Guest

Preview Tool

Cisco Bug: CSCvi93261 - LPTS dropping TACACS traffic with inter-VRF leaking

Last Modified

Jun 07, 2018

Products (1)

  • Cisco ASR 9000 Series Aggregation Services Routers

Known Affected Releases

6.2.3.BASE

Description (partial)

Symptom:
Communication between the ASR9000 router and TACACS server does not work, due to LPTS policer dropping the packets sent by the TACACS server on the ingress linecard of ASR9000.

Conditions:
This is observed on ASR9000 when:
- tacacs source-interface and server group are configured in a VRF different than the VRF in which the direct outgoing interface toward the TACACS-server is.
- Inter-VRF routing is done on that same ASR9000 router
- Router is running XR release 5.3 or higher. It is not observed on 5.1 or older XR releases

Other XR platforms may also be affected.
Bug details contain sensitive information and therefore require a Cisco.com account to be viewed.

Bug Details Include

  • Full Description (including symptoms, conditions and workarounds)
  • Status
  • Severity
  • Known Fixed Releases
  • Related Community Discussions
  • Number of Related Support Cases
Bug information is viewable for customers and partners who have a service contract. Registered users can view up to 200 bugs per month without a service contract.