Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
919
Views
0
Helpful
2
Replies

Problem with MAC learning on ASA, MAC moving between two bridge-groups

silemire
Level 1
Level 1

‎06-29-2011 06:32 PM - edited ‎03-11-2019 01:53 PM

Hi,

I'm running an ASA 5585 pair in transparent mode with two bridge-groups inside one context. The ASA is connected to a 6500 switch in VSS.

In the logs, I'm seeing the MAC of the VSS cluster moving between between the two outside interfaces of my two bridge-groups (same context). So, my traffic is getting dropped intermittently, as the ASA doesn't flood traffic on an unknown MAC.

For this particular problem, I've assigned MACs manually to the SVIs of the 6500.

However, I still have the same problem with routed multicast traffic going to a firewalled VLAN. The 6500 PFC always uses the VSS MAC when it rewrites the L2 packet header so it's not using the MAC I've specified on the SVI.

Is there any way to fix this? Should I be only using one bridge-group per context?

-Simon

Labels:
0 Helpful
2 Replies 2

mirober2
Cisco Employee
Cisco Employee

‎06-30-2011 07:56 AM

Hi Simon,

This issue is caused by the following bug:

CSCti13482 - BG: Same MAC-address not allowed in two different bridge groups

You should upgrade to 8.4(2) to get the fix for the bug and everything should work fine.

-Mike

0 Helpful

silemire
Level 1
Level 1
In response to mirober2

‎06-30-2011 09:15 AM

Thanks Mike,

I will upgrade my ASA as soon as possible.

-Simon

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card