My Oracle Support Banner

Audit report missing ACL even when present on device (Doc ID 580549.1)

Last updated on FEBRUARY 20, 2019

Applies to:

Oracle Communications IPSA Cartridges - Version 5.2.3 and later
Information in this document applies to any platform.

Symptoms

A simple access-list (ACL) configuration is deployed correctly to a router:

20080512-135137|606||<IP>|access-list 178 deny ip any any fragments
20080512-135137|716||<IP>|access-list 178 permit tcp any eq 179 any
20080512-135137|806||<IP>|access-list 178 permit tcp any any eq 179


And shows fine in a "show run". However an audit of the device shows:

access-list 178 deny ip any any fragments


in red (i.e. Configuration missing on the device) at the bottom of the audit display.
The log file shows the mismatch down to the way the device is formatting the ACL:

20080513-085251|971|trace1|Thread-21|||proxy_np|mtproxy5|***findMatchingCommand (interrogating cfgCmdString) access-list 178 deny ip any any fragments
20080513-085252|070|trace1|Thread-21|||proxy_np|mtproxy5|findMatchingCommand (match not found) access-list 178 deny ip any any fragments

 

Cause

To view full details, sign in with your My Oracle Support account.

Don't have a My Oracle Support account? Click to get started!


In this Document
Symptoms
Cause
Solution
References


My Oracle Support provides customers with access to over a million knowledge articles and a vibrant support community of peers and Oracle experts.