Cisco IOS Software Releases 12.4 Special and Early Deployments

Table Of Contents

Release Notes for Cisco 3700 Series Integrated Services Routers with Cisco IOS Release 12.4(11)XW8

Contents

System Requirements

Memory Requirements

Hardware Supported

Determining the Software Version

Upgrading to a New Software Release

Feature Set Tables

New and Changed Information

New Hardware Features in Cisco IOS Release 12.4(11)XW8

New Software Features in Cisco IOS Release 12.4(11)XW8

New Hardware Features in Cisco IOS Release 12.4(11)XW7

New Software Features in Cisco IOS Release 12.4(11)XW7

New Hardware Features in Release 12.4(11)XW6

New Software Features in Release 12.4(11)XW6

New Hardware Features in Release 12.4(11)XW5

New Software Features in Release 12.4(11)XW5

New Hardware Features in Release 12.4(11)XW3

New Software Features in Release 12.4(11)XW3

New Hardware Features in Release 12.4(11)XW2

New Software Features in Release 12.4(11)XW2

Cisco Unified Communications Manager Express 4.2

The Media and Signaling Encryption (SRTP/TLS) on DSPFarm Conferencing

Extension Mobility

Interoperability with Cisco Unified Contact Center Express (Cisco UCCX 5.0)

New Hardware Features in Release 12.4(11)XW1

New Software Features in Release 12.4(11)XW1

New Hardware Features in Release 12.4(11)XW

New Software Features in Release 12.4(11)XW

H.323 Name Display

Session Border Controller Enhancements for H.323-SIP and SIP-SIP Supplementary Services, Transcoding Optimization, and Firewall Integration

Universal Voice Transcoding Support for IP-to-IP Gateways

Voice Quality Enhancements

New Features in Release 12.4T

Limitations and Restrictions

Limitations and Restriction - Release 12.4(11)XW2

Caveats

Open Caveats - Release 12.4(11)XW8

Resolved Caveats - Release 12.4(11)XW8

Open Caveats - Release 12.4(11)XW7

Resolved Caveats - Release 12.4(11)XW7

Open Caveats - Release 12.4(11)XW6

Resolved Caveats - Release 12.4(11)XW6

Open Caveats - Release 12.4(11)XW5

Resolved Caveats - Release 12.4(11)XW5

Open Caveats - Release 12.4(11)XW3

Resolved Caveats - Release 12.4(11)XW3

Open Caveats - Release 12.4(11)XW2

Resolved Caveats - Release 12.4(11)XW2

Open Caveats - Cisco IOS Release 12.4(11)XW1

Resolved Caveats - Cisco IOS Release 12.4(11)XW1

Open Caveats - Cisco IOS Release 12.4(11)XW

Resolved Caveats - Cisco IOS Release 12.4(11)XW

Additional References

Release-Specific Documents

Platform-Specific Documents

Feature Navigator

Cisco IOS Software Documentation Set

Documentation Modules

Obtaining Documentation, Obtaining Support, and Security Guidelines

Release Notes for Cisco 3700 Series Integrated Services Routers with Cisco IOS Release 12.4(11)XW8

---

First Released: May 4, 2007

Last Revised: June 6, 2008

Cisco IOS Release 12.4(11)XW8

These release notes describe new features and significant software components for the Cisco 3700 series routers that support the Cisco IOS Release 12.4(11)XW releases. These release notes are updated as needed to describe new memory requirements, new features, new hardware support, software platform deferrals, microcode or modem code changes, related document changes, and any other important changes. Use these release notes with the Cross-Platform Release Notes for Cisco IOS Release 12.4T located on Cisco.com.

For a list of the software caveats that apply to Cisco IOS Release 12.4(11)XW, see the "Caveats" section and Caveats for Cisco IOS Release 12.4(11)T. The online caveats document is updated for every maintenance release and is located on Cisco.com .

Contents

•System Requirements

•New and Changed Information

•Limitations and Restrictions

•Caveats

•Additional References

•Obtaining Documentation, Obtaining Support, and Security Guidelines

System Requirements

This section describes the system requirements for Cisco IOS Release 12.4(11)XW and includes the following sections:

•Memory Requirements

•Hardware Supported

•Determining the Software Version

•Upgrading to a New Software Release

•Feature Set Tables

Memory Requirements

Table 1 describes the memory requirements for the Cisco IOS feature sets supported by Cisco IOS Release 12.4(11)XW on the Cisco 3700 series routers.

Table 1 Recommended Memory for the Cisco 3700 Series Routers with Cisco IOS Cisco IOS Release 12.4(11)XW 

Platform	Image Name	Feature Set	Image	Flash Memory (MB)	DRAM (MB)
Cisco 3725	Cisco 3725 Advanced Enterprise Services	Advanced Enterprise Services	adventerprisek9-mz	64	256
	Cisco 3725 AISK9-AESK9 Feature Set Factory Upgrade For Bundles	AISK9-AESK9 Feature Set Factory Upgrade For Bundles		64	256
	Cisco 3725 SPSK9-AESK9 Feature Set Factory Upgrade For Bundles	SPSK9-AESK9 Feature Set Factory Upgrade For Bundles		64	256
	Cisco 3725 Advanced Enterprise Services With SNA Switching	Advanced Enterprise Services With SNA Switching	adventerprisek9_sna-mz	64	256
	Cisco 3725 Advanced IP Services	Advanced IP Services	advipservicesk9-mz	64	256
	Cisco 3725 SPSK9-AISK9 Feature Set Factory Upgrade For Bundles	SPSK9-AISK9 Feature Set Factory Upgrade For Bundles		64	256
	Cisco 3725 Advanced Security	Advanced Security	advsecurityk9-mz	64	256
	Cisco 3725 Enterprise Base w/o Crypto	Enterprise Base w/o Crypto	entbase-mz	64	256
	Cisco 3725 Enterprise Base	Enterprise Base	entbasek9-mz	64	256
	Cisco 3725 Enterprise Services w/o Crypto	Enterprise Services w/o Crypto	entservices-mz	64	256
	Cisco 3725 Enterprise Services	Enterprise Services	entservicesk9-mz	64	256
	Cisco 3725 SPSK9-ESK9 Feature Set Factory Upgrade For Bundles	SPSK9-ESK9 Feature Set Factory Upgrade For Bundles		32	128
Cisco 3725	Cisco 3725 IP Base w/o Crypto	IP Base w/o Crypto	ipbase-mz	32	128
	Cisco 3725 IP Base	IP Base	ipbasek9-mz	64	256
	Cisco 3725 IP Voice w/o Crypto	IP Voice w/o Crypto	ipvoice-mz	64	256
	Cisco 3725 INT Voice/Video, IPIP GW, TDMIP GW	INT Voice/Video, IPIP GW, TDMIP GW	ipvoice_ivs-mz	64	256
	Cisco 3725 IP Voice	IP Voice	ipvoicek9-mz	64	256
	Cisco 3725 SP Services	SP Services	spservicesk9-mz
	Cisco 3745 Advanced Enterprise Services	Advanced Enterprise Services	adventerprisek9-mz
	Cisco 3745 AISK9-AESK9 Feature Set Factory Upgrade For Bundles	AISK9-AESK9 Feature Set Factory Upgrade For Bundles
	Cisco 3745 SPSK9-AESK9 Feature Set Factory Upgrade For Bundles	SPSK9-AESK9 Feature Set Factory Upgrade For Bundles
	Cisco 3745 INT Voice/Video, IPIPGW, TDMIP GW	INT Voice/Video, IPIPGW, TDMIP GW	adventerprisek9_ivs-mz
	Cisco 3745 Advanced Enterprise Services With SNA Switching	Advanced Enterprise Services With SNA Switching	adventerprisek9_sna-mz
Cisco 3745	Cisco 3745 Advanced IP Services	Advanced IP Services	advipservicesk9-mz	64	256
	Cisco 3745 SPSK9-AISK9 Feature Set Factory Upgrade For Bundles	SPSK9-AISK9 Feature Set Factory Upgrade For Bundles		64	256
Cisco 3745	Cisco 3745 Advanced Security	Advanced Security	advsecurityk9-mz	64	256
	Cisco 3745 Enterprise Base w/o Crypto	Enterprise Base w/o Crypto	entbase-mz	32	256
	Cisco 3745 Enterprise Base	Enterprise Base	entbasek9-mz	32	256
	Cisco 3745 Enterprise Services w/o Crypto	Enterprise Services w/o Crypto	entservices-mz	32	256
	Cisco 3745 Enterprise Services	Enterprise Services	entservicesk9-mz	64	256
	Cisco 3745 SPSK9-ESK9 Feature Set Factory Upgrade For Bundles	SPSK9-ESK9 Feature Set Factory Upgrade For Bundles		64	256
	Cisco 3745 IP Base w/o Crypto	IP Base w/o Crypto	ipbase-mz	32	128
	Cisco 3745 IP BASE	IP BASE	ipbasek9-mz	32	128
	Cisco 3745 IP Voice w/o Crypto	IP Voice w/o Crypto	ipvoice-mz	64	256
	Cisco 3745 INT Voice/Video, IPIP GW, TDMIP GW	INT Voice/Video, IPIP GW, TDMIP GW	ipvoice_ivs-mz	64	256
	Cisco 3745 IP Voice	IP Voice	ipvoicek9-mz	64	256
	Cisco 3745 SP Services	SP Services	spservicesk9-mz	64	256

Hardware Supported

Cisco IOS Cisco IOS Release 12.4(11)XW supports the following Cisco 3700 series routers:

•Cisco 3725

•Cisco 3745

For descriptions of existing hardware features and supported modules, see the hardware installation guides, configuration and command reference guides, and additional documents specific to the Cisco 3700 series routers, which are available on Cisco.com at the following location:

http://www.cisco.com/univercd/cc/td/doc/product/access/acs_mod/3700/index.htm 

Determining the Software Version

To determine which version of Cisco IOS software is currently running on your Cisco 3700 series router, log in to the router and enter the show version EXEC command. The following sample output from the show version command indicates the version number.

Router> show version

Cisco Internetwork Operating System Software

IOS (tm) C3700 Software (c3745-entbasek9-mz), Version 12.4(11)XW, EARLY DEPLOYMENT RELEASE 
SOFTWARE (fc1)

Synched to technology version 12.4(11)T

Upgrading to a New Software Release

For general information about upgrading to a new software release, refer to the Software Installation and Upgrade Procedures located at http://www.cisco.com/warp/public/130/upgrade_index.shtml.

Feature Set Tables

The Cisco IOS software is packaged in feature sets consisting of software images, depending on the platform. Each feature set contains a specific set of Cisco IOS features. Release 12.4(11)XW supports the same feature sets as Releases 12.4 and 12.4(11)T, but Release 12.4(11)XW includes new features supported by the Cisco 3700 series routers.

---

Caution The Cisco IOS images with strong encryption (including, but not limited to, 168-bit [3DES] data encryption feature sets) are subject to United States government export controls and have limited distribution. Strong encryption images to be installed outside the United States will likely require an export license. Customer orders can be denied or subject to delay as a result of United States government regulations. When applicable, the purchaser/user must obtain local import and use authorizations for all encryption strengths. Please contact your sales representative or distributor for more information, or send an e-mail to export@cisco.com.

---

Table 2 lists the feature and feature sets supported in Cisco IOS Release 12.4(11)XW.

The tables use the following conventions:

•In: The number in the `In' column indicates the Cisco IOS release in which the feature was introduced. For example, "12.4(11)XW" indicates that the feature was introduced in 12.4(11)XW. If a cell in this column is empty, the feature was included in a previous release or in the initial base release.

•Yes: The feature is supported in the software image.

•No: The feature is not supported in the software image.

---

Note These feature set tables contain only a selected list of features, which are cumulative for Release 12.4(11)nn early deployment releases only (nn identifies each early deployment release). The tables do not list all features in each image: additional features are listed in Cross-Platform Release Notes for Cisco IOS Release 12.4(11)T and Release 12.4(11)T Cisco IOS documentation.

---

Table 2 Cisco IOS Release 12.4(11)XW Feature List for Cisco 3700 Routers 

Feature	In	Image
H.323 Name Display	12.4(11)XW	See Table 1 for image names.
Session Border Controller Enhancements for H.323-SIP and SIP-SIP Supplementary Services, Transcoding Optimization, and Firewall Integration
Universal Voice Transcoding Support for IP-to-IP Gateways
Voice Quality Enhancements

New and Changed Information

This section contains the following information:

•New Hardware Features in Cisco IOS Release 12.4(11)XW8

•New Software Features in Cisco IOS Release 12.4(11)XW8

•New Hardware Features in Cisco IOS Release 12.4(11)XW7

•New Software Features in Cisco IOS Release 12.4(11)XW7

•New Hardware Features in Release 12.4(11)XW6

•New Software Features in Release 12.4(11)XW6

•New Hardware Features in Release 12.4(11)XW5

•New Software Features in Release 12.4(11)XW5

•New Hardware Features in Release 12.4(11)XW3

•New Software Features in Release 12.4(11)XW3

•New Hardware Features in Release 12.4(11)XW2

•New Software Features in Release 12.4(11)XW2

•New Hardware Features in Release 12.4(11)XW1

•New Software Features in Release 12.4(11)XW1

•New Hardware Features in Release 12.4(11)XW

•New Software Features in Release 12.4(11)XW

•New Features in Release 12.4T

New Hardware Features in Cisco IOS Release 12.4(11)XW8

There are no new hardware feature in this release.

New Software Features in Cisco IOS Release 12.4(11)XW8

There are no new software features in this release.

New Hardware Features in Cisco IOS Release 12.4(11)XW7

There are no new hardware feature in this release.

New Software Features in Cisco IOS Release 12.4(11)XW7

There are no new software features in this release.

New Hardware Features in Release 12.4(11)XW6

There are no new hardware features in this release.

New Software Features in Release 12.4(11)XW6

There are no new software features in this release.

New Hardware Features in Release 12.4(11)XW5

There are no new hardware features in this release.

New Software Features in Release 12.4(11)XW5

There are no new software features in this release.

New Hardware Features in Release 12.4(11)XW3

There are no new hardware features in this release.

New Software Features in Release 12.4(11)XW3

There are no new software features in this release.

New Hardware Features in Release 12.4(11)XW2

There are no new hardware features in this release.

New Software Features in Release 12.4(11)XW2

Cisco Unified Communications Manager Express 4.2

Media Encryption (SRTP) on Cisco Unified Communications Manager Express feature provides the following secure voice call capabilities: Secure call control signaling and media streams in Cisco Unified Communications Manager Express (Unified CME) networks using Secure Real-Time Transport Protocol (SRTP) and H.323 protocols.

1. Secure call control signaling and media streams in Cisco Unified Communications Manager Express (Unified CME) networks using Secure Real-Time Transport Protocol (SRTP) and H.323 protocols.

2. Secure supplementary services for Unified CME networks using H.323 trunks.

3. Secure Cisco VG224 Analog Phone Gateway endpoints.

For more information on this feature, go to:

http://www.cisco.com/univercd/cc/td/doc/product/software/ios124/124newft/124limit/124x/124xw11/itseccme.htm

The Media and Signaling Encryption (SRTP/TLS) on DSPFarm Conferencing

The Media and Signaling Encryption (SRTP/TLS) on DSPFarm Conferencing feature provides secure conferencing capability for Cisco Unified Communications Manager networks. The feature provides authentication, integrity and encryption of voice media and related call control signaling to and from the digital signal processor (DSP) farm.

For more information on this feature, go to:

http://www.cisco.com/univercd/cc/td/doc/product/software/ios124/124newft/124limit/124x/124xw11/itsdsp.htm

Extension Mobility

Extension Mobility in Cisco Unified CME 4.2 provides the benefit of phone mobility for end users.

Interoperability with Cisco Unified Contact Center Express (Cisco UCCX 5.0)

Enables interoperability between Cisco Unified CME 4.2 and later versions and Cisco Customer Response Solutions (CRS) with Cisco Unified Contact Center Express (Unified CCX 5.0), including Cisco Unified IP IVR, enhanced call processing, device and call monitoring, and unattended call transfers to multiple call center agents and basic extension mobility.

Configuration tasks are published in Cisco Unified CME Administrator Guide at:

http://www.cisco.com/en/US/products/sw/voicesw/ps4625/products_configuration_guide_book09186a00807c5776.html.

New Hardware Features in Release 12.4(11)XW1

There are no new hardware features in this release.

New Software Features in Release 12.4(11)XW1

There are no new hardware features in this release.

New Hardware Features in Release 12.4(11)XW

There are no new hardware features in this release.

New Software Features in Release 12.4(11)XW

The following new software features are supported in this release:

•H.323 Name Display

•Session Border Controller Enhancements for H.323-SIP and SIP-SIP Supplementary Services, Transcoding Optimization and Firewall Integration

•Universal Voice Transcoding Support for IP-to-IP Gateways

•Voice Quality Enhancements

---

Note Because of performance issues when using telephone features, the new features of Cisco Unified CME and SRST will be released in the next rebuild for 12.4(11)XW. TAC support for Cisco Unified CME and SRST will only be available with Release12.4(11) XW1 or later rebuilds.

---

H.323 Name Display

---

Note H.323 name delivery is supported only on the first voip dial-peer used. If the call setup is unsuccessful on the first dial-peer, but successful on the second one, the calling name will not be delivered.

---

Calling name display information may be populated in ISDN messages in the Display Information Element (IE) of a Q.931 Setup or Notify message, or in the Facility IE of a Q.931 Setup or Facility message. The Cisco IOS gateway places this information into the same field of the corresponding H.323 message.

Cisco Unified Communications Manager (CUCM) interprets calling name information (for purposes of name display on IP phones registered with CUCM) only in the Display IE of the H.323 Setup and Notify messages. Name display information delivered in an H.323 Facility message is not interpreted by CUCM. Some ISDN switch types (for example, NI2) send a "name-to-follow" indication in the Q.931 Setup message and deliver the calling name subsequently in the Facility IE of a Q.931 Facility message. When a Cisco IOS gateway is connected to such an ISDN switch, and interoperating with CUCM using the H.323 protocol, CUCM is unable to display calling name on the IP phones.

Beginning with Cisco IOS Release 12.4(11)XW, two new modes of operation are introduced on the Cisco IOS gateways:

•When a Q.931 Setup message with a "name-to-follow" indication is received from an ISDN switch, an H.323 Setup message with no name information is sent to CUCM. When the subsequent Q.931 Facility message is received with calling name information, it is mapped by the gateway to an H.323 Notify Display IE so that CUCM can interpret it correctly and display it on the IP Phone.

•When a Q.931 Setup message with a "name-to-follow" indication is received from an ISDN switch, the gateway can buffer the setup message until the subsequent Q.931 Facility message with calling name information is received. The name information from the Q.931 Facility message is now placed into the H.323 Setup message Display IE and sent to CUCM. If the buffer timer expires before the Q.931 Facility message is received, an H.323 Setup is sent with no name information and, if it subsequently arrives, the information is sent on using an H.323 Notify message.

This software operation is transparent to CUCM and works with all releases, although CUCM 4.2 or later is recommended.

To enable the H.323 Display feature without buffering for ISDN trunks that use the Facility message to deliver Name Display information, configure the following:

At the voice service level: 

voice service voip

 h323

 h225 display-ie ccm-compatible

At the voice class level:

voice class h323 1

 h225 display-ie ccm-compatible [system]

To enable the H.323 Display feature with buffering for ISDN trunks that use the Facility message to deliver Name Display information, additionally configure the following:

interface Serial0/3/0:23

 no ip address

 encapsulation hdlc

 isdn switch-type primary-ni

 isdn incoming-voice voice

 isdn map address *. plan isdn type unknown

 isdn supp-service name calling

 isdn bind-l3 ccm-manager

 no cdp enable

Session Border Controller Enhancements for H.323-SIP and SIP-SIP Supplementary Services, Transcoding Optimization, and Firewall Integration

Session Border Controller Enhancements for H.323-to-SIP and SIP-to-SIP Supplementary Services enhances terminating and re-originating both signaling and media between VoIP and Video networks by supporting H.323 (ECS)-to-SIP (Refer/302 & Re-Invite based) Supplementary Service, Transcoder optimization, and RAS message enhancements. For more information on this feature, go to:

http://www.cisco.com/en/US/products/sw/voicesw/ps5640/products_configuration_guide_book09186a0080409b6d.html

Universal Voice Transcoding Support for IP-to-IP Gateways

Universal Transcoding allows transcoding from any supported codec to any other supported codec. For more information, go to:

http://www.cisco.com/en/US/products/ps6706/products_feature_guide09186a008076161a.html

Voice Quality Enhancements

DSP voice quality metrics improve your ability to monitor, analyze, and ultimately meet your quality of service (QoS) objectives for your network. For more information, go to:

http://www.cisco.com/en/US/products/ps6706/products_feature_guide09186a0080756fd1.html

New Features in Release 12.4T

For information regarding the features supported in Cisco IOS Release 12.4T, see the Cross-Platform Release Notes and New Feature Documentation links at the following location on Cisco.com: http://www.cisco.com/univercd/cc/td/doc/product/software/ios124/124relnt/xprn124/index.htm 

Limitations and Restrictions

Limitations and Restriction - Release 12.4(11)XW2

•Interoperability between Cisco Unified CME and Unified CCX is restricted to one Unified CCX per Cisco Unified CME.

•Support for Multi-Party Ad Hoc and Meet-Me Conferencing features is not provided. Multi-Party Ad Hoc and Meet-Me Confer

•Only incoming calls from PSTN trunk are supported for deployment of the Interoperability feature. Other trunks, such as SIP and H.323, are supported as usual in Cisco Unified CME, however, not for customer calls to Unified CCX.

•Only SCCP phones can be configured as agent phones in Cisco Unified CME. The Cisco VG224 Analog Phone Gateway and analog and SIP phones are supported as usual in Cisco Unified CME, however, not as Unified CCX agent phones.

•Cisco Unified IP Phone 7931 cannot be configured as an agent phone in Cisco Unified CME. Cisco Unified IP Phone 7931s are supported as usual in Cisco Unified CME, however, not as Unified CCX agent phones.

•Shared-line appearance is not supported on Unified CCX agent phones in Cisco Unified CME. A directory number cannot be associated with more than one physical agent phone at one time.

•Overlaid lines are not supported on Unified CCX agent phones in Cisco Unified CME. More than one directory number cannot be associated with a single line button on an agent phone.

•Monitored mode for a line button is not supported on Unified CCX agent phones in Cisco Unified CME. An agent phone cannot be monitored by another phone

•For call forward and call pickup, the directory number of a Unified CCX agent cannot forward to a Cisco CRS route point.

Caveats

Caveats describe unexpected behavior or defects in the Cisco IOS software releases. Severity 1 caveats are the most serious caveats, severity 2 caveats are less serious, and severity 3 caveats are the least serious of these three severity levels.

Caveats in Cisco IOS Release 12.4(11)T are also in Cisco IOS Release 12.4(11)XW. For information on caveats in Cisco IOS Release 12.4(11)T, refer to the Caveats for Cisco IOS Release 12.4(11)T document. This document lists severity 1 and 2 caveats; the documents are located on Cisco.com.

---

Note If you have an account with Cisco.com, you can also use the Bug Toolkit to find select caveats of any severity. To reach the Bug Toolkit, log in to Cisco.com and click Service & Support: Technical Assistance Center: Tool Index: Bug Toolkit. Another option is to go to http://www.cisco.com/pcgi-bin/Support/Bugtool/launch_bugtool.pl. 

---

This section contains the following caveat information:

•Open Caveats - Release 12.4(11)XW8

•Resolved Caveats - Release 12.4(11)XW8

•Open Caveats - Release 12.4(11)XW7

•Resolved Caveats - Release 12.4(11)XW7

•Open Caveats - Release 12.4(11)XW6

•Resolved Caveats - Release 12.4(11)XW6

•Open Caveats - Release 12.4(11)XW5

•Resolved Caveats - Release 12.4(11)XW5

•Open Caveats - Release 12.4(11)XW3

•Resolved Caveats - Release 12.4(11)XW3

•Open Caveats - Release 12.4(11)XW2

•Resolved Caveats - Release 12.4(11)XW2

•Open Caveats - Cisco IOS Release 12.4(11)XW1

•Resolved Caveats - Cisco IOS Release 12.4(11)XW1

•Open Caveats - Cisco IOS Release 12.4(11)XW

•Resolved Caveats - Cisco IOS Release 12.4(11)XW

Open Caveats - Release 12.4(11)XW8

There are no open caveats in this release.

Resolved Caveats - Release 12.4(11)XW8

CSCse70333 CFwdAll erroneously reconfigured after disabling night service

Symptom    CFwdAll incorrectly appears after night service is disabled.

Conditions   CFwdAll was initially configured via softkey and un-configured via CLI. On the same dn as CFwdAll was on, night service is enabled and disabled.

Workaround   Remove CFwdAll via softkey or reload the router.

CSCsj38755 Ping Fails over ATM interface.

Symptom    Ping fails over the atm interface while applying Quality of Service.

Conditions   When we configure the qos on ATM interfaces on the back to back connected routers the ping fails.

Workaround   There is no workaround.

CSCsl26765 DTMF not detected by CUE if I/C call is txfer to ph with CFDWALL to VM

Symptom    On CUBE DTMF is not detected to stop prompt playback or record message.

Conditions   When the REMOTE incoming call is transferred to SCCP phone with CFWDALL to CUE-VM, DTMF is not detected to stop prompt playback or message recording. If original caller was LOCAL and followed the same call sequence, then there was no issue

Workaround   There is no workaround.

CSCsm23378 DTMF transcoding from rtp-nte to in-band fails for same codec

Symptom    DTMF transcoding should be done between call legs if DTMF relay is different, even if voice codecs are the same.

Conditions   If voice codecs are the same, but DTMF relay settings are different then no transcoding is done. But when voice codecs are different then transcoding is invoked, and DTMF is transcoded from rtp-nte to in-band.

Workaround   There is no workaround.

CSCsm34706 CUBE sends fixed DTMF duration and ignores received H.245 User Input

Symptom    CUBE sends a fixed 800 time units for every digit pressed (sent via RFC 2833) regardless of what it receives in the duration of a H.245 User Input field.

Conditions   In H323-SIP interworking scenario on CUBE, for DTMF conversion from 245-alphanumeric to RFC2833, regardless of the duration received in H.245 User Input field, CUBE always sends a fixed 800 ms for every digit pressed (sent via RFC 2833).

Workaround   There is no workaround.

CSCsm37093 CME 4.1after security is enabled 7970 will register with US locale.

Symptom    After security is enabled locale in the phone 7970 cannot be changed.

Conditions   Customer cannot leave security enabled and configure their locale on . Cisco 7960 and Cisco 7940 donot present the issue as they have the firmware locally stored (flash)

CSCsm64258 ephone-hunt group does NOT present calls to overlaid DNs

Symptom    When an ephone hunt-group is configured with 'present-call idle-phon', the ephone hunt-group skips the DNs which are configured as overlay.

Conditions   The problem is observed under the folowing conditions:

- ephone hunt-group is configured with 'present-call idle-phone'

- DN is configured as overlay

Workaround   Remove the 'present-call idle-phone' configuration from the ephone-hunt configuration and do not use overlaying.

CSCsm74560 phone does not look for network locale file for user defined languages

Symptom    Wireless IP phone 7920 doesnot download the 7960-tones.xml files when user defined network locale is configure.

Conditions   CME writes incomplete XML tags in the phone config file, for user defined language network locale. So phone cannot generate the query for the relevant network locale file.

Workaround   Complete the following steps to resolve the problem:

a. Along with User defined, we also need to define inbuilt network locale. For example:

–DE - Germany

– telephony- service

– network- locale DE

– create cnf- files

b. Rename the user defined file to 'germany_7960-tones.xml'.

c. Replace the file under ITS directory with the new 'germany_7960-tones.xml' (Make sure the name is the system defined name).

d. Do not run 'create cnf-file' as it will again override with the system defined parameters.

e. Reboot the 7921 wireless phone.

In case if you have issue in 'create cnf-file', then ensure to repeat all the steps mentioned above again.

CSCsm88771 CME trunk optimized calls being put on hold automatically

Symptom    Answering a trunk call transferred from another phone is automatically put on hold and cannot be resumed.

Conditions   The call originally came in on a trunk dn and is transferred to another extension on a phone sharing that trunk. Trunk optimization takes place.

Workaround   There is no workaround.

CSCsm89158 7921 does not display call park number while the call is parked

Symptom    7921 does not show the parked number when the call is parked .

Conditions   UC520W-16U-4FXO-K9 and 7921(CP7921G-1.0.3.LOADS)

Workaround   There is no workaround.

CSCso25982 SIP transfer at connect with No Audio

Symptom    No audio when one SIP extension transfers a call from PSTN side to second SIP extension.

Conditions   The call flows from PSTN to SIP Extension-A, transfer at connect to SIP Extension-B.Make a call from PSTN to DID number of SIP extension-A, extension-A answers. SIP extension-A transfer-at-connect to SIP extension-B, Extension-B answers. Extension-A completes the transfer by pressing transfer button. PSTN and Extension-B gets connected but NO AUDIO.

Workaround   There is no workaround.

CSCso26056 SIP Extension unable to transfer at alert to a PSTN number

Symptom    SIP(XOR) extension is also UNABLE to retrieve the call to PSTN-A(XEE) (hold state).

PSTN-A(XEE) remains in hold state.

Conditions   "No supplementary-service sip refer" XEE coming to CME through SIP trunk, to SIP phone XOR, consultation transfer to XTO going out through SIP trunk. The SIP trunk dial-peer has same destinationpattern as pots dial-peer, and pots dial-peer needs to have preference lower than SIP trunk dial-peer.

Workaround   Use "supplementary-service sip refer" or remove pots dial-peer with same destination pattern or make SIP trunk dial-peer preference lower than pots dial-peer.

CSCso27097 One way audio after xferring incoming SIP trunk call with transcoder

Symptom    One way audio after transfer.

Conditions   XEE SIP trunk or phone, XOR SIP Phone, XTO sccp. XEE codec is different from XOR codec, using transcoder.

Workaround   Try to use same codec.

CSCso36239 wrong primary-phone observed after re-configure primary-dn of the 
ephone

Symptom    Wrong primary-phone observed after re-configure primary-dn of the ephone

Conditions   Wrong primary-phone observed after re-configure primary-dn of the ephone

Workaround   There is no workaround.

CSCso39201 ephone gets into DND mode while in Connected state

Symptom    7961 and 7941 phones going into DND mode in Connectd state.

Conditions   User getting incoming call on 7941 and 7961 phones . Since the softkeys donot update fast, if the user presses DND immediately after going into connected state then after going onhook the user phone would stuck in DnD mode.

Workaround   There is no workaround.

CSCso42145 CCME ephone name config result in called number display issue

Symptom    IP phone is displaying the calling name in placed of called name for an incoming call from PSTN.

Conditions   The problem exists in 12.4(15)XW code.

Workaround   There is no workaround.

CSCso45361 High jitter in ringback from CUE

Symptom    External caller gets transferred from CUE to an internal DN number, and the ringback sent to the caller is distorted because of jitter.

Conditions   Internal DN to Internal DN ringbacks on CUE are fine, only external calls.

Workaround   There is no workaround.

CSCso56824 SCCP OOB-RFC2833 DTMF interworking issue for CME customer

Symptom    RFC2833 DTMF packets are sent too fast to be processed by IVR systems.

Conditions   Send DTMF tone via RTP-NTE.

Workaround   There is no workaround.

CSCso64585 redundant CallRemoteMultiLine sccp msg to monitor park DN

Symptom    Jitter or voice qality issue may occur.

Conditions   If there are a lot of ephones, say there are 50, monitoring same park DN, there will be 2500 same sccp messages sent to these 50 phones respectively in few mili seconds.

Workaround   There is no workaround.

CSCso67655 S2 CFD: Secure DSPFarm doesn't register after a reload of the router

Symptom    After Reolad, Secure Conference profile does not register with Cisco Call Manager.

Conditions   This happens when a specific trustpoint is specified for Cisco Call Manager cert authentication during TLS handshake.

Workaround   Do not specify the truspoint when configuring callmanger CCM using CLI "sccp ccm <ip address> tag version <x>.

CSCso74656 MG2:device-based BLF shown incorrect status for EM

CSCso78702  7961 IP Phone acct softkey get "no park number available"

Symptom    2851 Version 12.4(15)T4 press the ACCT SoftKey and get "NO PARK NUMBER AVAILABLE".

CSCso95643  sRTP Package missing in c1861

Symptom    MGCP srtp-package option is not available in c1861 platform.

Conditions   This occurs on Cisco 861 only.

Workaround   There is no workaround.

Open Caveats - Release 12.4(11)XW7

There are no open caveats in this release.

Resolved Caveats - Release 12.4(11)XW7

•CSCsk60020

The Secure Shell server (SSH) implementation in Cisco IOS contains multiple vulnerabilities that allow unauthenticated users the ability to generate a spurious memory access error or, in certain cases, reload the device.

The IOS SSH server is an optional service that is disabled by default, but its use is highly recommended as a security best practice for management of Cisco IOS devices. SSH can be configured as part of the AutoSecure feature in the initial configuration of IOS devices, AutoSecure run after initial configuration, or manually. Devices that are not configured to accept SSH connections are not affected by these vulnerabilities.

Common Vulnerabilities and Exposures (CVE) identifier CVE-2008-1159 has been assigned to this bug.

The Security Advisory for this issue is posted at

http://www.cisco.com/warp/public/707/cisco-sa-20080521-ssh.shtml.

CSCsi17020- Router may reload after NATing fragmented skinny packets

Symptom    A router that is running Cisco IOS may unexpectedly reload. The crashes can be very different in nature, but the crashinfo should show the IP Input process as the currently running process:---- Partial decode of process block ----Pid 84: Process "IP Input" stack 0x46C3C080 savedsp 0x46758540

Conditions   This symptom is seen when the router is configured for NAT and receives a fragmented skinny packet that it needs to reassemble and translate.

Workaround   Prevent the router from receiving a fragmented skinny packet by ensuring the path MTU between the call manager server and the router is large enough. Usually skinny packets are not larger than 800 bytes.

CSCsi55685- kron removes recurring tclsh cli after first run

Symptom    The following recurring kron schedule fails and gets removed after the first run. kron occurrence tcl in 1 recurring policy-list tcl ! kron policy-list tcl cli tclsh disk0:hello.tcl!

Conditions   enter the following configuration commands: kron occurrence tcl in 1 recurring policy-list tcl ! kron policy-list tcl cli tclsh unix:hello.tcl ! create a file on disk0: called hello.tcl with the following contents: puts "hello"

Workaround   None

CSCsk25697- unprotected buginf may cause cpuhog under repeated udp traffic to 53

Symptom    A router with DNS server configured may show CPUHOG tracebacks when it receives repeated crafted udp packets to its port 53. Sample for 3800 router: %SYS-3-CPUHOG: Task is running for (40004)msecs, more than (2000)msecs (5/0),process = DNS Server Input. -Traceback=0x60D68CDC 0x6033D984 0x6180E58C FFFFFFA0 3F 4E 60 0x708DFD18 06 FFFFFFFE FFFFFF88 FFFFFFA5 FFFFFFA3 FFFFFF92 FFFFFFA7 FFFFFF8B 7A 3A FFFFFFF5 17 FFFFFF9B FFFFFFC9 FFFFFF9B FFFFFFA2

Conditions   Router needs to have dns server configured and listen to udp port 53 conf t ip dns server end

Workaround   Apply rate limit to port 53 to interfaces facing untrusted networks: access-list 100 permit udp any any eq domain access-list 100 deny ip any any interface GigabitEthernet0/0 ip address 10.2.2.2 255.255.255.0 rate-limit input access-group 100 8000 1500 2000 conform-action transmit exceed-action drop.

CSCsl48237- incorrect bounding length in sstrncpy() calls in l2tp files

Symptom    If a large name string is used when configuring the command "security crypto-profile" under the l2tp-class submode, we could have a buffer overflow which may crash the router.

Conditions   This problem only occurs if a large name string is used in the "security crypto-profile" command.

Workaround   There is no workaround.

CSCsl59294- %DATACORRUPTION-1-DATAINCONSISTENCY at caplog_logger_proc

Symptom    A Cisco router may see the following error once shortly after bootup: *Nov 21 15:16:28 CDT: %DATACORRUPTION-1-DATAINCONSISTENCY: copy error, -PC= 0x416DE178 -Traceback= 0x412593C0 0x41276250 0x412947F4 0x416DE178 0x416DE650 0x423E303C 0x423E3020 *Nov 21 15:16:28 CDT: %DATACORRUPTION-1-DATAINCONSISTENCY: copy error, -PC= 0x416DE188 -Traceback= 0x412593C0 0x41276250 0x412947F4 0x416DE188 0x416DE650 0x423E303C 0x423E3020 No functional impact is seen.

Conditions   Occurs on a Cisco 2811 router running Cisco IOS Release 12.4(13d).

Workaround   Disable the following configuration on the router: voice hpi capture buffersize voice hpi capture destination filename

CSCek41543- Cisco2811 Processor Pool Memory Leak in ISDN and Crash

Symptom    A Cisco 2811 router running Cisco IOS Release 12.4(7a) may have a memory leak in the ISDN process as has been seen in the show process memory. The leak rate appears to be about 1.20MB/Hour.

Conditions   This symptom has been observed with BRI-U interface that is UP/UP (spoofing).

Workaround   Administratively shut down the BRI interface.

CSCsi17020- Router may reload after NATing fragmented skinny packets

Symptom    A router that is running Cisco IOS may unexpectedly reload. The crashes can be very different in nature, but the crashinfo should show the IP Input process as the currently running process:---- Partial decode of process block ----Pid 84: Process "IP Input" stack 0x46C3C080 savedsp 0x46758540

Conditions   This symptom is seen when the router is configured for NAT and receives a fragmented skinny packet that it needs to reassemble and translate.

Workaround   Prevent the router from receiving a fragmented skinny packet by ensuring the path MTU between the call manager server and the router is large enough. Usually skinny packets are not larger than 800 bytes.

CSCsi21389- One-way multicast traffic over wireless.

Symptom    Routers that have the ability to use the optional 802.11b/g card, such as the Cisco ISR series do not pass multicast traffic across the wireless interface.

Conditions   Cisco routers that have the 802.11 b/g HWIC card do not pass multicast traffic across the wireless interface, though multicast routing is enabled and otherwise is configured normally. Wireless hosts cannot pass multicast traffic between each other, and multicast traffic from the wired network will not be transmitted out the wireless interface.

Workaround   None

CSCsi44510- CME multicast audio to the 7921 cuts out on HWIC-AP

Symptom    Multicast audio to the 7921 cuts out after a few seconds and will not resume.

Conditions   A 7921 registered to CME doing multicast paging or multicast MOH

Workaround   none

CSCsj14277- Wrong Calling ID by transfer, only with 7931 - 12.4(4)XC6

Symptom    The caller id on the transfer-to is not updated with the transferee after the transferor commits the transfer.

Conditions   When the transfer-to answers the call from the transferor, the caller id on the transfer-to shows that the call is from transferor. After the transferor commits the the transfer, the caller id should be updated with the transferee. This caller id display issue can be observed if the transferor DN is shared by the transfer-to.

Workaround   There is no workaround without removing the XOR DN from the XTO.

CSCsj34770- Having problem in establishing QSIG Prime call

Symptom    QSIG PRIME call is not going between slave and master routers

Conditions   This issue is seen in 12.4(16.5)T

Workaround   No workaround

CSCsj50982- Wrong isdn cause code while  making call to wrong destination

Symptom    Wrong isdn cause code comming while making call to wrong destination

Conditions   While call made to wrong destination number

Workaround   none

CSCsk25697- unprotected buginf may cause cpuhog under repeated udp traffic to 53

Symptom    A router with DNS server configured may show CPUHOG tracebacks when it receives repeated crafted udp packets to its port 53. Sample for 3800 router: %SYS-3-CPUHOG: Task is running for (40004)msecs, more than (2000)msecs (5/0),process = DNS Server Input. -Traceback= 0x60D68CDC 0x6033D984 0x6180E58C FFFFFFA0 3F 4E 60 0x708DFD18 06 FFFFFFFE FFFFFF88 FFFFFFA5 FFFFFFA3 FFFFFF92 FFFFFFA7 FFFFFF8B 7A 3A FFFFFFF5 17 FFFFFF9B FFFFFFC9 FFFFFF9B FFFFFFA2.

Conditions   Router needs to have dns server configured and listen to udp port 53 conf t ip dns server end.

Workaround   Apply rate limit to port 53 to interfaces facing untrusted networks: access-list 100 permit udp any any eq domain access-list 100 deny ip any any interface GigabitEthernet0/0 ip address 10.2.2.2 255.255.255.0 rate-limit input access-group 100 8000 1500 2000 conform-action transmit exceed-action drop.

CSCsk71610- CCSIP_UDP_SOCKET causes high CPU Usage

Symptom    Incoming and outgoing calls fail due to high CPU Usage.

Conditions   CPU Usage is at 99-100% and CCSIP_UDP_SOCKET is using 88+%.

Workaround   There is no workaround.

CSCsl18024- HWIC Country Code Issue

Symptom    Error message %DOT11-3-POWERS_INVALID: Interface Dot11Radio0/3/0, no valid power levels available is displayed during boot up.

Conditions   Occurs for cerain HWIC-AP cards with wrong country code values

Workaround   Work around is to use HWIC AP cards of correct country code values.

CSCsl59294- %DATACORRUPTION-1-DATAINCONSISTENCY at caplog_logger_proc

Symptom    A Cisco router may see the following error once shortly after bootup: *Nov 21 15:16:28 CDT: %DATACORRUPTION-1-DATAINCONSISTENCY: copy error, -PC= 0x416DE178 -Traceback= 0x412593C0 0x41276250 0x412947F4 0x416DE178 0x416DE650 0x423E303C 0x423E3020 *Nov 21 15:16:28 CDT: %DATACORRUPTION-1-DATAINCONSISTENCY: copy error, -PC= 0x416DE188 -Traceback= 0x412593C0 0x41276250 0x412947F4 0x416DE188 0x416DE650 0x423E303C 0x423E3020 No functional impact is seen.

Conditions   Occurs on a Cisco 2811 router running Cisco IOS Release 12.4(13d).

Workaround   Disable the following configuration on the router: voice hpi capture buffersize voice hpi capture destination filename.

CSCsm04209- PVDM2-DM fails to initiate calls over EuroISDN BRI while TEI is 
inactive.

Symptom    Modem calls fail to establish when 'isdn tei-negotiation firstcall' configured on ISDN interfaces.

Conditions   The ISDN BRI interfaces are added to CSM signaling interface queue only when they are active (layer 2, MULTI-FRAME-ESTABLISHED). Since, the ISDN L2 is not activated until the first call is initiated which inturn means there is no signaling interface available, which results in call failure.

Workaround   Add the ISDN BRI interfaces to CSM signaling interface if they are not administratively down (shutdown).

CSCsm45689- UC520 crashed when system test was executed with debug logs enabled.

Symptom    UC520 crashed when system test was executed with debug logs enabled.

Conditions   UC520 crashed when system test was executed with the below debug logs enabled. debug callmon core debug callmon info debug callmon detail debug ccsip message.

Workaround   None.

CSCsm46227- Router crash with CPUHOG for trunk port monitoring.

Symptom    Cisco 3845 may crash when there is an incoming trunk call.

Conditions   Occurs if the shared trunk DN is monitored by a FXO port and it is call-forwarded to another trunk DN with "call-forward all".

Workaround   None.

CSCsm49011- VG224 SCCP port plays reorder before CM routes call-IOS interdigit 
timer.

Symptom    On an FXS port configured for SCCP usage (such as on a VG224), reorder is heard 10 seconds after the last digit dialed when a number is dialed that requires waiting for interdigit timeout on CallManager.

Conditions   Using SCCP controlled FXS port on an IOS box. Dialing a number which requires waiting for interdigit timeout to route (such as a variable length international number).

Workaround   Increase the interdigit timeout setting on each SCCP FXS port to 16 secs (to be greater than CallManager's 15 secs). This is done by configuring "timeouts interdigit 16" under each voice port. OR decrease the CallManager interdigit timeout to 9 seconds (to be less than the VG224 port's 10 secs). This is done by changing the CallManager service parameter T302 Timer value to 9000 msec (9 seconds). If this workaround is chosen the new interdigit timeout setting will apply to all devices attached to the CallManager, not just the IOS SCCP FXS ports.

CSCsm55045- Crash illegal deallocation of unassigned/in-use memory.

Symptom    A Cisco router configured with Call Manager Express (CME) may reload due to point to illegal deallocation of unassigned/in-use memory.

Conditions   Occurs when CME is enabled.

Workaround   There is no workaround.

CSCsm50874- CME: calling name in facility IE doesn't display on IP phone.

Symptom    CME 4.2 does not display calling name when sent in an ISDN facility IE message. The facility is received and interpreted correctly however it doesn't show up on the IP phone display.

Workaround   IOS 12.4(11)XW3 and 12.4(15)XY correct display the calling name.

CSCsm65685- Need to enable vendorConfig parameters on 7912.

Symptom    After the configuraiton of telephony-service service phone settingsAccess 2 <settingsAccess>2</settingsAccess>" is missing in system:/its/XMLDefault7921.cnf.xml.

Workaround   None.

CSCsm92260- CSKU wrong country code issue. 

Symptom    Error message Feb 28 08:50:28.459: %DOT11-3-POWERS_INVALID: Interface Dot11Radio0/0/0, no valid power levels available seen on router console during router boot up.

Conditions   Occurs for cerain CSKU cards with wrong country code values.

Workaround   Work around is to use CSKU cards of correct country code values.

CSCso33776- spurious access error in AFW_M_Destination_Initiate.

Symptom    Spurious memory access messages may be generated by a router. Mar 28 02:45:02.016: %ALIGN-3-SPURIOUS: Spurious memory access made at 0x41DCE7E0 reading 0x60 Mar 28 02:45:02.016: %ALIGN-3-TRACE: -Traceback= 0x41DCE7E0 0x41DCF674 0x41DD351C 0x41DD6BBC 0x41DA96CC 0x41E0E428 0x41E0F2C4 0x41DF36D4. This issue may be cosmetic in nature.

Conditions   These spurious memory accesses may be triggered by a T1/E1 PRI call or other event.

Workaround   There is no known workaround. This issue may be cosmetic in nature.

Open Caveats - Release 12.4(11)XW6

There are no open caveats in this release.

Resolved Caveats - Release 12.4(11)XW6

CSCso81854

Multiple Cisco products are vulnerable to DNS cache poisoning attacks due to their use of insufficiently randomized DNS transaction IDs and UDP source ports in the DNS queries that they produce, which may allow an attacker to more easily forge DNS answers that can poison DNS caches.

To exploit this vulnerability an attacker must be able to cause a vulnerable DNS server to perform recursive DNS queries. Therefore, DNS servers that are only authoritative, or servers where recursion is not allowed, are not affected.

Cisco has released free software updates that address these vulnerabilities.

This advisory is posted at http://www.cisco.com/warp/public/707/cisco-sa-20080708-dns.shtml.

This security advisory is being published simultaneously with announcements from other affected organizations.