Guest

Preview Tool

Cisco Bug: CSCuq35873 - VSG policy not fully applied if FQDN of NTP server cannot be resolved

Last Modified

Sep 09, 2019

Products (1)

  • Cisco Virtual Security Gateway for Nexus 1000V Series Switch

Known Affected Releases

4.2(1)VSG2(1.1) 5.2(1)VSG2(1.1)

Description (partial)

Symptom:
A VSG does not receive a complete policy from NSC and the compute firewall in NSC is stuck in a "failed-to-apply" state when pushing a device profile that references a FQDN-based NTP policy. This occurs if VSG cannot resolve the FQDN of the NTP server via DNS for any reason. This includes scenarios where no valid DNS server was configured or the NTP server name was misspelled.

Conditions:
A NSC-managed VSG must be configured with a NTP policy in its device profile that uses a FQDN-based NTP server name. The name of the NTP server must not resolve correctly via DNS.
Bug details contain sensitive information and therefore require a Cisco.com account to be viewed.

Bug Details Include

  • Full Description (including symptoms, conditions and workarounds)
  • Status
  • Severity
  • Known Fixed Releases
  • Related Community Discussions
  • Number of Related Support Cases
Bug information is viewable for customers and partners who have a service contract. Registered users can view up to 200 bugs per month without a service contract.