Guest

Preview Tool

Cisco Bug: CSCup42260 - SS ISR4351 : OSPFV3 Neighbor got broken with IPSec MD5 authentication

Last Modified

Feb 03, 2017

Products (25)

  • Cisco IOS
  • Cisco ASR 901-6CZ-FS-D Router
  • Cisco ASR 901-6CZ-F-D Router
  • Cisco ME 3600X-24TS-M Switch
  • Cisco ASR 901S-4SG-F-D Router
  • Cisco ASR 901-4C-FT-D Router
  • Cisco ASR 901S-2SG-F-AH Router
  • Cisco ASR 901S-2SG-F-D Router
  • Cisco ASR 901-6CZ-F-A Router
  • Cisco ASR 901-6CZ-FT-A Router
View all products in Bug Search Tool Login Required

Known Affected Releases

15.4(3)S 15.5(1)S

Description (partial)

Symptom:
OSPFV3 Neighbor got Broken when authentication is configured to protect OSPFV3 traffic.
While OSPFV3 is one scenario in which we hit this bug, it is seen other scenarios where we have IPSEC configured with authentication functionality only.The problem is isolated to Utah Sword and Dagger platforms only.

Conditions:
When IPSEC is configured as authentication-only.
This impacts IPSEC-AH cases as well as IPSEC-ESP cases when we have null ciphers.
One such example is :
While configuring IPSec MD5 Authentication on ipv6 ospfv3 using
 for eg:  ipv6 ospf authentication ipsec spi 0x1000 md5 123456789a123456789b123456789c12
The problem is isolated to Utah Sword and Dagger platforms only.
Bug details contain sensitive information and therefore require a Cisco.com account to be viewed.

Bug Details Include

  • Full Description (including symptoms, conditions and workarounds)
  • Status
  • Severity
  • Known Fixed Releases
  • Related Community Discussions
  • Number of Related Support Cases
Bug information is viewable for customers and partners who have a service contract. Registered users can view up to 200 bugs per month without a service contract.