Eigrp blocked by default deny in 15.2?

dan.letkeman · ‎02-28-2012

I am trying to replace my 2800 series router with a new 2900 series router. The 2800 is running 12.4(25f), and the 2900 is running 15.2(2)T.

Why, if I place any kind of access list on the local interface, do I loose my EIGRP relationship? For example:

This:

Extended IP access list local

10 permit ip any any

Placed on:

interface GigabitEthernet0/0

description LAN

ip address 10.10.10.1 255.255.255.252

ip access-group local in

Blocks eigrp from working. This never happened on 12.4 or even 15.1. Has something changed with 15.2 or does it have a bug?

Thanks,

Dan.

Jeff Van Houten · ‎02-28-2012

have you tried adding permit eigrp any any to the acl?

Sent from Cisco Technical Support iPad App

Vivek Ganapathi · ‎02-29-2012

As per my understanding, EIGRP neighborship shouldn't break as i notice the ACL to be just ip any any. EIGRP uses IP protocol number 88. So, the statement shouldn't drop neighborship.

Vivek Ganapathi · ‎02-29-2012

Hello Dan,

Do you see any matches on your implicit deny rule? Attempt to log the traffic, so you know what's happening.

dan.letkeman · ‎03-02-2012

I found out that the version I was using 15.2(2)T had a feature for certain customers that didn't allow eigrp traffic or something like that. I changed versions of ios and now it works. Odd that Cisco would even post something like that on the download site.

btw permit eigrp any any

Did not help, that was the first thing I had trired.

Dan.

etamminga · ‎03-02-2012

Having 15.2(2)T EIGRP issues over here as well.

Lots of SIA messages and dropping neighbors.

Going to revert to 15.2(1)T that worked.

bunyawat.bualek · ‎06-26-2012

I some problem about ACL permit on 15.2 , the problem is relate to the bug ID CSCtt19027.

Refer as,

CSCtt19027 from bug tool kit

1st Found-In
15.2T
15.2(1.14)T
15.2(1.14)T0.1
15.2(2.1)T
15.2(2.2)T
15.2(2)T
15.2(2)T0.8

Fixed-In
15.2(2.4)T
15.2(2)T0.9
15.2(1)T2

Thanks,

Bunyawat Bualek