Guest

Preview Tool

Cisco Bug: CSCvu43055 - ISE 2.6 P3:ISE routing selects default route instead of more specific route when host in same subnet

Last Modified

Sep 03, 2020

Products (1)

  • Cisco Identity Services Engine

Known Affected Releases

2.6(0.903)

Description (partial)

Symptom:
ISE PSN will reply using default gateway route specified in that bond even though more specific route is present to the client

Conditions:
When bonding is enabled for ISE interfaces and default gateway is enabled for each bond. ISE selects default gateway instead of more specific rule even though client is in same subnet as ISE.

interface GigabitEthernet 0
  ipv6 address autoconfig
  ipv6 enable
  backup interface GigabitEthernet 1
  ip address 10.201.228.83 255.255.255.224

interface GigabitEthernet 2
  ipv6 address autoconfig
  ipv6 enable
  backup interface GigabitEthernet 3
  ip address 10.201.228.113 255.255.255.224

ISE will reply using default gateway in first entry to reach client even though it has more specfic entry (entry 4) to client.

test/admin# show ip route

Destination          Gateway              Iface
-----------          -------              -----
default              10.201.228.97        bond1
default              10.201.228.65        bond0
10.201.228.64/27     0.0.0.0              bond0
10.201.228.96/27     0.0.0.0              bond1
169.254.0.0/24       0.0.0.0              docker0
169.254.2.0/24       0.0.0.0              br-db0810c29a00
Bug details contain sensitive information and therefore require a Cisco.com account to be viewed.

Bug Details Include

  • Full Description (including symptoms, conditions and workarounds)
  • Status
  • Severity
  • Known Fixed Releases
  • Related Community Discussions
  • Number of Related Support Cases
Bug information is viewable for customers and partners who have a service contract. Registered users can view up to 200 bugs per month without a service contract.