Guest

Preview Tool

Cisco Bug: CSCuq59582 - ASA:Multicast traffic silently dropped due to Promiscuous Mode: Disabled

Last Modified

Nov 08, 2016

Products (1)

  • Cisco ASA 5500-X Series Firewalls

Known Affected Releases

8.4(7.3)

Description (partial)

Symptom:
ASA 5585 SSP-60, running software version 8.4.7.3 drops Mcast data packets silently due to  "Multicast Promiscuous Mode": being Disabled.


BGL-Q-02-ASA5500-3# show controller tenGigabitEthernet 0/6 | in Prom
   Unicast Promiscuous Mode: Disabled (5)
   Multicast Promiscuous Mode: Disabled (0)
BGL-Q-02-ASA5500-3# show controller tenGigabitEthernet 0/7 | in Prom
   Unicast Promiscuous Mode: Disabled (5)
   Multicast Promiscuous Mode: Disabled (0)

Conditions:
This has only been observed in ASA software version 8.4.7 software version is is triggered under following conditions.

This has only been observed if ASA interface which will receive mcast data packets is configured with ipv6 address and  multicast-routing is enabled at the same time and ASA is reloaded.

interface Port-channel2
 ipv6 address 1eee::1/64 standby 1eee::2/64
 multicast-routing
!

Now after enabling if we check

BGL-Q-02-ASA5500-3# show controller tenGigabitEthernet 0/6 | in Prom
   Unicast Promiscuous Mode: Disabled (5)
   Multicast Promiscuous Mode: Enabled (1)
BGL-Q-02-ASA5500-3# show controller tenGigabitEthernet 0/7 | in Prom
   Unicast Promiscuous Mode: Disabled (5)
   Multicast Promiscuous Mode: Enabled (1)


2. Reload ASA.

3. After reload Multicast Promiscuous mode will  be disabled .

BGL-Q-02-ASA5500-3# show controller tenGigabitEthernet 0/6 | in Prom
   Unicast Promiscuous Mode: Disabled (5)
   Multicast Promiscuous Mode: Disabled (0)
BGL-Q-02-ASA5500-3# show controller tenGigabitEthernet 0/7 | in Prom
   Unicast Promiscuous Mode: Disabled (5)
   Multicast Promiscuous Mode: Disabled (0)
Bug details contain sensitive information and therefore require a Cisco.com account to be viewed.

Bug Details Include

  • Full Description (including symptoms, conditions and workarounds)
  • Status
  • Severity
  • Known Fixed Releases
  • Related Community Discussions
  • Number of Related Support Cases
Bug information is viewable for customers and partners who have a service contract. Registered users can view up to 200 bugs per month without a service contract.