Preview Tool

Cisco Bug: CSCte92487 - same-security interface intra-interface may cause traffic to bounce back

Last Modified

Feb 22, 2014

Products (1)

  • Cisco Catalyst 6500 Series Firewall Services Module

Known Affected Releases


Description (partial)

  some traffic flows TTL expires between the MSFC and FWSM. The IP address 
 keeps replying to the 
  traceroute is the MSFC physical or virtual IP (HSRP for example).
  This can be shown by issuing the command: "show debug xlate" on all contexts 
 and checking if the 
  xlates are belonging to the correct context.
  This might happen in the following conditions:
  1- having multiple context FWSM setup with a shared input vlan interface
  2- configuring "same-security interface intra-interface" in one or more of 
 the contexts sharing 
  that input vlan interface.
Bug details contain sensitive information and therefore require a account to be viewed.

Bug Details Include

  • Full Description (including symptoms, conditions and workarounds)
  • Status
  • Severity
  • Known Fixed Releases
  • Related Community Discussions
  • Number of Related Support Cases
Bug information is viewable for customers and partners who have a service contract. Registered users can view up to 200 bugs per month without a service contract.