Professional Documents
Culture Documents
01
Release Notes v1.0
April 1, 2009
Document History
Document Title FastIron Edge Switch 04.1.01 Summary of Changes Initial release Publication Date April 1, 2009
Copyright 2009 Brocade Communications Systems, Inc. All Rights Reserved. Brocade, the B-wing symbol, BigIron, DCX, Fabric OS, FastIron, IronPoint, IronShield, IronView, IronWare, JetCore, NetIron, SecureIron, ServerIron, StorageX, and TurboIron are registered trademarks, and DCFM, Extraordinary Networks, and SAN Health are trademarks of Brocade Communications Systems, Inc., in the United States and/or in other countries. All other brands, products, or service names are or may be trademarks or service marks of, and are used to identify, products or services of their respective owners. Notice: The information in this document is provided "AS IS," without warranty of any kind, including, without limitation, any implied warranty of merchantability, noninfringement or fitness for a particular purpose. Disclosure of information in this material in no way grants a recipient any rights under Brocade's patents, copyrights, trade secrets or other intellectual property rights. Brocade reserves the right to make changes to this document at any time, without notice, and assumes no responsibility for its use. The authors and Brocade Communications Systems, Inc. shall have no liability or responsibility to any person or entity with respect to any loss, cost, liability, or damages arising from the information contained in this book or the computer programs that accompany it. Notice: The product described by this document may contain "open source" software covered by the GNU General Public License or other open source license agreements. To find-out which open source software is included in Brocade products, view the licensing terms applicable to the open source software, and obtain a copy of the programming source code, please visit http://www.brocade.com/support/oscd. Export of technical data contained in this document may require an export license from the United States Government.
Contents
ABOUT THIS RELEASE ............................................................................................................................ 1 UPDATES TO THE RELEASE NOTES AND MANUALS ................................................................................... 1 REPORTING DOCUMENTATION ERRORS ................................................................................................... 1 SUMMARY OF ENHANCEMENTS ................................................................................................................ 1 LAYER 3 ENHANCEMENT IN FES 04.1.01........................................................................................... 1 SYSTEM-LEVEL ENHANCEMENTS IN FES 04.1.01............................................................................... 2 SECURITY ENHANCEMENT IN FES 04.1.01......................................................................................... 3 FEATURE SUPPORT ................................................................................................................................ 3 FEATURE HIGHLIGHTS ....................................................................................................................... 4 UNSUPPORTED FEATURES ................................................................................................................. 8 FEATURE DOCUMENTATION ............................................................................................................... 8 SOFTWARE IMAGE FILES ......................................................................................................................... 9 UPGRADING SOFTWARE .......................................................................................................................... 9 BEFORE YOU UPGRADE .................................................................................................................... 9 UPGRADING THE BOOT AND FLASH CODE ........................................................................................ 10 MANAGING THE DEVICE ........................................................................................................................ 11 LOGGING ON THROUGH THE CLI...................................................................................................... 11 ON-LINE HELP ......................................................................................................................... 11 COMMAND COMPLETION .......................................................................................................... 11 SCROLL CONTROL ................................................................................................................... 11 LINE EDITING COMMANDS ........................................................................................................ 12 LOGGING ON THROUGH THE WEB MANAGEMENT INTERFACE ............................................................ 13 NAVIGATING THE WEB MANAGEMENT INTERFACE ...................................................................... 13 RECOVERING FROM A LOST PASSWORD ........................................................................................... 15 DISPLAYING AND SAVING CONFIGURATION CHANGES ............................................................................. 15 DISPLAYING CONFIGURATION CHANGES ........................................................................................... 16 SAVING CONFIGURATION CHANGES ................................................................................................. 16 CONFIGURATION DIFFERENCES ............................................................................................................. 16 WHERE TO GET MORE INFORMATION .................................................................................................... 16 SOFTWARE FIXES ................................................................................................................................. 18
4/1/09
4/1/09
Supported Devices
This release applies to the following Brocade base models and their premium (PREM) versions: FastIron Edge Switch 2402 (FES2402) FastIron Edge Switch 4802 (FES4802) FastIron Edge Switch 9604 (FES9604) FastIron Edge Switch 12GCF (FES12GCF) FastIron Edge Switch 2402-POE (FES2402-POE) FastIron Edge Switch 4802-POE (FES4802-POE)
NOTE: Except where explicitly mentioned in these release notes, the FES2402 and FES2402-POE are similar devices, and the FES4802 and FES4802-POE are similar devices. For example, the FES2402 and FES2402POE have similar network interfaces and port regions. The same is true for the FES4802 and FES4802-POE.
4/1/09
Feature Support
The FastIron Edge Switches support many of the applicable system-level, Layer 2 and Layer 3 features supported by the FastIron 4802 (FWS 4802) and BigIron Chassis devices. Configuration for most of the features is the same on the FastIron Edge Switches and on the FastIron 4802 or BigIron Chassis devices. The features that are available on the device depend on the type of software image the device is running. You can run one of the following types of software images: Layer 2 (supported on all models) Base Layer 3 (supported on all models) Full Layer 3 (supported on premium models only)
Table 1 lists the software that is loaded into the devices primary and secondary flash areas at the factory. All the flash images are included on the CD-ROM shipped with the device. Table 1: Default Software Loads Model Primary Flash FES2402 FES4802 FES9604 FES2402-POE FES4802-POE FES12GCF Layer 2 Software Images Secondary Flash Base Layer 3
4/1/09
Table 1: Default Software Loads (Continued) Model Primary Flash FES2402-PREM FES4802-PREM FES9604-PREM FES2402-POE-PREM FES4802-POE-PREM FES12GCF-PREM Full Layer 3 Software Images Secondary Flash Layer 2
4/1/09
Feature Highlights
The following tables list the primary features in this release.
Table 2: Security Features Supported Security Features Supported 802.1X port security Access Control Lists (ACLs) for filtering transit traffic Applies to IP unicast traffic only
Address locking Authentication, Authorization and Accounting (AAA) Denial of Service (DoS) protection SYN Attacks, Smurf Attacks
Layer 2 MAC filtering (filtering on source and destination MAC addresses supported) Local passwords MAC port security RADIUS, TACACS/TACACS+ SSH version 2 (SSHv2) Starting with release 03.5.00, SSHv2 is supported. Other versions of SSH are no longer supported. In releases prior to 3.5.00, SSH version 1.5 is supported.
Secure Copy (SCP) Serial and Telnet access to industry-standard Command Line Interface (CLI) User accounts
Table 3: System-Level Features Supported System-Level Features Supported 802.1p prioritization 802.3ad link aggregation Auto MDI/MDIX Broadcast, multicast and unknown-unicast rate limiting Cisco Discovery Protocol (CDP) DiffServ support Foundry Discovery Protocol (FDP) Jumbo frames (FES12GCF only) Up to 9216 bytes
4/1/09
Table 3: System-Level Features Supported (Continued) System-Level Features Supported Mini-Jumbo Frames Up to 2048 bytes
Management options Web-based GUI Support for optional IronView Network Manager (standalone and HP OpenView GUI) Access Control Lists (ACLs) for controlling management access
OSPF Version 2 MIB (RFC 1850) Port monitoring Priority mapping using ACLs Protected link groups Rate limiting Port-based inbound rate limiting
SNMP V1, V2c, V3 Static MAC entries with option to set priority Switch trunk groups
Table 4: Layer 2 Features Supported Layer 2 Features Supported 802.1d Spanning Tree Support Enhanced IronSpan support includes Fast Port Span, Fast Uplink Span, and Single-instance Span Rapid Spanning Tree support allows for sub-second convergence (draft 3 supported) Cisco PVST/PVST+ compatibility
802.1p Quality of Service (QoS) Weighted Round Robin (WRR) Strict Priority (SP)
4/1/09
Table 4: Layer 2 Features Supported (Continued) Layer 2 Features Supported 802.1W Rapid Spanning Tree Final IEEE standard
Dynamic Host Configuration Protocol (DHCP) Assist IGMPv2 snooping Layer 2 Multicast
Metro Ring Protocol 1 (MRP Phase 1) FES devices can be MRP masters or MRP members (for different rings). On the FES, the RHP received counter on non-master MRP nodes increment. This is different on other devices that support MRP 1.
Metro Ring Protocol 2 (MRP Phase 2) Support for MRP 2 added in software release 03.4.00
STP per-VLAN Group Topology groups Uni-directional Link Detection (UDLD) (Link keepalive) Virtual Switch Redundancy Protocol (VSRP) VLAN Support 802.1Q with tagging 802.1Q-in-Q Super Aggregated VLANs (SAVs) Dual-mode VLANs GVRP Private VLANs (untagged ports only) Protocol VLANs (AppleTalk, IPv4, dynamic IPv6, IPX, Decnet, NetBIOS, and other protocol types) Layer 3 Subnet VLANs (IP subnet and IPX network) Super Aggregated VLANs (SAVs) Virtual routing interfaces VLAN groups
Table 5: Layer 3 Features Supported Layer 3 Features Supported AppleTalk Global and per port route-only support Disabling Layer 2 switching on an individual interface or on a global basis
10
4/1/09
Table 5: Layer 3 Features Supported Layer 3 Features Supported IGMP V2 NOTE: Support for IGMP V2 in the base Layer 3 and full Layer 3 software images added in software release 03.4.00. Previous releases support IGMP snooping in the Layer 2 switch image only. IPv4 IP multicast (DVMRP, PIM-SM, PIM-DM) IPX OSPF RIP V1 and V2 VRRP and VRRPE NOTE: Support for VRRP in the base Layer 3 code was added in 03.4.00. Previous releases support VRRP in the full Layer 3 code only. VRRP support in the base Layer 3 code is the same as in the full Layer 3 code. Also note that VRRP-E is supported in the full Layer 3 code only. It is not supported in the base Layer 3 code.
NOTE: The full Layer 3 image is supported on FES premium models only.
4/1/09
11
Unsupported Features
The FastIron Edge Switches do not support the features listed in Table 6. If required, these features are available on other Brocade devices.
Table 6: Unsupported Features System Level Features not Supported ACL filtering based on VLAN membership or VE port membership (acl-per-port-per-VLAN) Broadcast and multicast filters Jumbo frames (on all models except FES12GCF) NetFlow Output rate limiting Server trunk groups for Layer 3 traffic Server trunking of switched AppleTalk traffic also not supported
Standard BGP MIBs in RFC 1657 Definitions of Managed Objects for the Fourth Version of the Border Gateway Protocol (BGP-4) using SMIv2
Layer 3 Features not Supported BGP Foundry Standby Router Protocol (FSRP) IS-IS Multiprotocol Border Gateway Protocol (MBGP) Multiprotocol Label Switching (MPLS) Multiprotocol Source Discovery Protocol (MSDP) Network Address Translation (NAT) Policy-Based Routing (PBR)
Feature Documentation
For feature descriptions and configuration information, see the remaining sections in these release notes and the Brocade product manuals listed in Where To Get More Information on page 17.
12
4/1/09
Table 7: Software Image Files* Boot Imagea FEB04101.bin and FEM04101.bin Flash Imageb FES04101.bin Layer 2 or FER04101.bin Layer 3 or FEL04101.bin Base Layer 3 a.The FastIron Edge Switches have two boot images: FEBxxxxx (boot code) and FEMxxxxx (boot monitor). The FEB04101 and FEM04101 boot images are backward compatible with software versions 03.x.x. The FES04101, FER04101, and FEL04101 flash images require the FEB04101 and FEM04101 boot images. Do not use older versions of the boot and monitor images with the 04.1.01 flash images. b.The FastIron Edge Switches have two flash areas and can thus contain two separate flash code images. However, the device can run only one image or the other at a given time. * These images are applicable to the FastIron Edge Switches only. Also, you cannot load other images, such as B2R or B2S for BigIron and FastIron devices, on the FastIron Edge Switches.
The software is loaded at the factory. Table 1 on page 6 lists the default software loads for the device. All the software images are provided on the software CD-ROM shipped with the device. To install another software image, use the instructions in Upgrading Software. NOTE: The software described in these notes applies only to the FastIron Edge Switches. You cannot use this software on other Brocade Compact devices or on Brocade Chassis devices.
Upgrading Software
Use the following procedures to upgrade the software.
4/1/09
13
Enter the following command at the Privileged EXEC level of the CLI (example: FES4802 Switch#) to copy the FEM boot code from the TFTP server into the flash memory of the management module. copy tftp flash <ip-addr> <FEM-image-file-name> mon
4.
Verify that the code has been successfully copied by entering the following command at any level of the CLI: show flash
The line that begins with Compressed Boot-Tftp Code size lists the boot (FEB) code version and the line that begins with Compressed Boot Monitor Image size lists the monitor (FEM) code version. NOTE: Do not reboot. You must first upgrade the flash code as instructed in Step 5 through Step 8, below. 5. 6. Place the new flash code on a TFTP server to which the Brocade device has access. Enter the following command at the Privileged EXEC level of the CLI (example: FES4802 Switch#) to copy the flash code from the TFTP server into the flash memory of the management module: 7. copy tftp flash <ip-addr> <image-file-name> primary | secondary
Verify that the flash code has been successfully copied by entering the following command at any level of the CLI: show flash
The line that begins Compressed Pri Code size lists the flash code version in the primary flash, at the end of the line. Similarly, the line that begins Compressed Sec Code size lists the flash code version in the secondary flash. 8. 9. If the flash code version is correct, go to Step 9. Otherwise, go to Step 5. Reload the software by entering one of the following commands: reload (this command boots from the default boot source, which is the primary flash area by default) boot system flash primary | secondary
NOTE: Starting with release 03.1.00, the flash image checks for compatibility with the boot and monitor images. If the images are not compatible, the FastIron Edge Switch displays a message on the console after the system boots up and before the first prompt appears. The device also logs a message to the Syslog every 15 minutes. The following shows an example message: ALERT: Currently active Boot-tftp version 01.1.00 is NOT compatible! Please
14
4/1/09
4/1/09
15
Configuration Differences
For a few features, configuration procedures or defaults on the FastIron Edge Switches differ from those on BigIron Chassis devices or the FastIron 4802 because of the FastIron Edge Switches hardware architecture. The differences are described in the documents listed in Where To Get More Information on page 17.
Web Access
Go to kp.foundrynet.com and log in to the Knowledge Portal (KP) to obtain information about a product.
E-mail Access
Technical requests can also be sent to the e-mail address: support@foundrynet.com
Telephone Access
1.877.TURBOCALL (887.2622) United States 1.408.207.1600 Outside the United States
16
4/1/09
Table 8: Feature Documentation Title FastIron Compact Switch Hardware Installation Guide Contents Switch and Router Installation and Basic Configuration Guide Security Guide Enterprise Configuration and Management Guide Product Overview Installation Maintenance Hardware Specifications Supported RFCs
Provides configuration guidelines for Layer 2 and Layer 3 devices and installation procedures for the Brocade devices with IronCore and JetCore modules, as well as Terathon devices. Provides procedures for securing management access to Brocade devices and for protecting against Denial of Service (DoS) attacks. Provides configuration information for enterprise routing protocols including IP, RIP, IP multicast, OSPF, BGP4, VRRP and VRRPE. This guide applies to Brocade devices with IronCore and JetCore modules, as well as Terathon and FastIron Edge Switch devices. Syntax information for all CLI commands. See the "Command List" chapter for a complete list of the CLI commands and page references to syntax information. Simple Network Management Protocol (SNMP) Management Information Base (MIB) objects. Diagnostic commands available on Brocade devices. Provides configuration information for IPv6 features on Brocade devices with IronCore and JetCore modules, as well as Terathon and FastIron Edge Switch devices.
IronWare Management Information Base Reference Diagnostic Guide IPv6 Configuration Guide
4/1/09
17
Software Fixes
The following table lists the software fixes in this release. The software fixes are sorted by Defect ID.
Table 9: Software Fixes in FES Release 04.1.01 Defect ID: Symptom: Feature: 78648 Technical Severity: Medium
The FES cannot IPv6 ping through a port that is not in the default VLAN. IPv6 FES 04.1.01
Reported In Release:
80769
Technical Severity:
Major
A dual-mode VLAN configuration change on one port causes another unrelated port to inherit a similar configuration change. MAC Authorization FES 04.1.01
Reported In Release:
91653
Technical Severity:
Major
The FES reloads the software after encountering a null pointer. Other FES 04.1.01
Reported In Release:
93659
Technical Severity:
Major
If the TACACS+ servers are not available, the authentication process does not failover to local authentication if the TACACS+ servers are defined. AAA FES 04.1.01
Reported In Release:
93928
Technical Severity:
Major
The FES may drop high availability (HA) health check packets if UDLD is enabled. UDLD FES 04.1.01
Reported In Release:
18
4/1/09
96380
Technical Severity:
Medium
Layer 3 hardware aging of IP host entries cannot be adjusted. Resolution: Added the command hw-age-ip-host-entry, which enables the configuration of Layer 3 hardware aging. For more information, see System-Level Enhancement in FES Release 04.1.01 on page 6.
Feature:
Reported In Release:
4/1/09
19
20
4/1/09