Text Part Number: 78-5563-04 Release Notes for Cisco 2500 Series for Cisco IOS Release 12.0 T May 3, 1999 These release notes describe new features and significant software components for the Cisco 2500 series that support Cisco IOS Release 12.0 T, up to and including Release 12.0(4)T.
System Requirements System Requirements This section describes the system requirements for Release 12.
Hardware Supported 4 5 4 MB in Releases 12.0(1)T, 12.0(2)T, and 12.0(3)T. 6 MB in Releases 12.0(1)T, 12.0(2)T, and 12.0(3)T. Hardware Supported Cisco IOS Release 12.
System Requirements Cisco AS2509-RJ and Cisco AS2511-RJ Access Servers The Cisco AS2509-RJ and Cisco AS2511-RJ access servers connect asynchronous serial devices to LANs and WANs. The access servers combine the functions of a terminal server, protocol translator, and a router and perform both synchronous and asynchronous routing of supported protocols.
Feature Set Tables Table 3 Feature Sets Supported by the Cisco 2500 Series (continued) Feature Set Image Names Feature Set Matrix Term Software Image Platforms IP/FW Plus IPSec 56 Plus, IPSec 56 c2500-ios56i-l Cisco 2500 series IP Plus Plus c2500-is-l Cisco 2500 series IP Plus 40 Plus 40 c2500-is40-l Cisco 2500 series IP Plus 56 Plus 56 c2500-is56-l Cisco 2500 series IP Plus IPSec 56 Plus, IPSec 56 c2500-is56i-l Cisco 2500 series IP/H323 Basic c2500-ix-l Cisco 2500 series IP/I
System Requirements • In—The number in the “In” column indicates the Cisco IOS release in which the feature was first introduced. For example, (4) means a feature was introduced in Release 12.0(4)T. If a cell in this column is empty, the feature was included in the initial base release. Note These feature set tables only contains a selected list of features. These tables are not cumulative— nor do they list all the features in each image.
Feature Set Tables Table 4 Feature List by Feature Set for the Cisco 2500 Series, Part 1 (continued) Feature Sets In IP IP/FW IP/FW Plus IPSec 56 (3) Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes No No Yes Yes Yes Yes Yes AAA Support for MS-CHAP No No No No No No No Additional Vendor-Proprietary RADIUS Attributes Yes Yes Yes Yes Yes Yes Yes Authenticating ACL Yes Yes Yes Yes Yes
System Requirements Table 4 Feature List by Feature Set for the Cisco 2500 Series, Part 1 (continued) Feature Sets In IP IP/FW IP/FW Plus IPSec 56 Dynamic Multiple Encapsulations for Dial-in over ISDN (4) Yes Yes Yes Yes Yes Yes Yes Mobile IP (1) No No Yes Yes Yes Yes Yes MPPC- MS PPP Compression Yes Yes Yes Yes Yes Yes Yes MS Callback Yes Yes Yes Yes Yes Yes Yes Multiple ISDN Switch Types Yes Yes Yes Yes Yes Yes Yes National ISDN Switch Type Yes Yes Yes
Feature Set Tables Table 5 Feature List by Feature Set for the Cisco 2500 Series, Part 2 (continued) Feature Sets IP/IPX/AT/ DEC IP/IPX/AT/ DEC/ FW Plus IP/IPX/AT/ DEC Plus Enterprise /APPN Plus IPSec 56 Enterprise /FW Plus IPSec 56 In IP/H.
System Requirements Table 5 Feature List by Feature Set for the Cisco 2500 Series, Part 2 (continued) Feature Sets IP/IPX/AT/ DEC Plus Enterprise /APPN Plus IPSec 56 Enterprise /FW Plus IPSec 56 IP/H.
Feature Set Tables Table 5 Feature List by Feature Set for the Cisco 2500 Series, Part 2 (continued) Feature Sets IP/IPX/AT/ DEC IP/IPX/AT/ DEC/ FW Plus IP/IPX/AT/ DEC Plus Enterprise /APPN Plus IPSec 56 Enterprise /FW Plus IPSec 56 In IP/H.
System Requirements Table 6 Feature List by Feature Set for the Cisco 2500 Series, Part 3 (continued) Feature Set Features In Protocol-Independent Multicasts (PIM) Version 2 FRAD LAN/ FRAD/ OSPF LAN/ FRAD Remote Access Server ISDN Yes Yes No No No No Enterprise Plus Enterprise Plus IPSec 56 Yes WCCP v2 Support (3) Yes Yes Yes Yes Yes Yes Yes X.
Feature Set Tables Table 6 Feature List by Feature Set for the Cisco 2500 Series, Part 3 (continued) Feature Set FRAD LAN/ FRAD/ OSPF LAN/ FRAD Remote Access Server ISDN Yes No No No No No No Yes No No No No No IPSec Network Security No Yes No No No No No Named Method Lists for AAA Authentication & Accounting Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes No No No No Yes Yes No No No No No Enterprise Plus Enterprise Plus IPSec 56 Certificate Authority Interopera
New and Changed Information Table 6 Feature List by Feature Set for the Cisco 2500 Series, Part 3 (continued) Feature Set Features Parse Bookmarks FRAD LAN/ FRAD/ OSPF LAN/ FRAD Remote Access Server ISDN Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes Yes No No Yes Yes Yes Yes Yes Yes Yes In Enterprise Plus Enterprise Plus IPSec 56 (1) Yes (1) (1) Switching Cisco IOS STP Enhancements Connectivity RIP Enhancements New and Changed Information The following sections list the new
New Software Features in Release 12.0(3)T Although the Dynamic Multiple Encapsulations feature enhances large scale dial-in functionality, the feature also works well in smaller scale dial-in situations and for modem calls. New Software Features in Release 12.0(3)T The following new software enhancements are supported by the Cisco 2500 series in Release 12.0(3)T. Annex-G (X.25 over Frame Relay) Annex G (X.25 over Frame Relay) facilitates the migration from an X.
New and Changed Information Cisco Multipath Channel+ (CMPC+) Cisco Multipath Channel+ (CMPC+) is Cisco's implementation of IBM's MPC+ feature. The CMPC+ feature in Cisco IOS Release 12.0(3)T supports MPC+ features and protocols necessary to support IP. CMPC+ enables High Performance Data Transfer (HPDT). It allows TCP/IP connections to the host through Cisco Mainframe Channel Connection (CMCC) adapters, using either the TCP/IP stack or the High Speed Access Services (HSAS) IP stack.
New Software Features in Release 12.0(3)T The DLSw+ RSVP feature permits new DLSw+ peer connections to automatically request bandwidth reservations upon connection, thereby removing the need for user intervention after the peer is connected. This feature assures the reservation will survive a network or device failure and that the DLSw+ traffic carried over a TCP connection is not affected by congestion.
New and Changed Information Using VC bundles, you can create differentiated service by flexibly distributing IP precedence levels over the different VC bundle members. You can map a single precedence level or a range of levels to each discrete VC in the bundle thereby enabling individual VCs in the bundle to carry packets marked with different precedence levels. You can use WRED to further differentiate service across traffic that has different IP precedence but that uses the same VC in a bundle.
New Software Features in Release 12.0(3)T • Inter-zone routing in the E.164 address space. When using H.323-ID format addresses, inter-zone routing is done through domain names. Release Notes for Cisco 2500 Series for Cisco IOS Release 12.
New and Changed Information The Multimedia Conference Manager feature provides network administration mechanisms to support H.323 applications without impacting the mission critical applications running on today’s networks. Multimedia Conference Manager is implemented on Cisco IOS software. Multimedia Conference Manager provides the network administrator with these abilities: • • • • Identify H.323 traffic and apply appropriate policies • Implement security for H.323 communications Limit H.
New Software Features in Release 12.0(3)T Process MIB The addition of the CISCO-PROCESS-MIB and changes to the CISCO-MEMORY-POOL-MIB allow the retrieval of additional CPU and memory statistics and their reporting by SNMP. The CISCO-PROCESS-MIB provides CPU 5-second, 1-minute, and 5-minute statistics. In addition, this MIB provides CPU utilization and memory allocation/deallocation statistics for each process on each CPU listed in the CISCO-PROCESS-MIB.
New and Changed Information RSVP over ATM allows you to configure an interface or subinterface to dynamically create SVCs in response to RSVP reservation requests. To ensure defined quality of service (QoS), these SVCs are established having QoS profiles consistent with the mapped RSVP flowspecs. To further support QoS, this feature allows you to configure the IP Precedence and ToS values to be used for packets that conform to or exceed QoS profiles.
New Software Features in Release 12.0(3)T SNMPv3 provides an identification strategy for SNMP devices to facilitate communication only between known SNMP strategy. Each SNMP device has an identifier called the SNMP EngineID which is a copy of SNMP. Each SNMP message contains an SNMP EngineID. SNMP communication is possible only if an SNMP entity knows the identity of its peer SNMP device.
New and Changed Information Token Ring MPOA is an extension to LAN Emulation (LANE). Using the Next Hop Resolution Protocol (NHRP), and MPOA server (MPS) on the router, and MPO clients (MPCs) on the ATM edge devices, a direct virtual channel connection (VCC) between the ingress and egress edge devices is established. Token Ring MPOA allows Token Ring LANE clients to forward unicast IP packets between subnets to other Token Ring LANE clients through this shortcut VCC path on the ATM network.
New Software Features in Release 12.0(1)T New Software Features in Release 12.0(1)T The following new software enhancements are supported by the Cisco 2500 series in Release 12.0(1)T. RSM/TR-VLAN The Token Ring VLAN support on the Route Switch Module (RSM) enables a Catalyst 5000 switch to provide the functionality of bridging and multi-protocol routing for Token Ring VLANs.
New and Changed Information OSPF Packet Pacing The former OSPF implementation for sending update packets needed to be more efficient. Some update packets were getting lost in cases where the link was slow, a neighbor could not receive the updates fast enough, or the router was out of buffer space. For example, packets might be dropped if either of these topologies existed: • • A fast router was connected to a slower router over a point-to-point link.
New Software Features in Release 12.0(1)T • • Denial-of-service detection and prevention Real-time alerts and audit trails The Cisco IOS Firewall feature set adds advanced filtering capabilities to existing security functionality in Cisco routers. Some existing Cisco IOS security features include packet filtering via access control lists (ACLs), Network Address Translation (NAT), network-layer encryption, and TACACS+ authentication.
Important Notes IETF Compliant PPP over ATM Scalability Point-to-Point Protocol (PPP) over Asynchronous Transfer Mode (ATM) is now available on an ATM CES port adapter in a Cisco 7200-series router. In previous releases of PPP over ATM, you configured permanent virtual circuits (PVCs) for PPP over ATM on point-to-point subinterfaces. In this release, each PPP over ATM connection no longer requires two interfaces, a virtual access interface and ATM subinterface.
Cisco IOS Syslog Failure Cisco IOS Syslog Failure Certain versions of Cisco IOS software may fail or hang when they receive invalid User Datagram Protocol (UDP) packets sent to their syslog ports (port 514). At least one commonly used Internet scanning tool generates packets that cause such problems. This fact has been published on public Internet mailing lists, which are widely read both by security professionals and by security crackers. This information should be considered in the public domain.
Important Notes The most commonly used or asked-about products are listed below. If you are unsure whether your device is running Cisco IOS software, log in to the device and issue the show version command. Cisco IOS software will identify itself simply as “IOS” or “Internetwork Operating System Software”. Other Cisco devices will not have the show version command, or they will identify themselves differently in their output.
Cisco IOS Syslog Failure If you have service contracts you can obtain new software through your regular update channels (generally through Cisco’s World Wide Web site). You can upgrade to any software release, but you must remain within the boundaries of the feature sets you have purchased. If you do not have service contracts, you can upgrade to obtain only the bug fixes; free upgrades are restricted to the minimum upgrade required to resolve the defects.
Important Notes The following example shows a possible access list for a three-interface router, along with the configuration commands needed to apply the list. The example assumes input filtering is not needed, other than as a workaround for this problem: ! Deny all multicasts, and all unspecified-net broadcasts, to port 514 access-list 101 deny udp any 224.0.0.0 31.255.255.255 eq 514 ! Deny old-style unspecified-net broadcasts access-list 101 deny udp any host 0.0.0.
Cisco IOS Syslog Failure Note All dates within this table are subject to change. Table 7 Affected and Repaired Software Versions Description Special Fix1 First Fixed Interim Release2 11.2 and earlier releases—all variants Unaffected early releases (no syslog server) Unaffected Unaffected Unaffected 11.3, 11.3 T, 11.3 DA, 11.3 MA, 11.3 NA, 11.3 WA, 11.3(2)XA 11.3 releases without syslog servers Unaffected Unaffected Unaffected 11.3 AA 11.3 early deployment for AS58xx 11.
Important Notes Table 7 Affected and Repaired Software Versions (continued) First Fixed Interim Release2 Fixed Maintenance Release3 Cisco IOS Major Release Description Special Fix1 12.0(2)XD Short-life release for ISDN voice features; merged to 12.0 T at 12.0(3)T 12.0(2)XD1, 18-JAN-1999 Merged Upgrade to 12.0(3)T 12.0(1)XE Short-life release 12.0(2)XE, 18-JAN-1999 Merged Upgrade to 12.0(3)T 1 2 3 4 5 A special fix is a one-time release that provides the most stable immediate upgrade path.
Caveats Caveats Caveats describe unexpected behavior or defects in Cisco IOS software releases. For information on caveats in Cisco IOS Release 12.0 T, refer to the Caveats for Cisco IOS Release 12.0 T document. All caveats in Release 12.0 are also in Release 12.0 T. For information on caveats in Cisco IOS Release 12.0, refer to the Caveats for Cisco IOS Release 12.0 document, which lists severity 1 and 2 caveats, and is located on CCO and the Documentation CD-ROM.
Related Documentation • Caveats for Cisco IOS Release 12.0 T As a supplement to the caveats listed in the “Caveats” section on page 35 section in these release notes, see the Caveats for Cisco IOS Release 12.0 and Caveats for Cisco IOS Release 12.0 T documents, which contains caveats applicable to all platforms for all maintenance releases of Release 12.0.
Cisco IOS Software Documentation Set To reach the feature modules on the Documentation CD-ROM, click on this path: Cisco Product Documentation: Cisco IOS Software Configuration: Cisco IOS Release 12.0: New Feature Documentation Cisco IOS Software Documentation Set The Cisco IOS software documentation set consists of the Cisco IOS configuration guides, Cisco IOS command references, and several other supporting documents.
Related Documentation Table 9 Cisco IOS Software Release 12.
Service and Support Table 9 Cisco IOS Software Release 12.
Cisco Connection Online Software Configuration Tips on the Cisco Technical Assistance Center Home Page If you have a CCO login account, you can access the following URL, which contains links and helpful tips on configuring your Cisco products: http://www.cisco.com/kobayashi/serv_tips.shtml This URL is subject to change without notice. If it changes, point your Web browser to CCO and click on this path: Products & Technologies: Products: Technical Tips.
Documentation CD-ROM You can reach CCO in the following ways: • • • • • WWW: http://www.cisco.com WWW: http://www-europe.cisco.com WWW: http://www-china.cisco.com Telnet: cco.cisco.com Modem: From North America, 408 526-8070; from Europe, 33 1 64 46 40 82. Use the following terminal settings: VT100 emulation; databits: 8; parity: none; stop bits: 1; and connection rates up to 28.8 kbps. For a copy of CCO’s Frequently Asked Questions (FAQ), contact cco-help@cisco.com.
Documentation CD-ROM 42 Release Notes for Cisco 2500 Series for Cisco IOS Release 12.