Release Notes for the Cisco AccessPath-TS3 Model 531 Integrated Access System for Multiple Cisco IOS Releases

These release notes describe the features and caveats for Cisco IOS software on the Cisco AccessPath-TS3 Model 531 Integrated Access system. The Cisco AccessPath-TS3 Model 531 system consists of four shelves:

Cisco 3640 system controller
Cisco AS5300 access server with either 8PRI or 4PRI
Cisco 7206 router
Catalyst 5002 switch

Table 1 shows the Cisco IOS and Catalyst releases used for the Cisco AccessPath-TS3 Model 531 system. For additional information on the software releases used on the Cisco AccessPath-TS3 Model 531 system, refer to the "Related Documentation" section. The electronic documentation can be found on Cisco Connection Online(CCO) on the World Wide Web and on the Documentation CD-ROM.
Table 1: Cisco IOS Releases for Cisco AccessPath-TS3 Model 531 system shelves

System Shelf Cisco IOS Release Feature Image

Cisco 3640 system controller

11.3(5)P

IP Plus

Cisco AS5300 access server with 8 PRI

12.0(2)XD

Enterprise Plus

Cisco AS5300 access server with 4PRI

11.3(7)AA

Enterprise Plus

Cisco 7206 router

11.3(4)T

Enterprise

Catalyst 5002 switch

3.2(4)¹

Supervisor

¹The Switch Shelf runs Catalyst 5000 series software.

System Shelf	Cisco IOS Release	Feature Image
Cisco 3640 system controller	11.3(5)P	IP Plus
Cisco AS5300 access server with 8 PRI	12.0(2)XD	Enterprise Plus
Cisco AS5300 access server with 4PRI	11.3(7)AA	Enterprise Plus
Cisco 7206 router	11.3(4)T	Enterprise
Catalyst 5002 switch	3.2(4)¹	Supervisor

These release notes discuss the following topics:

Cisco AccessPath-TS3 Model 531 System Configuration Guidelines

Follow these guidelines during the preconfiguration process for the Cisco AccessPath-TS3 Model 531 system. They should also be taken into consideration during any subsequent reconfigurations of the Cisco AccessPath-TS3 Model 531 system.

Note The Cisco AccessPath-TS3 Model 531 system has been tested and optimized to work with its preconfigured hardware and software. For optimal performance, maintain the Cisco AccessPath-TS3 Model 531 system's configuration in accordance with the following guidelines.

Disable unnecessary protocols on Ethernet interfaces, such as the following:

Maintenance Operation Protocol (MOP)
Local-area transport (LAT)

Interfaces Supported on the Access Server and router shelf

Interfaces Supported on the Access Server shelves

The Access Server shelves support the following LAN and WAN interfaces:

Channelized E1
Channelized T1
E1-G.703/G.704
Ethernet RJ-45
Ethernet/Fast Ethernet (RJ-45)
Integrated Services Digital Network Primary Rate Interface

Interfaces Supported on the Router Shelves

The router shelves support the following LAN interfaces:

Ethernet (AUI)
Ethernet (10BaseT)
Ethernet (10BaseFL)
Fast Ethernet (100BaseTX)
Fast Ethernet (100BaseFX)
Fiber Distributed Data Interface dual attachment station
FDDI full duplex
FDDI multimode
FDDI single-mode
100VG-AnyLAN
MultiChannel Interface (Channelized E1/T1)
Synchronous Serial
Token Ring 4-Mbps
Token Ring 16-Mbps
Token Ring full duplex

The router shelves support the following WAN interfaces:

Channelized T1
EIA/TIA-232
EIA/TIA-449
EIA-530
ISDN Basic Rate Interface
ISDN PRI
X.21
V.35

The router shelves support the following WAN data rates:

1.544/2.048 Mbps
48/56/64 kbps
34/45/52 Mbps

New Features in the Cisco AccessPath-TS3 Model 531 system

New Features in the Cisco 3640 System Controller for Cisco IOS Release 11.3(5)T

There is only one new feature in Cisco IOS Release 11.3(5)T which affects the system controller for the Cisco AccessPath-TS3 Model 531 system. For more information about other features on this platform, use the following path on CCO or the Documentation CD-ROM:

Use this path to access the release notes from CCO: Service and Support: Technical Documents: Cisco Product Documentation: Access Servers and Access Routers: Modular Access Routers: Cisco 3600 Series: Cisco IOS Release Notes: Release Notes—Cisco 3600 for Cisco IOS Release 11.3(8)T.
Use this path to access the release notes from the Documentation CD-ROM: Cisco Product Documentation: Access Servers and Access Routers: Modular Access Routers: Cisco 3600 Series: Cisco 3600 Series: Cisco IOS Release Notes: Release Notes—Cisco 3600 for Cisco IOS Release 11.3(8)T.

New Features in Release 11.3(5)T

The following new feature is supported by the Cisco 3600 series in Cisco IOS Release 11.3(5)T and later releases.

V.90

56-kbps modem firmware (V.90) is available for the Cisco 3600 series beginning in Cisco IOS Release 11.3(5)T. V.90 is the new standard for 56k modem communication, and is an evolution from the older K56Flex and X2 protocols. This firmware update will allow 56K-enabled client modems to archive the maximum connect speeds possible using this new technology. Benefits include faster Web access, faster file download, and improved multimedia support. This firmware version
is 2.5.1.0.

New Features in Release 11.3(4)T

The following new feature is supported by the Cisco 3600 series in Cisco IOS Release 11.3(4)T and later releases.

8 New Enhanced PRI Network Modules

The following eight Enhanced PRI network modules were added to the Cisco 3600 series:

NM-1FE1CT1—One-port 10/100BaseTX Ethernet with one-port T1 PRI/Channelized
NM-1FE1CT1-CSU—One-port 10/100BaseTX Ethernet with one-port T1 PRI/Channelized with integrated CSU
NM-1FE2CT1—One-port 10/100BaseTX Ethernet with two-port T1 PRI/Channelized
NM-1FE2CT1-CSU—One-port 10/100BaseTX Ethernet with two-port T1 PRI/Channelized with integrated CSU
NM-1FE1CE1B—One-port 10/100BaseTX Ethernet with one-port E1 PRI/Channelized Balanced mode (120 ohm)
NM-1FE1CE1U—One-port 10/100BaseTX Ethernet with one-port E1 PRI/Channelized Unbalanced mode (75 ohm)
NM-1FE2CE1B—One-port 10/100BaseTX Ethernet with two-port E1 PRI/Channelized Balanced mode (120 ohm)
NM-1FE2CE1U—One-port 10/100BaseTX Ethernet with two-port E1 PRI/Channelized Unbalanced mode (75 ohm)

The Cisco 3600 series team is pleased to announce new enhanced versions of PRI Network Modules, now available with a integrated 10/100BaseTX Etherenet port. These network modules provide greater versatility, allowing for better slot efficiency and increased port densities when utilized in the Cisco 3600 series with Cisco IOS Release 11.3(4)T and later.

These new network modules, when combined with the Digital Modem network modules, provide hybrid ISDN/Analog dial access capabilities for the first time on the Cisco 3620, lowering the entry price for 1 PRI with 24/30 Digital Modems solution.

This network module can also be utilized in a Cisco 3640, allowing support for up to 8 PRI in a 2RU chassis.

New Features in Release 11.3(3)T

The following new features are supported by the Cisco 3600 series in Cisco IOS Release 11.3(3)T and later releases.

1-Port ATM-25 Network Module for the Cisco 3600 Series

The 1-port asynchronous transfer mode (ATM-25) network module provides connectivity to an external asynchronous digital subscriber line (ADSL) modem for Cisco series 3600 routers. This network module provides ATM traffic shaping for use with ADSL uplink speeds and protocol support for permanent virtual circuit (PVC) environments. This network module provides full support for multiprotocol encapsulation over ATM Adaptive Layer 5(RFC 1483), classic IP over ATM encapsulation (RFC 1577), and Cisco Point-to-Point Protocol (PPP) over ATM.

In the online feature description, Figure 1 shows the 1-port ATM-25 network module in a typical ADSL application environment. In this example, the network module and the associated Cisco 3640 router provide ATM connectivity to the ADSL modem and provide traffic shaping and protocol encapsulation for the downstream LAN clients.

1-Port High Speed Serial Interface (HSSI) Network Module

The Cisco 3600 series 1-port high-speed serial interface (HSSI) network module provides full-duplex connectivity at Synchronous Optical Network (SONET) OC-1/STS-1 (51.840 Mhz), T3 (44.736 MHz), and E3 (34.368 MHz) rates in conformance with the EIA/TIA-612 and EIA/TIA-613 specifications. The actual rate of the interface depends on the external data service unit (DSU) and the type of service to which it is connected. This 1-port HSSI network module can reach speeds of up to 52 Mbps in unidirectional traffic with 1,548-byte packets and 4,250 packets per second. Asynchronous Transfer Mode (ATM), ATM with Data Exchange Interface (DXI), High-Level Data Link Control (HDLC), Point-to-Point Protocol (PPP), Frame Relay, and Switched Multi-Megabit Data Service (SMDS) WAN services are all fully supported.

The 1-Port HSSI network module provides the following benefits:

Supports speeds up to 52 Mbps
Supports a range of connectivity options: ATM, ATM with DXI, HDLC, Frame Relay, PPP, and SMDS
Supports EIA/TIA-612 and EIA/TIA-613 specifications at T3, E3, SONET OC1/STS-1 and NXT1 subrates

T1 CAS Support for the Cisco 3640 Digital Modem Network Module

The Digital Modem Network Module for the Cisco 3640 is a high-density digital network module containing, 6, 12, 18, 24, or 30 digital (MICA) modems. These modems, along with the T1 (or E1) port module, provide a direct digital connection to an Integrated Services Digital Network (ISDN) Primary Rate Interface (PRI) channel. The T1 CAS feature enables these network modules to support voice call transmission using channelized T1 lines (CT1) with channel associated signaling (CAS).

CAS is a form of signaling used on a T1 line. With CAS, a signaling element is dedicated to each channel in the T1 frame. This type of signaling is sometimes called Robbed Bit Signaling (RBS) because a bit is taken out (or robbed) from the user's data stream to provide signaling information to and from the switch. The T1 CAS feature enables the modems on the Digital Network Modem Module to receive and transmit incoming and outgoing call signaling (such as on-hook and off-hook) through each T1 controller that is configured for a channelized T1 line.

RIF Passthrough in DLSw+

By default, DLSw+ terminates the RIF for Token Ring, terminates the LLC for all media types and forwards only data across a WAN with DLSw+ and TCP/IP headers. The RIF is a field in source-route bridged frames that indicates the SRB path the frame should take when traversing a Token Ring network. In the case of an explorer packet, the RIF is a field of the source-route bridged frame that indicates the SRB path that the SRB explorer has traversed so far. The RIF is limited to seven hop counts by the IBM standards. Because DLSw+ terminates the RIF at the virtual ring, the network's scalability increases because the hop count of the packet starts over, and the packet can traverse seven additional hops. Also, RIF termination simplifies network design because ring numbers no longer have to be unique throughout an entire enterprise.

However, some environments do not function properly if the RIF is terminated. For that reason, DLSw+ now supports the RIF Passthrough feature, in which the entire source-route bridged path appears in the RIF.

VPDN MIB and Sys Log Facility

The Virtual Private Dialup Network (VPDN) Management Information Base (MIB) feature is intended to support all the tables and objects defined in "Cisco VPDN Management MIB" for the user sessions of the VPDN features. There are a number of commands which provide information and statistics through the Command Line Interface (CLI) but not Simple Network Management Protocol (SNMP); the Cisco VPDN MIB has been created to satisfy the need to provide information and statistics through SNMP.

Additional Vendor-Proprietary RADIUS Attributes

Remote Authentication Dial-In User Server (RADIUS) is an access server authentication, authorization, and accounting protocol originally developed by Livingston, Inc. Although an Internet Engineering Task Force (IETF) draft standard for RADIUS specifies a method for communicating vendor-proprietary information between the network access server and the RADIUS server, some vendors have extended the RADIUS attribute set in a unique way. In this release, Cisco IOS software introduces support for additional vendor-proprietary RADIUS attributes.

Users who have implemented security solutions using a vendor-proprietary implementation of RADIUS can now integrate Cisco access routers into their networks more easily.

For a complete list of supported IETF and vendor-proprietary RADIUS attributes, refer to the "RADIUS Attributes" appendix in the Cisco IOS Release 11.3 Security Configuration Guide.

Automated Double Authentication

The automated double authentication feature enhances the existing double authentication feature.

Previously, with the existing double authentication feature, a second level of user authentication is achieved when the user Telnets to the network access server or router and enters a username and password. Now, with automated double authentication, the user does not have to Telnet anywhere but instead responds to a dialog box that requests a username and password or PIN.

For information about the existing double authentication feature, refer to the "Configuring Authentication" chapter of the Cisco IOS Release 11.3 Security Configuration Guide.

Certificate Authority Interoperability

Certificate Authority (CA) interoperability is provided in support of the IP Security (IPSec) standard. CA interoperability permits Cisco IOS devices and CA devices to communicate so that your Cisco IOS device can obtain and use digital certificates from the CA. Although IPSec can be implemented in your network without the use of a CA, using a CA provides manageability and scalability for IPSec.

For background and configuration information for IPSec, see the "IPSec Network Security" feature documentation.

IPSec Network Security

IPSec is a framework of open standards developed by the Internet Engineering Task Force (IETF).

IPSec provides security for transmission of sensitive information over unprotected networks such as the Internet. IPSec acts at the network layer, protecting and authenticating IP packets between participating IPSec devices ("peers") such as Cisco routers.

IPSec provides the following network security services:

Privacy—IPSec can encrypt packets before transmitting them across a network.
Integrity—IPSec authenticates packets at the destination peer to ensure that the data has not been altered during transmission.
Authentication—Peers authenticate the source of all IPSec-protected packets.
Anti-replay protection—Prevents capture and replay of packets; helps protect against denial-of-service attacks.

With IPSec, data can be transmitted across a public network without fear of observation, modification, or spoofing. This enables applications such as virtual private networks (VPNs), extranets, and remote user access.

IPSec services are similar to those provided by Cisco Encryption Technology, a proprietary security solution introduced in Cisco IOS Software Release 11.2. (The IPSec standard was not yet available at Release 11.2.) However, IPSec provides a more robust security solution, and is standards-based.

Internet Key Exchange Security Protocol

ISAKMP/Oakley is a key management protocol which is used in conjunction with the IPSec standard. IPSec is an IP security feature that provides robust authentication and encryption of IP packets.

IPSec can be configured without ISAKMP/Oakley, but ISAKMP/Oakley enhances IPSec by providing additional features, flexibility, and ease of configuration for the IPSec standard.

ISAKMP/Oakley is a hybrid protocol which implements the Oakley key exchange inside the ISAKMP framework.

MS-CHAP Support

Microsoft Challenge Handshake Authentication Protocol (MS-CHAP) is the Microsoft version of CHAP. Like the standard version of CHAP, MS-CHAP is used for PPP authentication; in this case, authentication occurs between a PC using Microsoft Windows NT or Microsoft Windows 95 and a Cisco router or access server acting as a network access server (NAS).

MS-CHAP differs from the standard CHAP as follows:

MS-CHAP is enabled by negotiating CHAP Algorithm 0x80 in LCP option 3, Authentication Protocol.
The MS-CHAP Response packet is in a format designed to be compatible with Microsoft Windows NT 3.5 and 3.51, Microsoft Windows 95, and Microsoft LAN Manager 2.x. This format does not require the authenticator to store a clear or reversibly encrypted password.
MS-CHAP provides an authenticator-controlled authentication retry mechanism.
MS-CHAP provides an authenticator-controlled change password mechanism.
MS-CHAP defines a set a "reason-for failure" codes returned in the Failure packet message field.

Depending on the security protocols you have implemented, PPP authentication using MS-CHAP can be used with or without Authentication, Authorization, and Accounting (AAA) security services. If you have enabled AAA, PPP authentication using MS-CHAP can be used in conjunction with both TACACS+ and RADIUS.

Two new vendor-specific RADIUS attributes (IETF Attribute 26) were added to enable RADIUS to support MS-CHAP. For a complete list of supported IETF and vendor-proprietary RADIUS attributes, refer to the "RADIUS Attributes" appendix in the Cisco IOS Release 11.3 Security Configuration Guide.

Named Method Lists for AAA Authorization and Accounting

In earlier Cisco IOS releases, only named authentication method lists were supported under Cisco's Authentication, Authorization, and Accounting (AAA) network security services. With Cisco IOS Release 11.3(4)T, AAA has been extended to support both authorization and accounting named method lists. Named method lists for authorization and accounting function the same way as those for authentication. They allow you to define different methods for authorization and accounting and apply those methods on a per-interface or per-line basis.

Always On/Dynamic ISDN (AO/DI)

Always On/Dynamic ISDN (AO/DI) is an on-demand service that optimizes the use of an existing Integrated Services Digital Network (ISDN) signaling channel (D channel) to transport X.25 traffic. The X.25 D channel call is placed from the subscriber to the packet data service provider. Multilink and TCP/IP protocols are encapsulated within the X.25 logical circuit carried by the D channel. The bearer channels (Bchannels) use the Multilink protocol without the standard Q.922 and X.25 encapsulations and invoke additional bandwidth as needed. AODI takes full advantage of existing packet handlers at the central office by using an existing D channel to transport the X.25 traffic. The link associated with the X.25 D channel packet connection is used as the primary link of the Multilink protocol. The Dchannel is a connectionless, packet oriented link between the Customer Premise Equipment (CPE) and the central office. Since the Dchannel is always available, it is possible to in turn offer "always available" services. On-demand functionality is achieved by using the Bchannels to temporarily boost data throughput and are disconnected after use.

Microsoft Point-to-Point Compression

Microsoft Point-to-Point Compression (MPPC) is a scheme used to compress Point-to-Point Protocol (PPP) packets between Cisco and Microsoft client devices. The MPPC algorithm is designed to optimize processor and bandwidth utilization in order to support multiple simultaneous connections. The MPPC algorithm uses a Lempel-Ziv (LZ) based algorithm with a continuous history buffer, called a dictionary.

Multiple ISDN Switch Types

The Multiple ISDN Switch Types feature allows you to configure more than one ISDN switch type per router. You can apply an ISDN switch type on a per interface basis, thus extending the existing global isdn switch-type command to the interface level. This allows Basic Rate Interfaces (BRI) and Primary Rate Interfaces (PRI) to run simultaneously on platforms that support both interface types.

The isdn tei command is also extended to the interface level. Terminal endpoint negotiation (TEI) determines when Layer 2 is activated (power-up or first-call).

National ISDN Switch Types for Basic Rate and Primary Rate Interfaces

National ISDN Switch Types for Basic Rate and Primary Rate Interfaces introduces changes to ISDN switch types for Primary Rate Interfaces (PRI) and Basic Rate Interfaces (BRI) as follows:

Adds a new switch type for PRI interfaces (isdn switch-type primary-ni).
Changes the BRI basic-ni1 switch type to basic-ni (isdn switch-type basic-ni).
Removes the ISDN vn2 switch type (isdn switch-type vn2) used in France. The existing vn3 switch type (isdn switch-type vn3) supports French vn2 switches.
Removes the ISDN basic-nwnet3 switch type (isdn switch-type basic-nwnet3) used in Norway. The basic-net3 switch type (isdn switch-type basic-net3) supports Norway NET3 switches.
Removes the ISDN basic-nznet3 switch type (isdn switch-type basic-nznet3) used by New Zealand NET3 switches. The ISDN basic-net3 switch type (isdn switch-type basic-net3) supports New Zealand NET3 switches.
Adds the ability to configure outgoing PRI B channel selection for the T1 controller in ascending order (channel 1 to channel 23) or descending order (channel 23 to channel 1). Previously, the router selected a B channel for outgoing calls from the highest free channel in descending order. The E1 controller channel selection for ascending order is channel 1 to 31, and 31 to 1 for descending order.

Note The command parser will still accept the following switch types: basic-nwnet3, vn2, and basic-net3; however, when viewing the NVRAM configuration using either the show running configuration or write terminal command, the basic-net3 or vn3 switch types are displayed respectively.

X.25 over ISDN D-Channel

Basic Rate Interface (BRI) is an Integrated Systems Digital Network (ISDN) interface, and it consists of two B channels (B1 and B2) and one D channel. The B channels are used to transfer data, voice, and video. The D channel controls the B channels.

ISDN uses the D channel to carry signal information. ISDN can also use the D channel in a BRI to carry X.25 packets. The D channel has a capacity of 16 kbps, and the X.25 over D channel can use up to 9.6 kbps.

You can set the parameters of the X.25-over-D-channel interface without disrupting the original ISDN interface configuration. In a normal ISDN BRI interface, the D and B channels are bundled together and represented as a single interface. The original BRI interface continues to represent the D, B1, and B2 channels.

Because some end-user equipment uses static terminal endpoint identifiers (TEIs) to access this feature, static TEIs are supported. The dialer recognizes the X.25-over-D-channel calls and initiates them on a new interface.

X.25 traffic over the D channel can be used as a primary interface where low-volume, sporadic interactive traffic is the normal mode of operation. Supported traffic includes IPX, AppleTalk, transparent bridging, XNS, DECnet, and IP.

New Features in Release 11.3(2)T

The following new features are supported by the Cisco 3600 series in Cisco IOS Release 11.3(2)T and later releases.

Digital Modem Network Module for the Cisco 3640

The Digital Modem Network Module for the Cisco 3640 is a high-density digital network module containing 6, 12, 18, 24, or 30 V.34+ (28.8 kbps) digital (MICA) modems. These modems provide a direct digital connection to an Integrated Services Digital Network (ISDN) Primary Rate Interface (PRI) channel. This digital modem network module allows you to support a mix of both digital (ISDN) and POTS analog modem calls over a single digital network interface.

Depending on the modem license you purchase with your Cisco 3640, the modems on the Digital Modem Network Module are either manageable or not manageable by Cisco IOS software commands. Manageable modems support the one out-of-band feature, which is used for gathering modem performance statistics and transmitting attention (AT) commands. If the license you purchase includes this modem management capability, you can use the modem management commands to gather call statistics and upgrade modem firmware for large modem pools.

Dialer Watch

Dialer Watch is a backup feature that integrates dial backup with routing capabilities. Prior dial backup implementations used the following conditions to trigger backup:

Interesting packets were defined at central and remote routers using dial-on-demand routing (DDR).
Connection loss occurred on a primary interface using a backup interface with floating static routes.
Traffic thresholds were exceeded using a dialer load threshold.

Prior backup implementations might not have supplied optimum performance on some networks, such as those using Frame Relay multipoint subinterfaces or Frame Relay connections that do not support end-to-end LMI.

Dialer Watch provides reliable connectivity without relying solely on defining interesting traffic to trigger outgoing calls at the central router. Dialer Watch uses the convergence times and characteristics of dynamic routing protocols. Integrating backup and routing features enables Dialer Watch to monitor every deleted route. By configuring a set of watched routes that define the primary interface, you are able to monitor and track the status of the primary interface as watched routes are added and deleted. Monitoring the watched routes is done in the following sequence:

1. Whenever a watched route is deleted, Dialer Watch checks to see if there is at least one valid route for any of the watched IP addresses defined.

2. If there is no valid route, the primary line is considered down and unusable.

3. If there is a valid route for at least one of the defined watched IP addresses, and if the route is pointing to an interface other than the backup interface configured for Dialer Watch, the primary link is considered up.

4. In the event that the primary link goes down, Dialer Watch is immediately notified by the routing protocol and the secondary link is brought up.

5. When the secondary link is up, at the expiration of each idle timeout, the primary link is rechecked.

6. If the primary link remains down, the idle timer is indefinitely reset.

7. If the primary link is up, the secondary backup link is disconnected. Additionally, a disable timer can be set to create a delay for the secondary link to disconnect, after the primary link is reestablished.

MS Callback

The MS Callback feature provides client-server callback services for Microsoft Windows 95 and Microsoft Windows NT clients. MS Callback supports the Microsoft Callback Control Protocol (MSCB). MSCB is Microsoft's proprietary protocol that is used by Windows 95 and Windows NT clients. MS Callback supports negotiated PPP Link Control Protocol (LCP) extensions initiated and agreed upon by the Microsoft client. MS Callback is added to existing PPP Callback functionality. Therefore, if you configure your Cisco access server to perform PPP Callback using Cisco IOS Release 11.3(2)T or later, MS Callback is automatically available.

MS Callback supports AAA security models using a local database or AAA server.

MSCB uses LCP callback options with suboption type 6. The Cisco MS Callback feature supports clients with a user-specified callback number and server specified (preconfigured) callback number.

MS Callback does not affect non-Microsoft machines that implement standard PPP LCP extensions as described in RFC 1570. In this scenario, MS Callback is transparent.

PIM Version 2

Protocol-Independent Multicast (PIM) Version 2 includes the following improvements over PIM Version 1:

A single, active rendezvous point (RP) exists per multicast group, with multiple backup RPs. This compares to multiple active RPs for the same group in PIM Version 1.
A bootstrap router (BSR) provides a fault-tolerant, automated RP discovery and distribution mechanism. Thus, routers dynamically learn the group-to-RP mappings.
Sparse mode and dense mode are properties of a group, as opposed to an interface. We strongly recommend sparse-dense mode, as opposed to either sparse mode or dense mode only.
PIM Join and Prune messages have more flexible encodings for multiple address families.
A more flexible Hello packet format replaces the Query packet to encode current and future capability options.
Register messages to an RP indicate whether they were sent by a border router or a designated router.
PIM packets are no longer inside Interior Group Management Protocol packets; they are standalone packets.

PIM Version 1, together with the Auto-RP feature, can perform the same tasks as the PIM Version 2 BSR. However, Auto-RP is a standalone protocol, separate from PIM Version 1, and is Cisco proprietary. PIM Version 2 is a standards track protocol in the Internet Engineering Task Force (IETF).

Cisco's PIM Version 2 implementation allows good interoperability and transition between Version 1 and Version 2. You can upgrade to PIM Version 2 incrementally. PIM Versions 1 and 2 can be configured on different routers within one network. Internally, all routers on a shared media network must run the same PIM version. Therefore, if a PIM Version 2 router detects a PIM Version 1 router, the Version 2 router downgrades itself to Version 1 until all Version 1 routers have been shut down or upgraded.

PIM uses the BSR to discover and announce RP-set information for each group prefix to all the routers in a PIM domain. This is the same function accomplished by Auto-RP, but the BSR is part of the PIM Version 2 specification. The BSR mechanism interoperates with Auto-RP.

To avoid a single point of failure, you can configure several candidate BSRs in a PIM domain. A BSR is elected among the candidate BSRs automatically; they use bootstrap messages to discover which BSR has the highest priority. This router then announces to all PIM routers in the PIM domain that it is the BSR.

Routers that are configured as candidate RPs then unicast to the BSR the group range for which they are responsible. The BSR includes this information in its bootstrap messages and disseminates it to all PIM routers in the domain. Based on this information, all routers will be able to map multicast groups to specific RPs. As long as a router is receiving the bootstrap message, it has a current RP map.

DRP Server Agent Enhancements

DRP Server Agent Enhancements—The DRP Server Agent is a Director Response Protocol (DRP) server application based on UDP for use only with Distributed Director. The DRP Server Agent will provide the following additional functionality:

Enable the Distributed Director to use Border Gateway Protocol Multi-Exit Discriminators in traffic redirection decisions.
Enable the DRP Server to measure client-to-server link latency (round-trip time) for use in traffic redirection decisions.

New Features in the Cisco AS5300 Access Server with 8 PRI for Cisco IOS Release 12.0(2)XD

The following sections list the new features that are available for the Access Server shelf for Cisco IOS Release 12.0(2)XD. For more information about other features on this platform, use the following path on CCO or the Documentation CD-ROM:

Use this path to access the release notes from CCO: Service and Support: Technical Documents: Cisco Product Documentation: Cisco IOS Software Configuration: Cisco IOS Release 12.0: Release Notes: Cisco AS5300 Access Server: Cisco AS5300—Release Notes for Cisco IOS Release 12.0(2)XD
Use this path to access the release notes from the Documentation CD-ROM: Cisco Product Documentation: Cisco IOS Software Configuration: Cisco IOS Release 12.0: Release Notes: Cisco AS5300 Access Server: Cisco AS5300—Release Notes for Cisco IOS Release 12.0(2)XD

CLI String Search

The command-line interface (CLI) String Search feature allows you to search or filter the output of any show or more command. This is useful when you need to sort though large amounts of output or if you want to exclude output that you do not need to see. CLI String Search also allows for searching and filtering at --More-- paging prompts.

With the search function, you can begin unfiltered output at the first line that contains a regular expression you specify. You can specify a maximum of one filter per command to either include or exclude output lines that contain the specified regular expression.

A regular expression is any word, phrase, number, or other type of information that appears in show or more command output.

Easy IP Phase 2-DHCP Server

With the introduction of Easy IP Phase 2, Cisco IOS software also supports Intelligent DHCP Relay functionality. A DHCP Relay Agent is any host that forwards DHCP packets between clients and servers. A DHCP Relay Agent enables the client and server to reside on separate subnets. If the Cisco IOS DHCP server cannot satisfy a DHCP request from its own database, it can forward the DHCP request to one or more secondary DHCP servers defined by the network administrator using standard Cisco IOS IP helper-address functionality.

ISDN MIB RFC 2127

The new Integrated Services Digital Network (ISDN) Management Information Base (MIB) RFC 2127 has been designed to provide useful information in accordance with the IETF's new standard for the management of ISDN interfaces. It controls all aspects of ISDN interfaces. RFC 2127 provides information on the physical Basic Rate Interfaces (BRIs), control and statistical information for B (bearer) and D (signaling) channels, terminal endpoints, and directory numbers.

The ISDN MIB RFC 2127 controls all aspects of ISDN interfaces. It consists of five groups:

B (Bearer) Channel Group
D (Signaling) Channel Group
Directory Number Group (optional)
ISDN Physical Interface Group
Terminal Endpoint Group

The ISDN MIB RFC 2127 enables you to use any commercial SNMP network management application to support ISDN call processing in Cisco IOS software. You can integrate management of dial access products using ISDN with your existing network management systems.

Time-Based Access Lists

It is now possible to implement access lists based on the time of day. To do so, create a time range that defines specific times of the day and week. The time range is identified by a name, and then referenced by a function, so that those time restrictions are imposed on the function itself.

Currently, IP and IPX extended access lists are the only functions that can use time ranges. The time range allows the network administrator to define when the permit or deny statements in the access list are in effect. Prior to this feature, access list statements were continuously in effect after they had been applied. Both named or numbered access lists can reference a time range.

New Features in the Cisco AS5300 Access Server with 4 PRI for Cisco IOS Release 11.3(7)AA

The following sections list the new features that are available for the Access Server shelf for Cisco IOS Release 11.3(7)AA. For more information about other features on this platform, use the following path on CCO or the Documentation CD-ROM:

Use this path to access the release notes from CCO: Service and Support: Technical Documents: Cisco Product Documentation: Access Servers and Access Routers: Access Servers: Cisco AS5300: IOS Release Notes: Cisco AS5300—Release Notes for Cisco IOS Release 11.3(7)AA.
Use this path to access the release notes from the Documentation CD-ROM: Cisco Product Documentation: Access Servers and Access Routers: Cisco AS5300: IOS Release Notes: Cisco AS5300—Release Notes for Cisco IOS Release 11.3(7)AA.

New Features in Cisco IOS Release 11.3(7)AA

This section contains brief descriptions of the new features added in this release. The three new features described in this section support the Cisco SS7/C7 Dial Access Solution System, a product which runs on the following access servers in conjunction with the Cisco Signaling Controller (CSC) and the Network Access Server (NAS):

Cisco AS5200
Cisco AS5300
Cisco AS5800

These features further enhance the capabilities of the Cisco SS7/C7 Dial Access Solution System, which was first introduced with Cisco IOS release 11.3(5)AA. (See the section, "New Features in Cisco IOS Release 11.3(5)AA.") The new features introduced with the current release are:

Redundant Link Manager (RLM)
Continuity Testing (COT)
ISDN Module

These features provide support for IP connection to SS7/C7 Signaling Controller and associated continuity testing (COT). This support allows carrier customers to connect their access servers to the Public Switch Telephone Network (PSTN) directly, by using Signaling System #7 (SS7/C7) signaling protocols. The SS7/C7 signaling links terminate on a separate UNIX system called the Cisco Signaling Controller (Cisco SC2200). The Cisco SC2200 maps incoming calls, which are signaled via SS7/C7, to bearers on the access servers. The access servers and Cisco SC2200 interact to set up and tear down calls using an extended Q.931 protocol over Q.921 and UDP. In this manner, the access servers and Cisco SC2200 form a system that emulates an end-office switch in the PSTN.

The Cisco SS7/C7 Dial Access Solution System uses the ISDN Q.931 and Q.921 protocols over a Redundant Link Manager (RLM) module. RLM makes use of the UDP protocol to transfer information from the NAS to the CSC and vice versa. The ISDN module works in conjunction with the RLM.

For more information on the Cisco SS7/C7 Dial Access Solution System, see the, "Related Documentation" section.

Redundant Link Manager (RLM)

The goal of Redundant Link Manager (RLM) is to primarily provide a virtual link management over multiple IP networks so that the Q.931 signaling protocol and other proprietary protocols can be transported on top of multiple redundant links between the Cisco Signaling Controller (CSC) and the Network Access Server (NAS). In addition to this, RLM opens, maintains, and closes multiple links, manages buffers of queued signaling messages, and monitors whether links are active for link failover and Signaling Controller failover. The user can create more than one IP connection between the CSC and the NAS.

The RLM goes beyond Q.921, because it allows for future use of different upper layers, and more importantly, allows for multiple, redundant paths to be treated as one path by upper layers.

Continuity Testing (COT)

The Continuity Test (COT) subsystem supports the Continuity Test, which is required by the SS7 network to conduct loopback and NAS-generated tone check testing on the path before a circuit is established. COT will detect any failure of DS0 channels. It is required for North American SS7 compliance.

This feature is an enhancement to the COT feature introduced in Cisco IOS release 11.3(6)AA. See "SS7/C7 Continuity Testing for Network Access Servers" subsection.

ISDN Module

The ISDN module ensures that the ISDN protocol stack functions properly while the D-channel information (Q.931 and the Q.921 frames) are transported over possibly multiple IP networks via UDP across links managed by the Redundant Link Manager (RLM).

For more information about RLM, see the "Redundant Link Manager (RLM)" subsection.

New Features in Cisco IOS Release 11.3(6)AA

This section contains brief descriptions of the new features added in Cisco IOS release 11.3(6)AA.

Per DNIS AAA Server Selection

Platforms: Cisco AS5200 and Cisco AS5300

You can now authenticate users to a particular AAA server based on the session's Dialed Number Identification Service (DNIS) number. RADIUS directed-request support has been implemented to support this capability.

Any phone line (a regular home phone or a commercial T1/PRI line) can be associated with several phone numbers. The DNIS number identifies the number that was called to reach you.

For example, suppose you want to share the same phone number with several customers, but you want to know which customer is calling before you pick up the phone. You can customize how you answer the phone because DNIS allows you to know which customer is calling when you answer.

Cisco routers with either ISDN or internal modems (Cisco AS5200 or Cisco AS5300) can receive the DNIS number. This functionality allows users to assign different RADIUS servers for different customers (that is, different RAIDUS servers for different DNIS numbers).

The DNIS number identifies which number is called to reach you. This capability shows you the calling party number when you answer. You can also assign specific RADIUS servers to different DNIS numbers. In other words, you can assign specific RADIUS servers to individual users dialing into the network.

Dual Redundant Internal Power Supplies for the Cisco AS5300

The dual redundant power supply feature for the Cisco AS5300 provides optional DC or AC dual internally redundant power supplies for the Cisco AS5300 chassis. This feature provides higher reliability and load balancing. Two versions are available:

Dual AC input dual 300-watt
- The dual redundant AC power supply for the Cisco AS5300 has separate power cords.
Dual DC input dual 300-watt

New and changed Cisco IOS software commands manage the power supply, providing the following capability:

Designate SNMP trap (message) addresses
Enable/disable sending SNMP traps
Send SNMP traps and alarms when a failure or recovery from the unit is detected
Display of the SNMP environment monitor statistics

For more information. see the online documentation.

New Features in Cisco IOS Release 11.3(5)AA

This section contains brief descriptions of the new features added in Cisco IOS Release 11.3(5)AA.

SS7/C7 Continuity Testing for Network Access Servers

Platforms: Cisco AS5200, AS5300, AS5800. Each of these platforms can be the access server component in a Cisco SS7/C7 dial network access system. For more information on these systems, see the "Related Documentation" section

This feature allows you to set up continuity testing for Signaling System 7 (SS7/C7) on a network access server (NAS), in which the NAS generates the tone. Continuity testing reduces the call-failure rate by detecting failed DS0s (B channels) on the NAS before setting up a call. Calls can be circuit-switched data calls or analog modem calls. Because the Cisco Signaling Controller SC2200 does not directly control the bearer channels on an access server, the access server must perform the loopbacks and tone generation or tone detection required for continuity testing. Continuity testing is required for North American SS7/C7 compliance.

Layer Two Tunneling Protocol (L2TP)

Platforms: Cisco AS5200, AS5300, AS5800

Layer Two Tunneling Protocol (L2TP) is an emerging Internet Engineering Task Force (IETF) standard that combines the best features of two existing tunneling protocols: Cisco's Layer Two Forwarding (L2F) and Microsoft's Point-to-Point Tunneling Protocol (PPTP). L2TP is an extension to the Point-to-Point Protocol (PPP), which is an important component for Access Virtual Private Networks (VPNs). Access VPNs allow mobile users to connect to their corporate intranets or extranets, thus improving flexibility and reducing costs.

DNS Server Request Support in AAA (Per User DNS)

Platforms: Cisco AS5200, AS5300, AS5800

Note This feature was included in Cisco IOS Release 11.3(4)AA without mention.

Microsoft Point-to-Point Protocol (PPP) clients have the ability to request either a primary or secondary domain naming system (DNS) server from NAS during IP Control Protocol (IPCP) negotiation. To support this functionality using authentication, authorization, and accounting (AAA) security services, two new TACACS+ attribute-value (AV) pairs and two new vendor-proprietary RADIUS attributes have been added.

The show caller Command Feature

Platforms: Cisco AS5200, AS5300, AS5800, and 7200 series router.

The show caller command is a network management feature that applies to dial protocols. It might apply to both private and public networks, both ISP and corporate networks.

Previously, display of login user information was scattered in various show commands. It was very time-consuming to debug and track caller information, especially for some high-end access platforms that could potentially have thousands of interfaces up at the same time.

The show caller command is a user interface command that displays various information about a particular connection. Its output and usage look similar to the current output of show user, but with more options and more information.

The show caller command supports both ISDN and asynchronous modem connections. Information is displayed for both incoming and outgoing directions. Interfaces include serial, asynchronous, ISDN, dialer and virtual interfaces (bundle, `v-access' interfaces).

The show caller command is supported for PPP, Multilink PPP, and SLIP. It also includes all NCPs running on PPP, including IP, IPX and Appletalk.

New Features in Cisco IOS Release 11.3(4)AA

This section contains brief descriptions of the new features added in Cisco IOS Release 11.3(4)AA.

Cisco IOS File System (IFS)

The IFS feature provides a single interface to all file systems the Cisco IOS uses:

Flash memory file systems
Network file systems (TFTP, rcp, and FTP)
Any other endpoint for reading or writing data (such as NVRAM, the running configuration, ROM, raw system memory, system bundled microcode, Xmodem, Flash load helper log, modems, and BRI MUX interfaces).

IFS provides the following benefits:

File viewing and classification
Platform-independent commands
Minimal prompting for commands
Directory navigation and creation

Note Beginning with this release, Flash memory file commands now use the Cisco IOS File System (IFS). You can no longer use the previous version of these commands.

For more information on IFS, see the online documentation under the title Cisco IOS File System. To find this topic on CCO, follow the path: Service and Support: Technical Documents: Cisco IOS Software Configuration: Cisco IOS Release 11.3: Cisco IOS Software Release 11.3: Cisco IOS 11.3 AA New Features: Cisco IOS File System.

The path to the document on the documentation CD-ROM is almost identical.

DNS Server Request Support in AAA (Per User DNS)

This feature first appeared in Cisco IOS Release 11.3(4)AA, but is documented in Cisco IOS Release 11.3(5)AA. See the "New Features in Cisco IOS Release 11.3(5)AA" section.

New Features in Cisco IOS Release 11.3 T and Other Releases

All features in Cisco IOS Release 11.3(4)T are also included in this special release. Cisco IOS Release 11.3(4)T includes features from previous Cisco IOS Release 11.3 T releases from Cisco IOS Release 11.3 T up to and including Cisco IOS Release 11.3(4)T. Further, since each maintenance release of Cisco IOS Release 11.3 T continues to be synched with the current Cisco IOS Release 11.3 AA, features from the current parent release can also be contained in this current release. For information on these features, see the following platform-specific release notes:

Release Notes for Cisco AS5300 for Cisco IOS Release 11.3 T
Release Notes for Cisco AS5100 and AS5200 Access Servers for Cisco IOS Release 11.3 T

For more information about additional features that apply to this release, refer to the Release Notes for Cisco IOS Release 11.3, which includes information about all hardware platforms supported in Cisco IOS Release11.3. The"Related Documentation" section describes the location of the related release notes.

New Features in the Cisco 7206 Router for Cisco IOS Release 11.3(4)T

The following sections list the new features that are available for the router shelf for Cisco IOS Release 11.3(4)T.

For more information about other features on this platform, use the following path on CCO or the Documentation CD-ROM:

Use this path to access the new feature documents from CCO: Service and Support: Technical Documents: Product Documentation: Cisco IOS Software Configuration: Cisco IOS Release 11.3: Cisco IOS 11.3T New Features: 11.3(4)T New Features.
Use this path to access the new feature documents from the Documentation CD-ROM: Cisco Product Documentation: Cisco IOS Software Configuration: Cisco IOS Release 11.3: Cisco IOS 11.3T New Features: 11.3(4)T New Features.

New Features in Release 11.3(4)T

The following new features for the router shelf were introduced in Release 11.3(4)T.

PPP over Frame Relay

PPP over Frame Relay allows a router to establish end-to-end Point-to-Point Protocol (PPP) sessions over Frame Relay. IP datagrams are transported over the PPP link using RFC 1973-compliant Frame Relay framing. This feature is useful for remote users running PPP to access their Frame Relay corporate networks.

PA-2FEISL 100BaseT Fast Ethernet/ISL Port Adapters

The PA-2FEISL 100BaseT Fast Ethernet/Inter-Switch Link (ISL) port adapters (PA-2FEISL-TX and PA-2FEISL-FX) are available for the Cisco 7200 series routers, for second-generation VIP2-15, VIP2-20, and VIP2-40 in all Cisco 7500 series routers and Cisco 7000 series routers with the Cisco 7000 series Route Switch Processor (RSP7000) and Cisco 7000 series Chassis Interface (RSP7000CI).

The 2FEISL-TX or 2FEISL-FX port adapter provides two 100-Mbps, 100BaseT Fast Ethernet/ISL interfaces for VLAN transport over switch-to-switch backbone connections or switch-to-server data center attachments. These port adapters provide an inter-VLAN bridging and routing functionality that network administrators can use to deploy 100-Mbps Token Ring VLAN transport, 100-Mbps Ethernet VLAN transport, and bridging or routing between the mixed LAN types using the same physical ISL trunk links. Both full-duplex and half-duplex operation are supported for the 2FEISL-TX and 2FEISL-FX port adapters.

For more information on the PA-2FEISL port adapters, refer to the publication PA-2FEISL 100BaseT Fast Ethernet/ISL Port Adapter Installation and Configuration . This document is available on CCO and on the Documentation CD-ROM:

Use this path to access the document from CCO: Products: Cisco Documentation: Core/High-End Routers: Cisco 7202: Cisco 7200 Series Configuration Notes: PA-2FEISL 100 BaseT Ethernet/ISL Port Adapter Installation and Configuration.
Use this path to access the document from the Documentation CD-ROM: Cisco Product Documentation: Core/High-End Routers: Cisco 7206: Cisco 7200 Series Configuration Notes: PA-2FEISL 100 BaseT Ethernet/ISL Port Adapter Installation and Configuration.

New Features in Release 11.3(3)T

The following new features are supported by the Cisco 7000 family of routers in Cisco IOS Release 11.3(3)T.

For more information about other features on this platform, use the following path on CCO or the Documentation CD-ROM:

Use this path to access the new feature documents from CCO: Service and Support: Tecnical Documents: Product Documentation: Cisco IOS Software Configuration: Cisco IOS Release 11.3: Cisco IOS 11.3T New Features: 11.3(3)T New Features.
Use this path to access the new feature documents from the Documentation CD-ROM: Cisco Product Documentation: Cisco IOS Software Configuration: Cisco IOS Release 11.3: Cisco IOS 11.3T New Features: 11.3(3)T New Features.

Always On/Dynamic ISDN

Always On/Dynamic ISDN (AO/DI) is an on-demand service that optimizes the use of an existing Integrated Services Digital Network (ISDN) signaling channel (D channel) to transport X.25 traffic. The X.25 D channel call is placed from the subscriber to the packet data service provider. Multilink and TCP/IP protocols are encapsulated within the X.25 logical circuit carried by the D channel. The bearer channels (B channels) use the Multilink protocol without the standard Q.922 and X.25 encapsulations, and invoke additional bandwidth as needed. AO/DI takes full advantage of existing packet handlers at the central office by using an existing D channel to transport the X.25 traffic. The link associated with the X.25 D-channel packet connection is used as the primary link of the Multilink protocol. The D channel is a connectionless, packet-oriented link between the customer premise equipment (CPE) and the central office. Since the D channel is always available, it is possible to in turn offer "always available" services. On-demand functionality is achieved by using the B channels to temporarily boost data throughput and are disconnected after use.

Multiple ISDN Switch Types

The Multiple ISDN Switch Types feature allows you to configure more than one ISDN switch type per router. You can apply an ISDN switch type on a per interface basis, thus extending the existing global isdn switch-type command to the interface level. This allows Basic Rate Interfaces (BRIs) and Primary Rate Interfaces (PRIs) to run simultaneously on platforms that support both interface types.

The isdn tei command is also extended to the interface level. Terminal endpoint negotiation (TEI) determines when Layer 2 is activated (powerup or first-call).

National ISDN Switch Types for Basic Rate and Primary Rate Interfaces

National ISDN Switch Types for Basic Rate and Primary Rate Interfaces introduces changes to ISDN switch types for PRI and BRI as follows:

Adds a new switch type for PRI interfaces (isdn switch-type primary-ni).
Changes the BRI basic-ni1 switch type to basic-ni (isdn switch-type basic-ni).
Removes the ISDN vn2 switch type (isdn switch-type vn2) used in France. The existing vn3 switch type (isdn switch-type vn3) supports French vn2 switches.
Removes the ISDN basic-nwnet3 switch type (isdn switch-type basic-nwnet3) used in Norway. The basic-net3 switch type (isdn switch-type basic-net3) supports Norway NET3 switches.
Removes the ISDN basic-nznet3 switch type (isdn switch-type basic-nznet3) used by New Zealand NET3 switches. The ISDN basic-net3 switch type (isdn switch-type basic-net3) supports New Zealand NET3 switches.
Adds the ability to configure outgoing PRI B channel selection for the T1 controller in ascending order (channel 1 to channel 23) or descending order (channel 23 to channel 1). Previously, the router selected a B channel for outgoing calls from the highest free channel in descending order. The E1 controller channel selection for ascending order is channel 1 to 31, and 31 to 1 for descending order.

PA-4R-DTR Dedicated Token Ring Port Adapter

The Dedicated Token Ring port adapter (PA-4R-DTR) is available on Cisco 7500 series routers, Cisco 7200 series routers, and Cisco 7000 series routers with the 7000 Series Route Switch Processor (RSP7000) and 7000 Series Chassis Interface (RSP7000CI).

The PA-4R-DTR provides up to four IBM Token Ring or IEEE 802.5 Token Ring interfaces. Each Token Ring interface can be set for 4 Mbps or 16 Mbps half-duplex or full-duplex operation and can operate as a standard Token Ring station or as a concentrator port. The default for all interfaces is Token Ring station mode with half-duplex, 16-Mbps operation. The PA-4R-DTR connects over Type 1 lobe or Type 3 lobe cables, with each interface providing an RJ-45 receptacle.

Channel Port Adapter

The Channel Port Adapter (CPA) expands the value of Cisco's Channel Interface Processor (CIP) solution. The CIP continues to be the industry's premier high-performance mainframe channel connect router. The CPA extends the CIP architecture to customers requiring mid-range mainframe channel connectivity.

Note The Cisco Mainframe Channel Connection (CMCC) product family includes the Channel Interface Processor on the Cisco 7500 series routers and the CPA on the Cisco 7200 series routers.

The CPA is a standard single-width port adapter supporting ESCON or parallel (also known as "bus and tag") channel interfaces to IBM and IBM-compatible mainframes.

The CPA comes with a default of 16 MB of RAM. Customers might upgrade to 32 MB of RAM either at the Cisco factory before the CPA is shipped or as a field upgrade after the CPA has been installed.

The only difference between channel software applications (IP Datagram, Cisco SNA, TCP/IP Offload, TN3270 Server, and CMPC) running on the CIP and CPA is performance. The CIP will typically have higher performance and capacity than the CPA because the CIP has more memory (128 MB of RAM compared to 32 MB for the CPA) and a faster internal bus (64-bit bus compared to the 32-bit bus on the CPA).

RIF Passthru in DLSw+

By default, DLSw+ terminates the RIF for Token Ring, terminates the LLC for all media types, and forwards only data across a WAN with DLSw+ and TCP/IP headers. The RIF is a field in source-route bridged frames that indicates the SRB path the frame should take when traversing a Token Ring network. In the case of an explorer packet, the RIF is a field of the source-route bridged frame that indicates the SRB path that the SRB explorer has traversed so far. The RIF is limited to seven hop counts by IBM standards. Because DLSw+ terminates the RIF at the virtual ring, the network's scalability increases because the hop count of the packet starts over, and the packet can traverse seven additional hops. Also, RIF termination simplifies network design because ring numbers no longer have to be unique throughout an entire enterprise.

However, some environments do not function properly if the RIF is terminated. For that reason, DLSw+ now supports the RIF Passthru feature, in which the entire source-route bridged path appears in the RIF.

NFAS with D-Channel Backup

The DMS100 and NI2 switch types have been added to the existing Non-Facility Associated Signaling (NFAS) with D-channel Backup feature.

ISDN NFAS allows a single D channel to control multiple PRI interfaces. A backup D channel can be configured for use when the primary NFAS D channel fails.

When the channelized T1 controllers are configured for ISDN PRI, only the NFAS primary D channel must be configured; its configuration is distributed to all the members of the associated NFAS group.

RJ-45 Interface Support

RJ-45 Interface Support—Cisco 7200 series routers support a new I/O controller with an RJ-45 interface. The optional Fast Ethernet port is configurable for use at 100 Mbps full-duplex or half-duplex (half duplex is the default). The Fast Ethernet port is equipped with either a single MII receptacle or an MII receptacle and an RJ-45 receptacle.

To support this new feature, the media-type interface command has been modified. The media-type interface command now supports two options:

100basex—Specifies an RJ-45 100BASE-X physical connection
mii—Specifies a media-independent interface

Note When using the I/O controller that is equipped with an MII receptacle and an RJ-45 receptacle, only one receptacle can be configured for use at a time.

New Features in Release 11.3(2)T

The following new features are supported by the Cisco 7000 family of routers in Cisco IOS Release 11.3(2)T.

For more information about other features on this platform, use the following path on CCO or the Documentation CD-ROM:

Use this path to access the new feature documents from CCO: Service and Support: Technical Documents: Product Documentation: Cisco IOS Software Configuration: Cisco IOS Release 11.3: Cisco IOS 11.3T New Features: 11.3(2)T New Features.
Use this path to access the new feature documents from the Documentation CD-ROM: Cisco Product Documentation: Cisco IOS Software Configuration: Cisco IOS Release 11.3: Cisco IOS 11.3T New Features: 11.3(2)T New Features.

NPE-300 Network Processing Engine

The NPE-300 for Cisco 7200 series routers is now available. The network processing engine maintains and executes the system management functions for Cisco 7200 series routers. The network processing engine also shares the system memory and environmental monitoring function with the I/O controller. The NPE-300 has an R5000 microprocessor that operates at an internal clock speed of 200 megahertz (MHz), 4 MB of SRAM, and erasable programmable read-only memory (EPROM) for storing sufficient code for booting the Cisco IOS software. For more information on the NPE-300, refer to the publication Network Processing Engine Replacement Instructions .

PA-12E/2FE Ethernet Switch 10BASE-T and 100BASE-TX Port Adapters

The PA-12E/2FE Ethernet switch 10BASE-T and 100BASE-TX port adapters are available on Cisco 7200 series routers. The PA-12E/2FE port adapter provides up to twelve 10-Mbps and two 10/100-Mbps switched Ethernet (10BASE-T) and Fast Ethernet (100BASE-TX) interfaces for an aggregate bandwidth of 435 Mbps, full-duplex. For more information on the PA-12E/2EF port adapter, refer to the publication PA-12E/2EF Ethernet Switch 10BASE-T and 100BASE-TX Port Adapter Installation and Configuration that accompanies the hardware and the feature module in the Feature Guide for Cisco IOS Release 11.2.

Enhanced ATM VC Configuration and Management

The Enhanced ATM VC Configuration and Management feature set includes new and enhanced capabilities that allow you to create and manage ATM PVCs and SVCs with more ease and improved integrity. This feature set includes the following five subfeatures:

New VC Configuration

: The New VC Configuration subfeature allows you to create ATM permanent virtual circuits (PVCs), switched virtual circuits (SVCs), static maps, and associated virtual circuit (VC) parameters more easily and with fewer errors using new ATM commands in new VC command modes.

VC Integrity Management

: The VC Integrity Management subfeature allows you to manage your ATM PVCs and SVCs so that your router receives immediate notification of when these VCs go down in your network. Upon notification, protocols can reroute packets and prevent unpredictable and relatively long timeout periods.

PVC Discovery

: The PVC Discovery subfeature allows you to enable your router to automatically assign (or discover) PVCs on an ATM interface or subinterface using information from an attached adjacent switch.

Multiprotocol Inverse ARP

: The Multiprotocol Inverse ARP subfeature allows you to enable a dynamic protocol mapping between an ATM PVC and a network address by configuring Inverse Address Resolution Protocol (Inverse ARP) on ATM PVCs running IP or IPX.

Rate Queue Tolerance

: The Rate Queue Tolerance subfeature allows you to configure a range of peak rates on a single rate queue, thereby improving ATM rate queue usage.

New Features in Release 11.3(1)T

The following new features are supported by the Cisco 7000 family of routers in Cisco IOS Release 11.3(1)T.

For more information about other features on this platform, use the following path on CCO or the Documentation CD-ROM:

Use this path to access the new feature documents from CCO: Service and Support: Documentation: Product Documentation: Cisco IOS Software Configuration: Cisco IOS Release 11.3: Cisco IOS 11.3T New Features: 11.3(1)T New Features.
Use this path to access the new feature documents from the Documentation CD-ROM: Cisco Product Documentation: Cisco IOS Software Configuration: Cisco IOS Release 11.3: Cisco IOS 11.3T New Features: 11.3(1)T New Features.

SNMP Manager

The SNMP Manager feature allows a router to serve as an SNMP manager. As an SNMP manager, the router can send SNMP requests to agents and receive SNMP responses and notifications from agents. When the SNMP manager process is enabled, the router can query other SNMP agents and process incoming SNMP traps.

SNMP Inform Requests

The SNMP Inform Requests feature allows routers to send inform requests to SNMP managers. Routers can send notifications to SNMP managers when particular events occur. For example, an agent router might send a message to a manager when the agent router experiences an error condition.

SNMP notifications can be sent as traps or inform requests. Traps are unreliable because the receiver does not send any acknowledgment when it receives a trap. The sender cannot determine if the trap was received. However, an SNMP manager that receives an inform request acknowledges the message with an SNMP response PDU. If the manager does not receive an inform request, it does not send a response. If the sender never receives a response, the inform request can be sent again. Thus, informs are more likely to reach their intended destination.

Because they are more reliable, informs consume more resources in the router and in the network. Unlike a trap, which is discarded as soon as it is sent, an inform request must be held in memory until a response is received or the request times out. Also, traps are sent only once, while an inform request might be retried several times. The retries increase traffic and contribute to a higher overhead on the network. Thus, traps and inform requests provide a trade-off between reliability and resources. If it is important that the SNMP manager receives every notification, use inform requests. On the other hand, if you are concerned about traffic on your network or memory in the router and you do not need to receive every notification, use traps.

New Features in the Catalyst 5002 switch for Catalyst Software Release 3.2(4)

There are no new features in Catalyst Release 3.2 that affect the switch shelf for the Cisco AccessPath-TS3 Model 531 system.

For more information about other features on this platform, use the following path on CCO or the Documentation CD-ROM:

To access this document on CCO, follow this path: Service and Support: Technical Documents: Cisco Product Documentation: Multi-Layer LAN Switches: Catalyst 5000 Series Switches: Catalyst 5000 Series Release Notes: Supervisor Engine Module Software Release Notes: Catalyst 5000 Series Release Notes for Software Release 3.2(1b)
To access this document on the Documentation CD-ROM, follow this path: Cisco Product Documentation: Multi-Layer LAN Switches: Catalyst 5000 Series Switches: Catalyst 5000 Series Release Notes: Supervisor Engine Module Software Release Notes: Catalyst 5000 Series Release Notes for Software Release 3.2(1b)

New Features for Supervisor Engine Software Release 3.2

This section describes the new features for software release 3.2.

Intermodule Switched Port Analyzer (SPAN) for Token Ring ports—You previously could only use SPAN on the same module. In software release 3.2, this is no longer a restriction. However, Token Ring ports can only monitor other Token Ring ports. Additionally, when using the Concentrator Relay Function (CRF) type of virtual LAN (VLAN), only one source port is allowed if you are monitoring in the transmit direction. Token Ring modules do not support the inpkts option.
New hardware supported:
- ATM dual physical sublayer (PHY) OC-3 switching module, single mode fiber (SMF) multiprotocol over ATM/LAN emulation (MPOA/LANE)—Runs permanent virtual connection (PVC) traffic-shaping software at speeds up to 155 Mbps. (WS-X5167)
- ATM dual PHY OC-3 switching module, multimode fiber (MMF) MPOA/LANE—Runs PVC traffic-shaping software at speeds up to 155 Mbps. (WS-X5168)
- ATM dual PHY OC-12 switching module, SMF MPOA/LANE—Runs PVC traffic-shaping software at speeds up to 622 Mbps. (WS-X5162)
- ATM dual PHY OC-12 switching module, MMF MPOA/LANE—Runs PVC traffic-shaping software at speeds up to 622 Mbps. (WS-X5161)

New Features for Supervisor Engine Software Release 3.1

This section describes the new features for software release 3.1.

Two new commands for the Route Switch Module have been added to software release 3.1(2):
- set rsmautostate {enable | disable}
Enables and disables line protocol state determination of the RSM due to Catalyst port state changes.
- show rsmautostate
Displays the current status of RSM line protocol state determination (either enabled or disabled).
Fast Redundant Switchover allows a Supervisor Engine II or III to switch over to another supervisor engine of the same type installed on the same switch faster than previous releases (supported in software version 3.1[2] only).
FDDI Fast Switchover support with FDDI software release 3.1(1) and later (supported in software release 3.1[2a] and later).
Fast EtherChannel enhancements, such as Spanning-Tree over Fast EtherChannel, and the new Port Aggregation Protocol (PAgP) that provides fully automated configuration of Fast EtherChannel bundles, scalable from 200 Mbps to 800 Mbps.
Spanning-Tree Protocol enhancements
- Uplink Fast Convergence provides rapid switchover to a redundant uplink for wiring closet switches when the spanning-tree root port fails or when the spanning-tree topology is recalculated.
- Uplink Load Balancing by VLAN enables traffic load balancing across uplinks by providing direct control over the spanning-tree port cost for VLANs on a trunking port.
Mini-Remote Monitoring (RMON) agents for Fast EtherChannel and Token Ring provide the following:
- RFC 1757 statistics, history, alarms and events, standard RMON applications to monitor Fast EtherChannel traffic, and valuable RMON capabilities extension to a logical Fast EtherChannel.
- Standards-based RFC 1757 and RFC 1513 RMON for Catalyst 5000 series Token Ring ports that provides a complete Token Ring mini-RMON agent for monitoring traffic statistics.
RMON alarm thresholds on any Management Information Base (MIB) object provides an effective notification mechanism through Simple Network Management Protocol (SNMP) traps for any user-definable events in a Catalyst 5000 series switch that has a MIB object.
Multiple source port selection for the SPAN feature that enables monitoring of multiple Ethernet ports from a single Fast Ethernet probe or analyzer on the SPAN destination port.
SNMPv2c agent provides 64-bit counters for monitoring high-speed interfaces, and Get_Bulk, which provides faster response for users and eliminates unnecessary SNMP traffic on the network.
VTP Version 2, which is an extension to Cisco's VLAN Trunk Protocol (VTP); VTP version 2 supports Token Ring LAN switching and ensures the consistency of VLAN configuration across a LAN switch fabric.
CISCO-FLASH-MIB helps to administer and manage a Flash memory-based file system. The CISCO-FLASH-MIB provides the capability for the Supervisor Engine III module to upload, download, and manage multiple supervisor engine software images.
New Hardware Supported
- Supervisor Engine III supports a 3.6-Gbps backplane in the Catalyst 5505 and 5500 switch chassis and the use of Flash memory PC cards; features include modular uplink port modules, redundant supervisor engines, an R4700 RISC CPU running at 150 MHz, and 32-MB DRAM.
- ATM DS3 dual PHY module, which is a 45-Mbps ATM DS3 (digital signal level 3) interface support; dual, redundant PHY port.
- 16-port Token Ring module.

Feature Set Tables

The Cisco IOS software is packaged into "feature sets" (also called "software images"). There are many different feature sets available, and each feature set contains a specific subset of Cisco IOS features. The following tables list only those feature sets which apply to the Cisco AccessPath-TS3 Model 531 system. For a detailed list of other features available for individual configurations when used independently of the Cisco AccessPath-TS3 Model 531 system, refer to the "Cisco Connection Online" section, or the "Documentation CD-ROM" section.

Feature Sets for the Cisco 3640 System Controller for Cisco IOS Release 11.3(5)T

On the Cisco AccessPath-TS3 Model 531 system, the system controller uses the IP Plus Feature set exclusively. There are no new features in Cisco IOS Release 11.3(5)T which affect the System Controller for the Cisco AccessPath-TS3 Model 531 system. For more information about other features on this platform, use the following path on CCO or the Documentation CD-ROM:

Use this path to access the release notes from CCO: Service and Support: Technical Documents: Cisco Product Documentation: Access Servers and Access Routers: Modular Access Routers: Cisco 3600 Series: Release Notes—Cisco 3600 for Cisco IOS Release 11.3(5)T.
Use this path to access the release notes from the Documentation CD-ROM: Cisco Product Documentation: Access Servers and Access Routers: Modular Access Routers: Cisco 3600 Series: Release Notes—Cisco 3600 for Cisco IOS Release 11.3(5)T.

The Cisco IOS software is packaged in feature sets (also called software images) depending on the platform. Each feature set contains a specific set of Cisco IOS features. This section shows the feature set matrix and the features supported by each feature set.

Table 2 lists the Cisco IOS software feature sets available for the Cisco 3600 series in Cisco IOS Release 11.3 T. Cisco IOS Release 11.3 T supports the same feature sets as Cisco IOS Release 11.3, but it might also have new features supported by the Cisco 3600 series.

Table 2: Feature Sets Supported by the Cisco 3600 Series

Feature Set Feature Set Matrix Term Software Image Platforms

IP Standard Feature Sets

IP Plus

Plus

c3620-is-mz

Cisco 3620

,c3640-is-mz

Cisco 3640

IP Plus 40

Plus¹, Plus 40²

c3620-is40-mz

Cisco 3620

c3640-is40-mz

Cisco 3640

IP Plus IPSec 56

Plus, Plus IPsec 56³

c3620-is56i-mz

Cisco 3620

c3640-is56i-mz

Cisco 3640

¹This feature is offered in the Plus feature set.
²This feature is offered in the encryption feature sets which consist of 40-bit (Plus 40) data encryption feature sets.
³This feature is offered in the encryption feature sets which consist of IPsec 56-bit (Plus IPsec 56) data encryption feature sets.

Feature Set	Feature Set Matrix Term	Software Image	Platforms
IP Standard Feature Sets
IP Plus	Plus	c3620-is-mz	Cisco 3620
,c3640-is-mz	Cisco 3640
IP Plus 40	Plus¹, Plus 40²	c3620-is40-mz	Cisco 3620
c3640-is40-mz	Cisco 3640
IP Plus IPSec 56	Plus, Plus IPsec 56³	c3620-is56i-mz	Cisco 3620
c3640-is56i-mz	Cisco 3640

Caution Cisco IOS images with strong encryption (including, but not limited to, 56-bit data encryption feature sets) are subject to U.S. government export controls, and have a limited distribution. Images to be installed outside the U.S. require an export license. Customer orders might be denied or subject to delay due to U.S. government regulations. Contact your sales representative or distributor for more information, or send e-mail to export@cisco.com.

Table 3 lists the features and feature sets supported by the Cisco 3600 series in Cisco IOS Release 11.3 T. Table 3 uses the following conventions to identify features:

Yes—The feature is supported in the feature set.
No—The feature is not supported in the feature set.
In—The number in the "In" column indicates the Cisco IOS release in which the feature was first introduced. For example, a (2) means a feature is introduced in Cisco IOS Release 11.3(2)T. If a cell is empty in this column, the feature was introduced in the initial base release.

Note This feature set table contains only a select list of features. This table is not a cumulative or complete list of all the features in each image.

Table 3: Feature List by Feature Set for the Cisco 3600 Series

Feature Set

Feature In¹ IP
Plus IP
Plus
40 IP
Plus
IPSec
56 IP/
IPX/
AT/
DEC IP/
IPX/
AT/
DEC
Plus

IBM Support

APPN High Performance Routing

No

No

No

No

No

APPN MIB Enhancements

No

No

No

No

No

APPN over Ethernet LAN Emulation

No

No

No

No

No

APPN Scalability Enhancements

No

No

No

No

No

Bisync Enhancements, includes:

Bisync 3780 Support

BSC Extended Addressing

Block Serial Tunneling (BSTUN) over Frame Relay

Yes

Yes

Yes

No

Yes

Cisco MultiPath Channel (CMPC)

No

No

No

No

No

DLSw+ Enhancements, includes:

Backup Peer Extensions for Encapsulation Types

DLSw+ Border Peer Caching

DLSw+ MIB Enhancements

DLSw+ SNA Type of Service

LLC2-to-SDLC Conversion between PU4 Devices

NetBIOS Dial-on-Demand Routing

UDP Unicast Enhancement

Yes

Yes

Yes

No

Yes

FRAS Enhancements, includes:

FRAS Boundary Network Node Enhancement

FRAS Dial Backup over DLSw+

FRAS DLCI Backup

FRAS Host

FRAS MIB

SRB over Frame Relay

Yes

Yes

Yes

No

Yes

RIF Passthrough in DLSw+

(3)

Yes

Yes

Yes

No

Yes

SRB over FDDI on Cisco 4000, 4500, and 4700 Series Routers

No

No

No

No

No

TN3270 LU Nailing

No

No

No

No

No

TN3270 Server Enhancements

No

No

No

No

No

Token Ring LANE

No

No

No

No

No

Tunneling of Asynchronous Security Protocols

Yes

Yes

Yes

No

Yes

Internet

DRP Server Agent

Yes

Yes

Yes

Yes

Yes

DRP Server Agent Enhancements

(2)

Yes

Yes

Yes

Yes

Yes

IP Routing

Easy IP (Phase 1)

Yes

Yes

Yes

Yes

Yes

Hot Standby Router Protocol (HSRP) over ISL in Virtual LAN Configurations

Yes

Yes

Yes

Yes

Yes

IP Enhanced IGRP Route Authentication

Yes

Yes

Yes

Yes

Yes

IP Type of Service and Precedence for GRE Tunnels (CSCdj88415)

(3)

Yes

Yes

Yes

Yes

Yes

TCP Enhancements, includes:

TCP Selective Acknowledgment

TCP Timestamp

Yes

Yes

Yes

Yes

Yes

LAN Support

AppleTalk Access List Enhancements

No

No

No

Yes

Yes

DECnet Accounting

No

No

No

Yes

Yes

IPX Named Access Lists

No

No

No

Yes

Yes

IPX SAP-after-RIP

No

No

No

Yes

Yes

NLSP Enhancements

No

No

No

No

No

NLSP Multicast Support

No

No

No

Yes

Yes

Management

Cisco Call History MIB Command Line Interface

No

No

No

No

No

Cisco IOS Internationalization

Yes

Yes

Yes

Yes

Yes

Entity MIB, Phase 1

Yes

Yes

Yes

Yes

Yes

SNMPv2C

Yes

Yes

Yes

Yes

Yes

SNMP Inform Requests

No

No

No

No

No

Virtual Profiles

Yes

Yes

Yes

Yes

Yes

VPDN MIB and Syslog Facility

(3)

Yes

Yes

Yes

No

Yes

Multimedia

IP Multicast Load Splitting across Equal-Cost Paths

Yes

Yes

Yes

Yes

Yes

IP Multicast over ATM Point-to-Multipoint Virtual Circuits

No

No

No

No

No

IP Multicast over Token Ring LANs

Yes

Yes

Yes

Yes

Yes

PIM Version 2

(2)

Yes

Yes

Yes

Yes

Yes

Stub IP Multicast Routing

Yes

Yes

Yes

Yes

Yes

Voice over IP

Yes

Yes

Yes

No

Yes

Quality of Service

RTP Header Compression

Yes

Yes

Yes

Yes

Yes

Security

Additional Vendor-Proprietary RADIUS Attributes

(3)

Yes

Yes

Yes

Yes

Yes

Automated Double Authentication

(3)

Yes

Yes

Yes

Yes

Yes

Certificate Authority Interoperability

(3)

No

No

Yes

No

No

Double Authentication

Yes

Yes

Yes

Yes

Yes

Encrypted Kerberized Telnet

No

No

No

No

No

HTTP Security

Yes

Yes

Yes

Yes

Yes

Internet Key Exchange Security Protocol

(3)

No

Yes

Yes

No

No

IPSec Network Security

(3)

No

No

Yes

No

No

MS-CHAP Support

(3)

No

No

No

No

No

Named Method Lists for AAA Authorization & Accounting

(3)

Yes

Yes

Yes

Yes

Yes

Per-User Configuration

Yes

Yes

Yes

Yes

Yes

Reflexive Access Lists

Yes

Yes

Yes

Yes

Yes

TCP Intercept

No

No

No

No

No

Vendor-Proprietary RADIUS Attributes

Yes

Yes

Yes

Yes

Yes

Switching

AppleTalk Routing over ISL and IEEE 802.10 in Virtual LANs

No

No

No

Yes

Yes

CLNS and DECnet Fast Switching over PPP

No

No

No

No

No

DECnet/VINES/XNS over ISL, includes:

Banyan VINES Routing over ISL Virtual LANs

DECnet Routing over ISL Virtual LANs

XNS Routing over ISL Virtual LANs

No

No

No

No

No

Fast-Switched Policy Routing

Yes

Yes

Yes

Yes

Yes

IPX Routing over ISL Virtual LANs

No

No

No

Yes

Yes

VIP Distributed Switching Support for IP Encapsulated in ISL

No

No

No

No

No

Terminal Services

Virtual Templates for Protocol Translation

No

No

No

No

No

WAN Optimization

Always On/Dynamic ISDN (AO/DI)

(3)

No

No

No

No

No

ATM MIB Enhancements

No

No

No

No

No

PAD Enhancements

No

No

No

No

No

PAD Subaddressing

Yes

Yes

Yes

Yes

Yes

WAN Services

Bandwidth Allocation Control Protocol

Yes

Yes

Yes

Yes

Yes

Dialer Watch

(2)

Yes

Yes

Yes

Yes

Yes

Enhanced Local Management Interface (ELMI)

Yes

Yes

Yes

Yes

Yes

Frame Relay Enhancements

Yes

Yes

Yes

Yes

Yes

Frame Relay MIB Extensions

Yes

Yes

Yes

Yes

Yes

Frame Relay Router ForeSight

Yes

Yes

Yes

Yes

Yes

ISDN Advice of Charge

No

No

No

No

No

ISDN Caller ID Callback

Yes

Yes

Yes

Yes

Yes

ISDN NFAS

No

No

No

No

No

Layer 2 Forwarding—Fast Switching

Yes

Yes

Yes

No

Yes

Leased Line ISDN at 128 kbps

Yes

Yes

Yes

Yes

Yes

MPPC (Microsoft Point-to-point Compression)

(3)

Yes

Yes

Yes

Yes

Yes

MS Callback

(2)

Yes

Yes

Yes

Yes

Yes

Multiple ISDN Switch Types

(3)

Yes

Yes

Yes

Yes

Yes

National ISDN Switch Types for BRI and PRI Interfaces (NI2)

(3)

Yes

Yes

Yes

Yes

Yes

PPP over ATM

No

No

No

No

No

Stackable Home Gateway

Yes

Yes

Yes

Yes

Telnet Extensions for Dialout

No

No

No

No

No

X.25 Enhancements

Yes

Yes

Yes

Yes

Yes

X.25 on ISDN

No

No

No

No

No

X.25 over ISDN D-Channel

(3)

Yes

Yes

Yes

Yes

Yes

X.25 Switching between PVCs and SVCs

Yes

Yes

Yes

Yes

Yes

X.28 Emulation

Yes

Yes

Yes

Yes

Yes

¹This column indicates the maintenance release in which the fetaure was introduced. For example, a (2) means a feature is introduced in Release 11.3(2)T. If a cell in this column is empty, the feature was included in the initial base release.

	Feature Set
Feature	In¹	IP Plus	IP Plus 40	IP Plus IPSec 56	IP/ IPX/ AT/ DEC	IP/ IPX/ AT/ DEC Plus
IBM Support
APPN High Performance Routing		No	No	No	No	No
APPN MIB Enhancements		No	No	No	No	No
APPN over Ethernet LAN Emulation		No	No	No	No	No
APPN Scalability Enhancements		No	No	No	No	No
Bisync Enhancements, includes: Bisync 3780 Support BSC Extended Addressing Block Serial Tunneling (BSTUN) over Frame Relay		Yes	Yes	Yes	No	Yes
Cisco MultiPath Channel (CMPC)		No	No	No	No	No
DLSw+ Enhancements, includes`:` Backup Peer Extensions for Encapsulation Types DLSw+ Border Peer Caching DLSw+ MIB Enhancements DLSw+ SNA Type of Service LLC2-to-SDLC Conversion between PU4 Devices NetBIOS Dial-on-Demand Routing UDP Unicast Enhancement		Yes	Yes	Yes	No	Yes
FRAS Enhancements, includes: FRAS Boundary Network Node Enhancement FRAS Dial Backup over DLSw+ FRAS DLCI Backup FRAS Host FRAS MIB SRB over Frame Relay		Yes	Yes	Yes	No	Yes
RIF Passthrough in DLSw+	(3)	Yes	Yes	Yes	No	Yes
SRB over FDDI on Cisco 4000, 4500, and 4700 Series Routers		No	No	No	No	No
TN3270 LU Nailing		No	No	No	No	No
TN3270 Server Enhancements		No	No	No	No	No
Token Ring LANE		No	No	No	No	No
Tunneling of Asynchronous Security Protocols		Yes	Yes	Yes	No	Yes
Internet
DRP Server Agent		Yes	Yes	Yes	Yes	Yes
DRP Server Agent Enhancements	(2)	Yes	Yes	Yes	Yes	Yes
IP Routing
Easy IP (Phase 1)		Yes	Yes	Yes	Yes	Yes
Hot Standby Router Protocol (HSRP) over ISL in Virtual LAN Configurations		Yes	Yes	Yes	Yes	Yes
IP Enhanced IGRP Route Authentication		Yes	Yes	Yes	Yes	Yes
IP Type of Service and Precedence for GRE Tunnels (CSCdj88415)	(3)	Yes	Yes	Yes	Yes	Yes
TCP Enhancements, includes: TCP Selective Acknowledgment TCP Timestamp		Yes	Yes	Yes	Yes	Yes
LAN Support
AppleTalk Access List Enhancements		No	No	No	Yes	Yes
DECnet Accounting		No	No	No	Yes	Yes
IPX Named Access Lists		No	No	No	Yes	Yes
IPX SAP-after-RIP		No	No	No	Yes	Yes
NLSP Enhancements		No	No	No	No	No
NLSP Multicast Support		No	No	No	Yes	Yes
Management
Cisco Call History MIB Command Line Interface		No	No	No	No	No
Cisco IOS Internationalization		Yes	Yes	Yes	Yes	Yes
Entity MIB, Phase 1		Yes	Yes	Yes	Yes	Yes
SNMPv2C		Yes	Yes	Yes	Yes	Yes
SNMP Inform Requests		No	No	No	No	No
Virtual Profiles		Yes	Yes	Yes	Yes	Yes
VPDN MIB and Syslog Facility	(3)	Yes	Yes	Yes	No	Yes
Multimedia
IP Multicast Load Splitting across Equal-Cost Paths		Yes	Yes	Yes	Yes	Yes
IP Multicast over ATM Point-to-Multipoint Virtual Circuits		No	No	No	No	No
IP Multicast over Token Ring LANs		Yes	Yes	Yes	Yes	Yes
PIM Version 2	(2)	Yes	Yes	Yes	Yes	Yes
Stub IP Multicast Routing		Yes	Yes	Yes	Yes	Yes
Voice over IP		Yes	Yes	Yes	No	Yes
Quality of Service
RTP Header Compression		Yes	Yes	Yes	Yes	Yes
Security
Additional Vendor-Proprietary RADIUS Attributes	(3)	Yes	Yes	Yes	Yes	Yes
Automated Double Authentication	(3)	Yes	Yes	Yes	Yes	Yes
Certificate Authority Interoperability	(3)	No	No	Yes	No	No
Double Authentication		Yes	Yes	Yes	Yes	Yes
Encrypted Kerberized Telnet		No	No	No	No	No
HTTP Security		Yes	Yes	Yes	Yes	Yes
Internet Key Exchange Security Protocol	(3)	No	Yes	Yes	No	No
IPSec Network Security	(3)	No	No	Yes	No	No
MS-CHAP Support	(3)	No	No	No	No	No
Named Method Lists for AAA Authorization & Accounting	(3)	Yes	Yes	Yes	Yes	Yes
Per-User Configuration		Yes	Yes	Yes	Yes	Yes
Reflexive Access Lists		Yes	Yes	Yes	Yes	Yes
TCP Intercept		No	No	No	No	No
Vendor-Proprietary RADIUS Attributes		Yes	Yes	Yes	Yes	Yes
Switching
AppleTalk Routing over ISL and IEEE 802.10 in Virtual LANs		No	No	No	Yes	Yes
CLNS and DECnet Fast Switching over PPP		No	No	No	No	No
DECnet/VINES/XNS over ISL, includes: Banyan VINES Routing over ISL Virtual LANs DECnet Routing over ISL Virtual LANs XNS Routing over ISL Virtual LANs		No	No	No	No	No
Fast-Switched Policy Routing		Yes	Yes	Yes	Yes	Yes
IPX Routing over ISL Virtual LANs		No	No	No	Yes	Yes
VIP Distributed Switching Support for IP Encapsulated in ISL		No	No	No	No	No
Terminal Services
Virtual Templates for Protocol Translation		No	No	No	No	No
WAN Optimization
Always On/Dynamic ISDN (AO/DI)	(3)	No	No	No	No	No
ATM MIB Enhancements		No	No	No	No	No
PAD Enhancements		No	No	No	No	No
PAD Subaddressing		Yes	Yes	Yes	Yes	Yes
WAN Services
Bandwidth Allocation Control Protocol		Yes	Yes	Yes	Yes	Yes
Dialer Watch	(2)	Yes	Yes	Yes	Yes	Yes
Enhanced Local Management Interface (ELMI)		Yes	Yes	Yes	Yes	Yes
Frame Relay Enhancements		Yes	Yes	Yes	Yes	Yes
Frame Relay MIB Extensions		Yes	Yes	Yes	Yes	Yes
Frame Relay Router ForeSight		Yes	Yes	Yes	Yes	Yes
ISDN Advice of Charge		No	No	No	No	No
ISDN Caller ID Callback		Yes	Yes	Yes	Yes	Yes
ISDN NFAS		No	No	No	No	No
Layer 2 Forwarding—Fast Switching		Yes	Yes	Yes	No	Yes
Leased Line ISDN at 128 kbps		Yes	Yes	Yes	Yes	Yes
MPPC (Microsoft Point-to-point Compression)	(3)	Yes	Yes	Yes	Yes	Yes
MS Callback	(2)	Yes	Yes	Yes	Yes	Yes
Multiple ISDN Switch Types	(3)	Yes	Yes	Yes	Yes	Yes
National ISDN Switch Types for BRI and PRI Interfaces (NI2)	(3)	Yes	Yes	Yes	Yes	Yes
PPP over ATM		No	No	No	No	No
Stackable Home Gateway		Yes	Yes	Yes		Yes
Telnet Extensions for Dialout		No	No	No	No	No
X.25 Enhancements		Yes	Yes	Yes	Yes	Yes
X.25 on ISDN		No	No	No	No	No
X.25 over ISDN D-Channel	(3)	Yes	Yes	Yes	Yes	Yes
X.25 Switching between PVCs and SVCs		Yes	Yes	Yes	Yes	Yes
X.28 Emulation		Yes	Yes	Yes	Yes	Yes

Feature Sets for the Cisco AS5300 Access Server with 8 PRI for Cisco IOS Release 12.0(2)XD

On the Cisco AccessPath-TS3 Model 531 system, the Access Server shelf with 8 PRI uses the Enterprise Plus feature set exclusively. For more information about other features on this platform, use the following path on CCO or the Documentation CD-ROM:

Use this path to access the release notes from CCO: Service and Support: Technical Documents: Cisco Product Documentation: Cisco IOS Software Configuration: Cisco IOS Release 12.0: Release Notes: Cisco AS5300 Access Servers: Cisco AS5300—Release Notes for Cisco IOS Release 12.0(2)XD
Use this path to access the release notes from the Documentation CD-ROM: Cisco Product Documentation: Cisco IOS Software Configuration: Cisco IOS Release 12.0: Release Notes: Cisco AS5300 Access Servers: Cisco AS5300—Release Notes for Cisco IOS Release 12.0(2)XD

Table 4 lists the features and feature sets available for the Access Server with 8PRI up to and including Cisco IOS Release 12.0(2)XD. Table 4 uses the following terms:

Yes—The feature is supported in the feature set.
No—The feature is not supported in the feature set.

Note This feature set table contains only a selected list of features which apply to the Cisco AccessPath-TS3 Model 531 system. This table is not a cumulative or complete list of all the features in each image.
Table 4: Access Server with 8PRI Feature List by Feature Set

Feature	Feature Set
	Enterprise Plus
Internet
DRP Server Agent	Yes
DRP Server Agent Enhancements	Yes
IP Routing
Easy IP (Phase 1)	Yes
Easy IP (Phase 2) DHCP Server	Yes
Hot Standby Router Protocol (HSRP) over ISL in Virtual LAN Configurations	Yes
IP Enhanced IGRP Route Authentication	Yes
PIM Version 2	Yes
TCP Enhancements: TCP Selective Acknowledgment TCP Timestamp	Yes
Management
Cisco Call History MIB Command Line Interface	Yes
Cisco IOS Internationalization	Yes
Entity MIB, Phase 1	Yes
ISDN MIB RFC 2127	Yes
SNMPv2C	Yes
SNMP Inform Requests	Yes
Time-Based Access Lists	Yes
Virtual Profiles	Yes
VPDN MIB	Yes
VPDN MIB and Syslog Facility	Yes
Multimedia
IP Multicast Load Splitting across Equal-Cost Paths	Yes
IP Multicast over ATM Point-to-Multipoint Virtual Circuits	No
PIM Version 2	Yes
IP Multicast over Token Ring LANs	Yes
Stub IP Multicast Routing	Yes
Quality of Service
CLI String Search	Yes
RTP Header Compression	Yes
Security
Automated Double Authentication	Yes
Certificate Authority Interoperability	No
Double Authentication	Yes
Encrypted Kerberized Telnet	No
HTTP Security	Yes
Internet Key Exchange Security Protocol	No
IPSec Network Security	No
MS-CHAP Support	Yes
Named Method Lists for AAA Authentication and Accounting	Yes
Per-User Configuration	Yes
Reflexive Access Lists	Yes
TCP Intercept	Yes
Vendor-Proprietary RADIUS Attributes	Yes
Vendor-Proprietary RADIUS —Additional Attributes	Yes
Switching
VIP Distributed Switching Support for IP Encapsulated in ISL	No
Terminal Services
Telnet Extensions for Dialout	Yes
Virtual Templates for Protocol Translation	Yes
WAN Optimization
ATM MIB Enhancements	No
PAD Enhancements	Yes
PAD Subaddressing	Yes
WAN Services
Always On/Dynamic ISDN (AO/DI)	Yes
Bandwidth Allocation Control Protocol	Yes
Dialer Watch	Yes
E1 R2 Country Support¹	Yes
E1 R1 Support for only Taiwan²	Yes
ISDN Advice of Charge	Yes
ISDN Caller ID Callback	Yes
ISDN NFAS	Yes
Layer 2 Forwarding—Fast Switching	Yes
Leased-Line ISDN at 128 kbps	No
Microsoft Point-to-Point Compression (MPPC)	Yes
MS Callback	Yes
Modem Management Enhancements	Yes
Multiple ISDN Switch Types	Yes
National ISDN Switch Types for BRI and PRI Interfaces (NI2)	Yes
PPP over ATM	No
Stackable Home Gateway	Yes
Switched 56K Digital Connections	Yes
Telnet Extensions for Dialout	Yes
X.25 Enhancements	Yes
X.25 on ISDN	Yes
X.25 Switching between PVCs and SVCs	Yes
X.28 Emulation	Yes

¹E1 R2 country support requires specific versions of Mica portware. For details, see the Mica portware release notes, which are available on CCO. Note that country support varies with the portware release level, and the release notes provide a list of countries.
²E1 R1 signaling support for Taiwan requires MICA portware version 2.3.1.0.

Feature Sets for the Cisco AS5300 Access Server with 4 PRI for Cisco IOS Release 11.3(7)AA

On the Cisco AccessPath-TS3 Model 531 system, the Access Server with 4 PRI uses the Enterprise Plus feature set exclusively.

For more information about other features on this platform, use the following path on CCO or the Documentation CD-ROM:

Use this path to access the release notes from CCO: Service and Support: Technical Documents: Cisco Product Documentation: Access Servers and Access Routers: Access Servers: Cisco AS5300: IOS Release Notes: Cisco AS5300—Release Notes for Cisco IOS Release 11.3(8)AA.
Use this path to access the release notes from the Documentation CD-ROM: Cisco Product Documentation: Access Servers and Access Routers: Cisco AS5300: IOS Release Notes: Cisco AS5300—Release Notes for Cisco IOS Release 11.3(8)AA.

Table 5 lists the features available for the Access Server with 4 PRI up to and including Cisco IOS Release 11.2(16)P.

Table 5: Cisco IOS Software Feature Sets for the Cisco AS5300

Feature Set

Feature In Enterprise
Plus Enterprise Plus 40 Enterprise Plus IPSec 56

Internet

DRP Server Agent

Yes

Yes

Yes

DRP Server Agent Enhancements

(2)

Yes

Yes

Yes

IP Routing

Easy IP (Phase 1)

Yes

Yes

Yes

Hot Standby Router Protocol (HSRP) over ISL in Virtual LAN Configurations

Yes

Yes

Yes

IP Enhanced IGRP Route Authentication

Yes

Yes

Yes

IP Type of Service and Precedence for GRE Tunnels

(4)

Yes

Yes

Yes

PIM Version 2

Yes

Yes

Yes

TCP Enhancements:

TCP Selective Acknowledgment

TCP Timestamp

Yes

Yes

Yes

LAN Support

IPX Named Access Lists

Yes

Yes

Yes

IPX SAP-after-RIP

Yes

Yes

Yes

Management

Cisco Call History MIB Command Line Interface

Yes

Yes

Yes

Cisco IOS Internationalization

Yes

Yes

Yes

Entity MIB, Phase 1

Yes

Yes

Yes

Show Caller

(5)

Yes

Yes

Yes

SNMPv2C

Yes

Yes

Yes

SNMP Inform Requests

(1)

Yes

Yes

Yes

Virtual Profiles

Yes

Yes

Yes

VPDN MIB

(2)

Yes

Yes

Yes

VPDN MIB and Syslog Facility

(3)

Yes

Yes

Yes

Cisco IOS File System (IFS)

(4)AA

Yes

Yes

Yes

Dual Redundant Internal Power Supplies SNMP

(6)¹

Yes

Yes

Yes

Multimedia

IP Multicast Load Splitting across Equal-Cost Paths

Yes

Yes

Yes

IP Multicast over ATM Point-to-Multipoint Virtual Circuits

No

No

No

PIM Version 2

(2)

Yes

Yes

Yes

IP Multicast over Token Ring LANs

Yes

Yes

Yes

Stub IP Multicast Routing

Yes

Yes

Yes

Quality of Service

RTP Header Compression

Yes

Yes

Yes

Security

Automated Double Authentication

(3)

Yes

Yes

Yes

Certificate Authority Interoperability

(3)

No

No

Yes

DNS Server Request Support in AAA (Per User DNS)

(5)

Yes

Yes

Yes

Double Authentication

Yes

Yes

Yes

Encrypted Kerberized Telnet

No

No

Yes

HTTP Security

Yes

Yes

Yes

Internet Key Exchange Security Protocol

(3)

No

No

Yes

IPSec Network Security

(3)

No

No

Yes

Message Banners for AAA Authentication

(4)

Yes

Yes

Yes

MS-CHAP Support

(3)

Yes

Yes

Yes

Named Method Lists for AAA Authentication and Accounting

(3)

Yes

Yes

Yes

Per-DNIS AAA Server Selection

(6)

Yes

Yes

Yes

Per-User Configuration

Yes

Yes

Yes

Reflexive Access Lists

Yes

Yes

Yes

TCP Intercept

Yes

Yes

Yes

Vendor-Proprietary RADIUS Attributes

Yes

Yes

Yes

Vendor-Proprietary RADIUS —Additional Attributes

(3)

Yes

Yes

Yes

Terminal Services

Telnet Extensions for Dialout

Yes

Yes

Yes

Virtual Templates for Protocol Translation

Yes

Yes

Yes

WAN Optimization

ATM MIB Enhancements

No

No

No

PAD Enhancements

Yes

Yes

Yes

PAD Subaddressing

Yes

Yes

Yes

WAN Services

SS7/C7 Continuity Testing for Network Access Servers

(5)

Yes

Yes

Yes

Redundant Link Manager (RLM)

(7)

Yes

Yes

Yes

Continuity Testing (COT)

(7)

Yes

Yes

Yes

ISDN Module

(7)

Yes

Yes

Yes

E1 R2 Country Support

(2)

Yes

Yes

Yes

E1 R1 Support for only Taiwan²

(3)

Yes

Yes

Yes

Enhanced Local Management Interface (ELMI)

Yes

Yes

Yes

Frame Relay Enhancements

Yes

Yes

Yes

Frame Relay MIB Extensions

Yes

Yes

Yes

Frame Relay Router ForeSight

Yes

Yes

Yes

ISDN Advice of Charge

Yes

Yes

Yes

ISDN Caller ID Callback

Yes

Yes

Yes

ISDN NFAS

Yes

Yes

Yes

Layer Two Tunneling Protocol (L2TP)

(5)

Yes

Yes

Yes

Layer 2 Forwarding—Fast Switching

Yes

Yes

Yes

Leased-Line ISDN at 128 kbps

No

No

No

Microsoft Point-to-Point Compression (MPPC)

(3)

Yes

Yes

Yes

MS Callback

(2)

Yes

Yes

Yes

Modem Management Enhancements

(2)

Yes

Yes

Yes

Multiple ISDN Switch Types

(3)

Yes

Yes

Yes

National ISDN Switch Types for BRI and PRI Interfaces (NI2)

(3)

Yes

Yes

Yes

PPP over ATM

No

No

No

Stackable Home Gateway

(3)

Yes

Yes

Yes

Switched 56K Digital Connections

(2)

Yes

Yes

Yes

Telnet Extensions for Dialout

(2)

Yes

Yes

Yes

X.25 Enhancements

Yes

Yes

Yes

X.25 on ISDN

Yes

Yes

Yes

X.25 Switching between PVCs and SVCs

Yes

Yes

Yes

X.28 Emulation

Yes

Yes

Yes

¹Dual Redundant Independent Power Supply was also introduced in Cisco IOS Release 11.3(6)T and 12.0(1)T.
²E1 R1 signaling support for Taiwan requires MICA portware Version 2.3.1.0.

	Feature Set
Feature	In	Enterprise Plus	Enterprise Plus 40	Enterprise Plus IPSec 56
Internet
DRP Server Agent		Yes	Yes	Yes
DRP Server Agent Enhancements	(2)	Yes	Yes	Yes
IP Routing
Easy IP (Phase 1)		Yes	Yes	Yes
Hot Standby Router Protocol (HSRP) over ISL in Virtual LAN Configurations		Yes	Yes	Yes
IP Enhanced IGRP Route Authentication		Yes	Yes	Yes
IP Type of Service and Precedence for GRE Tunnels	(4)	Yes	Yes	Yes
PIM Version 2		Yes	Yes	Yes
TCP Enhancements: TCP Selective Acknowledgment TCP Timestamp		Yes	Yes	Yes
LAN Support
IPX Named Access Lists		Yes	Yes	Yes
IPX SAP-after-RIP		Yes	Yes	Yes
Management
Cisco Call History MIB Command Line Interface		Yes	Yes	Yes
Cisco IOS Internationalization		Yes	Yes	Yes
Entity MIB, Phase 1		Yes	Yes	Yes
Show Caller	(5)	Yes	Yes	Yes
SNMPv2C		Yes	Yes	Yes
SNMP Inform Requests	(1)	Yes	Yes	Yes
Virtual Profiles		Yes	Yes	Yes
VPDN MIB	(2)	Yes	Yes	Yes
VPDN MIB and Syslog Facility	(3)	Yes	Yes	Yes
Cisco IOS File System (IFS)	(4)AA	Yes	Yes	Yes
Dual Redundant Internal Power Supplies SNMP	(6)¹	Yes	Yes	Yes
Multimedia
IP Multicast Load Splitting across Equal-Cost Paths		Yes	Yes	Yes
IP Multicast over ATM Point-to-Multipoint Virtual Circuits		No	No	No
PIM Version 2	(2)	Yes	Yes	Yes
IP Multicast over Token Ring LANs		Yes	Yes	Yes
Stub IP Multicast Routing		Yes	Yes	Yes
Quality of Service
RTP Header Compression		Yes	Yes	Yes
Security
Automated Double Authentication	(3)	Yes	Yes	Yes
Certificate Authority Interoperability	(3)	No	No	Yes
DNS Server Request Support in AAA (Per User DNS)	(5)	Yes	Yes	Yes
Double Authentication		Yes	Yes	Yes
Encrypted Kerberized Telnet		No	No	Yes
HTTP Security		Yes	Yes	Yes
Internet Key Exchange Security Protocol	(3)	No	No	Yes
IPSec Network Security	(3)	No	No	Yes
Message Banners for AAA Authentication	(4)	Yes	Yes	Yes
MS-CHAP Support	(3)	Yes	Yes	Yes
Named Method Lists for AAA Authentication and Accounting	(3)	Yes	Yes	Yes
Per-DNIS AAA Server Selection	(6)	Yes	Yes	Yes
Per-User Configuration		Yes	Yes	Yes
Reflexive Access Lists		Yes	Yes	Yes
TCP Intercept		Yes	Yes	Yes
Vendor-Proprietary RADIUS Attributes		Yes	Yes	Yes
Vendor-Proprietary RADIUS —Additional Attributes	(3)	Yes	Yes	Yes
Terminal Services
Telnet Extensions for Dialout		Yes	Yes	Yes
Virtual Templates for Protocol Translation		Yes	Yes	Yes
WAN Optimization
ATM MIB Enhancements		No	No	No
PAD Enhancements		Yes	Yes	Yes
PAD Subaddressing		Yes	Yes	Yes
WAN Services
SS7/C7 Continuity Testing for Network Access Servers	(5)	Yes	Yes	Yes
Redundant Link Manager (RLM)	(7)	Yes	Yes	Yes
Continuity Testing (COT)	(7)	Yes	Yes	Yes
ISDN Module	(7)	Yes	Yes	Yes
E1 R2 Country Support	(2)	Yes	Yes	Yes
E1 R1 Support for only Taiwan²	(3)	Yes	Yes	Yes
Enhanced Local Management Interface (ELMI)		Yes	Yes	Yes
Frame Relay Enhancements		Yes	Yes	Yes
Frame Relay MIB Extensions		Yes	Yes	Yes
Frame Relay Router ForeSight		Yes	Yes	Yes
ISDN Advice of Charge		Yes	Yes	Yes
ISDN Caller ID Callback		Yes	Yes	Yes
ISDN NFAS		Yes	Yes	Yes
Layer Two Tunneling Protocol (L2TP)	(5)	Yes	Yes	Yes
Layer 2 Forwarding—Fast Switching		Yes	Yes	Yes
Leased-Line ISDN at 128 kbps		No	No	No
Microsoft Point-to-Point Compression (MPPC)	(3)	Yes	Yes	Yes
MS Callback	(2)	Yes	Yes	Yes
Modem Management Enhancements	(2)	Yes	Yes	Yes
Multiple ISDN Switch Types	(3)	Yes	Yes	Yes
National ISDN Switch Types for BRI and PRI Interfaces (NI2)	(3)	Yes	Yes	Yes
PPP over ATM		No	No	No
Stackable Home Gateway	(3)	Yes	Yes	Yes
Switched 56K Digital Connections	(2)	Yes	Yes	Yes
Telnet Extensions for Dialout	(2)	Yes	Yes	Yes
X.25 Enhancements		Yes	Yes	Yes
X.25 on ISDN		Yes	Yes	Yes
X.25 Switching between PVCs and SVCs		Yes	Yes	Yes
X.28 Emulation		Yes	Yes	Yes

Feature Sets for Cisco 7206 Router for the Cisco IOS Release 11.3(4)T

On the Cisco AccessPath-TS3 Model 531 system, the router shelf uses the Enterprise feature set exclusively.

For more information about other features on this platform, use the following path on CCO or the Documentation CD-ROM:

Use this path to access the new feature documents from CCO: Service and Support: Tecvhnical Documents: Product Documentation: Cisco IOS Software Configuration: Cisco IOS Release 11.3: Cisco IOS 11.3T New Features: 11.3(4)T New Features.
Use this path to access the new feature documents from the Documentation CD-ROM: Cisco Product Documentation: Cisco IOS Software Configuration: Cisco IOS Release 11.3: Cisco IOS 11.3T New Features: 11.3(4)T New Features.

Cisco IOS images with strong encryption (including, but not limited to, 56-bit DES) are subject to U.S. government export controls and have a limited distribution. Images to be installed outside the U.S. require an export license. Customer orders may be denied or subject to delay due to U.S. government regulations. Contact your sales representative or distributor for more information, or send e-mail to export@cisco.com.

Note Encryption feature sets (for example, IP 40 and IP 56) are not available in Cisco IOS Releases 11.3(1)T and 11.3(2)T. These feature sets are available in Release 11.3(3)T and later 11.3 T releases.

Table 7 lists the features available for the router shelf up to and including Cisco IOS Release 11.2(4)T.

Table 6: Cisco IOS Software Feature Sets for the router shelf

Feature Set

Feature In Enterprise

IP Routing

Easy IP (Phase 1)

Yes

Hot Standby Router Protocol (HSRP) over ISL in Virtual LAN Configurations

Yes

IP Enhanced IGRP Route Authentication

Yes

IP for GRE Tunnels

(4)

Yes

TCP Enhancements, includes:

TCP Selective Acknowledgment

TCP Timestamp

Yes

Management

Cisco Call History MIB Command Line Interface

No

Cisco IOS Internationalization

Yes

Entity MIB, Phase 1

Yes

SNMP Inform Requests/SNMP Manager

Yes

SNMPv2C

Yes

Virtual Profiles

Yes

VPDN MIB and Syslog Facility

(3)

Yes

Multimedia

IP Multicast Load Splitting across Equal-Cost Paths

Yes

IP Multicast over ATM Point-to-Multipoint Virtual Circuits

Yes

IP Multicast over Token Ring LANs

Yes

PIM Version 2

(2)

Yes

Stub IP Multicast Routing

Yes

Quality of Service

RTP Header Compression

Yes

Security

AAA Support for MS-CHAP

(3)

Yes

Additional Vendor-Proprietary RADIUS Attributes

(3)

Yes

Automated Double Authentication

(3)

Yes

Certificate Authority Interoperability

(3)

No

Context-Based Access Control

(3)

No

Double Authentication

Yes

Encrypted Kerberized Telnet

No

HTTP Security

Yes

Internet Key Exchange Security Protocol

(3)

No

IPSec Network Security

(3)

No

Named Method Lists for AAA Authorization and Accounting

(3)

Yes

Per-User Configuration

Yes

Reflexive Access Lists

Yes

TCP Intercept

Yes

Vendor-Proprietary RADIUS Attributes

(3)

Yes

Terminal Services

Virtual Templates for Protocol Translation

Yes

WAN Optimization

ATM MIB Enhancements

No

Enhanced ATM VC Configuration and Management

(2)

Yes

PAD Enhancements

Yes

PAD Subaddressing

Yes

WAN Services

Always On/Direct ISDN (AO/DI)

(3)

Yes

Bandwidth Allocation Control Protocol

Yes

Dialer Watch

(2)

Yes

Enhanced Local Management Interface (ELMI)

Yes

Frame Relay Enhancements

Yes

Frame Relay MIB Extensions

Yes

Frame Relay Router ForeSight

Yes

ISDN Advice of Charge

No

ISDN Caller ID Callback

No

ISDN NFAS

(3)

No

Layer 2 Forwarding—Fast Switching

Yes

Leased Line ISDN at 128 kbps

No

Microsoft Point-to-Point Compression (MPPC)

(3)

Yes

MS Callback

(2)

Yes

Multiple ISDN Switch Types

(3)

Yes

National ISDN Switch Types for BRI and PRI Interfaces (NI2 Support)

(3)

Yes

PPP over ATM

No

PPP over Frame Relay

(4)

Yes

Stackable Home Gateway

(3)

Yes

Telnet Extensions for Dialout

No

X.25 Enhancements

Yes

X.25 on ISDN

No

X.25 Switching between PVCs and SVCs

Yes

X.28 Emulation

Yes

	Feature Set
Feature	In	Enterprise
IP Routing
Easy IP (Phase 1)		Yes
Hot Standby Router Protocol (HSRP) over ISL in Virtual LAN Configurations		Yes
IP Enhanced IGRP Route Authentication		Yes
IP for GRE Tunnels	(4)	Yes
TCP Enhancements, includes: TCP Selective Acknowledgment TCP Timestamp		Yes
Management
Cisco Call History MIB Command Line Interface		No
Cisco IOS Internationalization		Yes
Entity MIB, Phase 1		Yes
SNMP Inform Requests/SNMP Manager		Yes
SNMPv2C		Yes
Virtual Profiles		Yes
VPDN MIB and Syslog Facility	(3)	Yes
Multimedia
IP Multicast Load Splitting across Equal-Cost Paths		Yes
IP Multicast over ATM Point-to-Multipoint Virtual Circuits		Yes
IP Multicast over Token Ring LANs		Yes
PIM Version 2	(2)	Yes
Stub IP Multicast Routing		Yes
Quality of Service
RTP Header Compression		Yes
Security
AAA Support for MS-CHAP	(3)	Yes
Additional Vendor-Proprietary RADIUS Attributes	(3)	Yes
Automated Double Authentication	(3)	Yes
Certificate Authority Interoperability	(3)	No
Context-Based Access Control	(3)	No
Double Authentication		Yes
Encrypted Kerberized Telnet		No
HTTP Security		Yes
Internet Key Exchange Security Protocol	(3)	No
IPSec Network Security	(3)	No
Named Method Lists for AAA Authorization and Accounting	(3)	Yes
Per-User Configuration		Yes
Reflexive Access Lists		Yes
TCP Intercept		Yes
Vendor-Proprietary RADIUS Attributes	(3)	Yes
Terminal Services
Virtual Templates for Protocol Translation		Yes
WAN Optimization
ATM MIB Enhancements		No
Enhanced ATM VC Configuration and Management	(2)	Yes
PAD Enhancements		Yes
PAD Subaddressing		Yes
WAN Services
Always On/Direct ISDN (AO/DI)	(3)	Yes
Bandwidth Allocation Control Protocol		Yes
Dialer Watch	(2)	Yes
Enhanced Local Management Interface (ELMI)		Yes
Frame Relay Enhancements		Yes
Frame Relay MIB Extensions		Yes
Frame Relay Router ForeSight		Yes
ISDN Advice of Charge		No
ISDN Caller ID Callback		No
ISDN NFAS	(3)	No
Layer 2 Forwarding—Fast Switching		Yes
Leased Line ISDN at 128 kbps		No
Microsoft Point-to-Point Compression (MPPC)	(3)	Yes
MS Callback	(2)	Yes
Multiple ISDN Switch Types	(3)	Yes
National ISDN Switch Types for BRI and PRI Interfaces (NI2 Support)	(3)	Yes
PPP over ATM		No
PPP over Frame Relay	(4)	Yes
Stackable Home Gateway	(3)	Yes
Telnet Extensions for Dialout		No
X.25 Enhancements		Yes
X.25 on ISDN		No
X.25 Switching between PVCs and SVCs		Yes
X.28 Emulation		Yes

The optional feature sets listed in Table 7 can be used for routing out of the Cisco AccessPath-TS3 Model 531 system and into your network.

Table 7: Optional Feature Set Licenses for Cisco 7206 router

WAN Packet Protocols

ATM DXI

Frame Relay

Frame Relay switching

Frame Relay SVC support (DTE)

Frame Relay traffic shaping

SMDS over ATM

X.25

X.25 switching

Interdomain Routing

BGP

BGP4¹

EGP for Internet scale routing

VIP/VIP2 support²

Included automatically with VIP order

CIP Support^²,³

SNA support

TCP/IP offload

NetFlow Switching⁴

NetFlow Switching software⁵

¹BGP4 includes soft configuration, multipath support, and prefix filtering with inbound route maps.
² Supported on Cisco 7000 series with the RSP7000 and RSP7000CI.
³ CIP orders must include one or both of the licenses.
⁴Supported on Cisco 7200 series only.
⁵NetFlow supports IP over all interfaces with optimal performance on Ethernet, FDDI, and HDLC.

Feature Sets for the Catalyst 5002 switch for Catalyst Release 3.2(4)

On the Cisco AccessPath-TS3 Model 531 system, the switch shelf uses the Catalyst Supervisor Feature set exclusively. There is no new feature set information for the switch shelf which affects this configuration for the Cisco AccessPath-TS3 Model 531 system.

For more information about other features on this platform, use the following path on CCO or the Documentation CD-ROM:

To access this document on CCO, follow this path: Service and Support: Technical Documents: Cisco Product Documentation: Multi-Layer LAN Switches: Catalyst 5000 Series Switches: Catalyst 5000 Series Release Notes: Supervisor Engine Module Software Release Notes: Catalyst 5000 Series Release Notes: Catalyst 5000 Series Release Notes for Software Release 3.2(1b)
To access this document on the Documentation CD-ROM, follow this path: Cisco Product Documentation: Multi-Layer LAN Switches: Catalyst 5000 Series Switches: Catalyst 5000 Series Release Notes: Supervisor Engine Module Software Release Notes: Catalyst 5000 Series Release Notes: Catalyst 5000 Series Release Notes for Software Release 3.2(1b)

Caveats and Troubleshooting

This section contains the open and resolved caveats for each Cisco IOS maintenance release that runs on the Cisco Cisco AccessPath-TS3 Model 531 system. This information is organized by Cisco AccessPath-TS3 Model 531 system component. For a list of software caveats that apply to previous maintenance releases refer to the "Related Documentation" section.

Note If you have an account with CCO, you can use Bug Navigator II to find caveats of any severity for any release. Bug Navigator II can be found at http://www.cisco.com/support/bugtools, or from CCO, select Service & Support: Online Technical Support: Software Bug Toolkit: Bug Navigator II.

Caveats for Cisco IOS Release 11.3(5)T (Cisco 3640 System Controller)

For a list of software caveats that apply to the Cisco 3640 when it is used as system controller for the Cisco AccessPath-TS3 Model 531 system, refer to the Caveats for Cisco IOS Release 11.3 T document is located on CCO and the Documentation CD-ROM. The caveats document contains open and resolved caveats of severity 1, the most serious caveats, and severity 2, less serious caveats.

Because Release 11.3 T is based on Release 11.3, all caveats in Release 11.3 also apply to this release. To access these caveats, see the "Important Notes and Caveats" section in the cross-platform Release Notes for Cisco IOS Release 11.3 document located on CCO and the Documentation CD-ROM.

Use this path to access the release notes from CCO: Service and Support: Technical Documents: Cisco Product Documentation: Access Servers and Access Routers: Modular Access Routers: Cisco 3600 Series: Release Notes—Cisco 3600 for Cisco IOS Release 11.3(5)T.
Use this path to access the release notes from the Documentation CD-ROM: Cisco Product Documentation: Access Servers and Access Routers: Modular Access Routers: Cisco 3600 Series: Release Notes—Cisco 3600 for Cisco IOS Release 11.3(5)T.

Caveats for Cisco IOS Release 12.0(2)XD (Cisco AS5300 Access Server with 8 PRI)

This section contains open and resolved caveats for the Cisco 5300 when it is used as an Access Server shelf with 8 PRI for the Cisco AccessPath-TS3 Model 531 system. For more information on these and other caveats for the Cisco 5300, refer to the Release Notes for the Cisco 5300 Series For IOS Release 12.0(2)XD.

This document is available on CCO and the Documentation CD-ROM:

Use this path to access the release notes from CCO: Service and Support: Technical Documents: Cisco Product Documentation: Cisco IOS Software Configuration: Cisco IOS Release 12.0: Release Notes: Cisco AS5300 Access Servers: Cisco AS5300—Release Notes for Cisco IOS Release 12.0(2)XD
Use this path to access the release notes from the Documentation CD-ROM: Cisco Product Documentation: Cisco IOS Software Configuration: Cisco IOS Release 12.0: Release Notes: Cisco AS5300 Access Servers: Cisco AS5300—Release Notes for Cisco IOS Release 12.0(2)XD

For information on other caveats that also apply to this release for the Access Server shelf with 8 PRI, refer to the Caveats for Cisco IOS 12.0T document and the Cross-Platform Release Notes for Cisco IOS 12.0 document. These documents are located on CCO and the Documentation CD-ROM.

Open Caveats-Release 12.0(2)XD

This section describes possibly unexpected behavior by Release 12.0(2)XD. Unless otherwise noted, these caveats apply to all 12.0 releases up to and including 12.0(2)XD.

Basic System Services

CSCdk57339

: The [no] atm rmon collect group-num does not properly take effect when invoked. The ATM-RMON feature (available only on the LS-1010 platform) is fully functional, except the assignment of ATM interfaces to ATM-RMON collection groups must be done by setting the associated MIB objects with SNMP. See the portSelTable definitions in the ATM-RMON-MIB.my MIB document for more information.

CSCdk23300

: There may be an issue with a second call being placed to a station that is currently in call_setup or connected. This only appears where the call is being forwarded via an intermediate router.

IP Routing Protocols

CSCdk52224

: When using sparse-mode PIM multicast, it may take up to five minutes from boot up of the routers until the multicast tree stabilizes. During this period, PATH messages sent to multicast addresses will not be delivered, and hence RSVP path and reservation sessions will not be established. This is a transient phenomenon which occurs only when the routers are being booted. Once the multicast tree stabilizes, paths/reservations are established quickly.
: This problem does not occur in unicast or dense-mode multicast networks.

Miscellaneous

CSCdk51439

: If flow-acceleration is enabled and subsequently disabled and if encryption is also subsequently enabled, the router may unexpectedly reload.

CSCdk56804

: Under rare circumstances, if an incoming call is terminated by the caller, the IP portion of the call may not be terminated correctly. This only occurs under very specific timing conditions.

CSCdk67063

: ALPS UTS serial encapsulation could not be configured.

CSCdk67834

: Description: Cisco c800 routers can experience a page leak after prolonged usage. This condition is rare (roughly 1 in 50 units experience it) and may take several days to manifest, depending on the number of calls.
: Symptoms: performance degrades until the unit thrashes (i.e. runs so slow that no useful work is accomplished). This is accompanied by continuous and heavy blinking of the OK LED.
: Work-around: disabling multilink and STAC compression may reduce or eliminate the leak. A soft or hard reset (e.g. "reload" command or power-cycle) is the only way to clear the problem once it occurs.
: Details: to cause a leak, the router must allocate a large block of memory, read from that memory, deallocate the block, allocate another large block, and write to it without reading from it. The alloc/read/free case (without any intervening writes) is very rare and typically only occurs during call setup failure with multilink (MLPPP) and/or compression configured.

Novell IPX, XNS, and Apollo Domain

CSCdk67783

: IPX allows the primary interface and multiple ISL subinterfaces to have the same IPX network number and encapsulation.
: Workaround: Do not configure interfaces with the same ipx network number.

Wide-Area Networking

CSCdk41155

: ARP replies out a bridged PPP over ATM with IRB interface will fail to be sent. To install the ARP entries, initiate traffic from the router and force an incoming ARP reply.

CSCdk60906

: The failure is minor and does not affect functionality. The test continues and passes eventually.

CSCdk68516

: Removing a dialer interface while a call is up can result in the loss of use of one B channel. A reload of the router will bring it back.

Resolved Caveats-Release 12.0 T

All the caveats listed in this section are resolved in release 12.0(2)T.

IP Routing Protocols

CSCdk37843

: workaround:
: The workaround is to configure "router rip" on the router first, before configuring the address on the interface.

Miscellaneous

CSCdk38476

: RADIUS accounting does not work if you have separate authentication and accounting servers.

CSCdk41902

: An IP client might not be able to ping the Route Switch Module (RSM). This situation might occur during Token-Ring Virtual LAN (TR VLAN) configuration on the RSM. It is most common when the IP client sends an address resolution protocol (ARP) without a routing information field (RIF), then sends an ARP with a RIF. The situation might also occur if the concentrator relay function (CRF), to which the client is connected, is configured for source-route bridging (SRB). Workaround: Change the CRF mode from SRB to source-route transparent (SRT) bridging.

Novell IPX, XNS, and Apollo Domain

CSCdk52372

The Internetwork Packet Exchange (IPX) input process might run out of stack, causing a system reload or reduced performance. There is no workaround.

Caveats for Cisco IOS Release 11.3(7)AA (Cisco AS5300 Access Server with 4 PRI)

This section contains open and resolved caveats for the Cisco 5300 when it is used as an Access Server with 4 PRI for the Cisco AccessPath-TS3 Model 531 system. For more information on these and other caveats for the Cisco 5300, refer to the Release Notes for the Cisco 5300 Series For IOS Release 11.3(7)AA.

This document is available on CCO and the Documentation CD-ROM:

Use this path to access the release notes from CCO: Service and Support: Technical Documents: Cisco Product Documentation: Access Servers and Access Routers: Access Servers: Cisco AS5300: IOS Release Notes: Cisco AS5300—Release Notes for Cisco IOS Release 11.2(7)AA.
Use this path to access the release notes from the Documentation CD-ROM: Cisco Product Documentation: Access Servers and Access Routers: Cisco AS5300: IOS Release Notes: Cisco AS5300—Release Notes for Cisco IOS Release 11.3(7)AA.

This section contains caveats for Cisco IOS Release 11.3(4)AA up to and including Cisco IOS Release 11.3(7)AA.

This special release is synched with Cisco IOS Release 11.3(7)T. Therefore, caveats from Cisco IOS Release 11.3(7)T can also apply to this release. See the "Related Documentation" section, which describes how to find online release notes.

Caveats for Previous Releases

There are currently no severity 1 or 2 caveats exclusive to:

Cisco IOS Release 11.3(7)AA
Cisco IOS Release 11.3(6)AA
Cisco IOS Release 11.3(5)AA
Cisco IOS Release 11.3(4)AA

Caveats for Cisco IOS Release 11.3 T

Caveats in Cisco IOS Release 11.3(4)T, the parent release, can also apply to this special release. Cisco IOS Release 11.3(4)T includes caveats from previous Cisco IOS Release 11.3 T releases, from Cisco IOS Release 11.3(1)T, up to and including Cisco IOS Release 11.3(4)T. For information on these caveats, see the following online platform-specific release notes:

Release Notes for Cisco AS5300 Cisco IOS Release 11.3 T
Release Notes for Cisco AS5100 and AS5200 Access Servers for Cisco IOS Release 11.3 T

For more Caveat information references, see the "Related Documentation" section.

Caveats for Cisco IOS Release 11.3(4)T (Cisco 7206 Router)

This section contains open and resolved caveats for the Cisco 7206 when it is used as a router shelf for the Cisco AccessPath-TS3 Model 531 system. For more information on these and other caveats for the Cisco 7206, refer to the Release Notes for the Cisco 7206 Series For IOS Release 11.3(4)T.

This document is available on CCO and the Documentation CD-ROM:

Use this path to access the release notes from CCO: Software and Support: Documentation: Product Documentation: Cisco IOS Software Configuration: Cisco IOS Release 11.3: Cisco IOS 11.3T New Features: 11.3(4)T New Features.
Use this path to access the release notes from the Documentation CD-ROM: Cisco Product Documentation: Cisco IOS Software Configuration: Cisco IOS Release 11.3: Cisco IOS 11.3T New Features: 11.3(4)T New Features.

Caveats in Cisco IOS Release 11.3 also apply to Release 11.3T. For information on caveats in the Cisco IOS Release 11.3, refer to the "Caveats" section in the Cross-Platform Release Notes for Cisco IOS Release 11.3 document located on CCO and the Documentation CD-ROM. This section contains caveats affecting all maintenance releases.

Caveats for Release 11.3(1) through 11.3(4).

This section describes possibly unexpected behavior by Release 11.3(4). Unless otherwise noted, these caveats apply to all 11.3 releases up to and including 11.3(4). For additional caveats applicable to Release 11.3(4), see the caveats sections for newer 11.3 releases. The caveats for newer releases precede this section.

Access Server

CSCdk04165

: A regression of CSCdj88079, which is a regression of CSCdj63179, occurs as a result of initializing the hardware PPP mode on.
: This leads to a situation in the RX interrupt of the async driver where it assumes that if PPPMODE is set the appp_context must be allocated, and therefore crashes.

Basic System Services

CSCdj48076

: Dialer interfaces are not included in a data structure queryable via SNMP. Please include dialer interfaces in the structure.

CSCdj49380
DHCP packets from Cisco Access Servers do not correctly use the source and giaddr IP addresses as defined in the dialer rotary-group configuration.
CSCdj52228

: ipRouteIfIndex returns illegal value of zero.

CSCdj66155

: When bootflash is full, a squeeze operation may hangs the console session. Other symptoms may include high CPU and an endless loop in the operation.

CSCdj69777

: When using boot config slot0:(filename) command to store and boot configuration from the flash card, it is unable to save running configurations larger than the NVRAM size to the flash card by the use of the write mem command.
: service compress-config command can normally be used as a workaround, but it may be affected by DDTS CSCdj63926. The safe workaround is to use tftp to save the larger configurations.

CSCdj83855

: slave auto-sync config does not work and wr mem is rejected with the error message:% Slave config is being used, please retry command.
: This regression affects IOS maintenance releases 11.2(11), 11.1(16) 11.3(2) and later. It occurs when the wr mem command is not always executed from the same vty.
: The workaround is to simply perform the 'wr mem' again from the same vty.

CSCdj84652

: MTU size of interfaces using ESA's service: Currently the ESA will support maximal packet size up to 16K bytes. All the interfaces which use ESA's service should configure its MTU to be no larger than 16K (16384) bytes.

CSCdk05420

: It has been possible in the past for corrupted pointers to cause errors while freeing packets. These errors could lead to system crashes in certain circumstances.
: To prevent this, code has been added which will verify the integrity of these pointers to be sure they are valid.
: If a pointer is found to be invalid an error similar to this will appear:
: %RSP-2-BADCACHE: Possible cache overrun detected. End of MEMD buffer: 0x401E9200 End of datagram: 0x401E92E2 bufhdr 4800D0A0: 0200016B 000001F0 3FEFEFEF 001E8B80 Flushing Cache -Traceback= 601EB8B0 601EBCD4 601ED66C 601F29B0 601B9550
: The "End of MEMD buffer" indicates the end of the area reserved for this packet. The "End of datagram" indicates where the system believes the current packet ends.
: If the end of datagram is larger than the end of the MEMD buffer, we will take corrective actions and flush the processor memory cache. A traceback is displayed to aid Cisco Engineers in determining the code path which lead to the message being displayed.
: Additional information can be obtained by issuing the command: "test rsp debug on"
: Now when the condition occurs the user will see something similar to:
: %RSP-2-BADCACHE: Possible cache overrun detected. End of current MEMD buffer : 0x401E9200 Where datagram would have ended: 0x401E92E2 bufhdr 4800D0A0: 0200016B 000001F0 3FEFEFEF 001E8B80 Flushing Cache -Traceback= 601EB8B0 601EBCD4 601ED66C 601F29B0 601B9550
: %SYS-3-DMPMEM: 581E8B80: 3FEFEFEF 3FEFEFEF 3FEFEFEF 3FEFEFEF 3FEFEFEF 3FEFEFEF %SYS-3-DMPMEM: 581E8B98: 3FEFEFEF 3FEFEFEF 3FEFEFEF 3FEFEFEF 3FEFEFEF 3FEFEFEF %SYS-3-DMPMEM: 581E8BB0: 3FEFEFEF 3FEFEFEF 3FEFEFEF 3FEFEFEF 3FEFEFEF 3FEFEFEF %SYS-3-DMPMEM: 581E8BC8: 3FEFEFEF 3FEFEFEF 3FEFEFEF 3FEFEFEF 3FEF0100 0CCCCCCC %SYS-3-DMPMEM: 581E8BE0: 00E0F9AA A010015D AAAA0300 000C2000 01B436BC 0001000E %SYS-3-DMPMEM: 581E8BF8: 37323036 722D5275 74680002 00110000 00010101 CC000463 %SYS-3-DMPMEM: 581E8C10: 63630100 03001346 61737445 74686572 6E657432 2F300004 %SYS-3-DMPMEM: 581E8C28: 00080000 00010005 00F14369 73636F20 496E7465 726E6574 %SYS-3-DMPMEM: 581E8C40: 776F726B 204F7065 72617469 6E672053 79737465 6D20536F %SYS-3-DMPMEM: 581E8C58: 66747761 7265200A 494F5320 28746D29 20373230 3020536F %SYS-3-DMPMEM: 581E8C70: 66747761 72652028 43373230 302D4A53 2D4D292C 20457870 %SYS-3-DMPMEM: 581E8C88: 6572696D 656E7461 6C205665 7273696F 6E203131 2E332831
: The additional output is packet memory that can be used for analysis by Cisco Engineers.
: Care should be taken when issuing the test rsp debug on command as it will also display other debug information from the system and error messages are not throttled. This could result in the console logs being filled with data if the error is occuring frequently enough.

CSCdk11847

: NTP will not synchronize. This problem occurs only in 11.3 and 12.0.
: Currently there is no workaround.

CSCdk12212

: The '<Switching_method> not supported on <Interface_name>' error messages are missing a trailing CR/LF.

CSCdk16892

: RTR will use IP Loose Source Routing option when doing traceroute to find out path. This eliminates the phantom path problem caused by multiple equal cost paths in a network. Here is how it works. Suppose we are doing traceroute from A to D:
: A--B--C--D
: TTL 1: Send packet without LSR option. We will get TTL expire message from B. TTL 2: We will put B in LSR IP option to force the packet to go through B. We will get TTL expire message from C. TTL 3: We will put C in LSR to force the packet to go through C. ...
: If IP source routing option is disabled in intermediate hop, we will not use LSR from that point on.
: If traceroute packets times out for 3 times for a TTL, we will stop sending traceroute packets for TTL greater than that TTL. That is, the path will stop at that point.

CSCdk24779

Customers may experience data anomalies over SMDS when running Cisco IOS 11.1, or 11.2 and fragmentation is required.

This problem does not occur when using any other encapsulation (i.e., HDLC).

Workarounds:

Reduce the MTU of stations so that fragmenting does not occur.
Turn off 'route-cache' on the SMDS interface.
Use service disable-ip-fast-frag to disable fast switching of packet that require fragmentation.

Interfaces and Bridging

CSCdj80502

: The output rate (in pkt/sec) and amount of packet reported per sec are incorrect when fancy queuing is enabled.

CSCdk08922

: This problem causes any translational bridging between any media and SMDS failed on 7200 and 3600 platform. The affected release will be 11.1CA, 11.2P, 11.3, 11.3T and 12.0.

CSCdk11660

: When the BVI interface is created, it breaks the IP multicast filter and affects all routing protocols that use IP multicast hellos. If running OSPF, the neighbor command can be configured as a workaround. No workaround exists for HSRP or EIGRP.

IP Routing Protocols

CSCdi30060

: Responses to RIP queries do not honor IP split horizon rules.

CSCdk00551

: Routing table entry of interface configured with supernet address does not get removed from routing table when interface goes down; Workaround is to manually clear routing table by issuing the command, clear ip route *.

CSCdk03894

: A (*,G) entry with 0.0.0.0 as the RP needs to install the RP information when a new RP is learned.

CSCdk08602

: When two ABR's are both summarizing one particular network, if one ABR loses all the specifics then the router won't accept the summary route from the other ABR. The workaround for this is to take out the area range command.

CSCdk10515

: For BGP paths with identical attributes and router IDs, the neighbor address comparison will be skipped over .
: A workaround is to use local_pref, med or other attributes to designate the desired the path.

CSCdk13431

: NTP does not synchronize if a router is configured as a broadcast client and has an NTP broadcast server.
: Since the unicast and the broadcast NTP packets contain conflicting information the client cannot synchronize them.
: The solution is to configure the client so that it is not configured as both a broadcast and unicast client.

CSCdk14030

: Slow BGP convergence has been observed with ***EBGP peer-groups*** in 11.1(19)CC1.
: As a workaround, customers are advised to configure the following command for EBGP peer-groups using the 11.1(19)CC1 image:
: router bgp xxxx neighbor <ebgp-peergroup-name> advertisement-interval 6 end

CSCdk14241

: EIGRP does not trigger the selection of a new route when an equal or lesser path is removed from the RT. The route disapears but no new route is selected from the topology table.

CSCdk14556

: In the configuration
: Host | -----------LAN | | Active Standby | | net net
: The standby router will do proxy arp reply even though it's not active. This is because the active router may not reply if the next hop is through the LAN. When the standby router replies it puts the virtual MAC address in both the ARP field and in the MAC layer field.
: If the active and standby routers are on different ports on a switch the switch learns the virtual MAC address from both of them and may thrash its MAC layer cache.
: The workaround is to disable proxy arp.

CSCdk14660

: When changing from unnumbered to numbered on a serial interface, EIGRP keeps the neighbor up, even though that interface is configured in an ip subnet, not belonging to any network statement under router eigrp.
: The workaround is to reconfigure EIGRP, or reload the router. Clearing the neighbors does not help.
: Another workaround is to issue the no ip unnumber before assign ip address on the serial interface.

CSCdk14834

: On a particle platform (i.e., Cisco 7200 series), if NAT is configured on a non fast-swiching interface, a packet translated by NAT in the fast path may generate alignment error messages if it is bumped for process switching.

CSCdk15477

: The output of show access-lists may display a negative number of matches, for example:
: router#show access-lists 140 Extended IP access list 140 permit gre 194.68.128.0 0.0.0.255 any log-input permit ip any any (-185099051 matches) ^^^^^^^^^^
: This is a cosmetic problem and has no effect on the performance of the router.

CSCdk19411

: A NAT router might translate the source address of a packet generated by the router. This causes problems in establishing neighborships for OSPF EIGRP. Also pings generated by the router leave with an incorrect SA.

CSCdk22028

: RIP version 2 authentication is failed if we configure service password-encryption command before configuring key-string and use more than 15 characters key-string.

CSCdk22380

: When you have log-adjacency-changes configured under OSPF and a passive serial line goes down, it prints an erroneous OSPF-5-ADJCHG message.

CSCdk24926

: When multiple ip pim accept-rp filters are configured, they must be in the following order: "accept-rp <specific RP address> <acl>", ...,"accept-rp auto-rp", "accept-rp 0.0.0.0 <acl>". E.g., the following will accept 171.69.58.88 as the RP for groups in 239.0.0.0/8, and RPs for groups in the Auto-RP cache. If the RP and group don't match the first two filters, the 3rd filter is in effect, i.e. any RP is accepted for groups permitted by ACL 2.
: ip pim accept-rp 171.69.58.88 1 ip pim accept-rp auto-rp ip pim accept-rp 0.0.0.0 2
: access-list 1 permit 239.0.0.0 0.255.255.255
: access-list 2 deny 224.0.1.39 access-list 2 deny 224.0.1.40

Miscellaneous

CSCdi69199

: Service timestamp should be on by default.
: Workaround: turn on service timestamp to get the timestamp on your console messages.

CSCdj74027

: The counter for the ESA commands is a signed variable that became a negative number instead of wrapping around as it should. Since that is not a valid counter value, the commands stopped working and the connection setup stopped authenticating properly.

CSCdj94968

: 4T serial on the Cisco 7200 series routers or RSP may cause crash during normal operation. If the stack decode shows that the crash is caused in the s4t receive interrupt, then it is related to this bug. There is no workaround for this problem. The only solution is to upgrade to a system image which has the fix for this problem.

CSCdk03906

: When running NAT and encryption, FTP fails, but Telnet and Ping both work. It seems that the tcp checksum is not calculated correctly. Removing NAT or encryption will resolve the problem.
: For performance reasons, decryption is not done until the packets are switched to the output interface. This caused the problem with IOS NAT since NAT may need to do the payload translation for certain protocols. The protocols which are effected by this problem are FTP and NetBios.

CSCdk04970

: If a BRI interface is part of a rotary group, and if a crypto map is applied to both the Dialer and BRI, and if the crypto map is then removed from one of the interfaces, the system may reload.

CSCdk11206

: When ten or more standby groups are configured before any IP addresses are configured, the router reloads.

CSCdk12731

: Due to this bug the IP cache entries pointing towards sub-interfaces will not be deleted when the sub-interface goes down. The work around is to clear the IP cache.
: This bug was introduced by CSCdi73935 and is present in releases 011.003(003.001) and later, 11.3(03.01)T and after.

Caveats for Catalyst Software Release 3.2(4) (Catalyst 5002 switch)

This section contains open and resolved caveats for the Catalyst 5002 when it is used as the switch shelf for the Cisco AccessPath-TS3 Model 531 system. For more information about other caveats on this platform, see the Release Notes for Catalyst 5000 Series Software Release 3.2(1b).

To access this document on CCO, follow this path: Service and Support: Technical Documents: Cisco Product Documentation: Multi-Layer LAN Switches: Catalyst 5000 Series Switches: Catalyst 5000 Series Release Notes: Supervisor Engine Module Software Release Notes: Catalyst 5000 Series Release Notes for Software Release 3.2
To access this document on the Documentation CD-ROM, follow this path: Cisco Product Documentation: Multi-Layer LAN Switches: Catalyst 5000 Series Switches: Catalyst 5000 Series Release Notes: Supervisor Engine Module Software Release Notes: Catalyst 5000 Series Release Notes for Software Release 3.2

Resolved Caveats—Catalyst Release 3.2

CSCdj93539

: Under certain conditions, a Catalyst 5000 series switch stops sending syslog output to the logging server. The workaround is to reset the switch.

Books	Chapter Topics
Configuration Fundamentals Configuration Guide Configuration Fundamentals Command Reference	Configuration Fundamentals Overview Cisco IOS User Interfaces File Management Interface Configuration (12.0 only) System Management
Bridging and IBM Networking Configuration Guide Bridging and IBM Networking Command Reference	Transparent Bridging Source-Route Bridging Remote Source-Route Bridging DLSw+ STUN and BSTUN LLC2 and SDLC IBM Network Media Translation DSPU and SNA Service Point SNA Frame Relay Access Support APPN NCIA Client/Server Topologies IBM Channel Attach (except 11.3)
Dial Solutions Configuration Guide Dial Solutions Command Reference	Dial Business Solutions and Examples Dial-In Port Setup DDR and Dial Backup Remote Node and Terminal Service (12.0 only) Cost-Control and Large-Scale Dial Solutions VPDN Dial-In Terminal Services (11.3 only) Dial-on-Demand Routing (DDR) (11.3 only) Dial-Out Modem Pooling (11.3 only) ISDN (11.3 only) X.25 over ISDN (11.3 only) Dial Business Solutions and Examples (11.3 only)
Cisco IOS Interface Configuration Guide Cisco IOS Interface Command Reference	About the Cisco IOS Software Documentation (12.0 only) Using Cisco IOS Software (12.0 only) Interface Configuration Overview (12.0 only) Configuring LAN Interfaces (12.0 only) Configuring Serial Interfaces (12.0 only) Configuring Logical Interfaces (12.0 only) Interface Configurations (11.3 only)
Network Protocols Configuration Guide, Part 1 Network Protocols Command Reference, Part 1	IP Addressing IP Services IP Routing Protocols
Network Protocols Configuration Guide, Part 2 Network Protocols Command Reference, Part 2	AppleTalk Novell IPX
Network Protocols Configuration Guide, Part 3 Network Protocols Command Reference, Part 3	Apollo Domain Banyan VINES DECnet ISO CLNS XNS
Security Configuration Guide Security Command Reference	AAA Security Services Security Server Protocols Traffic Filtering (except 11.3) Traffic Filtering and Firewalls (11.3 only) Network Data Encryption (except 11.3) IP Security and Encryption (11.3 only) Passwords and Privileges) Neighbor Router Authentication IP Security Options
Cisco IOS Switching Services Configuration Guide Cisco IOS Switching Services Command Reference	Switching Paths for IP Networks Virtual LAN (VLAN) Switching and Routing
Wide-Area Networking Configuration Guide Wide-Area Networking Command Reference	ATM Frame Relay SMDS X.25 and LAPB
Voice, Video, and Home Applications Configuration Guide Voice, Video, and Home Applications Command Reference	About the Cisco IOS Documentation (12.0 only) About Voice, Video, and Home Applications (12.0 only) Voice (12.0 only) Video (12.0 only) Broadband (12.0 only) Using Cisco IOS Software (12.0 only) Voice over IP (11.3 only) Voice over Frame Relay (11.3 only) Voice over ATM (11.3 only) Voice over HDLC (11.3 only) Video Support (11.3 only) Universal Broadband Features (11.3 only)
Quality of Service Solutions Configuration Guide (11.3 only) Quality of Service Solutions Command Reference (11.3 only)	Classification Scheduling Packet Drop Traffic Shaping ATM QoS SNA QoS Line Protocols
Configuration Guide Master Index (11.3 only) Command Reference Master Index (11.3 only)
Access Services Configuration Guide (11.2 only) Access Services Command Reference (11.2 only)	Terminal Lines and Modem Support Network Connections AppleTalk Remote Access SLIP and PPP XRemote LAT Telnet TN3270 Protocol Translation Configuring Modem Support and Chat Scripts X.3 PAD Regular Expressions
Cisco IOS Software Command Summary Dial Solutions Quick Configuration Guide System Error Messages Debug Command Reference

Cisco Connection Online

Cisco Connection Online (CCO) is Cisco Systems' primary, real-time support channel. Maintenance customers and partners can self-register on CCO to obtain additional information and services.

Available 24 hours a day, 7 days a week, CCO provides a wealth of standard and value-added services to Cisco's customers and business partners. CCO services include product information, product documentation, software updates, release notes, technical tips, the Bug Navigator, configuration notes, brochures, descriptions of service offerings, and download access to public and authorized files.

CCO serves a wide variety of users through two interfaces that are updated and enhanced simultaneously: a character-based version and a multimedia version that resides on the World Wide Web (WWW). The character-based CCO supports Zmodem, Kermit, Xmodem, FTP, and Internet e-mail, and it is excellent for quick access to information over lower bandwidths. The WWW version of CCO provides richly formatted documents with photographs, figures, graphics, and video, as well as hyperlinks to related information.

You can access CCO in the following ways:

WWW: http://www.cisco.com
WWW: http://www-europe.cisco.com
WWW: http://www-china.cisco.com
Telnet: cco.cisco.com
Modem: From North America, 408 526-8070; from Europe, 33 1 64 46 40 82. Use the following terminal settings: VT100 emulation; databits: 8; parity: none; stop bits: 1; and connection rates up to 28.8 kbps.

For a copy of CCO's Frequently Asked Questions (FAQ), contact cco-help@cisco.com. For additional information, contact cco-team@cisco.com.

Note If you are a network administrator and need personal technical assistance with a Cisco product that is under warranty or covered by a maintenance contract, contact Cisco's Technical Assistance Center (TAC) at 800 553-2447, 408 526-7209, or tac@cisco.com. To obtain general information about Cisco Systems, Cisco products, or upgrades, contact 800 553-6387, 408 526-7208, or cs-rep@cisco.com.

Documentation CD-ROM

Cisco documentation and additional literature are available in a CD-ROM package, which ships with your product. The Documentation CD-ROM, a member of the Cisco Connection Family, is updated monthly. Therefore, it might be more current than printed documentation. To order additional copies of the Documentation CD-ROM, contact your local sales representative or call customer service. The CD-ROM package is available as a single package or as an annual subscription. You can also access Cisco documentation on the World Wide Web at http://www.cisco.com, http://www-china.cisco.com, or http://www-europe.cisco.com.

If you are reading Cisco product documentation on the World Wide Web, you can submit comments electronically. Click Feedback in the toolbar and select Documentation. After you complete the form, click Submit to send it to Cisco. We appreciate your comments.

Table of Contents

Release Notes for the Cisco AccessPath-TS3 Model 531 Integrated Access System for Multiple Cisco IOS Releases

V.90

8 New Enhanced PRI Network Modules

1-Port ATM-25 Network Module for the Cisco 3600 Series

1-Port High Speed Serial Interface (HSSI) Network Module

T1 CAS Support for the Cisco 3640 Digital Modem Network Module

RIF Passthrough in DLSw+

VPDN MIB and Sys Log Facility

Additional Vendor-Proprietary RADIUS Attributes

Automated Double Authentication

Certificate Authority Interoperability

IPSec Network Security

Internet Key Exchange Security Protocol

MS-CHAP Support

Named Method Lists for AAA Authorization and Accounting

Always On/Dynamic ISDN (AO/DI)

Microsoft Point-to-Point Compression

Multiple ISDN Switch Types

National ISDN Switch Types for Basic Rate and Primary Rate Interfaces

X.25 over ISDN D-Channel

Digital Modem Network Module for the Cisco 3640

Dialer Watch

MS Callback

PIM Version 2

DRP Server Agent Enhancements

CLI String Search

Easy IP Phase 2-DHCP Server

ISDN MIB RFC 2127

Time-Based Access Lists

Continuity Testing (COT)

ISDN Module

Per DNIS AAA Server Selection

Dual Redundant Internal Power Supplies for the Cisco AS5300

Layer Two Tunneling Protocol (L2TP)

DNS Server Request Support in AAA (Per User DNS)

The show caller Command Feature

Cisco IOS File System (IFS)

DNS Server Request Support in AAA (Per User DNS)

PPP over Frame Relay

PA-2FEISL 100BaseT Fast Ethernet/ISL Port Adapters

Always On/Dynamic ISDN

PA-4R-DTR Dedicated Token Ring Port Adapter

Channel Port Adapter

RIF Passthru in DLSw+

NFAS with D-Channel Backup

RJ-45 Interface Support

NPE-300 Network Processing Engine

PA-12E/2FE Ethernet Switch 10BASE-T and 100BASE-TX Port Adapters

Enhanced ATM VC Configuration and Management

SNMP Manager

SNMP Inform Requests

Basic System Services

IP Routing Protocols

Miscellaneous

Novell IPX, XNS, and Apollo Domain

Wide-Area Networking

IP Routing Protocols

Miscellaneous

Novell IPX, XNS, and Apollo Domain

Access Server

Basic System Services

Interfaces and Bridging

IP Routing Protocols

Miscellaneous