Authenticated VLANs, Policy Server Management | Alcatel-Lucent 6850

Open Problem Reports and Feature Exceptions

Authenticated VLANs

Problem Reports

PR 87642

On an OS6800, the CLI command to specifically disable 802.1x or AVLAN authentication on a port will disable either of the authentication options configured on the port.

Workaround: There is no known workaround at this time.

PR 98369

DHCP is not supported with port-binding AVLANs on OS6800/OS6850. When DHCP packets are used to trigger the port binding rules, none of the rules work.

Workaround: There is no known workaround at this time.

PR 106976

When DHCP Snooping's IP Source Filtering is enabled on the Authenticated VLAN port of an OS6850, the authentication (via Telnet or HTTP) will fail.

Workaround: Cannot enable IP Source Filtering on AVLAN ports, since IP Source Filtering (work as expected) is blocking the IP traffic.

Policy Server Management

Problem Reports

PR 103324

An OS6850 will not change the IP address automatically even if the supplicant client is running that can automatically do the ipconfigure release and renew when dynamically changing classification policy when an IP net rule is configured. Depending on what traffic is running, some packets may satisfy the IP net rule and the supplicant will be classified according to the IP net rule.

Workaround: User has to be aware that when the IP net rule is configured and when dynamically chang- ing the classification policy that as group mobility as one of the classification option, traffic from suppli- cant may still have the old IP address on the vlan that the supplicant was classified before the policy is changed. The IP net rule will cause the client to be learned on the vlan that it was previously learned on. E.g. supplicant is learned on vlan x and has an IP address with vlan x's subnet. There is also an IP net rule for vlan x's IP to be classified on vlan x. When user dynamically changes the classification policy, the supplicant may still be learned on vlan x because the PC has traffic coming out with VLAN x's subnet and thus device classification task will classify the supplicant on VLAN x again.

OmniSwitch 6800/6850/9000—Release 6.1.3.R01

page 77

Image 77

Alcatel-Lucent 6850, 9000, 6800 user manual Authenticated VLANs, Policy Server Management

Contents

Page Related Documentation OmniSwitch 6800 Series Getting Started guide Upgrade Instructions for 6.1.3.R01 OmniSwitch 6850 Series OmniSwitch 6800 SeriesOmniSwitch 9000 Series Memory Requirements New Hardware Supported OS9800-CMM New Chassis Management Module CMM OmniSwitch 9600 Support for PS-510W AC/PS-360W AC OmniSwitch 9000 OS-IP-SHELF PoE Power ShelfGigabit Ethernet Transceiver SFP MSA Dual Speed Ethernet Transceivers 100FX Ethernet Transceivers 3.R01 Supported Hardware/Software CombinationsModule Type Part Number Asic Physical Feature Platform Software Package New Software Features Vlan Range Support BGP4 Software Supported PIM-SM 802.1x Device Classification Access Guardian 802.1W Rstp Default802.1Q 802.1Q 2005 Mstp Access Control Lists ACLs for IPv6 Access Control Lists ACLsACL & Layer 3 Security Source ipv6 destination ipv6 ipv6 Nh next header flow-label ACL Manager Automatic Vlan Containment AVC Authenticated Switch AccessAuthenticated VLANs BGP Graceful Restart Basic IPv4 Routing Bpdu Shutdown Ports Command Line Interface CLIDhcp Relay Dhcp Option-82 Relay Agent Information Option End User Partitioning Eupm DNS ClientDynamic Vlan Assignment Mobility Ethernet Interfaces HTTP/HTTPS Port ConfigurationGeneric UDP Relay Health Statistics IP DoS Enhancements Interswitch Protocol AmapIP Multicast Switching Ipms IPv6 NPD IP Multicast Switching Ipms ProxyingIP Route Map Redistribution L2 Dhcp Snooping IPX RoutingL2 MAC Address Table Size Enhancement L2 Static Multicast Addresses Multicast Routing Learned Port Security LPSLink Aggregation static & 802.3ad OSPFv2/OSPFv3 MultinettingNTP Client Policy Based Routing Permanent Mode Partitioned Switch ManagementPer-VLAN Dhcp Relay Policy Server Management Quality of Service QoS Power over Ethernet PoEPort Mapping Port Mirroring Routing Protocol Preference Redirect Policies Port and Link AggregateRouter Discovery Protocol RDP Secure Copy SCP Secure Shell SSH Public Key AuthenticationSecure Shell SSH SSH Software Supported Operating Systems Smart Continuous Switching OmniSwitch Smart Continuous Switching OmniSwitch 6800/OmniSwitchServer Load Balancing SLB SFlow Software Rollback Source Learning Text File Configuration Switch LoggingSpanning Tree Syslog to Multiple Hosts Vlan Range Support User Definable Loopback InterfaceVlan Stacking and Translation VRRPv2/VRRPv3 Web-Based Management WebView Trap Name Platforms Description Supported Traps Trap Name Platforms Description Sion which was active on a slot cannot Trap Name Platforms Description Table gets dropped due to the overload Software Feature Unsupported CLI Commands Unsupported Software FeaturesUnsupported CLI Commands RIP MIB Name Unsupported MIB variables Alcatel IND1AAA Unsupported MIBsAlcatel IND1Bgp Alcatel IND1LAG AlcatelIND1Slb MIB Name Unsupported MIB variables AlcatelIND1QoS AlcatelIND1VlanManager MIB Name Unsupported MIB variables Ietfsnmp Problem Reports Open Problem Reports and Feature ExceptionsCommand Line Interface CLI SFlow Rmon Web-Based Management WebView Feature Exceptions Open Problem Reports and Feature Exceptions Open Problem Reports and Feature Exceptions Autonegotiation Layer Bridging Ethernet Interfaces Open Problem Reports and Feature Exceptions Group Mobility IP Multicast Switching Ipms Port Mirroring/Monitoring Link Aggregation Source Learning Open Problem Reports and Feature Exceptions Open Problem Reports and Feature Exceptions Spanning Tree Open Problem Reports and Feature Exceptions Vlan Stacking Dhcp Snooping Basic IP Routing IPv6 Open Problem Reports and Feature Exceptions UDP Relay Server Load Balancing SLB Advanced Routing OSPFv3 Dvmrp PIM General Quality of Service includes ACLs Policy Manager Security 802.1x Authenticated Switch Access Policy Server Management Authenticated VLANs System Open Problem Reports and Feature Exceptions Chassis Supervision Open Problem Reports and Feature Exceptions Power Over Ethernet Open Problem Reports and Feature Exceptions Redundancy / Hot Swap Hot Swap Time Limitations for OmniSwitch Open Problem Reports and Feature Exceptions Region Phone Number Technical Support