Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
257
Views
0
Helpful
1
Replies

Debug issue !

Go to solution
illusion_rox
Level 1
Level 1

‎08-02-2009 07:58 PM - edited ‎03-06-2019 07:03 AM

hi all. recently i faced an issue when there was a conflict in 2 deptts. Server and WAN. One of the client from a remote site wasnt able to form connection with Server. I did debug, access-list on interface matching, Packet capture on IOS to make sure that packets from server werent reaching routers LAN interface. Later it was figured that it was an issue of server but i am still confused and kinda afraid. Is it also possible that due to some interface issue. IOS malfunction/bug that packets may actually reach router interface but are not shown in debug or access-list matching ? i mean how can i be 100% sure that packets actually entered on an interface or not ?

Labels:
0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
Peter Paluch
Cisco Employee
Cisco Employee

‎08-03-2009 02:05 AM

Hello,

You have asked: Is it also possible that due to some interface issue. IOS malfunction/bug that packets may actually reach router interface but are not shown in debug or access-list matching?

Purely theoretically, yes, it is possible. But I believe that these kinds of errors are highly improbable. At least the IOS is probably already well tested and debugged in the aspect of access-list matching and logging so by a common sense, I would not start solving a problem by assuming that there is a bug in IOS ACL matching code. As for the interface as a possible cause for problems: some hardware problems may be outright obscure and difficult to diagnose. But then again, a problem with interface would likely impact all conversations going through that interface, not just a communication with a single destination.

Best regards,

Peter

View solution in original post

0 Helpful
1 Reply 1

Go to solution
Peter Paluch
Cisco Employee
Cisco Employee

‎08-03-2009 02:05 AM

Hello,

You have asked: Is it also possible that due to some interface issue. IOS malfunction/bug that packets may actually reach router interface but are not shown in debug or access-list matching?

Purely theoretically, yes, it is possible. But I believe that these kinds of errors are highly improbable. At least the IOS is probably already well tested and debugged in the aspect of access-list matching and logging so by a common sense, I would not start solving a problem by assuming that there is a bug in IOS ACL matching code. As for the interface as a possible cause for problems: some hardware problems may be outright obscure and difficult to diagnose. But then again, a problem with interface would likely impact all conversations going through that interface, not just a communication with a single destination.

Best regards,

Peter

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card