Nortel VPN Router Software Release V6_05.300



Similar documents
Nortel VPN Router Software Release V8_05.100

Chapter 10 Troubleshooting

DSL-G604T Install Guides

Intel Active Management Technology with System Defense Feature Quick Start Guide

Configuring Switch Ports and VLAN Interfaces for the Cisco ASA 5505 Adaptive Security Appliance

Barracuda Link Balancer

Management Software. Web Browser User s Guide AT-S106. For the AT-GS950/48 Gigabit Ethernet Smart Switch. Version Rev.

Chapter 3 Management. Remote Management

Chapter 4 Management. Viewing the Activity Log

Technical Reference / User Guide

Steps for Basic Configuration

SonicOS 5.9 / / 6.2 Log Events Reference Guide with Enhanced Logging

Release Notes. Pre-Installation Recommendations... 1 Platform Compatibility... 1 Known Issues... 2 Resolved Issues... 2 Troubleshooting...

Issue 1 April 2, 2009 Using the VT2442 Web User Interface

Broadband Router ALL1294B

Note: This case study utilizes Packet Tracer. Please see the Chapter 5 Packet Tracer file located in Supplemental Materials.

SNMP Manager User s Manual

LevelOne. User Manual. FBR-1430 VPN Broadband Router, 1W 4L V1.0

Chapter 8 Advanced Configuration

Chapter 7 Troubleshooting

Chapter 8 Router and Network Management

VPN Tracker for Mac OS X

SonicOS Enhanced Release Notes SonicWALL, Inc. Software Release: May 3, 2006

TW100-BRV204 VPN Firewall Router

Establishing a VPN tunnel to CNet CWR-854 VPN router using WinXP IPSec client

Router Setup Manual. NETGEAR, Inc Great America Parkway Santa Clara, CA USA

SonicWALL Global Management System Configuration Guide Standard Edition

User Manual. Onsight Management Suite Version 5.1. Another Innovation by Librestream

Alteon Basic Firewall Load Balancing. Sample Configuration

Release Notes for Dominion SX Firmware 3.1.6

DSL-2600U. User Manual V 1.0

3.5 LAN HDD Enclosure User s Manual

DSL-2500U. D-Link. User Manual. ADSL2/2+ Ethernet Router. RECYCLABLE 2006/08/30 Ver Building Networks for People

GS510TP and GS110T Gigabit Smart Switches

Creating a Gateway to Client VPN between Sidewinder G2 and a Mac OS X Client

Quick Start Guide. WRV210 Wireless-G VPN Router with RangeBooster. Cisco Small Business

BROADBAND INTERNET ROUTER USER S MANUAL. Version Page 1 of 13 -

Magnum Network Software DX

TW100-BRF114 Firewall Router. User's Guide. Cable/DSL Internet Access. 4-Port Switching Hub

Chapter 1 Introduction

Broadband Router ESG-103. User s Guide

Application Note Startup Tool - Getting Started Guide

Configuring SSL VPN on the Cisco ISA500 Security Appliance

Configuring CSS Remote Access Methods

Avaya Wireless AP Device Manager User Guide

ZyXEL AES-100 V2.03(AS.0) Release Notes/Manual Supplement

Vigor2800 Series ADSL2/2+ Security Router User s Guide

RF550VPN and RF560VPN

Guidelines for Using an Ethernet Printer. - Mac OS X - Rev. 1.0

Installing Cable Modem Software Drivers

CCNA Discovery Networking for Homes and Small Businesses Student Packet Tracer Lab Manual

ADSL MODEM. User Manual V1.0

How To Establish Site-to-Site VPN Connection. using Preshared Key. Applicable Version: onwards. Overview. Scenario. Site A Configuration

7. Configuring IPSec VPNs

ProSafe Plus Switch Utility

Release Notes. Release Purpose... 1 Platform Compatibility... 1 Upgrading Information... 1 Browser Support... 2 Known Issues... 3 Resolved Issues...

ASUS WL-5XX Series Wireless Router Internet Configuration. User s Guide

SonicOS Enhanced Release Notes TZ 180 Series and TZ 190 Series SonicWALL, Inc. Firmware Release: August 28, 2007

ADSL Modem. User Guide AM200 (EU/LA) Model No. WIRED

NMS300 Network Management System

Release Notes. Release Purpose... 1 Platform Compatibility... 1 Upgrading Information... 1 Browser Support... 1 Known Issues... 2 Resolved Issues...

ABB solar inverters. User s manual ABB Remote monitoring portal

Configuring a Check Point FireWall-1 to SOHO IPSec Tunnel

Firmware Release Notes

Wireless Router Setup Manual

Funkwerk UTM Release Notes (english)

Topic 7 DHCP and NAT. Networking BAsics.

3.5 EXTERNAL NETWORK HDD. User s Manual

PPTP Server Access Through The

Release Notes. Contents. Release Purpose. Platform Compatibility. Windows XP and Internet Explorer 8 Update

HP StorageWorks MSL2024, MSL4048, and MSL8096 Tape Libraries firmware release notes. Firmware version 4.60 (MSL2024), 6.90 (MSL4048), 9.

Apple Airport Extreme Base Station V4.0.8 Firmware: Version 5.4

Configuration Professional: Site to Site IPsec VPN Between Two IOS Routers Configuration Example

Feature Brief. FortiGate TM Multi-Threat Security System v3.00 MR5 Rev. 1.1 July 20, 2007

Packet Capture. Document Scope. SonicOS Enhanced Packet Capture

RouteFinder SOHO. Quick Start Guide. SOHO Security Appliance. EDGE Models RF825-E, RF825-E-AP CDMA Models RF825-C-Nx, RF825-C-Nx-AP

Lab Organizing CCENT Objectives by OSI Layer

Fireware How To VPN. Introduction. Is there anything I need to know before I start? Configuring a BOVPN Gateway

Chapter 6 Using Network Monitoring Tools

Layer 3 Routing User s Manual

Ethernet Routing Switch 5000 Series Software Release 6.2.8

Configuring the PIX Firewall with PDM

Manage Log Collection. Panorama Administrator s Guide. Version 7.0

COPYRIGHT & TRADEMARKS FCC STATEMENT EC DECLARATION OF CONFORMITY (EUROPE) SAFETY NOTICES

ZyXEL MGS-3712F V3.90(BBB.4)C0 Release Note/Manual Supplement

Set up your AT-AR440S ADSL Router for Typical Network Scenarios. Note: The latest documentation can always be downloaded from

Client applications are available for PC and Mac computers and ios and Android mobile devices. Internet

Operating System for Ubiquiti EdgeRouters. Release Version: 1.8

N900 WiFi Router. Model WNDR4500v3 User Manual. January East Plumeria Drive San Jose, CA USA

Chapter 4 Managing Your Network

Setting up VPN connection: DI-824VUP+ with Windows PPTP client

AP6511 First Time Configuration Procedure

Feature Guide. RingMaster Software Version 7.4 Mobility System Software Version 7.3

N300 WiFi Range Extender WN2000RPT User Manual

LifeSize Networker Installation Guide

AT-GS950/8. AT-GS950/8 Web Users Guide AT-S107 [ ] Gigabit Ethernet Smart Switch Rev A

Configuring H.323 over Port Network Address Translation (PNAT) for Avaya IP Endpoints using the Avaya SG200 Security Gateway - Issue 1.

VOIP-211RS/210RS/220RS/440S. SIP VoIP Router. User s Guide

Pharos Control User Guide

How do I set up a branch office VPN tunnel with the Management Server?

Transcription:

Nortel VPN Router Software Release V6_05.300 1. Release Summary Release Date: November 10, 2008 Purpose: Software Maintenance release to address customer found software issues. 2. Important Notes Before Upgrading to This Release Users are advised to backup their LDAP and CONFIG files before upgrading. If they wish at some later point to return the unit to non 3DES or non user defined encryption key LDAP configuration, the unit will have to be reset to factory defaults and then the config & ldap files can be restored. 3. Platforms Supported Nortel VPN Router (formerly known as Contivity Secure IP Services Gateway) software release V06_05.300 supports the following hardware platforms 600 1010 1050 1100 1600 1700 1740 1750 2600 2700 2750 4600 5000 4. Notes for Upgrade For details on how to upgrade your Nortel VPN Router (formerly known as the Contivity Secure IP Services Gateway), see the Contivity Secure IP Services Gateway Release Notes ((part no. 315000-G Rev 01 and part no. 315000-H Rev 00). Release notes are available at http://www.nortel.com/support; select the Security & VPN product family, select VPN Router Portfolio and select Documentation. 5. Version of Previous Release Software Version 6.05.250 2008 Nortel Networks Limited Page 1 of 1

6. Compatibility In order to take full advantage of this release the following versions are recommended for the related products. This is only a recommendation; this release is compatible with all supported versions. Nortel VPN Client 6.01.146 Tunnel Guard Agent 2.0.2.0 NVG 6.0.1 NOTE: Nortel VPN Client version 5_01.103 and above is required to get the full benefit of Entrust Roaming Profiles and Entrust Link Certificates. 7. Changes in This Release New Features in This Release None Old Features Removed From This Release None Problems Resolved in This Release Nortel Networks VPN Router sustaining release Version 6.05.300 resolves the following issues: Q01106239 - The Ethernet interface on the Nortel VPN Router may show data traffic even after disabling the interface. Q01325546 - The Nortel VPN Router may crash when the internal HTTP task writes beyond the message buffer. Q01683371 - The LDAP entries newoakbotag and newoakfilterruleref on the Nortel VPN Router are not fully compliant with the DN type specifications in RFC 4514 and RFC 4517.. Q01726570 - Nortel VPN Router VRRP password may not get encoded correctly when the password string is shorter than 8 characters. Q01799997 - VLAN routes may appear in the routing table on the Nortel VPN Router even when the physical interface is disabled. Q01800117 - When the show running config user-friendly command is issued, the Nortel VPN Router may display an error message and part of the VRRP configuration twice. Q01808947 - The Nortel VPN Router may crash when processing a CMP Request with large reference number and large authorization code. 2008 Nortel Networks Limited Page 2 of 2

Q01811614 - A CMP request may get stored on the Nortel VPN Router even after a factory reset. Q01811691 - On the Nortel VPN Router, the Protocol and the Protocol Option of an ATM PVC should not be configurable once the VC s have been created. Q01812333 - An ADSL Virtual Circuit can be configured on the Nortel VPN Router CLI without specifying an IP address. Q01813026 - A Frame Relay virtual circuit can be configured on the Nortel VPN Router GUI without specifying a fragment size. Q01813634 - The field "Use Default Route" is checked by default in the GUI, but unchecked in the CLI, on the Nortel VPN Router Frame Relay and ADSL configuration. Q01813746 - The Nortel VPN Router GUI may not permit creating and enabling a CLIP address when another CLIP address exists. Q01821663 - When configuring an ADSL Virtual Circuit in the GUI with MPoA protocol, the 0.0.0.0 network may be added as a Direct Network on the Nortel VPN Router. Q01832326 - When configuring an ISDN/V90 connection on the Nortel VPN Router, a static route may be created which cannot be changed or deleted. Q01834607 - On the Nortel VPN Router GUI the Services->Demand page may become unavailable when returning from the Routing->Interface Group page. Q01850931 - On the Nortel VPN Router GUI, when a network name is created with special characters, the network may not be created. Q01852420 - On the Nortel VPN Router the Persistence feature may require Advanced Routing License key to be installed even when a Premium Routing License key is installed. Q01854304 When a VRRP failover occurs after a critical interface is disabled,, a Nortel VPN Router client is unable to access the private network because a Gratuitous ARP is sent from the VRRP master which relinquished its master status earlier. Q01854652 - The MIB ipadentnetmask may not report correct mask for the Nortel VPN Router management IP address. Q01854873 A change in the MTU value for an Ethernet interface on the Nortel VPN Router may not be seen in the IP Forward Table until the router is restarted. Q01856300 - The Nortel VPN Router may crash when Full Distinguished Name with a trailing backslash is entered on the CMP page. 2008 Nortel Networks Limited Page 3 of 3

Q01856362 - When a QoS MF classifier rule is created with a backslash the Nortel VPN Router may crash. Q01858167 - User sessions which fail the Tunnel Guard check may not be removed from the session table on the Nortel VPN Router. Q01861400 - SNMP Server traps may not be sent to any trap hosts from the Nortel VPN Router if one trap host is not reachable. Q01862932 - The Nortel VPN Router may crash in the task tdrm when an interface goes down from link failure or speed/duplex change. Q01864233 - The SNMP traps PowerUp and ColdStart may not be sent from the Nortel VPN Router after it finishes boot sequence. Q01865687 - The Nortel VPN Router GUI may display an error page when configuring incorrect values for DHCP Lease Time. Q01867534 - Nortel TunnelGuard may log numerous Connection Error Code 60 messages on the Nortel VPN Router. Q01869972 - A deleted Private Default Gateway may reappear on the Nortel VPN Router after a reboot. Q01870717 - Fragmented packets from the Nortel Secure Router 1004 may not be decrypted by the Nortel VPN Router after re-assembly. Q01870760 - The Nortel VPN Router may crash in the task tpace when processing a packet coming in through a Branch Office tunnel whose IPsec session has been unexpectedly removed. Q01873415 - The Nortel VPN Router may crash in the task trip when ABOT tunnels configured. Q01876694 - The tpace task on the Nortel VPN Router may Leak Memory when Frame Relay PVCs are configured. Q01877252 - The default route may not work on the E1 card after PPP bounces on the Nortel VPN Router. Q01877590 - The Ping to Validate Public Default Routes feature may fail on sub interfaces of the Nortel VPN Router. Q01884384 - The Nortel VPN Router certificate renewal is failing because it is based on the public key instead of the private key and may not renew the certificate at the correct time. Q01890686 - On the Nortel VPN Router traffic with QOS marking EF may be delayed every 11 minutes or when checking LAN statistics. 2008 Nortel Networks Limited Page 4 of 4

Q01891026 - The Dial On Demand Circuit may drop and not recover on the Nortel VPN Router when the LDAP is stopped and restarted. Q01892572 When a VLAN sub-interface on the Nortel VPN Router is disabled and re-enabled, it remains DOWN until the parent interface is disabled and re-enabled. Q01892628 - The IP Address Pool on the Nortel VPN Router may show incorrect number of used addresses. Q01893144 - The Nortel VPN Router CLI may allow renaming the default DHCP pool, even if it is assigned to group. Q01893212 - The Nortel VPN Router CLI may permit editing a DHCP pool with addresses in use. Q01894318 - A non-admin user on the Nortel VPN Router with "view only" rights may be allowed to run the ping and traceroute tools using the GUI. The same user may not be allowed to run the tools using the CLI. Q01894862 - The Nortel VPN Router CLI show running config command may display an error message if an IP address is configured for a subinterface Q01895360 - The Nortel VPN Router CLI user-friendly show running config may not display correct sub-interface filter configuration. Q01896267 - When configuring DHCP Lease time value using the Nortel VPN router GUI, if the value is changed to infinite time the GUI may not allow changing it back to the default value. Q01896834 - The Nortel VPN Router CLI may allow changing the protocol of a Frame Relay Virtual Circuit when it should not be allowed. Q01897428 - A DOWN subinterface may be reported as UP and its routes may be added into the routing table after disabling/enabling the 802.1Q feature on the Nortel VPN Router physical interface. Q01897486 - The Nortel VPN Router CLI show running config user-friendly may show group profiles after resetting to factory default. Q01897562 - The Nortel VPN Router may crash in the tpace task. Q01899695 - The Nortel TunnelGuard Rule Expression using the NOT constructor may result in the crash of the Nortel VPN Router. Q01900950 - The Nortel VPN Router CLI may not show an error message on incorrect configuration of E1 Controller. Q01908454 - Nortel VPN Router Reset to Factory Defaults may function incorrectly on diskless models. 2008 Nortel Networks Limited Page 5 of 5

Q01919859 - The Nortel VPN Router may crash in the tpace task after logging a message that has over 256 bytes of variable data. Q01924071 - With the NVR configured with RADIUS authentication and Error Code Pass Thru enabled, an error message is shown on a Token Security Challenge window after an invalid login. Q01929726 The Nortel VPN Router may core in the SNMP task when many user sessions are being logged off simultaneously. Q01929743 - Pace data saved for debugging purposes is stored incorrectly and may not be visible in a Nortel VPN Router core file. Q01930085 - The KeepAlive built-in function may not work correctly on the Nortel VPN Router. Q01935087 - When editing an address pool that is assigned to a group using the Nortel VPN Router CLI, the CLI may display an error message. Q01935278 Dead Peer Detection on the Nortel VPN Router does not recognize a branch office link failure if traffic for the remote network is received from the local network and the remote and local endpoints are not directly connected. 8. Outstanding Issues [Please reference Development Technical Support Bulletin for additional information regarding enhancement of code to support 24 byte user encryption key] 9. Known Limitations Q01533607 Request To add back the Ip Packet Drop checkbox to Event Log Note: There are additional behind the scenes requirements in order to get Ip Packet drops to be logged to Event Log as is the case with other protocols that have debug messages (i.e. PPP, FR, etc). REQUIREMENT: The following two steps must also be performed in order for the new IP Packet Drop checkbox debug messages to be captured and displayed to Event Log. 1. Set Capture and Display Event Log filters to include Debug Severity messages. 2. Enter SetDebugLogCapture 1 (without quotes) through the Nortel VPN Router services GUI page. This Services GUI page is reached through http://managementipaddress/manage/service.htm --> Services --> Shell. Enter the above command and click Command button. This will enable the ability to capture debug messages (e.g. Packet Drops) to be sent to the Event Log. 2008 Nortel Networks Limited Page 6 of 6

( SetDebugLogCapture 0 turns the capture debug back off). This shell command does not persist through a reboot (this was design intent, as debug was meant to be turned on, capture what is required and turned back off). Q01893637 - The behavior of the Nortel VPN Router's CLI configuration for the QoS mf-classifier names with special characters may not be correct. 1. If the classifier or classifier rule name include ''?", it can not be configured from CLI, we recommend our users do it from GUI. 2. If the classifier or classifier rules name include special characters, and users input it between double quotes from CLI, "\" should be used to escape the special character. 3. There will be inconsistencies between the result of show command and the command used to configure the classifier from CLI.such as: a. In show command, if the classifier or classifier rule name include ''?", it only can be configured from GUI. b. In show command, if the classifier or classifier rule name include special character qos mf-class add "test\2", in configure command, it should be use command qos mf-class add test\\2" to configure it. Incompatibility Warning: Once upgraded to V06_05.300 with LDAP 3DES & User Key Encryption enabled, a successful upgrade to V07_00.062 is not possible. The support of a 24 Byte user encryption key is not supported in the V07.0 ECO. An upgrade to the first maintenance release 7.05.300 will carry the information forward as expected. 10. Documentation Corrections None For known issues, please refer to the product release notes and technical documentation available from the Nortel Technical Support web site at: http://www.nortel.com/support. Copyright 2008 Nortel Networks Limited - All Rights Reserved. Nortel, Nortel Networks, the Nortel logo, the Globemark, and Contivity are trademarks of Nortel Networks Limited. The information in this document is subject to change without notice. The statements, configurations, technical data, and recommendations in this document are believed to be accurate and reliable, but are presented without express or implied warranty. Users must take full responsibility for their applications of any products specified in this document. The information in this document is proprietary to Nortel. To access more technical documentation, search our knowledge base, or open a service request online, please visit Nortel Technical Support on the web at: http://www.nortel.com/support. 2008 Nortel Networks Limited Page 7 of 7

2026 © DocPlayer.net Privacy Policy | Terms of Service | Feedback  | Do Not Sell My Personal Information