Preview Tool

Cisco Bug: CSCvv49684 - DNAC NDP failing to choose right MAC for multiple ISE sessions with the same IP

Last Modified

Sep 03, 2020

Products (1)

  • Cisco DNA Center

Known Affected Releases

Cyclops DNAC-Cyclops

Description (partial)

Hydra is not detecting spoofing because NDP nf-stream events are populated with wrong Client MAC address and as a result Hydra is not processing those flows (and not detecting the attack).

Have multiple sessions on ISE with the same IP address (and different MAC), that is causing NDP to choose the wrong session for IP-MAC bindings.
Bug details contain sensitive information and therefore require a account to be viewed.

Bug Details Include

  • Full Description (including symptoms, conditions and workarounds)
  • Status
  • Severity
  • Known Fixed Releases
  • Related Community Discussions
  • Number of Related Support Cases
Bug information is viewable for customers and partners who have a service contract. Registered users can view up to 200 bugs per month without a service contract.