Manualshelf

System information

ManualsBrandsCisco ManualsComputer equipment3005 - VPN Concentrator - Gateway
41424344454647484950
42
Release Notes for Cisco VPN 3000 Series Concentrator, Release 3.6 Through 3.6.8.B
OL-5637-02
Caveats Resolved in Release 3.6.1
Caveats Resolved in Release 3.6.1
Release 3.6.1 addresses multiple vulnerabilities for the VPN 3000 Series Concentrators and VPN 3002
Hardware Client. Please refer to the following URL for the details on the vulnerabilities addressed.
http://www.cisco.com/warp/public/707/vpn3k-multiple-vuln-pub.shtml
Release 3.6.1 contains the same fixes as Release 3.6, listed in the following section.
Caveats Resolved in Release 3.6
This section lists caveats resolved since Release 3.5. If you have an account on CCO you can check the
status of any caveat by using Bug Navigator II.
To reach Bug Navigator II on CCO, choose Software & Support: Online Technical Support: Software
Bug Toolkit or navigate to http://www.cisco.com/cgi-bin/Support/Bugtool/launch_bugtool.pl.
CSCdt41281
Packets coming through a tunnel from a client to a host on the public interface network exit through
the Public Interface.
CSCdv86906
When using RADIUS authentication, if you are running RIP routing on the Private network, the
NAS-IP-Address in the RADIUS Authentication is the IP address of the Private Interface on the
Concentrator.
If you are running OSPF Routing on the Private network, the NAS-IP-Address in the RADIUS
Authentication is the IP address of the Public Interface on the Concentrator.
If you are using OSPF, the NAS-IP-Address is set to the interface with the IP address that has the
highest numeric value. For example, if the Private Interface of the VPN Concentrator has the IP
address 192.168.10.1, and the Public interface has the IP address 193.111.20.8, the NAS-IP-Address
is set to the public interface.
CSCdx05024
The phase 1 rekey interval is missing from session management on the VPN3000 series concentrator
for Site-to-Site tunnels that are established against IOS devices, if the IOS Device initiates the
tunnel.
CSCdx26088
Older versions of Netscape (v4.xx) might not properly display the session table from the
Monitoring | Sessions link.
CSCdx26360
The session management tables might display slowly if there are thousands of users in the VPN
Concentrator. HTML pages might take up to a minute or more to display. We are attempting to
improve this performance prior to release.
CSCdx39665
Full bandwidth availability to a single user (bandwidth stealing) does not yet function to full
capacity. User will only be given the amount of bandwidth reserved or policed in their policies.