Cisco Bug: CSCte92487 - same-security interface intra-interface may cause traffic to bounce back
Feb 22, 2014
- Cisco Catalyst 6500 Series Firewall Services Module
Known Affected Releases
Symptom: some traffic flows TTL expires between the MSFC and FWSM. The IP address keeps replying to the traceroute is the MSFC physical or virtual IP (HSRP for example). This can be shown by issuing the command: "show debug xlate" on all contexts and checking if the xlates are belonging to the correct context. Conditions: This might happen in the following conditions: 1- having multiple context FWSM setup with a shared input vlan interface 2- configuring "same-security interface intra-interface" in one or more of the contexts sharing that input vlan interface.
Bug details contain sensitive information and therefore require a Cisco.com account to be viewed.
Bug Details Include
- Full Description (including symptoms, conditions and workarounds)
- Known Fixed Releases
- Related Community Discussions
- Number of Related Support Cases