Preview Tool

Cisco Bug: CSCvs96658 - SSH from external network behind L3Out or APIC not succeeding to Inband Mgmt IP address of leafs

Last Modified

Aug 27, 2020

Products (24)

  • Cisco Nexus 9000 Series Switches
  • Cisco Nexus 9516 Switch
  • Cisco Nexus 9396PX Switch
  • Cisco Nexus 9396TX Switch
  • Cisco Nexus 93108TC-FX Switch
  • Cisco Nexus 93240YC-FX2 Switch
  • Cisco Nexus 93120TX Switch
  • Cisco Nexus 93108TC-EX Switch
  • Cisco Nexus 9504 Switch
  • Cisco Nexus 9332C Switch
View all products in Bug Search Tool Login Required

Known Affected Releases


Description (partial)

SSH from external devices connected over L3Out does not successfully reach the in-band management IP address of the spine and leaf switches. From outside of the fabric, all in-band management devices are reachable through ping. From outside of the fabric, ssh to Cisco APIC works.

SSH from external devices connected over l3out tenant get dropped on leaf/spine due missing iptable rules.
External routes are shared to mgmt tenant VRF.
Bug details contain sensitive information and therefore require a account to be viewed.

Bug Details Include

  • Full Description (including symptoms, conditions and workarounds)
  • Status
  • Severity
  • Known Fixed Releases
  • Related Community Discussions
  • Number of Related Support Cases
Bug information is viewable for customers and partners who have a service contract. Registered users can view up to 200 bugs per month without a service contract.