Manualshelf

Specifications

ManualsBrandsExtreme Networks ManualsComputer equipmentMSM-3
51525354555657585960
Clarifications and Known Behaviors
ExtremeWare 7.1.1 Release Notes 51
Cisco Interoperation
For proper Cisco interoperation, use Cisco IOS version 11.3 or better, which supports PIM 2.0. Cisco
customer support also recommends using PIM in favor of DVMRP whenever possible on Cisco routers
(4669).
Traffic Rate Exceeding Last Hop Threshold
When the traffic rate exceeds the configured last hop threshold, the last hop does not initialize; but if
the sending traffic rate is set to 50 Kbps, it switches to STP correctly (1-57NMY).
Security and Access Policies
EAP-Failure Messages Not Sent When Client is Unauthenticated by an Administrator
If an 802.1x supplicant MAC is forced into the unauthenticated state by an administrator, an
EAP-Failure message is not sent to the client. Using the
clear netlogin state, disable port, or
restart port commands can force the client into the unauthenticated state. If this happens, the client
is not authenticated, but some 802.1x client applications appear to be authenticated and can cause
confusion in troubleshooting. This problem does not occur if the client logs off (PD2-160278605).
Logout Privilege is Enabled in Downloaded Configurations
If you configure web-based network login with the session refresh feature enabled and the logout
privilege feature disabled, then download the configuration, the logout privilege feature is
automatically enabled. To work around this, download the configuration and manually disable logout
privilege (PD2-160278607).
Do Not Upload a Configuration Containing Authenticated Clients
In network login campus mode, do not save and upload a configuration containing authenticated
clients. Doing so can corrupt the configuration. To back up a configuration:
1 Disable network login using the
disable netlogin command.
2 Unauthenticate all client ports using the
clear netlogin state ports vlan command.
3 Verify that all ports are unauthenticated using the
show netlogin and show vlan commands.
4 Save the configuration using the
save configuration command.
5 Upload the configuration to your backup server using the
upload configuration command.
When you download this configuration, remember to enable network login (PD2-142190901).
The show netlogin Output Might Display Wrong Authentication
If you disable network login, the output of the show netlogin command incorrectly displays all
existing authenticated 802.1x clients as HTTP. If you enable network login again, the display corrects.
This is cosmetic, and does not affect the actual authentication (PD2-171477134).
ICMP Access Lists and ignore-overlap
The ignore-overlap feature is not supported with ICMP access lists. Use precedence to manage
overlapping. If you specify
ignore-overlap when you create an ICMP access list but do not specify a
precedence number, a precedence of 0 is assigned. In addition, the ICMP access list gives the highest