Guest

Preview Tool

Cisco Bug: CSCvs92068 - Upgrade from 14.2(1g) to 14.2(3j) Breaks In-Band Access

Last Modified

Aug 27, 2020

Products (25)

  • Cisco Nexus 9000 Series Switches
  • Cisco Nexus 9516 Switch
  • Cisco Nexus 93108TC-FX Switch
  • Cisco Nexus 9396TX Switch
  • Cisco Nexus 9396PX Switch
  • Cisco Nexus 93240YC-FX2 Switch
  • Cisco Nexus 93120TX Switch
  • Cisco Nexus 9504 Switch
  • Cisco Nexus 9372TX-E Switch
  • Cisco Nexus 9332C Switch
View all products in Bug Search Tool Login Required

Known Affected Releases

14.2(3j)

Description (partial)

Symptom:
After upgrading, leaf switch in-band management addresses cannot be accessed using SSH. Traffic is dropped by the iptables. This can be verified as root with the following commands:

iptables -N LOGGING
iptables -A INPUT -j LOGGING
iptables -A LOGGING -j LOG --log-prefix "IPTables-Dropped: " --log-level 4
iptables -A LOGGING -j DROP
dmesg -T | grep "Dropped"

Conditions:
The following conditions must be met:

- Shared L3Out (vrf-1)
- Global contract
- In-band EPG (vrf-2)
- Release 14.2(3) or later
Bug details contain sensitive information and therefore require a Cisco.com account to be viewed.

Bug Details Include

  • Full Description (including symptoms, conditions and workarounds)
  • Status
  • Severity
  • Known Fixed Releases
  • Related Community Discussions
  • Number of Related Support Cases
Bug information is viewable for customers and partners who have a service contract. Registered users can view up to 200 bugs per month without a service contract.