Smarts NCM: Cut Through failing for some Cisco Devices after device config change
book
Article ID: 331161
calendar_today
Updated On:
Products
VMware Smart Assurance
Issue/Introduction
Symptoms:
Cut through to some Cisco devices fails.
Environment
VMware Smart Assurance - NCM
Cause
Cisco has reported bug CSCuo76464 - 'IOS:SSH Clients with larger DH keylength can not connect'. Due to this, an upgrade of the device's OS is required. It appears all versions where NCM doesn t work, the following option for modulus length doesn t exist, and Cisco s SSH version is 1.99 instead 2.0 (where they actually fix ssh, and we don t need to use the workaround)
device-1(config)#crypto key generate rsa label testing modulus ? <360-2048> size of the key modulus [360-2048]
device-2(config)#crypto key generate rsa label testing modulus ? <360-4096> size of the key modulus [360-4096]
Resolution
Smarts NCM is working as designed please upgrade the device's OS to resolve the issue.