Table Of Contents
Release Notes for Cisco Application-Oriented Networking, 3.0
Contents
New Features in Cisco AON Release 3.0
AON Application System Requirements
AON Supported Hardware
AON Node Supported Software
Upgrade Paths
Using Cisco IOS Release 12.4(9)T
Important Notes
Resolved Caveats
Open Caveats
Related Documentation
Obtaining Documentation, Obtaining Support, and Security Guidelines
Release Notes for Cisco Application-Oriented Networking, 3.0
June 17, 2008
Cisco Application-Oriented Networking (AON) is the first in a new line of Cisco products that embed intelligence into the network to meet the needs of application deployment. AON enables you to:
•
Integrate dissimilar applications by routing information to the appropriate destination, in the format required at the destination.
•Enforce policies for information access and exchange.
•Optimize bandwidth and reduce processing overhead for application traffic.
•Increase management of information flow, including monitoring for business and infrastructure.
•Enhance business continuity by transparently backing up or rerouting critical business data.
Working at the message rather than packet level, AON provides this support by understanding more about the content and context of information flow.
Contents
These release notes cover Cisco AON Release 3.0 and include the following topics:
•New Features in Cisco AON Release 3.0
•AON Application System Requirements
•AON Supported Hardware
•AON Node Supported Software
•Upgrade Paths
•Using Cisco IOS Release 12.4(9)T
•Important Notes
•Resolved Caveats
•Open Caveats
•Related Documentation
•Obtaining Documentation, Obtaining Support, and Security Guidelines
New Features in Cisco AON Release 3.0
•WSDL and WS-Policy Import and PEP Generator—AON 3.0 provides the ability to import WSDL and WS-Policy documents from a file system or from a specified HTTP URL (only clear text, not HTTPS) into the ADS. Based on the imported WS artifacts, you can choose to have ADS generate a PEP that includes the bladelets required to invoke the chosen service from the WSDL and enforce the policies within the WS-Policy documents. For example ADS can generate a PEP containing the Sign, Encrypt, Send, and Branch Bladelets, and so on.
•Create SOAP Message Bladelet for Call Out Requests—This new bladelet is similar to the existing Create Message Bladelet, except that it is designed to allow the user to configure outgoing SOAP calls. You can drag and drop the bladelet onto the PEP so that when the user wishes to call an external Web Service the user is prompted to specify a WSDL object (a file system or an HTTP URL).
•New Cisco AON Appliance Platforms—AON 3.0 introduces two new AON appliance devices—The Cisco ADE 1010 Integrated Single-Core Appliance and the Cisco ADE 2142 Integrated Dual Quad-Core Appliance.
•SAML 2.0 Support—AON 3.0 accepts both SAML 1.0 as well as SAML 2.0 tokens in its Identify, Verify Identity, and Authorize Bladelets.
•SOAP Request Classification and Prioritization—Message type definitions now allow classification based on SOAP headers and body tokens, such as the WSS username token, WSS X.509 certificate token, and WSS SAML token.
•Context- and Content-Based Routing Enhancements —AON 3.0 provides enhancements to content-based routing based on sender identification in HTTP or SOAP headers, HTTP header elements (HEAD, and so on), HTTP and SOAP header information (values), SOAP header, HTTP header, source IP/port number, and context-based routing based on day, date, and time.
•SSL Support Added to BEA JMS Adapter—Processing of WebLogic JMS messages over SSL is now possible. This will guarantee message security. Both one-way SSL and two-way SSL are implemented. In one-way SSL, only the server is authenticated by the client, while for two-way SSL both client and server side authentication will be used.
•HTTP Pipelining Support—As mandated by the HTTP 1.1 specification (RFC-2616), AON 3.0 supports pipelining of incoming HTTP requests on persistent connections, where responses need to be sent in the same order in which the requests were received.
•Data Streaming Support—The AON 3.0 data streaming model enhances the existing interaction between embedded adapters and the AON system to support streaming of discrete blocks of data This enhances the performance of the embedded adapters and the AON system.
•Syslog Support for NOTICE and DEBUG Messages—AON 3.0 adds support for redirecting AON logs to syslog for DEBUG and NOTICE level messages.
•Multiport Support on Appliance—AON 3.0 includes changes that enable the use of the third network interface on AON appliances.
•Message Order Preservation—Messages may need to be delivered at the outbound in the same sequence as they were received at the inbound. A new combination of Unreliable/Ordered delivery semantics was added.
•SNMP MIB Metrics—A comprehensive set of SNMP MIB metrics was added as part of this release.
•Notify Bladelet—A new bladelet that allows users to send a custom notification by email or SNMP trap.
•Timestamp Bladelet—A new bladelet that provides the ability to add header information for the message sender, such as when a message was created and when it expires.
•Microsoft SQL Server Support for Log Bladelet—Ability to select Microsoft SQL Server database while creating a Message Log policy in AMC has been added.
•System-Tunable Parameters—A new policy that allows the administrator to modify system-tunable parameters such as number of threads and so on has been added.
For more information on using these features, see the "Related Documentation" section.
AON Application System Requirements
Table 1 lists the minimum requirements for installing AON applications for Cisco AON Release 3.0.
Table 1 AON Minimum System Requirements
Application
|
Operating System
|
CPU
|
RAM
|
Hard Drive
|
Software Image
|
AON Management Console (AMC)
|
Red Hat Enterprise Linux 3.0, 4.0, or 5.0
|
Single processor;
Pentium IV
|
1 GB (minimum)
2 GB (recommended for large adapters)
|
20 GB
|
AON 3.0.0.67
|
AON Development Studio (ADS)
|
Windows 2000 or Windows XP with latest service packs.
|
Pentium IV
|
1 GB (minimum)
2 GB (recommended for large adapters)
|
40 GB
|
AON 3.0.0.67
|
AON Supported Hardware
Table 2 lists the hardware platforms that are supported by Cisco AON Release 3.0.
Table 2 Supported Hardware
AON Appliance
|
AON Service Module (AON-SM)
|
AON Network Module (AON-NM)
|
AON Enhanced Network Module (AON NME)
|
Cisco 8340 AON Appliance
•APL-AON-8340-K9
Cisco 8342 AON Appliance
•APL-AON-8342-K9
Cisco ADE 1010 Integrated Single-Core Appliance
•CADE-1010-K9
•SW-AON-PSMB-K9
Cisco ADE 2142 Integrated Dual-Core Appliance
•CADE-2142-K9
•SW-AON-PENT-K9
|
•WS-6503
•WS-C6503-E
•WS-C6506
•WS-6506-E
•WS-C6509
•WS-6509-E
•WS-C6509-NEB-A
•WS-6513
|
•Cisco 2610XM
•Cisco 2611XM
•Cisco 2620XM
•Cisco 2650XM
•Cisco 2651XM
•Cisco 2691XM
•Cisco 2811
•Cisco 2821
•Cisco 2851
•Cisco 3725
•Cisco 3745
•Cisco 3825
•Cisco 3845
|
•Cisco 2811
•Cisco 2821
•Cisco 2851
•Cisco 3725
•Cisco 3745
•Cisco 3825
•Cisco 3845
|
AON Node Supported Software
Table 3 lists the software levels for the Cisco platforms that support AON.
Table 3 Supported Software on Nodes
Platform
|
Minimum Software Release Supported
|
Latest Software Release Supported
|
AON-SM
Catalyst 6500 Series Switches with Supervisor Engine 720
|
Cisco IOS Release 12.2(18)SXF2
|
Cisco IOS Release 12.2(18)SXF12a
|
AON-SM with Catalyst OS
Catalyst 6500 Series Switches with Supervisor Engine 720
|
Cisco IOS Release 12.2(18)SXF MCF2
Catalyst Operating System Release 8.5(3)
|
Cisco IOS Release 12.2(18)SXF12a MCF2
Catalyst Operating System Release 8.6(5)
|
AON-SM 2
Catalyst 6500 Series Switches with Supervisor Engine 2
|
Cisco IOS Release 12.2(18)SXF2
|
Cisco IOS Release 12.2(18)SXF12a
|
AON-SM 2 with Catalyst OS
Catalyst 6500 Series Switches with Supervisor Engine 2
|
Cisco IOS Release 12.2(18)SXF2 MCF2
Catalyst Operating System Release 8.5(4)
|
Cisco IOS Release 12.2(18)SXF12a
Catalyst Operating System Release 8.6(5)
|
AON-NM
Cisco 2600, Cisco 2800, Cisco 3700,
and Cisco 3800 Series Routers
|
Cisco IOS Release 12.3(14)T1
|
—
|
AON-NME
Cisco 2800, Cisco 3700, and
Cisco 3800 Series Routers
|
Cisco IOS Release 12.4(9)T
|
Cisco IOS Release 12.4(15)T5
|
Cisco 8340 AON Appliance
|
AON release 1.1.0.189
AON release 2.1.2.29
(with firmware upgrade)
|
Cisco AON Release 3.0.0.67
|
Cisco 8342 AON Appliance
|
AON release 2.1.2.29
|
Cisco AON Release 3.0.0.67
|
Cisco ADE 1010 Appliance
|
Cisco AON Release 3.0.0.67
|
Cisco AON Release 3.0.0.67
|
Cisco ADE 2142 Appliance
|
Cisco AON Release 3.0.0.67
|
Cisco AON Release 3.0.0.67
|
Upgrade Paths
Table 4 lists the valid upgrade paths for each AON software release. Previous AON releases did not require you to upgrade software on AON nodes. However, due to several architectural changes included in Cisco AON Release 3.0, you must upgrade all nodes for this release. A version 3.0 AMC cannot manage nodes running previous AON software releases.
Table 4 AON Upgrade Paths
AON Release
|
Valid Upgrade Paths
|
Node Upgrade Required
|
AON 1.x
|
AON 2.1 only
|
Yes
|
AON 2.1
|
Any AON 2.x
|
Only if upgrading to AON 2.4
|
AON 2.1.x
|
Any AON 2.x
|
Only if upgrading to AON 2.4
|
AON 2.2
|
AON 2.4
|
Yes
|
AON 2.4
|
AON 3.0
|
Yes
|
Using Cisco IOS Release 12.4(9)T
Cisco IOS Release 12.4(9)T changes the name of the AON-NM in Cisco IOS. It is now referred to as AON-Engine instead of AONS-Engine. Because of this change, you must perform the following additional steps as part of your upgrade:
•Back up your startup and running configurations.
•After the upgrade, reenter the AON-NM's network configuration using the AON-Engine interface.
For further details on configuring the AON-NM, see the AON Installation and Upgrade Guide.
Important Notes
Important Notes that Affect AON Release 3.0
•Due to several architectural changes in the AON software, you must recompile custom adapters and custom bladelets used with previous AON releases before they can be used with Cisco AON Release 3.0.
•Your AON environment may be affected by changes to Daylight Saving Time specified by the U.S. Energy Policy Act of 2005. See the following document for more complete details: Impact of U.S. Daylight Savings Time Changes on Cisco Application-Oriented Networking.
•An excessive number of open SSL connections can cause an AON node to become inoperable. AON has been verified to handle up to 100 connections without effect. However, the node goes out of service when there are 350 open SSL connections.
•The MQ adapter has not been recertified on AON Release 3.0.
•Two-node AON-to-AON configuration scenarios have not been recertified with AON Release 3.0.
•P-mode is supported through a Cisco AON Advanced Services service offering.
•The AON ALE adapter is supported through a Cisco AON Advanced Services service offering. Please contact the Cisco Advanced Services team.
–For information on Cisco AON Advanced Services, see the following URL:
http://www.cisco.com/en/US/services/ps2961/ps6894/
services_overview0900aecd80428cd6.pdf
•When deleting entries in the local cache using the cache API, repeated attempts may be required, because the returned value does not signify whether the delete operation is successful.
Important Notes from Previous AON Releases
•The AON Management Console (AMC) supports only Microsoft Internet Explorer 6. AMC pages may not render properly in other web browsers.
•AON is implemented in Java, where memory is automatically managed by the Java runtime system. This means that there might be moments in the system when the garbage collection (automatic memory management) is still working at freeing up memory. The graceful-handling mechanism checks the free memory to determine if a message should be let into the system. So under high loads it is possible that AON will reject messages because the garbage collection is taking time to free up memory.
•The following issues may affect AON Development Studio (ADS) installation; however, the root causes are beyond the control of Cisco:
–Using the ALT key during ADS installation can cause some InstallShield screens to become corrupted. Despite this display problem, the ADS installer continues to function. If the display gets corrupted, minimize the ADS installer and then maximize it again. The display should return to normal. This is a known InstallShield issue when using JVMs with version 1.4.2.x.
–In rare situations when initially launching ADS on Windows 2000, an error message may be returned indicating that the database is busy or unavailable. The error can occur even though the database is listed as started in the list of Windows Services. This occurs when a database port is chosen in the ADS installer that also appears in the output of the netstat -a command in a loopback situation. The port is shown as pointing to another server port which in turn points back to it. This behavior has been seen only with one port, although not always the same port on the system. Reboot the PC to correct this problem.
Resolved Caveats
Table 5 lists the caveats resolved in AON release 3.0.0.67.
Table 5 Caveats Resolved in AON Release 3.0.0.67
Defect ID
|
Description
|
June 17, 2008—Build 3.0.0.67
|
CSCsg55520
|
AMC2.3: Global deployment fails on 172.22.50.238:7010
|
CSCsg76516
|
BEAJMS:DNS name not resolved
|
CSCsh18315
|
OutOfMemory error when show aon health command is used.
|
CSCsh63068
|
Error registering Adapter Extension Package - HTTPPAdapterExtPackage.jar
|
CSCsh70150
|
Custom bladelet got lost after hot reboot blade
|
CSCsk85953
|
No error message when wrong netmask address is assigned to Ethernet 3 interface.
|
CSCsk85960
|
Exception when wrong IP address is given.
|
CSCsj48270
|
AON node reboots with large number of records in DNS cache.
|
CSCsj22155
|
AMC installation fails with Red Hat Linux AS 5.
|
CSCsk86008
|
Timesync protocol messages appear on the console or in log files.
|
CSCso50847
|
AON does not check whether an endpoint connection is active before use.
|
CSCso54145
|
Auto PEP generation warns that valid assertions are ignored.
|
CSCso41119
|
AMC upgrade from 2.4.0.58 to 3.0.0.38 fails.
|
CSCso38084
|
Authentication fails in Tacacs when motd is enabled in router.
|
CSCsm50984
|
ADS does not pick up the latest parameters for updated bladelets.
|
CSCsm92599
|
Restarting AON may cause CAT 6500 and Sup-720 to reboot.
|
CSCsm80151
|
Kernel calculated Advertising MSS value incorrect when WCCP disabled.
|
CSCsl98188
|
PEP containing loop does not reclaim memory till after loop completion.
|
CSCsq02755
|
System Tunable Parameters: Streaming parameters cannot be lower than default.
|
CSCsq01317
|
Branch Bladelet is not stream-aware for progressive upload.
|
CSCsq11705
|
ArrayIndexOutOfBounds exception on second node in two-node setup.
|
CSCsq27417
|
Request Timeout is not adhered to when endpoint is slow or unresponsive.
|
CSCsq32552
|
Allow Idempotent request on a pipelined connection & NPE in select loop.
|
CSCsm92779
|
SNMP metric for "Average Response Time per Endpoint" missing.
|
CSCsq39709
|
Output of the sh third-party software command contains extra lines prefixed with "+".
|
CSCsq57651
|
ArrayIndexOutOfBounds exception under load with AON as proxy.
|
CSCsq57656
|
Out of Buffers exception under load with AON as proxy.
|
CSCsm99465
|
Server Connection Pool does not expire entries.
|
CSCsq49504
|
Radius adapter stops working if out-of-buffers occurs.
|
CSCse41603
|
BEA JMS—Message processing stops if JMS server is restarted while processing.
|
Table 6 indicates the caveats resolved in the AON 2.4 patch releases.
Table 6 Caveats Resolved in AON 2.4 Patch Releases
Defect ID
|
Description
|
February 8, 2008—Build 2.4.2.8
|
CSCsm48566
|
AON becomes unresponsive when not receiving ACKS for connect SYN packets
|
January 14, 2008—Build 2.4.2.7
|
CSCsl98181
|
Communication break errors are observed while using Oracle 10G with AccessDB
|
September 19, 2007—Build 2.4.2.6
|
CSCsj34924
|
OutOfMemory error when show aon health command is used.
|
CSCsk39411
|
TCP expired content issue related to Send bladelet.
|
June 15, 2007—Build 2.4.2.4
|
CSCsj03739
|
JMS reinitialization failure upon broker restart or JMS configuration update.
|
May 7, 2007—Build 2.4.1.61
|
CSCsi66043
|
Support for Sonic MQ.
|
CSCsj06029
|
Response Message not adhering to send time out policy.
|
CSCsk07193
|
Increase maximum dispatcher thread count.
|
Open Caveats
Table 7 lists the caveats for this AON release, including defect identification numbers and symptoms. When applicable, conditions under which the defects occur and workarounds are also included.
Table 7 Open Defects in Cisco AON Version 3.0
Defect ID
|
Description
|
CSCsq24109
|
Symptom
Identity Extractor bladelet fails to extract SAML 1.0 and 1.1 tokens.
Conditions
Occurs when the Identity Extractor bladelet is used to verify signed SAML 1.0 or 1.1 tokens.
Workaround
Use SAML 2.0 tokens.
Further Problem Description
This is due to the fact that the underlying open source library used for SAML verification fails for SAML 1.0 and 1.1 tokens.
|
CSCsm93487
|
Symptom
CADE-2142: Layer 2 forwarding is not preserved on CADE reboot
Conditions
The "forward" property is only available on 8340 appliances and the CADE platform.
Workaround
If an AON appliance is rebooted, the forward layer2 WCCP setting must be reapplied using the CLI.
|
CSCsi19595
|
Symptom
Schema validation fails for partial message validation; for example, when using XPath to pick part of the message as a validation target
Conditions
Occurs only for partial message validation, not for full message validation.
Workaround:
Avoid partial message validation by providing all schemas necessary to validate the complete message.
|
CSCsh85052
|
Symptom
When deploying a large adapter, the AMC throws an internal DB exception. From the AMC log, the exception stack trace points to "ArrayIndexOutOfBoundsException."
Conditions
This error is caused by insufficient heap space in the AMC process to handle large adapter, typically of size 50MB or larger.
Workaround
Stop the AMC server, then increase the AMC heap size in the AMC startup script, and then restart the AMC.
Here are the detailed steps:
1. Stop the AMC by running ./amcd stop from the /bin subdirectory under your installed AMC root directory.
2. Open up the "amc" script with a text editor. Look for the following lines in the script:
"-Damc.resource.home=${AMC_HOME}" \
"-Djavax.net.ssl.keyStore=${KSTORE}" \
The default heap size is 512MB (as defined by "Xmx512m").
3. Increase the heap size to a larger number (for example, 768 MB, as in "Xmx768m").
4. Save the file.
5. Restart the AMC by running ./amcd start.
|
CSCsh68780
|
Symptom
Sybase driver upgrade issue.
Conditions
When deploying a large adapter (50 MB or larger), the AMC throws an internal database exception.
The error is caused by insufficient heap space to accommodate the 50 MB adapter.
Workaround
Upgrade to the latest Sybase driver.
|
CSCsj38540
|
Symptom
Slow query results when trying to view logged message details
Conditions
Occurs when there are 50 K or more of messages in the database.
Workaround
Create an index on the LOGID for the Message_Contents and entries to set up the indexes on LOGID are:
CREATE INDEX "MSG_CONTENTS_IDX" ON "MESSAGE_CONTENTS" ("LOGID");
CREATE INDEX "FLOW_VARIABLES_IDX" ON "FLOW_VARIABLES" ("LOGID");
|
CSCsk51380
|
Symptom
ID-Ext failed to extract signed SAML token after AON signs SOAP message.
Conditions
This problem occurs when these two conditions are present:
1. The incoming message has a signed SAML token signed by AON.
2. AON executes a PEP that includes the Sign and IdExtract bladelets.
Workaround
Use a custom bladelet to sign the SAML tokens and use the IdExtract bladelet only to extract a signed SAML token.
|
CSCsj25419
|
Symptom
Headers added to a Request Message get copied to created Response Message
Conditions
Occurs with any HTTP request message.
Workaround:
Use the Update Message bladelet to set the response message headers.
|
CSCsk18261
|
Symptom
"No" commands do not provide negate functionality
Conditions
Some of the negate commands that start with no, for example, no show aon health or no wr erase do not work as expected, and the commands themselves may not be valid (for example, no show aon health). Most of the negate versions of show commands are not valid but such an indication is not displayed on the AON command prompt, while some of the negate commands that involve updates like no wr erase are not working as expected.
Workaround
None
|
CSCsi15541
|
Conditions
If the time zone is changed on K-plus and the switch is rebooted, AON inherits the switch time zone.
Workaround
Change the time zone on K-plus following the reboot
|
CSCsq39666
|
Symptom
While running the secondary (flash-memory based) helper on the AON module, the "exit" option does not terminate the session.
Conditions
Boot the device from the secondary helper image and select the exit option from the main menu.
Workaround
Enter the usual CLI break sequence shortcut—<CTRL> x.
|
CSCsq41554
|
Symptom
Graceful restart does not work.
Conditions
When the aon restart graceful command is entered, the command does not complete.
Workaround
Enter the aon restart force command.
|
CSCsm86105
|
Symptom
On the AON CLI, the default network interface used for AON traffic is identified as GigabitEthernet2
Conditions
This condition occurs on the CADE-2142 appliance.
Workaround
None. See the "Verifying the Hardware Installation on the Cisco-ADE 2142" section in chapter 1 the Cisco AON Installation and Upgrade Guide, 3.0, "Configuring AON Devices" for information on the actual mapping of the ports to the physical interface.
|
CSCsk87732
|
Symptom
Unable to configure ip route command via CLI
Conditions
Two ports are on the same subnet.
Workaround
Ensure that each port is on a separate subnet and no explicit routes are required for either port.
|
CSCso88009
|
Symptom
Cisco ADE 2142—Unable to configure gateway address for out-of-band interface.
Conditions
The CLI provides the following command:
out-of-band interface ip address <IPaddress> <netmask>
There is no other CLI available for configuring the gateway address for the out-of-band interface.
If the out-of-band interface is on a different subnet, since there is no way to configure the gateway, the interface is unusable. This means that the out-of-band interface be on the same subnet as the Gigabit2 interface and use the same default gateway.
Workaround
None.
|
CSCsj59005
|
Symptom
When using the distributed cache, attempts to obtain locks may time out.
Conditions
Multiple custom bladelets attempt to obtain lock on an object prior to performing either the corresponding get/put or delete function. After some time of successful obtaining locks, the bladelets experience that lock attempts time out.
Workaround
None. Avoid using the distributed cache.
|
CSCsm62994
|
Symptom
ADS and AMC get out of sync
Conditions
Occurs after deleting and reading PEP and message type.:
Workaround
This can happen if the AMC is not reinstalled as prescribed. Retry the AMC installation.
|
CSCso10437
|
Symptom
WCCP is lost when the AON module is reloaded
Conditions
WCCP is configured from the CLI. The AON module is reloaded by using the reload command or the switch or router CLI.
Workaround
Use the AMC to configure the WCCP information.
|
CSCso21095
|
Symptom
Upon removal from the chassis, AMC displays the node in the reachable state (showing a green up arrow).
Conditions
Removal of the AON module from the chassis while the node state is shown as reachable on the AMC display.
Workaround
Restart the AMC.
|
CSCek25514
|
Symptom
Fastpath does not support wildcards in a uniform resource identifier (URI) for message-type classification.
Conditions
In a message type URI, if a string such as "/index*" is specified, Fastpath classification does not classify messages with URIs "/index.html" or "/index1.html" to that message type.
Workaround
Use complete URI for message-type classification. If more than one URI must be classified to a single message type and execute the same policy execution plan (PEP), define a message type for each URI and map all message types to the same PEP.
|
CSCsq23342
|
Symptom
The AON device allows running SSH and SNMP from both the in-band and out-of band interface.
The expected behavior should be:
•SSH is configurable only through the out-of-band interface.
•SNMP is configurable only through the out-of-band interface.
|
CSCsq23345
|
Symptom
Syslog traffic is transmitted through the in-band interface instead of the out-of-band interface.
On the Gigabit2 interface, Syslog messages should be sent through the out-of-band interface.
|
CSCsq53316
|
Symptom
The message KERNEL: assertion (!req->sk) appears on the AON console and the node goes down unexpectedly if left running for more than 24 hours.
Conditions
KPLUS is running under the following conditions:
•WCCP is enabled in a single node configuration.
•Syslog is set to debug mode and logging to a remote machine.
•The node is serving a very high load for more than 24 hours.
Workaround
Set the debug level to warning both on AON and in syslog.
|
CSCek31626
|
Symptom
Classification based on URI does not seem to work correctly. Messages are rejected even if there is an entry for that URI.
Conditions
This occurs under the following sample configuration:
•A message type named "T1" is based on 5-tuple named "A" and a URI of "/index-nomatch.html"
•Another message type is named "T2" and based only on a URI of "/index.html"
Messages that match 5-tuple "A" and URI "/index.html" do not get classified to type "T2" and are rejected.
Workaround
Use one of the following options:
•Add a third message type that is based on 5-tuple "A" and URI "/index.html"
•If 5-tuple based classification is not required for "T1" classification, remove the 5-tuple detail from that message type.
|
CSCek37187
|
Symptom
Following an upgrade, the log level for Fastpath resets to the default setting, as it is designed to do. However, the running configuration incorrectly shows the previous log level.
Workaround
Configure the appropriate log level after each upgrade.
|
CSCse55758
|
Symptom
When the URI is http:cisco.com/index.html, instead of sending the data to http://cisco.com/index.html, AON sends the request to the destination specified in the "host" header field.
Conditions
This occurs when the URI is incorrect. Although http:www.cisco.com is a correct form of URI, Fastpath misinterprets it. Fastpath then reconstructs the URL from the "host" header field and attempts to connect to it.
Workaround
None.
|
CSCsg76007
|
Symptom
Port 6666 becomes unresponsive after a massive number of HTTPS requests. The port does not recover.
Workaround
Restart AON.
|
CSCsh67373
|
Symptom
AON lacks correct time zone information for the U.S. state of Indiana.
Workaround
Change your time zone setting to a locale that equates to the correct time for your area. See the following document for more complete details: Impact of U.S. Daylight Savings Time Changes on Cisco Application-Oriented Networking.
|
Related Documentation
The AON documentation set includes the following guides:
•Documentation Guide for Cisco AON, 3.0—Lists the titles and Cisco.com location of the Cisco AON 3,0 documents.
•AON Installation and Upgrade Guide, 3.0—Covers the installation and upgrade of the AON environment.
•Cisco AON Administration Guide, 3.0—Covers the administration of AMC and AON nodes.
•Cisco AON Development Studio User Guide, 3.0—Covers ADS, bladelets, and PEP creation.
•AON Programming Guide, 3.0—Covers the development of custom bladelets, custom adapters, and other features related to extending AON functionality.
Obtaining Documentation, Obtaining Support, and Security Guidelines
For information on obtaining documentation, obtaining support, providing documentation feedback, security guidelines, and also recommended aliases and general Cisco documents, see the monthly What's New in Cisco Product Documentation, which also lists all new and revised Cisco technical documentation, at:
http://www.cisco.com/en/US/docs/general/whatsnew/whatsnew.html
CCDE, CCENT, Cisco Eos, Cisco Lumin, Cisco StadiumVision, the Cisco logo, DCE, and Welcome to the Human Network are trademarks; Changing the Way We Work, Live, Play, and Learn is a service mark; and Access Registrar, Aironet, AsyncOS, Bringing the Meeting To You, Catalyst, CCDA, CCDP, CCIE, CCIP, CCNA, CCNP, CCSP, CCVP, Cisco, the Cisco Certified Internetwork Expert logo, Cisco IOS, Cisco Press, Cisco Systems, Cisco Systems Capital, the Cisco Systems logo, Cisco Unity, Collaboration Without Limitation, EtherFast, EtherSwitch, Event Center, Fast Step, Follow Me Browsing, FormShare, GigaDrive, HomeLink, Internet Quotient, IOS, iPhone, iQ Expertise, the iQ logo, iQ Net Readiness Scorecard, iQuick Study, IronPort, the IronPort logo, LightStream, Linksys, MediaTone, MeetingPlace, MGX, Networkers, Networking Academy, Network Registrar, PCNow, PIX, PowerPanels, ProConnect, ScriptShare, SenderBase, SMARTnet, Spectrum Expert, StackWise, The Fastest Way to Increase Your Internet Quotient, TransPath, WebEx, and the WebEx logo are registered trademarks of Cisco Systems, Inc. and/or its affiliates in the United States and certain other countries.
All other trademarks mentioned in this document or Website are the property of their respective owners. The use of the word partner does not imply a partnership relationship between Cisco and any other company. (0804R)
© 2008 Cisco Systems, Inc. All rights reserved.
