Cisco Cisco IOS Software Release 12.4(23)
418
Caveats for Cisco IOS Release 12.4
OL-7656-15 Rev. J0
Resolved Caveats—Cisco IOS Release 12.4(10c)
•
CSCsf20947
Symptoms: A default route that is defined by the neighbor default-originate command may be
ignored by the BGP neighbor.
ignored by the BGP neighbor.
Conditions: This symptom is observed on a Cisco router after a route flap in the network causes the
default route to be relearned.
default route to be relearned.
Workaround: Manually clear the BGP neighbor to enable the router to correctly relearn the default
route.
route.
•
CSCsg00860
Symptoms: Enabling NAT outside on the public interface terminates the VPN connection as
GREoverIPSEC. Inbound ACL applied on the public interface starts to drop decrypted GRE traffic.
GREoverIPSEC. Inbound ACL applied on the public interface starts to drop decrypted GRE traffic.
Conditions: This symptom has been observed with the use of IP NAT outside on the public VPN
interface.
interface.
Workaround: There are 2 workarounds:
1.
Configure NAT translations for all traffic, to force NAT processing on the packet even if no
address will actually be translated. Example:
address will actually be translated. Example:
ip nat inside source static 172.16.68.5 172.16.68.5
It is not a scalable workaround but may work for some deployments.
2.
Configure an additional ACL entry in the inbound access-list to permit the incoming GRE
traffic.
traffic.
•
CSCsh02161
Symptoms: A Route Reflector (RR) does not withdraw a prefix that redistributes itself even if this
prefix is removed from the BGP table.
prefix is removed from the BGP table.
Condition: This symptom is observed on a Cisco router that functions as an RR that advertises two
of the same prefixes with different Route Distinguishers (RDs) when one of these prefixes
redistributes itself and when the other prefix is a route that is learned from an RR client via iBGP.
of the same prefixes with different Route Distinguishers (RDs) when one of these prefixes
redistributes itself and when the other prefix is a route that is learned from an RR client via iBGP.
Workaround: There is no workaround.
•
CSCsh80678
Symptoms: New or flapping IGP routes may be injected into BGP even though no corresponding
network statements exist.
network statements exist.
Conditions: This symptom is observed on a Cisco router that runs Cisco IOS Release 12.3(22) or a
later release when the auto-summary command is enabled for BGP.
later release when the auto-summary command is enabled for BGP.
Workaround: Enter the no auto-summary command.
•
CSCsh90153
Symptoms: Connectivity is lost through a router when traffic is processed twice by NAT.
Conditions: This symptom is observed on a Cisco router that runs Cisco IOS Release 12.4(8a), that
is configured for NAT and PBR, and that has a firewall feature enabled. Under certain conditions,
traffic is processed twice by NAT when it does not need to be.
is configured for NAT and PBR, and that has a firewall feature enabled. Under certain conditions,
traffic is processed twice by NAT when it does not need to be.
Workaround: Remove the firewall configuration from the router.
Further Problem Description: Syslogs and the output of the show ip nat translation command show
that traffic that is processed twice by NAT does not traverse the router.
that traffic that is processed twice by NAT does not traverse the router.