In addition, the stacking switch supports StackPower, which allows the power supplies to share the load across multiple systems in a stack. By connecting the switches with power stack cables, you can manage the power supplies of up to four stack members as a one large power supply that provides power to all switches and to the powered devices connected to switch ports.
Switches in a power stack must be members of the same switch data stack. Use the following commands to configure CDP bypass:. Switch configure terminal. Switch config-if switchport mode access. Switch config-if authentication port-control auto. Switch config-if authentication host-mode single multi-host. Switch config-if dot1x pae authenticator.
The following CLI is added under the webauth parameter map:. Therefore, any other user using the device also gets the same policies as the user stored in the sleeping-client cache. The user can force normal authentication by logging out. To do that, the user must explicitly enter the following URL:. If the client roams from one controller to another, the client undergoes normal authentication on the foreign controller. Switch show ap is-supported ap-model-part-number. Stackable 12 SFP module slots, 1 network module slot, W power supply.
Stackable 24 SFP module slots, 1 network module slot, W power supply. Stackable, 2 SFP module slots, 1 network module slot, W power supply. Stackable, 24 SFP module slots, 1 network module slot, W power supply. Table 3 lists the three optional uplink network modules with 1-Gigabit and Gigabit slots. You should only operate the switch with either a network module or a blank module installed.
Table 3 Supported Network Modules. This module has four 1 G SFP module slots. Any combination of standard SFP modules are supported. Note This is supported on the following switch models:. This module has four 10 G slots or four 1 G slots. Each port supports a 1 G or 10 G connection. Table 4 Catalyst Switch Models. Catalyst switches support a wide range of optics. Because the list of supported optics is updated on a regular basis, consult the tables at this URL for the latest SFP compatibility information:.
Cisco Wireless Controller for up to 25 Cisco access points. Cisco Wireless Controller for up to 50 Cisco access points. Cisco Wireless Controller for up to Cisco access points. Table 6 lists the supported products of the Catalyst Switch. Table 6 Catalyst Switch Supported Products. Cisco Aironet , W, , , , , , , , , , , , Table 7 lists the specific supported Cisco access points. Table 7 Supported Access Points.
Table 8 lists the software compatibility matrix. Table 8 Software Compatibility Matrix. Therefore, we recommend that you upgrade to MSE 8. Cisco WLC Release 7. Prime Infrastructure 2. For more information on the compatibility of wireless software components across releases, see the Cisco Wireless Solutions Software Compatibility Matrix.
The OVA package is available for download in the same location as your system image. Note The OVA package is compatible only with its corresponding system image file name - as listed in the table below.
Do not use an older version of the OVA package with a newer system image file, or a newer OVA package with an older system image file. You can use the show version privileged EXEC command to see the software version that is running on your switch. Note Although the show version output always shows the software image running on the switch, the model name shown at the end of this display is the factory configuration and does not change if you upgrade the software license. You can also use the dir filesystem : privileged EXEC command to see the directory names of other software images that you might have stored in flash memory.
After a successful authentication on the WebAuth login page, the original requested URL opens in a pop-up window and not on the parent page. To download a sample Web Authentication bundle, follow these steps:. Step 5 Choose Release 3. Step 6 After the download, follow the instructions provided in the Read Me file that is attached in the bundle.
Before upgrade, generate the server key using the crypto key generate rsa command in global configuration mode. To verify whether the RSA server key is available on your device, run the show crypto key command. Note In a High Availability scenario, if you download the Web Authentication bundle to the active controller, the bundle cannot be synchronized with the standby controller.
Therefore, we recommend that you also manually download the Web Authentication bundle to the standby controller. Do not restart the switch during the upgrade or downgrade process. With Cisco IOS 3. It does not occur during switch reloads or on non-PoE switches. The Catalyst switch supports three different feature sets:.
Note A separate access point count license is required to use the switch as a wireless controller. For more information about the features, see the product data sheet at this URL:.
This section describes the interoperability of this version of the switch software release with other client devices. Table 12 lists the client types on which the tests were conducted. The clients included laptops, handheld devices, phones, and printers. The Bug Search Tool BST , which is the online successor to Bug Toolkit, is designed to improve the effectiveness in network risk management and device troubleshooting.
The BST allows partners and customers to search for software bugs based on product, release, and keyword, and aggregates key data such as bug details, product, and version. The tool has a provision to filter bugs based on credentials to provide external and internal bug views for the search input. To view the details of a caveat listed in this document:. Enter the bug ID in the Search For: field.
Traffic not recovered over cts link after hot swap of uplink. SFP port detect link-flap error and it's in error-disabled state on Traceback seen after switchover with SPAN configuration. Catalyst - Port-security may interfere with spantree bpdu guard. PD's not getting PoE on multiple interfaces in stack. Storm-control configured on port-channel cannot reflect to member link. High CPU observed in punjectrx fed-ots-main thread.
Cs in stack don't return ports when polled through SNMP. Cat interface don't up when "speed nonegotiate" is applied. Port security mac address not aging out when relearned from a Channel. IGMPv2 leave messages sent back to ingress intferface. Output drops and Output errors increment simultaneously in show interfaces.
Ten gig links gets err-disable after "UDLD enable" on Duplex is full one end and half on the other with speed nonegotiate. Cat reports "Error, ECI has run out of event blocks" message. CWS not associating CN with nested groups when "," comma is used. Cat stack standby side span broken after reloading the stack.
Q-in-Q configured on stack is not working appropriately. Cat crash while executing "no queue-limit" command. Multicast packet drop seen after switchover for sec.
DHCP client in native vlan do not receive an ip address. MAC filtering option "None" sends blank password. Webauth : switch crash on config 'custom-web fail page file Faill. Stdby or member switch crash , process auth manager. IOS-XE unable to parse automate-tester cmd after save, gone after reload. BW of interfaces port-channel shows wrong after master switch down. Mab is not taking priority over dot1x in concurrent authentication.
Same port name displays in lower and upper case during OpenFlow configuration. MAC address being learnt on an individual Port-channel member interface. Switch reboots when SPAN configured under "cts manual". Cat3k: OF: Vlan strip action doesnot work for ipv6 packets. Traffic is dropped due to static mac entry on foreign interface. TCP connection cannot be established with Openflow agent due to. Enqueue should work even after applying qos policy on OF port.
Flows are not prgrmd in PD after consecutive clearopenflow switch1 cntrl. While a general purpose specification file entry may not be possible, a specification file entry might be created that returns the desired text by searching for text that is guaranteed to be in the output. If a string is guaranteed to be in the output, it can be used for parsing. The first line is easily parsed because access list is guaranteed to be in the output:.
The remaining lines all contain the term host. As a result, the specification file may report the desired values by specifying that string. For example, this line. This is useful when the desired lines contain nothing in common. For example, the rules in this access list do not contain a common string and the order three permits, then a deny, then another permit , prevent the spec file entry from using permit as a search string, as in the following example:.
The XML output of show running-config command includes the following, which can then be parsed programmatically, as desired:. Workaround: Define a policy-map with a different name and then reattach. Workaround: Use the dir device command for example, dir bootflash: to obtain the correct file count. This is caused by the large number of updates generating SPI messages that must be processed by the CPU to ensure that the platform is updated with the changes in all the entries.
You cannot clear a large number of mroutes at one time when traffic is still running. Workaround: Use the show version command. Workaround: Select an alternate destination or source port. Workaround: Configure both dead-criteria and deadtime. Workaround: Do not use the quick option with the issu changeversion command. You will not experience this behavior with IPv4 access lists. This applies to QoS policing only.
QoS marking, shaping and sharing behave as expected. Workaround: Observe the show module command output. Workaround: None. QoS groups are not supported in VSS.
These messages are cosmetic only, and no ssh services are available unless configured within IOS. Caveats describe unexpected behavior in Cisco IOS releases. Caveats listed as open in a prior release are carried forward to the next release as either open or resolved.
The Bug Search Tool BST , which is the online successor to Bug Toolkit, is designed to improve the effectiveness in network risk management and device troubleshooting. The BST allows partners and customers to search for software bugs based on product, release, and keyword, and aggregates key data such as bug details, product, and version. The tool has a provision to filter bugs based on credentials to provide external and internal bug views for the search input.
To view the details of a caveat listed in this document:. Enter the bug ID in the Search For: field. Loading 3. Modifying default flow through controller has issues. Use the Bug Search Tool to view the details of a caveat listed in this section:. Same port name displays in lower and upper case during OpenFlow configuration. Openflow config shows up multiple times in show running.
Acct messages should include Class attribute from authentication. Truncated output of 'show platform cpu packet buffered'. Optical tx power output detected on admin down port of CX. OpenFlow flow statistics do not work after line card reset. ISSU upgrade failed between 3. Default flow shows big value for packets on bootup. The show openflow hardware capabilities command displays wrong values. Open flow CLI commands are not working with daughter card enabled.
The last heard time of rogue does not match the system clock. WS-CX with 3. Call-home message fails; returns "Unknown" serial number. Single bit error corrected on Sup7-E is inadvertently logged in syslog. The switch reloads while modifying static mac address-table entry. Switch crashes with critical software exception during config push. Switch sent Failure packet after reboot and caused PC to fail authen.
DHCP client doesn't work on management interface fa1. File table overflow: private-config file open fails. Cat4k crashes at EPM after executing show ip device tracking all. Multicast and broadcast SNMP counters are not populated for some interf. HA fails due to Bulk sync failure with encypted password. Refer to the following documents for additional Catalyst series information:. Installation guides and notes including specifications and relevant safety information are available at the following URLs:.
Software release notes, configuration guides, command references, and system message guides are available at the following URLs:.
These documents are available at the following URLs:. You can also use the Error Message Decoder tool at:. Commands listed in task tables show only the relevant information for completing the task and not all available options for the command. The following notices pertain to this software license. This product includes cryptographic software written by Eric Young eay cryptsoft.
This product includes software written by Tim Hudson tjh cryptsoft. The OpenSSL toolkit stays under a dual license, i. See below for the actual license texts. In case of any license issues related to OpenSSL please contact openssl-core openssl. All rights reserved.
Redistribution and use in source and binary forms, with or without modification, are permitted provided that the following conditions are met:. Redistributions of source code must retain the copyright notice, this list of conditions and the following disclaimer. For written permission, please contact openssl-core openssl. Redistributions of any form whatsoever must retain the following acknowledgment:. The implementation was written so as to conform with Netscapes SSL.
This library is free for commercial and non-commercial use as long as the following conditions are adhered to.
The SSL documentation included with this distribution is covered by the same copyright terms except that the holder is Tim Hudson tjh cryptsoft. If this package is used in a product, Eric Young should be given attribution as the author of the parts of the library used.
This can be in the form of a textual message at program startup or in documentation online or textual provided with the package. All advertising materials mentioning features or use of this software must display the following acknowledgment:. The license and distribution terms for any publicly available version or derivative of this code cannot be changed. Product Number. Feature Name. Device config-if authentication port-control auto. Device config-if authentication host-mode single multi-host.
Access Points and Mobility Services Engine Table 9 lists the supported products for the wireless features. Table 9 Supported Wireless Products Product.
Compatibility Matrix Table 11 lists the software compatibility matrix. Interoperability with Other Client Devices This section describes the interoperability of this version of the switch software release with other client devices.
Important Notes Software expand running command is not available. We recommend that you use software expand file command instead. Redundancy mode rpr is not available in wireless enabled mode.
Status Success :. Daughter Card is booting.. Please stand by Daughter Card is ready, continuing in wireless mode.. License level incompatible to bring up daughtercard.
Activate ipbase or entservices license to enable daughtercard. File has bad file magic number: 0x0. Is it a valid file? Link Speed : Mb Full Duplex. MD5 : a32df24fdfcf20d83cf Unsigned image, or verification is disabled! The maximum MTE supported on Catalyst switches is , per direction. Although the show memory command is supported on Catalyst series switches, the CLI output for the command shows the value 0 for conf ig total, on Catalyst series switches using a daughter card on Supervisor Engine 7-E.
This issue is, however, not seen on switches with Supervisor Engine 7-E baseboard. Indirectly connected access points are not supported.
Only access points directly connected to a trunk or access port is supported. On connecting more than one AP the following error message will be seen: 3. Flow Sampling is not supported on Supervisor Engine 8-E. This is not an valid scenario. Wired guest access does not work on Supervisor Engine 8-E, in multi-host or multi-authentication mode.
The show exception files all command lists only crashinfo files from the active supervisor engine. You must issue the dir slavecrashinfo: and dir slvecrashinfo-dc: commands to obtain lists of crashinfo files from the standby supervisor engine. More than 16K QoS policies can be configured in software. Only the first 16K are installed in hardware. Adjacency learning through ARP response frames is restricted to roughly new adjacencies per second, depending on CPU utilization.
This should only impact large networks on the first bootup. After adjacencies are learned they are installed in hardware. In a topology where reverse path check failure occurs with IPv6 multicast, this may cause high CPU utilization on the switch. Although the activated feature set for a universal image varies based on the installed feature license, the value displayed by this object is fixed and is not based on the feature license level.
Workaround 1 : While a general purpose specification file entry may not be possible, a specification file entry might be created that returns the desired text by searching for text that is guaranteed to be in the output. Snowtrooper controller 0xE.. Calculating module dependencies Loading gsbu64atomic as gdb64atomic. To view the details of a caveat listed in this document: 1.
0コメント