50 Minuteman Road Andover, MA 01810 (USA) Tel: (978) 684-1000 CUSTOMER RELEASE NOTES Enterasys RoamAbout ® Wireless Switch 8xx0 Release Firmware Version 7.0.7.
CUSTOMER RELEASE NOTES NOTE: To avoid conflicts with internal RAS VLAN numbering schemes, it is strongly advised to use VLAN IDs less than 3520 on RBT-8xxx systems that are upgrading from MSS version 6.0 to 7.0. Failure to do so will result in a loss of configuration data. NOTE: RoamAbout Wireless Switch Firmware version 5.0.9.2 and greater supports the RBT-8210, the small form factor switch that replaces the larger RBT-8200. The RBT-8210 uses the RBT-8200 firmware and commands.
CUSTOMER RELEASE NOTES Status Version No. Previous Version Previous Version Previous Version Previous Version Previous Version Previous Version Previous Version Previous Version Previous Version 4.1.11.0 4.1.5.0 4.1.4.0 4.0.21.0 4.0.20.0 4.0.18.0 4.0.16.0 4.0.7.0 4.0.4.
CUSTOMER RELEASE NOTES SUPPORTED FUNCTIONALITY: Please refer to the following documents available at http://secure.enterasys.com/support/manuals for more details on new 7.0 enhancements and overall functionality: RoamAbout Switch Manager 7.0 Configuration Guide RoamAbout Switch Manager 7.0 Management Guide RoamAbout Switch Manager 7.0 Feature Guide RoamAbout Switch Manager 7.0 Planning Guide RoamAbout Switch Manager 7.0 Quick Start Guide RoamAbout Mobility System Software 7.
CUSTOMER RELEASE NOTES Existing Product Features RF Load Balancing Mesh Services Local Switching – also known as Direct Path Wireless Bridging Forwarding Enforceable Beacon Data Rate Control Logout for Web Authentication RAS Seed Redundancy Password Management WebView 2 – updated Web interface RBT-RBT security (also called RAS-RAS security) AirDefense software support on APs AeroScout RFID tag support Persistent VLAN assignment for roaming clients Simplified Web-Portal and last-resort configuration RF Auto
CUSTOMER RELEASE NOTES UPGRADING THE RBT-8XX0 SWITCHES FROM PREVIOUS 4.0.X VERSIONS: Minimum RAS Requirements for Upgrade Product RBT-8100 RBT-8200 RBT-8110, RBT-8210 RBT-8400 RBT-8500 Minimum RAS version required 4.0.4.0 4.1.4.0 4.2.5.1 4.0.16.0 6.0.5.1 Recommended Upgrade Path 6.0.7.2 7.0.7.x 6.0.7.2 7.0.7.x 6.0.7.2 7.0.7.x 6.0.7.2 7.0.7.x 6.0.7.2 7.0.7.x Note: You must upgrade to RAS Version 5.0 or later before upgrading to RAS Version 7.0.
CUSTOMER RELEASE NOTES 3. Copy the new system image onto a TFTP server. For example, login to http://www.enterasys.com/download/ using a web browser on your TFTP server and download the image onto the server. 4. Copy the new system image file from the TFTP server into a boot partition in the switch‘s nonvolatile storage. You can copy the image file only into the boot partition that was not used for the most recent restart.
CUSTOMER RELEASE NOTES Please refer to the chapter ―Managing with RoamAbout Switch Manager‖, section ―Distributing System Images‖ in the RoamAbout Switch Manager Management Guide when upgrading the RBT-8xx0 switch to the released version.
CUSTOMER RELEASE NOTES Management Parameters: Parameter: Maximum instances of the RoamAbout Software Management system simultaneously managing a network Telnet management sessions SSHv2 management sessions Telnet client sessions (client for remote login) NTP servers SNMP trap receivers Syslog servers RADIUS servers Supported Value: 3 RBT-81x0: 8 RBT-82x0: 8 RBT-8400: 8 RBT-8500: 8 Note: The maximum combined number of management sessions for Telnet and SSH together is 8 for the RBT-8400, RBT-81x0, and t
CUSTOMER RELEASE NOTES FIRMWARE CHANGES AND ENHANCEMENTS: Firmware Release 7.0.7.3: Resolved an issue where static WEP keys did not work for some service profiles. Resolved an SNMP error that caused an AP to become unresponsive. Resolved an issue where the RBT-8500 became unresponsive on the network. Resolved an issue where a large number of user sessions caused the Web portal login page to become inaccessible.
CUSTOMER RELEASE NOTES Firmware Release 7.0.5.6: Resolved an issue when using the active-scan feature triggered packet loss on legacy MPs/ RASs with older Intel wireless adaptors. Firmware Release 7.0.4.3: Resolved an issue where reloading a configuration with cluster mode enabled prevented RASM from determining the active seed. CAPWAP data plane UDP port changed from 5001 to 5247. Resolved an issue where the active-scan feature triggered packet loss on legacy APs with older Intel wireless adaptors.
CUSTOMER RELEASE NOTES Firmware Release 6.0.5.1: The 6.0.5.1 release now supports 25 ACL rules (ACEs) per ACL, total of inbound and outbound, to be mapped to the user if the AP has Direct Path Forwarding (Local Switching) enabled. There can be more than one ACL, with 25 ACEs, applied to multiple users on the AP. If an ACL with 26 or more rules is mapped to the user with Local Switching enabled, the users in the network will not connect or authenticate to that wireless network.
CUSTOMER RELEASE NOTES Firmware Release 6.0.4.2: Resolved an issue where an expired password could be used to log into the system. Resolved an issue where the APs may reset if the traffic load to the RAS host IP address exceeds 200Mb/s. Resolved an issue where the configured AP name is not shown in the SNMP trap. Resolved an issue where IP addresses were transposed in MIB queries that returned IP address information. Firmware Release 5.0.12.2: Added support for the TRPZ-MP-422 Access Point.
CUSTOMER RELEASE NOTES Firmware Release 5.0.11.4: When configuring the Web portal and saving the default login page, remove everything between the quotes in the Action value of the form tag in the HTML code. Resolved an issue where the Access Point buffers were filling up with Rogue Detection messages. Resolved an issue when a wireless client was previously connected to an SSID (WebAAA, last-resort), then switched to a new bonded auth SSID, the machine auth phase was skipped.
CUSTOMER RELEASE NOTES Firmware Release 5.0.9.2: Added support for the RBT-8210. This RAS, along with the current RBT-8200, will be known as the RBT-82x0 family. Resolved an issue where DAPs would reset with an ASSERT error, due to traffic spikes in the network. Resolved an issue where the RBT-1002-EU would crash with an ASSERT error after an image download. Resolved an issue where a custom web page was not displayed after the client successfully authenticated against the Access Point.
CUSTOMER RELEASE NOTES Firmware Release 4.2.5.1: Resolved an issue where ―set dap‖ commands would not return a ―succeed: changes accepted‖ notification. Resolved an issue where a switch reset with multiple core files after a system upgrade. Core resets were attributed to the enabling of rogue detection in the fabric. Firmware Release 4.1.11.0: Added support for the RBT-4102 North American Access Point. Resolved an issue where RBT-1602s would reset every 18 hours and report a fingerprint mismatch error.
CUSTOMER RELEASE NOTES Firmware Release 4.0.21.0: Resolved an issue where ACLs were not properly assigned to users due to the incorrect parsing of the Enterasys filter ID string (Enterasys:version=1:policy=) returned from a RADIUS server. The default MAC authentication RADIUS password has been changed from ‗nopassword‘ to ‗NOPASSWORD‘. Firmware Release 4.0.20.0: Added support for the RBT-1602 Access Point.
CUSTOMER RELEASE NOTES KNOWN RESTRICTIONS AND LIMITATIONS: Firmware Release 7.0.7.3: 802.11n adapter incompatibility with Spectralink Voice Protocol (SVP) enabled service profiles. Description — Some 802.11n wireless adapters may experience packet loss on wireless services with the Spectralink Voice Protocol enabled. This problem only exists when using the TRPZ-MP-432 with frame aggregation enabled. Workaround — When using SVP on the TRPZ-MP-432 disable frame aggregation.
CUSTOMER RELEASE NOTES Firmware Release 7.0.5.6: 802.11n adapter incompatibility with Spectralink Voice Protocol (SVP) enabled service profiles. Description — Some 802.11n wireless adapters may experience packet loss on wireless services with the Spectralink Voice Protocol enabled. This problem only exists when using the TRPZ-MP-432 with frame aggregation enabled. Workaround — When using SVP on the TRPZ-MP-432 disable frame aggregation. The aggregate throughput exceeds the bandwidth limit of the SSID.
CUSTOMER RELEASE NOTES Firmware Release 7.0.4.3: Using the auto-ap feature does not allow load-balancing on individual radios. Description — When using the auto-ap feature, it is not possible to set all of the AP attributes. Per AP load-balancing control is not supported on auto-ap. The system global settings for load-balancing apply to all auto-aps. Workaround — If you must configure a load-balance group for a specific AP, configure the AP as a regular AP.
CUSTOMER RELEASE NOTES Firmware Release 7.0.3.7: Voice handsets can be sensitive to changes on an in-service SSID. (41603) Description — Particular voice handsets are sensitive to changes made to an in-service SSID. This can result in the handset operating with stale connection information. Workaround — When using affected handsets, disable the Service Profile prior to making any configuration changes.
CUSTOMER RELEASE NOTES Firmware Release 6.0.7.2: Upgrading to RAS Version 6.0 and Certificate Issue: Customers may experience issues with Certificates or Private keys installed on RASes after upgrading to newer 5.0 and 6.0 releases. Error messages relating to this issue may include the following: - HTTPD Aug 14 16:32:13.648823 ERROR HTTPD: SSL connection failure (bad cert?); - Admin client 145.36.245.51 EAP Aug 14 16:32:14.110502 ERROR EAP_STORE_ERR: No EAP key pair.
CUSTOMER RELEASE NOTES Firmware Release 6.0.7.2: If a location policy (ACL) is added to an SSID that is using Web Authentication, the preconfigured portal ACL will be overwritten and fail to load the logon page. It is strongly recommended not to adjust settings on the preconfigured web portal ACL. Disabling the dot1x authcontrol function may cause authentication issues. This is a global setting, reaching many portions of the authentication code.
CUSTOMER RELEASE NOTES Groups Supported IEEE Encryption General IP Multicast Quality of Service 1/21/09 P/N: 9038177-27 F0615-O RFC No. / Title RFC 2548 RFC 2716 RFC 2759 RFC 2865 RFC 2866 RFC 2868 RFC 2869 RFC 2986 RFC 3580 RFC 3546 draft-josefsson-pppext-eap-tls-eap draft-kamath-pppext-peapv0-00.txt draft-kamath-pppext-eap-mschapv2 CHAP extensions v2 IEEE Std 802.1X-2001 IEEE Std 802.
CUSTOMER RELEASE NOTES STANDARD MIB SUPPORT: NOTE: MIB support for the RoamAbout System is for monitoring only.
CUSTOMER RELEASE NOTES Attribute: Vendor-Specific RFC Source: See table below RADIUS Accounting Attributes Attribute: Acct-Authentic Acct-Delay-Time Acct-Input-Gigawords Acct-Input-Octets Acct-Input-Packets Acct-Multi-Session-Id Acct-Output-Gigawords Acct-Output-Octets Acct-Output-Packets Acct-Session-Id Acct-Session-Time Acct-Status-Type RFC Source: RFC2866 RFC2866 RFC2866 RFC2866 RFC2866 RFC2866 RFC2866 RFC2866 RFC2866 RFC2866 RFC2866 RFC2866 Vendor Specific Attributes Attribute: Type, Vendor ID, Ven
CUSTOMER RELEASE NOTES SNMP Trap Description ClientDot1xFailureTraps ClientRoamingTraps CounterMeasureStartTraps Generated when a client experiences an 802.1X failure. Generated when a client roams. Generated when MSS begins countermeasures against a rogue access point. Generated when MSS stops countermeasures against a rogue access point. Generated when an AP whose fingerprint has not been configured in MSS establishes a management session with the switch.
CUSTOMER RELEASE NOTES SNMP Trap Description RFDetectUnAuthorizedSsidTraps Generated when an SSID that is not on the permitted SSID list is detected. Generated to indicate an AP radio is nonoperational. Generated when the status of an AP radio changes. ApNonOperStatusTraps ApOperRadioStatusTraps GLOBAL SUPPORT: By Phone: 978-684-1000 1-800-872-8440 (toll-free in U.S. and Canada) For the Enterasys Networks Support toll-free number in your country: http://www.enterasys.
