  • Known Fixed Releases
  • Related Community Discussions
  • Number of Related Support Cases
Bug information is viewable for customers and partners who have a service contract. Registered users can view up to 200 bugs per month without a service contract.