Guest

Preview Tool

Cisco Bug: CSCvs60320 - N5K/N6K: ACLs with TCP/UDP port numbers prevent switch profile synchronization

Last Modified

Jan 24, 2020

Products (1)

  • Cisco Nexus 5000 Series Switches

Known Affected Releases

7.3(5)N1(1) 7.3(6)N1(1)

Description (partial)

Symptom:
A pair of Nexus 5000 or 6000 devices configured with switch profiles (also known as "config sync") will fail to synchronize their configuration if ACL configuration is committed that contains TCP/UDP port numbers ("80", "123", "25", etc.) instead of port names (such as "www", "ntp", "smtp", etc.). The configuration containing the TCP/UDP port numbers themselves will commit without issue - however, subsequent configuration changes will fail to synchronize.

Conditions:
1. Two Nexus 5000 or 6000 devices
2. Both devices are configured together in a switch-profile and are synchronizing their configuration
3. ACL configuration committed through the switch-profile that contains TCP/UDP port numbers ("80", "123", "25", etc.) instead of names (such as "www", "ntp", "smtp" etc.) is present 
4. Further configuration synchronized through the switch-profile fails to commit.
Bug details contain sensitive information and therefore require a Cisco.com account to be viewed.

Bug Details Include

  • Full Description (including symptoms, conditions and workarounds)
  • Status
  • Severity
  • Known Fixed Releases
  • Related Community Discussions
  • Number of Related Support Cases
Bug information is viewable for customers and partners who have a service contract. Registered users can view up to 200 bugs per month without a service contract.