Guest

Preview Tool

Cisco Bug: CSCvu70744 - N3500 - CoPP corruption with command "copp rate-limit disable" and reload

Last Modified

Jul 20, 2020

Products (65)

  • Cisco Nexus 3000 Series Switches
  • Cisco Nexus 9516 Switch
  • Cisco Nexus 3636C-R Switch
  • Cisco Nexus 3548 Switch
  • Cisco Nexus 92348GC-X Switch
  • Cisco Nexus 93600CD-GX Switch
  • Cisco Nexus 3548-X Switch
  • Cisco Nexus 3132Q-V Switch
  • Cisco Nexus 93108TC-FX Switch
  • Cisco Nexus 3064 Switch
View all products in Bug Search Tool Login Required

Known Affected Releases

9.3(4)

Description (partial)

Symptom:
Inter-Vlan or routing across Nexus 3500 may be impacted due to no Glean performed by hardware.
Following logs will be seen on bootup:
N3500-1 %$ VDC-1 %$ %COPP-2-COPP_RATELIMIT_DISABLED: CoPP rate-limit is disabled for all classes. Hence CPU is vulnerable to traffic attacks.Please do "no copp rate-limit disable" as soon as possible
N3500-1 %$ VDC-1 %$ %COPP-2-COPP_INVALID_POLICY_TEMPLATE: Current CoPP policy is missing system default class-maps. Plesae run "setup" command to configure missing class-maps.

HSRP/VRRP too are impacted

Conditions:
copp rate-limit disable
+
reload

Seen with release 9.3.4 though other 9.3.x may be affected as well
Bug details contain sensitive information and therefore require a Cisco.com account to be viewed.

Bug Details Include

  • Full Description (including symptoms, conditions and workarounds)
  • Status
  • Severity
  • Known Fixed Releases
  • Related Community Discussions
  • Number of Related Support Cases
Bug information is viewable for customers and partners who have a service contract. Registered users can view up to 200 bugs per month without a service contract.