MARKET ADAPTATION DESCRIPTION     1/198 23-CRA 119 1170/1-V1 Uen C    

Changes to Default System Behavior 

SmartEdge OS for SmartEdge Routers , Release 6.4.1

© Ericsson AB 2010. All rights reserved. No part of this document may be reproduced in any form without the written permission of the copyright owner.

Disclaimer

The contents of this document are subject to revision without notice due to continued progress in methodology, design and manufacturing. Ericsson shall have no liability for any error or damage of any kind resulting from the use of this document.

Trademark List

SmartEdge is a registered trademark of Telefonaktiebolaget L M Ericsson.

Contents

1Introduction

2

Changes to Default System Behavior in Release 6.4.1
2.1Changes to Default System Behavior in Release 6.4.1.1

Glossary

Reference List


1   Introduction

This document describes the changes to the default system behavior introduced in Release 6.4.1 of the SmartEdge® OS for SmartEdge routers . For software installation and upgrade instructions, see Reference [1]. For details about the new and enhanced software features and the new hardware in this release, see Reference [2].

For current security notifications, visit the Ericsson E-business portal at https://ebusiness.ericsson.net.

2   Changes to Default System Behavior in Release 6.4.1

2.1   Changes to Default System Behavior in Release 6.4.1.1

This release introduced the following changes to default system behavior.

2.1.1   Changes to IPsec VPN

IPsec VPN changed in Release 6.4.1.1 in the following ways.

2.1.1.1   Maximum Number of On–Demand Tunnels Increased to 1,024

Up to 1,024 tunnels can be configured for an on-demand tunnel in tunnel configuration mode. In previous releases, the maximum number was 32. The default remains the same, at 8 tunnels.

2.1.1.2   show ike sa statistics tunnel Command Deprecated

The new show tunnel ipsec statistics ike command replaces the show ike sa statistics tunnel command. The new command provides options to:

2.1.1.3   Syntax Changes for debug ike card and debug ipsec card Commands

The card keyword replaces the asp keyword in the syntax for the following two commands in this release:

For both commands, the value you define for the level keyword is now a numeric value instead of a descriptive word.

Table 1    Values Defined for the level Keyword

New Value

Old Value

Meaning

0

emergency

Only emergency events

1

alert

Alert and more-severe events

2

critical

Critical and more-severe events

3

error

Error and more-severe events

4

warning

Warning and more-severe events

5

notice

Notice and more-severe events

6

informational

Informational and more-severe events

7

debug

All events, including debug events

2.1.1.4   L4L7d Module Responsible for Tunnel Processing

The L4L7d module now handles all IPsec tunnel processing. All IPsec tunnel–related interactions with the ISM, RIB, or RCM should be debugged in L4L7d. In previous releases, the tunnelD and tunnel-mgr modules handled IPsec tunnel processing.

2.1.2   BFD Support on PIM Interfaces

BFD is enabled on PIM interfaces and for each neighbor on the interface.

2.1.3   BGP Graceful Restart Support for Labeled Address Families

In previous releases, BGP graceful restart negotiation was not supported for labeled address families. In Release 6.4.1.1, BGP graceful restart negotiation is supported for all IPv4 and IPv6 address families (including labeled address families).

2.1.4   Support for IPv6 Path MTU Negotiation

In previous releases, the SmartEdge router dropped IPv6 packets that were too big for the router to process. In Release 6.4.1.1, all IPv6 packets are processed. You can use the new ipv6 path-mtu-discovery discovery-interval command (in global configuration mode) to globally enable IPv6 PMTU negotiation on the router and configure the timeout value used for aging PMTUs. Enabling IPv6 PMTU triggers the PMTU discovery process when the PMTU discovery timer expires.

2.1.5   BGP Minimum Route Advertisement Interval

Setting the BGP MRAI to 0 (with the advertisement-interval 0 command) may generate a higher number of BGP UPDATE messages and increase BGP CPU 25 usage.

2.1.6   BGP Fast-Reset Interval Enhancement

In previous releases, the fast-reset command interval could be configured in seconds only. In Release 6.4.1.1, the fast-reset command has been updated to include an optional milliseconds keyword. If you include the milliseconds keyword in the fast-reset command string, the interval is interpreted in milliseconds; without the milliseconds keyword, the interval is interpreted in seconds (preserving the backward compatibility of the SmartEdge OS).

2.1.7   SmartEdge BGF Support for IPv4 and IPv6 Payload Traffic

The media address and media port entry size are increased to accommodate both IPv4 and IPv6 addresses (the IPv6 address is 128 bits long, and the IPv4 address is 32 bits long), consuming additional memory on XC and PPA traffic cards.

2.1.8   Changes to DHCPv6 PD Prefix Assignment

In Release 6.3.1, the SmartEdge router supported the configuration of multiple DHCPv6 PD prefixes. In Release 6.4.1, only one DHCPv6 PD prefix is assigned by default unless you use the ipv6 delegated-prefix maximum command to modify the maximum number of DHCPv6 PD prefixes that can be assigned.

In Release 6.3.1, the maximum number of DHCPv6 PD prefixes that could be assigned was 100. In Release 6.4, the maximum number of DHCPv6 PD prefixes that can be assigned is five.

2.1.9   New VSA

Cluster-Partition-ID RADIUS VSA is a new VSA.


Glossary

BFD
Bidirectional Forwarding Detection
 
BGF
border gateway function
 
BGP
Border Gateway Protocol
 
DHCPv6
Dynamic Host Configuration Protocol Version 6
 
IKE
Internet Key Exchange
 
IPsec
Internet Protocol Security
 
IPv4
Internet Protocol Version 4
 
IPv6
Internet Protocol Version 6
 
ISM
Interface and Circuit State Manager
 
MDRR
modified deficit round-robin
 
MRAI
Minimum Route Advertisement Interval
 
MTU
maximum transmission unit
 
PD
Prefix Delegation
 
PIM
Protocol Independent Multicast
 
PMTU
path maximum transmission unit (PMTU)
 
RCM
Router Configuration Manager
 
RIB
Routing Information Base
 
SA
Security Association
 
VPN
Virtual Private Network
 
VSA
vendor-specific attribute

Reference List

[1] Installing Release 6.4.1.
[2] Technical Product Description, SmartEdge OS for SmartEdge Routers, Release 6.4.1.