Table Of Contents
Release Notes for Cisco Aironet 340 and 350 Series Access Points and 350 Series Bridges
February 16, 2002
These release notes describe features and caveats for Cisco Aironet 340 and 350 Series Access Points and 350 Series Bridges running firmware version 11.07a. Firmware version 11.07a fixes these defects: CSCdw63011, CSCdw63031, and CSCdw63032.
Cisco Aironet access points are wireless LAN transceivers that can act as the center point of a standalone wireless network or as the connection point between wireless and wired networks. Cisco Aironet bridges are wireless LAN transceivers that connect two or more remote networks into a single LAN. The 350 series bridge can also be used as a rugged access point, providing network access to wireless client devices.
The access point and bridge use a browser-based management system. The system settings are on web pages in the system firmware. You use your internet browser to view and adjust the system settings.
This section describes new software features in firmware version 11.07, which are also included in version 11.07a.
Reset to Factory Defaults with New Reset-All Procedure
The procedure for resetting the access point configuration to default settings for firmware versions 11.06 and earlier sometimes disabled the access point by deleting the access point's installation key. The simplified reset procedure for version 11.07 prevents lost installation keys. Refer to the "Resetting to the Default Configuration" section on page 9-38 in the Cisco Aironet Access Point Software Configuration Guide for complete instructions on resetting the configuration to factory defaults.
Observe Radio Activity with Carrier Test
The carrier test tool measures the amount of radio activity on each frequency available to the access point. Use the carrier test to determine the best frequency for the access point to use. Refer to the "Carrier Test" section on page 9-5 in the Cisco Aironet Access Point Software Configuration Guide for more information on conducting a carrier test.
Align Antennas with Antenna Alignment Test
The antenna alignment tool displays constantly updated information on the strength and quality of signal between repeater access points and other wireless networking devices. Refer to the "Antenna Alignment Test" section on page 9-3 in the Cisco Aironet Access Point Software Configuration Guide for more information on conducting an antenna alignment test.
Assign Ports to Maintain Consistent Network Topology
Use the Port Assignments page to assign specific network ports to repeater access points. Refer to the Cisco Aironet Access Point Software Configuration Guide for more information on assigning network ports. Refer to the "Assigning Network Ports" section on page 5-14 in the Cisco Aironet Access Point Software Configuration Guide for more information on on assigning network ports.
Locate Access Point with Blinking Indicators
If you need to find the physical location of a particular access point, you can put the top panel indicators into blinking mode. Refer to the "Finding an Access Point by Blinking the Top Panel Indicators" section on page 9-34 in the Cisco Aironet Access Point Software Configuration Guide for more information on using blinking mode.
Limit Associations to the Access Point
You can set a limit on the number of associations the access point accepts. Refer to the Cisco Aironet Access Point Software Configuration Guide for more information on setting a maximum number of associations to the access point. Refer to the "Maximum Number of Associations" section on page 3-31 in the Cisco Aironet Access Point Software Configuration Guide for more information on setting maximum associations.
Limit Autoscan Channels
When you enable the Search for less-congested radio channel option, the access point scans for the radio channel that is least busy and selects that channel for use. You now can limit the channels the access point scans. Refer to the Cisco Aironet Access Point Software Configuration Guide for more information on limiting the channels the access point scans when searching for a less-congested channel. Refer to the "Restrict Searched Channels" section on page 3-26 in the Cisco Aironet Access Point Software Configuration Guide for more information on on limiting autoscan channels.
You can find the latest release of access point firmware at the following URL:
Caution The operational voltage range for Cisco Aironet 350 Series Access Points is 24 to 60 VDC, and the nominal voltage is 48 VDC. Higher voltage can damage the equipment.
Caution Cisco Aironet power injectors are designed for use only with Cisco Aironet 350 Series Access Points and Bridges. Do not use the power injector with any other Ethernet-ready device. Using the power injector with other Ethernet-ready devices can damage the equipment.
You must have a Cisco Aironet 340 or 350 series access point to install firmware version 11.07a.
Your access point must be running firmware version 10.x or later to install firmware version 11.07a.
Upgrading to a New Firmware Release
Determining the Firmware Version
The firmware version number is in the upper-left corner of most management screens in the web-browser interface and at the top of the home (Summary Status) page in the command-line interface.
For instructions on installing access point firmware:
1. Follow this link to the Cisco Aironet documentation home page:
2. Follow this link to the product, document and chapter:
Aironet 350 Series Wireless LAN Products > Cisco Aironet 350 Series Access Points > Cisco Aironet Access Point Software Configuration Guide > Maintaining Firmware > Updating Firmware
3. Follow this link to the Software Center on Cisco.com and download firmware version 11.07a:
Note To upgrade firmware from a file server, you must enter settings on the access point's FTP Server Setup page. Refer to the Cisco Aironet Access Point Software Configuration Guide for more information.
Limitations and Restrictions
Removing Power During Firmware Update Can Corrupt Radio Firmware
When you update the firmware on an access point, allow the unit to finish its start-up sequence before removing power. If you update the firmware and remove power before the access point finishes the start-up sequence, the radio firmware might be corrupted, making the unit inoperable. If the radio firmware is corrupted, the radio indicator (the bottom of the three indicators on top of the access point) lights solid red and the following error message appears when the access point starts up:
Failed to start driver for port "awc0" (errno=0x006d0002)
If the access point's radio firmware is corrupted, you must return the unit to Cisco for service.
You can safely remove power after a firmware update when the configuration management pages reappear in the command-line or web-browser interfaces, or when the three status indicators on top of the access point complete the following pattern:
1. All three indicators are solid green, meaning that the access point is beginning to update the firmware.
2. The middle indicator is solid green and the top and bottom indicators are off, indicating that the access point is updating the radio firmware.
When the middle indicator blinks or the top and bottom indicators blink, you can remove power.
EAP Authentication Requires Matching 802.1x Protocol Drafts
Note This section applies to wireless networks set up to use LEAP. If you do not use LEAP on your wireless network, you can skip this section.
Wireless client devices use Extensible Authentication Protocol (EAP) to log onto a network and generate a dynamic, client-specific WEP key for the current logon session. If your wireless network uses WEP without EAP, client devices use the static WEP keys entered in the Aironet Client Utilities.
If you use Network-EAP authentication on your wireless network, your client devices and access points must use the same 802.1x protocol draft. For example, if the radio firmware on the client devices that will associate with an access point is 4.16, then the access point should be configured to use Draft 8 of the 802.1x protocol. Table 1 lists firmware versions for Cisco Aironet products and the draft with which they comply.
Table 1 802.1x Protocol Drafts and Compliant Client Firmware
Firmware Version Draft 7 Draft 8 Draft 10 1
PC/PCI cards 4.13
PC/PCI cards 4.16
PC/PCI cards 4.23
PC/PCI cards 4.25 and later
WGB34x/352 8.61 or later
AP34x/35x 11.05 and earlier
AP34x/35x 11.06 and later2
AP34x/35x 11.07a and later
1 The functionality in Draft 10 is equivalent to the functionality in Draft 11, the ratified draft of the 802.1x standard.
2 The default draft setting in access point and bridge firmware version 11.06 and later is Draft 10.
Note Draft standard 8 is the default setting in firmware version 11.05 and earlier, and it might remain in effect when you upgrade the firmware to version 11.06 or later. Check the setting on the Authenticator Configuration page in the management system to make sure the best draft standard for your network is selected.
Use the Authenticator Configuration page in access point firmware version 11.07a to select the draft of the 802.1x protocol the access point's radio should use. Follow these steps to set the draft for your access point:
Step 1 Browse to the Authenticator Configuration page in the access point management system.
a. On the Summary Status page, click Setup.
b. On the Setup page, click Security.
c. On the Security Setup page, click Authentication Server.
Step 2 Use the 802.1x Protocol Version (for EAP authentication) pull-down menu to select the draft of the 802.1x protocol the access point's radio should use. Menu options include:
•Draft 7—No radio firmware versions compliant with Draft 7 have LEAP capability, so you should not need to select this setting.
•Draft 8—Select this option if LEAP-enabled client devices that associate with this access point use radio firmware versions 4.13, 4.16, or 4.23.
•Draft 10—This is the default setting in access point firmware versions 11.06 and later. Select this option if client devices that associate with this access point use Microsoft Windows XP EAP authentication or if LEAP-enabled client devices that associate with this access point use radio firmware version 4.25 or later.
Step 3 Click Apply or OK to apply the setting. The access point or bridge reboots.
Select WEP Key 1 as Transmit Key for EAP Authentication
If you use Network-EAP as the authentication type on your wireless network, you must select key 1 as the transmit key on the access point's AP Radio Data Encryption page. The access point uses the WEP key you enter in key slot 1 to encrypt multicast data signals that it sends to EAP-enabled client devices. Because the access point transmits the WEP key used for multicast messages to the EAP-enabled client device during the EAP authentication process, that key does not have to appear in the EAP-enabled device's WEP key list. The access point uses a dynamic WEP key to encrypt unicast messages to EAP-enabled clients.
If you do not use EAP authentication on your wireless network, you can select any WEP key as the transmit key.
MIB File Compatible with Firmware Version 11.00 and Later
The access point MIB file (AWCVX-MIB) is supported only by access point firmware version 11.00 and later. Earlier versions of firmware do not support this MIB. You can download the access point MIB at http://www.cisco.com/public/sw-center/sw-wireless.shtml.
This section lists important information about access points running firmware version 11.07a.
Cisco Discovery Protocol Re-Enabled for Individual Interfaces on Reboot
The access point's Cisco Discovery Protocol (CDP) feature is enabled by default, and CDP is enabled for each of the access point's individual interfaces by default. However, if you disable CDP for one of the individual interfaces, the access point re-enables CDP for that interface when it reboots. If you disable CDP completely, the access point does not re-enable CDP on reboot.
This section lists resolved and open software issues in firmware version 11.07a.
Getting Bug Information on Cisco.com
If you are a registered Cisco user, you can use the Cisco TAC Software Bug Toolkit, which consists of three tools (Bug Navigator, Bug Watcher, and Search by Bug ID Number) that help you identify existing bugs (or caveats) in Cisco software products.
Access the TAC Software Bug Toolkit at http://www.cisco.com/support/bugtools/.
The following caveats have been resolved in firmware version 11.07a:
•Resolved: CSCdw63011--An error can occur with management protocol processing. Please use this URL for further information:
•Resolved: CSCdw63031--An error can occur with management protocol processing. Please use this URL for further information:
•Resolved: CSCdw63032--An error can occur with management protocol processing. Please use this URL for further information:
The following caveats were resolved in firmware version 11.07 and are also resolved in version 11.07a:
•Resolved: Access point locks up during firmware upgrade through Internet Explorer 2.0 (CSCdu05787). When you load new firmware into the access point by using Microsoft Internet Explorer version 2.0, the access point stops functioning and must be rebooted.
•Resolved: Access point reboots when user presses Ctrl-x when using the command-line interface through Telnet (CSCdt47758).
•Resolved: Public Secure Protocol Format (PSPF) prevents client devices associated to a bridge or access point from inadvertently sharing files with other client devices on the wireless network. However, PSPF allows the IP address and the MAC address of one client device to enter the ARP table of another client device associated to the same access point or bridge (CSCdu52795).
•Resolved: Daylight Savings Time option displays time one hour behind (CSCdr55634).
•Resolved: MIB files for Cisco Aironet products are unavailable (CSCdt59392). You can download MIB files for Cisco Aironet products at http://www.cisco.com/public/sw-center/sw-wireless.shtml.
The following caveats have not been resolved for firmware version 11.07a:
•Protocol filter settings sometimes revert to defaults during filter setup (CSCdu02040).
When you add a new protocol filter set, you can set the filter's default disposition and time-to-live on the first filter configuration page. You add specific protocols to the filter set on subsequent pages. If you change the default disposition or default time to live values from the defaults, these values revert to default settings after you add specific protocols to complete the filter setup. Make sure the default disposition and time-to-live values are correct before you apply the filter set.
•IP Port filters do not block pings (CSCdu05324).
Table B-3 in Appendix B of the Cisco Aironet Access Point Software Configuration Guide lists PING as the additional identifier for the echo IP Port filter entry. However, the echo entry does not block standard pings. To block standard pings, set up an IP Protocol filter to block ICMP.
•Cannot access workgroup bridges associated with access point (CSCdu10993).
When a workgroup bridge (WGB34x or WGB352) is associated to an access point, you cannot access the WGB console menus or ping the WGB from a station on the wired LAN connected to the access point's Ethernet port. However, you can access the WGB from any client device connected to the WGB's Ethernet port and from any client device associated to the access point that is associated to the WGB. Radio traffic between the access point and the WGB is not affected.
•Access point ignores vendor specific options from DHCP servers (CSCdu19500).
Access points ignore the vendor specific option (VSO) sent from DHCP servers inresponse to the access point's vendor class identifier, also called a DHCP identifier in the access point's web browser interface and CLI.
•Continuous reboot caused by exception error on access points running firmware version 11.07a (CSCdv20709).
Access points running firmware version 11.07a continuously reboot when the following error occurs:instruction access Exception next instruction access: 0xcccc0000 Machine Status Register: 0x08209032 Condition Register: 0x48000040 Task: 0xa1b960 "tProtoCDP"
The error occurs when a CDP-unaware device, such as a hub that does not support CDP, forwards CDP messages containing the power consumption TLV from one access point to another. The access point receiving the forwarded CDP message reboots.
Workaround: Disable CDP on access points that reboot. Follow these steps to disable CDP:
Step 1 Browse to the CDP Setup page in the access point or bridge management system. Follow this link path to reach the CDP Setup page:
a. 1. On the Summary Status page, click Setup.
b. 2. On the Setup page, click Cisco Services.
c. 3. On the Cisco Services Setup page, click Cisco Discovery Protocol (CDP).
Step 2 Select Disabled for the Cisco Discovery Protocol (CDP) option.
Step 3 Click Apply or OK.
•SNMP community name must include extra privilege to access all information (CSCdt31925).
SNMP community names entered on the Express Setup page have limited access to the access point's configuration information. To provide full access to the SNMP community you specify on the Express Setup page, use the User Manager pages to assign firmware privilege to the community name. Refer to the Cisco Aironet Access Point Software Configuration Guide for complete instructions on using the User Manager. Refer to the Cisco Aironet Access Point Software Configuration Guide for more information on using the User Manager.
•Filters can be disabled but not edited from the command-line interface (CSCdt34104).
You cannot edit MAC address filters with the command-line interface. However, you can use the CLI's Ethernet Protocol Filters and Root Radio Protocol Filters pages to disable filters.
•Access point sometimes loads wrong firmware when updating from an FTP server (CSCdu38857).
When you update access point firmware through FTP file retrieval in the web-browser interface, the access point searches for any valid firmware files if it does not find the firmware file on the FTP server. If the access point finds a valid firmware file, it uses the alternate file and does not indicate on the web-browser interface that it is loading an alternate firmware image. After you update firmware through FTP file retrieval in the web-browser interface, check that the access point loaded the correct firmware version. The access point's firmware version number appears in the upper-left corner of most management screens in the web-browser interface.
•Web-browser interface sometimes requires multiple logins (CSCdu68659).
When User Manager is enabled and you browse to the Cisco Services Setup page, you must log into the User Manager system. If you browse from the Cisco Services Setup page to another restricted page, you must log in again.
•Settings for Require EAP and Default Unicast Filter missing from CLI (CSCdu74974).
On the CLI, the AP/Root Radio Advanced page does not contain the Require EAP and Default Unicast Address Filter settings. Use the web-browser interface to enter these settings.
For the most up-to-date, detailed troubleshooting information, refer to the Cisco TAC website at http://www.cisco.com/tac. Select Wireless LAN under Top Issues.
This section describes errors, omissions, and changes in user documentation for Cisco Aironet Access Points.
Mexico Channel Set
The description of the Mexico channel set in the Cisco Aironet Access Point Software Configuration Guide now accurately lists the regulatory domain and available channels for Cisco Aironet products used in Mexico:
Note Mexico is included in the North America regulatory domain; however, only channels 9 through 11 are allowed to be used in Mexico. End users are responsible for ensuring that the channel set configuration is in compliance with the regulatory standards of Mexico.
Refer to the Cisco Aironet Access Point Software Configuration Guide for more information on channel sets and regulatory domains.
Use the following documents with this document.
•Quick Start Guide: Cisco Aironet Access Points
•Cisco Aironet Access Point Hardware Installation Guide
•Cisco Aironet Access Point Software Configuration Guide
The following sections provide sources for obtaining documentation from Cisco Systems.
World Wide Web
You can access the most current Cisco documentation on the World Wide Web at the following sites:
Cisco documentation and additional literature are available in a CD-ROM package, which ships with your product. The Documentation CD-ROM is updated monthly and may be more current than printed documentation. The CD-ROM package is available as a single unit or as an annual subscription.
Cisco documentation is available in the following ways:
•Registered Cisco Direct Customers can order Cisco Product documentation from the Networking Products MarketPlace:
•Registered Cisco.com users can order the Documentation CD-ROM through the online Subscription Store:
•Nonregistered Cisco.com users can order documentation through a local account representative by calling Cisco corporate headquarters (California, USA) at 408 526-7208 or, in North America, by calling 800 553-NETS(6387).
If you are reading Cisco product documentation on the World Wide Web, you can submit technical comments electronically. Click Feedback in the toolbar and select Documentation. After you complete the form, click Submit to send it to Cisco.
You can e-mail your comments to email@example.com.
To submit your comments by mail, use the response card behind the front cover of your document, or write to the following address:
Attn Document Resource Connection
Cisco Systems, Inc.
170 West Tasman Drive
San Jose, CA 95134-9883
Obtaining Technical Assistance
Cisco provides Cisco.com as a starting point for all technical assistance. Customers and partners can obtain documentation, troubleshooting tips, and sample configurations from online tools. For Cisco.com registered users, additional troubleshooting tools are available from the TAC website.
Cisco.com is the foundation of a suite of interactive, networked services that provides immediate, open access to Cisco information and resources at anytime, from anywhere in the world. This highly integrated Internet application is a powerful, easy-to-use tool for doing business with Cisco.
Cisco.com provides a broad range of features and services to help customers and partners streamline business processes and improve productivity. Through Cisco.com, you can find information about Cisco and our networking solutions, services, and programs. In addition, you can resolve technical issues with online technical support, download and test software packages, and order Cisco learning materials and merchandise. Valuable online skill assessment, training, and certification programs are also available.
Customers and partners can self-register on Cisco.com to obtain additional personalized information and services. Registered users can order products, check on the status of an order, access technical support, and view benefits specific to their relationships with Cisco.
To access Cisco.com, go to the following website:
Technical Assistance Center
The Cisco TAC website is available to all customers who need technical assistance with a Cisco product or technology that is under warranty or covered by a maintenance contract.
Contacting TAC by Using the Cisco TAC Website
If you have a priority level 3 (P3) or priority level 4 (P4) problem, contact TAC by going to the TAC website:
P3 and P4 level problems are defined as follows:
•P3—Your network performance is degraded. Network functionality is noticeably impaired, but most business operations continue.
•P4—You need information or assistance on Cisco product capabilities, product installation, or basic product configuration.
In each of the above cases, use the Cisco TAC website to quickly find answers to your questions.
To register for Cisco.com, go to the following website:
If you cannot resolve your technical issue by using the TAC online resources, Cisco.com registered users can open a case online by using the TAC Case Open tool at the following website:
Contacting TAC by Telephone
If you have a priority level 1 (P1) or priority level 2 (P2) problem, contact TAC by telephone and immediately open a case. To obtain a directory of toll-free numbers for your country, go to the following website:
P1 and P2 level problems are defined as follows:
•P1—Your production network is down, causing a critical impact to business operations if service is not restored quickly. No workaround is available.
•P2—Your production network is severely degraded, affecting significant aspects of your business operations. No workaround is available.
This document is to be used in conjunction with the documents listed in the "Related Documentation" section.
Copyright © 2002, Cisco Systems, Inc.
All rights reserved.