Loading...
Loading...
We are using Nexus Data Broker switches as ERSPAN Tunnel Terminal as well as local SPAN termination. If we have NDB leaf switch as the tunnel end point ( with tunnel profile config) irrespective of the packet size for truncation being configured on egress port - traffic does not go out for monitor session via redirect ACLs. Only when you remove the tunnel profile config and exclude the leaf switch as ERSPAN termination are we able to receive the traffic.
Nexus switch performing NDB functionality. OFM Tunnel Profile configured to terminate a tunnel mode, such as GRE or ERSPAN or VXLAN, etc. NDB Redirect ACL for egress SPAN to collector
Remove tunnel profile functionality to restore redirect ACL functionality.
*PSIRT Evaluation:* The Cisco PSIRT has evaluated this issue and determined it does not meet the criteria for PSIRT ownership or involvement. This issue will be addressed via normal resolution channels. If you believe that there is new information that would cause a change in the severity of this issue, please contact psirt@cisco.com for another evaluation. Additional information on Cisco's security vulnerability policy can be found at the following URL: http://www.cisco.com/en/US/products/products_security_vulnerability_policy.html
Click on a version to see all relevant bugs
Cisco Integration
Learn more about where this data comes from
Bug Scrub Advisor
Streamline upgrades with automated vendor bug scrubs
BugZero Enterprise
Wish you caught this bug sooner? Get proactive today.