Guest

Preview Tool

Cisco Bug: CSCvs99063 - N36180 accepts egress RACL configuration without available TCAM space

Last Modified

Jun 21, 2020

Products (1)

  • Cisco Nexus 9000 Series Switches

Known Affected Releases

7.0(3)F3(5)

Description (partial)

Symptom:
Customer configures routed access list (racl) on outgoing direction on the switch. e.g. on SVI interface. 

Even though there is no egress racl entry in the tcam table in 7.x release it accepts the config. 

Customer then decides to upgrade the switch from 7.x to 9.x.

On 9.x release it has egress racl entry in the tcam region however it is set to 0. So when the switch load the configuration with egress racl it throws error saying

020 Feb 11 00:26:36  %$ VDC-1 %$ %ACLQOS-SLOT1-2-ACLQOS_OOTR: Tcam resource exhausted: Egress IPV4 RACL [e-racl]


As a result the all of the interfaces on that switch cannot be brought up until the workaround is applied.

Conditions:
Customer is running 7.0(3)F3(4) and configured egress racl on the switch.

Customer upgrades from 7.x to 9.x release without allocating any entries for e-racl in the tcam table. 

As soon as the switch is reloaded the issue is seen.
Bug details contain sensitive information and therefore require a Cisco.com account to be viewed.

Bug Details Include

  • Full Description (including symptoms, conditions and workarounds)
  • Status
  • Severity
  • Known Fixed Releases
  • Related Community Discussions
  • Number of Related Support Cases
Bug information is viewable for customers and partners who have a service contract. Registered users can view up to 200 bugs per month without a service contract.