Allied Telesis 86222-25 User Manual
Size:
220.93 Kb
Download

Patch Release Note

Patch 86222-25

For Rapier Switches and AR800 Series

Modular Switching Routers

Introduction

This patch release note lists the issues addressed and enhancements made in patch 86222-25for Software Release 2.2.2 on existing models of Rapier L3 managed switches and AR800 Series L3 modular switching routers. Patch file details are listed inTable 1.

Table 1: Patch file details for Patch 86222-25.

Base Software Release File

86s-222.rez

 

 

Patch Release Date

15-April-2003

 

 

Compressed Patch File Name

86222-25.paz

 

 

Compressed Patch File Size

443760 bytes

 

 

This release note should be read in conjunction with the following documents:

Release Note: Software Release 2.2.2 for Rapier Switches, AR300 and AR700 Series Routers, and AR800 Series Modular Switching Routers (Document Number C613-10313-00Rev A) available fromwww.alliedtelesyn.co.nz/documentation/documentation.html.

Rapier Switch Documentation Set for Software Release 2.2.1 available on the Documentation and Tools CD-ROMpackaged with your switch, or fromwww.alliedtelesyn.co.nz/documentation/documentation.html.

AR800 Series Modular Switching Router Documentation Set for Software Release 2.2.1 available on the Documentation and Tools CD-ROMpackaged with your switching router, or fromwww.alliedtelesyn.co.nz/ documentation/documentation.html.

WARNING: Using a patch for a different model or software release may cause unpredictable results, including disruption to the network. Information in this release note is subject to change without notice and does not represent a commitment on the part of Allied Telesyn International. While every effort has been made to ensure that the information contained within this document and the features and changes described are accurate, Allied Telesyn International can not accept any type of liability for errors in, or omissions arising from the use of this information.

Simply connecting the world

2

Patch Release Note

Some of the issues addressed in this patch include a Level number. This number reflects the importance of the issue that has been resolved. For details on level numbers, please contact your authorised distributor or reseller.

Features in 86222-25

Patch 86222-25includes all issues resolved and enhancements released in previous patches for Software Release 2.2.2, and the following enhancements:

PCR: 02300

Module: Firewall

Network affecting: No

If the command ADD FIREWALL POLICY RULE SOURCEPORT=ALL was executed, a value of “65535” was incorrectly displayed for the SOURCEPORT parameter for that rule in the SHOW FIREWALL POLICY command. This issue has been resolved.

PCR: 02400

Module:

Network affecting: No

 

CORE,FFS,FILE,INSTALL,SCR

 

If a problem occurred with NVS, some critical files were lost. As a result, the equipment was forced to load only boot ROM software at boot time. This patch combined with the new version of the boot ROM software (pr1-1.2.0for the AR700 series) resolves this issue.

PCR: 02530

Module: FIREWALL

Network affecting: No

The GBLIP parameter in the ADD FIREWALL POLICY RULE ACTION=NONAT command is optional. However, if the command was executed without the GBLIP parameter set, the command erroneously failed after a CREATE CONFIGURATION command was executed. This issue has been resolved.

PCR: 03111

Module: FIREWALL

Level: 1

TCP sessions could fail if the public side of the firewall was using Kerberos and the private side had a very slow connection to the firewall. This issue has been resolved.

PCR: 03134

Module: TCP

Level: 2

When using the SET TELNET LISTENPORT command, a fatal error sometimes occurred. This issue has been resolved.

PCR: 03135

Module: SWI

Level: 2

The TYPE parameter in the SET SWITCH L3FILTER command was not written to the script file correctly if MATCH was set to NONE. This issue has been resolved.

PCR: 03143

Module: VRRP

Level:

When the PRIORITY parameter in the SET VRRP command was changed, it was not set correctly when a link was reset. This issue has been resolved.

PCR: 03145

Module: IPG

Level: 4

The SET IP ROUTE FILTER command was not processing some parameters.

This issue has been resolved.

Patch 86222-25for Software Release 2.2.2C613-10319-00REV X

Patch 86222-25For Rapier Switches and AR800 Series Modular Switching Routers

3

PCR: 03148

Module: IPG

Level: 3

If the Gratuitous ARP feature was enabled on an IP interface, and an ARP packet arrived, (either ARP request, or reply) that had a Target IP address that was equal to the SenderIP address, then the ARP cache was not updated with the ARP packet’s source data. This issue has been resolved.

PCR: 03160

Module: STP

Level: 2

Executing the PURGE STP command caused fatal error. This issue has been resolved.

PCR: 03171

Module: DVMRP, IPG

Level: 3

DVMRP was erroneously forwarding packets to a VLAN with a

 

downstream neighbour. This issue has been resolved.

 

PCR: 03173

Module: CORE, NTP

Level: 3

The default NTP polling interval was set to 64 seconds, not the correct interval of 128 seconds. This issue has been resolved.

PCR: 03174

Module: IPG

Level: 2

This PCR corrects issues that arose with PCR 02203. When the DNS request forwarding queue failed to accept a new DNS request message (possibly due to overloading), an attempt was made to close the UDP sessions for both the primary and secondary name servers. This caused a restart if either one of these servers did not exist, or the UDP session had failed to open. This issue has been resolved.

PCR: 03180

Module: IPG

Level: 3

If all 32 VLAN interfaces had IP addresses attached, only 31 VLANs could be multihomed. Now all 32 VLAN interfaces with IP addresses can be multihomed.

PCR: 03202 Module: CORE

Level: 3

There are two sources of time kept in the device. The real time clock, and the milliseconds since midnight (msSinceMidnight). The msSinceMidnight can reach midnight slightly before the real time clock which means that the value of the msSince Midnight is larger than the number of milliseconds in a day. This meant that at midnight, the elapsed time since the time-to-livevalue for the Firewall andIP-NATTCP sessions appeared very large and Firewall andIP-NATsessions were prematurely aged out. This issue has been resolved by pausing the msSince Midnight variable at midnight to wait for the real time clock to catch up.

PCR: 03217 Module: DVMRP

Level: 2

If a DVMRP interface was deleted and then added again, DVMRP routes associated with this interface were not reactivated. This issue has been resolved.

PCR: 03218 Module: DVMRP

Level: 2

Some issues with DVMRP forwarding have been resolved.

PCR: 03236

Module: IPG

Level: 3

IGMP queries were being sent after IGMP was disabled. This issue has been resolved.

Patch 86222-25for Software Release 2.2.2C613-10319-00REV X

4

Patch Release Note

PCR: 03240

Module: OSPF

Level: 2

A fatal error occurred when OSPF was under high load. This issue has been resolved.

PCR: 03253

Module: FIREWALL

Level: 2

Inbound TCP sessions through the firewall (e.g. Telnet and FTP) failed when the PORT parameter was set to ALL in the SET FIREWALL POLICY RULE command. This issue has been resolved.

PCR: 03255

Module: FIREWALL

Level: 3

The firewall doubled the IPSPOOF event timeout from 2 minutes to 4 minutes. This issue has been resolved.

PCR: 03302

Module: SWI

Level: 3

Following a period of high traffic load, the CPU utilisation would

 

occasionally fail to drop below 40%. This issue has been resolved.

 

PCR: 03314

Module: SWI

Level: 2

Layer 3 filters that matched TCP or UDP port numbers were being applied to the second and subsequent fragments of large fragmented packets. This issue has been resolved.

PCR: 03332

Module: TTY

Level: 2

A log message is now created when a user is forced to logout from an asynchronous port when another user (i.e. someone connected via Telnet) resets the asynchronous connection with the RESET ASYN command.

PCR: 03346 Module: SNMP

Level: 4

Sometimes the Agent Address field in SNMP traps was not the same as the IP source address. This meant that sometimes the NMS did not send an alarm to the network manager when traps were received from switches. This issue has been resolved.

PCR: 03368

Module: SWI

Level: 2

Layer 2 packets transmitted out of the mirror port were being tagged erroneously. This issue has been resolved.

PCR: 03378 Module: DHCP

Level: 2

DHCP sometimes suffered a fatal error when a range of IP addresses was destroyed. This issue has been resolved.

PCR: 03385

Module: FILE, INSTALL, SCR

Level:

Critical files (prefer.ins,config.ins andenabled.sec) are now copied from NVS to FLASH at boot time if they do not exist in FLASH, or if the NVS version of the file is different from the FLASH version.

PCR: 03386

Module: SWI

Level: 2

If the SET SWITCH L3FILTER MATCH command had nothing specified for the IMPORT and EMPORT parameters, and there was an existing match entry in the filter table, the new filter was not added correctly. Filter match entries are now accepted regardless of the order in which they are entered into the table.

Patch 86222-25for Software Release 2.2.2C613-10319-00REV X