Preview Tool

Cisco Bug: CSCur00762 - ASR1k - incorrect traffic classification after HW TCAM is exhausted

Last Modified

Nov 27, 2020

Products (1)

  • Cisco ASR 1000 Series Aggregation Services Routers

Known Affected Releases


Description (partial)

On an ASR1K series router, if IPSec is enabled, then cleartext traffic may be 
mis-classified and subsequently dropped when the HW TCAM resources are

This occurs when the router falls back to using the SW TCAM. The following 
log messages can be seen before the failure:

%CPP_FM-3-CPP_FM_TCAM_WARNING: SIP0: cpp_sp:  TCAM limit exceeded: HW TCAM cannot hold Class group ipsec-rule:  Use SW TCAM instead.
Bug details contain sensitive information and therefore require a account to be viewed.

Bug Details Include

  • Full Description (including symptoms, conditions and workarounds)
  • Status
  • Severity
  • Known Fixed Releases
  • Related Community Discussions
  • Number of Related Support Cases
Bug information is viewable for customers and partners who have a service contract. Registered users can view up to 200 bugs per month without a service contract.