Guest

Preview Tool

Cisco Bug: CSCvt28436 - TACACS Socket Timeout using VRF on Cat 4500 Series

Last Modified

Mar 13, 2020

Products (1)

  • Cisco IOS

Known Affected Releases

15.2(4)M6.2

Description (partial)

Symptom:
Trying SSH using TACACS failing with Socket Timeout
Customer is using VRF.
Same configuration works for 38xx works.
in Debugs we can see following:

Feb 18 20:38:24: TPLUS: Queuing AAA Authentication request 56 for processing
Feb 18 20:38:24: TPLUS(00000038) login timer started 1020 sec timeout
Feb 18 20:38:24: TPLUS: processing authentication start request id 56
Feb 18 20:38:24: TPLUS: Authentication start packet created for 56(prv_us_cyb_netadmin)
Feb 18 20:38:24: TPLUS: Using server 10.78.128.245
Feb 18 20:38:24: TPLUS(00000038)/0/NB_WAIT/254646A8: Started 5 sec timeout
Feb 18 20:38:29: TPLUS(00000038)/0/NB_WAIT/254646A8: timed out
Feb 18 20:38:29: TPLUS: Choosing next server X.X.X.X
Feb 18 20:38:29: TPLUS(00000038)/1/NB_WAIT/254646A8: Started 5 sec timeout
Feb 18 20:38:29: TPLUS(00000038)/254646A8: releasing old socket 0
Feb 18 20:38:29: TPLUS(00000038)/1/NB_WAIT/254646A8: Socket 1 is in wait state
Feb 18 20:38:34: TPLUS(00000038)/1/NB_WAIT/254646A8: timed out
Feb 18 20:38:34: TPLUS(00000038)/1/NB_WAIT/254646A8: timed out, clean up
Feb 18 20:38:34: TPLUS(00000038)/1/254646A8: Processing the reply packet
Feb 18 20:38:36: TPLUS: Queuing AAA Authentication request 56 for processing
Feb 18 20:38:36: TPLUS(00000038) login timer started 1020 sec timeout
Feb 18 20:38:36: TPLUS: processing authentication start request id 56

Conditions:
TACACS using Cisco IOS Software, Catalyst 4500 L3 Switch  Software (cat4500e-ENTSERVICESK9-M), Version 15.2(4)E9, RELEASE SOFTWARE (fc2)
Bug details contain sensitive information and therefore require a Cisco.com account to be viewed.

Bug Details Include

  • Full Description (including symptoms, conditions and workarounds)
  • Status
  • Severity
  • Known Fixed Releases
  • Related Community Discussions
  • Number of Related Support Cases
Bug information is viewable for customers and partners who have a service contract. Registered users can view up to 200 bugs per month without a service contract.