Well I got the new release in this morning and its been stable and fine since then.   Prior it would never make it two hours following a reboot before going unreachable again.   I wish I had a root cause or at least something as it ran error free for 8 weeks then it appeared as if nothing would clear it and certainly one of the oddest things I have seen in over 20 years of Cisco engineering.  I'm just glad it's stopped as all appears fine now.

Glad to hear you're running more stably now. Hope it remains that way.

It's anecdotal, but in the installation where I saw the bug it only manifested after we had added some features - QoS and BGP - on the units.

I have had the same issue with my 4500x stack, due to the fact that Fa1 was active (?!!). The recommended fix IS the software upgrade, but there is also a workaround. See below.

CSCue76243 Bug Details

Symptom:

Sup7E, Sup7LE or 4500X loses all L3 connectivity to/from switch IP address. Switching continues to work, but IP traffic to/from the switch does not. This includes snmp, ntp, telnet, ssh, etc.

Conditions:

Sup7E, Sup7LE or 4500X using 3.4.0SG

Workaround: Disable CEF on the L3 interfaces to temporarily restore service (but it will be software switched). Once the problem occurs, the switch must be rebooted. To prevent the problem from occurring, shut down Fa1. If Fa1 is shut down, the problem will not appear.

Upgrading to 3.4.1 will resolve this issue, or alternatively you can shut down the management interface FastEthernet1. Since this is a VSS configuration, I would recommend disabling the management interface on both physical switches. In order to do this, I recommend the following action plan:

1.  Shut FastEthernet1 on the active switch

2.  Save configuration with “copy run start”

3.  Failover the VSS

4.  Shut FastEthernet1

5.  Save configuration with “copy run start”

6.  WAIT until the peer switch is ready for failover

         a.  Check with “show redundancy” and wait until the peer supervisor is in STANDBY HOT

7.  Failover the VSS

8.  Layer 3 connectivity should be restored once the second failover is complete

Hi, I just encountered the same issue on my 4500-x VSS.  Also affected all of my clients' dhcp requests.

Can someone please provide the procedure for failing over the VSS and the permanent solution of upgrading the IOS on the VSS?  Thanks.

Peter

"To force a switchover from the VSS Active to the VSS Standby supervisor engine, use the redundancy force-switchover command." (Source)

The bug is reported to be fixed in 3.4.1SG and subsequent releases. The procedure for upgrade is further down in the same document link I posted above - i.e starting here.

Seems to me that 3.4.1.E1 does not yet have this fix as we have encountered that and backed out. But apperently the code were running 3.4.0.SG also has this bug but is working better.

Can anyone confirm my assumption above and I should move to 3.4.2.SG2.

We need fa1 for now because we are staging and that is our access for the moment.

By the way when we were running 3.4.1.E1, fa1 was not reachable and did not show a CDP neighbour on ajacent switch.

None of our connected 3850 switches was reachable from the 4500x.

Hi Garry,

I would recommend 3.4.2 (151-2SG2)  on the 4K.  The bug you are referencing is fixed in this version.

https://tools.cisco.com/bugsearch/bug/CSCue76243

HTH

Luke

I know this is an old discussion but I'm having a very similar issue on a VSS pair using 4500E chassis (4510R+E & 4507R+E) running IOS version 3.6.4E.  Any known fix release for this?  A workaround would also be nice until I can fit this in for our maintenance window next week.