[c-nsp] Drop rule at the end of CoPP conflicts with MAC learning

"Rolf Hanßen" nsp at rhanssen.de
Tue Jul 9 07:45:24 EDT 2013 

Hello,

exactly that was the plan.
We keep CoPP a bit open until the next bigger maintenance work and then
will try another IOS.

regards
Rolf

> I would try switching code versions.
> It sounds like you are hitting a bug.
> Given the fact that other boxes running different code are behaving
> normally,
> The only conclusion is that it is a software issue.
> Keep in mind that TAC may not have it listed as a known bug even though it
> was fixed.
>
> LR Mack McBride
> Network Architect
>
> -----Original Message-----
> From: cisco-nsp [mailto:cisco-nsp-bounces at puck.nether.net] On Behalf Of
> "Rolf Hanßen"
> Sent: Monday, July 01, 2013 6:44 AM
> To: Nick Hilliard
> Cc: cisco-nsp at puck.nether.net
> Subject: Re: [c-nsp] Drop rule at the end of CoPP conflicts with MAC
> learning
>
> Hi,
>
> If I had a support contract for that box I would open a tac case now. ;)
>
> kind regards
> Rolf
>
>> On 28/06/2013 17:55, "Rolf Hanßen" wrote:
>>> does not look like this is a general hardware version issue.
>>
>> mmm, ok.  I would:
>>
>> - run a context diff on the configuration on each of these machines to
>> ensure that there are no syntactic differences
>>
>> - disable and then re-enable copp on the affected box to ensure that
>> it's reprogrammed correctly into the hardware (sometimes things get
>> messed up on the way down to the line cards)
>>
>> - compare the output of "show mls rate-limit" on all machines
>>
>> - check your platform acl tcam capacity using "show platform hardware
>> capacity acl", to ensure that you still have some acl tcam space
>> available for your copp config.
>>
>> If this doesn't point towards a resolution, I'd open up a tac case.
>>
>> Nick
>>
>>
>>> But I found a box with the same hardware versions:
>>>
>>> Mod  Port Model              Serial #    Versions
>>> ---- ---- ------------------ -----------
>>> -------------------------------------
>>>   5    2  WS-SUP720-3B       ########### Hw : 5.3
>>>                                          Fw : 8.4(2)
>>>                                          Sw : 12.2(33)SXJ
>>>                                          Sw1: 20.1(1)SXJ
>>>           WS-SUP720          ########### Hw : 2.6
>>>                                          Fw : 12.2(17r)SX7
>>>                                          Sw : 12.2(33)SXJ
>>>           WS-F6K-PFC3B       ########### Hw : 2.3
>>>
>>> This box also works as soon as I enter "mls rate-limit unicast cef
>>> glean 500".
>>>
>>> kind regards
>>> Rolf
>>>
>>>>> Any further ideas except hardware failure, buggy software or "try
>>>>> rebooting it" ?
>>>>
>>>> Could be a hardware issue.  As someone else mentioned (Phil?), this
>>>> particular feature is hardware revision dependent.
>>>>
>>>> What hardware versions are each of your SUP720s (show module)?
>>>>
>>>> Nick
>>>>
>>>>
>>>>
>>>
>>>
>>
>>
>
>
> _______________________________________________
> cisco-nsp mailing list  cisco-nsp at puck.nether.net
> https://puck.nether.net/mailman/listinfo/cisco-nsp
> archive at http://puck.nether.net/pipermail/cisco-nsp/
>

More information about the cisco-nsp mailing list