Guest

Preview Tool

Cisco Bug: CSCvv82316 - VXLAN - RIB failing to update after tracked static route is suspended

Last Modified

Oct 13, 2020

Products (1)

  • Cisco Nexus 9000 Series Switches

Known Affected Releases

9.3(5)

Description (partial)

Symptom:
The wrong route is installed in the RIB instead of the routes from the spine after the tracked static route is suspended, as shown below:



DC1_BA_Leaf1# show ip bgp 70.1.1.0 vrf vxlan-900600 
BGP routing table information for VRF vxlan-900600, address family IPv4 Unicast
BGP routing table entry for 70.1.1.0/24, version 1207
Paths: (3 available, best #3)
Flags: (0x880c0002) (high32 0x000020) on xmit-list, is not in urib, exported
  vpn: version 3370, (0x00000000100002) on xmit-list

  Path type: internal, path is valid, not best reason: Weight, no labeled nexthop
             Imported from 10.1.1.13:5:[5]:[0]:[0]:[24]:[70.1.1.0]/224 
  AS-Path: NONE, path sourced internal to AS
    10.1.2.13 (metric 5) from 10.1.1.5 (10.1.1.5)
      Origin incomplete, MED 0, localpref 100, weight 0
      Received label 900600
      Extcommunity: RT:64512:900600 ENCAP:8 Router MAC:ac3a.6763.b11f
      Originator: 10.1.1.13 Cluster list: 10.1.1.5 10.1.1.7 

  Path type: internal, path is valid, not best reason: Router Id, no labeled nexthop
             Imported from 10.1.1.14:5:[5]:[0]:[0]:[24]:[70.1.1.0]/224 
  AS-Path: NONE, path sourced internal to AS
    10.1.2.14 (metric 5) from 10.1.1.5 (10.1.1.5)
      Origin incomplete, MED 0, localpref 100, weight 0
      Received label 900600
      Extcommunity: RT:64512:900600 ENCAP:8 Router MAC:ac3a.672a.515b
      Originator: 10.1.1.14 Cluster list: 10.1.1.5 10.1.1.7 

  Advertised path-id 1, VPN AF advertised path-id 1
  Path type: redist, path is valid, is best path, no labeled nexthop
  AS-Path: NONE, path locally originated
    0.0.0.0 (metric 0) from 0.0.0.0 (10.1.3.16)
      Origin incomplete, MED 0, localpref 100, weight 32768
      Extcommunity: RT:64512:900600

  VRF advertise information:
  Path-id 1 advertised to peers:
    9.6.6.2            10.186.177.34      10.186.177.38  

  VPN AF advertise information:
  Path-id 1 not advertised to any peer
   
DC1_BA_Leaf1# show ip route 70.1.1.0 vrf vxlan-900600 
IP Route Table for VRF "vxlan-900600"
'*' denotes best ucast next-hop
'**' denotes best mcast next-hop
'[x/y]' denotes [preference/metric]
'%<string>' in via output denotes VRF <string>

0.0.0.0/0, ubest/mbest: 1/0
    *via 10.186.177.38, [20/0], 15:40:08, bgp-64512, external, tag 64562
DC1_BA_Leaf1#

Conditions:
The issue is seen after multiple HA fail-overs performed on a firewall reachable through a tracked static route.
Bug details contain sensitive information and therefore require a Cisco.com account to be viewed.

Bug Details Include

  • Full Description (including symptoms, conditions and workarounds)
  • Status
  • Severity
  • Known Fixed Releases
  • Related Community Discussions
  • Number of Related Support Cases
Bug information is viewable for customers and partners who have a service contract. Registered users can view up to 200 bugs per month without a service contract.