manualshive.com logo in svg

Allied Telesis 86222-21, Release Note, Page: 25 / 28

Share
Download
Allied Telesis 86222-21 Release Note Download Page 25

Patch 86222-21 For Rapier Switches and AR800 Series Modular Switching Routers

25

Patch 86222-21 for Software Release 2.2.2
C613-10319-00 REV T

In a dual policy configuration, the firewall would lock up under load. The 
firewall would also mistakenly report SYN attacks. These issues have been 
resolved.

The CREATE CONFIG command generated duplicate PIM interface 
configuration command lines. This issue has been resolved.

Certificates containing 

GeneralisedTime

 with the year in YYYY format are 

now parsed correctly. The 

keyUsage

 field of certificates is now parsed 

correctly when only one byte has been specified. The 

CRL update time

 is now 

displayed correctly in hours. If the 

username

 and 

password

 parameters are 

present the 

location

 parameter must be present and appear before the 

username

 and 

password

 parameters.

The DHCP server now correctly allocates addresses to clients running 
Apple Open Transport 2.5.1 or 2.5.2.

Both public and private access could be configured on the same interface on 
a policy. This issue has been resolved.

RSA encryption is now periodically suspended to ensure other processes 
get some CPU time during large RSA calculations.

The CREATE ISAKMP command now checks that the key specified by the 
LOCALRSAKEY parameter actually exists in the ENCO module.

The INTERFACE parameter of the CREATE TRIGGER and SET TRIGGER 
commands now supports Ethernet interfaces. Ethernet interface events can 
now generate triggers.

The Telnet server’s listen port can now be configured to a number in the 
range 1 to 65535, excluding any ports already assigned as listen ports.

The CREATE CONFIG command sometimes generated scripts for rule 
commands with GBLIP=0.0.0.0 when this was not necessary. This issue has 
been resolved.

PCR: 01152

Module: FIREWALL

Network affecting: No

PCR: 01159

Module: PIM

Network affecting: No

PCR: 01162

Module: PKI

Network affecting: No

PCR: 01165

Module: DHCP

Network affecting: No

PCR: 01166

Module: FIREWALL

Network affecting: No

PCR: 01167

Module: ENCO

Network affecting: No

PCR: 01169

Module: ISAKMP

Network affecting: No

PCR: 01171

Module: ETH, TRIGGER

Network affecting: No

PCR: 01173

Module: Telnet

Network affecting: No

PCR: 01174

Module: Firewall

Network affecting: No

Summary of Contents for 86222-21

Page 1: ...www alliedtelesyn co nz documentation documentation html AR800 Series Modular Switching Router Documentation Set for Software Release 2 2 1 available on the Documentation and Tools CD ROM packaged wi...

Page 2: ...has been resolved An ARP entry for a host has been removed whenever a DHCP DISCOVER or DHCP REQUEST message is received from the host This allows for clients changing ports on a switch The sequence nu...

Page 3: ...ry sent by the router switch now contains the correct default response time of 1 second Also ifOutOctets in the VLAN interface MIB now increments correctly If a port did not belong to an ethernet inte...

Page 4: ...not being processed by IP POLICY filters with an identifier greater than 7 This issue has been resolved A feature has been added that makes pings pass from the source IP address of the public interfac...

Page 5: ...tching multicast and broadcast packets with software filtering This issue has been resolved Some switch chip register values have been changed to improve QoS support on Rapier G6 and Rapier G6f switch...

Page 6: ...issue has been resolved MAC address lists were not working with Firewall rules This issue has been resolved HTTP requests from a fixed IP address were erroneously reported as a host scan attack in th...

Page 7: ...ess provided such a VR exists and is in the master state This issue has been resolved The SIZE functionality on the IP filter was not working for IP fragmented packets This issue has been resolved Fea...

Page 8: ...other routers However these routes should still have been imported into the router s own LSA database but were not These issues have been resolved The IPG module has been enhanced to support gratiuto...

Page 9: ...ets via internal and or external uplink ports This issue has been resolved If a flash write error occurred when a file was being written the file s directory entry was deleted leaving a partial file i...

Page 10: ...routing performance of the Rapier 48 and Rapier 48i has been enhanced The layer 3 hardware table was not sorted properly when it contained a very wide range of IP addresses eg 10 0 0 1 205 33 3 1 Thi...

Page 11: ...e number of DHCP clients This issue has been resolved Features in 86222 15 Patch file details for Patch 86222 15 are listed in Table 6 Patch 86222 15 includes all issues resolved and enhancements rele...

Page 12: ...VLANs not in the default STP A new command allows the Layer 3 aging timer to be changed SET SWITCH L3AGEINGTIMER seconds where seconds can be 30 43200 After each cycle of the ageing timer all existin...

Page 13: ...r required Also matches were made to addresses covered by a range in an access list if the matching range was numerically the lowest in the list This issue has been resolved Features in 86222 13 Patch...

Page 14: ...and TIMEWAIT states have been reduced This only applies to the stateful inspection of firewall sessions and not to the TCP module When a Rapier was under heavy load from software routing e g after a...

Page 15: ...added the corresponding routes into its own routing table However after some time e g 1 hour the AS external LSAs in the neigbour s database disappeared but the corresponding routes were still in its...

Page 16: ...IGMP reflooded packets with VLAN tagging were not processed correctly This issue has been resolved Features in 86222 11 Patch file details for Patch 86222 11 are listed in Table 10 Table 10 Patch fil...

Page 17: ...in 86222 09 Patch file details for Patch 86222 09 are listed in Table 12 Patch 86222 09 includes all issues resolved and enhancements released in previous patches for Software Release 2 2 2 and the f...

Page 18: ...even if it was configured to a fixed speed This issue has been resolved When the port has been configured for a fixed speed the mode is now set to MDIX not MDI When an M2 version of the AR020 PRI E1 T...

Page 19: ...86222 07 Patch file details for Patch 86222 07 are listed in Table 14 Table 14 Patch file details for Patch 86222 07 Patch 86222 07 includes all issues resolved and enhancements released in previous p...

Page 20: ...not correctly handling the ICMPTYPE and ICMPCODE parameters This issue has been resolved The router will now accept DHCP messages that are greater than or equal to 576 bytes in size and reject any mes...

Page 21: ...all ports active switching traffic between port 1 and the uplink caused the traffic flow to cease after a period of time depending on the volume of traffic This issue has been resolved The Rapier did...

Page 22: ...solved and enhancements released in previous patches for Software Release 2 2 2 and the following enhancements The power supply voltages of the base board PHYs on a Rapier G6 are controlled by a PHY r...

Page 23: ...parsed Certificates added from a configuration script are now processed correctly A fatal error occurred if an IPv6 interface was deleted while packets were being transmitted The number of current in...

Page 24: ...Patch file details for Patch 86222 04 are listed in Table 17 Patch 86222 04 includes all issues resolved and enhancements released in previous patches for Software Release 2 2 2 and the following enha...

Page 25: ...e on a policy This issue has been resolved RSA encryption is now periodically suspended to ensure other processes get some CPU time during large RSA calculations The CREATE ISAKMP command now checks t...

Page 26: ...specifies the life of the address and defaults to INFINITE The address is deleted when the lifetime expires The PREF parameter specifies the time that the address is the preferred address of the inter...

Page 27: ...s 27 Patch 86222 21 for Software Release 2 2 2 C613 10319 00 REV T Availability Patches can be downloaded from the Software Updates area of the Allied Telesyn web site at www alliedtelesyn co nz suppo...

Page 28: ...28 Patch Release Note Patch 86222 21 for Software Release 2 2 2 C613 10319 00 REV T...

Reviews:

No comments