System information

Release Notes for Cisco VPN 3000 Series Concentrator, Release 3.6 Through 3.6.8.B

OL-5637-02

Caveats Resolved in Release 3.6.8.A

• CSCea07260

After the public IP address and default gateway have been changed, the VPN Concentrator does not

allow incoming data packets encapsulated by UDP (10000) even if an IPsec session is being

established correctly. If you use TCP encapsulation or no encapsulation the problem does not occur.

• CSCeb86598

Netscape 7.x E-Mail Client is unable to send mail via SMTPS E-Mail Proxy.

• CSCed60860

The VPN 3000 sends a gratuitous ARP with the real MAC address and its own IP address, which is

also VRRP address, after you reboot it.

Caveats Resolved in Release 3.6.8.A

Release 3.6.8.A resolves the following issues:

• CSCec62519

L2TP and PPTP connections to VPN 3000 running Release 3.6.8 or Release 4.0.2 cause the device

to fail.

• CSCec67748

The following problem occurred on both Release 3.6.8 and Release 4.0.1.C. The primary VPN 3000

Concentrator’s interfaces are still primary after being rebooted, even though one of the interfaces is

Down.

Caveats Resolved in Release 3.6.8

Release 3.6.8 resolves the following issues:

• CSCea29828

HTTP Software Updates sometimes fail with “Software Update Error”. Retrying the operation does

not update the image.

• CSCeb30226

Using a VPN 3060 Concentrator running Release 3.5.5 or 3.6.7.F, when we set VRRP and Master

VPN's private interface fails, switchover delay happens at Backup VPN, hence we cannot

communicate end-to-end.

• CSCeb72217

The VPN 3000 Concentrator has a minimum password requirement of 8 characters. This

requirement can be bypassed and a local user password can be set to blank by editing the username

and removing the password at the same time on the VPN 3000 Concentrator, despite the error about

the password not meeting minimum length requirements.