Guest

Preview Tool

Cisco Bug: CSCvs36043 - MKA-MACSEC: C9300 key server, 10Gig intf between IE5000 & 9300: traffic loss after shut / no shut

Last Modified

Jan 13, 2020

Products (1)

  • Cisco Industrial Ethernet 5000 Series Switches

Known Affected Releases

15.2(7)E

Description (partial)

Symptom:
When C9300 act as key server, traffic loss between IE5K and C9300 devices on doing simultaneous shut and no shut on the 10Gig ports.

Conditions:
Software Conditions: Known to occur on IE release(s) : 15.2(7)E1

When 10G uplinks interfaces are connected between 9300 and IE5000 , with PSK based MKA macsec.
Traffic lose is seen after performing " shut/no shut" on either sides of macsec link.
macsec session is " SECURE" , but ping will fail.
Issue is seen only when 9300 acting act key server.
Issue is seen only with 10G uplink interfaces.

Hardware models impacted: IE5000 and C9300
Bug details contain sensitive information and therefore require a Cisco.com account to be viewed.

Bug Details Include

  • Full Description (including symptoms, conditions and workarounds)
  • Status
  • Severity
  • Known Fixed Releases
  • Related Community Discussions
  • Number of Related Support Cases
Bug information is viewable for customers and partners who have a service contract. Registered users can view up to 200 bugs per month without a service contract.