Download
Share
Print this page
Allied Telesis AT-9900 Series Release Note
  1. Manuals
  2. Brands
  3. Allied Telesis Manuals
  4. Switch
  5. AT-9900 Series
  6. Release note
Allied Telesis AT-9900 Series Release Note

Allied Telesis AT-9900 Series Release Note

At-8900 and at-9900 series software maintenance release note 276-03
Hide thumbs Also See for AT-9900 Series:

Advertisement

Quick Links

Download this manual See also: Function Manual, Network Manual
Software Maintenance Release Note
Version 276-03
for AT-8900 and AT-9900 series switches
This software maintenance release note lists the issues addressed and enhancements made in Maintenance Version 276-03 for Software Release 2.7.6. Release
details are listed in the following table:
Models
AT-8948
AT-9924T, AT-9924SP, AT-9924T/4SP
Caution: Using a maintenance version on the wrong model may cause unpredictable results, including disruption to the network.
This maintenance release note should be read in conjunction with the following documents:
Release Note for Software Version 2.7.6 for AT-8800, Rapier i, AT-8700XL, AT-8600, AT-9900, AT-8900 and AT-9800 Series Switches and AR400 and AR700
Series Routers (document number C613-10462-00 Rev A)
your switch's Document Set for Software Release 2.7.5. This document set is available on the CD-ROM that shipped with your switch, or from:
www.alliedtelesyn.co.nz/documentation/documentation.html
Caution: Information in this release note is subject to change without notice and does not represent a commitment on the part of Allied Telesis Inc. While every
effort has been made to ensure that the information contained within this document and the features and changes described are accurate, Allied Telesis Inc. can
not accept any type of liability for errors in, or omissions arising from the use of this information.
Series
Release File
AT-8900
89276-03.rez
AT-9900
89276-03.rez
Date
Size (bytes)
4 August 2006
4572948
4 August 2006
4572948
GUI file
d9924e27.rsc

Advertisement

loading

Related Manuals for Allied Telesis AT-9900 Series

Summary of Contents for Allied Telesis AT-9900 Series

  • Page 1 Caution: Information in this release note is subject to change without notice and does not represent a commitment on the part of Allied Telesis Inc. While every effort has been made to ensure that the information contained within this document and the features and changes described are accurate, Allied Telesis Inc. can not accept any type of liability for errors in, or omissions arising from the use of this information.
  • Page 2 Enabling and Installing this Release To use this maintenance release you must have a base release license for Software Release 2.7.6. Contact your distributor or reseller for more information. To enable this release and install it as the preferred release, use the commands: enable rel=89276-03.rez num=2.7.6 set install=pref rel=89276-03.rez Levels...
  • Page 3 Features in 276-03 Software Maintenance Version 276-03 includes all resolved issues and enhancements in earlier versions, and the resolved issues and enhancements in the following tables. In the tables, for each product series: ■ “Y” indicates that the resolution is available in Version 276-03 for that product series. ■...
  • Page 4 Features in 276-02 Software Maintenance Version 276-02 includes all resolved issues and enhancements in earlier versions, and the resolved issues and enhancements in the following tables. In the tables, for each product series: ■ “Y” indicates that the resolution is available in Version 276-02 for that product series. ■...
  • Page 5 Level 2 Module Level CR00000529 IPv6, When a better route for multicast traffic became available, PIM for IPv6 did not recalculate the route and switch the traffic to use it. PIM6 This issue has been resolved. CR00006475 IP Gateway, When PIM-DM or PIM-SM was forwarding traffic through the CPU at high data rates and an SG entry was deleted, it was possible for the router or switch to reboot.
  • Page 6 Module Level CR00008699 Switch Previously, when 300 MAC address filters were added to a port and the port was reset, the CPU became 100% utilised. This issue has been resolved. CR00008992 IPv6 The router or switch sometimes unexpectedly stopped forwarding IPv6 multicast traffic if the multicast’s upstream path changed.
  • Page 7 Module Level CR00010886 IPv6, When a user enabled a Dial-on-Demand PPP interface, sometimes the router or switch did not apply the associated IP route change. This meant that routes via IP Gateway, the Dial-on-Demand PPP interface were not available for use. When this occurred, routed traffic failed to activate the associated Dial-on-Demand PPP interface.
  • Page 8 Module Level CR00011349 At low baud rates, a synchronous connection was unable to reach 100% utilisation of the available bandwidth. The queueing mechanism has been improved to allow 100% link utilisation. Flag sharing between back-to-back HDLC frames is now supported for synchronous connections. CR00011396 PIM on IPv6 When a user specified a static RP candidate and saved the configuration with the...
  • Page 9 Module Level CR00011665 When using an unstructured TDM group over an E1 mode PRI interface, occasionally a high level of errors was experienced. This may have caused the link to be unstable, or may have resulted in reduced data throughput. This issue has been resolved.
  • Page 10 Module Level CR00011855 TCP, TCP sessions would sometimes “hang” in the Close Wait state. This behaviour occurred when a UPnP notification session was closed by the control point UPnP (usually Windows XP, SP2), via a “200 OK” message that contained a “Connection: close”...
  • Page 11 Module Level CR00012013 VLAN When MLD snooping was enabled and the switch received IPv6 multicast packets (such as MLD Query, Report or Done messages; IPv6 NS packets; and IPv6 RA packets) on a non-master port of a trunk group, it incorrectly forwarded them out the master port.
  • Page 12 Module Level CR00012140 If the link between two PIM Sparse Mode neighbours was removed, sometimes one of the neighbours rebooted. This issue has been resolved. CR00012167 Switch When MAC address entries time out in the switch’s ARP table, the switch re-ARPs for the entry’s MAC address and adds the entries back if it gets a reply.
  • Page 13 Module Level CR00012304 TPAD TPAD previously had issues when the LRC (Longitudinal Redundancy Check) at the end of a transaction was 0x00 and the transaction was via the TCP port. The transaction would stall in the box and eventually time out the X.25 call. This issue has been resolved.
  • Page 14 Module Level CR00012482 Core, Utility, A few commands on the switch are local commands—they relate only to the Stacking switch on which the user types them, and not to any other switch in the stack. The edit command is one such command. Previously, local commands were directed across the stack, which meant they could be sent to other stack members.
  • Page 15 Module Level CR00012613 Firewall When the WAN load balancer was used with IP NAT (instead of firewall NAT), and an FTP session was established to a server on the public network, the router did not correctly establish a return session. This meant data was unable to flow correctly back from the server, and the router rebooted.
  • Page 16 Level 3 Module Level CR00006900 BGP, If the metric on a blackhole route was changed using the command set ip route and this caused another route, which was being suppressed by the blackhole IP Gateway route, to become preferred, that route could sometimes fail to be imported into BGP.
  • Page 17 Module Level CR00010508 When the router or switch received a BGP update message and created new prefix entries for the routes in the update, it reversed the order of the AS segments. This issue has been resolved. CR00010952 IPv6 If either of the following were configured for MLD: ■...
  • Page 18 Module Level CR00011510 IPsec The maximum SPI value has been increased in the commands: create ipsec saspecification=spec-id inspi=spi set ipsec saspecification=spec-id inspi=spi outspi=spi The spi is now an integer in the range 256 to 4294967295. TTY, VRRP When VRRP debug was enabled from a telnet session, the debugging did not CR00011659 stop when the telnet session closed.
  • Page 19 Module Level CR00011931 VLAN After users added multiple ports to one private VLAN as tagged ports, those ports could not be added to another private VLAN as tagged ports by using a single command (they could be added one port at a time). This issue has been resolved.
  • Page 20 Module Level CR00012040 IP Gateway, If policy-based routing and the WAN load balancer were both configured, the WAN load load balancer balanced traffic even if it matched the routing filter. Because the balancer purpose of policy-based routing is to control the route that traffic uses, this was incorrect.
  • Page 21 Module Level CR00012307 VLAN Previously, when MSTP was configured it was not possible to delete ports from VLANs in the MSTP CIST, unless MSTP was first disabled. This issue has been resolved. Deleting such ports is now permitted. CR00012314 TACACS+, If a user connects to the router or switch via telnet and is authenticated using Telnet TACACS+, previously the rem_addr field in the TACACS+ packets contained the...
  • Page 22 Module Level CR00012413 Logging When a user creates permanent log filters, the existing default filter is moved to the bottom of the list of filters, instead of being deleted. This behaviour is correct. However, output of the command show config dyn=log previously included commands to delete the default filter then add it back in, which was confusing.
  • Page 23 Module Level CR00012594 With unidirectional traffic or small frames, an STT connection would sometimes stop passing data. This issue has been resolved. Level 4 Module Level CR00003286 Core, ISDN Previously, the log message generated when an ISDN call came up sometimes reported the channel as “channel unknown”...
  • Page 24 Module Level CR00011995 To simplify displaying BGP memory usage, the command show bgp memlimit bgp has been removed. Use the command show bgp memlimit scan instead. Also, you can now display only the BGP backoff log messages by using either of the following commands: show log type=55 subtype=backoff show log type=55 subtype=7...
  • Page 25 Enhancements Module Level CR00007105 MSTP Two new commands have been added to simplify MSTP management: enable mstp port={port-list|all} disable mstp port={port-list|all} These commands enable or disable MSTP on the specified ports for the CIST and all currently-configured MSTIs, in a single step. Previously, this operation required two commands.
  • Page 26 Module Level CR00011204 IP Gateway This Software Version allows you to add ARP entries with multicast MAC addresses and allows the router or switch to accept packets with conflicting IP and MAC addresses. It introduces the enable ip macdisparity and disable ip macdisparity commands to support this.
  • Page 27 Module Level CR00012620 Bridging By default, when the router receives a tagged packet on an Eth or VLAN interface and bridges it, the bridge strips out the packet’s VLAN tag. This enhancement enables you to set the bridge to instead retain the tag, by using off, no or false in the new command: set bridge stripvlantag={on|off|yes|no|true|false} The default is on.
  • Page 28 Features in 276-01 Software Maintenance Version 276-01 includes the resolved issues and enhancements in the following tables. In the tables, for each product series: ■ “Y” in a white column indicates that the resolution is available in Version 276-01 for that product series. ■...
  • Page 29 Module Level CR00008742 Switch Previously, if a switch port’s learn limit was changed to a number that was less than the currently-learned number of MAC addresses, you were unable to delete the learned MAC addresses. The switch also did not lock the port. This issue has been resolved.
  • Page 30 Module Level CR00010539 Sometimes the forwarding of packets occurred unnecessarily slowly. This happened if the forwarding interface was associated with an IP filter with a variable field pattern, such as TCP session or ICMP code and type. For switches, note that this issue occurred when the switch was routing IP packets in software, and had no effect on the hardware forwarding of packets.
  • Page 31 Module Level CR00010996 Port When port authentication was using a RADIUS server, it sometimes stopped Authentication working after several hours. This was because port authentication generated RADIUS Accounting Request (STOP) messages with an incorrect Acct-Session- Time value. This issue has been resolved. CR00011040 Ping When the router or switch was configured with multiple logical interfaces, it...
  • Page 32 Module Level CR00011243 ISAKMP Previously, if an IPsec/ISAKMP tunnel was under heavy load, an ISAKMP peer may have retransmitted messages. When the last message in an ISAKMP exchange was retransmitted, the remote peer did not expect to receive the second message after the exchange had finished and caused the router or switch to reboot.
  • Page 33 Module Level CR00011387 Using an online limit for a PPP interface over PPPoE over a VLAN caused the router or switch to reboot when the online limit was reached. This issue has been resolved. CR00011402 Previously, if an SSL client closed the TCP connection before the SSL handshake was complete then the SSL server was not forwarding the notification onto HTTP.
  • Page 34 Level 3 Module Level CR00006439 When a user logged onto the router or switch through the GUI, the router or switch’s log recorded several HTTP 404 (Not Found) errors. This was because the browser expected to see some images that the GUI resource file did not contain. This issue has been resolved.
  • Page 35 Module Level CR00011664 PERM The IAC (interpret as control) characters (0xFF) are escaped when sent across the permanent assignment connection. If TCP could not send the entire buffer, the two IAC characters were previously split up, which resulted in extra IAC characters in the receive buffers.
  • Page 36 Enhancements Module Level CR00010196 BGP, A new feature enables you to set the maximum length of the hardware route update queue, and display the current queue size, status and maximum length. IP gateway, For more information, see Switch page CR00011355 PERM Support for permanent assignments has been added to the router.

  • Page 37: Adding Static Arp Entries

    Adding Static ARP Entries with Multicast MAC Addresses (CR00011204) This Software Version allows you to add ARP entries with multicast MAC addresses and allows the router or switch to accept packets with conflicting IP and MAC addresses. It introduces the enable ip macdisparity and disable ip macdisparity commands to support this. Adding Static ARP Entries Valid ARP entries are normally restricted to unicast IP with unicast MAC addresses.
  • Page 38 Adding Static ARP Entries with Multicast MAC Addresses (CR00011204) To see whether macdisparity is enabled or disabled, use the command: show ip For an example of how to use ARP entries with multicast MAC addresses, see Guideline to Windows 2003 Network Load Balancing Clustering with Allied Telesyn Switches.
  • Page 39 Securing a Single VLAN through Switch Filters (CR00011271) On AT-8824, Rapier 24i, AT-8724XL and AT-8624 switches, this enhancement enables you to use switch filters to secure only the current VLAN, instead of securing all VLANs on the switch. To turn on this feature, a new command disables “vlansecure” for filters (see this enhancement (the default situation) a switch filter only allows a host to access the network through a particular port on the switch.
  • Page 40 Configuring vlansecure To turn off the default behaviour, so that the filter prevents access to only the current VLAN when you move the host, use the new command: disable switch filter vlansecure To return to the standard filter behaviour, use the new command: enable switch filter vlansecure To display which mode the filtering behaviour is in, use the existing command: show switch filter...
  • Page 41 Making Asynchronous Ports Respond More Quickly (CR00011565) When an asynchronous port is in ten mode, it bundles together the characters that it receives within a certain time period, instead of passing them one at a time to a higher protocol layer for processing. The time period over which characters are bundled is set by the ten timer. Bundling reduces the load on the CPU by spreading the character processing overhead across several characters.
  • Page 42 Figure 1: New parameters in the output of the show asyn=0 command ASYN 0 : 0000001470 seconds Last change at: 0000001465 seconds ASYN information Name ... Asyn 0 Status ... enabled Mode ... Ten Data rate ... 9600 Parity ... none Data bits ...
  • Page 43 Displaying Routes Learned from a Specific BGP Peer (CR00011724) This enhancement enables you to display: ■ the number of routes learned from a specific peer ■ information about each route learned from a specific peer Displaying the Number of Routes from a Peer To display the number of routes learned from a specific peer, use the existing command: show bgp peer=ip-address and check the new “Routes learned”...
  • Page 44 Route Update Queue Length (CR00010196) When hardware learning delay is enabled (the default), the switch learns new routes in software, then places them into a queue for adding them to its hardware routing table. Defaults have been set for the maximum number of entries in the queue, and depend on the amount of memory installed on the switch, as shown in the following table: Memory Size (Mbytes) Default length (number of entries)
  • Page 45 Figure 4: Output of the show switch command when hardware learning delay is enabled Switch Configuration ----------------------------------------------------------- Switch Address ... 00-00-cd-12-78-03 Learning ... ON Ageing Timer ... ON IP route: Learn delay ... 4 ms queue size ... 0 queue limit ... 1000000 percent in use ...
  • Page 46 Permanent Assignments (CR00011355) Permanent assignments provide a method for creating permanent links between terminal ports on routers. Any two terminal ports on a single router or on routers that can communicate with each other via TCP/IP can be set up to have a permanent assignment between them. Asynchronous traffic coming into each port is sent via TCP to other port and then sent out that port.
  • Page 47 Figure 5: Example output from the show perm command Port Name Local Remote IP address ----------------------------------------------- laser-print 172.16.8.37 ----------------------------------------------- If the two ports of the permanent assignment are on different routers, the router, the command only needs to be entered once. The IP address specified may be any one of the IP addresses of the router in question. A permanent assignment can be removed with the command: delete perm=name This command removes the permanent assignment from the local router.
  • Page 48 Figure 6: Example output from the show perm command for router 172.26.4.1 Port Name Local Remote IP address ----------------------------------------------- main office 172.20.34.9 ----------------------------------------------- The commands to be executed on the router with address 172.20.34.9 are: add perm=main office lport=3 rport=3 ip=172.26.4.1 show perm which produces the output shown in Figure...

  • Page 49: Command Reference

    Command Reference This section describes commands available on the router to configure and manage permanent assignments. add perm Syntax ADD PERM=perm-name LPORT=lport RPORT=rport IP=ipadd where: ■ perm-name is the name of the permanent assignment. The name is case- sensitive and must be identical on each router in the permanent assignment. If the name contains spaces, it must be in double quotes.
  • Page 50 Permanent Assignments (CR00011355) Related Commands delete perm reset perm set perm show perm delete perm Syntax DELete PERM=perm-name where perm-name is the name of the permanent assignment. The name is case sensitive and must be identical on each router in the permanent assignment. If the name contains spaces, it must be in double quotes.
  • Page 51 Permanent Assignments (CR00011355) reset perm Syntax RESET PERM=perm-name where perm-name is the name of the permanent assignment. The name is case sensitive and must be identical on each router in the permanent assignment. If the name contains spaces, it must be in double quotes. Description This command resets a named permanent assignment.

  • Page 52: Related Commands

    set perm Syntax SET PERM=perm-name [LPORT=lport] [RPORT=rport] [IP=ipadd] where: ■ perm-name is the name of the permanent assignment. The name is case sensitive and must be identical on each router in the permanent assignment. If the name contains spaces, it must be in double quotes. ■...
  • Page 53 show perm Syntax SHOW PERM[=perm-name] where perm-name is the name of a permanent assignment Description This command displays the name, local and remote ports and remote IP address for all permanent assignments currently defined on the router. If a permanent assignment is specified by name, only that permanent assignment is displayed Figure 8: Example output from the show perm command Port...
  • Page 54 Permanent Assignments (CR00011355) Related Commands add perm delete perm reset perm set perm Version 276-03 C613-10474-00 REV B...

This manual is also suitable for:

At-9924tAt-9924spAt-9924t/4spAt-8900At-8948