Re: SSM 4GE - mac address

llgmagdeburg · ‎09-29-2010

Hi all,

last week i setup a brand new ASA 5540 (with SSM 4GE) 2GB in my lab from scratch - out of the box.

ASA 8.3(2) 8.2(3) 8.0(5) ... and so on

ASDM 6.3(4)

From setup was installed a subnetted Class C for

outside / 28 --> g0/0

inside / 28 --> g0/1

dmz / 29 --> G1/3

Every interface got a separate switch with one client-pc.

All pings from ASA to inside and outside clients works fine with one exception the dmz net.

If i changed the switch from the dmz net with a hub - all pings are o.k.

The problem after one week with google , releasenotes and faq's may be the hardware address

from the 4GE-modul.

It begins with 0172.10a1.xxxx. (a multicast bit)!!!

The workaround for me is to change the mac address for the interface to any other address

than you can ping the client on a switch.

Anybody the same problem or another workaround ?

Is this a bug ?

May i change the 4GE modul?

thanks for interest

...

ug

Marcin Latosiewicz · ‎09-29-2010

Uwe,

Did you open a TAC case for this?

I've checked a lab device and indeed I get normal unicast MAC.

Can you please confirm for me "show modu" output you should have mac address range listed there.

Marcin

Uwe Gathge · ‎09-30-2010

Hi Marcin,

first of all - thanks for your quick answer.

> Did you open a TAC case for this?

No, i never did before a TAC case.
If you think i should it do, then i will try.

> I've checked a lab device and indeed I get normal unicast MAC.

What happens if you type my mac-address for one of your 4GE interfaces?
Get you also the error message from asdm
"the active mac address ... must not set the multicast bit 01..." and
are your pings also wrong?

Here is the Result of the command: "sh module"

Mod Card Type                                    Model              Serial No.
--- -------------------------------------------- ------------------ -----------
0 ASA 5540 Adaptive Security Appliance         ASA5540            JMX1405L01F
1 Cisco 4-Port Gigabit Ethernet Module         SSM-4GE            JAF1327APPD

Mod MAC Address Range                 Hw Version   Fw Version   Sw Version
--- --------------------------------- ------------ ------------ ---------------
0 68ef.bdd0.c3c9 to 68ef.bdd0.c3cd 2.0          1.0(11)2     8.3(2)
1 0172.10a1.21ef to 0172.10a1.21f2 1.0          1.0(0)8      1.0(0)10

Mod SSM Application Name Status SSM Application Version
--- ------------------------------ ---------------- --------------------------

Mod Status             Data Plane Status     Compatibility
--- ------------------ --------------------- -------------
0 Up Sys             Not Applicable
1 Up                 Up

...
ug

mirober2 · ‎09-30-2010

Hi Uwe,

Yes, please do open a TAC case for this so it can be investigated. Be sure to let the engineer know which MAC addresses were burned in, whether this was a brand new purchase, and where you purchased the hardware from.

The workaround as you noticed would be to manually assign unicast MAC addresses until you can get a replacement.

-Mike

kyle woodhouse · ‎02-08-2011

Hi,

Was an answer ever provided for this issue? I have 4 SSM-4GE units with the same issue and it looks like the serial range is exactly the same. Maybe a problem with a specific range of serials? I dont see any field notices created so maybe ill open a TAC case.

SSM-4GE JAF1327APNT

7: Ext: GigabitEthernet1/0 : address is 0172.10a1.21f7, irq 255

8: Ext: GigabitEthernet1/1 : address is 0172.10a1.21f8, irq 255

9: Ext: GigabitEthernet1/2 : address is 0172.10a1.21f9, irq 255

10: Ext: GigabitEthernet1/3 : address is 0172.10a1.21fa, irq 255

Thanks,

Kyle

mirober2 · ‎02-08-2011

Hi Kyle,

Yes, that MAC assignment also has the multicast flag set. Please open a TAC case so that can be investigated.

Thanks,

-Mike