Guest

Preview Tool

Cisco Bug: CSCvu61024 - ACI F1801 number of Rules failed to be programmed in hardware

Last Modified

Oct 03, 2020

Products (22)

  • Cisco Nexus 9000 Series Switches
  • Cisco Nexus 9516 Switch
  • Cisco Nexus 9396TX Switch
  • Cisco Nexus 9396PX Switch
  • Cisco Nexus 93108TC-FX Switch
  • Cisco Nexus 93120TX Switch
  • Cisco Nexus 93108TC-EX Switch
  • Cisco Nexus 9504 Switch
  • Cisco Nexus 9372TX-E Switch
  • Cisco Nexus 9332PQ Switch
View all products in Bug Search Tool Login Required

Known Affected Releases

13.1(2m)

Description (partial)

Symptom:
Zoning-rules are not programmed in the hardware after reloading a switch.

In the policy manager, you should see messages similar to the following examples:

[2020 Jun 10 12:06:42.050898264:1650:policy_mgr_get_svc_key_from_policy_elem:1504:T] sec key (rule id) (4179)
[2020 Jun 10 12:06:42.051073835:1651:policy_mgr_get_svc_key_from_policy_elem:1561:T] grp dn : sys/svcredir/inst/destgrp-4
[2020 Jun 10 12:06:42.051172283:1652:policy_mgr_get_svc_key_from_policy_elem:1569:E] Failed to lookup prikey from redir grp : not enough memory
[2020 Jun 10 12:06:42.051279466:1653:policy_mgr_add_match_action_node:240:E] policy_mgr_add_match_action_node(): pbr failed to get svc key from PE:(1)not enough memory

Because no action node is linked to the ifelse node of this rule, ACLQOS cannot verify this rule and aborts the session.

Conditions:
In this case, these zoning-rules belonged to a VRF/tenant that was previously created and had all the configurations, then it was decided to move this config. to another tenant/vrf while leaving all service graph/EPG/policies in this old tenant/VRF.
Bug details contain sensitive information and therefore require a Cisco.com account to be viewed.

Bug Details Include

  • Full Description (including symptoms, conditions and workarounds)
  • Status
  • Severity
  • Known Fixed Releases
  • Related Community Discussions
  • Number of Related Support Cases
Bug information is viewable for customers and partners who have a service contract. Registered users can view up to 200 bugs per month without a service contract.