Guest

Preview Tool

Cisco Bug: CSCvu32637 - Non-Intial V6 frag is not matching against "fragments" ace whn applied on core intf (MPLS De-Agg)

Last Modified

Aug 25, 2020

Products (1)

  • Cisco ASR 9000 Series Aggregation Services Routers

Known Affected Releases

7.2.1.BASE

Description (partial)

Symptom:
When an ipv6 acl is applied on interface and if rule has fragments keyword, match is not happening properly

ipv6 access-list V6FragTst
10 permit ipv6 any any fragments >> Should match here.
100 permit ipv6 any any (150802 matches)

Conditions:
This happens when incoming packet is MPLS packet coming with aggregate label and packet has fragment header. In this case, it should have done proper ACL along with IP lookup.
Bug details contain sensitive information and therefore require a Cisco.com account to be viewed.

Bug Details Include

  • Full Description (including symptoms, conditions and workarounds)
  • Status
  • Severity
  • Known Fixed Releases
  • Related Community Discussions
  • Number of Related Support Cases
Bug information is viewable for customers and partners who have a service contract. Registered users can view up to 200 bugs per month without a service contract.