Ruckus FastIron 07300p Release Notes, V1 Fast Iron 07.3.00p Notes

FastIron 07.3.00p Release Notes FastIron_07300p_ReleaseNotes_v1

2017-07-11

User Manual: Ruckus FastIron 07.3.00p Release Notes

Open the PDF directly: View PDF PDF.
Page Count: 113 [warning: Documents this large are best viewed by clicking the View PDF Link!]

IronWare Software Release 07.3.00p
for Brocade FSX Switches
Release Notes v1.0
July 20, 2015
Document History
Document Title
Summary of Changes
Publication Date
IronWare Software Release
R07.3.00p for Brocade FSX Switches
Release Notes v1.0
Initial release
July 2015
IronWare Software Release R07.3.00p Page 2 of 113
© 2015, Brocade Communications Systems, Inc. All Rights Reserved.
ADX, Brocade, Brocade Assurance, the B-wing symbol, DCX, Fabric OS, HyperEdge, ICX, MLX, MyBrocade,
OpenScript, The Effortless Network, VCS, VDX, Vplane, and Vyatta are registered trademarks, and Fabric Vision
and vADX are trademarks of Brocade Communications Systems, Inc., in the United States and/or in other
countries. Other brands, products, or service names mentioned may be trademarks of others.
Notice: This document is for informational purposes only and does not set forth any warranty, expressed or
implied, concerning any equipment, equipment feature, or service offered or to be offered by Brocade. Brocade
reserves the right to make changes to this document at any time, without notice, and assumes no
responsibility for its use. This informational document describes features that may not be currently available.
Contact a Brocade sales office for information on feature and product availability. Export of technical data
contained in this document may require an export license from the United States government.
The authors and Brocade Communications Systems, Inc. assume no liability or responsibility to any person or
entity with respect to the accuracy of this document or any loss, cost, liability, or damages arising from the
information contained herein or the computer programs that accompany it.
The product described by this document may contain open source software covered by the GNU General Public
License or other open source license agreements. To find out which open source software is included in
Brocade products, view the licensing terms applicable to the open source software, and obtain a copy of the
programming source code, please visit http://www.brocade.com/support/oscd.
IronWare Software Release R07.3.00p Page 3 of 113
Contents
Supported Devices ....................................................................................................... 7
Manageability ................................................................................................................ 7
Summary of enhancements ...................................................................................... 7
Summary of enhancements in IronWare release R07.3.00p ............................................................. 7
38BHardware enhancements .................................................................................................................................................................. 7
Software enhancements .................................................................................................................................................................... 7
Summary of enhancements in IronWare release R07.3.00n ............................................................. 7
38BHardware enhancements .................................................................................................................................................................. 7
Software enhancements .................................................................................................................................................................... 7
Summary of enhancements in IronWare release R07.3.00m ........................................................... 7
38BHardware enhancements .................................................................................................................................................................. 7
Software enhancements .................................................................................................................................................................... 7
Summary of enhancements in IronWare release R07.3.00k ............................................................. 7
38BHardware enhancements .................................................................................................................................................................. 7
Software enhancements .................................................................................................................................................................... 7
Summary of enhancements in IronWare release R07.3.00j .............................................................. 8
38BHardware enhancements .................................................................................................................................................................. 8
Software enhancements .................................................................................................................................................................... 8
Summary of enhancements in IronWare release R07.3.00h ............................................................. 8
38BHardware enhancements .................................................................................................................................................................. 8
Software enhancements .................................................................................................................................................................... 8
Summary of enhancements in IronWare release R07.3.00g1 .......................................................... 8
38BHardware enhancements .................................................................................................................................................................. 8
Software enhancements .................................................................................................................................................................... 8
Summary of enhancements in IronWare release R07.3.00g ............................................................. 9
38BHardware enhancements .................................................................................................................................................................. 9
Software enhancements .................................................................................................................................................................... 9
IronWare Software Release R07.3.00p Page 4 of 113
Summary of enhancements in IronWare release R07.3.00f ........................................................... 10
38BHardware enhancements ................................................................................................................................................................ 10
Software enhancements .................................................................................................................................................................. 10
Summary of enhancements in IronWare release R07.3.00e .......................................................... 11
38BHardware enhancements ................................................................................................................................................................ 11
Summary of enhancements in IronWare release R07.3.00d .......................................................... 11
38BHardware enhancements ................................................................................................................................................................ 11
39BSoftware enhancements .................................................................................................................................................................. 11
Summary of enhancements in IronWare release R07.3.00c .......................................................... 12
Summary of enhancements in IronWare release R07.3.00b .......................................................... 12
Summary of enhancements in IronWare release R07.3.00a .......................................................... 12
Summary of enhancements in IronWare release R07.3.00 ............................................................ 12
40BNew hardware ..................................................................................................................................................................................... 12
Summary of enhancements in FCX R07.3.00 ......................................................................................................................... 13
42BSummary of enhancements in FSX R07.3.00 .......................................................................................................................... 17
43Summary of enhancements in FWS R07.3.00 ........................................................................................................................ 19
44BSummary of enhancements in TurboIron 24X R07.3.00 .................................................................................................. 19
45BDeprecated commands .................................................................................................................................................................... 20
Configuration Notes and feature limitations .................................................... 20
FastIron 07.3.00j ............................................................................................................................................ 20
General ............................................................................................................................................................... 20
Documentation updates ........................................................................................... 22
Supported FSX modules ........................................................................................... 22
Feature support .......................................................................................................... 22
Feature support for FCX, FESX6, ICX 6610, SX, and FWS .................................................................. 22
58BSupported management features ................................................................................................................................................ 22
59BSupported security features .......................................................................................................................................................... 25
60BSupported system-level features ................................................................................................................................................. 27
IronWare Software Release R07.3.00p Page 5 of 113
61BSupported Layer 2 features ........................................................................................................................................................... 30
Supported base Layer 3 features ................................................................................................................................................. 33
63BSupported edge Layer 3 features ................................................................................................................................................ 34
64BSupported full Layer 3 features.................................................................................................................................................... 34
65BSupported IPv6 management features ..................................................................................................................................... 36
66BUnsupported features ....................................................................................................................................................................... 37
TurboIron 24X Feature Support ............................................................................................................... 38
67BSupported Management Features ............................................................................................................................................... 38
68BSupported IPv6 Management Features .................................................................................................................................... 39
69BSupported Security Features ......................................................................................................................................................... 39
70BSupported System-Level Features .............................................................................................................................................. 41
Supported Layer 2 Features .......................................................................................................................................................... 43
72BSupported Layer 3 Features .......................................................................................................................................................... 45
Software image file .................................................................................................... 46
Boot and flash images for Ironware release 07.3.00p ...................................................................... 46
PoE Firmware files ......................................................................................................................................... 46
Upgrading software ................................................................................................... 46
Important notes about upgrading or downgrading the software ............................................................ 47
Standard upgrade procedure..................................................................................................................... 47
Upgrading the boot code ................................................................................................................................................................. 47
Upgrading the flash code ................................................................................................................................................................. 48
Confirming software versions (IronStack devices) ........................................................................... 48
Upgrading software images on TurboIron devices ........................................ 50
Upgrading the boot code ............................................................................................................................. 50
Upgrading the flash image .......................................................................................................................... 51
Technical support ...................................................................................................... 51
Getting help or reporting errors ........................................................................... 51
E-mail and telephone access ...................................................................................................................... 51
IronWare Software Release R07.3.00p Page 6 of 113
Additional resources ................................................................................................. 51
Closed Defects in IronWare Software Release 07.3.00p ............................... 52
Closed Defects in IronWare Software Release 07.3.00n ............................... 53
Closed Defects in IronWare Software Release 07.3.00m .............................. 53
Closed Defects in IronWare Software Release 07.3.00k ............................... 53
Closed Defects in IronWare Software Release 07.3.00j ................................ 56
Closed Defects in IronWare Software Release 07.3.00h ............................... 57
Closed Defects in IronWare Software Release 07.3.00g1 ............................. 61
Closed Defects in IronWare Software Release 07.3.00g ............................... 61
Closed Defects in IronWare Software Release 07.3.00f ................................ 68
Closed Defects in IronWare Software Release 07.3.00e ............................... 72
Closed Defects in IronWare Software Release 07.3.00d ............................... 76
Closed Defects in IronWare Software Release 07.3.00c ................................ 84
Closed Defects in IronWare Software Release 07.3.00b ............................... 95
Closed Defects in IronWare Software Release 07.3.00a ............................... 96
35BCustomer reported defects closed with code in Release 07.3.00a ............................................................................... 96
Closed Defects in IronWare Software Release 07.3.00 ............................... 100
36BCustomer reported defects closed with code in Release 07.3.00 ............................................................................... 100
37BCustomer reported defects closed without code in Release 07.3.00 ........................................................................ 111
Open defects in Release 07.3.00 ......................................................................... 112
IronWare Software Release R07.3.00p Page 7 of 113
Supported Devices
The 07.3.00p software release applies only to the following Brocade products:
- FastIron X Series:
o FastIron Edge Switch X Series, (IPv6 models) (FESX6)
o FastIron SX 800 and 1600 (FSX 800 and FSX 1600)
Manageability
This 07.3.00p software releases are supported by Brocade Network Advisor 11.2. Any earlier versions of
Network Advisor, as well as any version of IronView Network Manager (INM) are not compatible with this
release or its supported hardware platforms (see Supported Devices). Network Advisor 11.2 is generally
available for download on my.brocade.com. It is strongly recommended that customers upgrade to Network
Advisor 11.2, as part of their upgrade to this 07.3.00 software release.
Summary of enhancements
Summary of enhancements in IronWare release R07.3.00p
38BHardware enhancements
There are no enhancements in software release 07.3.00p.
Software enhancements
Support added to send RSTP agreement on Alternate port which has received a Proposal, provided port is
operating on Point-to-point mode. This feature is supported only on FSX devices.
Please refer to the FastIron Documentation Family Documentation Update Guide for Release 07.3.00p.
Summary of enhancements in IronWare release R07.3.00n
38BHardware enhancements
There are no enhancements in software release 07.3.00n.
Software enhancements
Software release 07.3.00n includes defect fixes. There are no enhancements in software release 07.3.00n.
Summary of enhancements in IronWare release R07.3.00m
38BHardware enhancements
There are no enhancements in software release 07.3.00m.
Software enhancements
Software release 07.3.00m includes defect fixes. There are no enhancements in software release 07.3.00m.
Summary of enhancements in IronWare release R07.3.00k
38BHardware enhancements
There are no enhancements in software release 07.3.00k.
Software enhancements
Software release 07.3.00k includes defect fixes. There are no enhancements in software release 07.3.00k.
IronWare Software Release R07.3.00p Page 8 of 113
Summary of enhancements in IronWare release R07.3.00j
38BHardware enhancements
There are no enhancements in software release 07.3.00j.
Software enhancements
Software release 07.3.00j includes defect fixes. There are no enhancements in software release 07.3.00j.
Summary of enhancements in IronWare release R07.3.00h
38BHardware enhancements
There are no enhancements in software release 07.3.00h.
Software enhancements
Software release 07.3.00h includes defect fixes. There are no enhancements in software release 07.3.00h.
Summary of enhancements in IronWare release R07.3.00g1
38BHardware enhancements
There are no enhancements in software release 07.3.00g1.
Software enhancements
Software release 07.3.00g1 includes defect fixes for FCX and ICX 6610 platforms. If SCP is used for
downloading boot images on FCX or ICX 6610, it is recommended to use 07.3.00g1 release instead of
07.3.00g. There are no enhancements in software release 07.3.00g1.
IronWare Software Release R07.3.00p Page 9 of 113
Summary of enhancements in IronWare release R07.3.00g
38BHardware enhancements
There are no enhancements in software release 07.3.00g.
Software enhancements
This release adds support for the following:
Feature
Applicable devices
For more
information...
PHY calibration in stack
ports of ICX 6610
Brocade ICX 6610
Brocade FastIron
Family
Documentation
Updates 07.3.00x
Stack port resiliency in
ICX 6610 devices
Brocade ICX 6610
Brocade FastIron
Family
Documentation
Updates 07.3.00x
Designated Guard
Ensures that a port does not
change to designated
forwarding state in standard
STP 802.1d.
Brocade FCX
Brocade ICX 6610
Brocade ICX 6430
ICX 6450
Brocade FastIron
Family
Documentation
Updates 07.3.00x
Packet InError
Detection
Identifies links that receive
more number of bad frames
than configured
threshold and disables them to
avoid instability in the network.
Brocade FCX
ICX 6610
ICX 6430
ICX 6450
Brocade FastIron
Family
Documentation
Updates 07.3.00x
System Monitoring
FSX 800
FSX1600
Brocade FastIron
Family
Documentation
Updates 07.3.00x
IronWare Software Release R07.3.00p Page 10 of 113
Summary of enhancements in IronWare release R07.3.00f
38BHardware enhancements
There are no enhancements in software release 07.3.00f.
Software enhancements
This release adds support for the following:8B
Feature
Applicable devices
For more
information...
SCP bootrom firmware
enhancement
Brocade FSX
Brocade ICX 6610
Brocade FCX
Brocade FESX-v6
Brocade FastIron
Family
Documentation
Updates,
07.3.00x.
SCP PoE firmware
enhancement
Brocade FSX
Brocade ICX 6610
Brocade FCX
Brocade FESX-v6
Brocade FastIron
Family
Documentation
Updates,
07.3.00x.
MIB enhancement
Brocade FastIron SX
Brocade FESX6 v6
Brocade FCX
Brocade FastIron
Family
Documentation
Updates,
07.3.00x.
CLI enhancement for
GRE tunnel
Brocade FastIron SX
Brocade FESX6 v6
Brocade FCX
Brocade FastIron
Family
Documentation
Updates,
07.3.00x.
SNMP traps for GRE
tunnel interfaces
Brocade FastIron SX
Brocade FESX6 v6
Brocade FCX
Brocade FastIron
Family
Documentation
Updates,
07.3.00x.
IronWare Software Release R07.3.00p Page 11 of 113
Summary of enhancements in IronWare release R07.3.00e
38BHardware enhancements
This release adds support for the following:8B
Feature
Applicable devices
For more
information...
2-port 10G SFP+
Uplink module
Brocade FCX 624S
Brocade FCX 648S
Brocade FCX 624S-F
Brocade FCX 624S-HPOE
Brocade FCX 648S-HPOE
Brocade FastIron
Family
Documentation
Updates,
07.3.00x.
DC power supply
ICX 6610
Brocade FastIron
Family
Documentation
Updates,
07.3.00x.
Summary of enhancements in IronWare release R07.3.00d
38BHardware enhancements
This release adds support for the following:
40 Gigabit Ethernet (40GBASE-SR4) QSFP optic modules
39BSoftware enhancements
Feature
Description
Applicable devices
For more
information...
NTPv4
Network Time Protocol version 4 (NTPv4)
feature synchronizes the local system
clock in the router with the UTC.
FCX devices
(This feature is
only available on
router code. It is
not available on
switch code.)
Brocade FastIron
Family
Documentation
Updates,
07.3.00x.
IronWare Software Release R07.3.00p Page 12 of 113
Feature
Description
Applicable devices
For more
information...
LLDP
processing
over 802.1x
blocked ports
This feature adds support for reception
and transmission of LLDP packets over
an 802.1x blocked port.
FCX
ICX 6610
Brocade FastIron
Family
Documentation
Updates,
07.3.00x.
Long distance
stacking
The long distance stacking feature
enables stacking of ICX 6610 switches
over a distributed network environment.
ICX 6610
Brocade FastIron
Family
Documentation
Updates,
07.3.00x.
Summary of enhancements in IronWare release R07.3.00c
This release adds support for DHCPv6 relay agent to devices that support IPv6.With DHCPv6 relay agent, you
can have interfaces on a device access services from a DHCP Server that doesn’t belong to the same network
segment. You can configure up to 16 DHCPv6 relay agents on an interface.
Summary of enhancements in IronWare release R07.3.00b
There are no enhancements in software release R07.3.00b.
Summary of enhancements in IronWare release R07.3.00a
There are no enhancements in software release R07.3.00a.
Summary of enhancements in IronWare release R07.3.00
This section describes the enhancements in software release R07.3.00.
40BNew hardware
This release introduces the new ICX 6610 Series of stackable switches.
This release also introduces the following new FastIron SX interface modules:
24-port Gigabit Ethernet copper interface module
24-port Gigabit Ethernet fiber interface module
2-port 10-Gigabit Ethernet interface module
8-port 10-Gigabit Ethernet interface module4
IronWare Software Release R07.3.00p Page 13 of 113
Summary of enhancements in FCX R07.3.00
Table 1 lists the enhancements in software release 07.3.00 for FCX and ICX 6610 devices.
Table 1 Enhancements in FCX R07.3.00
Feature
Description
See the FastIron Configuration
Guide, section entitled...
DHCPv6 Relay Agent
Support for DHCPv6 relay agent on IPv6
interfaces enable DHCP functionality of
devices that don’t share the same network
segment as the DHCP Server.
For more information, refer to
the 07.3.00c Release Notes.
802.1X guest VLAN per port
You can configure 802.1X guest VLAN on
each port individually.
“Specifying the authentication-
failure action”
DHCP Option 66
You can configure the DHCP TFTP server
option by specifying the TFTP server name.
“Configure the TFTP server”
IPv4 Egress ACL support
Access Control Lists (ACLs) for filtering
outbound traffic.
Chapter “Configuring Rule-Based
IP Access Control Lists (ACLs)”
Chapter “Configuring IPv6
Access Control Lists (ACLs)”
GRE support (FCX ONLY)
IPv4 point-to-point GRE tunnels are now
supported. Hitless management for IPv6-over-
IPv4 tunnels is supported for GRE tunnels.
Hitless management for IPv6-over-IPv4
tunnels is not supported for IP tunnels.
“IPv4 point-to-point GRE
tunnels”
IPSec for OSPFv3
IPSec can be applied to an interface, area, or
virtual link that is using OSPFv3, to provide
security.
“IPsec for OSPFv3”
“Configuring IPsec for
OSPFv3”
IPv4 & IPv6 Ingress ACL
support
Access Control Lists (ACLs) can now be used
to filter both IPv4 and IPv6 traffic on FCX and
ICX 6610 devices.
Chapter “Configuring Rule-Based
IP Access Control Lists (ACLs)”
Chapter “Configuring IPv6
Access Control Lists (ACLs)”
IronWare Software Release R07.3.00p Page 14 of 113
Feature
Description
See the FastIron Configuration
Guide, section entitled...
IPv6 routing enhancements
This release adds IPv6 routing
enhancements:
Router advertisement and solicitation
IPv6 static routes
IPv6 over IPv4 tunnels
ECMP load sharing
IPv6 ICMP
IPv6 routing protocols
ICMP redirect messages
IPv6 neighbor discovery
IPv6 Layer 3 forwarding
IPv6 redistribution
IPv6 MTU
Static neighbor entries
Hop limit for IPv6 packets
Clear IPv6 global information
FCX devices also allow you to configure how
TCAM space is used to store routing
information and GRE tunnel information.
The following are NOT supported:
OSPFv6
RIPng
BGPv4+
PIMv6
“Configuring IPv6 on
FastIron X, FCX, and ICX
6610 Series Switches”
chapter
“Configuring TCAM space on
FCX and ICX 6610 devices”
IPv6 source routing security
enhancements
As a security measure, source-routed IPv6
traffic is deprecated.
“IPv6 source routing security
enhancements”
IPv6 Support for VRRP and
VRRPE
IPv6 VRRP version 3 (v3) and IPv6 VRRP-E
(v3) is now supported on devices with IPv6
routing support. You can configure a VRRP or
a VRRPE instance on an IPv6 interface under
the IPv6 VRRP or VRRPE router mode.
“Configuring VRRP and VRRPE”
chapter
Multi-range VLANs
The multi-range VLAN feature allows you to
use a single command to create and
configure multiple VLANs.
“Multi-range VLAN”
IronWare Software Release R07.3.00p Page 15 of 113
Feature
Description
See the FastIron Configuration
Guide, section entitled...
New SNMP MIBs
SNMP MIB support has been added for the
following features:
802.1x authentication
Support for MIBs in RFC 2932, RFC 2933
and RFC 2934
Power Over Ethernet MIB with the
following table:
snAgentPoeUnitTable (stacking
systems)
IronWare MIB Reference Guide
Ports on Demand
Licensing for Ports on Demand (POD) is
introduced on the ICX 6610 devices. By
default, the ICX 6610 device has eight active
1 Gb uplink ports. To upgrade the ICX 6610
10 Gb ports from 1 Gb to 10 Gb port speed,
use the ICX6610-10G-LIC-POD license. To
increase the uplink capacity of four ports from
1 Gb to 10 Gb port speed, purchase a single
ICX 661010G-LIC-POD license. To increase
the uplink capacity of all eight ports from 1
Gb to 10 Gb port speed, purchase a second
ICX 6610-10G-LIC-POD license.
“Licensed features and part
numbers”
“Licensing for Ports on Demand
for ICX 6610 devices”
SNTP Server Support
SNTP server support allows you to enable
SNTP server and serve SNTP clients
“Configuring the device as an
SNTP server”
SNTP Broadcast Support
SNTP broadcast support allows you to enable
an SNTP client to function in a broadcast
mode when the NTP server is within the same
LAN and the expected delay in response to
calibrate the system clock is minimal.
“Specifying a Simple Network
Time Protocol (SNTP) server”
SNTP MD5 Authentication
To configure an authentication key for
communication with the SNTP server, use the
authentication-key option. You can also
configure the device to function as an SNTP
server to its downstream clients.
“Specifying a Simple
Network Time Protocol
(SNTP) server”
“Configuring the device as
an SNTP server”
SNTP Show Association
The show sntp associations details command
displays detailed information about SNTP
associations.
“Specifying a Simple Network
Time Protocol (SNTP) server”
IronWare Software Release R07.3.00p Page 16 of 113
Feature
Description
See the FastIron Configuration
Guide, section entitled...
Software-based Licensing
Software-based licensing is introduced on ICX
6610 devices. The ICX 6610 Premium
license, Advance license, and Upgrade
license (from Premium to Advance license)
are introduced to support routing
functionality. New features are also added to
the FCX Advance license. The behavior for
running software-based licensing in a stack
with different licenses (Premium, Advance, or
Upgrade licenses) is the same for FCX and ICX
6610 devices. Commands for adding,
deleting, or displaying a license are also
introduced for FCX and ICX 6610 devices
only.
“Non-licensed features”
“Licensed features and part
numbers”
“FCX and ICX 6610 devices”
“Using TFTP to copy a license file
on FCX and ICX devices”
“Deleting a license on FCX and
ICX devices”
“Viewing information about
software licenses”
SSHv2 Client
SSHv2 client allows you to connect to SSHv2
servers while logged onto the device.
“Configuring and using SSH2
client”
SSHv2 Server RSA 2048 key
authentication
SSHv2 server supports authentication using
RSA keys of up to 2048 bits in length.
“Configuring SSH2 and SCP”
chapter
VRRP-E MD5 authentication
VRRP-E supports MD5 for authentication of
VRRP-E traffic.
“Configuring VRRP and VRRPE”
chapter
IronWare Software Release R07.3.00p Page 17 of 113
42BSummary of enhancements in FSX R07.3.00
Table 2 lists the enhancements in software release 07.3.00 for FESX6 and SX devices.
Table 2 Enhancements in FSX R07.3.00
Feature
Description
See the FastIron Configuration
Guide, section entitled...
New hardware
This release introduces the following new
FastIron SX third generation interface
modules:
SX-FI-24GPP - 24-port Gigabit
Ethernet copper third generation
interface module
SX-FI-24HF - 24-port Gigabit Ethernet
100/1000 Mbps SFP fiber third
generation interface module
SX-FI-2XG - 2-port 10-Gigabit
Ethernet SFP+ third generation
interface module
SX-FI-8XG - 8-port 10-Gigabit
Ethernet SFP+ third generation
interface module
802.1X guest VLAN per port
You can configure 802.1X guest VLAN on
each port individually.
“Specifying the authentication-
failure action”
DHCP Option 66
You can configure the DHCP TFTP server
option by specifying the TFTP server name.
“Configure the TFTP server”
IPv4 Egress ACL support
(USupported only on SX 800
and SX 1600 new 1Gb and
10Gb modulesU)
Access Control Lists (ACLs) for filtering
outbound traffic.
Chapter “Configuring Rule-Based
IP Access Control Lists (ACLs)”
Chapter “Configuring IPv6
Access Control Lists (ACLs)”
IPSec for OSPFv3
IPSec can be applied to an interface, area, or
virtual link that is using OSPFv3, to provide
security.
“IPsec for OSPFv3”
“Configuring IPsec for
OSPFv3”
IPv6 source routing security
enhancements
As a security measure, source-routed IPv6
traffic is deprecated.
“IPv6 source routing security
enhancements”
IPv6 Support for VRRP and
VRRPE
IPv6 VRRP version 3 (v3) and IPv6 VRRP-E
(v3) is now supported on devices with IPv6
routing support. You can configure a VRRP or
a VRRPE instance on an IPv6 interface under
the IPv6 VRRP or VRRPE router mode.
“Configuring VRRP and VRRPE”
chapter
Multi-range VLANs
The multi-range VLAN feature allows you to
use a single command to create and
configure multiple VLANs.
“Multi-range VLAN”
IronWare Software Release R07.3.00p Page 18 of 113
Feature
Description
See the FastIron Configuration
Guide, section entitled...
New SNMP MIBs
SNMP MIB support has been added for
the following features:
802.1x authentication
Support for MIBs in RFC 2932, RFC 2933
and RFC 2934
Power Over Ethernet MIB with the
following table:
snAgentPoeUnitTable (stacking systems)
IronWare MIB Reference Guide
SNTP Server Support
SNTP server support allows you to enable
SNTP server and serve SNTP clients
“Configuring the device as an
SNTP server”
SNTP Broadcast Support
SNTP broadcast support allows you to enable
an SNTP client to function in a broadcast
mode when the NTP server is within the same
LAN and the expected delay in response to
calibrate the system clock is minimal.
“Specifying a Simple Network
Time Protocol (SNTP) server”
SNTP MD5 Authentication
To configure an authentication key for
communication with the SNTP server, use the
authentication-key option. You can also
configure the device to function as an SNTP
server to its downstream clients.
“Specifying a Simple
Network Time Protocol
(SNTP) server”
“Configuring the device as
an SNTP server”
SNTP Show Association
The show sntp associations details command
displays detailed information about SNTP
associations.
“Specifying a Simple Network
Time Protocol (SNTP) server”
SSHv2 Client
SSHv2 client allows you to connect to SSHv2
servers while logged onto the device.
“Configuring and using SSH2
client”
SSHv2 Server RSA 2048 key
authentication
SSHv2 server supports authentication using
RSA keys of up to 2048 bits in length.
“Configuring SSH2 and SCP”
chapter
VRRP-E MD5 authentication
VRRP-E supports MD5 for authentication of
VRRP-E traffic.
“Configuring VRRP and VRRPE”
chapter
IronWare Software Release R07.3.00p Page 19 of 113
43Summary of enhancements in FWS R07.3.00
Table 3 lists the enhancements in software release 07.3.00 for FWS devices.
Table 3 Enhancements in FWS R07.3.00
Feature
Description
See the FastIron Configuration
Guide, section entitled...
Multi-range VLANs
The multi-range VLAN feature allows you to
use a single command to create and
configure multiple VLANs.
“Multi-range VLAN”
New SNMP MIBs
SNMP MIB support has been added for the
following features:
802.1x authentication
Support for MIBs in RFC 2932, RFC 2933
and RFC 2934
Power Over Ethernet MIB with the
following table:
snAgentPoeUnitTable (stacking systems)
IronWare MIB Reference Guide
44BSummary of enhancements in TurboIron 24X R07.3.00
Feature
Description
See the TurboIron 24X
Configuration Guide, section
entitled...
AES in SNMP v3
TurboIron supports AES Encryption for
SNMP v3
Chapter 48: Securing SNMP
Access
Defining an SNMP group
Symmetric Flow Control
In addition to asymmetric flow control,
TurboIron devices support symmetric flow
control, meaning they can both receive and
transmit 802.3x PAUSE frames.
Chapter 3: Configuring Basic
Software Features
Inter-domain Multicast
Support for the validation of inter-domain
multicasting
BGP
Chapter 20: Configuring IP
Multicast Protocols
Multicast Source Discovery
Protocol (MSDP)
IronWare Software Release R07.3.00p Page 20 of 113
Feature
Description
See the TurboIron 24X
Configuration Guide, section
entitled...
New SNMP MIBs
TurboIron now supports the Unified IP MIB.
SNMP MIB support has been added for the
following features:
802.1x authentication
Support for MIBs in RFC 2932, RFC
2933 and RFC 2934
Power Over Ethernet MIB with the
following table:
snAgentPoeUnitTable (stacking
systems)
Unified IP MIB Reference Guide
45BDeprecated commands
The CLI command flash is deprecated. You cannot change the default block size for TFTP file transfers.
Configuration Notes and feature limitations
This section contains configuration notes and describes some feature limitations in this release:
FastIron 07.3.00j
Optical monitoring information
On FSX, the 100-FX optic shows N/A values in the output of the show optic command after a reboot or
switchover. Workaround is to run the show media, show media slot x, or the show optic slot x and then run the
show optic x. This will help to display the Optical Monitoring information.
IPv6 neighbor discovery
On an FGS Device, duplicated IPv6 neighbor discovery (ND) packets are sent out every two seconds if a port is
added and removed as "uplink-switch" within a VLAN.
General
Additional notes on trunk group rules
The following additional considerations apply to forming trunk groups:
Legacy ports and 48 Gbps copper ports cannot be members of the same trunk group in hardware
configurations such as the following:
48-port 10/100/1000 Mbps (RJ45) Ethernet PoE interface module (SX-FI48GPP) and IPv4/IPv6 interface
modules or management modules with user ports.
Combination of different generations of ports cannot be members of the same trunk group under the following
hardware configurations:
24-port fiber and copper Ethernet PoE/Fiber interfaces (SX-FI24GPP, SX-FI24GF) and IPv4/IPv6 interface
modules or management modules with user ports
IronWare Software Release R07.3.00p Page 21 of 113
2-port 10G and 8-port 10G interfaces (SX-FI8XG, SX-FI2XG) and the IPv4/IPv6 interface modules or
management modules with user ports
SNTP version configuration during upgrade
Starting with release 7.3.00, the default SNTP version is 4. In previous releases, the default SNTP version was
1. When you upgrade to release 7.3.00, the SNTP version gets set automatically to 4, unless a different SNTP
version is specified in the device startup configuration.
ICMP redirect messages
In software release 07.2.02 and later, ICMP redirect messages are disabled by default, whereas in releases
prior to 07.2.02, ICMP redirect messages are enabled by default.
If ICMP redirect messages were enabled prior to upgrading to release 07.2.02 and later, you will need to
re-enable this feature after upgrading to 07.2.02 and later. To do so, enter the ip icmp redirect command
at the global CONFIG level of the CLI.
If ICMP redirect messages were disabled prior to upgrading to release 07.2.02 and later, the configuration
(no ip icmp redirect) will be removed from the configuration file after upgrading to 07.2.02 and later, since
this feature is now disabled by default. In this case, ICMP redirect messages will not be sent and no
further action is required.
Note regarding Telnet and Internet Explorer 7
The Telnet function in Web management does not work with Internet Explorer version 7.0.5730. The system
goes to "telnet://10.43.43.145" page when the user clicks web/general system configuration/ (telnet) in
Internet Explorer version 7.0.5730. This is a known issue for Internet Explorer. To work around this issue, you
must download and install a patch for IE 7. To do so, go to Uhttp://www.lib.ttu.edu.tw/file/IE7_telnet.regU.
Note regarding US-Cert advisory 120541
In order to address the SSL and TLS vulnerability issue discussed in US-Cert advisory 120541, the Web server
re-negotiation feature has been disabled in this release so that SSL re-negotiation requests will not be honored
by the Brocade IP device Web server.
Based on Cert advisory 120541, the Secure Sockets Layer (SSL) and Transport Layer Security (TLS) protocols
are vulnerable to Man-In-The-Middle (MITM) attacks. Vulnerability is in the way SSL and TLS protocols allow re-
negotiation requests, which may allow a MITM to inject arbitrary requests into an application HTTP protocol
stream. This could result in a situation where the MITM may be able to harm the Brocade IP device through
the Web Management interface.
For more information regarding Cert advisory 120541, refer to the following links:
Uhttp://extendedsubset.com/?p=8U
Uhttp://www.links.org/?p=780U
Uhttp://www.links.org/?p=786U
Uhttp://www.links.org/?p=789U
Uhttp://blogs.iss.net/archive/sslmitmiscsrf.htmlU
Uhttp://www.ietf.org/mail-archive/web/tls/current/msg03948.htmlU
Uhttps://bugzilla.redhat.com/show_bug.cgi?id=533125U
Uhttp://lists.gnu.org/archive/html/gnutls-devel/2009-11/msg00014.htmlU
Uhttp://cvs.openssl.org/chngview?cn=18790U
Uhttp://www.links.org/files/no-renegotiation-2.patchU
Uhttp://blog.zoller.lu/2009/11/new-sslv3-tls-vulnerability-mitm.htmlU
Uhttps://svn.resiprocate.org/rep/ietf-drafts/ekr/draft-rescorla-tls-renegotiate.txtU
IronWare Software Release R07.3.00p Page 22 of 113
Uhttp://www.educatedguesswork.org/2009/11/understanding_the_tls_renegoti.htmlU
Documentation updates
Refer to the standalone documentation updates guide for this release.
Supported FSX modules
This release supports the following modules on the FSX 800 and FSX 1600 devices.
First generation modules
Second generation modules
Third generation modules
SX-FI2XGMR4
SX-FI2XGMR6
SX-FI48GPP
SX-FI2XGMR4-PREM
SX-FI2XGMR6-PREM
SX-FI-2XG
SX-FI424C
SX-FI2XGMR6-PREM6
SX-FI-8XG
SX-FI424P
SX-FI624100FX
SX-FI-24HF
SX-FI424F
SX-FI624C
SX-FI-24GPP
SX-FI424HF
SX-FI624HF
SX-FI42XG
SX-FI624P
SX-FI62XG
In addition, the SX-FIZMR, SX-FIZMR-PREM, SX-FIZMR-6-PREM and SX-FIZMR-6-PREM6, which do not have
packet processors, are supported in this release.
Feature support
Feature support for FCX, FESX6, ICX 6610, SX, and FWS
These release notes include a list of supported features in IronWare software for FCX, FESX6, ICX 6610, SX,
and FWS devices supported in this release. For more information about supported features, refer to the
manuals listed in Additional resources.
58BSupported management features
Table 4 lists the supported management features. These features are supported in the Layer 2, base Layer 3,
edge Layer 3, and full Layer 3 software images.
Table 4 Supported management features
Category and description
FESX6
FSX 800
FSX 1600
FWS
FCX
ICX 6610
System Monitoring
Yes
No
No
No
Packet InError Detection
Yes
Yes
Yes
Yes
802.1X accounting
Yes
Yes
Yes
Yes
IronWare Software Release R07.3.00p Page 23 of 113
Category and description
FESX6
FSX 800
FSX 1600
FWS
FCX
ICX 6610
AAA support for console commands
Yes
No
Yes
Yes
Access Control Lists (ACLs) for
controlling management access
Yes
Yes
Yes
Yes
Alias command
Yes
Yes
Yes
Yes
Combined DSCP and internal marking in
one ACL rule
Yes
No
No
No
Single source address for the following
packet types:
Telnet
TFTP
Syslog
SNTP
TACACS/TACACS+
RADIUS
SSH
SNMP
Yes
No
No
No
DHCP client-based auto-configuration
Yes
Yes
Yes
Yes
DHCP server
Yes
Yes
Yes
Yes
Disabling TFTP access
Yes
No
Yes
Yes
Brocade Network Advisor 11.2
Yes
Yes
Yes
Yes
Hitless management:
Hitless switchover
Hitless failover
Hitless OS upgrade
Yes (FSX
800 and
FSX 1600
only)
No
See next
line item
See next
line item
Hitless stacking management:
Hitless stacking switchover
Hitless stacking failover
No
No
Yes
Yes
Hitless support for:
PBR
GRE Tunnels
IPv6 to IPv4 Tunnels
Yes (FSX
800 and
FSX 1600
only)
No
Yes (PBR
and GRE
only)
Yes (PBR
only)
Brocade Network Advisor 11.2
Yes
Yes
Yes
Yes
Remote monitoring (RMON)
Yes
Yes
Yes
Yes
IronWare Software Release R07.3.00p Page 24 of 113
Category and description
FESX6
FSX 800
FSX 1600
FWS
FCX
ICX 6610
Retaining Syslog messages after a soft
reboot
Yes
Yes
Yes
Yes
sFlow support for IPv6 packets
Yes
Yes
Yes
Yes
DHCP Client
Yes
Yes
Yes
Yes
SNTP Server
Yes
Yes
Yes
Yes
SNTP Client (Broadcast & Unicast)
Yes
No
Yes
Yes
NTPv4
No
No
Yes
(Router
code
only)
No
Flexible Port On Demand Licensing
No
No
No
Yes
sFlow version 2
Yes
Yes
Yes
Yes
sFlow version 5 (default)
Yes
Yes
Yes
Yes
Industry-standard Command Line
Interface (CLI), including support for:
Serial and Telnet access
Alias command
On-line help
Command completion
Scroll control
Line editing
Searching and filtering output
Special characters
Yes
Yes
Yes
Yes
Show log on all terminals
Yes
Yes
Yes
Yes
SNMP v1, v2, v3
Yes
Yes
Yes
Yes
SNMP V3 traps
Yes
Yes
Yes
Yes
Specifying the maximum number of
entries allowed in the RMON Control
Table
Yes
No
Yes
Yes
Specifying which IP address will be
included in a DHCP/BOOTP reply packet
Yes
No
Yes
Yes
Traffic counters for outbound traffic
Yes
No
No
No
Web-based GUI
Yes
Yes
Yes
Yes
IronWare Software Release R07.3.00p Page 25 of 113
Category and description
FESX6
FSX 800
FSX 1600
FWS
FCX
ICX 6610
Web-based management HTTPS/SSL
Yes
Yes
Yes
Yes
59BSupported security features
Table 5 lists the supported security features. These features are supported in the Layer 2, base Layer 3, edge
Layer 3, and full Layer 3 software images.
Table 5 Supported security features
Category and description
FESX6
FSX 800
FSX 1600
FWS
FCX
ICX 6610
Designated Guard
Yes
Yes
Yes
Yes
802.1X port security
Yes
Yes
Yes
Yes
802.1X authentication RADIUS timeout
action
Yes
Yes
Yes
Yes
802.1X dynamic assignment for ACL,
MAC filter, and VLAN
Yes
Yes
Yes
Yes
Access Control Lists (ACLs) for filtering
transit traffic
Support for inbound ACLs.
Support Outbound ACLs
(*SX 800 and SX1600 on third
generation modules only)
Yes
Yes *
Yes
No
Yes
Yes
Yes
Yes
Address locking (for MAC addresses)
Yes
Yes
Yes
Yes
AES Encryption for SNMP v3
Yes
Yes
Yes
Yes
AES Encryption for SSH v2
Yes
Yes
Yes
Yes
Authentication, Authorization and
Accounting (AAA):
RADIUS
TACACS/TACACS+
Yes
Yes
Yes
Yes
Denial of Service (DoS) attack
protection:
Smurf (ICMP) attacks
TCP SYN attacks
Yes
Yes
Yes
Yes
DHCP Snooping
Yes
Yes
Yes
Yes
Dynamic ARP Inspection
Yes
Yes
Yes
Yes
IronWare Software Release R07.3.00p Page 26 of 113
Category and description
FESX6
FSX 800
FSX 1600
FWS
FCX
ICX 6610
EAP Pass-through Support
Yes
Yes
Yes
Yes
HTTPS
Yes
Yes
Yes
Yes
IP Source Guard
Yes
Yes
Yes
Yes
Local passwords
Yes
Yes
Yes
Yes
MAC address filter override of 802.1X
Yes
Yes
Yes
Yes
MAC address filtering (filtering on source
and destination MAC addresses)
Yes
Yes
Yes
Yes
Ability to disable MAC learning
Yes
Yes
Yes
Yes
Flow-based MAC address learning
Yes
No
Yes
Yes
MAC port security
Yes
Yes
Yes
Yes
Multi-device port authentication
Yes
Yes
Yes
Yes
Support for Multi-Device Port
Authentication together with:
Dynamic VLAN assignment
Yes
Yes
Yes
Yes
Dynamic ACLs
Yes
Yes
Yes
Yes
802.1X
Yes
Yes
Yes
Yes
Dynamic ARP inspection with
dynamic ACLs
Yes
No
No
No
DHCP snooping with dynamic ACLs
Yes
No
No
No
Denial of Service (DoS) attack
protection
Yes
No
Yes
Yes
Source guard protection
Yes
Yes
Yes
Yes
ACL-per-port-per-VLAN
Yes
Yes
Yes
Yes
Multi-device port authentication
password override
Yes
Yes
Yes
Yes
Multi-device port authentication RADIUS
timeout action
Yes
Yes
Yes
Yes
Secure Copy (SCP)
Yes
Yes
Yes
Yes
Secure Copy (SCP) of Bootrom firmware
Yes
No
Yes
Yes
IronWare Software Release R07.3.00p Page 27 of 113
Category and description
FESX6
FSX 800
FSX 1600
FWS
FCX
ICX 6610
Secure Copy (SCP) of POE firmware
Yes
No
Yes
Yes
Secure Shell (SSH) v2
Yes
Yes
Yes
Yes
Packet filtering on TCP Flags
No
Yes
Yes
Yes
DHCP Relay Agent information (DHCP
Option 82)
Yes
Yes
Yes
Yes
Web Authentication
Yes
Yes
Yes
Yes
60BSupported system-level features
Table 6 lists the supported system-level features. These features are supported in the Layer 2, base Layer 3,
edge Layer 3, and full Layer 3 software images.
Table 6 Supported system-level features
Category and description
FESX6
FSX
FSX 800 FSX
1600
FWS
FCX
ICX 6610
10/100/1000 port speed
Yes
Yes
Yes
Yes
16,000 MAC addresses per switch
(FastIron devices)
Yes
Yes
Yes
Yes
32,000 MAC addresses per switch
Yes
No
Yes
Yes
ACL-based mirroring
Yes
Yes
Yes
Yes
ACL-based fixed rate limiting
Yes
Yes
Yes
Yes
ACL-based adaptive rate limiting
Yes
No
Yes
Yes
ACL filtering based on VLAN
membership or VE port membership
Yes
Yes
Yes
Yes
ACL logging of denied packets (IPv4)
Yes
Yes
Yes
Yes
ACL statistics
Yes
Yes
Yes
Yes
ACLs to filter ARP packets
Yes
Yes
Yes
Yes
Auto MDI/MDIX detection
Yes
Yes
Yes
Yes
Auto-negotiation
Yes
Yes
Yes
Yes
Automatic removal of Dynamic VLAN
for 802.1X ports
Yes
Yes
Yes
Yes
IronWare Software Release R07.3.00p Page 28 of 113
Category and description
FESX6
FSX
FSX 800 FSX
1600
FWS
FCX
ICX 6610
Automatic removal of Dynamic VLAN
for MAC authenticated ports
Yes
No
No
No
Byte-based broadcast, multicast, and
unknown-unicast rate limits
Yes
(Not
supported
on SX-FI8XG,
SX-FI-2XG,
SX-FI-24HF,
SX-FI-24GPP,
SX-FI-48GPP
modules)
No
No
No
Packet-based broadcast, multicast,
and unknown-unicast rate limits
Yes
Yes
Yes
Yes
DiffServ support
Yes
Yes
Yes
Yes
Digital Optical Monitoring
Yes
Yes
Yes
Yes
Displaying interface names in Syslog
messages
Yes
Yes
Yes
Yes
Displaying TCP and UDP port
numbers in Syslog messages
Yes
Yes
Yes
Yes
Dynamic buffer allocation for QoS
priorities
Yes
Yes
Yes
Yes
Flow control:
Responds to flow control
packets, but does not generate
them
Yes
Yes
Yes
Yes
Inbound rate limiting (port-based
fixed rate limiting on inbound ports)
Yes
Yes
Yes
Yes
Foundry Discovery Protocol (FDP) /
Cisco Discovery Protocol (CDP)
Yes
Yes
Yes
Yes
Generic buffer profile
No
Yes
Yes
Yes
Layer 2 hitless switchover and Layer
2 hitless failover
Note: For details about this feature,
refer to the Brocade FastIron X
Series Chassis Hardware Installation
Guide
Yes
(FSX 800
and
FSX 1600
only)
No
No
No
LLDP
Yes
Yes
Yes
Yes
IronWare Software Release R07.3.00p Page 29 of 113
Category and description
FESX6
FSX
FSX 800 FSX
1600
FWS
FCX
ICX 6610
LLDP-MED
Yes
Yes
Yes
Yes
LLDP processing on 802.1x blocked
port
No
No
Yes
Yes
MAC address filter-based mirroring
No
Yes
Yes
Yes
Multi-port static MAC address
Yes
Yes
Yes
Yes
Multiple Syslog server logging (up to
six Syslog servers)
Yes
Yes
Yes
Yes
Outbound rate limiting (port-based
and port- and priority-based rate
limiting on outbound ports)
No
Yes
No
No
Outbound rate shaping
Yes
No
Yes
Yes
Path MTU Discovery
Yes
No
Yes
Yes
Port flap dampening
Yes
Yes
Yes
Yes
Port mirroring and monitoring
(mirroring of both inbound and
outbound traffic on individual ports)
Yes
Yes
Yes
Yes
Power over Ethernet (POE)
Yes
(POE-
enabled
Interface
modules
with POE
power
supply)
Yes
(FWS-POE
and FWS-
G-POE
only)
Yes
(FCX-S-
POE+
only)
Yes
- ICX
6610-
24P and
ICX 6610-
48P
High Power over Ethernet (POE)+
Yes (SX-
FI48GPP and
SX-FI-24GPP
modules
only)
No
Yes
(FCX-S-
POE+
only)
Yes
- ICX
6610-
24P and
ICX 6610-
48P
PoE firmware upgrade via CLI
Yes
No
Yes
Yes
Priority mapping using ACLs
Yes
Yes
Yes
Yes
Protected link groups
Yes
Yes
Yes
Yes
Layer 2 stacking rapid failover and
switchover
No
No
Yes
Yes
Long distance stacking
No
No
No
Yes
IronWare Software Release R07.3.00p Page 30 of 113
Category and description
FESX6
FSX
FSX 800 FSX
1600
FWS
FCX
ICX 6610
Static MAC entries with option to set
traffic priority
Yes
Yes
Yes
Yes
Symmetric flow control
Can transmit and receive 802.1x
PAUSE frames
No
No
Yes
Yes
System time using a Simple Network
Time Protocol (SNTP) server or local
system counter
Yes
Yes
Yes
Yes
User-configurable scheduler profile
No
No
Yes
Yes
User-configurable buffer profile
No
No
Yes
Yes
Virtual Cable Testing (VCT)
technology
Not on third
generation
modules
Yes
Yes
No
61BSupported Layer 2 features
Layer 2 software images include all of the management, security, and system-level features listed in the
previous tables, plus the features listed in Table 7.
Table 7 Supported Layer 2 features
Category and description
FESX6
FSX 800
FSX 1600
FWS
FCX
ICX 6610
802.1D Spanning Tree Support:
Enhanced IronSpan support
includes Fast Port Span, Fast Uplink
Span, and Single-instance Span
Up to 254 spanning tree instances
for VLANs
Yes
Yes
Yes
Yes
802.1p Quality of Service (QoS):
Strict Priority (SP)
Weighted Round Robin (WRR)
Combined SP and WRR
8 priority queues
Yes
Yes
Yes
Yes
802.1s Multiple Spanning Tree
Yes
Yes
Yes
Yes
802.1W Rapid Spanning Tree (RSTP)
Yes
Yes
Yes
Yes
IronWare Software Release R07.3.00p Page 31 of 113
Category and description
FESX6
FSX 800
FSX 1600
FWS
FCX
ICX 6610
802.3ad link aggregation (dynamic trunk
groups)
Yes
Yes
Yes
Yes
ACL-based rate limiting QoS
Yes
Yes
Yes
Yes
BPDU Guard
Yes
Yes
Yes
Yes
Dynamic Host Configuration Protocol
(DHCP) Assist
Yes
Yes
Yes
Yes
IGMP v1/v2 Snooping Global
Yes
Yes
Yes
Yes
IGMP v3 Snooping Global
Yes
(*,G)
Yes
(S,G)
Yes
(S,G)
Yes
(S,G)
IGMP v1/v2/v3 Snooping per VLAN
Yes
Yes
Yes
Yes
IGMP v2/v3 Fast Leave (membership
tracking)
Yes
Yes
Yes
Yes
Interpacket Gap (IPG) adjustment
Yes
Yes
Yes
Yes
IP MTU (individual port setting)
Yes
No
Yes
Yes
Jumbo frames:
Up to 10240 bytes, or
Up to 10232 bytes in an IronStack
Yes
Yes
Yes
Yes
Link Aggregation Control Protocol (LACP)
Yes
Yes
Yes
Yes
Link Fault Signaling (LFS) for 10G
Yes
Yes
Yes
Yes
MAC-Based VLANs, including support for
dynamic MAC-Based VLAN activation
No
Yes
Yes
Yes
Metro Ring Protocol 1 (MRP 1)
Yes
Yes
Yes
Yes
Metro Ring Protocol 2 (MRP 2)
Yes
Yes
Yes
Yes
Extended MRP ring IDs from 1 1023
Yes
No
Yes
Yes
MLD Snooping V1/V2:
MLD V1/V2 snooping (global and
local)
MLD fast leave for V1
MLD tracking and fast leave for V2
Static MLD and IGMP groups with
support for proxy
Yes
Yes
Yes
Yes
Multicast static group traffic filtering (for
snooping scenarios)
No
Yes
Yes
Yes
IronWare Software Release R07.3.00p Page 32 of 113
Category and description
FESX6
FSX 800
FSX 1600
FWS
FCX
ICX 6610
PIM-SM V2 Snooping
Yes
Yes
Yes
Yes
PVST/PVST+ compatibility
Yes
Yes
Yes
Yes
PVRST+ compatibility
Yes
Yes
Yes
Yes
Remote Fault Notification (RFN) for 1 G
fiber
Yes
Yes
Yes
Yes
Root Guard
Yes
Yes
Yes
Yes
Single link LACP
Yes
Yes
Yes
Yes
Super Aggregated VLANs
Yes
Yes
Yes
Yes
Trunk groups:
Trunk threshold for static trunk
groups
Flexible trunk group membership
Option to include Layer 2 in trunk
hash calculation (FGS, FLS, FWS
only)
Yes
Yes
Yes
Yes
Topology groups
Yes
Yes
Yes
Yes
Uni-directional Link Detection (UDLD)
(Link keepalive)
Yes
Yes
Yes
Yes
Uplink Ports within a Port-Based VLAN
Yes
Yes
Yes
Yes
VLAN Support:
4096 maximum VLANs
802.1Q with tagging
802.1ad tagging
Dual-mode VLANs
GVRP
Port-based VLANs
Protocol VLANs (AppleTalk, IPv4,
dynamic IPv6, and IPX
Layer 3 Subnet VLANs (Appletalk, IP
subnet network, and IPX)
VLAN groups
Private VLANs
Multi-range VLANs
Yes
Yes
Yes
Yes
VLAN-based mirroring
No
Yes
Yes
Yes
VoIP Autoconfiguration and CDP
Yes
Yes
Yes
Yes
IronWare Software Release R07.3.00p Page 33 of 113
Category and description
FESX6
FSX 800
FSX 1600
FWS
FCX
ICX 6610
Virtual Switch Redundancy Protocol
(VSRP)
Yes
Yes
Yes
Yes
VSRP-Aware security features
Yes
Yes
Yes
Yes
VSRP and MRP signaling
Yes
Yes
Yes
Yes
VSRP Fast Start
Yes
Yes
Yes
Yes
VSRP timer scaling
Yes
Yes
Yes
Yes
Supported base Layer 3 features
Base Layer 3 software images include all of the management, security, system, and Layer 2 features listed in
the previous tables, plus the features listed in Table 8.
Note: FCX devices will not contain a base Layer 3 image. The features in this table will be supported on the full
Layer 3 image for these devices.
Table 8 Supported base Layer 3 features
Category and description
FESX6
FSX 800
FSX 1600
FWS
FCX
ICX 6610
BootP/DHCP Relay
Yes
Yes
Yes
Yes
Equal Cost Multi Path (ECMP) load
sharing
Yes
Yes
Yes
Yes
IP helper
Yes
Yes
Yes
Yes
RIP V1 and V2 (advertising only)
Yes
Yes
Yes
Yes
Routing for directly connected IP
subnets
Yes
Yes
Yes
Yes
Static IP routing
Yes
Yes
Yes
Yes
Virtual Interfaces (up to 512)
Yes
Yes
Yes
Yes
Virtual Router Redundancy Protocol
(VRRP)
Yes
Yes
Yes
Yes
VRRP timer scaling
Yes
Yes
Yes
Yes
IronWare Software Release R07.3.00p Page 34 of 113
63BSupported edge Layer 3 features
Edge Layer 3 software images include all of the management, security, system, Layer 2, and base Layer 3
features listed in the previous tables, plus the features shown in Table 9.
Note: Edge Layer 3 images are supported in the FastIron (hardware) models listed in Table 9. These features
are also supported with software-based licensing. For details, refer to the chapter “Software-based Licensing”
in the FastIron Configuration Guide.
Table 9 Supported edge Layer 3 features
Category and description
FWS-EPREM
FWSG-EPREM
OSPF V2 (IPv4)
Yes
Full RIP V1 and V2
Yes
Route-only support (Global configuration level only)
Yes
Route redistribution
Yes
1020 routes in hardware maximum
Yes
VRRP-E
Yes
64BSupported full Layer 3 features
Full Layer 3 software images include all of the management, security, system, Layer 2, base Layer 3 and edge
Layer 3 features listed in the previous tables, plus the features listed in Table 10.
Note: Full Layer 3 features are supported in the FastIron (hardware) models listed in Table 10. These features
are also supported with software-based licensing. For details, refer to the chapter “Software-based Licensing”
in the FastIron Configuration Guide.
Table 10 Supported full Layer 3 features
Category and description
FESX-PREM
FSX 800-PREM
FSX 1600-PREM
FCX
ICX 6610
Active host routes
Yes (6,000)
Yes (16,000)
Yes (16,000)
Anycast RP
Yes
No
No
IPv6 BGP/BGP4+
No
No
No
BGP4 graceful restart
Yes (FSX 800
and FSX 1600
only)
Yes (ADV
models in a
stack)
Yes (ADV
models in a
stack)
BGP4
Yes
Yes (ADV
models)
Yes (ADV
models)
IronWare Software Release R07.3.00p Page 35 of 113
Category and description
FESX-PREM
FSX 800-PREM
FSX 1600-PREM
FCX
ICX 6610
Distance Vector Multicast Routing
Protocol (DVMRP) V2 (RFC 1075)
Yes
No
No
Internet Group Management Protocol (IGMP) V1,
V2, and V3 (for multicast routing scenarios)
Yes
Yes
Yes
ICMP Redirect messages
Yes
Yes
Yes
IGMP V3 fast leave (for routing)
Yes
Yes
Yes
IPv4 point-to-point GRE IP tunnels
Yes
(IPv6 devices
only and 3rd gen
modules)
No
No
IPv6 Layer 3 forwarding1
Yes
Yes
Yes
IPv6 over IPv4 tunnels in hardware1
Yes
Yes
Yes
IPv6 Redistribution0F
1
Yes
Yes
Yes
IPv6 Static Routes1
Yes
Yes
Yes
Multiprotocol Source Discovery Protocol (MSDP)
Yes
Yes
Yes
OSPF graceful restart
Yes (FSX 800
and FSX 1600
only)
Yes
Yes
OSPF V2
Yes
Yes
Yes
OSPF V3 (IPv6)1
Yes
Yes
Yes
Protocol Independent Multicast Dense
mode (PIM-DM) V1 (draft-ietf-pim-dm-05)
and V2 (draft-ietf-pim-v2-dm-03)
Yes
Yes
Yes
Protocol Independent Multicast Sparse
mode (PIM-SM) V2 (RFC 2362)
Yes
Yes
Yes
PIM passive
Yes
Yes
Yes
Policy-Based Routing (PBR)
Yes
Yes
Yes
RIPng (IPv6)1
Yes
Yes
Yes
Route-only support (Global CONFIG level and
Interface level)
Yes
Yes
Yes
1
This feature requires IPv6-capable hardware and a valid software license. For details, refer to the chapter
“Software-based Licensing” in the FastIron Configuration Guide.
IronWare Software Release R07.3.00p Page 36 of 113
Category and description
FESX-PREM
FSX 800-PREM
FSX 1600-PREM
FCX
ICX 6610
Route redistribution (including BGP4)
Yes
Yes (BGP4
supported on
ADV models
only)
Yes (BGP4
supported on
ADV models
only)
Routes in hardware maximum:
FESX6 up to 256K routes
FESX6-E up to 512K routes
FSX up to 512K routes
FCX up to 16K routes
ICX up to 15K Ipv4 routes and 2800 IPv6
routes
Yes
Yes
Yes
Static ARP entries
Yes (up to 6,000)
Yes (up to
1,000)
Yes (up to
1,000)
VRRP-E
Yes
Yes
Yes
VRRP-E slow start timer
Yes
Yes
Yes
VRRP-E timer scale
Yes
Yes
Yes
65BSupported IPv6 management features
Table 11 shows the IPV6 management features that are supported in Brocade devices that can be configured
as an IPv6 host in an IPv6 network, and in devices that support IPv6 routing.
Table 11 Supported IPv6 management features
Category and description
FESX6
FSX 800
FSX 1600
FWS
FCX
ICX 6610
Link-Local IPv6 Address
Yes
Yes
Yes
Yes
IPv6 Access List (management ACLs)
Yes
Yes
Yes
Yes
IPv6 copy
Yes
Yes
Yes
Yes
IPv6 ncopy
Yes
Yes
Yes
Yes
IPv6 debug
Yes
Yes
Yes
Yes
IPv6 ping
Yes
Yes
Yes
Yes
IPv6 traceroute
Yes
Yes
Yes
Yes
DNS server name resolution
Yes
Yes
Yes
Yes
IronWare Software Release R07.3.00p Page 37 of 113
Category and description
FESX6
FSX 800
FSX 1600
FWS
FCX
ICX 6610
HTTP/HTTPS
Yes
Yes
Yes
Yes
Logging (Syslog)
Yes
Yes
Yes
Yes
RADIUS
Yes
Yes
Yes
Yes
SCP
Yes
Yes
Yes
Yes
SSH
Yes
Yes
Yes
Yes
SNMP
Yes
Yes
Yes
Yes
SNMP traps
Yes
Yes
Yes
Yes
SNTP
Yes
Yes
Yes
Yes
TACACS/TACACS+
Yes
Yes
Yes
Yes
Telnet
Yes
Yes
Yes
Yes
TFTP
Yes
Yes
Yes
Yes
66BUnsupported features
Table 12 lists the features that are not supported on the FastIron devices. If required, these features are
available on other Brocade devices.
Table 12 Unsupported features
System-level features not supported
ACL logging of permitted packets
Broadcast and multicast MAC filters
Outbound ACLs on FWS, and 1st or 2nd generation of FSX modules.
Layer 2 features not supported
SuperSpan
VLAN-based priority
Layer 3 features not supported
AppleTalk routing
IronWare Software Release R07.3.00p Page 38 of 113
System-level features not supported
Foundry Standby Router Protocol (FSRP)
IPv6 Multicast Routing
IPX routing
IS-IS
Multiprotocol Border Gateway Protocol (MBGP)
Multiprotocol Label Switching (MPLS)
Network Address Translation (NAT)
TurboIron 24X Feature Support
This section describes the feature highlights in this release. Features or options not listed in this section or
documented in the FastIron and TurboIron 24X Configuration Guide are not supported.
67BSupported Management Features
This release supports the following management features.
Supported Management Features
Category, Description, and Configuration Notes
Supported on
TurboIron
802.1X accounting
No
AAA support for console commands
Yes
Access Control Lists (ACLs) for controlling management access
Yes
Alias Command
Yes
Combined DSCP and internal marking in one ACL rule
Yes
Configuring an interface as the source for all TFTP, Syslog, and SNTP packets
No
DHCP Client-Based Auto-Configuration
No
DHCP Server
No
Disabling TFTP Access
Yes
Brocade Network Advisor 11.2
Yes
P-Bridge and Q-Bridge MIBs
Yes
Remote monitoring (RMON)
Yes
Retaining Syslog messages after a soft reboot
No
sFlow
For inbound traffic only
802.1X username export support for encrypted and non-encrypted EAP types
Yes
sFlow support for IPv6 packets
Yes
sFlow Version 5
No
Serial and Telnet access to industry-standard Command Line Interface (CLI)
Yes
Show log on all terminals
Yes
SNMP v1, v2, v3
Yes
SNMP V3 traps
Yes
Specifying the maximum number of entries allowed in the RMON Control Table
Yes
Specifying which IP address will be included in a DHCP/BOOTP reply packet
No
IronWare Software Release R07.3.00p Page 39 of 113
Supported Management Features
Category, Description, and Configuration Notes
Supported on
TurboIron
Traffic counters for outbound traffic
Yes
Web-based GUI
No
Web-based management HTTPS/SSL
No
68BSupported IPv6 Management Features
This release supports the following IPv6 management features.
Supported IPv6 Management Features
Category, Description, and Configuration Notes
Supported on
TurboIron
Link-Local IPv6 Address
Yes
IPv6 Access List
No
IPv6 copy
Yes
IPv6 ncopy
Yes
IPv6 debug
Yes
IPv6 ping
Yes
IPv6 traceroute
Yes
DNS server name resolution
Yes
HTTP/HTTPS
No
Logging (syslog)
Yes
RADIUS
Yes
SCP
Yes
SSH
Yes
SNMP v1, v2, v3
Yes
SNTP
Yes
Syslog
Yes
TACACS/TACACS+
Yes
Telnet
Yes
TFTP
Yes
Traps
Yes
69BSupported Security Features
This release supports the following security features.
Supported Security Features
Category, Description, and Configuration Notes
Supported on
TurboIron
802.1X port security
Yes
IronWare Software Release R07.3.00p Page 40 of 113
Supported Security Features
Category, Description, and Configuration Notes
Supported on
TurboIron
802.1X authentication RADIUS timeout action
Yes
802.1X dynamic assignment for ACL, MAC filter, and VLAN
Yes
Access Control Lists (ACLs) for filtering transit traffic
Support for inbound ACLs only. These devices do not support outbound ACLs.
Yes
Address locking (for MAC addresses)
Yes
AES Encryption for SNMP v3
Yes
AES Encryption for SSH v2
Yes
Authentication, Authorization and Accounting (AAA)
RADIUS, TACACS/TACACS+
Yes
Denial of Service (DoS) protection
TCP SYN Attacks and ICMP Attacks
Yes
DHCP Snooping
No
Dynamic ARP Inspection
No
EAP Pass-through Support
Yes
Enhancements to username and password
Yes
HTTPS
No
IP Source Guard
No
Local passwords
Yes
MAC filter override of 802.1X
Yes
MAC filtering
Filtering on source and destination MAC addresses
Yes
Ability to disable MAC Learning
Yes
Flow-based MAC learning
No
MAC port security
Yes
Multi-device port authentication
Yes
Multi-device port Authentication with dynamic ACLs
Yes
Multi-device port authentication with dynamic VLAN assignment
Yes
Multi-device port authentication password override
Yes
Multi-device port authentication RADIUS timeout action
Yes
Secure Copy (SCP)
Yes
Secure Shell (SSH) v2 Server
Yes
Packet filtering on TCP Flags
Yes
DHCP Relay Agent information (DHCP Option 82) for DHCP snooping
No
IronWare Software Release R07.3.00p Page 41 of 113
Supported Security Features
Category, Description, and Configuration Notes
Supported on
TurboIron
Web Authentication
No
70BSupported System-Level Features
This release supports the following system-level features.
Supported System Level Features
Category, Description, and Configuration Notes
Supported on
TurboIron
10/100/1000 port speed
Yes
1 Gbps and 10 Gbps configurable port speed on fiber ports
Yes
32,000 MAC addresses per switch
Yes
ACL-Based Mirroring
Yes
ACL-Based Rate Limiting
ACL-based fixed and adaptive rate limiting on inbound ports
Yes
ACL filtering based on VLAN membership or VE port membership
Yes
ACL logging of denied packets
ACL logging is supported for denied packets, which are sent to the CPU for logging
ACL logging is not supported for permitted packets
Packets that are denied by ACL filters are logged in the Syslog based on a sample time-period.
Yes
ACL statistics
Yes
ACLs to filter ARP packets
Yes
Asymmetric flow control
Responds to flow control packets, but does not generate them
Yes
Auto MDI/MDIX
Yes
Auto-negotiation
Yes
Automatic removal of Dynamic VLAN for 802.1X ports
No
Automatic removal of Dynamic VLAN for MAC authenticated ports
No
Broadcast, multicast, and unknown-unicast rate limiting
Yes
Boot and reload after 5 minutes at or above shutdown temperature
Yes
Cut-through switching
Yes
DiffServ support
Yes
Digital Optical Monitoring
Yes
Displaying interface names in Syslog
Yes
Displaying TCP/UDP port numbers in Syslog messages
Yes
DSCP Mapping for values 1 through 8
Yes
IronWare Software Release R07.3.00p Page 42 of 113
Supported System Level Features
Category, Description, and Configuration Notes
Supported on
TurboIron
Dynamic buffer allocation
Yes
Egress buffer thresholds
Yes
Fixed rate limiting
Port-based rate limiting on inbound ports.
Fixed rate limiting is supported on 1 Gbps and 10 Gbps Ethernet ports.
Fixed rate limiting is not supported on tagged ports in the full Layer 3 router image.
Yes
Foundry Discovery Protocol (FDP) / Cisco Discovery Protocol (CDP)
Yes
Generic buffer profile
No
High Availability
Layer 2 hitless switchover
Layer 2 hitless Operating System (OS) upgrade
No
LLDP
Yes
LLDP-MED
No
MAC filter-based mirroring
Yes
Multi-port static MAC address
Yes
Multiple Syslog server logging
Up to six Syslog servers
Yes
Negative temperature setting
Yes
Outbound rate limiting
No
Outbound rate shaping
Yes
Path MTU Discovery support
No
Port flap dampening
Yes
Port mirroring and monitoring
Mirroring of both inbound and outbound traffic on individual ports is supported.
Yes
Power over Ethernet
No
Priority mapping using ACLs
Yes
Protected link groups
No
Specifying a Simple Network Time Protocol (SNTP) Server
Yes
Specifying the minimum number of ports in a trunk group
Yes
Static MAC entries with option to set traffic priority
Yes
Virtual Cable Testing (VCT) technology
Uses Time Domain Reflectometry (TDR) technology to detect and report cable statistics such as; local and remote
link pair, cable length, and link status.
No
IronWare Software Release R07.3.00p Page 43 of 113
Supported Layer 2 Features
This release supports the following Layer 2 features.
Supported Layer 2 Features
Category, Description, and Configuration Notes
Supported on
TurboIron
802.1D Spanning Tree Support
Enhanced IronSpan support includes Fast Port Span and Single-instance Span
TurboIron switches support up to 255 spanning tree instances for VLANs.
Yes
802.1p Quality of Service (QoS)
Strict Priority (SP)
Weighted Round Robin (WRR)
Combined SP and WRR
8 priority queues
Yes
802.1s Multiple Spanning Tree
Yes
802.1W Rapid Spanning Tree (RSTP)
802.1W RSTP support allows for sub-second convergence (both final standard and draft 3 supported)
Yes
802.3ad link aggregation (dynamic trunk groups)
Brocade ports enabled for link aggregation follow the same rules as ports configured for trunk groups.
Yes
ACL-based rate limiting QoS
Yes
BPDU Guard
Yes
Dynamic Host Configuration Protocol (DHCP) Assist
Yes
IGMP v1/v2 Snooping Global
Yes
IGMP v3 Snooping Global
Yes
(*,G and S,G)
IGMP v1/v2/v3 Snooping per VLAN
Yes
IGMP Proxy
Yes
IGMP v2/v3 Fast Leave (membership tracking)
Yes
IGMP Filters
Yes
Interpacket Gap (IPG) adjustment
Yes
Jumbo frames
10/100/1000 and 10-Gigabit Ethernet ports
Up to 9216 bytes
Yes
LACP
LACP trunk group ports follow the same configuration rules as for statically configured trunk group ports.
Support for single link LACP
Yes
Link Fault Signaling (LFS) for 10-Gigabit Ethernet ports
Yes
MAC-Based VLANs
Dynamic MAC-Based VLAN Activation
No
Metro Ring Protocol 1 (MRP 1)
Yes
IronWare Software Release R07.3.00p Page 44 of 113
Supported Layer 2 Features
Category, Description, and Configuration Notes
Supported on
TurboIron
Metro Ring Protocol 2 (MRP 2)
Yes
MLD Snooping V1/V2
MLD V1/V2 snooping (global and local)
MLD fast leave for V1
MLD tracking and fast leave for V2
Static MLD and IGMP groups with support for proxy
No
Multicast static group traffic filtering (for snooping scenarios)
No
PIM-SM V2 Snooping
Yes
PVST/PVST+ compatibility
Yes
PVRST+ compatibility
Yes
Remote Fault Notification (RFN) for 10-Gigabit Ethernet ports
No
Root Guard
Yes
Super Aggregated VLANs
Yes
Trunk groups
Trunk threshold for static trunk groups
Flexible trunk group membership
Yes
Topology groups
Yes
Uni-directional Link Detection (UDLD) (Link keepalive)
Yes
Uplink Ports Within a Port-Based VLAN
Yes
VLAN Support on TurboIron Devices:
4096 maximum VLANs
Dual-mode VLANs
802.1Q with tagging
Port-based VLANs
VLAN groups
Private VLANs
Yes
802.1ad Tagging (tag-type 8100 over 8100 encapsulation)
Yes
VLAN-based mirroring
No
VoIP Auto-configuration and CDP
No
Virtual Switch Redundancy Protocol (VSRP)
Yes
VSRP-Aware security features
Yes
VSRP and MRP signaling
Yes
VSRP Fast Start
Yes
VSRP timer scaling
Yes
IronWare Software Release R07.3.00p Page 45 of 113
72BSupported Layer 3 Features
This release supports the following Layer 3 features.
Supported Layer 3 Features
Category, Description, and Configuration Notes
Supported on
TurboIron
Anycast RP
Yes
BGP
Yes
IGMP V1, V2, and V3
Yes
IP helper
Yes
IP multicast routing protocols: PIM-SM and PIM-DM
DVMRP is not supported
Yes
ICMP Redirect messages
Yes
Multiprotocol Source Discovery Protocol (MSDP)
Yes
OSPF V2 (IPv4)
Yes
RIP V1 and V2
Yes
Route-only support
Disabling Layer 2 Switching at the CLI Interface level as well as the Global CONFIG level. This feature is not
supported on virtual interfaces.
Yes
Routing for directly connected IP subnets
Yes
Static IP Routing
Yes
Virtual Interfaces
Up to 255 virtual interfaces
Yes
VRRP
Yes
VRRP-E
Yes
Note: Layer 3 features not listed under “Layer 3 Features” are not supported.
IronWare Software Release R07.3.00p Page 46 of 113
Software image file
Boot and flash images for Ironware release 07.3.00p
Table 13 lists the software image file that is available for IronWare Release 07.3.00p.
Table 13 Software image file
Device
Boot Image
Flash Image
FESX6
FSX 800
FSX 1600
sxz07200.bin
SXS07300p.bin (Layer 2) or
SXL07300p.bin (base Layer 3)
or
SXR07300p.bin (full Layer 3)
PoE Firmware files
Table 14 lists the PoE firmware file types supported for IronWare Release R07.3.00p. The firmware files are
specific to their devices and are not interchangeable. For example, you cannot load FCX PoE firmware on a FSX
device.
Note: The PoE circuitry includes a microcontroller pre-programmed at Brocade factory. In the past, a copy of
the current microcontroller code was embedded as part of the FastIron software releases and was used for
upgrades if necessary. Two different types of PoE controller code sets were included for PoE and POE+
subsystems. That is no longer the case, and the software has been enhanced so that it can be loaded as an
external file. The microcontroller code has not changed in this release, so there is no current need for an
upgrade. The PoE firmware version string will be kept updated to match the corresponding software version
however. This is only a cosmetic change and the firmware itself remains unchanged. Should a new version of
POE code be released, Brocade will notify its customers of the needed code upgrade. Finally, in the remote
case that a failure occurs during an upgrade process, the switch would still be functional but without PoE
circuitry. Should you encounter such an issue, please contact Brocade Technical Support for servicing.
Table 14 PoE Firmware files
Device
PoE Firmware Version
PoE Firmware Files
FESX6
FSX 800
FSX 1600
06.0.6
fsx_poe_06.0.6.fw
FSX 800 with SX-FI648PP or SX-FI-
24GPP module
FSX 1600 with SX-FI648PP or SX-
FI-24GPP module
02.1.0
fsx_poeplus_02.1.0.fw
FCX
ICX 6610
02.1.0
fcx_poeplus_02.1.0.fw
Upgrading software
Use the procedures in this section to upgrade the software for your devices.
There are two different upgrade procedures. Select the appropriate procedure for the type of upgrade you want
to perform:
IronWare Software Release R07.3.00p Page 47 of 113
Standard upgrade procedure
Use this procedure if you want to upgrade to IronWare R07.3.00p but do not want to run the device in a FIPS
environment. This procedure is described in the Standard upgrade procedure section.
Important notes about upgrading or downgrading the software
Note the following when upgrading to software release R07.3.00p:
FSX devices can store two Full Layer 3 image or two Layer 2 or Base Layer 3 images.
FESX6 can store one Full Layer 3 image or two Layer 2 or Base Layer 3 images
The image for IronWare R07.2.00a and later uses different Interprocessor Communications (IPC) versions
for FCX devices; however, units in a stack must run the same IPC version to communicate. After upgrading
from IronWare R07.2.00 or earlier to IronWare R07.3.00p, you must verify that the same image
downloaded to every unit in the stack before reloading the entire stack. To verify the images, you can enter
the show flash command at any level of the CLI. A stack cannot be built and will not operate if one or more
units has different software images.
Hitless upgrade for FSX devices from 07.3.00c to later 07.3.00 releases is not supported.
Note the following when downgrading from software release R07.3.00p:
If software-based licensing is in effect on the device and the software is downgraded to pre-release
07.1.00, software-based licensing will not be supported.
Standard upgrade procedure
Before upgrading the software on the device, first read the Important notes about upgrading or downgrading
the software section.
Upgrading the boot code
If you need to upgrade the boot code, perform the following steps.
1. Place the new boot code on a TFTP server to which the Brocade device has access.
2. If the device has 8 MB of flash memory or if you want to install a Full Layer 3 image on an FCX or FSX
device, you must delete the primary and secondary image
3. Copy the boot code from the TFTP server into flash memory. To do so, enter a command such as the
following at the Privileged EXEC level of the CLI.
copy tftp flash <ip-addr> <image-file-name> bootrom
You should see output similar to the following.
Device# Flash Memory Write (8192 bytes per dot)...........................
(Boot Flash Update)Erase.........Write.............
TFTP to Flash Done
Note: Brocade recommends that you use the copy tftp flash command to copy the boot code to the
device during a maintenance window. Attempting to do so during normal networking operations may
cause disruption to the network.
4. Verify that the code has been successfully copied by entering the following command at any level of
the CLI.
show flash
The output will display the compressed boot ROM code size and the boot code version.
5. Upgrade the flash code as instructed in the following section.
IronWare Software Release R07.3.00p Page 48 of 113
Upgrading the flash code
Note: You must delete the current primary and secondary images before completing the upgrade steps.
Devices with 8MB of flash memory can only hold one complete image.
To upgrade the flash code, perform the following steps.
1. Place the new flash code on a TFTP server to which the Brocade device has access.
2. If the device has 8MB of flash memory or if you want to install a Full Layer 3 image on an FCX device,
you must delete the primary and secondary images before upgrading the image. To delete images
from the flash, enter the following commands:
Device# erase flash primary
Device# erase flash secondary
Note: If the primary flash contains additional files not related to the software update, it is
recommended that you also delete these files.
3. Copy the flash code from the TFTP server into flash memory. To do so, use the copy command at the
Privileged EXEC level of the CLI.
copy tftp flash <ip-addr> <image-file-name> primary | secondary
You should see output similar to the following.
Device# Flash Memory Write (8192 bytes per dot) ........................
...................................................................................................................................................
TFTP to Flash Done
4. Verify that the flash code has been successfully copied by entering the following command at any level
of the CLI.
Note: For units in an IronStack, when upgrading from one major release to another (for example, from
software release 07.1.00 to 07.2.00), make sure that every unit has the same code. If you reload the
stack while units are running different code versions, the units will not be able to communicate.
show flash
If the flash code version is correct, go to step 5, otherwise, go back to step 1.
5. Once you have completed the upgrade, you must reboot the device to complete the upgrade process.
Use one of the following commands:
reload (this command boots from the default boot source, which is the primary flash area by
default)
boot system flash primary | secondary
A confirmation step may occur after a boot system flash primary/secondary command is entered and
gives an administrator the opportunity to make last minute changes or corrections before performing a
reload. The example below shows the confirmation step.
Device# boot system flash primary
Are you sure? (enter ‘Y’ or ‘N’): y
6. For devices in an IronStack, make sure all devices are running the same software image. See
“Confirming software versions (IronStack devices)” in the next section.
Confirming software versions (IronStack devices)
All units in an IronStack must be running the same software image. To confirm this, check the software version
on all devices that you want to add to your IronStack. Upgrade any units that are running older versions of the
software before you build your stack.
IronWare Software Release R07.3.00p Page 49 of 113
1. Telnet, SSH, or connect to any of the console ports in the stack.
2. Enter the show version command. Output similar to the following is displayed.
Device# show version
Copyright (c) 1996-2011 Brocade Communications Systems, Inc.
UNIT 3: compiled on Sep 26 2011 at 21:15:14 labeled as FCXR07300
(6801867 bytes) from Primary fcxr07300.bin
SW: Version 07.3.00T7f3
UNIT 1: compiled on Sep 26 2011 at 21:15:14 labeled as FCXR07300
(6801867 bytes) from Primary fcxr07300.bin
SW: Version 07.3.00T7f3
UNIT 2: compiled on Sep 26 2011 at 21:15:14 labeled as FCXR07300
(6801867 bytes) from Primary fcxr07300.bin
SW: Version 07.3.00T7f3
UNIT 4: compiled on Sep 26 2011 at 21:15:14 labeled as FCXR07300
(6801867 bytes) from Primary fcxr07300.bin
SW: Version 07.3.00T7f3
UNIT 5: compiled on Sep 26 2011 at 21:15:14 labeled as FCXR07300
(6801867 bytes) from Primary fcxr07300.bin
SW: Version 07.3.00T7f3
UNIT 6: compiled on Sep 26 2011 at 21:15:14 labeled as FCXR07300
(6801867 bytes) from Primary fcxr07300.bin
SW: Version 07.3.00T7f3
UNIT 7: compiled on Sep 26 2011 at 21:15:14 labeled as FCXR07300
(6801867 bytes) from Primary fcxr07300.bin
SW: Version 07.3.00T7f3
UNIT 8: compiled on Sep 26 2011 at 21:15:14 labeled as FCXR07300
(6801867 bytes) from Primary fcxr07300.bin
SW: Version 07.3.00T7f3
Boot-Monitor Image size = 369321, Version:07.3.00T7f5 (grz07300)
HW: Stackable FCX648S-PREM (PROM-TYPE FCX-ADV-U)
==========================================================================
UNIT 1: SL 1: FCX-24GS 24-port Management Module
License: FCX_ADV_ROUTER_SOFT_PACKAGE (LID: )
P-ENGINE 0: type DB90, rev 01
PROM-TYPE: FCX-ADV-U
==========================================================================
UNIT 1: SL 2: FCX-2XGC 2-port 16G Module (2-CX4)
==========================================================================
UNIT 1: SL 3: FCX-2XG 2-port 10G Module (2-XFP)
==========================================================================
UNIT 2: SL 1: FCX-48GS POE 48-port Management Module
License: FCX_ADV_ROUTER_SOFT_PACKAGE (LID: )
P-ENGINE 0: type DB90, rev 01
P-ENGINE 1: type DB90, rev 01
PROM-TYPE: FCX-ADV-U
==========================================================================
UNIT 2: SL 2: FCX-2XGC 2-port 16G Module (2-CX4)
==========================================================================
UNIT 3: SL 1: FCX-48GS 48-port Management Module
License: FCX_ADV_ROUTER_SOFT_PACKAGE (LID: )
P-ENGINE 0: type DB90, rev 01
P-ENGINE 1: type DB90, rev 01
PROM-TYPE: FCX-ADV-U
==========================================================================
UNIT 3: SL 2: FCX-2XGC 2-port 16G Module (2-CX4)
==========================================================================
UNIT 3: SL 3: FCX-2XG 2-port 10G Module (2-XFP)
==========================================================================
UNIT 4: SL 1: FCX-24GS-F 24-port Management Module
Serial #: BFC2239E03J
IronWare Software Release R07.3.00p Page 50 of 113
License: FCX_ADV_ROUTER_SOFT_PACKAGE (LID: dheHHIOgFIl)
P-ENGINE 0: type DB90, rev 01
==========================================================================
UNIT 4: SL 2: FCX-2XGC 2-port 16G Module (2-CX4)
==========================================================================
UNIT 5: SL 1: FCX-24GS 24-port Management Module
Serial #: BCV2218F091
License: FCX_ADV_ROUTER_SOFT_PACKAGE (LID: dexHHGNhFOG)
P-ENGINE 0: type DB90, rev 01
==========================================================================
UNIT 5: SL 2: FCX-2XGC 2-port 16G Module (2-CX4)
==========================================================================
UNIT 6: SL 1: FCX-24GS 24-port Management Module
Serial #: BCV2218F0BX
License: FCX_ADV_ROUTER_SOFT_PACKAGE (LID: dexHHGNhFdz)
P-ENGINE 0: type DB90, rev 01
==========================================================================
UNIT 6: SL 2: FCX-2XGC 2-port 16G Module (2-CX4)
==========================================================================
UNIT 7: SL 1: FCX-24GS 24-port Management Module
Serial #: BCV2218F099
License: FCX_ADV_ROUTER_SOFT_PACKAGE (LID: dexHHGNhFOO)
P-ENGINE 0: type DB90, rev 01
==========================================================================
UNIT 7: SL 2: FCX-2XGC 2-port 16G Module (2-CX4)
==========================================================================
UNIT 8: SL 1: FCX-24GS 24-port Management Module
Serial #: BCV2218F0B7
License: FCX_ADV_ROUTER_SOFT_PACKAGE (LID: dexHHGNhFdM)
P-ENGINE 0: type DB90, rev 01
==========================================================================
UNIT 8: SL 2: FCX-2XGC 2-port 16G Module (2-CX4)
==========================================================================
telnet@fcx648s-upper#
Note: If any unit in the IronStack is running an incorrect version of the software, it will appear as non-
operational. You must install the correct software version on that unit for it to operate properly in the stack. For
more information, refer to “Copying the flash image to a stack unit from the Active Controller” in the FastIron
Configuration Guide.
Upgrading software images on TurboIron devices
Upgrading the boot code
1. Place the new boot code on a TFTP server to which the Brocade device has access.
2. Enter the following command at the Privileged EXEC level of the CLI (example: FastIron Switch#) to copy
the boot code from the TFTP server into flash memory:
copy tftp flash <ip-addr> <image-file-name> bootrom
3. Use the copy tftp flash command to copy the boot code to the Brocade device only during a maintenance
window. Attempting to do so during normal networking operations can cause disruption to the network.
4. Verify that the code has been successfully copied by entering the following command at any level of the
CLI:
show flash
5. The output will display the compressed boot ROM code size and the boot code version.
IronWare Software Release R07.3.00p Page 51 of 113
6. Upgrade the flash code as instructed in the following section.
Upgrading the flash image
1. Place the new flash code on a TFTP server to which the Brocade device has access.
2. Enter the following command at the Privileged EXEC level of the CLI (example: FastIron#) to copy the flash
code from the TFTP server into the flash memory:
copy tftp flash <ip-addr> <image-file-name> primary | secondary
3. Verify that the flash code has been successfully copied by entering the following command at any level of
the CLI:
show flash
4. If the flash code version is correct, go to Step 5. Otherwise, go to Step 1.
5. Reload the software by entering the following command:
reload
(The reload command boots from the default boot source, which is the primary flash area by default)
Technical support
Contact your switch supplier for the hardware, firmware, and software support, including product repairs and
part ordering. To expedite your call, have the following information immediately available:
1. General Information
Technical Support contract number, if applicable
Device model
Software release version
Error numbers and messages received
Detailed description of the problem, including the switch or network behavior immediately
following the problem, and specific questions
Description of any troubleshooting steps already performed, with the results
2. Switch Serial Number
Getting help or reporting errors
E-mail and telephone access
Go to http://www.brocade.com/services-support/index.html for the latest e-mail and telephone contact
information.
Additional resources
For more information about the products supported in this software release, refer to the following publications.
Document Title
Contents
FastIron Configuration Guide
Provides configuration procedures for system-
level features, enterprise routing protocols, and
security features.
Brocade FCX Series Hardware Installation Guide
Describes the hardware as shipped. Provides
installation instructions, hardware maintenance
IronWare Software Release R07.3.00p Page 52 of 113
Document Title
Contents
Brocade FastIron WS Series Hardware Installation
Guide
Brocade FastIron X Series Chassis Hardware
Installation Guide
Brocade FastIron Edge X-Series Switch Hardware
Installation guide
Brocade ICX 6610 Series Hardware Installation Guide
procedures, hardware specifications, and
compliance information.
Unified IP MIB Reference
Simple Network Management Protocol (SNMP)
Management Information Base (MIB) objects.
Brocade FCX, Brocade FastIron SX, Brocade ICX 6610
Web Management Interface User Guide
Describes the Graphical User Interface (GUI) and
procedures for monitoring and configuring various
features of the FastIron CX series switches using
the GUI.
Brocade FCX and Brocade ICX 6610 Debug Guide
Documents debug commands for debugging
devices.
TurboIron 24X Configuration Guide
Provides configuration procedures for system-
level features, enterprise routing protocols, and
security features for TurboIron 24X.
Brocade TurboIron 24X Series Hardware Installation
Guide
Describes the TurboIron 24X hardware as
shipped. Provides installation instructions,
hardware maintenance procedures, hardware
specifications, and compliance information.
Go to Uhttp://www.brocade.com/ethernetproductsU to obtain the latest version of the guides. To report errors in
the guide, send an email to Udocumentation@brocade.comU.
Closed Defects in IronWare Software Release 07.3.00p
Defect ID: DEFECT000561967
Technical Severity: Medium
Probability: High
Product: IronWare
Technology: Layer 2
Reported In Release: FI 07.3.00
Technology Area: IEEE 802.1w RSTP
Symptom: Delayed MAC table flush observed upon the Root bridge reload and RSTP topology convergence.
Condition: The problem occurs when the Root bridge reloads and joins the topology back. The MAC flush occurs after
twice the forward delay time.
IronWare Software Release R07.3.00p Page 53 of 113
Closed Defects in IronWare Software Release 07.3.00n
Defect ID: DEFECT000536989
Technical Severity: Medium
Probability: Medium
Product: IronWare
Technology: Security
Reported In Release: FI 08.0.10
Technology Area: FIPS
Symptom: SSL poodle attack vulnerability
Condition: When HTTPS is connected using SSL 3.0, there is chance for poodle attack.
Defect ID: DEFECT000559035
Technical Severity: Medium
Probability: High
Product: IronWare
Technology: Management
Reported In Release: FI 07.3.00
Technology Area: SNMPv2, SNMPv3 & MIBs
Symptom: Device may unexpectedly reload when interface statistics is fetched through SNMP polling.
Condition: This issue is observed when IPv6 interface information is fetched for invalid port through SNMP polling.
Workaround: Avoid SNMP polling of IPv6 interface statistics with invalid port number.
Closed Defects in IronWare Software Release 07.3.00m
Defect ID: DEFECT000488852
Technical Severity: Medium
Probability: Low
Product: IronWare
Technology: Layer 3
Reported In Release: FI 07.4.00
Technology Area: OSPF (IPv4)
Symptom: Even though routing table gets changed as far as they see "show ip route", the traffic still goes out from the
port based on the previous routing table, unless we execute "clear ip route".
Condition: None
Workaround: Execute "clear ip route" a few times
Defect ID: DEFECT000533382
Technical Severity: High
Probability: Low
Product: IronWare
Technology: Stacking
Reported In Release: FI 07.2.00
Technology Area: Hitless Switchover, Failover, Hotswap,OS U/G
Symptom: The active management module of SX800 device unexpectedly reloads without stack trace.
Condition: If the SX800 device is up for more than 1325 days, the active management module resets unexpectedly.
Closed Defects in IronWare Software Release 07.3.00k
Defect ID:
DEFECT000468746
Technical Severity:
High
Probability:
High
Product:
IronWare
Technology:
Layer 2
Reported In Release:
FI 08.0.00
Technology Area:
IEEE 802.1w RSTP
Symptom:
With PVRST mode enabled on VDX device the FastIron devices drops BPDUs from VDX device
resulting in non-convergence of the topology.
Condition:
When VDX device with Spanning tree and PVRST mode enabled, is connected to a FastIron device
the BPDUs are dropped resulting issue in topology convergence.
IronWare Software Release R07.3.00p Page 54 of 113
Defect ID:
DEFECT000495931
Technical Severity:
Medium
Probability:
Medium
Product:
IronWare
Technology:
Management
Reported In Release:
FI 08.0.01
Technology Area:
SNMPv2, SNMPv3 & MIBs
Symptom:
SNMPv3 user became invalid after changing the stack MAC.
Condition:
When the stack MAC is changed, the SNMPv3 user became invalid.
Defect ID:
DEFECT000506391
Technical Severity:
Medium
Probability:
High
Product:
IronWare
Technology:
Traffic Management
Reported In Release:
FI 07.3.00
Technology Area:
QoS - Quality of Service
Symptom:
The “egress-buffer-threshold minimum” configuration on LACP/Trunk interface does not take effect
on secondary ports after reload.
Condition:
When “egress-buffer-threshold minimum” is configured on LACP / Trunk interfaces, the
configuration is shown only on primary interface in the start-up configuration. The configuration is
not applied on the secondary ports upon reload.
Recovery:
Re-configure the 'egress-buffer-threshold minimum' command after reload
Defect ID:
DEFECT000509612
Technical Severity:
Medium
Probability:
Medium
Product:
IronWare
Technology:
Management
Reported In Release:
FI 08.0.10
Technology Area:
DHCP (IPv4)
Symptom:
IP phones of specific models do not get connected to the TFTP server, when ICX 64xx or ICX6610
device is used as DHCP server.
Condition:
When ICX device is used as DHCP server, the IP phones of specific models could not connect to the
TFTP server.
Defect ID:
DEFECT000516553
Technical Severity:
Critical
Probability:
High
Product:
IronWare
Technology:
Stacking
Reported In Release:
FI 07.4.00
Technology Area:
Traditional Stacking
Symptom:
In ICX stacking environment, sometimes a member gets isolated from the stack due to a transmit
lockup. This is result of inability to transmit packets on the 40G link, causing the member to be
removed from the stack.
Condition:
This could be caused due to flapping of the 40G port, or in a congestion situation.
Syslog message will inform which unit from which stack device is deleted from the stack system.
Defect ID:
DEFECT000518219
Technical Severity:
Medium
Probability:
Medium
Product:
IronWare
Technology:
System
Reported In Release:
FI 07.3.00
Technology Area:
Component
Symptom:
In SX1600 device, ping latency occurs when optical monitoring is turned on.
Condition:
SX1600 device having Gen2 Management Module and Gen 3 line cards running 7.300g or 7.300f
software, when optical monitoring is enabled ping latency is observed even under normal CPU load.
IronWare Software Release R07.3.00p Page 55 of 113
Defect ID:
DEFECT000522650
Technical Severity:
High
Probability:
Low
Product:
IronWare
Technology:
Security
Reported In Release:
FI 07.3.00
Technology Area:
802.1x Port Security
Symptom:
IP phones unexpectedly losing connection when 802.1x is enabled after about 10 minutes.This
happens in dual-mode vlan, where the phone is tagged to voice-vlan, while the dot1x mac-session is
associated with the data-vlan.
Condition:
None
Workaround:
Enable dot1x multicast mode on the phone.
Defect ID:
DEFECT000524754
Technical Severity:
Low
Probability:
High
Product:
IronWare
Technology:
Layer 2
Reported In Release:
FI 07.3.00
Technology Area:
ARP
Symptom:
While executing the “show mac” command from the rconsole prompt on an ICX6610 member unit,
that unit unexpectedly reloads.
Condition:
None.
Defect ID:
DEFECT000528247
Technical Severity:
Medium
Probability:
Medium
Product:
IronWare
Technology:
Monitoring/RAS
Reported In Release:
FI 07.3.00
Technology Area:
Syslog
Symptom:
FCX stack device restarts spontaneously when enormous syslog messages are generated.
Condition:
When the FCX stack device is switched over multiple times with enormous syslog messages the
device reloads unexpectedly.
Defect ID:
DEFECT000529496
Technical Severity:
High
Probability:
Low
Product:
IronWare
Technology:
System
Reported In Release:
FI 07.3.00
Technology Area:
Optics
Symptom:
In very few 100-FX optics, when an interface configured as 100-fx, the interface status in "show
interface" shows as UP when 100-fx SR optics is plugged without a link up.
Condition:
The link is physically down, and the 100-FX optics is plugged-in.
Defect ID:
DEFECT000530578
Technical Severity:
High
Probability:
Medium
Product:
IronWare
Technology:
Layer 3
Reported In Release:
FI 07.4.00
Technology Area:
Other IPv4
Symptom:
IP reachability issues are observed between hosts in specific subnets connected in different VLANs
during event of a switch fabric hotswap.
Condition:
None
Defect ID:
DEFECT000535762
Technical Severity:
High
Probability:
High
Product:
IronWare
Technology:
Security
Reported In Release:
FI 07.4.00
Technology Area:
Web Authentication
Symptom:
Web pages do not load during HTTPs server verification.
Condition:
When self signed-ceritificate is used for HTTPS server verification, web page does not load.
Workaround:
Security certificates generated externally can be used for secure-login
IronWare Software Release R07.3.00p Page 56 of 113
Defect ID:
DEFECT000537299
Technical Severity:
Medium
Probability:
Low
Product:
IronWare
Technology:
System
Reported In Release:
FI 08.0.30
Technology Area:
CLI
Symptom:
“show tech” command output does not have sysmon counter information for ICX6610 devices.
Condition:
None
Closed Defects in IronWare Software Release 07.3.00j
Defect ID:
DEFECT000493946
Technical Severity:
Medium
Probability:
High
Product:
IronWare
Technology:
Monitoring/RAS
Reported In Release:
FI 07.3.00
Technology Area:
Syslog
Symptom:
An SNTP syslog is generated whenever the SNTP poll interval expires. The default SNTP poll
interval timeout value is 30 minutes.
Condition:
If there is no SNTP poll interval configured, a syslog is printed on every 30 minutes. When a poll
interval is configured, syslog is generated at the expiration of the configured time
Defect ID:
DEFECT000496483
Technical Severity:
Medium
Probability:
High
Product:
IronWare
Technology:
Security
Reported In Release:
FI 07.3.00
Technology Area:
802.1x Port Security
Symptom:
Stack unit with DOT1X may get reloaded due to insufficient memory caused by a memory leak issue.
Depending on the number of clients, memory leakage may result in complete memory exhaustion
after a period of time.
Condition:
FCX stack running FI 7.3.00.f release version with DoT1X authentication enabled may experience
crash due to memory exhaustion.
Defect ID:
DEFECT000496787
Technical Severity:
Medium
Probability:
High
Product:
IronWare
Technology:
Layer 2
Reported In Release:
FI 07.3.00
Technology Area:
Link Aggregation
Symptom:
When a switch forms an LACP trunk, it brings down all the ports in that LAG and flushes out peer
info. It then sends NULL PDU to the peer. The peer starts to send LACPPDU with NULL peer info to
the device. Then, device starts to disable LACP member ports one by one and finally brings down the
whole LAG. This is a continuous process.
Condition:
TI connected to a third party switch or Linux in a LAG configuration, the switch forms a LACP
trunk, then it tears down all the ports in that lag and flush out peer info
Recovery:
none
Defect ID:
DEFECT000501159
Technical Severity:
High
Probability:
Medium
Product:
IronWare
Technology:
Management
Reported In Release:
FI 07.3.00
Technology Area:
DHCP (IPv4)
Symptom:
When DHCP works in the server mode, memory leakage happens with each request received by the
device. When this is continued for a few days, the system may run out of memory and get rebooted
Condition:
When FastIron device is configured as DHCP server, DHCP client request processed by server may
cause memory leak.
IronWare Software Release R07.3.00p Page 57 of 113
Defect ID:
DEFECT000502975
Technical Severity:
Medium
Probability:
Medium
Product:
IronWare
Technology:
Management
Reported In Release:
FI 07.3.00
Technology Area:
NTP - Network Time Protocol
Symptom:
An NTP syslog is generated whenever the NTP poll interval expires. The default NTP poll interval
timeout value is 30 minutes.
Condition:
If there is no NTP poll interval configured, a syslog is printed on every 30 minutes. When a poll
interval is configured, syslog is generated at the expiration of the configured time
Closed Defects in IronWare Software Release 07.3.00h
Defect ID:
DEFECT000467830
Technical Severity:
Medium
Summary:
Traffic through LAG is interrupted on standby unit when active unit is reloaded.
Symptom:
In a stack of two ICX 6610 switches with a LAG group consisting of one port in the active unit and
another port in the standby unit, the LAG egress traffic stops for about 30 seconds on the standby unit
when the active unit reloads
Probability:
Low
Risk of Fix:
Medium
Feature:
L2 Forwarding
Function:
UNDETERMINED
Reported In Release:
FI 07.4.00
Service Request ID:
1199002
Defect ID:
DEFECT000470564
Technical Severity:
Medium
Summary:
The “show ip mroute” command output does not display a configured static default multicast route.
Symptom:
The “show ip mroute” command output does not display a configured static default multicast route.
Probability:
Medium
Feature:
SX L2/L3 Multicast Features
Function:
PIM Sparse
Reported In Release:
FI 07.3.00
Service Request ID:
1210623
Defect ID:
DEFECT000471200
Technical Severity:
High
Summary:
ICX 6610 reloads due to Data TLB error in corner case scenarios upon receiving certain control plane
stacking messages from peer stack units.
Symptom:
ICX 6610 reloads due to Data TLB error in corner case scenarios upon receiving certain control plane
stacking messages from peer stack units.
Probability:
Low
Risk of Fix:
Low
Feature:
FI Infrastructure
Function:
Stacking table sync/high avaibility
Reported In Release:
FI 07.4.00
Service Request ID:
1212599
Defect ID:
DEFECT000471565
Technical Severity:
Medium
Summary:
An SCP file transfer using Putty version 0.63 over a slow connection may fail.
Symptom:
An SCP file transfer using Putty version 0.63 over a slow connection may fail and generate the
following error message: Fatal: Received unexpected end-of-file from server.
Probability:
Medium
Feature:
FI Embedded Management
Function:
SSHV2/SCP
Reported In Release:
FI 07.3.00
Service Request ID:
1213955,1213955
Defect ID:
DEFECT000472237
Technical Severity:
Medium
Summary:
On time update, SNTP server generates syslog message mentioning wrong time.
Symptom:
On time update, SNTP server generates syslog message mentioning wrong time.
Probability:
Medium
Feature:
FI Embedded Management
Function:
Common Criteria
Reported In Release:
FI 07.3.00
IronWare Software Release R07.3.00p Page 58 of 113
Defect ID:
DEFECT000472725
Technical Severity:
Medium
Summary:
The “show statistics brief ethernet <port>” command output does not display packet counters for
undersized packets
Symptom:
The “show statistics brief ethernet <port>” command output does not display packet counters for
undersized packets.
Workaround:
N/A
Probability:
Medium
Feature:
FI Embedded Management
Function:
CLI and parser
Reported In Release:
FI 07.3.00
Defect ID:
DEFECT000473755
Technical Severity:
Medium
Summary:
SNMP incorrectly reports power supply status as down.
Symptom:
SNMP incorrectly reports power supply status as down.
Probability:
Medium
Risk of Fix:
Low
Feature:
FCX Network Management
Function:
SNMP V4/V6
Reported In Release:
FI 07.2.02
Service Request ID:
1208707
Defect ID:
DEFECT000474185
Technical Severity:
High
Summary:
A device acting as the DHCP-Relay Agent unexpectedly reloads while updating its ARP table.
Symptom:
A device acting as the DHCP-Relay Agent unexpectedly reloads while updating its ARP table.
Workaround:
N/A
Probability:
High
Risk of Fix:
Medium
Feature:
UNDETERMINED
Function:
UNDETERMINED
Reported In Release:
FI 07.4.00
Service Request ID:
1226009
Defect ID:
DEFECT000474395
Technical Severity:
Medium
Summary:
Enabling 802.1w on the default VLAN that contains no port gives continuous error messages.
Symptom:
Enabling 802.1w on the default VLAN that contains no port gives continuous error messages.
Probability:
Medium
Risk of Fix:
High
Feature:
FI L2
Function:
Control Plane - xSTP PVST+ PVRST+
Reported In Release:
FI 08.0.00
Service Request ID:
1226756
Defect ID:
DEFECT000475964
Technical Severity:
High
Summary:
Two IPv6 neighbor discovery (ND) packets sent out every second.
Symptom:
Duplicate ICMPv6 neighbor solicitations are sent.
Probability:
Medium
Risk of Fix:
Low
Feature:
FI L3 Unicast
Function:
Control Plane - ND ICMPv6
Reported In Release:
FI 08.0.01
Service Request ID:
1219638
Defect ID:
DEFECT000478555
Technical Severity:
Medium
Summary:
Removing the dual mode configuration on an interface configured with dot1x and mac authentication
causes the switch to unexpectedly reload.
Symptom:
Removing the dual-mode configuration on an interface configured with dot1x and mac authentication
causes the switch to unexpectedly reload.
Probability:
High
Risk of Fix:
Medium
Feature:
FI ACL
Function:
802.1x authentication
Reported In Release:
FI 07.4.00
Service Request ID:
1179303
IronWare Software Release R07.3.00p Page 59 of 113
Defect ID:
DEFECT000479288
Technical Severity:
High
Summary:
When network failure occurs with IGMPv3 and IGMP Tracking enabled, it causes delay in failover
process.
Symptom:
When network failure occurs with IGMPv3 and IGMP Tracking enabled, it causes delay in failover
process.
Probability:
High
Risk of Fix:
Low
Feature:
L2/L3 Multicast Features
Function:
IGMP snooping and variants
Reported In Release:
FI 07.4.00
Service Request ID:
1241536
Defect ID:
DEFECT000481649
Technical Severity:
High
Summary:
Counter overflow causes an ICX 6650 device to stop functioning after 9999 reloads.
Symptom:
Counter overflow causes an ICX 6650 device to stop functioning after 9999 reloads.
Probability:
High
Risk of Fix:
Medium
Feature:
Platform
Function:
UNDETERMINED
Reported In Release:
FI 07.4.00
Service Request ID:
1241878
Defect ID:
DEFECT000481686
Technical Severity:
Medium
Summary:
Setting up a scheduled reload to boot from the secondary flash instead boots the device from the
primary flash.
Symptom:
Configuring a scheduled reload from secondary flash will make the switch boot from primary still.
Probability:
Low
Risk of Fix:
Low
Feature:
FI Platform
Function:
Boot code/Flash/Kernel
Reported In Release:
FI 08.0.00
Service Request ID:
1234188
Defect ID:
DEFECT000482452
Technical Severity:
Medium
Summary:
The "admin-edge-port" configuration is automatically added at the VLAN level after LAG is
operational.
Symptom:
The "admin-edge-port" configuration is automatically added at the VLAN level after LAG is
operational.
Probability:
Medium
Feature:
FI L2
Function:
Control Plane - LACP
Reported In Release:
FI 07.3.00
Service Request ID:
1249659
Defect ID:
DEFECT000483135
Technical Severity:
High
Summary:
Unidirectional link in an LACP LAG causes network loop due to port incorrectly remaining in
Designated/Forwarding state in RSTP
Symptom:
Unidirectional link in an LACP LAG causes network loop. Affected ports were not correctly blocked
in RSTP causing ARP packets to circulate within the LAG ports indefinitely. The LAG needs to be
removed manually to mitigate the issue.
Probability:
Medium
Feature:
FI L2
Function:
Control Plane - xSTP/PVST+/PVRST+
Reported In Release:
FI 07.3.00
Service Request ID:
1248927
Defect ID:
DEFECT000485242
Technical Severity:
Critical
Summary:
When several switches connect to a multi-access section (Hub), the TCN does not terminate.
Symptom:
TCN BPDUs flood the network.
Workaround:
run RSTP instead
Probability:
High
Risk of Fix:
Low
Feature:
FI L2 control
Function:
Spanning-tree protocols /PVST+/PVRST+
Reported In Release:
FI 07.4.00
Service Request ID:
1256784
IronWare Software Release R07.3.00p Page 60 of 113
Defect ID:
DEFECT000485316
Technical Severity:
Medium
Summary:
FCX Combo Ports generate optical errors every three minutes even when SFP is disconnected and
alternate copper port is used.
Symptom:
Every three minutes, FCX displays an error message similar to the following: “RX power warning
error slot 1/1/1”.
Workaround:
Removed the SFPs on the ports that do not have fiber connected which stopped the errors.
Probability:
Medium
Risk of Fix:
Low
Feature:
DOM
Function:
DOM
Reported In Release:
FI 07.2.02
Service Request ID:
1231134,1231134
Defect ID:
DEFECT000485619
Technical Severity:
High
Summary:
A Deny ACL fails when applied on an inbound interface in an FCX device.
Symptom:
A Deny ACL fails when applied on an inbound interface in an FCX device.
Probability:
Medium
Feature:
FI ACL
Function:
ACL(all aspects of ACLs - IPV4)
Reported In Release:
FI 07.3.00
Service Request ID:
1256313
Defect ID:
DEFECT000485822
Technical Severity:
High
Summary:
Create an SNMP OID for the new Packet InError Detection and Designated Protection features.
Symptom:
Unable to pull string or values, or generate a SNMP trap for the new Packet InError Detection and
Designated Protection features.
Probability:
High
Feature:
FI Embedded Management
Function:
SNMP
Reported In Release:
FI 07.3.00
Service Request ID:
1258674
Defect ID:
DEFECT000485867
Technical Severity:
Medium
Summary:
An FSX management module switchover removes the 100-fx and optical monitoring configuration.
Symptom:
An FSX management module switchover removes the 100-fx and optical monitoring configuration.
Probability:
Medium
Feature:
DOM
Function:
DOM
Reported In Release:
FI 07.3.00
Service Request ID:
1257391
Defect ID:
DEFECT000486236
Technical Severity:
High
Summary:
A client that is connected to the active VRRP router fails to ping successfully to the server that is
connected to the PBR-configured backup VRRP router.
Symptom:
A client that is connected to the active VRRP router fails to ping successfully to the server that is
connected to the PBR-configured backup VRRP router.
Probability:
Low
Feature:
SX Layer 3 Forwarding - IPV4
Function:
PBR
Reported In Release:
FI 07.3.00
Service Request ID:
1256567
Defect ID:
DEFECT000486447
Technical Severity:
Medium
Summary:
The “show optic” command displays no output.
Symptom:
The “show optic” command displays no output for 10G Optics.
Probability:
High
Feature:
DOM
Function:
DOM
Reported In Release:
FI 07.3.00
Service Request ID:
1253880
IronWare Software Release R07.3.00p Page 61 of 113
Closed Defects in IronWare Software Release 07.3.00g1
Defect ID:
DEFECT000478420
Technical Severity:
High
Summary:
Boot image is not synchronized across all stack members when upgrading in 07.3.00g code using SCP
Symptom:
When upgrading the boot code through SCP in 07.3.00g code, the boot image is not synchronized
correctly to all the units in the stack; also the Active Unit may never get the new boot image even if
the member units do. Problem is not seen for Application images.
Probability:
Medium
Risk of Fix:
Low
Feature:
FI Embedded Management
Function:
SSHV2/SCP
Reported In Release:
FI 07.3.00g
Service Request ID:
1239987
Closed Defects in IronWare Software Release 07.3.00g
Defect ID:
DEFECT000391347
Technical Severity:
Medium
Summary:
If the MCT client switch is on an LACP trunk, reloading one MCT peer will cause traffic to drop for a
few seconds after it restarts.
Symptom:
If the MCT client switch is connected through LACP, traffic loss is seen for 10-15 seconds when the
MCT peer comes up after a reload due to LACP convergence.
Workaround:
Use static trunk for MCT client switches.
Probability:
High
Risk of Fix:
High
Feature:
FI MCT-L2
Function:
Link Aggregation Static/LACP
Reported In Release:
FI 07.4.00
Service Request ID:
1187611
Defect ID:
DEFECT000410566
Technical Severity:
Medium
Summary:
Issuing a "show tech" can cause UDLD to flap in some rare scenarios with a heavily loaded chassis.
Symptom:
In an SX chassis with several line cards fully equipped with SFPs, the implicit "show media"
command within "show tech" can cause some protocols such as UDLD to flap.
Probability:
Low
Risk of Fix:
Low
Feature:
SX Management Functionality
Function:
CLI and parser
Reported In Release:
FI 07.2.02
Service Request ID:
689327
Defect ID:
DEFECT000414937
Technical Severity:
Medium
Summary:
After a reload "show optic" command does not show any values on the SX-FI-24HF module.
Symptom:
After a reload, the "show optic" command does not show any values on the SX-FI-24HF module.
Workaround:
Execute "show media" first, after which "show optic" will show the correct values.
Probability:
High
Risk of Fix:
Low
Feature:
Platform
Function:
Digital Optical Monitoring
Reported In Release:
FI 07.4.00
Service Request ID:
759723
Defect ID:
DEFECT000419899
Technical Severity:
Medium
Summary:
Erroneous Syslog messages reporting functioning FCX power supply units going down and coming up
immediately are generated due to signal noise level.
Symptom:
Erroneous and cosmetic Syslog messages about a Power Supply Unit being powered down and up are
displayed continuously even though the PSU functions correctly and provides uninterrupted AC power
to the switch/router.
Probability:
Medium
Risk of Fix:
Low
Feature:
FI Platform Specific features
Function:
Chassis/fan/powersupplies/temperature
sensors
Reported In Release:
FI 07.2.02
Service Request ID:
1080157
IronWare Software Release R07.3.00p Page 62 of 113
Defect ID:
DEFECT000419924
Technical Severity:
Medium
Summary:
IP Source Guard blocks traffic after moving the port to a new VLAN.
Symptom:
When a client is moved to a port that has IP Source Guard enabled, if the port is then moved to a new
VLAN, the client will no longer be reachable.
Workaround:
Disable IP Source Guard on the client port, move it to the new VLAN and then re-enable IP Source
Guard on the port.
Probability:
Medium
Risk of Fix:
Medium
Feature:
FI ACL
Function:
DHCP Snooping functionality
Reported In Release:
FI 07.4.00
Service Request ID:
1071537
Defect ID:
DEFECT000428623
Technical Severity:
Medium
Summary:
CDP Packet coming from a Brocade Device has one missing field and one incorrect field.
Symptom:
Host name is not visible in the CDP packet for location services.
Probability:
High
Risk of Fix:
Medium
Feature:
FI Embedded Management
Function:
LLDP
Reported In Release:
FI 07.4.00
Service Request ID:
1100465
Defect ID:
DEFECT000429049
Technical Severity:
Medium
Summary:
High CPU utilization observed with NETBIOS & DHCP broadcasts.
Symptom:
High CPU utilization is observed when DHCP & NETBIOS broadcast packets are received by the
device.
Probability:
High
Risk of Fix:
High
Feature:
Layer 3 Forwarding - IPV4
Function:
Data Forwarding (IPV4)
Reported In Release:
FI 07.4.00
Service Request ID:
1092737
Defect ID:
DEFECT000441827
Technical Severity:
High
Summary:
A few Bosch Security Cameras (e.g. NBC-455-11P) fail to power on when connected to ICX6610.
Symptom:
IP security camera fails to power on when connected to ICX6610. The "show inline power" output on
the ICX6610 displays the camera port in a "short circuit" state.
Probability:
High
Feature:
Power over Ethernet
Function:
Power over Ethernet
Reported In Release:
FI 07.3.00
Service Request ID:
1110403
Defect ID:
DEFECT000443109
Technical Severity:
Medium
Summary:
Warning temperature is not configurable on FESX devices running versions 7.2.02 and later.
Symptom:
Warning temperature is not configurable on FESX devices running versions 7.2.02 and later.
Probability:
High
Risk of Fix:
Low
Feature:
SX Platform Specific features
Function:
Chassis/fan/powersupplies/temperature
sensors
Reported In Release:
FI 07.2.02
Service Request ID:
1137834
Defect ID:
DEFECT000447495
Technical Severity:
Medium
Summary:
Elevated CPU utilization levels seen on ICX6610, even with little traffic.
Symptom:
With minimal configuration and nothing plugged into an ICX6610-48, an average of 17 to 23% CPU
utilization is observed.
Probability:
High
Feature:
FI Platform
Function:
Boot code/Flash/Kernel
Reported In Release:
FI 07.3.00
Service Request ID:
1148445
IronWare Software Release R07.3.00p Page 63 of 113
Defect ID:
DEFECT000448184
Technical Severity:
High
Summary:
ICX6610 stacking instability due to interface errors (e.g. CRC, "InErrors", "InGiantPkts", "InJabber"
and/or "InBadPkts") on the stacking ports.
Symptom:
CPU utilization steadily increases, interface errors are seen on some of the stacking links, and the unit
generating the errors will eventually break off from the stack.
Workaround:
The separated stack unit needs to be cold booted to recover.
Probability:
Low
Feature:
FI Platform
Function:
40G Link
Reported In Release:
FI 07.3.00
Service Request ID:
1148013,1149815
Defect ID:
DEFECT000448876
Technical Severity:
Medium
Summary:
With DHCP snooping enabled, IP Cache is not updated from "Drop" to "Forward" when ARP packet
is received.
Symptom:
Traffic loss to certain destinations when traffic transits through a VRRP backup router if DHCP
Snooping is enabled on the incoming interface.
Probability:
Low
Risk of Fix:
Medium
Feature:
SX L2 Forwarding
Function:
MAC Table/FDB Manager
Reported In Release:
FI 07.2.00
Service Request ID:
1105581
Defect ID:
DEFECT000451227
Technical Severity:
Medium
Summary:
VRRP peer IP address is not reachable if IP address of another physical interface is removed.
Symptom:
If VRRP is configured between a TI-24X and an adjacent device, and if there is any physical interface
on it configured with an IP address, removing that IP address will cause the TI-24X to lose connection
to its VRRP peer.
Probability:
High
Feature:
TI Layer 3 Forwarding - IPV4
Function:
Data Forwarding (IPV4)
Reported In Release:
FI 07.3.00
Service Request ID:
1120393
Defect ID:
DEFECT000452027
Technical Severity:
Medium
Summary:
The "show aaa" command output is not accurate for certain fields.
Symptom:
Certain fields in the “show aaa” command output do not increment or change state in response to user
logins. Specifically, the lines “opens=0 closes=0 timeouts=0 errors=0”, and “no connection” do not
change in response to successful user logins.
Probability:
High
Risk of Fix:
Medium
Feature:
FI Embedded Management
Function:
AAA RADIUS/TACACS+ V4/V6
Reported In Release:
FI 07.4.00
Service Request ID:
1154018
Defect ID:
DEFECT000452843
Technical Severity:
Medium
Summary:
Switch does not send Accounting Stop message to the TACACS+ server when the SSH session ends
due to idle timeout.
Symptom:
Accounting Stop messages are not sent to the TACACS+ server when SSH session ends due to idle
timeout. This problem is not seen with RADIUS or Telnet.
Probability:
High
Risk of Fix:
Medium
Feature:
FI Embedded Management
Function:
AAA RADIUS/TACACS+ V4/V6
Reported In Release:
FI 07.4.00
Service Request ID:
1144016
IronWare Software Release R07.3.00p Page 64 of 113
Defect ID:
DEFECT000454619
Technical Severity:
Medium
Summary:
When loop-detection and 802.1x Authentication are enabled on the same interface, a Layer2 loop is
not detected.
Symptom:
When 802.1x is enabled on ports of a VLAN configured with loop-detection, and a physical Layer2
loop exists, the loop is not detected and high CPU utilization results.
Workaround:
Configure "dot1x port-control force-authorized" where the Layer2 loop is formed.
Probability:
Low
Feature:
FI - L4/Security
Function:
802.1x
Reported In Release:
FI 07.3.00
Service Request ID:
1136072
Defect ID:
DEFECT000455824
Technical Severity:
Medium
Summary:
On FESXv6 devices, output for the "show optic" command is not correctly displayed.
Symptom:
FESXv6 devices return "N/A" in the "show optic <port-number>" output if the command is executed
before executing the "show media" command.
Probability:
High
Risk of Fix:
Low
Feature:
Platform
Function:
Digital Optical Monitoring
Reported In Release:
FI 07.4.00
Service Request ID:
1167129
Defect ID:
DEFECT000456995
Technical Severity:
Medium
Summary:
LACP LAG does not get restored after line protocol changes from down to up.
Symptom:
After restoring one of the two links in a two-port LAG, the LAG stays down indefinitely.
Probability:
Medium
Risk of Fix:
Medium
Feature:
FI L2 control
Function:
LACP
Reported In Release:
FI 07.4.00
Service Request ID:
1157272
Defect ID:
DEFECT000457367
Technical Severity:
Medium
Summary:
When DCHP snooping is enabled, DHCP Discover packets are only forwarded to the helper address,
but are not broadcast within the local VLAN.
Symptom:
If DHCP Snooping is enabled on a VLAN which has an IP Helper Address configured, when a client
sends a DHCP Discover packet, the packet should be broadcast within the incoming VLAN but is not.
Probability:
High
Feature:
FCX Layer 3 Forwarding - IPV4
Function:
Data Forwarding (IPV4)
Reported In Release:
FI 07.3.00
Service Request ID:
1153147
Defect ID:
DEFECT000460102
Technical Severity:
High
Summary:
FCX incorrectly allows an unsupported "1000-full-slave" configuration on its fiber ports.
Symptom:
Configuring "1000-full-slave" on an FCX fiber port results in FCS errors on the link partner and
collisions on the local port.
Probability:
High
Feature:
FI Platform
Function:
OPTICS
Reported In Release:
FI 07.3.00
Service Request ID:
1168139
Defect ID:
DEFECT000460514
Technical Severity:
Medium
Summary:
High CPU spikes when optical-monitoring configured.
Symptom:
High CPU Spikes with Optical Monitoring configured on 7.300e Router Code.
Workaround:
Remove optical-monitor and no high CPU Spikes.
Probability:
High
Feature:
FI Platform Specific features
Function:
Digital Optical Monitor
Reported In Release:
FI 07.3.00
Service Request ID:
1170303
IronWare Software Release R07.3.00p Page 65 of 113
Defect ID:
DEFECT000462469
Technical Severity:
Medium
Summary:
Disabling SNMP traps for link-down/link-up also disables Syslog messages for interface down/up
events.
Symptom:
Issuing "no snmp-server enable traps <link-down | link-up>" prevents the generation of Syslog
messages when an interface goes down or comes up.
Probability:
High
Risk of Fix:
Medium
Feature:
FCX Management Functionality
Function:
CLI and parser
Reported In Release:
FI 07.2.02
Service Request ID:
1187496
Defect ID:
DEFECT000464240
Technical Severity:
High
Summary:
IP Helper Address stops working after DHCP Server feature is enabled and disabled.
Symptom:
DHCP client broadcast requests are not forwarded to the IP Helper Address after enabling and
disabling DHCP Server on the device.
Workaround:
Re-enable DHCP Server, even if not using the switch for that purpose.
Probability:
Medium
Feature:
FCX L2 Forwarding
Function:
DHCP assist
Reported In Release:
FI 07.3.00
Service Request ID:
1179152
Defect ID:
DEFECT000464627
Technical Severity:
High
Summary:
CPU Memory Leak may be observed when IP DHCP Server is enabled.
Symptom:
If DHCP Server is configured on the FI device without a DHCP Scope, a slow CPU memory leak may
be observed.
Workaround:
Ensure DHCP Scope on external DHCP Server is correctly configured.
Probability:
Low
Feature:
FI Embedded Management
Function:
DHCP
Reported In Release:
FI 07.3.00
Service Request ID:
1179149
Defect ID:
DEFECT000464738
Technical Severity:
Medium
Summary:
Designated Protect feature in Spanning Tree.
Symptom:
New feature support: 802.1d/802.1w Designated Protect (or Designated Guard).
Probability:
Low
Feature:
FI L2
Function:
Control Plane - xSTP/PVST+/PVRST+
Reported In Release:
FI 07.3.00
Service Request ID:
1168139
Defect ID:
DEFECT000464973
Technical Severity:
Medium
Summary:
Issuing "show media slot <num>" causes sending and receiving of VRRP-E Hello packets to stop for
longer than three seconds, leading to VRRP-E status flaps.
Symptom:
VRRP-E master/backup flaps and Duplicate IP Address messages are seen when "show media slot 1"
is executed on either ICX6650 in a VRRP-E hot standby pair.
Workaround:
Use "show media" and "show media ethernet" instead of "show media slot <num>".
Probability:
High
Risk of Fix:
Low
Feature:
Optics
Function:
OPTICS
Reported In Release:
FI 07.5.00
Service Request ID:
1186282
IronWare Software Release R07.3.00p Page 66 of 113
Defect ID:
DEFECT000465359
Technical Severity:
High
Summary:
Enabling IGMP Snooping on Switch image may stop ARP Request packets from being processed.
Symptom:
On an SX system running Switch image with only Gen3 line modules, enabling "ip multicast passive"
may prevent ARP Request packets from reaching the CPU for processing. Hence, connectivity to hosts
is lost. This does not happen on Router image or on systems which have at least one older generation
line module.
Probability:
High
Feature:
SX L2/L3 Multicast Features
Function:
IGMP snooping and variants
Reported In Release:
FI 07.3.00
Service Request ID:
1152821
Defect ID:
DEFECT000466801
Technical Severity:
High
Summary:
In OSPFv2, FI device's native Router-LSA gets replaced when a fake LSA is sent from a malicious
router which uses an LS ID equivalent to the FI device's router-id.
Symptom:
In OSPFv2, FI device's native Router-LSA gets replaced when a fake LSA is sent from a malicious
router which uses an LS ID equivalent to the FI device's router-id.
Probability:
High
Risk of Fix:
Medium
Feature:
Layer3 Control Protocols
Function:
OSPFV2 - IPV4
Reported In Release:
FI 07.4.00
Defect ID:
DEFECT000467796
Technical Severity:
Medium
Summary:
SX-FI-8XG line card improperly evaluates ACL for switched traffic within a VLAN.
Symptom:
When an ACL is configured on a VE interface, it gets applied to switched traffic within the VLAN as
well, whereas it is expected to be applied only on routed traffic.
Probability:
High
Feature:
FI - L4/Security
Function:
IPV4 ACLs - SX
Reported In Release:
FI 07.3.00
Service Request ID:
1198247
Defect ID:
DEFECT000467837
Technical Severity:
Medium
Summary:
Source IPv6 address for Router Advertisement should be the Link Local Address and not the VRRP
Address.
Symptom:
The VRRP Address is used as the Source IPv6 Address in Router Advertisements, whereas only the
Link Local Address should be used for this purpose.
Probability:
High
Feature:
FI L3 Unicast
Function:
Control Plane - VRRPv3 for IPv6
Reported In Release:
FI 07.3.00
Service Request ID:
1191608
Defect ID:
DEFECT000468598
Technical Severity:
Medium
Summary:
Incorrect system up-time reported by SNMP when NTP is configured.
Symptom:
Incorrect sysUpTime reported by SNMP "get" or "walk" when NTP is configured. However, the
"show version" output displays the correct up-time.
Workaround:
Use SNTP instead of NTP.
Probability:
High
Feature:
FCX Network Management
Function:
SNMP V4/V6
Reported In Release:
FI 07.3.00
Service Request ID:
1189278
IronWare Software Release R07.3.00p Page 67 of 113
Defect ID:
DEFECT000468812
Technical Severity:
Medium
Summary:
ACL rules with IP Forward-Protocol are not installed properly in TCAM on TI-24x.
Symptom:
TCAM rule for UDP port 177 that is added by the command “ip forward-protocol udp 177” gets
removed when configuring a different "no ip forward-protocol udp <port-num>".
Workaround:
Configure an additional dummy "ip forward-protocol udp <port-num>".
Probability:
High
Feature:
FI ACL
Function:
ACL(all aspects of ACLs - IPV4)
Reported In Release:
FI 07.3.00
Service Request ID:
1092630
Defect ID:
DEFECT000469631
Technical Severity:
High
Summary:
MAC Table flush in a fully populated chassis can cause STP flaps.
Symptom:
When an 802.1d enabled port flaps, it leads to a flush of the MAC Table, creating a high CPU
condition lasting for up to a minute which then causes other protocols to flap as well.
Probability:
Low
Feature:
FCX L2 Control
Function:
SpanningTree Protocols
Reported In Release:
FI 07.3.00
Service Request ID:
1157674
Defect ID:
DEFECT000469670
Technical Severity:
Medium
Summary:
ICX6610 incorrectly uses interface MAC as the Source MAC address in VRRP-E Gratuitous ARP
packets.
Symptom:
VRRP-E Gratuitous ARP packets are sent with Interface MAC as the Source MAC Address, whereas
they should use the VRRP-E Virtual MAC Address.
Probability:
High
Risk of Fix:
Low
Feature:
Layer3 Control Protocols
Function:
VRRP/VRRP-E and slow-start timer-
VRRP-E timer scale
Reported In Release:
FI 07.4.00
Service Request ID:
1206999
Defect ID:
DEFECT000470072
Technical Severity:
Medium
Summary:
If the AES encryption string in SNMPv3 user configuration begins with 00, it is not retained across
reloads.
Symptom:
In SNMPv3, if the AES encrypted string that is based on SNMP Engine ID and user supplied key gets
generated such that its first two characters are "00", the string does not get read properly when a reboot
or switchover occurs.
Probability:
Low
Risk of Fix:
Medium
Feature:
FI Embedded Management
Function:
SNMP v1/v2/v3
Reported In Release:
FI 07.4.00
Service Request ID:
1208892
Defect ID:
DEFECT000470501
Technical Severity:
Medium
Summary:
Packet InError Detection feature.
Symptom:
Feature to allow a user configurable InError threshold on a port, which when exceeded puts the port
into Error-disabled state for a user configured period of time.
Probability:
Low
Feature:
FI L2
Function:
Control Plane -Other
Reported In Release:
FI 07.3.00
Service Request ID:
1168139
IronWare Software Release R07.3.00p Page 68 of 113
Defect ID:
DEFECT000471789
Technical Severity:
Critical
Summary:
DHCP Offer packets can cause a system reset when received on a VE interface.
Symptom:
In rare instances, DHCP Offer packets that are received on a VE interface can overwrite the IPv6
default route entry, leading to a system reset.
Probability:
Low
Risk of Fix:
Low
Feature:
FI Embedded Management
Function:
DHCP
Reported In Release:
FI 07.5.00
Service Request ID:
1213962
Defect ID:
DEFECT000473426
Technical Severity:
High
Summary:
Continuous SCP copy of application image on ICX6610 stack results in an empty flash on the Active
Unit.
Symptom:
When continuously copying an application image to the secondary flash partition, the secondary flash
partition becomes empty on the Active Unit and can eventually lead to a system reset.
Probability:
Medium
Feature:
FI Platform
Function:
Boot code/Flash/Kernel
Reported In Release:
FI 07.3.00
Service Request ID:
1206553
Defect ID:
DEFECT000473539
Technical Severity:
Medium
Summary:
"admin-pt2pt-mac" configuration automatically gets added at VLAN level after a system reload.
Symptom:
If "spanning-tree 802 admin-pt2pt-mac" command is added at interface configuration level and saved
to the configuration, upon reloading the system, "spanning-tree 802-1w ethe <port-num> admin-pt2pt-
mac" appears at the VLAN configuration level.
Probability:
High
Feature:
FCX L2 Control
Function:
802.1w
Reported In Release:
FI 07.3.00
Service Request ID:
1222349
Closed Defects in IronWare Software Release 07.3.00f
Defect ID:
DEFECT000383772
Technical Severity:
Medium
Summary:
System may display a syslog message about route allocation failures even though resources are
available.
Symptom:
The following syslog message is generated: "SYSLOG: <14>Jan 6 16:25:35 ICX6450 IP: number of
free route entries allocation failed!"
Probability:
Low
Risk of Fix:
Low
Feature:
Layer 3 Forwarding - IPV4
Function:
Data Forwarding (IPV4)
Reported In Release:
FI 07.4.00
Service Request ID:
1102772
Defect ID:
DEFECT000400311
Technical Severity:
High
Summary:
"dot1x auth-timeout-action" command does not differentiate between success and failure
configurations
Symptom:
Even when "dot1x auth-timeout-action failure" command is configured to move the port to the
restricted VLAN, on failure, the port is instead moved to the native VLAN that is configured as part of
the "dot1x auth-timeout-action success" configuration.
Probability:
Medium
Risk of Fix:
Low
Feature:
FI - L4/Security
Function:
802.1x
Reported In Release:
FI 07.5.00
Service Request ID:
1104525
IronWare Software Release R07.3.00p Page 69 of 113
Defect ID:
DEFECT000426210
Technical Severity:
Medium
Summary:
Issuing any "dm" command when TACACS+ is configured makes the CLI unresponsive until the
carriage return is pressed
Symptom:
Issuing any "dm" command when TACACS+ is configured makes the CLI unresponsive until the
carriage return is pressed, and may cause problems with scripted data collection.
Probability:
High
Risk of Fix:
Medium
Feature:
FI Embedded Management
Function:
CLI Parser
Reported In Release:
FI 07.4.00
Service Request ID:
1101096
Defect ID:
DEFECT000428691
Technical Severity:
Medium
Summary:
Command "ip forward-protocol udp 177" does not take effect
Symptom:
Application traffic with all-router broadcast packets sent to UDP Port 177 are dropped even when "ip
forward-protocol udp 177" is configured.
Probability:
High
Feature:
TI Layer 3 Forwarding - IPV4
Function:
Data Forwarding (IPV4)
Reported In Release:
FI 07.3.00
Service Request ID:
1092630
Defect ID:
DEFECT000430373
Technical Severity:
Critical
Summary:
Repeatedly configuring/unconfiguring Port Mac Security may lead to an unexpected System Reset
Symptom:
Unexpected System Reset may be observed upon repeatedly configuring/unconfiguring Port Mac
Security.
Probability:
High
Risk of Fix:
Low
Feature:
FI L2
Function:
Forwarding - Port Mac Security
Reported In Release:
FI 08.0.00
Service Request ID:
1119122
Defect ID:
DEFECT000431548
Technical Severity:
High
Summary:
ACL programming in hardware may become inconsistent with software if ACLs are removed and
added to the running configuration via TFTP
Symptom:
After an ACL associated with PBR configuration is removed and added to the running configuration
via TFTP, the PBR functionality may no longer work as expected.
Workaround:
Do not add/remove ACL to the running configuration via TFTP, and instead do it through CLI.
Probability:
Medium
Feature:
FI ACL
Function:
ACL(all aspects of ACLs - IPV4)
Reported In Release:
FI 07.3.00
Service Request ID:
1051833
Defect ID:
DEFECT000432681
Technical Severity:
High
Summary:
Configured IPv6 address gets deleted when the address learned from Router Advertisements expires
Symptom:
When the lifetime of an IPv6 address that is auto-learned through Router Advertisements expires, then
the configured address gets deleted along with the auto-learned address.
Workaround:
Reboot the device. It will recover and the configured address will take effect from the
configuration.
Probability:
High
Feature:
FCX Layer 3 Forwarding - IPV6
Function:
ECMP (IPV6)
Reported In Release:
FI 07.3.00
Service Request ID:
1111827
IronWare Software Release R07.3.00p Page 70 of 113
Defect ID:
DEFECT000433237
Technical Severity:
High
Summary:
SNMP ifOperStatus reports ports in Blocking state as down even though the ports are physically and
administratively up
Symptom:
FWS is incorrectly reporting the ifOperStatus as down(2), when the port is in blocking state but is
administratively and operationally up.
Probability:
Medium
Risk of Fix:
Low
Feature:
FI Embedded Management
Function:
SNMP v1/v2/v3
Reported In Release:
FI 07.4.00
Service Request ID:
1115243
Defect ID:
DEFECT000438420
Technical Severity:
Medium
Summary:
Interface level negotiation mode configuration may not work correctly
Symptom:
In case global level negotiation configuration is deleted, interface level negotiation configuration may
not take effect.
Workaround:
Configure interface level negotiation mode again.
Probability:
Medium
Risk of Fix:
Low
Feature:
FCX Layer1 features
Function:
Auto Negotiation
Reported In Release:
FI 07.2.02
Service Request ID:
1131822
Defect ID:
DEFECT000444065
Technical Severity:
High
Summary:
In rare cases, one of the stack links of a member unit may get administratively disabled even though
the link is up, causing CPU to CPU communication between other units in the stack to become one-
directional
Symptom:
The output of "show stack connection" will display a warning about a missing stacking link and many
errors about one directional CPU to CPU messages, even though all stacking links are physically up.
Probability:
Low
Risk of Fix:
Low
Feature:
FI Infrastructure
Function:
stacking port trunking
Reported In Release:
FI 07.4.00
Service Request ID:
1148013
Defect ID:
DEFECT000446797
Technical Severity:
Medium
Summary:
Loading the FastIron Router MIB file into HP OpenVIew version NNMi 9.2 Patch fails with syntax
error
Symptom:
When attempting to load the FastIron Router MIB file into HP OpenVIew version NNMi 9.2 Patch,
the operation fails with the following syntax errors:
"Operation LoadMib failed"
"Failed to load MIB modules from ..."
"Problems were reported during parsing, unable to load requested MIBs"
Probability:
Low
Feature:
FCX Network Management
Function:
INM Support
Reported In Release:
FI 07.3.00
Service Request ID:
1129553
Defect ID:
DEFECT000447482
Technical Severity:
Medium
Summary:
Temperature warning level can be configured to a higher value than the system shutdown temperature
Symptom:
The warning temperature setting, that is configurable via the CLI, can be set to a higher value than the
actual system shutdown temperature level, in which case no warning is triggered.
Probability:
High
Risk of Fix:
Low
Feature:
Platform
Function:
CHASSIS
Reported In Release:
FI 08.0.00
Service Request ID:
1148013
IronWare Software Release R07.3.00p Page 71 of 113
Defect ID:
DEFECT000448413
Technical Severity:
Medium
Summary:
During bootup, a few characters at the start of syslog messages may be omitted
Symptom:
When the FastIron device is reloaded, some of the initial characters are omitted for the first few Syslog
messages. After some period of time, the messages are generated correctly.
Probability:
Medium
Feature:
FI Embedded Management
Function:
SYSLOG
Reported In Release:
FI 07.3.00
Service Request ID:
1135927
Defect ID:
DEFECT000448726
Technical Severity:
Medium
Summary:
SSH session establishment may trigger VRRP state changes
Symptom:
Upon initiating an SSH session to the FastIron device, the CPU may become unresponsive and trigger
VRRP/VRRP-E state changes.
Workaround:
Use "Diffie-Hellman_group1” protocol for SSH Key Exchange.
Probability:
Medium
Feature:
SX Network Management
Function:
SSHv2/SCP V4/V6
Reported In Release:
FI 07.3.00
Service Request ID:
1148834
Defect ID:
DEFECT000449453
Technical Severity:
High
Summary:
Multi-session inband SNMP bulk walk on the MAC table causes LACP timers to expire and leads to a
link flap
Symptom:
On ICX6610, two or more simultaneous in-band SNMP bulk walks on the MAC table may cause
LACPDU's to not be sent out on time, thereby triggering a timeout and flap by the link partner.
Probability:
High
Feature:
FI L2
Function:
Control Plane - LACP
Reported In Release:
FI 07.3.00
Service Request ID:
1131590
Defect ID:
DEFECT000450766
Technical Severity:
Medium
Summary:
Disabling sFlow at a global configuration level can cause high CPU usage
Symptom:
When sFlow is disabled at a global CLI configuration level, the CPU utilization may go up to 99%.
Workaround:
Correct the port setting for sFlow usage by entering "sflow enable" and then "no sflow enable" at
the global CLI configuration level.
Probability:
Low
Feature:
SX Network Management
Function:
sFlow
Reported In Release:
FI 07.3.00
Service Request ID:
1129051
Defect ID:
DEFECT000451637
Technical Severity:
Medium
Summary:
Configuring sFlow may cause the FastIron device to experience an unexpected system reset
Symptom:
In very rare situations, configuring sFlow may cause the FastIron device to experience an unexpected
system reset.
Probability:
Low
Feature:
FCX Network Management
Function:
sFlow
Reported In Release:
FI 07.3.00
Service Request ID:
1154139
Defect ID:
DEFECT000457368
Technical Severity:
High
Summary:
Incorrect initialization of the downstream interface table may cause multicast congestion drops in a
chassis with mixed generation line cards.
Symptom:
In very rare cases, multicast congestion drops are seen on a third generation module in a mixed SX
chassis, and multicast/broadcast packets will stop being transmitted on the ports of this module.
Probability:
Low
Feature:
SX L2/L3 Multicast Features
Function:
PIM Sparse
Reported In Release:
FI 07.3.00
Service Request ID:
1113516
IronWare Software Release R07.3.00p Page 72 of 113
Defect ID:
DEFECT000457828
Technical Severity:
Medium
Summary:
In some cases, SX-1600 may not boot up when 48-port 1 Gig copper modules are present in the
system.
Symptom:
If 48-port 1Gig copper modules are present, SX chassis does not complete the boot process. In this
error condition, the following error messages are displayed on the console:
"qdLoadDriver return Failed
QuarterDeck initialization failed.
qdMultiDevStart Failed for Dev 20, Port 0
ERROR[puma_phy_init]: init_6165_interfaces returned 1
sx_1g_puma_init() failed
[Error] :: Hw-validation-failure : read/write failed on line-module 11, powering it off "
Probability:
Medium
Risk of Fix:
Low
Feature:
Platform
Function:
System
Reported In Release:
FI 07.4.00
Service Request ID:
1169079
Closed Defects in IronWare Software Release 07.3.00e
Defect ID:
DEFECT000296833
Technical Severity:
Medium
Summary:
Device will close down a Telnet management session as soon as it receives a FIN even if output is
pending.
Symptom:
Device will close down a Telnet management session as soon as it receives a FIN even if output is
pending.
Probability:
High
Risk of Fix:
Medium
Feature:
FCX Management Functionality
Function:
IPV4/V6 Telnet Service
Reported In Release:
FI 07.0.01
Service Request ID:
246740
Defect ID:
DEFECT000351893
Technical Severity:
High
Summary:
Memory usage steadily increases every time a Web Authentication client logs in and logs out using
HTTPS.
Symptom:
Memory is constantly depleted every time a Web Authentication client logs in and logs out using
HTTPS.
Workaround:
Reboot the device.
Probability:
High
Feature:
FI - L4/Security
Function:
Web Authentication
Reported In Release:
FI 07.3.00
Service Request ID:
700759
Defect ID:
DEFECT000369470
Technical Severity:
High
Summary:
Digital Monitoring support in 1G SFP may not function and may display incorrect information with
stacking configuration
Symptom:
Digital Monitoring support in 1G SFP may not function and may display incorrect information with
stacking configuration
Probability:
Low
Feature:
FI Platform
Function:
Digital Optical Monitor
Reported In Release:
FI 07.3.00
Service Request ID:
1104973
IronWare Software Release R07.3.00p Page 73 of 113
Defect ID:
DEFECT000376464
Technical Severity:
Medium
Summary:
Ports are Up without having a physical connection on port in ICX-6610
Symptom:
Ports are Up without having a physical connection on it in ICX-6610. LEDs are also blinking.
Probability:
High
Feature:
FI Platform
Function:
1G Link
Reported In Release:
FI 07.3.00
Service Request ID:
826357
Defect ID:
DEFECT000399851
Technical Severity:
Critical
Summary:
CLI may encounter unexpected system reset when VLANs - for a large number of ports are being
managed using the Web Management Interface
Symptom:
CLI may encounter unexpected system reset when VLANs - for a large number of ports are managed
using the Web Management Interface.
Probability:
Medium
Feature:
SX Network Management
Function:
Web Management
Reported In Release:
FI 07.3.00
Service Request ID:
,754515
Defect ID:
DEFECT000408284
Technical Severity:
Medium
Summary:
Some OpenSSH versions are incompatible with the FastIron devices when using SCP.
Symptom:
FCX Devices may not be able to perform secure shell (SSH) login or secure copy (SCP) from client
running OpenSSH v5.5.p1 version. Previous versions work properly.
Workaround:
Use an earlier version of OpenSSH.
Probability:
High
Risk of Fix:
Low
Feature:
FCX Network Management
Function:
SSHv2/SCP V4/V6
Reported In Release:
FI 07.2.02
Service Request ID:
604551
Defect ID:
DEFECT000408747
Technical Severity:
Medium
Summary:
DHCP server not giving IP addresses to some hosts.
Symptom:
SX device running DHCP server may not offer IP addresses to hosts when moved from one subnet to
other.
Probability:
Medium
Feature:
SX DHCP SERVER
Function:
DHCP
Reported In Release:
FI 07.3.00
Service Request ID:
1084792, 1085652
Defect ID:
DEFECT000415140
Technical Severity:
Medium
Summary:
DHCP server does not allocate addresses for all hosts within defined address pools.
Symptom:
Some host DHCP requests will fail, while others will work on the same VLAN.
Probability:
High
Risk of Fix:
Medium
Feature:
Platform
Function:
System
Reported In Release:
FI 07.4.00
Service Request ID:
1061154
Defect ID:
DEFECT000415181
Technical Severity:
Medium
Summary:
Multicast Packets are duplicated to 224.0.0.x across ICX6610 layer 2
Symptom:
Multicast Packets are duplicated to 224.0.0.x across ICX6610 layer 2
Probability:
High
Risk of Fix:
Medium
Feature:
L2 Forwarding
Function:
Other
Reported In Release:
FI 07.4.00
Service Request ID:
737715
IronWare Software Release R07.3.00p Page 74 of 113
Defect ID:
DEFECT000419248
Technical Severity:
Medium
Summary:
Spanning tree blocked port forwarding ARP broadcasts.
Symptom:
In SX device, enabling a redundant link in a VLAN may occasionally cause loop in the network.
Probability:
Medium
Risk of Fix:
Medium
Feature:
SX L2 Control
Function:
SpanningTree Protocols
Reported In Release:
FI 07.2.02
Service Request ID:
841043
Defect ID:
DEFECT000419899
Technical Severity:
Medium
Summary:
Erroneous Syslog messages reporting functioning FCX power supply units going down and coming up
immediately are generated due to signal noise level.
Symptom:
Erroneous and cosmetic Syslog messages about a Power Supply Unit being powered down and up are
displayed continuously even though the PSU functions correctly and provides uninterrupted AC power
to the switch/router.
Probability:
Medium
Risk of Fix:
Low
Feature:
FI Platform Specific features
Function:
Chassis/fan/powersupplies/temperature
sensors
Reported In Release:
FI 07.2.02
Service Request ID:
1080157
Defect ID:
DEFECT000422319
Technical Severity:
Medium
Summary:
"ip tcp keepalive" command doesn't work for IPv6
Symptom:
"ip tcp keepalive" command for IPv6 may not work and configuration may not show in running
configuration
Probability:
High
Risk of Fix:
Medium
Feature:
FCX Layer 3 Forwarding - IPV6
Function:
Data Forwarding (IPV6)
Reported In Release:
FI 07.2.02
Service Request ID:
1085918
Defect ID:
DEFECT000422811
Technical Severity:
Medium
Summary:
Stack ID swapped when Ring Stack changed to Linear Stack due to port related issue
Symptom:
Stack ID could be swapped when Ring stack changed to Linear stack due to port related issues.
Workaround:
Make the units to be clean units by "unconfigure clean" and then allow the units to join the stack
again.
Probability:
Medium
Feature:
FI Infrastructure
Function:
stacking undetermined
Reported In Release:
FI 07.3.00
Service Request ID:
1091448
Defect ID:
DEFECT000423085
Technical Severity:
Medium
Summary:
PoE on SX can get stuck due to power glitch. Device is not providing inline power and may show
incorrect information.
Symptom:
SX device may stop providing power to PDs such as access points and IP phones. PoE module is
showing incorrect inline power allocation, even when no PD is attached.
Workaround:
Re-install the PoE firmware on the PoE controller, or RMA the affected unit if firmware
installation is not successful.
Probability:
Medium
Risk of Fix:
Medium
Feature:
POE FW upgrade
Function:
POE FW upgrade
Reported In Release:
FI 07.2.02
Service Request ID:
760185
IronWare Software Release R07.3.00p Page 75 of 113
Defect ID:
DEFECT000423234
Technical Severity:
High
Summary:
Stack encounters unexpected system reset after VLAN configuration using the Web Management
Interface.
Symptom:
Stack encounters unexpected system reset after VLAN configuration using the Web Management
Interface.
Probability:
Medium
Feature:
FI Embedded Management
Function:
Web Management
Reported In Release:
FI 07.3.00
Service Request ID:
754515
Defect ID:
DEFECT000425786
Technical Severity:
Medium
Summary:
IEEE PD class 0 default power allocation should be set to 15.4 Watts instead of 30 Watts
Symptom:
Due to incorrect power allocation of IEEE PD class 0 by switch, customer suffers from power budget
issue. To supply enough inline power for all the PDs in use, customer may require manual
configuration on all switches to trim the power budget.
Workaround:
Use CLI command to configure for "inline power power-limit 15400"
Probability:
High
Feature:
Power over Ethernet
Function:
Power over Ethernet
Reported In Release:
FI 07.3.00
Service Request ID:
1090929
Defect ID:
DEFECT000425958
Technical Severity:
Medium
Summary:
Switch encounters unexpected system reset after executing 'ip dhcp snooping vlan x' command
Symptom:
Switch may encounter unexpected system reset after executing 'ip dhcp snooping vlan' command in
SX.
Probability:
High
Risk of Fix:
Medium
Feature:
FI ACL
Function:
DHCP Snooping functionality
Reported In Release:
FI 07.4.00
Service Request ID:
1060660, 1042423
Defect ID:
DEFECT000426653
Technical Severity:
Medium
Summary:
Switch encounter unexpectedly system reset when a loopback interface is enabled.
Symptom:
Switch may encounter unexpectedly system reset when a loopback interface is enabled in ICX-6610.
Workaround:
Remove static route pointing to ve interface.
Probability:
High
Risk of Fix:
Low
Feature:
Layer3 Control Protocols
Function:
OSPFV2 - IPV4
Reported In Release:
FI 07.4.00
Service Request ID:
1097908
Defect ID:
DEFECT000427550
Technical Severity:
Medium
Summary:
VRRP Standby may encounter port flap with multiple VLANs and VRIDs configuration.
Symptom:
Intermittent flaps on the VRRP standby may occur for multiple VRIDs in multiple VLANs
configuration. Flap occurs only on the VRRP Standby and not on the VRRP Owner.
Probability:
Medium
Feature:
Layer3 Control Protocols
Function:
VRRP/VRRP-E and slow-start timer-
VRRP-E timer scale
Reported In Release:
FI 07.3.00
Service Request ID:
1101971
Defect ID:
DEFECT000428520
Technical Severity:
Medium
Summary:
Packet loss on SX module SX-FI-24GPP due to multicast congestion
Symptom:
Packet loss may occur on SX-FI-24GPP modules due to multicast packet congestion
Probability:
Low
Feature:
Platform
Function:
System
Reported In Release:
FI 07.4.00
Service Request ID:
737265