manualshive.com logo in svg

Allied Telesis 86241-06, Release Note, Page: 15 / 30

Share
Download
Allied Telesis 86241-06 Release Note Download Page 15

Patch 86241-06 For Rapier Switches

15

Patch 86241-05 for Software Release 2.4.1
C613-10340-00 REV E

IPSec no longer logs packets that match an ACTION=ALLOW policy. The 
overhead of this logging was affecting non-IPSec traffic.

The LOCALRSAKEY parameter in the CREATE ISAKMP POLICY and SET 
ISAKMP POLICY commands was not accepting the value zero. This issue 
has been resolved.

The PURGE IPSEC command caused a fatal error. This issue has been 
resolved.

If a packet with a destination IP address equal to a VRRP IP address was 
received when the router didn’t own the IP address, (because it didn’t have 
an interface with that IP address) the router incorrectly tried to forward the 
packet and send an ICMP “redirect” message to the source. Now, if such a 
packet is received, it will be discarded and an ICMP “host unreachable” 
message will be sent to the source.

If a DNS relay agent was configured with overlapping subnets, sometimes 
the DNS server response was returned to the client with a source IP address 
of an interface on the relay agent that was different from the interface the 
request was received on. This issue has been resolved.

The default router lifetime value has been corrected. Also, the SET IPV6 
INTERFACE command now updates valid and preferred lifetimes correctly.

When enabling or disabling feature licences, a message will now be 
generated with a warning that changes to feature licences may not take 
effect until after a reboot.

VRRP used the wrong source IP address in ICMP redirects. RFC 2338 states 
that the source IP address of ICMP redirects should be the IP address that 
the end host used when making its next hop routing decision. In the case of 
a packet sent to a VRRP virtual MAC address, this is the primary VRRP IP 
address associated with the MAC address, provided such a VR exists and is 
in the master state. This issue has been resolved.

On models except Rapier i Series Switches, the ENABLE STP DEBUG PORT 
command did not work correctly. This issue has been resolved.

It was possible to set the trunk speed to 10/100M, even if the port within the 
trunk was not capable of this speed. This issue has been resolved. 

PCR: 02292

Module: IPSEC

Network affecting: No

PCR: 02294

Module: IKMP

Network affecting: No

PCR: 02298

Module: IPSEC

Network affecting: No

PCR: 02299

Module: VRRP

Network affecting: No

PCR: 02301

Module: IPG

Network affecting: No

PCR: 02302

Module: IPv6

Network affecting: No

PCR: 02303

Module: INSTALL

Network affecting: No

PCR: 02304

Module: VRRP

Network affecting: No

PCR: 02309

Module: STP

Network affecting: No

PCR: 02311

Module: SWI

Network affecting: No

Summary of Contents for 86241-06

Page 1: ...r a different model or software release may cause unpredictable results including disruption to the network Information in this release note is subject to change without notice and does not represent...

Page 2: ...requests if the port had been disabled from STP operation This prevented the flow of some types of traffic into affected switch ports This issue has been resolved When a connection is made by Telnet...

Page 3: ...SHOW BGP commands now has an INTERFACE type INTERFACE routes were previously grouped with STATIC routes If the CREATE QOS POLICY command was executed with a range that had a number more than four cha...

Page 4: ...SABLE MLDS command appeared twice in configuration files This issue has been resolved The ADD IP MVR command could cause a software restart This issue has been resolved The ADD IP MVR command paramete...

Page 5: ...ftware restart The SHOW OSPF NEIGHBOUR command did not reflect a change made to the router priority on a dynamic OSPF interface of a neighbouring router This issue has been resolved Link state adverti...

Page 6: ...to the previously created SNMP community use the command ADD SNMP COMMUNITY name TRAPHOST ipadd MANAGER ipadd V1TRAPHOST ipadd V2CTRAPHOST ipadd DS3 interface and board type support has been added DS3...

Page 7: ...US DEBUG SHOW TACACS DEBUG The SET INSTALL command was generating an unwanted warning message on Rapier i series switches This issue has been resolved Features in 86241 04 Patch file details are liste...

Page 8: ...ere prematurely deleted This issue has been resolved If a problem occurred with NVS some critical files were lost As a result the equipment was forced to load only boot ROM software at boot time This...

Page 9: ...ide the allowable range The Firewall showed the wrong counters on Total Received Packets and Dropped Packets and displayed twice the number of received packets when discarding packets from the public...

Page 10: ...matching a packet unless its source IP address was exactly the same as the IPADDRESS value set for the rule that is the NAT mask value was not being used This issue has been resolved Reserved multica...

Page 11: ...MLD snooping is now supported on AT 9800 Series Switches and Rapier i Series Switches The ENABLE IPV6 MTUDISCOVERY and SET IPV6 MTU INTERFACE commands were not displayed in the SHOW CONFIGURATION DYN...

Page 12: ...le host via a switch there was a delay before the switch sent a DestinationUnreachable message This issue has been resolved When the switch was under heavy learning load some MAC address were lost Thi...

Page 13: ...ed to be recycled This issue has been resolved The EPORT parameter in the ADD SWITCH L3FILTER ENTRY and SET SWITCH L3FILTER ENTRY commands was matching multicast and broadcast packets with software fi...

Page 14: ...VLAN tags were not being inserted into IP multicast packets on multi tagged ports A fatal error occurred when PIM and RIP were both running ARL message interrupts have been re enabled after a softwar...

Page 15: ...Also the SET IPV6 INTERFACE command now updates valid and preferred lifetimes correctly When enabling or disabling feature licences a message will now be generated with a warning that changes to feat...

Page 16: ...he receiving interface This issue has been resolved BGP was not sending a withdraw message to a peer for a withdrawn or replaced route when the new best route came from that peer This issue has been r...

Page 17: ...error This issue has been resolved In a previous patch a fatal error occurred after a RESTART ROUTER command was executed when using PPP over SYN Also on AR745 models PPP was using an 8 MB boundary i...

Page 18: ...eter is specified When the system time was set to a time that was before or significantly after the current time Firewall sessions were prematurely deleted This issue has been resolved When the PPP ON...

Page 19: ...resent This issue has been resolved SNMP MIB support has been enhanced for CPU utilisation and file statistics MIB support has been added for Allied Telesyn contact details and fast buffers A watchdog...

Page 20: ...in the SHOW IPV6 INTERFACE command These issues have been resolved Large local packets were not being fragmented Also the More Fragment flag in the IPv6 fragment header was not being set correctly The...

Page 21: ...d was not showing port monitoring and step values correctly This issue has been resolved The PURGE IP command now resets the IP route cache counters to zero The SENDCOS filter action did not operate c...

Page 22: ...features 44 736 Mbit s interface rate 44 210 Mbit s payload data rate Separate transmit Tx and receive Rx BNC connectors 75 ohm impedance B3ZS line encoding Automatic compensation for lines up to 135m...

Page 23: ...ardware to identify all frame overhead bit positions C1 C2 and C3 form the C bit channel C bit Parity Mode In C bit parity mode the C bits are described as follows The first C bit in M subframe 1 is s...

Page 24: ...ched within a cross connect If this happens it is possible that the wrong DS3 signal is switched through to the switch When this happens the overhead bits are all correct so there is no indication tha...

Page 25: ...e DS3 signal can be altered to allow the switch to connect to another vendor s equipment via the DS3 interface The configuration of the DS3 interface can be changed with the command SET DS3 instance C...

Page 26: ...arameter is only meaningful with the CMTCE parameter set to ON With CMTCE set to OFF this parameter is ignored The default pattern is ignore The FDET parameter specifies whether fast detection of AIS...

Page 27: ...it will assert if the 24 hour count exceeds the value specified in PRIM24 The default is 1048575 The PRIM24 parameter specifies the 24 hour counter threshold for all performance monitoring primitives...

Page 28: ...W DS3 TEST Once the interface is set up and configured it can be used in conjunction with Frame Relay using the following commands CREATE FRAMERELAY SHOW FRAMERELAY See Chapter 5 Frame Relay in your s...

Page 29: ...0MFAUTO 100MHALF 100MFULL 100MHAUTO 100MFAUTO 1000MHALF 1000MF ULL 1000MHAUTO 1000MFAUTO The RELEARN parameter determines whether dynamic or static MAC address learning will be used on this port This...

Page 30: ...lex Autonegotiate Actual speed duplex 1000 Mbps full duplex Configured master slave mode Autonegotiate Actual master slave mode Master Acceptable Frame Types Admit All Frames Broadcast rate limit 1000...

Reviews:

No comments