Preview Tool

Cisco Bug: CSCvv43180 - AFW Stalker Container Access Devices Without Username

Last Modified

Sep 30, 2020

Products (1)

  • Cisco Data Center Network Manager

Known Affected Releases


Description (partial)

Upgraded DCNM 11.3 to 11.4.
11.3 Worked fine and without issue prior to upgrade, no issues seen.
Repeated and continuous attempts to login to devices seen following upgrade.
Traced the IP down to the following container:
These docker containers are using an OOB IP from each compute node to try and login to the devices without a username/password (ISE sees this as just INVALID for the username).

After some more debugging it turns out the IP addresses are still showing up in the logs and doing some searching on docker it appears to be this container:
8aa2e3851322                   "/bin/ a..."   3 days ago          Up 3 days                               simagent_Cisco_afw.snzg8ucjmcmfjkghl8f0qdy7j.vwlq9nu8iuk7ddd6jesdvxodw
[root@compute-1 sysadmin]# docker inspect -f '{{range .NetworkSettings.Networks}}{{.IPAddress}}{{end}}' 8aa2e3851322
Bug details contain sensitive information and therefore require a account to be viewed.

Bug Details Include

  • Full Description (including symptoms, conditions and workarounds)
  • Status
  • Severity
  • Known Fixed Releases
  • Related Community Discussions
  • Number of Related Support Cases
Bug information is viewable for customers and partners who have a service contract. Registered users can view up to 200 bugs per month without a service contract.