Guest

Preview Tool

Cisco Bug: CSCum88262 - DX650 VPN Client not tagging TLS/SSL and DTLS packets with DSCP values

Last Modified

May 04, 2016

Products (2)

  • Cisco DX650

Known Affected Releases

10.0(1)

Description (partial)

Symptom:
Embedded Anyconnect client  does not care about the correctly sourced RTP, TFTP, SIP, HTTP, HTTPS packets from the DX650 when encapsulation them with the SSL encyption header. All TLS and DTLS packets send out from the DX650 via the VPN connection are marked with DSCP 0 instead of EF for RTP, CS3 for SIP signaling.

For normal traffic without VPN 
SIP traffic marked with DSCP CS3 and RTP traffic marked with DSCP EF

Conditions:
SSL VPN . DX650 is the tunnel end device
Bug details contain sensitive information and therefore require a Cisco.com account to be viewed.

Bug Details Include

  • Full Description (including symptoms, conditions and workarounds)
  • Status
  • Severity
  • Known Fixed Releases
  • Related Community Discussions
  • Number of Related Support Cases
Bug information is viewable for customers and partners who have a service contract. Registered users can view up to 200 bugs per month without a service contract.