RE: [nsp] ACL stop working

From: Jeff Moyer (jeffm@loudeye.com)
Date: Tue Feb 26 2002 - 18:39:59 EST


Try removing and readding access groups to interface after enabling DCEF..

In my situation - 12.0(17)S - 7513, if the router reboots or you toggle CEF
distributed the access-lists stop working until you

interface FastEthernet9/1/0
 no ip access-group fa_9_0_in in
 no ip access-group fa_9_0_out out
 ip access-group fa_9_0_in in
 ip access-group fa_9_0_out out
exit

Cisco tac admitted it, but would not put it in writing or give me the bug
number...

-----Original Message-----
From: FreeLSD [mailto:dimka@freelsd.net]
Sent: Tuesday, February 26, 2002 11:21 AM
To: cisco-nsp@puck.nether.net
Subject: [nsp] ACL stop working

75xx
IOS 12.0(19)ST2 (same for 12.0.18S*)
RSP8 with VIP4-80 (1 FastEthernet)
BGP, OSPF
extended ACL on interfaces FastEthernet (in/out, not compiled/compiled).

if cisco running with 'ip cef distribute' all access-lists stop working at
all.
with 'ip cef' seems worked right.

did anybody have any idea what bug ID is it?

Signed,
Dimka



This archive was generated by hypermail 2b29 : Sun Aug 04 2002 - 04:13:34 EDT