Preview Tool

Cisco Bug: CSCtf41977 - Local Policy-Based Routing's ACL deny statements doesnt match

Last Modified

Aug 10, 2017

Products (1)

  • Cisco IOS

Known Affected Releases


Description (partial)

System is configured with local policy-based routing. Route-map is classifying traffic with ACL which's deny statements doesn't match corresponding locally originated traffic.

'deny' statement under PBR's ACL.

///Configuration example:
interface Ethernet0/0
 ip address
ip local policy route-map LOCAL-PBR

ip access-list extended ACL1
 deny   icmp any
 permit ip any any
route-map LOCAL-PBR permit 10
 match ip address ACL1
 set ip precedence flash

//Defect demonstration:
R1#ping repeat 100
R1#sh ip access-lists 
Extended IP access list ACL1
    10 deny icmp any <-- should be matched here.
    20 permit ip any any (100 matches)

Related Community Discussions

Access-List not showing up in configuration
Hi I am having a problem on a 6506 with a SUP720-3B. I have configured an access list on the switch, but when I issue a show running-config, the access list does not show up in the configuration. However if I do a show access-list, the access-list shows up. The software on the switch is ipservices 122-33SXI3 Has anyone come accross this issue before? Thanks in Advance, Derek
Latest activity: Feb 24, 2011
Bug details contain sensitive information and therefore require a account to be viewed.

Bug Details Include

  • Full Description (including symptoms, conditions and workarounds)
  • Status
  • Severity
  • Known Fixed Releases
  • Related Community Discussions
  • Number of Related Support Cases
Bug information is viewable for customers and partners who have a service contract. Registered users can view up to 200 bugs per month without a service contract.