Guest

Preview Tool

Cisco Bug: CSCvs39559 - Reflexive ACL does not work on PATed packets in specific situation on IOS 15.7(3)M4a.

Last Modified

Sep 16, 2020

Products (1)

  • Cisco IOS

Known Affected Releases

15.7(3.1k)M4

Description (partial)

Symptom:
Reflexive ACL does not work on PATed packets in specific situation on IOS 15.7(3)M4a.
But it works well on IOS 15.3(3)M4.

Conditions:
This will occur when the router is configured as below.

1. An ACL is applied to inbound of PAT inside interface.
2. The ACL which described above has a rule containing masked address AND the masked address is overlapping with PAT internal address.
3. An Reflexive ACL is applied to PAT outside interface.
Bug details contain sensitive information and therefore require a Cisco.com account to be viewed.

Bug Details Include

  • Full Description (including symptoms, conditions and workarounds)
  • Status
  • Severity
  • Known Fixed Releases
  • Related Community Discussions
  • Number of Related Support Cases
Bug information is viewable for customers and partners who have a service contract. Registered users can view up to 200 bugs per month without a service contract.