Guest

Preview Tool

Cisco Bug: CSCur07071 - NAT44: deleted ZBFW rules breaks NAT44 rules that re-uses ZBFW ACLs

Last Modified

Aug 26, 2015

Products (1)

  • Cisco Prime Infrastructure

Known Affected Releases

2.1(0.0) 2.2

Description (partial)

Symptom:
NAT44 rules seems broken (i.e. references an ACL that doesn't exist on the device)

Conditions:
When a NAT44 rule is set to use a Prime Internally generated ACL that was generated by Prime to implement a Zone Based Firewall Policy or an AVC/QoS Policy.
When deleting those policies from Prime, the ACL will be removed with no warning that it is used by a NAT rule, leading to a broken NAT44 rule that is pointing to a deleted ACL.
Bug details contain sensitive information and therefore require a Cisco.com account to be viewed.

Bug Details Include

  • Full Description (including symptoms, conditions and workarounds)
  • Status
  • Severity
  • Known Fixed Releases
  • Related Community Discussions
  • Number of Related Support Cases
Bug information is viewable for customers and partners who have a service contract. Registered users can view up to 200 bugs per month without a service contract.