Manualshelf

System information

ManualsBrandsCisco ManualsComputer equipment3005 - VPN Concentrator - Gateway
21222324252627282930
27
Release Notes for Cisco VPN 3000 Series Concentrator, Release 3.6 Through 3.6.8.B
OL-5637-02
Caveats Resolved in Release 3.6.7.C
CSCea58142
A VPN 3000 Concentrator running Release 3.6.7 is not able to decode the objects in the CA
certificate or in the VPN Client certificate.
The VPN 3000 Concentrator accepts the CA certificate and the certificate for the Concentrator, but
in Subject and Issuer, it shows Unknown. When the VPN Client connects, it always ends up in the
base group, not in the group matching the OU or group match config.
CSCdv87793
If the DHCP Server address pool on the VPN 3002 is modified, it will still renew IP Address from
the previous address pool.
CSCea41973
After upgrading to Release 3.6.7.A from 3.6.7 Rel, a VPN 3000 Concentrator does not redirect any
traffic coming in from a VPN Client to across LAN-to-LAN tunnel.
CSCea48892
PIX-to-PIX spoke connectivity when each PIX is connected LAN-to-LAN to a VPN 3015
Concentrator running Release 3.6.7.A is broken.
Caveats Resolved in Release 3.6.7.C
Release 3.6.7.C resolves the following issues:
CSCdx27114
An administrative user who has “Stats Only” permission and who attempts to view users filtered by
“Group” on the Monitor | Sessions screen, sees all logged-in users instead of a filtered list.
CSCdz39114
If a L2L tunnel is initially configured with Auto Discovery then the routing field in the tunnel
configuration is changed to 'none' the L2L:AutoDiscovery stays in the network list. If you attempt
to remove the entry from the network list, the concentrator goes to 100% CPU.
The following error message appears in the log file:
564520 09/06/2002 12:05:47.830 SEV=1 L2TP/60 RPT=3 pSOS q_send failed
CSCdy40481
A stable system suddenly started to crash - when removed from the network, the system no longer
crashed. The crash dump seems to lead to autodiscovery for LAN-to-LAN tunnels. When
autodiscovery is used, each route learned eats up memory by having to create custom (hidden)
filters.
CSCdy79954
When configuring a load balanced configuration, the shared secret can be set to cisco123. Under the
VCA L2L, session a preshared key of ALTIGA is listed. Changing this preshared key results in an
error:
Error updating group for LAN-to-LAN connection (Not Writable Error).
CSCdy82294
Cisco 3030 VPN Concentrator running 3.6.1 fails when SDI sockets are depleted. The Concentrator
is leaking sockets when the SDI server responses time out (see CSCea08807). This failure is another
symptom of that problem.