Guest

Preview Tool

Cisco Bug: CSCvu45257 - SSH for Redundancy Management Interface doesn't block with CPU ACL

Last Modified

Jul 02, 2020

Products (1)

  • Cisco 5500 Series Wireless Controllers

Known Affected Releases

8.10(121.0)

Description (partial)

Symptom:
The Cisco Wireless LAN Controller (WLC) is configured for High Availability (HA) 
Stateful Switchover (SSO), Redundancy Management is configured over a dynamic 
interface and a CPU Access Control List (ACL) to block SSH. With this configuration 
it is possible that that Secure Shell (SSH) client can connect over the redundancy
interface regardless of the CPU ACL.

Conditions:
HA SSO 
Public IP address for the Redundancy management Interface(RMI).
H/W: AIR-CT5520
S/W: 8.10.121.0
Bug details contain sensitive information and therefore require a Cisco.com account to be viewed.

Bug Details Include

  • Full Description (including symptoms, conditions and workarounds)
  • Status
  • Severity
  • Known Fixed Releases
  • Related Community Discussions
  • Number of Related Support Cases
Bug information is viewable for customers and partners who have a service contract. Registered users can view up to 200 bugs per month without a service contract.