Nortel Passport 1100, Passport 1200, Passport 1150, Passport 1000 Release Note

Part No. 212629-A
February 2002

4401 Great America Parkway
Santa Clara, CA 95054

Release Notes for the
Passport 1000 Series Software
Release 2.0.7.8

.

*212629-A*

2

Copyright © 2002 Nortel Networks

All rights reserved. February 2002.

The information in this document is subject to change without notice. The statements, configurations, technical data, and
recommendations in this document are believed to be accurate and reliable, but are presented without express or implied
warranty. Users must take full responsibility for their applications of any products specified in this document. The
information in this document is proprietary to Nortel Networks Inc.

Trademarks

NORTEL NETWORKS is a trademark of Nortel Networks.

LinkSafe and Nortel Networks are trademarks of Nortel Networks.

Passport and Accelar are registered trademarks of Nortel Networks.

Microsoft, Windows, and Windows NT are registered trademarks of Microsoft Corporation.

All other trademarks and registered trademarks are the property of their respective owners.

Statement of conditions

In the interest of improving internal design, operational function, and/or reliability, Nortel Networks Inc. reserves the
right to make changes to the products described in this document without notice.

Nortel Networks Inc. does not assume any liability that may occur due to the use or application of the product(s) or
circuit layout(s) described herein.

212629-A

Introduction

These release notes for Passport® software release 2.0.7.8 describe bug fixes in the
Nortel Networks
implemented since release 2.0.7.7. This document also describes known issues
and bugs that still exist in Passport software release 2.0.7.8.

These release notes contain the following topics:

•“Upgrading your software,” (next)

• “Recommendations and feature-specific information about release 2.0.7.8” on

• “Access policy support” on page 13

• “Bugs fixed in release 2.0.7.8” on page 14

• “Known issues” on page 18

page 5

™

Passport 1000 Series switch software that have been

3

• “Related publications” on page 19

• “Hard-copy technical manuals” on page 20

• “How to get help” on page 20

Release Notes for the Passport 1000 Series Software Release 2.0.7.8

4 Upgrading your software

Upgrading your software

Software release 2.0.7.8 includes updates to the run-time software and boot
monitor software as follows:

• Run-Time Software Version 2.0.7.8 (p10a2078.img)

• Boot Monitor Software Version 2.0.7.8 (p10b2078.img) supplied as a Boot

Monitor Updater

• Java Device Manager (JDM) Version 5.5 (for Microsoft ® Windows ®
95,Windows 98, Windows 2000, and Windows NT ®: jdm_win.exe; for
UNIX:jdm_unix.tar.Z)

Note: Before upgrading your software from earlier versions, back up
your current configuration file. Version 2.0.7.8 configuration files
contain configuration options that are not compatible with run-time
options in software version 2.0.7.0 or earlier. It is important to back up
the current configuration file before upgrading in case you must revert to
a previous version of the run-time image.

For the latest information about software issues, always refer to the
Passport Products documentation site from the Nortel Networks Web page
(http://www.nortelnetworks.com/documentation) or contact Nortel Networks
Customer Support at 1-800-4NORTEL.

Warning: Software release 2.0.7.8 requires 32 MB of DRAM. If you do
not have 32 MB of DRAM, an error message appears when you boot up
the Passport 1000 Series switch.
The memory upgrade kit (AA0011017) is available for the XLR1297SF
module and increases DRAM to 32 MB. If your Passport 105x or 11x0
routing switch has 16 MB of DRAM, contact your Nortel Networks sales
representative or authorized reseller to upgrade your switch.

212629-A

Recommendations and feature-specific information about release 2.0.7.8 5

Recommendations and feature-specific information
about release 2.0.7.8

This section describes basic recommendations and miscellaneous information and
pertinent feature-related information about the Passport 1000 Series switch
software release 2.0.7.8, and includes the following topics:

• Recommendations and miscellaneous information

• Multicast in release 2.0.7.8

• STG and BPDU clarification

• High-priority switching

• Console and Telnet screen message displays

• Clarification on MLT/STP pathcost

• Disabling IPX NetBIOS propagation

• Flash commands

• IPX RIP and IPX SAP pacing (frame rate)

Release Notes for the Passport 1000 Series Software Release 2.0.7.8

6 Recommendations and feature-specific information about release 2.0.7.8

Recommendations and miscellaneous information

Note the following recommendations and miscellaneous information about
Passport 1000 Series switch software release 2.0.7.8:

• Changes have been made to Passport 1000 series switches from software
release 2.0.7.3 onwards in terms of selection of the best path to an ASBR if
more than one path exists. Due to these changes, Nortel Networks
recommends that you not interconnect a switch running software release

2.0.7.3 or higher to a switch running a software release 2.0.7.2 or lower.
(Q00168665)

• Passport 1000 Series switch software release 2.0.7.8 does not support global
filters. Configuration information relating to global filters is ignored. When
booting up with software version 2.0.7.8, the following message is displayed
on the screen:

Global filters are not supported in this release.

• When you create a MultiLink Trunking (MLT) group through the command
line interface (CLI), the resulting MLT is put into the default VLAN (VLAN

1). The MLT should then be assigned to other VLANs as appropriate.

• Always set a specific Enforce Operational Configuration (EOC) mode (refer
to the Passport 1000 Series switch software release 2.0 release notes for more
information) instead of allowing the default EOC mode (which is to the
lowest-level module in the switch) in order to avoid losing functionality in
case a lower-revision module is installed in the switch.

• Terminology has been modified in Device Manager and the CLI so that
“trunk” is used only in reference to MultiLink Trunking (MLT). What were

previously referred to as trunk ports (in contrast to access ports) are now
referred to as tagged ports.

™

• Gigabit LinkSafe

configurations must have autonegotiation enabled. Setting
autonegotiation to False is not supported on gigabit LinkSafe modules in
redundant configurations. However, autonegotiation can be set to False if a
gigabit LinkSafe module is connected in a nonredundant setup to a gigabit
module not supporting autonegotiation.

212629-A

Recommendations and feature-specific information about release 2.0.7.8 7

• Nortel Networks recommends against configuring VRRP on IP-subnet-based
VLANs because there is no hardware support for this configuration in the I/O
modules and all traffic forwarding must be handled by the CPU. This situation
can cause high CPU utilization and affect performance. (105851-1)

• VRRP running over IEEE 802.1Q tagged ports requires ARU3 modules (-B
hardware). (115732-1, 130826-1)

• On a Passport 1200 Switch, IP forwarding is enabled by default. (142874-1)

Multicast in release 2.0.7.8

The two software features DVMRP and IGMP have known problems that can
cause general operational issues with Passport 1000 Series switches. Therefore, IP
Multicast is not supported in release 2.0.7.8 or earlier releases.

STG and BPDU clarification

The following two controls regulate the behavior of the Spanning Tree Protocol
(STP) in a spanning tree group (STG) on a Passport 1000 Series switch:

• A global parameter to enable or disable STP at the STG level

• Port parameters to enable or disable STP on individual ports

When the STP is globally disabled on the STG, received bridge protocol data units
(BPDUs) are handled like a MAC-level multicast and flooded out the other ports
of the STG. Note that an STG can contain one or more VLANs. Remember that
MAC broadcasts are flooded out on all ports of a VLAN; a BPDU is a MAC-level
message, but the BPDU is flooded out on all the ports in the STG, which may
encompass many VLANs.

Release Notes for the Passport 1000 Series Software Release 2.0.7.8

8 Recommendations and feature-specific information about release 2.0.7.8

When STP is globally enabled on the STG, BPDU handling depends on the
following STP setting of the port:

• When STP is enabled on the port, received BPDUs are processed in
accordance with STP.

• When STP is disabled on the port, the port will always be in a forwarding
state, received BPDUs are dropped and not processed, and no BPDU is
generated.

To configure STP on STGs with the CLI, use this command:

config stg <sid> group-stp <enable|disable>

To configure STP on a port with the CLI, use this command:

config ethernet <ports> stg <sid> stp <enable|disable>

To configure STGs with Device Manager, choose VLAN > Stg > Configuration.
To configure STP on a port with Device Manager, choose the port and the
spanning tree tab.

High-priority switching

The Passport 1000 Series switch operates in one of two modes: Best Effort mode
or Priority mode. The factory default setting is Best Effort mode; in this mode, all
traffic is treated with the same priority. In Priority mode, high-priority traffic
flows through the switch fabric using a high-priority data path; output buffers are
reserved for high-priority traffic. This does not apply to IEEE 802.1p packets.

Nortel Networks recommends that you enable Priority mode on switches in very
heavy traffic situations. Enabling Priority avoids delaying vital high-priority
network traffic, including BPDUs and routing protocol information. To enable
Priority using the CLI, enter:

config sys set flags highpriomode true

Note: The switch must be rebooted before this change takes effect.

212629-A

Recommendations and feature-specific information about release 2.0.7.8 9

Console and Telnet screen message displays

Tabl e 1 describes the following messages that are not displayed on the console or

Telnet screens using the

Note: Even though these message are not displayed, they are still added

to the log file.

Table 1 Non-displayed CLI messages

cpu switch over, stand-by CPU become master
Link Down
Dual Connector Link Down
Link Up
Dual Connector Link Up
Card Down
Card Up
Spanning Tree New Root
Spanning Tree Topology Change
BackupConnectorDown
BackupConnectorUp
Ospf Nbr State Change trap:
OspfIfConfigError trap:
OspfIfAuthFailure trap:
OspfIfStateChange trap:
OspfVirtNbrStateChange trap:
OspfVirtIfConfigError trap:
OspfVirtIfAuthFailure trap:
OspfVirtIfStateChange trap:
Power Supply Down
Fan Down
Link Oscillation
Mac Violation
Power Supply Up

config log screen on command.

Release Notes for the Passport 1000 Series Software Release 2.0.7.8

10 Recommendations and feature-specific information about release 2.0.7.8

Clarification on MLT/STP pathcost

This section clarifies MLT/STP pathcost when adding or removing ports in a MLT
group.

• When adding ports to a MLT group configured with default pathcost, the
pathcost value is equally distributed among the MLT ports; the higher the
number of ports in a MLT, the lesser the path cost.

• When the pathcost value of any one MLT port is administratively configured,
or if a port with an administratively configured pathcost is added to a MLT
group, the remaining MLT ports exhibit the same pathcost value.

• When removing a port from a MLT group, the pathcost value of all the ports
in a MLT revert to the default value. (Q00072320)

Disabling IPX NetBIOS propagation

With the release of Passport 1000 Series switch software version 2.0.4 and higher,
you can disable IPX NetBIOS (type 20) propagation. You can enable or disable
IPX NetBIOS (type 20) propagation globally, that is, on all IPX interfaces in the
entire chassis.

You can configure this feature using the CLI. The CLI command to enable or
disable IPX NetBIOS (type 20) propagation is

config ipx set netbios <on/off>

To view the current state of IPX NetBIOS propagation, use the config ipx set

info

command.

Note: The option to enable or disable IPX NetBIOS propagation is
associated with IPX routing, so it is relevant only to switches with the
ARU3 module (Rev B) and with IPX enabled.

212629-A

Recommendations and feature-specific information about release 2.0.7.8 11

Flash commands

The verbiage in the flash commands format, squeeze, and recover is
changed to accurately indicate the behavior when leaving the command—the
operation is not canceled when selecting to continue; rather the operation
continues in the background. Any attempt to access or manage the flash command
during processing will fail. (115397-1, 116199-1)

The following is an example of the revised wording:

Passport 1000 Series switch-1200# format fl

Format will erase all files.

Do you wish to continue? (y/n)? y

formatting...Press any key to push operation to background.

When you press any key, the following text is displayed on the screen:

Note: If you push operation to background you will not be
advised as to the result of the operation.

Do you wish to continue (y/n)? n

formatting ... success

Passport 1000 Series switch-1200#

Passport 1000 Series switch-1200#

Passport 1000 Series switch-1200# format fl

formatting ... Press any key to push operation to
background.

When you press any key, the following text is displayed on the screen:

Note: If you push operation to background you will not be
advised as to the result of the operation.

Release Notes for the Passport 1000 Series Software Release 2.0.7.8

12 Recommendations and feature-specific information about release 2.0.7.8

Do you wish to continue (y/n) ? y

formatting ... operation pushed to background

Passport 1000 Series switch-1200#

IPX RIP and IPX SAP pacing (frame rate)

This frame rate is used to control the number of frames per second for IPX RIP
and IPX SAP. The default is 20 frames per second. In Device Manager, the frame
rate is controlled by the pace parameter; and in the CLI, it is controlled by the
update-delay parameter. (118350-1)

The “pace” is the number of packets per second. The “update-delay” is expressed
in milliseconds.

For example:

pace = 50 (packets per second)

update-delay = 20 milliseconds (1000/pace)

To make changes to the pace parameter:

From the Device Manager menu bar, choose Routing > IPX > RIP or
Routing > IPX > SAP.

To make changes to the update-delay parameter:

In the command line interface (CLI), use the following commands:

config ipx rip update-delay <ipx-network-number>
<delay-timer>

212629-A

or

config ipx sap update-delay <ipx-network-number>
<delay-timer>

where:

ipx-network-number is the network number in hexadecimal format.

delay-timer is a value in milliseconds (1...1000).

Access policy support

You can enable or disable access-policies for TFTP service. To enable TFTP
service for a specified access-policy, enter the following command:

config sys access-policy policy <pid> service
tftp<enable|disable>

Access policy support 13

This command configures specific policy IDs, where

<pid> is the policy ID. Enter a value from 1 to 65535

enable|disable enables or disables the specified access policy for TFTP

service.

In addition, the CLI command

sh config verbose now shows the

access-policy information for TFTP service.

Note: This feature is not supported in Device Manager.

Release Notes for the Passport 1000 Series Software Release 2.0.7.8

14 Bugs fixed in release 2.0.7.8

Bugs fixed in release 2.0.7.8

This section describes bugs that have been fixed in the Passport 1000 Series
switch software release 2.0.7.8, and includes the following bugs-fixed topics:

• “Miscellaneous,” next

• “CLI” on page 15

• “DHCP” on page 15

• “IP” on page 16

• “IPX” on page 16

• “OSPF” on page 17

• “VRRP” on page 17

Miscellaneous

This section describes miscellaneous bugs that have been fixed in the Passport
1000 Series switch software release 2.0.7.8.

• The Passport 1000 series switch is no longer impacted by SNMP vulnerability
issues documented on February 12, 2002 by CERT/CC in their SNMP
advisory (VU#107186 and VU#854306).

• The message
a TFTP transfer has been terminated by the user. (Q00086736)

• When a policy-based VLAN having no active members is deleted, or its IP
address is deleted, the static ARP entry corresponding to this VLAN is now
purged from the ARP table. (Q00173788)

• The configuration of a port which is not a member of any STG is now
properly saved in binary configuration files. (Q00079054)

• Spanning Tree topology change messages are no longer logged for a
link up/down on ports which have STP disabled. (Q00146967)

• The Passport 1000 Series switch software has been enhanced to close idle
TCP connections more rapidly. (Q00123690-01, Q00038153)

• Changes in default access policy parameters are now reflected properly across
reboots with ASCII config files. (Q00157150)

Transfer timed out is no longer erroneously displayed after

• The default access policy can no longer be deleted. (Q00157142)

212629-A

Bugs fixed in release 2.0.7.8 15

• A potential member of a policy based VLAN is now removed from the active
membership of the VLAN, if the port goes down. (Q00035785)

• Port members of a STG are now added as potential members of a policy-based
VLAN based on that STG, even if the same policy-based VLAN exists in
another STG. (Q00156752)

CLI

• A port can now be added as a

not allowed to join member of a

policy-based VLAN, only if the port is a member of the STG to which that
VLAN belongs. (Q00107771)

This section describes CLI bugs that have been fixed in the Passport 1000 Series
switch software release 2.0.7.8.

• The

show config CLI command now displays the information on all the

VLANs configured on the switch irrespective of their VLAN ID.
(Q00154660)

• The CLI command to add, delete and change the MD5 key for OSPF are now
supported only from the OSPF tree and no longer from the VLAN interface.
(Q00045400-02)

• When you attempt to delete a static route by specifying a different mask, the
following error message is now displayed:

Error: route tbl consistency check failed

DHCP

Error: Cannot find route

(Q00030843-01)

• The range for valid values for IP traffic filter IDs is now displayed as 1-767.
(Q00091995-02)

This section describes DHCP bugs that have been fixed in the Passport 1000
Series switch release 2.0.7.8.

• The Passport 1000 Series Switch now uses the ingress port information in the

source ip address field of the DHCP request packet. (Q00208249)

Release Notes for the Passport 1000 Series Software Release 2.0.7.8

16 Bugs fixed in release 2.0.7.8

• DHCP can no longer be enabled on an interface which is not assigned an IP
address. (Q00093563-03))

• DHCP parameters can not be set when DHCP is not enabled on an interface.
(Q00093563-03)

• When DHCP is disabled, all the forwarding paths pertaining to that interface
are deleted. (Q00032689-03)

IP

This section describes the IP bugs that have been fixed in the Passport 1000 Series
switch software release 2.0.7.8.

• A filter route entry for the same destination as an existing OSPF/static route
now gets added to the main routing table, once the OSPF/static route is
deleted. (Q00091868, Q00108739)

IPX

• An IP filter route whose next-hop is reachable through a RIP-learned route
now comes up properly in the route table across a reboot. (Q00084324)

• The default route 0.0.0.0 can now be created and deleted only with a mask
of 0. (Q00030843-01)

• Announce policies now announce local routes which are created before the
announce policy is enabled. (Q00084321)

• RIP or OSPF can no longer be enabled on an interface which does not have an
IP address. (Q00147252-04)

The following IPX bugs have been fixed in Passport 1000 Series routing switch
software release 2.0.7.8:

• Inactive IPX static routes are now restored across reboots with ASCII config
files. (Q00170790)

• The parameter

learnafterincrement is now saved properly across

reboots with ASCII config files. (Q00157135)

• An inactive static route no longer comes into the main routing table when IPX
forwarding is disabled and enabled, or if the switch is rebooted. (Q00084658)

• An IPX static route can now no longer be created with a metric of 16 through
Device Manager. (Q00029863)

212629-A

OSPF

Bugs fixed in release 2.0.7.8 17

• An IPX static SAP entry now replaces a similar dynamic SAP entry in the
main routing table even if it is configured after the dynamic entry was learned.
(Q00024852-03)

The following OSPF bug has been fixed in Passport 1000 Series routing switch
software release 2.0.7.8:

When you attempt to enable OSPF on a non-existent interface, the Passport 1000
Series Switch now displays the following error message:

Error: Consistency check failed OSPF interface not found

(Q00133433-02)

VRRP

The following VRRP bugs were fixed in Passport 1000 Series routing switch
software release 2.0.7.8:

• The same IP address can no longer be configured on two virtual routers
created on an interface. (Q00173068)

• The VRRP IP address owner having critical interface down, now comes up
properly across a binary reboot. (Q00108109)

• When you attempt to assign a subnet address or broadcast address as a VRRP
IP address, the following error message is displayed:

Error: Invalid IP address

(Q00088539-01)

• The multiple VRIDs configured on a single interface are now stable, even if
one of the VRIDs is disabled on that interface. (Q00085081)

Release Notes for the Passport 1000 Series Software Release 2.0.7.8

18 Known issues

Known issues

The following sections describe issues known to exist in the Passport 1000 Series
switch software release 2.0.7.8, and include the following topics:

• “Miscellaneous” on page 18

• “IP” on page 19

Miscellaneous

The following miscellaneous known issues exist in the Passport 1000 Series
switch software release 2.0.7.8:

• An interoperability issue has been observed under the following conditions
that cause the Passport 1200 Switch to reset:

— A Dell or Compaq laptop PC using Windows 2000 is repowered

while connected to the console port of the Passport 1200 Switch.

— A Dell or Compaq laptop PC using Windows 2000 is connected to the

console port of the Passport 1200 Switch for an extended period of time
without running an active application such as hyperterm.
(Q00064666/138370-1)

• The rcStatBridgeOutBroadcastFrames counter is not supported. (113124-1)

• In a Passport 1200 Switch, sourcing a pre-2.0.7.4 configuration ASCII file

containing STGs gives errors as the file attempts to set the port-based
parameters for STG IDs even before the STGs are created. (
141807-1)

• In a Passport 1200 Switch, when an IP filter is applied to a port in a MLT, it is
not automatically applied to all ports in the MLT. For the filter action to take
place, it must be applied individually to all the ports in the MLT.
(Q00045276/145942-1)

• The ifOutBroadcastPkts counter is not supported. (Q00086882)

Q00052243/

212629-A

IP

The following IP issue exists in the Passport 1000 Series switch software release

2.0.7.8:

The Passport switch does not use a dynamically learned route (RIP/OSPF) when a
static route for that network becomes inactive.
(Q00055362/115167-1, 121564-1)

Related publications

Refer to the following Passport documentation for additional information:

• Reference for the Passport 1000 Series Management Software Switching
Operations (part number 208964-A)

Related publications 19

This publication describes how to use Device Manager to configure and
manage layer 2 (switching) functions in a Passport switch.

• Reference for the Passport 1000 Series Management Software Routing
Operations (part number 208965-A)

This document describes how to use Device Manager to configure and
manage layer 3 (routing) functions in a Passport switch.

• Various addenda to the release notes for software release 2.0 for Passport (and
Accelar) 1000 Series products (part numbers 206494-A through 206494-Z)

• Release Notes for the Accelar 1000 Series Products Software Release 2.0
(part number 896-00181-E)

• Networking Concepts for the Passport 1000 Series Routing Switch (part
number 205588-B)

• Reference for the Accelar 1000 Series Command Line Interface Software
Release 2.0 (part number 202086-B)

• Installing the Accelar 1000 Series Chassis (part number 893-01051-D)

• Using the Accelar 1050/1051 Routing Switch (part number 201603-C)

• Using the Accelar 1100/1150 Routing Switch (part number 893-01050-C)

• Using the Accelar 1200/1250 Routing Switch (part number 893-01049-C)

• Upgrading to Accelar 2.0 Software (part number 206077-A)

Release Notes for the Passport 1000 Series Software Release 2.0.7.8

20 Hard-copy technical manuals

Hard-copy technical manuals

You can print selected technical manuals and release notes free, directly from the
Internet. Go to the www.nortelnetworks.com/documentation URL. Find the
product for which you need documentation. Then locate the specific category and
model or version for your hardware or software product. Use Adobe Acrobat
Reader to open the manuals and release notes, search for the sections you need,
and print them on most standard printers. Go to Adobe* at the www.adobe.com
URL to download a free copy of the Adobe Acrobat Reader*.

You can purchase selected documentation sets, CDs, and technical publications
through the Internet at the www1.fatbrain.com/documentation/nortel/ URL.

How to get help

If you purchased a service contract for your Nortel Networks product from a
distributor or authorized reseller, contact the technical support staff for that
distributor or reseller for assistance.

If you purchased a Nortel Networks service program, contact one of the following
Nortel Networks Technical Solutions Centers:

Technical Solutions Center Telephone

EMEA (33) (4) 92-966-968

North America (800) 4NORTEL or (800) 466-7835

Asia Pacific (61) (2) 9927-8800

China (800) 810-5000

An Express Routing Code (ERC) is available for many Nortel Networks products
and services. When you use an ERC, your call is routed to a technical support
person who specializes in supporting that product or service. To locate an ERC for
your product or service, go to the www12.nortelnetworks.com/ URL and click
ERC at the bottom of the page.

212629-A