Guest

Preview Tool

Cisco Bug: CSCvt71580 - Md5 key mismatch post IPN-Spine link flap leading to ucast/mcast traffic drop

Last Modified

Oct 24, 2020

Products (1)

  • Cisco Nexus 9000 Series Switches

Known Affected Releases

14.2(3.253) 14.2(4.271) 14.2(4.273) 15.0(0.118c) 15.0(0.121) 15.1(0.98)

Description (partial)

Symptom:
When the remote leaf switch POD redundancy feature is enabled, the RL tries to create a new coop connection with another POD's spine. This fabricSecurityTokenMo is periodically sent to all the nodes in the fabric every hour from the Cisco APIC and the fabricSecurityTokenMo's MD5 key is also sent, which is used for coop connection.

When there is a connectivity issue between the Cisco APIC cluster, sometimes the minority Cisco APIC sends the fabricSecurityTokenMo, which causes inconsistent md5 keys in some of the nodes.

Conditions:
This issue occurs when a new coop connection is initiated from a leaf switch to spine switch and both have different fabricSecurityTokenMos (that is, different MD5 keys).
Bug details contain sensitive information and therefore require a Cisco.com account to be viewed.

Bug Details Include

  • Full Description (including symptoms, conditions and workarounds)
  • Status
  • Severity
  • Known Fixed Releases
  • Related Community Discussions
  • Number of Related Support Cases
Bug information is viewable for customers and partners who have a service contract. Registered users can view up to 200 bugs per month without a service contract.