Guest

Preview Tool

Cisco Bug: CSCvt65588 - FlexVPN IKEv2 Tunnel route removed after establishing new IKEv2 SA to another peer

Last Modified

Sep 10, 2020

Products (14)

  • Cisco IOS
  • Cisco ASR 1000 Series IOS XE SD-WAN
  • Cisco 4221 Integrated Services Router
  • Cisco 4331 Integrated Services Router
  • Cisco 4321 Integrated Services Router
  • Cisco ASR 1002-X Router
  • Cisco ASR 1001-X Router
  • Cisco 4351 Integrated Services Router
  • Cisco ISR 4000 Series IOS XE SD-WAN
  • Cisco ISR 1000 Series IOS XE SD-WAN
View all products in Bug Search Tool Login Required

Known Affected Releases

16.9.2

Description (partial)

Symptom:
After an IKEv2 SA is established to a new peer IP and the old IKEv2 SA with the previous peer IP is completely removed the route installed by IKEv2 to the remote peer is deleted

Conditions:
-Spoke primary interface used for IKEv2 flapped, with the spoke getting a new source IP (backup). Server assigns the spoke a single static IP.
-FlexVPN IKEv2
-Head End Router running a release above 16.3.1a
Bug details contain sensitive information and therefore require a Cisco.com account to be viewed.

Bug Details Include

  • Full Description (including symptoms, conditions and workarounds)
  • Status
  • Severity
  • Known Fixed Releases
  • Related Community Discussions
  • Number of Related Support Cases
Bug information is viewable for customers and partners who have a service contract. Registered users can view up to 200 bugs per month without a service contract.