Table Of Contents
Cisco IOS Software Release 12.4 Features and Hardware
1) Introduction: Cisco IOS Software Release 12.4
1.2) Cisco IOS Packaging: Secure Management Access
1.3) Release 12.4T Additional Information
2) Release 12.4 Feature Technology Highlights
2.10) Management Instrumentation
2.11) Multiprotocol Label Switching
Product Bulletin No. 2852
Cisco IOS Software Release 12.4 Features and Hardware
This Product Bulletin introduces Cisco IOS Software Release 12.4T, and includes the following sections:
Last Updated: July 2006
1) Introduction: Cisco IOS Software Release 12.4
Cisco IOS® Software is the world's leading network infrastructure software, delivering a seamless integration of technology innovation, business-critical services, and hardware support. Currently operating on millions of active systems, ranging from the small home office router to the core systems of the world's largest service provider networks, Cisco IOS Software is the most widely leveraged network infrastructure software in the world.
One of the most significant delivery milestones for Cisco IOS Software is the introduction of a new major release, which ships once every two years, delivers hundreds of advanced capabilities, and aggregates multiple prior releases into a synergistic whole.
Developed for wide deployment in the world's most demanding Enterprise, Access, and Service Provider Aggregation networks, Major Release 12.4 is a comprehensive portfolio of Cisco technologies, including the leading-edge functionality and hardware support introduced in Release 12.3T, anchored by an intensive stability and testing program.
Major Release 12.4 introduces more than 700 industry-leading features across the widest range of hardware in the industry. These key innovations span multiple technology areas, including Security, Voice, High Availability, IP Routing, Quality of Service (QoS), IP Multicast, IP Addressing, IP Mobility, Multiprotocol Label Switching (MPLS), and VPNs.
Figure 1
Major and Technology Release Relationship
1.1) Migration Guide
Cisco recommends that customers who need to deploy Release 12.3T features upgrade to Cisco IOS Software Major Release 12.4. Release 12.3T is scheduled for End of Sales in Q4CY'05.
While customers can no longer order software releases that reach End of Sales, they can download such releases from Software Center if they have a maintenance contract.
The following Cisco IOS Software releases identify the current recommended migration into Release 12.4.
Figure 2
Release 12.4 Migration Recommendation
Major Release 12.4 undergoes testing and review cycles to continuously improve and increase reliability and quality. As per Cisco's policies, no new technologies or features are added. Cisco updates Release 12.4 via regular maintenance releases to include minor improvements based upon customer experiences.
Maintenance for Release 12.3T ceases upon this introduction of Release 12.4. Users of Release 12.3T should migrate to Major Release 12.4 in order to receive maintenance.
For additional information about Cisco IOS Software Product Lifecycle Dates & Milestones, please visit:
http://www.cisco.com/en/US/products/sw/iosswrel/ps5187/prod_bulletin0900aecd801eda8a.html1.2) Cisco IOS Packaging: Secure Management Access
Cisco IOS Software Release 12.4 will introduce support for management access using Secure Shell (SSH), HTTPS and Simple Network Management Protocol version 3 (SNMPv3) on the Cisco 1800, 2800, and 3800 Series Access Routers. These three features work with other device management features (ie: image verification, role-based CLI views, user authentication, and VTY access control lists) to provide flexible and secure management access to any remote router, regardless of which Release 12.4 feature set it is configured on the router.
•
SSHv2 client and server functionality provides a secure, encrypted alternative to traditional telnet for router configuration and administration.
•
•
Note:
1.3) Release 12.4T Additional Information
•
http://www.cisco.com/go/release124/
•
http://www.cisco.com/en/US/products/sw/iosswrel/ps5187/prod_bulletin0900aecd801eda8a.html
•
Download Cisco IOS Software releases and access software upgrade planners.
http://www.cisco.com/public/sw-center/sw-ios.shtml
•
A web-based application that allows users to quickly match Cisco IOS Software releases to features to hardware.
•
Determine the minimum supported software for selected hardware.
http://www.cisco.com/pcgi-bin/front.x/Support/HWSWmatrix/hwswmatrix.cgi
•
View all major releases, hardware, and software features from a single interface.
http://www.cisco.com/pcgi-bin/Software/Iosplanner/Planner-tool/iosplanner.cgi
•
http://www.cisco.com/warp/public/732/feedback/release/
2) Release 12.4 Feature Technology Highlights
2.1) Hardware Support
Table 2 Hardware Highlights
2.1.1) Cisco 3800 Series Integrated Services Router
The integrated services routing architecture of the Cisco 3800 Series builds on the powerful Cisco 3700 Series routers designed to embed and integrate security and voice processing with advanced services for rapid deployment of new applications, including application layer functions, intelligent network services, and converged communications. The Cisco 3800 Series supports the bandwidth requirements for multiple Fast Ethernet interfaces per slot, time-division multiplexing (TDM) interconnections, and fully integrated power distribution to modules supporting 802.3af Power over Ethernet (PoE), while still supporting the existing portfolio of modular interfaces. This ensures continuing investment protection to accommodate network expansion or changes in technology as new services and applications are deployed. By integrating the functions of multiple separate devices into a single compact unit, the Cisco 3800 Series dramatically reduces the cost and complexity of managing remote networks.
New models include the Cisco 3825 and the Cisco 3845, available with three optional configurations for AC power, AC power with integrated IP phone power support, and DC power.
Figure 3
Cisco 3800 Series Integrated Services Router
Benefits
•
•
•
•
•
Additional Information: http://www.cisco.com/en/US/products/ps5855/index.html
Product Management Contact: cs-3800@cisco.com
2.1.2) Cisco 2800 Series Integrated Services Router
The Cisco 2800 Series comprises four new routers: Cisco 2801, 2811, 2821, and 2851 Routers. The Cisco 2800 Series provides significant additional value compared to prior generations of Cisco routers at similar price points by offering up to a fivefold performance improvement, up to a tenfold increase in security and voice performance, new embedded service options, and dramatically increased slot performance and density while maintaining support for most of the more than 90 existing modules that are available today for the Cisco 1700 Series and Cisco 2600 Series.
The Cisco 2800 Series features the ability to deliver multiple high-quality simultaneous services at wire speed up to multiple T1/E1/xDSL connections. The routers offer embedded encryption acceleration and motherboard voice digital-signal-processor (DSP) slots; intrusion prevention system (IPS) and firewall functions; integrated call processing and voice mail; high-density interfaces for a wide range of connectivity requirements; and sufficient performance and slot density for future network expansion requirements and advanced applications.
Figure 4
Cisco 2800 Series
Benefits
•
•
•
•
Hardware
Additional Information: http://www.cisco.com/en/US/products/ps5854/index.html
Product Management Contact: cs-2800@cisco.com
2.1.3) Cisco 1800 Series Integrated Services Router
Cisco 1800 Series Integrated Services Routers are the next evolution of the award-winning Cisco 1700 Series modular access routers. The Cisco 1841 Router is designed for secure data connectivity and provides significant additional value compared to prior generations of Cisco 1700 Series routers by offering more than a fivefold performance increase, integrated hardware-based encryption enabled by an optional Cisco IOS Software security image, and a dramatic increase in interface card slot performance and density while maintaining support for more than 30 existing WAN interface cards (WICs) and multiflex trunk cards (voice/WICs [VWICs]—for data only on the Cisco 1841 router) of the Cisco 1700 Series.
The Cisco 1841 Router features secure, fast, and high-quality delivery of multiple, concurrent services for small-to-medium-sized businesses and small enterprise branch offices. The Cisco 1841 router offers embedded hardware-based encryption enabled by an optional.
Cisco IOS Software security image; further enhancement of VPN performance with an optional VPN acceleration module; an intrusion prevention system (IPS) and firewall functions; interfaces for a wide range of connectivity requirements, including support for optional integrated switch ports; plus sufficient performance and slot density for future network expansion and advanced applications as well as an integrated real-time clock.
Figure 5
Cisco 1800 Series
Benefits
•
•
•
•
•
Hardware
Additional Information: http://www.cisco.com/en/US/products/ps5853/index.html
Product Management Contact: cs-1800@cisco.com
2.1.4) Cisco 1711 and 1712 Security Access Routers
Description
The Cisco 1711 and 1712 Security Access Routers offer an all-in-one security, routing, and switching solution for enterprise small branch offices and small and medium sized businesses. They feature built-in Fast Ethernet LAN switching, Fast Ethernet port for DSL or broadband modem connectivity, integrated Cisco IOS Security and backup WAN for link redundancy to help ensure high availability of critical business applications.
Figure 6
Cisco 1711/1712 Application Advantages—Workgroup Segmentation with Dial Backup
Benefits
•
•
•
•
•
•
•
Hardware
Product Management Contact: dthaele@cisco.com
2.1.5) Network Modules for Circuit Emulation Services over IP for the 2600, 3600, and 3700 Series Routers
Description
The Cisco 2600/3660/3700 Circuit Emulation over IP (CEoIP) network modules (product IDs: NM-CEM-4T1E1 and NM-CEM-4SER) enable service provider customers to create a new revenue stream by offering a leased line service over existing packet infrastructure. Enterprise and government customers will be enabled to migrate applications which require TDM transport on to their IP networks, thus saving operational expenses.
Hardware
Product Management Contact: cschwaig@cisco.com
2.1.6) Network Analysis Module for the 2600, 3660, and 3700 Series Routers
Description
The Cisco 2600/3660/3700 Series Network Analysis Module (product ID: NM-NAM) is an integrated traffic-monitoring network module that enables network managers to gain application-level visibility into network traffic at remote sites with the ultimate goal of improving performance, reducing failures, and maximizing return on network investments. It expands the Cisco NAM solution available for Cisco Catalyst® 6500 Series switches and Cisco 7600 Series routers. It provides the unique advantage of performing remote troubleshooting and traffic analysis through its Web-based NAM Traffic Analyzer without having to send personnel to remote sites or haul large amounts of data to the central site.
Figure 7
The Cisco 2600/3660/3700 Series Network Analysis Module
Benefits
•
•
•
•
•
Hardware
Product Management Contact: massung@cisco.com
2.1.7) Cisco Unity Express
Cisco Unity Express offers entry-level voice mail and automated attendant services as an option for the Cisco CallManager Express call-processing solution. This product is critical for Cisco CallManager Express customers in small/medium businesses or branches that need data connectivity and IP Telephony functionality, and those that require the productivity benefits that voice mail and auto attendant services provide. Cisco Unity Express is delivered on a network module that can be used in the Cisco 2600XM Series, Cisco 2691, and the Cisco 3700 Series Access Routers.
Figure 8
Cisco Unity Express
Benefits
•
•
•
•
•
•
Hardware
Product Management Contact: access-ccme-cue@cisco.com
2.1.8) Cisco IDS Network Module
With the increased complexity of security threats, achieving efficient network intrusion security solutions is critical to maintaining a high level of protection. Vigilant protection helps ensure business continuity and minimizes the effect of costly intrusions. The Cisco IDS Network Module for the Cisco 2600XM and 3700 Series Routers and the Cisco 3660 Router is part of the Cisco IDS Family sensor portfolio and the Cisco Intrusion Protection System. These IDS sensors work in concert with the other IDS components (Figure 49), including Cisco IDS Management Console, CiscoWorks VPN/Security Management Solution, and Cisco IDS Device Manager, to efficiently protect data and information infrastructure.
The Cisco IDS product line delivers a broad range of solutions that allow easy integration into many different environments, including enterprise and service provider environments. Each sensor addresses the bandwidth requirements of different routers up to 10 Mbps in the Cisco 2600XM, and up to 45 Mbps in the Cisco 3700 Series. The appliance product supports 80 Mbps to 1 Gbps.
The Cisco IDS Network Module can monitor up to 45 Mbps of traffic and is suitable for T1/E1 and T3 environments. A router installed with this IDS network module also supports other Cisco IOS Security features such as VPN, firewall, Multiprotocol Label Switching (MPLS), Network Address Translation (NAT), and Web Cache Control Protocol (WCCP), while supporting all common Cisco IOS Software functions.
Cisco IDS Network Modules fit into a single network module slot on the Cisco 2600XM Series, Cisco 3660, and Cisco 3700 Series Routers. The available configuration is a 20-gigabyte hard disk for logging and storage of events. The external Ethernet port is used for command and control to enable a secure outbound port for management. This setup also allows for both security operations and network operations to have their own command and control interfaces.
Figure 9
Cisco IDS Network Module
Benefits
By integrating IDS and branch office routing, Cisco reduces the complexity of securing WAN links, while reducing operational costs. Following are the benefits associated with the integration of the IDS into the branch office router:
•
•
•
•
•
•
Hardware
Product Management Contact: Kevin Sullivan, sullivan@cisco.com
2.2) Broadband
Table 3 Broadband Feature Highlights
2.2.1) Upstream Connection Speed Transfer at LAC
This feature allows the configuration for Layer 2 Tunneling Protocol (L2TP) Attribute-Value Pair 38 (AVP) at the L2TP Access Concentrator (LAC). AVP38 allows the communication of the upstream (from the remote site to the LAC) connection speed and complements Cisco's existing support for AVP24 for downstream (from LAC to remote site) connection speed. This support allows for the creation of asymmetric broadband services where the upstream and downstream connection speeds differ.
Benefits
•
•
•
Hardware
Product Management Contact: sbhardwa@cisco.com
2.2.2) Configurable MAC Address for bba-group
This feature allows the configuration of separate MAC addresses for PPPoE and RBE sessions on the same physical ATM interface. This is important since the aggregation router, as shown in Figure 10, uses the ATM interfaces MAC address as the source address for both the PPPoE and RBE incoming sessions. In cases where multiple hosts exist and PPPoE and RBE sessions have been initiated, there is a need to have the ability to configure the MAC address (versus simply taking the MAC address from the ATM interface of the CPE router) so that the different sessions can be differentiated. This feature is only available under the bba-group configuration mode and requires each session to be on its own PVC.
Figure 10
Configurable MAC Address for bba-group
Benefits
Allows support of multiple session types, like RBE and PPPoE, on the same ATM interface for broadband applications.
Hardware
Considerations
•
•
Product Management Contact: sbhardwa@cisco.com
2.2.3) Explicit Call Transfer for ETSI PRI
Explicit Call Transfer (ECT) allows the router to transfer a call received from the PSTN to the final destination number on the PSTN instead of "hairpinning" the call on the router interface and consuming DS0 channel on a PRI interface. This particular feature will allow the ECT functionality to work on ETSI (NET5) switch-type and will help make better use of channels on a PRI interface. The typical architecture for this functionality has the AS5xxx to acting as a voice gateway between a SIP (Session Initiation Protocol) based Voice Recognition Server(VRS) and a Central Office Switch in the PSTN network. The application is to be able to provide call transfer services based upon voice recognition (the typical voice activated menus of call centers like an airline reservation system) to service provider customers looking to operate large customer contact centers. In these applications, the call flow proceeds as follows:
1.
2.
3.
Benefits
Allows better utilization of DS0 channels on PRI interfaces for VoIP applications and allows Call Transfer functionality to work with ETSI (NET5) switch types, which are found in Europe and Asia.
Hardware
Product Management Contact: Sanjay Bhardwaj, sbhardwa@cisco.com
2.2.4) Protocol Translation Template
Protocol Translation Template (PTT) will allow Telco DCN (Data Communication Network) customers increased flexibility in configuring PT sessions in environments where a large number of PT sessions must be configured. The current PT configuration requires static mapping between incoming connections (like PAD, Telnet, LAT) and configuration parameters to the outbound protocol connection (PAD, Telent, LAT, PPP, SLIP, ...) and configuration parameters. The new PTT will allow the construction of a template which will contain `ruleset' capabilities to allow for the dynamic configuration construction to simplify the task of creating large scale PT configurations. The `ruleset' capability will allow for multiline string searches, comparisons, and substitutions in the PTT to create a configuration for PT.
Benefits
Using Protocol Translation Templates will allow Telco DCN administrators to create large scale PT configurations in a quicker and more error-free manner. Administrators will not have to configure a large number of static PT sessions and will have a simple method to configure a general purpose PTT.
Hardware
Product Management Contact: Sanjay Bhardwaj, sbhardwa@cisco.com
2.2.5) Asynchronous Line Monitoring
Asynchronous Line Monitoring enables the monitoring of control characters, along with the character mode traffic on an asynchronous line. A new keyword `control-char' will be added to the existing CLI `monitor traffic' to turn on this function.
Asynchronous Line Monitoring also adds the ability to lock the keyboard, preventing the insertion of typed characters into the stream of characters on the asynchronous line.
The modified CLI will look like this:
monitor traffic line <line> [in] [out] [control-char][interactive]This functionality is important for Telco Data Communication Network (DCN) applications where Service Providers want to monitor remote Network Elements via asynchronous lines.
Figure 11
Asynchronous Line Monitoring
In the DCN application example shown above, the user opens a telnet session from the Operation Support System (OSS) host to the Network Element.
Benefits
Asynchronous Line Monitoring provides added granularity and enables network administrators to control traffic on asynchronous lines.
Hardware
Product Management Contact: Sanjay Bhardwaj, sbhardwa@cisco.com
2.2.6) VRF Aware Dialer Watch
Description
The virtual routing and forwarding instance (VRF) Aware Dialer Watch feature enhances dialer watch functionality by allowing an IP address and VRF pair to be watched for dial backup. In this way, a given VRF (or set of VRFs) may be backed up by an ISDN or Dial Connection. This functionality provides an added measure of fault tolerance in a VPN environment.
Figure 12
VRF Aware Dialer Watch Typical Configuration
A typical scenario for the VRF Aware Dialer Watch feature follows:
•
•
•
•
•
Benefits
Enhanced fault tolerance and network Resiliency in VPN environments.
Hardware
Product Management Contact: sbhardwa@cisco.com
2.2.7) PPP/MLP MRRU Negotiation
Description
The PPP/MLP MRRU Negotiation Configuration feature enables a router to send and receive frames over Multilink PPP (MLP) bundles that are larger than the default Maximum Receive Reconstructed Unit (MRRU) limit of 1524 bytes. Previously, configuring the MRRU option negotiated on a multilink bundle with the MLP was not possible. Cisco IOS Software provided an MRRU default value of 1524 bytes, which meant that the maximum transmission unit (MTU) of the peer's bundle interface was restricted to a value of 1524 bytes or fewer for a successful data transfer.
The PPP/MLP MRRU Negotiation Configuration feature allows configuration control over MRRU negotiation. A new interface configuration command introduced with this feature, ppp multilink mrru, allows configuration of the specific MRRU value that the router will advertise, and optionally establishing a lower boundary on the MRRU value of the peer.
Benefits
This feature is useful when the addition of a header, such as an IPsec header or application software header, causes the MTU of packets on an MLP interface to exceed the 1500 byte MTU of a typical IP packet.
Hardware
Product Management Contact: sbhardwa@cisco.com
2.2.8) Digital Private Network Signaling System Backhaul
This feature introduces support for Digital Private Network Signaling System (DPNSS) Layer 2 functionality on the Cisco Gateway (GW) Router. It supports Layer 3 backhauling to a Cisco PGW2200 using DPNSS and Digital Access Signaling System (DASS) User Adaptation (DUA) over Stream Control Transmission Protocol (SCTP).
DPNSS was developed by British Telecom and is used in the United Kingdom, Northern Europe, and parts of Asia. It is a standard and open protocol used between PBXs in a private network that enables complex features to work on a network basis. This feature applies the DPNSS backhaul solution on Cisco gateways to provide connectivity and services to the PBXs that are running the DPNSS protocol.
Benefits
This functionality enables Cisco routers to interoperate with PBXs that run the DPNSS signaling protocol. This will allow for successful migration of Cisco VoIP solutions into a DPNSS-based PBX environment.
Hardware
•
•
Product Management Contact: sbhardwa@cisco.com
2.2.9) V.120 Support for Network Access Servers
The V.120 Support for Network Access Server (NAS) feature supports the International Telecommunication Union Telecommunication Standardization Sector (ITU-T) V.120 bit rate adaptation standard, which allows connectivity to slower bandwidth devices through rate adaption. This feature was developed for the Media Gateway Control Protocol (MGCP) network access server (NAS) package, and allows ISDN terminal adapters to transfer data. The MGCP NAS package implements signals and events to create, modify, and close data calls. The events include signaling the arrival of an outbound call, such as IP to Public Switched Telephone Network (PSTN) to the media gateway controller (call agent), reporting carrier loss and call authorization status, and receiving callback requests.
Benefits
This feature enables Cisco routers to function in Gateway role between networks with different data rates that use the V.120 standard.
Hardware
Product Management Contact: sbhardwa@cisco.com
2.2.10) Layer 2 Tunnel Protocol Tunnel Connection Speed Labeling
In previous releases of Cisco IOS Software, when a Layer 2 Tunnel Protocol (L2TP) Network Server (LNS) received an Incoming-Call-Connected (ICCN) message, there was no authentication check on the users connection speed. L2TP Tunnel Connection Speed Labeling introduces the ability to accept or deny an L2TP session based on the allowed connection speed that is configured on the Cisco Access Registrar (ARS) RADIUS server for that user. This allows RADIUS server authorization of users based on their Service Level Agreement (SLA).
Benefits
This feature enables an LNS to authorize users for network access based upon the connection speed of the session. This is useful in certain European markets due to regulatory requirements.
Hardware
•
•
Product Management Contact: sbhardwa@cisco.com
2.2.11) Peer Pool Backup Command
The "peer pool backup" facility provides ability to specify a "preferred" IP address pool from AAA (on a per user basis) and still provide alternate pools when then AAA specified pool is exhausted or not yet created. This functionality is driven by the emergence of numerous independently controlled AAA servers in a large scale dial or DSL environments where user groups are assigned address ranges, but there is a common "over flow" pool set so that the number of users in a group can far exceed the address range assigned. This facility also provides the ability to suppress the loading of dynamic IP address pools on a per interface basis and the ability to limit the AAA pool name to a set acceptable to the NAS, both key features when the NAS and AAA are controlled by separate parties.
Benefits
Allows Cisco routers increased flexibility and scalability in assigning IP addresses for Dial/DSL environments which have a large service subscriber base.
Hardware
Product Management Contact: sbhardwa@cisco.com
2.2.12) Point to Point Protocol over Ethernet Relay
Point to Point Protocol over Ethernet Relay (PPPoE) Relay enables an L2TP access controller (LAC) to relay active discovery and service selection functionality for PPP over Ethernet (PPPoE), over a L2TP control channel, to an L2TP network server (LNS) or tunnel switch. The relay functionality of this feature enables the LNS or tunnel switch to advertise the services it offers to the client, thereby providing end-to-end control of services between the LNS and a PPPoE client.
Benefits
PPPoE Relay allows end-to-end control of services between LNS and PPPoE client. This allows a broadband Service Provider added flexibility in the services offered to the user base or further granularity to customize the network based upon the subscriber.
Hardware
Product Management Contact: sbhardwa@cisco.com
2.2.13) PPPoE Session Limit per NAS Port Download
PPPoE Session Limit Per NAS Port limits the number of PPPoE sessions on a specific virtual circuit (VC) or VLAN configured on an L2TP access concentrator (LAC). The NAS port is either an ATM VC or a configured VLAN ID.
The PPPoE per-NAS-port session limit is maintained in a RADIUS server customer profile database. This customer profile database is connected to a LAC and is separate from the RADIUS server that the LAC and L2TP Network Server (LNS) use for the authentication and authorization of incoming users. See Figure 72 for a sample network topology.
Figure 13
PPPoE Session Limit Per NAS Port Sample Topology
Benefits
Allows centralized control of the number of users on a given port for a service provider. This is useful when dealing with multiple LAC devices.
Hardware
Product Management Contact: sbhardwa@cisco.com
2.2.14) Telnet/Packet Assembler/Dissembler Translation Authorization
Due to the security risks inherent in allowing unauthorized network usage, it is important to authorize sessions before allowing access to network resources. In previous releases of Cisco IOS Software, protocol translation sessions established the use of a one-step protocol translation without first issuing an authorization request. The Telnet/Packet Assembler/Dissembler (PAD) Translation Authorization feature adds an option to require that an authorization request be issued as a prerequisite to establishing a protocol translation session.
Benefits
The key benefit is enhanced security introduced by the Authorization step when using Telnet sessions or low-cost PAD devices for managing Network Elements in Telco environments with X.25.
Hardware
•
•
•
Considerations
•
•
Product Management Contact: Sanjay Bhardwaj, sbhardwa@cisco.com
2.2.15) X.25 Data Display Trace
The ability to debug a network is of vital importance when trying to trace the source of problems that cause lack of connectivity or suboptimal performance. X.25 Data Display Trace enhances the Cisco IOS Software debugging capability for X.25. It enables an authorized user to display the entire X.25-encoded traffic stream, including user data, for those packets specified by an X.25 debug command.
Benefits
X.25 Data Display Traces enables enhanced debugging capabilities for maintaining a router network or perhaps using the router to troubleshoot a network with X.25 connectivity.
Hardware
Product Management Contact: Sanjay Bhardwaj, sbhardwa@cisco.com
2.2.16) PPPoE over VLAN Scaling and ATM Support for PPPoE over VLANs
Scalability, both in terms of session counts and more broadly in terms of media types supported, is of critical importance to Service Providers deploying Broadband Networks. The PPPoE over VLAN Scaling and ATM Support for PPPoE over VLANs feature provides two enhancements to PPP over Ethernet (PPPoE) over IEEE 802.1Q VLAN functionality:
•
•
Figure 14
Sample Network Topology for PPPoE over 802.1Q VLANs over ATM
Benefits
•
•
Hardware
Considerations
•
•
•
Product Management Contact: Sanjay Bhardwaj, sbhardwa@cisco.com
2.2.17) End of Record Functionality for Data Communication Networks
The Cisco Protocol Translator is designed to support telnet-like applications that are stream-based, with no recognition or accommodation for logical records. This can cause problems for record-oriented applications, because the record boundaries in X.25 data are lost during translation to TCP.
End of Record Functionality for Data Communication Networks (DCN) provides for the configuration of an End of Record (EOR) marker, enabling the X.25 logical boundaries to be marked when translated to TCP. The feature enables the preservation of logical boundaries when translating X.25 data to TCP, enabling X.25-based networking solutions to adapt to and benefit from TCP/IP technologies.
Benefits
The benefit of this feature is that it will preserve data integrity in X.25 over TCP (XOT) protocol translation environments and minimize the need for packet resends; therefore, it will improve network performance/data throughput.
Hardware
Considerations
This feature is supported only for XOT protocol translation sessions.
Product Management Contact: Sanjay Bhardwaj, sbhardwa@cisco.com
2.2.18) Packet Assembler/Disassembler Subaddress Formatting Option
Prior to Cisco IOS Software Release 12.3(2)T, Packet Assembler/Disassembler (PAD) Subaddressing specifies a
two-digit field for subaddressing that requires a leading zero for subaddress values less than 10 (i.e., 0-9). The PAD Subaddress Formatting Option feature introduces the ability to suppress the leading zero for subaddresses with a value of nine or lower. This suppression occurs before the subaddress field is appended to the calling address.Figure 15
X25 Addressing Scheme: PAD Calls from Branch Office to Host
Benefits
This feature increases compatibility with X.25 host systems that use single-digit subaddresses. This will be particularly relevant for European X.25 host systems, which have a large installed base of single-digit systems.
Hardware
Product Management Contact: Sanjay Bhardwaj, sbhardwa@cisco.com
2.2.19) Layer 2 Tunneling Protocol Version 3
Layer 2 Tunneling Protocol version 3 (L2TPv3) is the Cisco solution for transporting Layer 2 packets over an IP network. L2TPv3 extends the usability of IP networks by enabling the transport of Layer 2 frames over an IP infrastructure. L2TPv3 is required for supporting legacy services over IP infrastructures and for supporting several new connectivity options, including Layer 2 virtual private networks (VPNs) and Layer 2 virtual leased lines.
L2TPv3 is an update to RFC2661 (L2TPv2). L2TPv2 was originally defined as a method of tunneling PPP frames across packet switched data network. A need emerged to update the draft, so it could include all Layer 2 encapsulations that required tunneling across packet networks, which led to the development of L2TPv3.
L2TPv3 includes to noticeable changes: removal of the PPP specific portions of the L2TPv2 header, thus generalizing it for other applications, and the transition to a performance friendly format for high-speed decapsulation.
L2TPv3 uses a directed Control Channel session between edge routers for setting up and maintaining connections. Forwarding occurs through the use of IP packet forwarding between two edge devices. Two headers, an IP header and the L2TPv3 header, are used to forward packets between routers. The external header is an IP header that routes tunneled packets over the IP backbone to the egress provider edge (PE) device. The L2TPv3 header determines the egress interface, and is used to bind the Layer 2 egress interface to the tunnel.
Figure 16
L2TPv3
Benefits
•
•
–
–
–
•
•
•
•
Hardware
Attachments: Frame Relay, Ethernet, HDLC, PPP
Product Management Contact: Neil Abogado, nabog@cisco.com
2.2.20) PPPoE Session Recovery after Reload
If the PPP keepalive mechanism is disabled on customer premises equipment (CPE) device, a Point-to-Point Protocol over Ethernet (PPPoE) session will hang indefinitely after an aggregation device reload. PPPoE Session Recovery After Reload enables the aggregation device to attempt to recover PPPoE sessions that failed because of reload by sending a PPPoE active discovery terminate (PADT) packet to the CPE. The CPE device is expected to take failure recovery action upon receipt of this packet.
Benefits
Network availability will improve, because CPE routers in a Broadband network will be informed to reestablish their PPPoE session after a reload at the Aggregation Router. This will minimize the impact and duration of connectivity loss during a failure in the Aggregation Router.
Hardware
Product Management Contact: Sanjay Bhardwaj, sbhardwa@cisco.com
2.2.21) L2TP Client-Initiated Tunneling
Layer 2 Tunneling Protocol (L2TP) Client-Initiated Tunneling introduces the ability to establish client-initiated L2TP tunnels. The client may initiate an L2TP or L2TPv3 tunnel to the L2TP network server (LNS) without the intermediate network access server (NAS) participating in tunnel negotiation or establishment.
Benefits
This enables providers to offer value-added services, such as VPNs or Firewalls, directly to their customers.
Hardware
Product Management Contact: Sanjay Bhardwaj, sbhardwa@cisco.com
2.2.22) B-Channel Availability Control
ISDN B-Channel Availability Control (BCAC) and Round-Robin Channel Selection Enhancements allow more dynamic control of the ISDN B channels by providing additional functionality for configuring message signaling, and an enhanced channel selection scheme th
