Alcatel-Lucent 6850, 9000, 6800 user manual Authenticated VLANs, Policy Server Management

Page 77

Open Problem Reports and Feature Exceptions

Authenticated VLANs

Problem Reports

PR 87642

On an OS6800, the CLI command to specifically disable 802.1x or AVLAN authentication on a port will disable either of the authentication options configured on the port.

Workaround: There is no known workaround at this time.

PR 98369

DHCP is not supported with port-binding AVLANs on OS6800/OS6850. When DHCP packets are used to trigger the port binding rules, none of the rules work.

Workaround: There is no known workaround at this time.

PR 106976

When DHCP Snooping's IP Source Filtering is enabled on the Authenticated VLAN port of an OS6850, the authentication (via Telnet or HTTP) will fail.

Workaround: Cannot enable IP Source Filtering on AVLAN ports, since IP Source Filtering (work as expected) is blocking the IP traffic.

Policy Server Management

Problem Reports

PR 103324

An OS6850 will not change the IP address automatically even if the supplicant client is running that can automatically do the ipconfigure release and renew when dynamically changing classification policy when an IP net rule is configured. Depending on what traffic is running, some packets may satisfy the IP net rule and the supplicant will be classified according to the IP net rule.

Workaround: User has to be aware that when the IP net rule is configured and when dynamically chang- ing the classification policy that as group mobility as one of the classification option, traffic from suppli- cant may still have the old IP address on the vlan that the supplicant was classified before the policy is changed. The IP net rule will cause the client to be learned on the vlan that it was previously learned on. E.g. supplicant is learned on vlan x and has an IP address with vlan x's subnet. There is also an IP net rule for vlan x's IP to be classified on vlan x. When user dynamically changes the classification policy, the supplicant may still be learned on vlan x because the PC has traffic coming out with VLAN x's subnet and thus device classification task will classify the supplicant on VLAN x again.

OmniSwitch 6800/6850/9000—Release 6.1.3.R01

page 77

Image 77
Contents Page Related Documentation OmniSwitch 6800 Series Getting Started guideUpgrade Instructions for 6.1.3.R01 OmniSwitch 6850 Series OmniSwitch 6800 SeriesOmniSwitch 9000 Series Memory RequirementsNew Hardware Supported OS9800-CMM New Chassis Management Module CMMOmniSwitch 9600 Support for PS-510W AC/PS-360W AC OmniSwitch 9000 OS-IP-SHELF PoE Power ShelfGigabit Ethernet Transceiver SFP MSA Dual Speed Ethernet Transceivers100FX Ethernet Transceivers 3.R01 Supported Hardware/Software CombinationsModule Type Part Number Asic Physical Feature Platform Software Package New Software FeaturesVlan Range Support BGP4 Software SupportedPIM-SM 802.1x Device Classification Access Guardian 802.1W Rstp Default802.1Q 802.1Q 2005 MstpAccess Control Lists ACLs for IPv6 Access Control Lists ACLsACL & Layer 3 Security Source ipv6 destination ipv6 ipv6 Nh next header flow-labelACL Manager Automatic Vlan Containment AVC Authenticated Switch AccessAuthenticated VLANs BGP Graceful Restart Basic IPv4 RoutingBpdu Shutdown Ports Command Line Interface CLIDhcp Relay Dhcp Option-82 Relay Agent Information OptionEnd User Partitioning Eupm DNS ClientDynamic Vlan Assignment Mobility Ethernet Interfaces HTTP/HTTPS Port ConfigurationGeneric UDP Relay Health StatisticsIP DoS Enhancements Interswitch Protocol AmapIP Multicast Switching Ipms IPv6 NPD IP Multicast Switching Ipms ProxyingIP Route Map Redistribution L2 Dhcp Snooping IPX RoutingL2 MAC Address Table Size Enhancement L2 Static Multicast AddressesMulticast Routing Learned Port Security LPSLink Aggregation static & 802.3ad OSPFv2/OSPFv3 MultinettingNTP Client Policy Based Routing Permanent Mode Partitioned Switch ManagementPer-VLAN Dhcp Relay Policy Server ManagementQuality of Service QoS Power over Ethernet PoEPort Mapping Port MirroringRouting Protocol Preference Redirect Policies Port and Link AggregateRouter Discovery Protocol RDP Secure Copy SCP Secure Shell SSH Public Key AuthenticationSecure Shell SSH SSH Software Supported Operating SystemsSmart Continuous Switching OmniSwitch Smart Continuous Switching OmniSwitch 6800/OmniSwitchServer Load Balancing SLB SFlowSoftware Rollback Source LearningText File Configuration Switch LoggingSpanning Tree Syslog to Multiple HostsVlan Range Support User Definable Loopback InterfaceVlan Stacking and Translation VRRPv2/VRRPv3Web-Based Management WebView Trap Name Platforms Description Supported TrapsTrap Name Platforms Description Sion which was active on a slot cannot Trap Name Platforms Description Table gets dropped due to the overload Software Feature Unsupported CLI Commands Unsupported Software FeaturesUnsupported CLI Commands RIP MIB Name Unsupported MIB variables Alcatel IND1AAA Unsupported MIBsAlcatel IND1Bgp Alcatel IND1LAGAlcatelIND1Slb MIB Name Unsupported MIB variables AlcatelIND1QoSAlcatelIND1VlanManager MIB Name Unsupported MIB variablesIetfsnmp Problem Reports Open Problem Reports and Feature ExceptionsCommand Line Interface CLI SFlow RmonWeb-Based Management WebView Feature ExceptionsOpen Problem Reports and Feature Exceptions Open Problem Reports and Feature Exceptions Autonegotiation LayerBridging Ethernet Interfaces Open Problem Reports and Feature Exceptions Group Mobility IP Multicast Switching IpmsPort Mirroring/Monitoring Link AggregationSource Learning Open Problem Reports and Feature Exceptions Open Problem Reports and Feature Exceptions Spanning Tree Open Problem Reports and Feature Exceptions Vlan Stacking Dhcp Snooping Basic IP RoutingIPv6 Open Problem Reports and Feature Exceptions UDP Relay Server Load Balancing SLBAdvanced Routing OSPFv3 DvmrpPIM General Quality of Service includes ACLsPolicy Manager Security 802.1x Authenticated Switch Access Policy Server Management Authenticated VLANsSystem Open Problem Reports and Feature Exceptions Chassis Supervision Open Problem Reports and Feature Exceptions Power Over Ethernet Open Problem Reports and Feature Exceptions Redundancy / Hot Swap Hot Swap Time Limitations for OmniSwitchOpen Problem Reports and Feature Exceptions Region Phone Number Technical Support