Guest

Preview Tool

Cisco Bug: CSCuq58285 - IPv6 traffic and rekey fails on childsa after switch over

Last Modified

Dec 26, 2016

Products (1)

  • Cisco ASR 9000 Series Aggregation Services Routers

Known Affected Releases

17.0(1)

Description (partial)

N/A

Symptom:
IPv6 rekey fails on childsa after switch over

Conditions:
Upstream IPv6 traffic fails on One of the 5 Child SA's after the switchover and also the rekey fails and tunnel gets deleted.

1> Create an IPv6 tunnel with 5 Child SA's with an IKE rekey time of 420 Sec on an L3L3 HA setup
2> Do a switchover
3> On new active the upstream traffic fails on On one Child SA (The traffic flows fine on rest of the 4 Child SA's) and when the rekey time expires, the rekey is initiated but the rekey request doesn't reach the peer, Since there is no issue with the end to end ping during the initiation of rekey request, this seems to be an issue with SecGW.
Bug details contain sensitive information and therefore require a Cisco.com account to be viewed.

Bug Details Include

  • Full Description (including symptoms, conditions and workarounds)
  • Status
  • Severity
  • Known Fixed Releases
  • Related Community Discussions
  • Number of Related Support Cases
Bug information is viewable for customers and partners who have a service contract. Registered users can view up to 200 bugs per month without a service contract.