Guest

Preview Tool

Cisco Bug: CSCtc98736 - ME3400 incorrectly classifies traffic when input policer configured

Last Modified

Feb 03, 2017

Products (104)

  • Cisco ME 3400 Series Ethernet Access Switches
  • Cisco Catalyst 3560-12PC-S Compact Switch
  • Cisco Catalyst 3560E-24TD-S Switch
  • Cisco Catalyst 3560E-48PD-E Switch
  • Cisco Catalyst 3560E-48PD-SF Switch
  • Cisco Catalyst 2960-24TC-L Switch
  • Cisco Catalyst 2960-48TT-S Switch
  • Cisco Catalyst 3750G-12S Switch
  • Cisco Catalyst 3750V2-24PS Switch
  • Cisco Catalyst 3560E-12D-E Switch
View all products in Bug Search Tool Login Required

Known Affected Releases

12.2(52)SE

Description (partial)

Symptom:

If a policy-map is setup with a policer with the conform action setup as "set-dscp-transmit dscp" the traffic is incorrectly classfied based on DSCP value IF the DSCP value it being classified via an ACL.  If you match only on DSCP value, this does not occur. 

All traffic is placed into the first class in the policy-map no matter the classification for that class. 

Conditions:

policer with conform action setup as "set-dscp-transmit dscp".  The policer can be setup as an aggregate policer OR a non-aggregate policer. 

Example:

policer aggregate TAC-polic cir 10000000 bc 312500 conform-action set-dscp-transmit dscp exceed-action drop 

policy-map TAC-policy
 class TAC-class
     police aggregate TAC-police

OR

policy-map test_policy
 class TAC-class
    police cir 10000000 bc 312500 conform-action set-dscp-transmit dscp exceed-action drop 

class TAC-class
 match ip access-group 103

access-list 103 permit ip 10.10.10.0 0.0.0.255 10.10.11.0 0.0.0.255 dscp af32
Bug details contain sensitive information and therefore require a Cisco.com account to be viewed.

Bug Details Include

  • Full Description (including symptoms, conditions and workarounds)
  • Status
  • Severity
  • Known Fixed Releases
  • Related Community Discussions
  • Number of Related Support Cases
Bug information is viewable for customers and partners who have a service contract. Registered users can view up to 200 bugs per month without a service contract.