Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
252
Views
0
Helpful
2
Replies

pkt-dup without color restrict works incorrect

dijix1990
VIP
VIP

‎06-06-2024 04:04 AM - edited ‎06-06-2024 06:49 AM

Noticed interesting behaviour. If you have two internet channel and what to use the pkt-dup function without color restrict it doesn't work correctly, after applying color restriction (color public-internet restrict and color biz-internet restrict) for both channell between hub and spoke the pkt-dup works correctly.

It's strange but I couldn't find any notification about it.

 

 interface GigabitEthernet0/0/1.100
  tunnel-interface
   encapsulation ipsec weight 1
   no border
   color public-internet restrict

 interface GigabitEthernet0/0/1.200
  tunnel-interface
   encapsulation ipsec weight 1
   no border
   color biz-internet restrict

 

 

Labels:
0 Helpful
2 Replies 2

Kanan Huseynli
VIP
VIP

‎06-07-2024 02:38 PM

Hi,

maybe some sort of bug, but in which release and how did you test it?

HTH,
Please rate and mark as an accepted solution if you have found any of the information provided useful.

0 Helpful

dijix1990
VIP
VIP
In response to Kanan Huseynli

‎06-07-2024 06:11 PM - edited ‎06-07-2024 09:34 PM

For production

vmanage 20.9.5.2
cEdges 20.9.5

For test environment 

vmanage 20.12.3
cEdges 20.9.5a/20.12.3

It has the same behaviour. I have the some rules with action pkt-dup and sometimes it works after reloading devices (isr1000/4000/8300/8500), but maybe in an hour it stop to work with pkt-dup. After I enable oprion restrict inside template for transport it start to work every time.

My rules like these for branches

Rule 1

Src 10.1.0.0/16
Dst 10.1.0.0/16

Rule 2

Src 192.168.0.0/16
Dst 172.26.10.0/24

Rule 3

Src 172.19.0.0/16
Dst port 22443

 

0 Helpful
Customers Also Viewed These Support Documents