Preview Tool

Cisco Bug: CSCun62561 - 6509 with SPA module experiences high CPU as packets are looped

Last Modified

Nov 27, 2020

Products (1)

  • Cisco Catalyst 6000 Series Switches

Known Affected Releases

12.2(33)SXI 12.2(33)SXJ2

Description (partial)

With 'vrf mode' enabled, 6509 running SXJ7 (or lower) experiences high CPU.  This occurs as a packet correctly does not match the crypto ACL, and then starts to loop within the 6500.  The overhead of processing the incoming packets repeatedly (which are stuck in the device and do not get forwarded or deleted) results in high CPU.

-This issue has been seen in customer production (and TAC lab) on 6509 running 12.2.33-SXJ2 and SXJ7
-6509 is using SPA with 'vrf mode'
-Packets arrive on inside vlan interface, do not match crypto ACL, and then start to loop within the device, never getting deleted.
-ELAM capture shows the packets looping
Bug details contain sensitive information and therefore require a account to be viewed.

Bug Details Include

  • Full Description (including symptoms, conditions and workarounds)
  • Status
  • Severity
  • Known Fixed Releases
  • Related Community Discussions
  • Number of Related Support Cases
Bug information is viewable for customers and partners who have a service contract. Registered users can view up to 200 bugs per month without a service contract.