Guest

Preview Tool

Cisco Bug: CSCvu57348 - IPSEC : Rekey collision caused IKESA delete

Last Modified

Jun 26, 2020

Products (1)

  • Cisco ASR 5000 Series

Known Affected Releases

21.19.2.75799

Description (partial)

Symptom:
IKESA  getting cleared and tunnel created again after rekey .

Following debug logs observed .

2020-Jun-02+04:58:28.309 [ikev2 122430 info] [1/0/24913 <ipsecmgr:78> ikev2_event2481] [context: saegw, contextID: 2]  [software internal system syslog] TSEL_SA Collision, Nonce Compared, Local TSEL 0x27b0a5a0 is being ignored, Ignoring ikev2_e_tselsa_rekey_tunnel_status_up() too
2020-Jun-02+04:58:28.309 [ikev2 122430 info] [1/0/24913 <ipsecmgr:78> ikev2_event:5077] [context: saegw, contextID: 2]  [software internal system syslog] Collision scenario, Proceed with Remote TSEL_SA Rekey Migration.



Conditions:
Configuring same rekey interval in both peer [ Ex  CP and UP ] in SX over and IPSEC  / SRP over IPSEC
Bug details contain sensitive information and therefore require a Cisco.com account to be viewed.

Bug Details Include

  • Full Description (including symptoms, conditions and workarounds)
  • Status
  • Severity
  • Known Fixed Releases
  • Related Community Discussions
  • Number of Related Support Cases
Bug information is viewable for customers and partners who have a service contract. Registered users can view up to 200 bugs per month without a service contract.