Guest

Preview Tool

Cisco Bug: CSCvu43228 - NCS5502 and J - the vlan_tag_id has changed into initial_vid and the vlan IDs are missing

Last Modified

Sep 02, 2020

Products (1)

  • Cisco Network Convergence System 5500 Series

Known Affected Releases

6.6.3.BASE

Description (partial)

Symptom:
When applying L2 ACL in l2transport subinterfaces on a NCS5502 it’ s not matching the VLAN. Traffic from the permitted source mac is allowed in any subinterface with any VLAN TAG.

RP/0/RP0/CPU0:LAB-PE2-NCS5502#sh run ethernet-services access-list access-PE2-BE1
Fri May 15 10:58:57.462 BRT
ethernet-services access-list access-PE2-BE1
 10 permit host 5ce0.fe02.0002 any 800 vlan 2002
 11 permit host 5ce0.fe02.0002 any 806 vlan 2002
 12 permit host 5ce0.fe02.0002 any 86dd vlan 2002
 1000 deny any any
!

RP/0/RP0/CPU0:LAB-PE2-NCS5502#sh run interface bundle-ether 1.*
Fri May 15 10:59:30.674 BRT
interface Bundle-Ether1.1002 l2transport
 encapsulation dot1q 1002
 rewrite ingress tag pop 1 symmetric
 ethernet-services access-group access-PE2-BE1 ingress
!
interface Bundle-Ether1.2000 l2transport
 encapsulation dot1q 2000
 rewrite ingress tag pop 1 symmetric
 ethernet-services access-group access-PE2-BE1 ingress
!
interface Bundle-Ether1.2001 l2transport
 encapsulation dot1q 2001
 rewrite ingress tag pop 1 symmetric
 ethernet-services access-group access-PE2-BE1 ingress
!
RP/0/RP0/CPU0:LAB-PE2-NCS5502#sh l2vpn forwarding bridge-domain LAB:cev4 mac-address location 0/0/CPU0
Fri May 15 11:00:02.591 BRT
 To Resynchronize MAC table from the Network Processors, use the command...
    l2vpn resynchronize forwarding mac-address-table location <r/s/i>

Mac Address    Type    Learned from/Filtered on    LC learned Resync Age/Last Change Mapped to
-------------- ------- --------------------------- ---------- ---------------------- --------------
5ce0.aaaa.aa04 EVPN    BD id: 0                    N/A        N/A                    N/A
5ce0.aaaa.aa44 EVPN    BD id: 0                    N/A        N/A                    N/A
5ce0.fe01.0001 EVPN    BD id: 0                    N/A        N/A                    N/A
5ce0.fe02.0002 dynamic BE1.2000                    N/A        15 May 10:59:23        N/A

Conditions:
multi-NPU Systems and LCs in NCS5500 family.
Bug details contain sensitive information and therefore require a Cisco.com account to be viewed.

Bug Details Include

  • Full Description (including symptoms, conditions and workarounds)
  • Status
  • Severity
  • Known Fixed Releases
  • Related Community Discussions
  • Number of Related Support Cases
Bug information is viewable for customers and partners who have a service contract. Registered users can view up to 200 bugs per month without a service contract.