Guest

Preview Tool

Cisco Bug: CSCvh58034 - 3750x Switch freeze with dot1x configuration

Last Modified

Aug 09, 2019

Products (1)

  • Cisco IOS

Known Affected Releases

15.2(2)E3 15.2(4)E3

Description (partial)

Symptom:
The below configuration is being applied to range of interfaces at a time. When the below configuration is being applied to upto 10 interfaces at a go, we do not see any impact, however when it was applied to 15 interfaces, switch freeze, and lose connectivity to the switch.

switchport voice detect cisco-phone full-duplex
ip arp inspection limit rate 100
small-frame violation-rate 1000
srr-queue bandwidth share 1 30 35 5
priority-queue out
authentication host-mode multi-auth
authentication order mab dot1x
authentication priority mab dot1x
authentication port-control auto
mab
mls qos trust device cisco-phone
mls qos trust cos
dot1x pae authenticator
spanning-tree portfast
spanning-tree bpduguard enable
spanning-tree guard root
spanning-tree port-priority 0
spanning-tree cost 3
ip dhcp snooping limit rate 100
ip dhcp snooping information option allow-untrusted

On the console of the master switch we see garbage characters. We were able to login on one of the 4 switches in stack, where once we shut down the interfaces, the switch stack became normal.

If we unshut the ports, the switch does not freeze.

Conditions:
Integrating ISE with the 3750x stack
Bug details contain sensitive information and therefore require a Cisco.com account to be viewed.

Bug Details Include

  • Full Description (including symptoms, conditions and workarounds)
  • Status
  • Severity
  • Known Fixed Releases
  • Related Community Discussions
  • Number of Related Support Cases
Bug information is viewable for customers and partners who have a service contract. Registered users can view up to 200 bugs per month without a service contract.