Smarts NCM: Cut Through failing for some Cisco Devices after device config change
search cancel

Smarts NCM: Cut Through failing for some Cisco Devices after device config change

book

Article ID: 331161

calendar_today

Updated On:

Products

VMware Smart Assurance

Issue/Introduction

Symptoms:


Cut through to some Cisco devices fails.

Environment

VMware Smart Assurance - NCM

Cause

Cisco has reported bug CSCuo76464 - 'IOS:SSH Clients with larger DH keylength can not connect'. Due to this, an upgrade of the device's OS is required.  It appears all versions where NCM doesn t work, the following option for modulus length doesn t exist, and Cisco s SSH version is 1.99 instead 2.0 (where they actually fix ssh, and we don t need to use the workaround)

device-1(config)#crypto key generate rsa label testing modulus ?
<360-2048> size of the key modulus [360-2048]

device-2(config)#crypto key generate rsa label testing modulus ?
<360-4096> size of the key modulus [360-4096]


Resolution

Smarts NCM is working as designed please upgrade the device's OS to resolve the issue.