Preview Tool

Cisco Bug: CSCvh58034 - 3750x Switch freeze with dot1x configuration

Last Modified

Sep 17, 2019

Products (1)

  • Cisco IOS

Known Affected Releases

15.2(2)E3 15.2(4)E3

Description (partial)

The below configuration is being applied to range of interfaces at a time. When the below configuration is being applied to upto 10 interfaces at a go, we do not see any impact, however when it was applied to 15 interfaces, switch freeze, and lose connectivity to the switch.

switchport voice detect cisco-phone full-duplex
ip arp inspection limit rate 100
small-frame violation-rate 1000
srr-queue bandwidth share 1 30 35 5
priority-queue out
authentication host-mode multi-auth
authentication order mab dot1x
authentication priority mab dot1x
authentication port-control auto
mls qos trust device cisco-phone
mls qos trust cos
dot1x pae authenticator
spanning-tree portfast
spanning-tree bpduguard enable
spanning-tree guard root
spanning-tree port-priority 0
spanning-tree cost 3
ip dhcp snooping limit rate 100
ip dhcp snooping information option allow-untrusted

On the console of the master switch we see garbage characters. We were able to login on one of the 4 switches in stack, where once we shut down the interfaces, the switch stack became normal.

If we unshut the ports, the switch does not freeze.

Integrating ISE with the 3750x stack
Bug details contain sensitive information and therefore require a account to be viewed.

Bug Details Include

  • Full Description (including symptoms, conditions and workarounds)
  • Status
  • Severity
  • Known Fixed Releases
  • Related Community Discussions
  • Number of Related Support Cases
Bug information is viewable for customers and partners who have a service contract. Registered users can view up to 200 bugs per month without a service contract.