background image

Patch 86222-10 For Rapier Switches and AR800 Series Modular Switching Routers

11

Patch 86222-10 for Software Release 2.2.2
C613-10319-00 REV J

DNS response packets with corrupt length fields were causing a fatal error. 
This issue has been resolved.

IP NAT caused a fatal error when an ARP wait timer timed out and tried to 
send a host unreachable message. This issue has been resolved.

The router was restarting after a “teardrop” attack on the STT listen port. 
This issue has been resolved.

The entry aging process now works correctly even when there are large 
numbers of firewall entries to be aged.

The command SHOW IP DEBUG=

n

 was entered, where 

n

 was one greater 

than the number of items in the IP debug queue resulted in a fatal error. This 
issue has been resolved.

Features in 86222-02

Patch file details for Patch 86222-02 are listed in Table 9.

Patch 86222-02 includes all issues resolved and enhancements released in 
previous patches for Software Release 2.2.2, and the following enhancements:

When an interface on the firewall was configured with a global IP address 
of 0.0.0.0, outgoing packets from the private interface to the public interface 
sometimes caused a fatal error. This issue has been resolved.

Re-validation of temporary CA certificates now works correctly.

A fatal error occurred when IGMP received a 

Join

 message and attempted 

to forward the 

Join

 message to other switch ports. This issue has been 

resolved.

PCR: 01112

Module: IPG

Network affecting: No

PCR: 01139

Module: IPG

Network Affecting: No

PCR: 01147

Module: STT

Network affecting: No

PCR: 01150

Module: FIREWALL

Network affecting: No

PCR: 01153

Module: IPG

Network affecting: No

Table 9: Patch file details for Patch 86222-06.

Base Software Release File

86s-222.rez

Patch Release Date

26-Jul-2001

Compressed Patch File Name

86222-02.paz

Compressed Patch File Size

202564 bytes

PCR: 01081

Module: FIREWALL

Network affecting: No

PCR: 01126

Module: PKI

Network affecting: No

PCR: 01128

Module: IPG

Network affecting: No

Summary of Contents for 86222-10

Page 1: ...www alliedtelesyn co nz documentation documentation html AR800 Series Modular Switching Router Documentation Set for Software Release 2 2 1 available on the Documentation and Tools CD ROM packaged wi...

Page 2: ...een made for the cold start trap After a 10s delay all interfaces which are UP have a link trap generated for them After that link traps are sent as normal Processing invalid UDP packets caused a memo...

Page 3: ...re Release 2 2 2 and the following enhancements Tunnel creation failed when attempting to establish a point to point tunnel from an ATR router tunnel originator to another vendor s router This issue h...

Page 4: ...A watchdog timout occurred when the router received an HTTP message with an over length header Normal HTTP requests would also occasionally cause watchdog timeouts These issues have been resolved The...

Page 5: ...o ALL and PFS was enabled This issue has been resolved PPPoE interfaces with IDLE set to ON would not retry active discovery when more data was received if active discovery had previously failed This...

Page 6: ...g corruption of the ARL table eventually causing the switch to lock up This issue has been resolved Tagged packets with invalid VLAN identifiers are now discarded The INFILTERING parameter of the SET...

Page 7: ...e receiver did not get the data stream This issue has been resolved The Rapier G6 base ports sometimes experienced spurious link up or link down events This issue has been resolved Features in 86222 0...

Page 8: ...a result after multiple additions and deletions no more IPv6 interfaces could be added These issues have been resolved The CREATE CONFIG command now adds PKI certificates to the script in the same ord...

Page 9: ...oducts in aggressive mode exchanges Support has been added for the 8624XL 80 switch with 48VDC power supply In a dual policy configuration the firewall would lock up under load The firewall would also...

Page 10: ...rfaces Ethernet interface events can now generate triggers The Telnet server s listen port can now be configured to a number in the range 1 to 65535 excluding any ports already assigned as listen port...

Page 11: ...olved and enhancements released in previous patches for Software Release 2 2 2 and the following enhancements When an interface on the firewall was configured with a global IP address of 0 0 0 0 outgo...

Page 12: ...ase 2 2 2 The DHCP server identified the wrong port numbers for incoming DHCP requests causing DHCP replies to be sent to the wrong port This issued has been resolved The IP flow cache occasionally ge...

Page 13: ...dress of the interface and defaults to INFINITE PREF must be less than or equal to VALID IPV6 now checks and ensures that if either PREF or VALID is specified PREF is less than or equal to VALID When...

Page 14: ...14 Patch Release Note Patch 86222 10 for Software Release 2 2 2 C613 10319 00 REV J...

Reviews: