|
Table Of Contents
New Hardware Features Supported in Cisco IOS Release 12.3(14)T
Cisco AS5350XM Universal Gateway
Cisco AS5400XM Universal Gateways
Cisco Communication Media Module Voice Features
Cisco Small Business 100 Series Routers
Cisco WIC-1AM-V2 and WIC-2AM-V2 Analog Modem WAN Interface Card
Satellite Network Module (NM-1VSAT-GILAT)
VPN Acceleration Module 2+ (VAM2+)
New Software Features Supported in Cisco IOS Release 12.3(14)T
Administrative Secure Device Provisioning Introducer
BGP Support for Fast Peering Session Deactivation
BGP Support for IP Prefix Import from Global Table into a VRF Table
BGP Support for Next-Hop Address Tracking
Circuit Emulation over IP (CEMoIP)
Cisco 7200 Series & Cisco 7301 Routers - Enhanced MIB Support
Cisco Communication Media Module Voice Features
Cisco WIC-1AM-V2 and WIC-2AM-V2 Analog Modem WAN Interface Card
Configuration Change Notification and Logging - EAL4+ Certification Enhancements
DHCP Enhancements for Edge-Session Management
DHCP—Subscriber Identifier Suboption of Option82
DHCPv6 Predix Delegation via AAA
Dynamic DNS Support for Cisco IOS
EIGRP MPLS VPN PE-CE Site of Origin (SoO)
Embedded Resource Manager (ERM)
Enhanced Conferencing and Transcoding for Voice Gateway Routers
Exclusive Configuration Change Access
Extended Prepaid Tariff Switch with SSG
FXO Expansion Module for NM-HDA-4FXS
Hookflash and DTMF Relay Transfer
Inspection of Router-Generated Traffic
Integrated Routing and Bridging (IRB) Support for the Cisco MGX-RPM-XF-512
Intrusion Prevention System (IPS) - Signature Enhancements
IOS Embedded Event Manager 2.1
IP Side Answer Tone Detection for Echo Canceller Control
IP SLAs Sub-millisecond Accuracy Improvements
IP SLA - VoIP Call Setup (Post Dial Delay) Monitoring
IP SLA - VoIP Gatekeeper Registration Delay Monitoring
IPSec Anti-Replay Window: Expanding and Disabling
IPSec Virtual Tunnel Interface
IPv6 BSR Bi-Directional Support
L2TPv3: Layer 2 Tunnel Protocol Version 3
Land Mobile Radio (LMR) over IP
MAC Address Based Authorization with SSG
Malicious Caller Identification Invocation Support for Enterprise Networks
MCID for Cisco IOS Voice Gateways
Media and Signaling Authentication and Encryption Feature for Cisco IOS MGCP Gateways in SRST Mode
MIB Enhancements for H.323, SIP, and MGCP
MLPP for Analog and BRI Endpoints on Cisco IOS Voice Gateways
MLPP for Cisco IOS Voice Gateways
Mobile IP - Mobile IPv6 Home Agent
Mobile IP - Mobile Router DHCP Support for Dynamic CCoA and Foreign Agent Processing
Multiprotocol Label Switching (MPLS)
MPLS DiffServ-Aware Traffic Engineering (DS-TE)
MPLS Enhancements to Interfaces MIB
MPLS LDP Inbound Label Binding Filtering
MPLS QoS—DiffServ Tunneling Modes
MPLS VPN—Carrier Supporting Carrier—IPv4 BGP Label Distribution
MPLS VPN—Explicit Null Label Support with BGP IPv4 Label Session
MPLS VPN Half-Duplex VRF (HDVRF) Support
MPLS VPN—Inter-AS—IPv4 BGP Label Distribution
MPLS VPN Support for EIGRP Between Provider Edge and Customer Edge
MPLS VPN—VRF Selection Using Policy Based Routing
Multi-VRF CE (VRF-lite) Updated Performance
NAT Integration with MPLS VPNs (VRF-NAT)
NAT Routemaps Outside-to-Inside Support
NetFlow Layer 2 and Security Monitoring Exports
OER Support for Cost-Based Optimization and Traceroute Reporting
Option to Disable Hardware Crypto Engine Failover to Software Crypto Engine
OSPF Sham-Link Support for MPLS VPN
Outbound Control Packet Decoding Implemented for VPDN Debug Output Using the L2TP Protocol
Out-of-Band to In-Band DTMF Relay for Cisco IOS Voice Gateways
PA-POS-1OC3: 1-port Packet over SONET OC3c/STM1 Port Adapter
Per Interface mroute State Limit
Persistent Self-Signed Certificates
Policy Based Routing: Recursive Next Hop
QSIG Supplementary Features for Cisco IOS Voice Gateways
RADIUS Attribute 104 - Routemap Display Extension
RADIUS Attribute 5 (NAS-Port) Format Specified on a Per-Server Group Level
RSVP Refresh Reduction and Reliable Messaging
SafeNet IPSec VPN Client Support
Second-Generation 1- and 2-Port T1/E1 Multiflex Trunk Voice/WAN Interface Cards
Secure Device Provisioning Certificate-Based Authorization
Selective Enabling of Applications Using an HTTP or Secure HTTP Server
SHDSL - Auto Detection of 2-Wire Versus 4-Wire Line Mode
SNA Switching Services Enterprise Extender for IP Version 6
SSG Aware On-Demand IP Address Renewal
SSG Support for Subnet Based Authentication
Subordinate Certificate Server
System Logging - EAL4 Certification Enhancements
T.38 Fax Relay on the Cisco Catalyst 6000 and Cisco 7600 Communication Media Module
VoIP Alternate Path Fallback SNMP Trap
X.25 Station Type for ISDN D-Channel Interface
New Hardware Features Supported in Cisco IOS Release 12.3(11)T2
New Software Features Supported in Cisco IOS Release 12.3(11)T2
Cisco 7301 Router Supports Stateful Failover for IPSec
Media and Signaling Authentication and Encryption Feature for Cisco IOS MGCP Gateways in SRST Mode
New Hardware Features Supported in Cisco IOS Release 12.3(11)T
256-MB Memory Capacity Enhancement
Cisco 3200 Series Mobile Access Routers
High-Density Analog (FXO/FXS/DID) and Digital (BRI) Extension Module for Voice/Fax (EVM-HD)
New Software Features Supported in Cisco IOS Release 12.3(11)T
ATM Mode for Two-Wire or Four-Wire SHDSL
APS Support on AS5850 STM-1 Interface
BGP Support for Dual AS Configuration for Network AS Migrations
BGP Support for Named Extended Community Lists
BGP Support for Sequenced Entries in Extended Community Lists
Call Failure Recovery (Rotary) on the Cisco Multiservice IP-to-IP Gateway
Certificate Server Auto Archive
Cisco 1700 Series Voice Features
Cisco Enhanced Conferencing and Transcoding for Cisco Voice Gateway Routers
Cisco IOS Intrusion Prevention System
Cisco IOS IPv6 Configuration Library
Clear Certificate Server Enrollment Request Database
Configurable MAC Address for PPPoE
Configuring Fast Secure Roaming
Configuring Remote Site IEEE 802.1X Local Authentication Service
Default Route on a PPP Virtual Access Interface
Enabling OSPFv2 on an Interface Using the ip ospf area Command
Enhanced Crashinfo File Collection Method
Enhanced cRTP for Links with High Delay, Packet Loss and Reordering
Enhanced ITU-T G.168 Echo Cancellation
Gatekeeper Prefix Selection for Hair-Pinned Calls
IPv6 IOS Firewall FTP Application Support
IPv6 Multicast: Bootstrap Router (BSR)
MCID for Cisco IOS Voice Gateways
MLPP for Cisco IOS Voice Gateways
Mobile IP CPS Improvement at FA
Mobile Networks Deployment MIB
NBAR Multiple Applications per Port Capability
OER Policy-Rules Configuration and Port-Based Prefix Learning
Out-of-Band to In-Band DTMF Relay for Cisco IOS Voice Gateways
Overlap Signaling Processing on H.323 Terminating Gateways
PKI AAA Authorization Using the Entire Subject Name
Port Translation for Windows Clients and Cisco IOS LNS Support
QSIG Supplementary Features for Cisco IOS Voice Gateways
SHDSL - Auto Detection of 2 Wire Versus 4 Wire Line Mode
Skip FA/HA-CHAP at Mobile IP Lifetime Renewals
SSG Default Quota for Prepaid Billing Server Failure
SSG Support for Dynamic Load Balancing
SSG Support for Overlapping Subscriber IP Addresses
SSG Support for RADIUS Attributes 27 and 29
SSM Channel (S,G) Based Filtering for Multicast Boundaries
Support for AAA Attributes MN-HA-SPI and MN-HA Shared Key
Upstream PPPoX Connection Speed Transfer at LAC
VRF Aware Multicast Error Messages
New Hardware Features Supported in Cisco IOS Release 12.3(8)T4
Cisco 1800 Series Routers (Modular)
Cisco Gigabit Ethernet High-Speed WAN Interface Cards (HWIC-1GE-SFP)
High-Density Analog (FXS/DID/FXO) and Digital (BRI) Extension Module for Voice/Fax (EVM-HD)
New Hardware Features Supported in Cisco IOS Release 12.3(8)T
WIC-4ESW (4-Port Ethernet Switch WIC)
New Software Features Supported in Cisco IOS Release 12.3(8)T
BGP Cost Community Support for EIGRP MPLS VPN PE-CE with Backdoor Links
Call Admission Control for IKE
Call Application HTTP Client Cookie Support
Certificate to ISAKMP Profile Mapping
Cisco Enhanced Conferencing and Transcoding for Cisco Voice Gateway Routers
Cisco General Packet Radio Service (GPRS) Gateway Support Node (GGSN)
Cisco IOS Intrusion Prevention System
Cisco IOS Resilient Configuration
Class-Based Traffic Policing with CLP Tagging
Conferencing and Transcoding for Voice Gateway Routers
Crypto Access Check on Clear-Text Packets
DHCP—Statically Configured Routes Using a DHCP Gateway
Easy Secure Device Deployment AAA Integration
EIGRP MPLS VPN PE-CE Site of Origin (SoO)
EIGRP Support for Route Map Filtering
Embedded Syslog Manager (ESM) for the Cisco 800 and Cisco 1700 Series Platforms
MGCP Line Control Signaling Package
Minimal Disruptive Restart of VIP Cards
Mobile IP—Support for RFC 3519 NAT Traversal
Monitoring Control Characters on Async Lines
MPLS Enhancements to Interfaces MIB
MPLS Label Distribution Protocol MIB Version 8 Upgrade
NAT Support for H.323 Fragmented Control Messages
NAT—Support for H.323 v3 and v4 in v2 Compatibility mode
Network-based Application Recognition (NBAR)
Protocol Translation Aggregation
QoS: Classification, Policing, and Marking on LAC
Reliable Static Routing Backup Using Object Tracking
Service Assurance Agent (SAA) Multiple Operation Scheduling
SIP Audible Message-Waiting Indicator for FXS Phones
SIP: Cisco IOS Gateway HTTP Digest Authentication and Registration
SIP: Cisco IOS Gateway Reason Header and Buffered Calling Name Completion
Virtual Fragmentation Reassembly
Voice Application Monitoring and Troubleshooting Enhancements
New Software Features Supported in Cisco IOS Release 12.3(7)T1
Easy VPN Client RSA Signature Support
New Hardware Features Supported in Cisco IOS Release 12.3(7)T
ADSL over POTS WIC with Dying Gasp Support (WIC-1ADSL-DG)
Circuit Emulation over IP (CEoIP)
Cisco 1711 and Cisco 1712 Security Access Routers
Cisco VG224 24-Port Analog Phone Gateway
Data Compression AIM for the Cisco 2600 Series Routers
IP Communications High-Density Digital Voice/Fax Network Module
Network Analysis Module (NM-NAM)
Single Port Multiline G.SHDSL WIC
New Software Features Supported in Cisco IOS Release 12.3(7)T
AAA Double Authentication Secured by Absolute Timeout
ACL—Named ACL Support for Noncontiguous Ports on an Access Control Entry
Analog Centralized Automatic Message Accounting (CAMA) E911 Trunk
Attribute Screening for Access Requests
BGP Support for TTL Security Check
Call Routing Enhancements to the H.323 Gatekeeper and GKTMP (GK API)
Cisco IOS IPv6 Configuration Library
Cisco NM-8AM-V2 and NM-16AM-V2 Analog Modem Network Modules with V.92
Cisco VG224 24-Port Analog Phone Gateway
Class-Based Quality of Service (QoS) MIB (CBQoSMIB) Enhancements III
CLNS Support for GRE Tunneling of IPv4 and IPv6 Packets
Distributed Dial-on-Demand Routing
Enhanced ITU-T G.168 Echo Cancellation
ESMTP Support for Cisco IOS Firewall
Extended ACL Support for IGMP to Support SSM in IPv4
Interoperability Enhancements to the Cisco Multiservice IP-IP Gateway
IPSec Dead Peer Detection Periodic Message Option
IS-IS Caching of Redistributed Routes
IS-IS Fast-Flooding of LSPs Using the fast flood Command
Key Rollover for Certificate Renewal
Lossless Compression R1, ATM Cell Switching, External BITS Clocking Source
Mobile IP—Foreign Agent Local Routing to Mobile Networks
Mobile IP—Generic Routing Encapsulation for Cisco Mobile Networks
MPLS VPN VRF Selection Using Policy Based Routing
Multicast Fast Switching Performance Improvement
NAT Stateful Failover for Asymmetric Outside-to-Inside Support
NAT Stateful Failover for Application Layer Gateway (ALG) Support
New Features in Cisco CallManager
OSPF Link State Database Overload Protection
OSPF per-Interface Link-Local Signaling
PKI: Query Multiple Servers During Certificate Revocation Check
PPP/MLP MRRU Negotiation Configuration
Query Mode Definition Per Trustpoint
RADIUS NAS-IP-Address Configurability
Rate Based Satellite Control Protocol
Route Processor Redundancy Plus (RPR+)
Secure Shell (SSH) Version 2 Client Support
Signal ISDN B-Channel ID to Enable Application Control of Voice Gateway Trunks
SSG Enhancements to SSG-SESM Interaction and Service Logon
SSG TCP Redirect Access Control Lists
Survivable Remote Site Telephony 3.1
T.37 Fax Status Notification Enhancement in an MTA Environment
TCP Explicit Congestion Notification
Transparent Cisco IOS Firewall
Troubleshooting Enhancements for Multilink PPP over ATM Link Fragmentation and Interleaving
VPN Access Control Using 802.1x Authentication
New Hardware Features Supported in Cisco IOS Release 12.3(4)T
1-Port ADSL WAN Interface Card
Cisco IAD2430 Series IOS Reduced IP subset/Voice
Cisco Intrusion Detection System (IDS) Network Module (NM-CIDS-K9)
Cisco SOHO 90 Series and Cisco 830 Series Routers
IP Communications Voice/Fax Network Module
New Software Features Supported in Cisco IOS Release 12.3(4)T
ACL Support for Filtering IP Options
ACL Support for TCP Flags Filtering
Advanced Encryption Standard (AES)
Any Transport over MPLS (AToM) SCR VC Mode for PA-A3-T1/E1-IMA
BGP Configuration Using Peer Templates
BGP Dynamic Update Peer-Groups
BGP Policy Accounting Output Interface Accounting
Blinking LEDs to Indicate DSL Line Training
Calling Line Identification for Spain and Austria
CEF Support for Dialer Profiles on Cisco 7500 Routers
Cisco CallManager Express, V3.0
Cisco Conferencing and Transcoding for Voice Gateway Routers
Cisco Easy VPN Remote Enhancements
Cisco IOS MGCP Gateway Support for Cisco CallManager Network Specific Facilities
Cisco Multipath Channel (CMPC)
Cisco Survivable Remote Site Telephony (SRST), V3.0
Cisco Transaction Connection (CTRC)
Cisco Unique Device Identifier
Cisco VoIP Internal Error Codes
Class-Based QoS MIB (CBQoSMIB) Enhancements
Combined Packet Protocol (CPP)
Configuration Change Notification and Logging
Configuring SIP Header Passing
Contextual Configuration Diff Utility
Custom Tone Download to Cisco IOS MGCP Gateways from Cisco CallManager
Default Session Application Enhancements
DHCP Address Allocation Using Option 82
DHCP Release and Renew CLI in EXEC Mode
Digital Private Network Signaling System (DPNSS) Backhaul
Direct HTTP Enroll With CA Servers
Distributed Multilink Frame Relay (FRF.16)
Dynamic Multipoint VPN (DMVPN)
Enhanced Debug Capabilities for Cisco Voice Gateways
Enhanced ITU-T G.168 Echo Cancellation
Enhanced Object Tracking of Service Assurance Agent (SAA) Operations
Firewall Authentication Proxy for FTP and Telnet Sessions
Firewall Intrusion Detection Signature (IDS) Enhancements
Firewall Support of SSL Encrypted HTTP Authentication Proxy Sign-on
Firewall Websense URL Filtering
Framed-Route in RADIUS Accounting
Hot Standby Router Protocol Version 2
Import of RSA Keypair and Certificates in PEM Format
Integrated IS-IS Global Default Metric
Integrated IS-IS Protocol Shutdown Support Maintaining Configuration Parameters
IS-IS Limit on Number of Redistributed Routes
IS-IS Support for Priority-Driven IP Prefix RIB Installation
L2TP Tunnel Connection Speed Labeling
Memory Threshold Notifications
Mobile IP Dynamic Security Association and Key Distribution
Mobile IP Home Agent Redundancy for Dynamic Mobile Networks
Mobile IP MIB for Reverse Tunnel, Challenge, and VSEs
Mobile Networks Dynamic Collocated Care-of-Address
MSDP Compliance with IETF MSDP Draft 20
NAT-Performance & Scalability Enhancement-Timer Wheel
NAT-Performance Enhancement-CEF Switching Support
OSPF MIB Support of RFC 1850 and Latest Extensions
OSPF Support for Unlimited Software VRFs per Provider Edge (PE) Router
PIM Dense Mode Fallback Prevention in a Network Following RP Information Loss
PPPoE Session Limit Per NAS Port
Pre-fragmentation For IPsec VPNs
Private Line Automatic Ringdown for Trading Turrets
Quality of Service for Virtual Private Networks
Real-time Resolution for IPSec Tunnel Peer
Regex Engine Performance Enhancement
RFC 2867—RADIUS Tunnel Accounting
Secure Shell Version 2 Support
Service Assurance Agency (SAA) VoIP UDP Operation
Service Selection Gateway (SSG)
Service Selection Gateway (SSG) Features in Release 12.3(4)T
Session Initiation Protocol (SIP)
SIP Debug Output Filtering Support
SIP Gateway Support Enhancements to the bind Command
SIP: SIP Header Support and Subscribe and Notify for External Triggers
SSG AAA Transaction Enhancements
SSG Open Garden Configuration Enhancements
Token Ring LAN Emulation (TR-LANE)
Tunnel Authentication via RADIUS on Tunnel Terminator
Using Certificate ACLs to Ignore Revocation Check and Expired Certificates
V.120 Support Network Access Server (NAS)
Videoconferencing on the Cisco Multiservice IP-to-IP Gateway
VLANs over IP Unnumbered Interfaces
Voice Application Enhancements, Phase 4a
Voice Call Debug Filtering on Cisco Voice Gateways
Voice Performance Statistics on Cisco Gateways
VPN Access Control Using 802.1X Authentication
VRF and MQC Hierarchical Shaping in PXE
New Hardware Features Supported in Cisco IOS Release 12.3(2)T1
New Software Features Supported in Cisco IOS Release 12.3(2)T1
New Hardware Features Supported in Cisco IOS Release 12.3(2)T
1-Port DSU/CSU T1 WIC for the Cisco 1700, Cisco 2600, Cisco 3600, and Cisco 3700 Series Routers
8-Port Foreign Exchange Office MRP for the United States with Battery Reversal (MRP3-8FXOM1)
Enhanced Route Switch Controller (ERSC)
New Software Features Supported in Cisco IOS Release 12.3(2)T
Asynchronous Point of Sale-to-IP Conversion
Authorization for Protocol Translation
Cisco 1700 Series Voice Features for Cisco IOS Release 12.3(2)T
Cisco Extension to the Interfaces MIB (CISCO-IF-EXTENTION-MIB)
CISCO-CONFIG-COPY-MIB: FTP and rcp Support
CISCO-CONFIG-COPY-MIB: Secure Copy Support
Cisco Easy VPN Remote Enhancements
Cisco IOS IPv6 Configuration Library
Cisco IOS Software Feature Removal: Token Ring Inter-Switch Link
Class-Based Packet Marking Enhancements
Class-Based QoS MIB (CBQoSMIB) Enhancements
Crypto Conditional Debug Support
DHCP Lease Limit per ATM RBE Unnumbered Interface
End-of-Record Function for DCNs
Enhanced Voice and QoS for ADSL and G.SHDSL
Frame Relay—Multilink (MLFR-FRF.16)
Frame Relay Switched Virtual Circuits (SVC) over ISDN
Generic Routing Encapsulation Tunnel IP Source and Destination VRF Membership
Health Monitor and Diagnostic Monitor for the Cisco AS5850
Hot Standby Router Protocol (HSRP)
Invalid Security Parameter Index Recovery
ISDN Type of Number to RADIUS Server
IS-IS Mechanisms to Exclude Connected IP Prefixes from LSP Advertisements
L2TP Client-Initiated Tunneling
L2TPv3: Layer 2 Tunnel Protocol Version 3
Loadsharing IP Packets Over More Than Six Parallel Paths
MGCP-Controlled Backhaul of BRI Signaling in Conjunction with Cisco CallManager
MGCP Support for CallManager (IP-PBX)
Monitoring and Retraining on Reception of Loss of Margin Messages
MPLS Label Switch Controller and Enhancements
NAT—Support for H.323 v3 and v4 in v2 Compatibility Mode
NAT—Support of IP Phone to Cisco CallManager
Online Certificate Status Protocol (OCSP)
OSPF Limit on Number of Redistributed Routes
OSPF Link-State Advertisement (LSA) Throttling
PAD Subaddress Formatting Option
PCR Support for the Cisco Signaling Link Terminal
Periodic MIB Data Collection and Transfer Mechanism
Persistent TDM Switched Circuits
PPPoE over VLAN Enhancements: Configuration Limit Removal and ATM Support
PPPoE Session Recovery After Reload
RTP Header Compression over Satellite Links
SAA Support for Frame Relay, VoIP, and MPLS VPN Monitoring
Service Assurance Agent (SAA)—MPLS VPN Path Jitter
SNMP Support for Named Access Lists
SNMP Support over VPNs—Context Based Access Control
SNMP v1/v2c PDU Conversions for Proxy Forwarder (RFC 2576)
Source Specific Multicast (SSM) Mapping
Token Ring Inter-Switch Link (TRISL)
Virtual Auxiliary Port Feature and Configuration of DSL Settings
VPDN MIB Enhancements for per-VRF Session Counting
X.25 Call Confirm Packet Address Control
Deprecated and Replacement MIBs
SNMP Version 1 BGP4-MIB Limitations
Important Notes for Cisco IOS Release 12.3T
Configuring MD5 Authentication for BGP Peering Sessions
Important Notes for Cisco IOS Release 12.3(14)T
Cisco Catalyst 6500 Series and the Cisco 7600 Series Communication Media Module
Important Notes for Cisco IOS Release 12.3(7)T
debug vwic-mft firmware controller Command
Important Notes for Cisco IOS Release 12.3(2)T2
Cisco Platforms Deferred Because of Caveat CSCin45859
Important Notes for Cisco IOS Release 12.3(2)T1
Cisco Images Deferred Because of Caveat CSCec23720
Cisco Platforms Deferred Because of Caveat CSCin45859
Important Notes for Cisco IOS Release 12.3(2)T
Cisco Images Deferred Because of Caveat CSCec23720
Cisco Platforms Deferred Because of Caveat CSCin45859
Cisco Images Deferred Because of Caveat CSCec26950
Caveats for Cisco IOS Release 12.3T
New and Changed Information
The following sections contain new hardware and software features that are supported in Cisco IOS Release 12.3T:
•New Hardware Features Supported in Cisco IOS Release 12.3(14)T
•New Software Features Supported in Cisco IOS Release 12.3(14)T
•New Hardware Features Supported in Cisco IOS Release 12.3(11)T2
•New Software Features Supported in Cisco IOS Release 12.3(11)T2
•New Hardware Features Supported in Cisco IOS Release 12.3(11)T
•New Software Features Supported in Cisco IOS Release 12.3(11)T
•New Hardware Features Supported in Cisco IOS Release 12.3(8)T4
•New Hardware Features Supported in Cisco IOS Release 12.3(8)T
•New Software Features Supported in Cisco IOS Release 12.3(8)T
•New Software Features Supported in Cisco IOS Release 12.3(7)T1
•New Hardware Features Supported in Cisco IOS Release 12.3(7)T
•New Software Features Supported in Cisco IOS Release 12.3(7)T
•New Hardware Features Supported in Cisco IOS Release 12.3(4)T
•New Software Features Supported in Cisco IOS Release 12.3(4)T
•New Hardware Features Supported in Cisco IOS Release 12.3(2)T1
•New Software Features Supported in Cisco IOS Release 12.3(2)T1
•New Hardware Features Supported in Cisco IOS Release 12.3(2)T
•New Software Features Supported in Cisco IOS Release 12.3(2)T
Note A cumulative list of all new and existing features supported in this release, including platform and software image support, can be found in Cisco Feature Navigator at http://www.cisco.com/go/cfn
New Hardware Features Supported in Cisco IOS Release 12.3(14)T
This section describes new and changed features in Cisco IOS Release 12.3(14)T. Some features may be new to Cisco IOS Release 12.3T but were released in earlier Cisco IOS software releases. Some features may have been released in earlier Cisco IOS software releases and have been changed in Cisco IOS Release 12.3(14)T. To determine if a feature is new or changed, see the feature history table at the beginning of the feature module for that feature. Links to feature modules are included below. If a feature listed below does not have a link to a feature module, that feature is documented only in the release notes, and information about whether the feature is new or changed will be available in the feature description provided below.
•Cisco AS5350XM Universal Gateway
•Cisco AS5350XM Universal Gateway
•Cisco Communication Media Module Voice Features
•Cisco Small Business 100 Series Routers
•Cisco WIC-1AM-V2 and WIC-2AM-V2 Analog Modem WAN Interface Card
•Satellite Network Module (NM-1VSAT-GILAT)
•VPN Acceleration Module 2+ (VAM2+)
AIM-VPN-HPII-PLUS
Cisco 3825 and Cisco 3845 Integrated Services Routers with the AIM-VPN-HPII-PLUS will be supported with IPSec Stateful Failover. Cisco 3800 on-board crypto is not supported with IPSec stateful failover at this time.
Cisco AS5350XM Universal Gateway
The Cisco AS5350XM universal gateway is a one rack unit (1RU) universal gateway providing best of class voice, fax, and remote access services at densities up to 8T1/7E1. The Cisco AS5350XM universal gateway has three feature card slots and two 10/100/1000 Ethernet LAN ports.
For more information about the AS5350XM universal gateway, see the following URL:
http://www.cisco.com/univercd/cc/td/doc/product/access/acs_serv/5354xm/index.htm
Cisco AS5400XM Universal Gateways
The Cisco AS54000XM universal gateway is a one rack unit (1RU) universal gateway providing best of class voice, fax, and remote access services at densities up to CT3. The Cisco AS5400XM universal gateway has seven feature card slots and two 10/100/1000 Ethernet LAN ports.
For more information about the AS5400XM universal gateway, see the following URL:
http://www.cisco.com/univercd/cc/td/doc/product/access/acs_serv/as54xm/index.htm
Cisco Communication Media Module Voice Features
Cisco IOS Release 12.3(14)T introduces and supports the Catalyst 6500 Series and Cisco 7600 Series Communication Media Module with SNMP, MLPP, MCID, HW-MTP with RFC2833, enhance QSIG, and native T.l38 fax relay.
Cisco Small Business 100 Series Routers
Cisco IOS Release 12.3(14)T introduces and supports the Cisco Small Business 100 Series Routers.
Cisco WIC-1AM-V2 and WIC-2AM-V2 Analog Modem WAN Interface Card
For detailed information about the Cisco WIC-1AM-V2 and WIC-2AM-V2 Analog Modem WAN Interface Card, see the following document:
EtherSwitch Service Modules
Cisco IOS Release 12.3(14)T provides support for four new EtherSwitch Service Network Modules for:
•Cisco 2691 routers
•Cisco 2811 routers
•Cisco 2821 routers
•Cisco 2851 routers
•Cisco 3700 Series routers
•Cisco 3800 Series routers.
The new Cisco EtherSwitch service modules, greatly expand the capabilities of integrated switching within Cisco routers by providing support for new features such as IEEE 802.3af Power over Ethernet (PoE), local Layer 3 switching, Cisco Network Administrator and Cisco Emergency Responder, and Cisco StackWise interfaces (available on NME-XD-24ES-1S-P only), as well as software feature parity with Cisco Catalyst 3750 Series switches. Additionally, the new Cisco EtherSwitch service modules are the first modules that can take full advantage of the increased performance capabilities and new form factors of the enhanced network module slot on Cisco Integrated Service Routers.
The following Cisco EtherSwitch Network Modules are supported in IOS Release 12.3(14)T:
•NME-16ES-1G-P - One 16-port 10/100 Cisco EtherSwitch service module w/802.3af, 1 10/100/1000 port, and IP Base
•NME-X-23ES-1G-P - One 23-port 10/100 Cisco EtherSwitch service module w/802.3af, 1 10/100/1000 port w/ 802.3af, and IP Base
•NME-XD-24ES-1S-P - One 24-port 10/100 Cisco EtherSwitch service module w/802.3af, 1 SFP, Cisco StackWise connectors, and IP Base
•NME-XD-48ES-2S-P - One 48-port 10/100 Cisco EtherSwitch service module w/ 802.3af, 2 SFPs, and IP Base
Satellite Network Module (NM-1VSAT-GILAT)
For detailed information about this feature, see the following document:
http://www.cisco.com/en/US/docs/ios/12_3t/12_3t14/feature/guide/gtstltnm.html
Serial HWICs
Cisco IOS Release 12.3(14)T supports five new serial and async High-speed WAN Interface Cards (HWICs). Serial HWICs provide highly flexible connections for Cisco 1800, Cisco 2800, and Cisco 3800 Integrated Services routers. These HWICs allow customers to easily enable applications such as WAN aggregation, legacy protocol transport, console server, and dial access server. Customers can mix and match HWICs to tailor cost-effective solutions for common networking problems such as remote network management, external dial modem access, low density WAN aggregation, legacy protocol transport and high port density support.
There are five serial and async HWICs:
1. HWIC-4T—Four high-speed serial ports
2. HWIC-4A/S—Four low-speed sync/async serial ports
3. HWIC-8A/S-232—Eight low-speed sync/async serial ports, EIA-232 only
4. HWIC-8A—Eight async EIA-232 serial ports
5. HWIC-16A—Sixteen async EIA-232 serial ports
VPN Acceleration Module 2+ (VAM2+)
VPN Acceleration Module 2+ (VAM2+) will be supported with IPSec Stateful Failover for the Cisco 7200 and Cisco 7301 routers.
New Software Features Supported in Cisco IOS Release 12.3(14)T
This section describes new and changed features in Cisco IOS Release 12.3(14)T. Some features may be new to Cisco IOS Release 12.3T but were released in earlier Cisco IOS software releases. Some features may have been released in earlier Cisco IOS software releases and have been changed in Cisco IOS Release 12.3(14)T. To determine if a feature is new or changed, see the feature history table at the beginning of the feature module for that feature. Links to feature modules are included below. If a feature listed below does not have a link to a feature module, that feature is documented only in the release notes, and information about whether the feature is new or changed will be available in the feature description provided below.
•Administrative Secure Device Provisioning Introducer
•BGP Support for Fast Peering Session Deactivation
•BGP Support for IP Prefix Import from Global Table into a VRF Table
•BGP Support for Next-Hop Address Tracking
•Circuit Emulation over IP (CEMoIP)
•Cisco 7200 Series & Cisco 7301 Routers - Enhanced MIB Support
•Cisco Communication Media Module Voice Features
•Cisco WIC-1AM-V2 and WIC-2AM-V2 Analog Modem WAN Interface Card
•Configuration Change Notification and Logging - EAL4+ Certification Enhancements
•Demilitarized Zone (DMZ) Port
•DHCP Enhancements for Edge-Session Management
•DHCP—Subscriber Identifier Suboption of Option82
•DHCPv6 Predix Delegation via AAA
•Dynamic DNS Support for Cisco IOS
•EIGRP MPLS VPN PE-CE Site of Origin (SoO)
•Embedded Resource Manager (ERM)
•Enhanced Conferencing and Transcoding for Voice Gateway Routers
•Exclusive Configuration Change Access
•Extended Prepaid Tariff Switch with SSG
•FXO Expansion Module for NM-HDA-4FXS
•Hookflash and DTMF Relay Transfer
•Inspection of Router-Generated Traffic
•Integrated Routing and Bridging (IRB) Support for the Cisco MGX-RPM-XF-512
•Intrusion Prevention System (IPS) - Signature Enhancements
•IOS Embedded Event Manager 2.1
•IP Side Answer Tone Detection for Echo Canceller Control
•IP SLAs Sub-millisecond Accuracy Improvements
•IP SLA - VoIP Call Setup (Post Dial Delay) Monitoring
•IP SLA - VoIP Gatekeeper Registration Delay Monitoring
•IPSec Anti-Replay Window: Expanding and Disabling
•IPSec Virtual Tunnel Interface
•IPv6 BSR Bi-Directional Support
•L2TPv3: Layer 2 Tunnel Protocol Version 3
•Land Mobile Radio (LMR) over IP
•MAC Address Based Authorization with SSG
•Malicious Caller Identification Invocation Support for Enterprise Networks
•MCID for Cisco IOS Voice Gateways
•Media and Signaling Authentication and Encryption Feature for Cisco IOS MGCP Gateways in SRST Mode
•MIB Enhancements for H.323, SIP, and MGCP
•MLPP for Analog and BRI Endpoints on Cisco IOS Voice Gateways
•MLPP for Cisco IOS Voice Gateways
•Mobile IP - Mobile IPv6 Home Agent
•Mobile IP - Mobile Router DHCP Support for Dynamic CCoA and Foreign Agent Processing
•Multiprotocol Label Switching (MPLS)
•MPLS DiffServ-Aware Traffic Engineering (DS-TE)
•MPLS Enhancements to Interfaces MIB
•MPLS LDP Inbound Label Binding Filtering
•MPLS Quality of Service (QoS)
•MPLS QoS—DiffServ Tunneling Modes
•MPLS Traffic Engineering (TE)
•MPLS Virtual Private Networks
•MPLS VPN—Carrier Supporting Carrier—IPv4 BGP Label Distribution
•MPLS VPN—Explicit Null Label Support with BGP IPv4 Label Session
•MPLS VPN Half-Duplex VRF (HDVRF) Support
•MPLS VPN—Inter-AS—IPv4 BGP Label Distribution
•MPLS VPN Support for EIGRP Between Provider Edge and Customer Edge
•MPLS VPN—VRF Selection Using Policy Based Routing
•Multi-VRF CE (VRF-lite) Updated Performance
•NAT Integration with MPLS VPNs (VRF-NAT)
•NAT Routemaps Outside-to-Inside Support
•NetFlow Layer 2 and Security Monitoring Exports
•OER Support for Cost-Based Optimization and Traceroute Reporting
•Option to Disable Hardware Crypto Engine Failover to Software Crypto Engine
•OSPF Sham-Link Support for MPLS VPN
•Outbound Control Packet Decoding Implemented for VPDN Debug Output Using the L2TP Protocol
•Out-of-Band to In-Band DTMF Relay for Cisco IOS Voice Gateways
•PA-POS-1OC3: 1-port Packet over SONET OC3c/STM1 Port Adapter
•Per Interface mroute State Limit
•Persistent Self-Signed Certificates
•Policy Based Routing: Recursive Next Hop
•QSIG Supplementary Features for Cisco IOS Voice Gateways
•RADIUS Attribute 104 - Routemap Display Extension
•RADIUS Attribute 5 (NAS-Port) Format Specified on a Per-Server Group Level
•RSVP Refresh Reduction and Reliable Messaging
•SafeNet IPSec VPN Client Support
•Second-Generation 1- and 2-Port T1/E1 Multiflex Trunk Voice/WAN Interface Cards
•Secure Device Provisioning Certificate-Based Authorization
•Selective Enabling of Applications Using an HTTP or Secure HTTP Server
•SHDSL - Auto Detection of 2-Wire Versus 4-Wire Line Mode
•SNA Switching Services Enterprise Extender for IP Version 6
•SSG Aware On-Demand IP Address Renewal
•SSG Support for Subnet Based Authentication
•Subordinate Certificate Server
•System Logging - EAL4 Certification Enhancements
•T.38 Fax Relay on the Cisco Catalyst 6000 and Cisco 7600 Communication Media Module
•VoIP Alternate Path Fallback SNMP Trap
•X.25 Station Type for ISDN D-Channel Interface
Administrative Secure Device Provisioning Introducer
This feature was introduced in Cisco IOS Release 12.3(8)T. For detailed information about changes and enhancements to this feature in Cisco IOS Release 12.3(14)T, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123newft/123t/123t_14/gtadintr.htm
ARP-Auto Logoff
This feature was introduced in Cisco IOS Release 12.3(8)XX. For detailed information about changes and enhancements to this feature in Cisco IOS Release 12.3(14)T, see the following document:
BGP Support for Fast Peering Session Deactivation
This feature was introduced in Cisco IOS Release 12.0(29)S. For detailed information about changes and enhancements to this feature in Cisco IOS Release 12.3(14)T, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123newft/123t/123t_14/gt_bsfda.htm
BGP Support for IP Prefix Import from Global Table into a VRF Table
This feature was introduced in Cisco IOS Release 12.0(29)S. For detailed information about changes and enhancements to this feature in Cisco IOS Release 12.3(14)T, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123newft/123t/123t_14/gt_bgivt.htm
BGP Support for Next-Hop Address Tracking
This feature was introduced in Cisco IOS Release 12.0(29)S. For detailed information about changes and enhancements to this feature in Cisco IOS Release 12.3(14)T, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123newft/123t/123t_14/gt_bnht.htm
CEF Support for NAT-PT
This feature adds support for Cisco Express Forwarding (CEF) switching on Network Address Translation-Protocol Translation (NAT-PT) interfaces. Use the ip cef and ipv6 cef commands to configure the feature.
Circuit Emulation over IP (CEMoIP)
The Circuit Emulation over IP (CEMoIP) feature was integrated into the Cisco IOS Release 12.3(14)T and implemented on the following platforms:
•Cisco 2691 Multiservice routers
•Cisco 3725 Modular Access routers
•Cisco 3745 Modular Access routers
•Cisco 2811 Series Integrated Services routers
•Cisco 2821 Series Integrated Services routers
•Cisco 2851 Series Integrated Services routers
•Cisco 3825 Series Integrated Services routers
•Cisco 3845 Series Integrated Services routers
Cisco 7200 Series & Cisco 7301 Routers - Enhanced MIB Support
This feature greatly expands and updates the support for SNMP MIBs for Cisco 7200 Series routers and Cisco 7301 routers. Improved inventory, asset, and fault management capabilities are provided by this feature, with a focus on consistent manageability of Cisco network elements.
The 7200 MIB Improvement feature greatly expands and updates the support for SNMP MIBs for Cisco 7200 Series routers. This feature provides:
•Cisco 7200 series additional port adapter support.
•Support for DS1 and DS3 MIBs is implemented as defined by RFC2495 and RFC2496, respectively.
•A standards-based technology (SNMP) for monitoring faults and performance on the router
•Support for all SNMP versions (SNMPv1, SNMPv2c, and SNMPv3)
•Notification of faults, alarms, and conditions that might affect services
For detailed information about MIB support on the Cisco 7200 Series, see the Cisco 7200 Series Router MIB Specifications Guide, available at:
http://www.cisco.com/en/US/products/hw/routers/ps341/prod_technical_reference_list.html
The 7301 MIB Support feature greatly expands and updates the support for Cisco 7301 routers as this feature:
•Provides core enhancements to network management capabilities.
•Supports Cisco 7301 port adapter.
•Manages and monitors Cisco 7301 resources through an SNMP-based network management system (NMS).
•Reduces the amount of time and system resources required to perform functions such as inventory management and bulk data transfers
For detailed information about MIB support on Cisco 7301 routers, see the Cisco 7301 Router MIB Specifications Guide, available at:
http://www.cisco.com/en/US/products/hw/routers/ps352/prod_technical_reference_list.html
Cisco Communication Media Module Voice Features
This feature brings additional features support for Catalyst 6500 Series and Cisco 7600 Series Communication Media Module with SNMP, MLPP, MCID, HW-MTP with RFC2833, enhance QSIG, and native T.l38 fax relay.
For detailed information about this feature, see the following document:
Cisco Easy VPN Remote
This feature was introduced in Cisco IOS Release 12.3(11)T. For detailed information about changes and enhancements to this feature in Cisco IOS Release 12.3(14)T, see the following document:
http://www.cisco.com/univercd/cc/tc/doc/product/software/ios123/123newft/123t/123t7/ftezvpnr.htm
Cisco WIC-1AM-V2 and WIC-2AM-V2 Analog Modem WAN Interface Card
For detailed information about this feature, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123newft/123t/123t_14/gt12pwi8.htm
Configuration Change Notification and Logging - EAL4+ Certification Enhancements
Note Official EAL4+ certification is not claimed by Cisco. This feature is part of current and planned enhancements which may qualify Cisco IOS Software for future certification.
This feature enhances the configuration change logging process in Cisco IOS software. The system logging process can now provide a log of configuration changes, and commands are provided to configure, view, and clear configuration logs. This feature is disabled by default.
For detailed information about this feature, see the "Configuration Change Notification and Logging" document at:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123newft/123t/123t_4/gtconlog.htm
Demilitarized Zone (DMZ) Port
This feature was introduced in Cisco IOS Release 12.3(7)XR1. For detailed information about changes and enhancements to this feature in Cisco IOS Release 12.3(14)T, see the following document:
DHCP Enhancements for Edge-Session Management
For detailed information about this feature, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123newft/123t/123t_14/gt_iedge.htm
DHCP—Subscriber Identifier Suboption of Option82
For detailed information about this feature, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123newft/123t/123t_14/gt_opt82.htm
DHCP ODAP Server Support
The DHCP ODAP Server Support feature was integrated into the Cisco IOS Release 12.3(14)T and implemented on the following platforms:
•Cisco 2811 Series Integrated Services routers
•Cisco 2821 Series Integrated Services routers
•Cisco 2851 Series Integrated Services routers
•Cisco 3825 Series Integrated Services routers
•Cisco 3845 Series Integrated Services routers
DHCP Relay— MPLS VPN Support
The DHCP Relay— MPLS VPN Support feature was integrated into the Cisco IOS Release 12.3(14)T and implemented on the following platforms:
•Cisco 2811 Series Integrated Services routers
•Cisco 2821 Series Integrated Services routers
•Cisco 2851 Series Integrated Services routers
•Cisco 3825 Series Integrated Services routers
•Cisco 3845 Series Integrated Services routers
DHCPv6 Predix Delegation via AAA
For detailed information about this feature, see Cisco IOS IPv6 Configuration Library--Implementing ADSL and Deploying Dial Access for IPv6 located at:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123cgcr/ipv6_c/sa_dial6.htm
DID Support on VIC-4FXS/DID
Cisco IOS Release 12.3(14)T adds support for Direct Inward Dial (DID) configuration on the 4-port FXS/DID (VIC-4FXS/DID) interface card installed in the Cisco 2600XM series, Cisco 2691, Cisco 2800 series, Cisco 3600 series, Cisco 3700 series, Cisco 3800 series routers, and Cisco IAD 2430 series integrated access devices.
For information about configuring the VIC-4FXS/DID interface card, see the Cisco IOS Voice Configuration Library for Release 12.3 located at:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios124/124tcg/vcl.htm
For information about installing the VIC-4FXS/DID interface card, see the Cisco Interface Cards Hardware Installation Guide located at:
http://www.cisco.com/en/US/products/hw/modules/ps2641/prod_installation_guides_list.html
Dynamic DNS Support for Cisco IOS
This feature was introduced in Cisco IOS Release 12.3(8)YA. For detailed information about changes and enhancements to this feature in Cisco IOS Release 12.3(14)T, see the following document:
EIGRP MPLS VPN PE-CE Site of Origin (SoO)
The EIGRP MPLS VPN PE-CE Site of Origin (SoO) feature was integrated into the Cisco IOS Release 12.3(14)T and implemented on the following platforms:
•Cisco 2691 Multiservice routers
•Cisco 3725 Modular Access routers
•Cisco 3745 Modular Access routers
•Cisco 2811 Series Integrated Services routers
•Cisco 2821 Series Integrated Services routers
•Cisco 2851 Series Integrated Services routers
•Cisco 3825 Series Integrated Services routers
•Cisco 3845 Series Integrated Services routers
EIGRP Prefix Limit Support
This feature was introduced in Cisco IOS Release 12.0(29)S. For detailed information about changes and enhancements to this feature in Cisco IOS Release 12.3(14)T, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123newft/123t/123t_14/gt_epls.htm
EIGRP SNMP Support
For detailed information about this feature, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123newft/123t/123t_14/gt_epls.htm
E-mail Inspection Engine
For detailed information about this feature, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123newft/123t/123t_14/gt_email.htm
Embedded Event Manager 2.1
This feature was introduced in Cisco IOS Release 12.0(26)S. For detailed information about changes and enhancements to this feature in Cisco IOS Release 12.3(14)T, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123newft/123t/123t_14/gteem21.htm
Embedded Resource Manager (ERM)
The Embedded Resource Manager (ERM) feature allows you to impose and monitor an upper limit of usage for resources such as buffer, memory, and CPU. This feature monitors system resource usage to better understand scalability needs by allowing you to configure threshold values for the CPU, buffer and memory resource owners. This check helps prevent catastrophic system failures due to high levels of resource depletion. For detailed information about this feature, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123newft/123t/123t_14/gt_rmimg.htm
Enhanced Conferencing and Transcoding for Voice Gateway Routers
The Enhanced Conferencing and Transcoding for Voice Gateway Routers feature provides enhanced multiservice support for Cisco routers in a Cisco CallManager network. This is accomplished by enabling audio conference and transcode functions in access routers. This single-package solution simplifies deployments and eases administration. Tangible cost savings are realized with the location of conference resources in the branch to reduce WAN utilization. Costs are further reduced with the use of transcode services to reduce bandwidth needs. This feature requires the PVDM2 and is also supported on NM-HD.
Note This feature requires Cisco CallManager 4.0 or later release.
For detailed information about this feature, see the following document:
EtherSwitch Service Modules
Cisco EtherSwitch service modules, greatly expand the capabilities of integrated switching within Cisco routers by providing support for new features such as IEEE 802.3af Power over Ethernet (PoE), local Layer 3 switching, Cisco Network Administrator and Cisco Emergency Responder, and Cisco StackWiseTM interfaces (available on NME-XD-24ES-1S-P only) as well as software feature parity with Cisco Catalyst® 3750 Series switches. Additionally, the new Cisco EtherSwitch service modules are the first modules that can take full advantage of the increased performance capabilities and new form factors of the enhanced network module slot on Cisco Integrated Services Routers.
Exclusive Configuration Change Access
Provides a configuration locking mechanism for exclusive change access to the configuration for the duration of the lock. Two new commands are provided to enable or disable the configuration lock; configuration mode exclusive and configure terminal lock.
For detailed information about this feature, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123newft/123t/123t_14/gt_exclu.htm
Extended Prepaid Tariff Switch with SSG
The Extended Prepaid Tariff Switch for SSG feature is used to measure the usage of specific services at various times, even when the monetary value of the volume quota does not change at the time of tariff switching. In such a scenario, the remaining amount of a user's pre-tariff-switch quota continues as post-tariff-switch quota. Information can be collected about how much quota was used before a particular time and how much was used after, providing a usage profile of specific services at various times.
For detailed information about this feature, see the following document:
/en/US/docs/ios/12_3t/12_3t14/feature/guide/sgbacctg.html
FHRP—VRRP Enhancements
For detailed information about this feature, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123newft/123t/123t_14/gtvrrpen.htm
FXO Expansion Module for NM-HDA-4FXS
The EM2-HDA-4FXO expansion module for the high-density analog telephony network module (NM-HDA) supports complex impedance to allow an operating range greater than 8000 ft (2438 m).
For detailed information about configuring input impedance, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios122/122newft/122tcr/122tvr/index.htm
For detailed information about the EM2-HDA-4FXO expansion module and the NM-HDA network module, see the following document:
Granular Protocol Inspection
The Granular Protocol Inspection feature adds flexibility to the Cisco IOS Firewall by allowing it to perform a higher degree of inspection of TCP and User Data Protocol (UDP) traffic for most RFC 1700 application types.
For detailed information about this feature, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123newft/123t/123t_14/gtgpinsp.htm
Hookflash and DTMF Relay Transfer
Hookflash and DTMF Relay Transfer is a cost-effective way to transfer customer calls from first-level technical support to other agent groups for second-level support. The circuit between the transferrer and the transferee is released after the transferrer initiates the transfer and the remote switch connects the transferee and the transfer target.
Hot Standby MAC Address
The show extended channel hsma command is added to this feature.
For detailed information about this feature, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123newft/123_1/ft_hsma.htm
HTTP Client API for TCL IVR
The HTTP Client API for TCL IVR feature enables TCL IVR applications to retrieve data from or post data to an external HTTP server. Also introduces a new command-line-interface structure for configuring voice applications and support for additional TCL 8.3.4 commands.
For detailed information about this feature, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123newft/123t/123t_14/vapprest.htm
HTTP Inspection Engine
For detailed information about this feature, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123newft/123t/123t_14/gt_fwapc.htm
IGMPv3 Host Stack
The IGMPv3 Host Stack feature enables routers and switches to function as multicast network endpoints or hosts. The feature adds INCLUDE mode capability to the Internet Group Management Protocol (IGMP) version 3 host stack for Source Specific Multicast (SSM) groups.
For detailed information about this feature, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123newft/123t/123t_14/gtigmpv3.htm
Implementing RIP for IPv6
For detailed information about this feature, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123cgcr/ipv6_c/sa_ripv6.htm
Inspection of Router-Generated Traffic
For detailed information about this feature, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123newft/123t/123t_14/gt_insrg.htm
Integrated Routing and Bridging (IRB) Support for the Cisco MGX-RPM-XF-512
For detailed information about this feature, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123newft/123t/123t_106/gt_irb.htm
Intrusion Prevention System (IPS) - Signature Enhancements
The IPS Signature Enhancements feature expands the number and type of virus and attack signatures currently available in the Intrusion Detection System/Intrusion Prevention System (IDS/IPS) Sensor database. These signatures are specific to TCP, UDP, and ICMP intrusions.
For detailed information about this feature, see the Cisco IOS Intrusion Prevention System (IPS) document at:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123newft/123t/123t_8/gt_fwids.htm
IOS Embedded Event Manager 2.1
This feature was introduced in Cisco IOS Release 12.0(26)S. For detailed information about changes and enhancements to this feature in Cisco IOS Release 12.3(14)T, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123newft/123t/123t_14/gteem21.htm
IP Side Answer Tone Detection for Echo Canceller Control
For detailed information about this feature, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/access/acs_serv/as5850/sw_conf/echocan.htm
IP SLAs Sub-millisecond Accuracy Improvements
This feature enhances the granularity and accuracy of IP SLA measurements. For detailed information about this feature, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/lib/netman/ipsla/index.htm
IP SLA - VoIP Call Setup (Post Dial Delay) Monitoring
The IP SLA VoIP Call Setup Monitoring operation measures the call setup time using H.323/SIP signaling protocol over IP networks. The typical setup time measured is from the setup/INVITE message sent to alert/ringing message received.
For detailed information about this feature, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/lib/netman/ipsla/index.htm
IP SLA - VoIP Gatekeeper Registration Delay Monitoring
The IP SLA Gatekeeper Registration Delay Monitoring operation measures the light weight registration time from H.323 Gateways to Gatekeepers.
For detailed information about this feature, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/lib/netman/ipsla/index.htm
IPSec Anti-Replay Window: Expanding and Disabling
For detailed information about this feature, see the following document:
http://www.cisco.com/univercd/cc/tc/doc/product/software/ios123/123newft/123t/123t_14/gt_iarwe.htm
IPSec Preferred Peer
For detailed information about this feature, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123newft/123t/123t_14/gt_ipspp.htm
IPSec Virtual Tunnel Interface
The IPSec Virtual Tunnel Interface feature:
•Provides a routable interface for terminating IPSec tunnels.
•Provides ease of configuration.
•Provides facility of routing.
•Supports multicast.
•Supports aspects like Network Management, HA, and Load Balancing.
IPv6 BSR Bi-Directional Support
This feature was introduced in Cisco IOS Release 12.3(2)T. For detailed information about changes and enhancements to this feature in Cisco IOS Release 12.3(14)T, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123cgcr/ipv6_c/sa_mcast.htm
L2TPv3: Layer 2 Tunnel Protocol Version 3
The L2TPv3: Layer 2 Tunnel Protocol Version 3 feature was integrated into the Cisco IOS Release 12.3(14)T and implemented on the following platforms:
•Cisco 2811 Series Integrated Services routers
•Cisco 2821 Series Integrated Services routers
•Cisco 2851 Series Integrated Services routers
•Cisco 3825 Series Integrated Services routers
•Cisco 3845 Series Integrated Services routers
Land Mobile Radio (LMR) over IP
This feature was introduced in Cisco IOS Release 12.3(4)XD. For detailed information about changes and enhancements to this feature in Cisco IOS Release 12.3(14)T, see the following document:
Local AAA Server
For detailed information about this feature, see the following document:
http://www.cisco.com/en/US/docs/ios/12_3t/12_3t14/feature/guide/gt_laas.html
Login Password Retry Lockout
For detailed information about this feature, see the following document:
http://www.cisco.com/univercd/cc/tc/doc/product/software/ios123/123newft/123t/123t_14/g_cilprl.htm
MAC Address Based Authorization with SSG
For detailed information about this feature, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123newft/123t/123t_14/sgbmaca.htm
Malicious Caller Identification Invocation Support for Enterprise Networks
The Malicious Caller Identification (MCID) Invocation Support for Enterprise Networks feature extends support for MCID service in the public service telephone network (PSTN) to the Cisco 2801.
This feature was introduced in Cisco IOS Release 12.2(15)T. For detailed information about changes and enhancements to this feature in Cisco IOS Release 12.3(14)T, see the Malicious Caller Identification Invocation Support for Enterprise Networks document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios122/122newft/122t/122t15/ftmcid.htm
MCID for Cisco IOS Voice Gateways
The MCID for Cisco IOS Voice Gateways feature extends support for the Malicious Call Identification (MCID) supplementary service to the Cisco 2801. This feature enables Cisco CallManager to identify the source of malicious calls.
This feature was introduced in Cisco IOS Release 12.3(11)T. For detailed information about changes and enhancements to this feature in Cisco IOS Release 12.3(14)T, see the following document:
Media and Signaling Authentication and Encryption Feature for Cisco IOS MGCP Gateways in SRST Mode
The Media and Signaling Authentication and Encryption Feature for Cisco IOS MGCP Gateways in SRST Mode feature delivers media and signaling authentication and encryption on the Cisco 2600XM series, Cisco 2691, Cisco 3660 series, Cisco 3700 series, and Cisco VG224. This feature enables secure gateway-to-gateway and IP-phone-to-gateway calls, and interoperates with Cisco 7970 IP phones.
For detailed information about this feature, see the Media and Signaling Authentication and Encryption Feature for Cisco IOS MGCP Gateways in SRST Mode document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123newft/123t/123t_11/gtsecure.htm
MIB Enhancements for H.323, SIP, and MGCP
The MIB Enhancements for H.323, SIP, and MGCP feature provides SNMP MIB enhancements on the following platforms:
•Cisco AS5350 universal gateways
•Cisco AS5400 series universal gateways
•Cisco AS5850 universal gateways
The MIBs contain objects that represent active H.323, SIP, and MGCP calls and also include call details. For definitions of the H.323, SIP, and MGCP MIB objects, see the following MIBs:
•CISCO-H225-MIB
•CISCO-MEDIA-GATEWAY-MIB
•CISCO-MGC-MIB
•CISCO-SIP-CALLS-MIB
•CISCO-TC
•CISCO-XGCP-CAPABILITY
•CISCO-XGCP-EXT-CAPABILITY
•CISCO-XGCP-EXT-MIB
•CISCO-XGCP-MIB
To locate and download MIBs, use Cisco MIB Locator found at the following URL:
MLPP for Analog and BRI Endpoints on Cisco IOS Voice Gateways
Provides the capability for Cisco IOS voice gateways to present analog and basic rate interface (BRI) phones to be controlled by the Cisco CallManager as though they were Cisco IP phones, enabling the following:
•Line-side support for the Multilevel Precedence and Preemption (MLPP) feature
•Cisco CallManager registration of analog and Basic Rate Interface (BRI) endpoints
•Cisco CallManager endpoint auto configuration support
•Modem pass-through support
•Cisco Survivable Remote Site Telephony (SRST) support
For detailed information about this feature, see the MLPP for Analog and BRI Endpoints on Cisco IOS Voice Gateways document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123newft/123t/123t_14/gtstcapp.htm
MLPP for Cisco IOS Voice Gateways
The MLPP for Cisco IOS Voice Gateways feature extends support for Multilevel Precedence and Preemption (MLPP) service to the Cisco 2801. This service allows authorized users to preempt lower-priority voice calls using Cisco CallManager.
This feature was introduced in Cisco IOS Release 12.3(4)XH. For detailed information about changes and enhancements to this feature in Cisco IOS Release 12.3(14)T, see the Configuring MGCP Gateway Support for Cisco CallManager chapter in the Cisco CallManager and Cisco IOS Interoperability Guide:
Mobile IP - Mobile IPv6 Home Agent
For detailed information about this feature, see the following document:
http://www.cisco.com/en/US/docs/ios/ipv6/configuration/guide/ip6-addrg_bsc_con.html
Mobile IP - Mobile Router DHCP Support for Dynamic CCoA and Foreign Agent Processing
The Mobile Router DHCP Support for Dynamic Collocated Care-of Address (DCCoA) and Foreign Agent (FA) Processing feature adds support for mobile router roaming on Ethernet interfaces that acquire an IP address dynamically via the Dynamic Host Configuration Protocol (DHCP). The interface can register using this acquired IP address as a DCCoA or register using a CoA acquired from a foreign agent. This behavior is true for all platforms that support Mobile IP beginning with Cisco IOS Release 12.3(14)T.
This feature adds support for FA processing of advertisements and registrations on DHCP roaming interfaces.
A Simple Network Management Protocol (SNMP) signaling capability is also added to support this feature on the Cisco 3200 Series Mobile Access Router with a Wireless Mobile Interface Card (WMIC). The WMIC uses SNMP trap messages to signal the mobile router that the Layer 2 wireless local-area network (WLAN) is either up or down.
For detailed information about this feature, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123newft/123t/123t_14/gtdhcpm.htm
Multiprotocol Label Switching (MPLS)
The Multiprotocol Label Switching (MPLS) feature was integrated into the Cisco IOS Release 12.3(14)T and implemented on the following platforms:
•Cisco 2811 Series Integrated Services routers
•Cisco 2821 Series Integrated Services routers
•Cisco 2851 Series Integrated Services routers
•Cisco 3825 Series Integrated Services routers
•Cisco 3845 Series Integrated Services routers
MPLS—Multilink PPP Support
The MPLS—Multilink PPP Support feature was integrated into the Cisco IOS Release 12.3(14)T and implemented on the following platforms:
•Cisco 2691 Multiservice routers
•Cisco 3725 Modular Access routers
•Cisco 3745 Modular Access routers
•Cisco 2811 Series Integrated Services routers
•Cisco 2821 Series Integrated Services routers
•Cisco 2851 Series Integrated Services routers
•Cisco 3825 Series Integrated Services routers
•Cisco 3845 Series Integrated Services routers
For detailed information about this feature, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123newft/123t/123t_7/gtmpmlp.htm
MPLS DiffServ-Aware Traffic Engineering (DS-TE)
The MPLS DiffServ-Aware Traffic Engineering (DS-TE) feature was integrated into the Cisco IOS Release 12.3(14)T and implemented on the following platforms:
•Cisco 2811 Series Integrated Services routers
•Cisco 2821 Series Integrated Services routers
•Cisco 2851 Series Integrated Services routers
•Cisco 3825 Series Integrated Services routers
•Cisco 3845 Series Integrated Services routers
MPLS Enhancements to Interfaces MIB
The MPLS Enhancements to Interfaces MIB feature was integrated into the Cisco IOS Release 12.3(14)T and implemented on the following platforms:
•Cisco 2691 Multiservice routers
•Cisco 3725 Modular Access routers
•Cisco 3745 Modular Access routers
•Cisco 2811 Series Integrated Services routers
•Cisco 2821 Series Integrated Services routers
•Cisco 2851 Series Integrated Services routers
•Cisco 3825 Series Integrated Services routers
•Cisco 3845 Series Integrated Services routers
MPLS LDP Autoconfiguration
The MPLS LDP Autoconfiguration feature was introduced in Cisco IOS Release 12.0(30)S. For detailed information about changes and enhancements to this feature in Cisco IOS Release 12.3(14)T, see the following document:
MPLS LDP Graceful Restart
The MPLS LDP Graceful Restart feature was introduced in Cisco IOS Release 12.0(29)S. For detailed information about changes and enhancements to this feature in Cisco IOS Release 12.3(14)T, see the following document:
MPLS LDP Inbound Label Binding Filtering
This feature was introduced in Cisco IOS Release 12.0(26)S. For detailed information about changes and enhancements to this feature in Cisco IOS Release 12.3(14)T, see the following document:
MPLS LDP Session Protection
This feature was introduced in Cisco IOS Release 12.0(30)S. For detailed information about changes and enhancements to this feature in Cisco IOS Release 12.3(14)T, see the following document:
MPLS LDP-IGP Synchronization
The MPLS LDP-IGP Synchronization feature was introduced in Cisco IOS Release 12.0(30)S. For detailed information about changes and enhancements to this feature in Cisco IOS Release 12.3(14)T, see the following document:
MPLS Quality of Service (QoS)
The MPLS Quality of Service (QoS) feature was integrated into the Cisco IOS Release 12.3(14)T and implemented on the following platforms:
•Cisco 2811 Series Integrated Services routers
•Cisco 2821 Series Integrated Services routers
•Cisco 2851 Series Integrated Services routers
•Cisco 3825 Series Integrated Services routers
•Cisco 3845 Series Integrated Services routers
MPLS QoS—DiffServ Tunneling Modes
The MPLS QoS—DiffServ Tunneling Modes feature was integrated into the Cisco IOS Release 12.3(14)T and implemented on the following platforms:
•Cisco 2691 Multiservice routers
•Cisco 3725 Modular Access routers
•Cisco 3745 Modular Access routers
•Cisco 2811 Series Integrated Services routers
•Cisco 2821 Series Integrated Services routers
•Cisco 2851 Series Integrated Services routers
•Cisco 3825 Series Integrated Services routers
•Cisco 3845 Series Integrated Services routers
MPLS Traffic Engineering (TE)
The MPLS Traffic Engineering (TE) feature was integrated into the Cisco IOS Release 12.3(14)T and implemented on the following platforms:
•Cisco 2811 Series Integrated Services routers
•Cisco 2821 Series Integrated Services routers
•Cisco 2851 Series Integrated Services routers
•Cisco 3825 Series Integrated Services routers
•Cisco 3845 Series Integrated Services routers
MPLS Virtual Private Networks
The MPLS Virtual Private Networks (VPNs) feature was integrated into the Cisco IOS Release 12.3(14)T and implemented on the following platforms:
•Cisco 2811 Series Integrated Services routers
•Cisco 2821 Series Integrated Services routers
•Cisco 2851 Series Integrated Services routers
•Cisco 3825 Series Integrated Services routers
•Cisco 3845 Series Integrated Services routers
MPLS VPN—Carrier Supporting Carrier—IPv4 BGP Label Distribution
The MPLS VPN—Carrier Supporting Carrier—IPv4 BGP Label Distribution feature was integrated into the Cisco IOS Release 12.3(14)T and implemented on the following platforms:
•Cisco 2691 Multiservice routers
•Cisco 3725 Modular Access routers
•Cisco 3745 Modular Access routers
•Cisco 2811 Series Integrated Services routers
•Cisco 2821 Series Integrated Services routers
•Cisco 2851 Series Integrated Services routers
•Cisco 3825 Series Integrated Services routers
•Cisco 3845 Series Integrated Services routers
MPLS VPN—Explicit Null Label Support with BGP IPv4 Label Session
The MPLS VPN—Explicit Null Label Support with IPv4 BGP Label Session feature was integrated into the Cisco IOS Release 12.3(14)T and implemented on the following platforms:
•Cisco 2691 Multiservice routers
•Cisco 3725 Modular Access routers
•Cisco 3745 Modular Access routers
•Cisco 2811 Series Integrated Services routers
•Cisco 2821 Series Integrated Services routers
•Cisco 2851 Series Integrated Services routers
•Cisco 3825 Series Integrated Services routers
•Cisco 3845 Series Integrated Services routers
MPLS VPN Half-Duplex VRF (HDVRF) Support
The MPLS VPN Half-Duplex (HDVRF) Support feature was integrated into the Cisco IOS Release 12.3(14)T and implemented on the following platforms:
•Cisco 2691 Multiservice routers
•Cisco 3725 Modular Access routers
•Cisco 3745 Modular Access routers
•Cisco 2811 Series Integrated Services routers
•Cisco 2821 Series Integrated Services routers
•Cisco 2851 Series Integrated Services routers
•Cisco 3825 Series Integrated Services routers
•Cisco 3845 Series Integrated Services routers
MPLS VPN—Inter-AS—IPv4 BGP Label Distribution
The MPLS VPN—Inter-AS—IPv4 BGP Label Distribution feature was integrated into the Cisco IOS Release 12.3(14)T and implemented on the following platforms:
•Cisco 2691 Multiservice routers
•Cisco 3725 Modular Access routers
•Cisco 3745 Modular Access routers
•Cisco 2811 Series Integrated Services routers
•Cisco 2821 Series Integrated Services routers
•Cisco 2851 Series Integrated Services routers
•Cisco 3825 Series Integrated Services routers
•Cisco 3845 Series Integrated Services routers
MPLS VPN—MIB Notifications
The MPLS VPN—MIB Notifications feature was integrated into the Cisco IOS Release 12.3(14)T and implemented on the following platforms:
•Cisco 2691 Multiservice routers
•Cisco 3725 Modular Access routers
•Cisco 3745 Modular Access routers
•Cisco 2811 Series Integrated Services routers
•Cisco 2821 Series Integrated Services routers
•Cisco 2851 Series Integrated Services routers
•Cisco 3825 Series Integrated Services routers
•Cisco 3845 Series Integrated Services routers
MPLS VPN—MIB Support
The MPLS VPN—MIB Support feature was integrated into the Cisco IOS Release 12.3(14)T and implemented on the following platforms:
•Cisco 2691 Multiservice routers
•Cisco 3725 Modular Access routers
•Cisco 3745 Modular Access routers
•Cisco 2811 Series Integrated Services routers
•Cisco 2821 Series Integrated Services routers
•Cisco 2851 Series Integrated Services routers
•Cisco 3825 Series Integrated Services routers
•Cisco 3845 Series Integrated Services routers
MPLS VPN Support for EIGRP Between Provider Edge and Customer Edge
The MPLS VPN support for EIGRP between Provider Edge and Customer Edge feature was integrated into the Cisco IOS Release 12.3(14)T and implemented on the following platforms:
•Cisco 2811 Series Integrated Services routers
•Cisco 2821 Series Integrated Services routers
•Cisco 2851 Series Integrated Services routers
•Cisco 3825 Series Integrated Services routers
•Cisco 3845 Series Integrated Services routers
MPLS VPN—VRF Selection Using Policy Based Routing
The MPLS VPN VRF Selection Using Policy Based Routing feature was integrated into the Cisco IOS Release 12.3(14)T and implemented on the following platforms:
•Cisco 2691 Multiservice routers
•Cisco 3725 Modular Access routers
•Cisco 3745 Modular Access routers
•Cisco 2811 Series Integrated Services routers
•Cisco 2821 Series Integrated Services routers
•Cisco 2851 Series Integrated Services routers
•Cisco 3825 Series Integrated Services routers
•Cisco 3845 Series Integrated Services routers
For detailed information about this feature, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123newft/123t/123t_7/gt_pbrsv.htm
Multi-VRF CE (VRF-lite) Updated Performance
The Multi-VRF (VRF-lite) feature was integrated into the Cisco IOS Release 12.3(14)T and implemented on the following platforms:
•Cisco 2811 Series Integrated Services routers
•Cisco 2821 Series Integrated Services routers
•Cisco 2851 Series Integrated Services routers
•Cisco 3825 Series Integrated Services routers
•Cisco 3845 Series Integrated Services routers
Multicast VPN MIB
The Multicast VPN MIB feature was introduced in Cisco IOS Release 12.0(29)S. For detailed information about changes and enhancements to this feature in Cisco IOS Release 12.3(14)T, see the following document:
Multi-cast VPN
The Multi-cast VPN feature was integrated into the Cisco IOS Release 12.3(14)T and implemented on the following platforms:
•Cisco 2811 Series Integrated Services routers
•Cisco 2821 Series Integrated Services routers
•Cisco 2851 Series Integrated Services routers
•Cisco 3825 Series Integrated Services routers
•Cisco 3845 Series Integrated Services routers
NAT Integration with MPLS VPNs (VRF-NAT)
The NAT Integration with MPLS VPNs (VRF-NAT) feature was integrated into the Cisco IOS Release 12.3(14)T and implemented on the following platforms:
•Cisco 2811 Series Integrated Services routers
•Cisco 2821 Series Integrated Services routers
•Cisco 2851 Series Integrated Services routers
•Cisco 3825 Series Integrated Services routers
•Cisco 3845 Series Integrated Services routers
NAT Routemaps Outside-to-Inside Support
For detailed information about this feature, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123newft/123t/123t_14/gtnato2n.htm
NAT Virtual Interface (NVI)
For detailed information about this feature, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123newft/123t/123t_14/gtnatvi.htm
NetFlow Layer 2 and Security Monitoring Exports
For detailed information about this feature, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123newft/123t/123t_14/nflwsec1.htm
No Service Password-Recovery
The No Service Password-Recovery feature was introduced in Cisco IOS Release 12.3(8)YA. For detailed information about changes and enhancements to this feature in Cisco IOS Release 12.3(14)T, see the following document:
OER Support for Cost-Based Optimization and Traceroute Reporting
The OER Support for Cost-Based Optimization and Traceroute Reporting feature provides outbound traffic optimization based on financial link cost (i.e., fixed cost versus tier based cost). This feature also adds support for traceroute reporting.
Option to Disable Hardware Crypto Engine Failover to Software Crypto Engine
For detailed information about this feature, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123newft/123t/123t_14/gt_dhcef.htm
OSPF Sham-Link MIB Support
The OSPF Sham-Link MIB Support feature was introduced in Cisco IOS Release 12.0(30)S. For detailed information about changes and enhancements to this feature in Cisco IOS Release 12.3(14)T, see the following document:
OSPF Sham-Link Support for MPLS VPN
The OSPF Sham-Link Support for MPLS VPN feature was integrated into the Cisco IOS Release 12.3(14)T and implemented on the following platforms:
•Cisco 2691 Multiservice routers
•Cisco 3725 Modular Access routers
•Cisco 3745 Modular Access routers
•Cisco 2811 Series Integrated Services routers
•Cisco 2821 Series Integrated Services routers
•Cisco 2851 Series Integrated Services routers
•Cisco 3825 Series Integrated Services routers
•Cisco 3845 Series Integrated Services routers
For more information about the OSPF Sham-Link Support for MPLS VPN feature, see the documentation at the following URL:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios122/122newft/122t/122t8/ospfshmk.htm
Outbound Control Packet Decoding Implemented for VPDN Debug Output Using the L2TP Protocol
Before Cisco IOS Release 12.3(14)T, only incoming Layer 2 Transport Protocol (L2TP control packets were decoded and displayed in the output of virtual private dialup network (VPDN) debug command data with the debug vpdn l2x-packets EXEC command enabled. To create L2TP tunnels and sessions, the software sends control packets to the peer. If you had wanted to troubleshoot the sessions effectively during the control-channel establishment phase of those sessions, it was necessary to review debug data from both outgoing and incoming control packets, on both the LAC and LNS. Also, for outgoing L2TP control packets, the hexadecimal packet dump was displayed on the screen only, which made it difficult to troubleshoot interoperability issues that required packet analyzers, or to use data from peer or vendor devices to analyze the outgoing L2TP control packets.
To be consistent with other protocol-level debug output in the Cisco IOS software, L2TP control packet debug command output needed to show bidirectional protocol packet decode data, rather than just the incoming only data that had been displayed.
Cisco IOS Release 12.3(14)T implements the decoding of outgoing L2TP hexadecimal control messages, which includes the L2TP headers and the attribute-value pairs that are transacted in each outgoing control message. VPDN debug data can also be directed into a file so that packet analyzers can be used on the data.
To use this feature, you must enable the debug vpdn l2x-packets command on the router in which the decoded outgoing control packets debug data needs to be shown.
Note The debug vpdn l2x-packets command can result in a large number of debug messages and should be used only on a debug chassis with a single active session.
Following is sample decoded debug output, followed by a list of the attribute-value pairs that are supported in the enhanced debug command output:
Router#3d22h: %LINK-3-UPDOWN: Interface Serial3/0, changed state to up3d22h: Tnl 29029 L2TP: O SCCRQ3d22h: Tnl 29029 L2TP: Parse AVP 0, len 8, flag 0x8000 (M)3d22h: Tnl 29029 L2TP: Parse SCCRQ3d22h: Tnl 29029 L2TP: Parse AVP 2, len 8, flag 0x8000 (M)3d22h: Tnl 29029 L2TP: Protocol Ver 2563d22h: Tnl 29029 L2TP: Parse AVP 6, len 8, flag 0x03d22h: Tnl 29029 L2TP: Firmware Ver 0x11303d22h: Tnl 29029 L2TP: Parse AVP 7, len 16, flag 0x8000 (M)3d22h: Tnl 29029 L2TP: Hostname LAC-tunnel3d22h: Tnl 29029 L2TP: Parse AVP 8, len 25, flag 0x03d22h: Tnl 29029 L2TP: Vendor Name Cisco Systems, Inc.3d22h: Tnl 29029 L2TP: Parse AVP 10, len 8, flag 0x8000 (M)3d22h: Tnl 29029 L2TP: Rx Window Size 200503d22h: Tnl 29029 L2TP: Parse AVP 11, len 22, flag 0x8000 (M)3d22h: Tnl 29029 L2TP: ChlngB1 E9 3B 84 72 66 19 B1 C5 46 8F E7 31 A8 3B BC3d22h: Tnl 29029 L2TP: Parse AVP 9, len 8, flag 0x8000 (M)3d22h: Tnl 29029 L2TP: Assigned Tunnel ID 290293d22h: Tnl 29029 L2TP: Parse AVP 3, len 10, flag 0x8000 (M)3d22h: Tnl 29029 L2TP: Framing Cap 0x03d22h: Tnl 29029 L2TP: Parse AVP 4, len 10, flag 0x8000 (M)3d22h: Tnl 29029 L2TP: Bearer Cap 0x03d22h: Tnl 29029 L2TP: Parse Cisco AVP 110, len 6, flag 0x03d22h: Tnl 29029 L2TP: PPPoE Relay Forward Capable3d22h: Tnl 29029 L2TP: O SCCRQ, flg TLS, ver 2, len 141, tnl 0, ns 0, nr 0C8 02 00 8D 00 00 00 00 00 00 00 00 80 08 00 00C8 02 00 8D 00 00 00 00 00 00 00 00 80 08 00 0000 00 00 01 80 08 00 00 00 02 01 00 00 08 00 0000 06 11 30 80 10 00 00 00 07 4C 41 43 2D 74 756E 6E 65 6C 00 19 00 00 00 08 43 69 73 63 6F 2053 79 73 74 65 6D 73 ...3d22h: Tnl 29029 L2TP: Parse AVP 0, len 8, flag 0x8000 (M)3d22h: Tnl 29029 L2TP: Parse SCCRP3d22h: Tnl 29029 L2TP: Parse AVP 2, len 8, flag 0x8000 (M)3d22h: Tnl 29029 L2TP: Protocol Ver 2563d22h: Tnl 29029 L2TP: Parse AVP 6, len 8, flag 0x03d22h: Tnl 29029 L2TP: Firmware Ver 0x11203d22h: Tnl 29029 L2TP: Parse AVP 7, len 16, flag 0x8000 (M)3d22h: Tnl 29029 L2TP: Hostname LNS-tunnel3d22h: Tnl 29029 L2TP: Parse AVP 8, len 25, flag 0x03d22h: Tnl 29029 L2TP: Vendor Name Cisco Systems, Inc.3d22h: Tnl 29029 L2TP: Parse AVP 10, len 8, flag 0x8000 (M)3d22h: Tnl 29029 L2TP: Rx Window Size 200503d22h: Tnl 29029 L2TP: Parse AVP 11, len 22, flag 0x8000 (M)3d22h: Tnl 29029 L2TP: Chlng7F 8B 30 8C 1D CD 44 49 CA 71 C3 6F 45 C2 89 B13d22h: Tnl 29029 L2TP: Parse AVP 13, len 22, flag 0x8000 (M)3d22h: Tnl 29029 L2TP: Chlng RespC3 A8 1B 39 6B 42 82 A5 AC A1 11 36 94 97 A2 1D3d22h: Tnl 29029 L2TP: Parse AVP 9, len 8, flag 0x8000 (M)3d22h: Tnl 29029 L2TP: Assigned Tunnel ID 185663d22h: Tnl 29029 L2TP: Parse AVP 3, len 10, flag 0x8000 (M)3d22h: Tnl 29029 L2TP: Framing Cap 0x03d22h: Tnl 29029 L2TP: Parse AVP 4, len 10, flag 0x8000 (M)3d22h: Tnl 29029 L2TP: Bearer Cap 0x03d22h: Tnl 29029 L2TP: Parse Cisco AVP 110, len 6, flag 0x03d22h: Tnl 29029 L2TP: PPPoE Relay Forward Capable3d22h: Tnl 29029 L2TP: No missing AVPs in SCCRP3d22h: Tnl 29029 L2TP: I SCCRP, flg TLS, ver 2, len 163, tnl 29029, ns 0, nr 1contiguous pak, size 163C8 02 00 A3 71 65 00 00 00 00 00 01 80 08 00 0000 00 00 02 80 08 00 00 00 02 01 00 00 08 00 0000 06 11 20 80 10 00 00 00 07 4C 4E 53 2D 74 756E 6E 65 6C 00 19 00 00 00 08 43 69 73 63 6F 2053 79 73 74 65 6D 73 2C ...3d22h: Tnl 29029 L2TP: I SCCRP from LNS-tunnel3d22h: Tnl 29029 L2TP: O SCCCN to LNS-tunnel tnlid 185663d22h: Tnl 29029 L2TP: Parse AVP 0, len 8, flag 0x8000 (M)3d22h: Tnl 29029 L2TP: Parse SCCCN3d22h: Tnl 29029 L2TP: Parse AVP 13, len 22, flag 0x8000 (M)3d22h: Tnl 29029 L2TP: Chlng Resp3B 74 77 E8 DD 30 64 48 C2 63 42 D5 37 C3 B9 F23d22h: Tnl 29029 L2TP: O SCCCN, flg TLS, ver 2, len 42, tnl 18566, ns 1, nr 1C8 02 00 2A 48 86 00 00 00 01 00 01 80 08 00 0000 00 00 03 80 16 00 00 00 0D 3B 74 77 E8 DD 3064 48 C2 63 42 D5 37 C3 B9 F23d22h: Se3/0 Tnl/Sn 29029/61 L2TP: O ICRQ to LNS-tunnel 18566/03d22h: Se3/0 Tnl/Sn 29029/61 L2TP: Parse AVP 0, len 8, flag 0x8000 (M)3d22h: Se3/0 Tnl/Sn 29029/61 L2TP: Parse ICRQ3d22h: Se3/0 Tnl/Sn 29029/61 L2TP: Parse AVP 15, len 10, flag 0x8000 (M)3d22h: Se3/0 Tnl/Sn 29029/61 L2TP: Serial Number 15632000073d22h: Se3/0 Tnl/Sn 29029/61 L2TP: Parse AVP 14, len 8, flag 0x8000 (M)3d22h: Se3/0 Tnl/Sn 29029/61 L2TP: Assigned Call ID 613d22h: Se3/0 Tnl/Sn 29029/61 L2TP: Parse AVP 18, len 10, flag 0x8000 (M)3d22h: Se3/0 Tnl/Sn 29029/61 L2TP: Bearer Type 23d22h: Se3/0 Tnl/Sn 29029/61 L2TP: Parse Cisco AVP 100, len 15, flag 0x03d22h: Se3/0 Tnl/Sn 29029/61 L2TP: Client NAS Port53 65 72 69 61 6C 33 2F 303d22h: Se3/0 Tnl/Sn 29029/61 L2TP: O ICRQ, flg TLS, ver 2, len 63, tnl 18566,lsid 61, rsid 0, ns 2, nr 1C8 02 00 3F 48 86 00 00 00 02 00 01 80 08 00 0000 00 00 0A 80 0A 00 00 00 0F 5D 2C 8A 07 80 0800 00 00 0E 00 3D 80 0A 00 00 00 12 00 00 00 0200 0F 00 09 00 64 53 65 72 69 61 6C 33 2F 303d22h: Tnl 29029 L2TP: I ZLB ctrl ack, flg TLS, ver 2, len 12, tnl 29029, ns1, nr 23d22h: Se3/0 Tnl/Sn 29029/61 L2TP: Parse AVP 0, len 8, flag 0x8000 (M)3d22h: Se3/0 Tnl/Sn 29029/61 L2TP: Parse ICRP3d22h: Se3/0 Tnl/Sn 29029/61 L2TP: Parse AVP 14, len 8, flag 0x8000 (M)3d22h: Se3/0 Tnl/Sn 29029/61 L2TP: Assigned Call ID 93d22h: Se3/0 Tnl/Sn 29029/61 L2TP: No missing AVPs in ICRP3d22h: Se3/0 Tnl/Sn 29029/61 L2TP: I ICRP, flg TLS, ver 2, len 28, tnl 29029,lsid 61, rsid 0, ns 1, nr 3contiguous pak, size 28C8 02 00 1C 71 65 00 3D 00 01 00 03 80 08 00 0000 00 00 0B 80 08 00 00 00 0E 00 093d22h: Se3/0 Tnl/Sn 29029/61 L2TP: O ICCN to LNS-tunnel 18566/93d22h: Se3/0 Tnl/Sn 29029/61 L2TP: Parse AVP 0, len 8, flag 0x8000 (M)3d22h: Se3/0 Tnl/Sn 29029/61 L2TP: Parse ICCN3d22h: Se3/0 Tnl/Sn 29029/61 L2TP: Parse AVP 24, len 10, flag 0x8000 (M)3d22h: Se3/0 Tnl/Sn 29029/61 L2TP: Connect Speed 15440003d22h: Se3/0 Tnl/Sn 29029/61 L2TP: Parse AVP 19, len 10, flag 0x8000 (M)3d22h: Se3/0 Tnl/Sn 29029/61 L2TP: Framing Type 13d22h: Se3/0 Tnl/Sn 29029/61 L2TP: Parse AVP 27, len 17, flag 0x03d22h: Se3/0 Tnl/Sn 29029/61 L2TP: Last Sent LCPREQ03 05 C2 23 05 05 06 1D 9C 69 093d22h: Se3/0 Tnl/Sn 29029/61 L2TP: Parse AVP 28, len 12, flag 0x03d22h: Se3/0 Tnl/Sn 29029/61 L2TP: Last Rx LCPREQ05 06 1F 19 E3 073d22h: Se3/0 Tnl/Sn 29029/61 L2TP: Parse AVP 31, len 22, flag 0x03d22h: Se3/0 Tnl/Sn 29029/61 L2TP: Proxy Auth ChalFF 0D CB C7 E4 07 74 9F 43 0C 82 B5 17 69 4D 9E3d22h: Se3/0 Tnl/Sn 29029/61 L2TP: Parse AVP 32, len 8, flag 0x03d22h: Se3/0 Tnl/Sn 29029/61 L2TP: Proxy Auth ID 603d22h: Se3/0 Tnl/Sn 29029/61 L2TP: Parse AVP 30, len 22, flag 0x03d22h: Se3/0 Tnl/Sn 29029/61 L2TP: Proxy Auth Name client@cisco.com3d22h: Se3/0 Tnl/Sn 29029/61 L2TP: Parse AVP 33, len 22, flag 0x03d22h: Se3/0 Tnl/Sn 29029/61 L2TP: Proxy Auth Resp80 45 E2 C5 A7 D0 8C C1 0F 0A 14 F8 9E F7 21 F33d22h: Se3/0 Tnl/Sn 29029/61 L2TP: Parse AVP 29, len 8, flag 0x03d22h: Se3/0 Tnl/Sn 29029/61 L2TP: Proxy Auth Type 23d22h: Se3/0 Tnl/Sn 29029/61 L2TP: O ICCN, flg TLS, ver 2, len 151, tnl 18566,lsid 61, rsid 9, ns 3, nr 2C8 02 00 97 48 86 00 09 00 03 00 02 80 08 00 0000 00 00 0C 80 0A 00 00 00 18 00 17 8F 40 80 0A00 00 00 13 00 00 00 01 00 11 00 00 00 1B 03 05C2 23 05 05 06 1D 9C 69 09 00 0C 00 00 00 1C 0506 1F 19 E3 07 00 16 ...3d22h: Tnl 29029 L2TP: I ZLB ctrl ack, flg TLS, ver 2, len 12, tnl 29029, ns 2, nr 43d22h: %LINEPROTO-5-UPDOWN: Line protocol on Interface Serial3/0, changed state to upList of Supported L2TP Attribute Values
•L2TP_VENDOR_IETF:
–L2TP_AVP_RESULT_CODE
–L2TP_AVP_PROTOCOL_VERSION
–L2TP_AVP_FRAMING_CAP
–L2TP_AVP_BEARER_CAP
–L2TP_AVP_TIE_BREAKER
–L2TP_AVP_FIRMWARE_REV
–L2TP_AVP_HOST_NAME
–L2TP_AVP_VENDOR_NAME
–L2TP_AVP_ASSIGNED_TUNNEL_ID
–L2TP_AVP_REC_WINDOW_SIZE
–L2TP_AVP_CHALLENGE
–L2TP_AVP_Q931_CAUSE_CODE
–L2TP_AVP_CHALLENGE_RESPONSE
–L2TP_AVP_ASSIGNED_SESSION_ID
–L2TP_AVP_CALL_SERIAL_NUM
–L2TP_AVP_MINIMUM_BPS
–L2TP_AVP_MAXIMUM_BPS
–L2TP_AVP_BEARER_TYPE
–L2TP_AVP_FRAMING_TYPE
–L2TP_AVP_CALLED_NUMBER
–L2TP_AVP_CALLING_NUMBER
–L2TP_AVP_SUB_ADDRESS
–L2TP_AVP_TX_CONNECT_SPEED
–L2TP_AVP_PHYSICAL_CHANNEL_ID
–L2TP_AVP_INITIAL_LCP_CONFREQ
–L2TP_AVP_LAST_SENT_LCP_CONFREQ
–L2TP_AVP_LAST_RECV_LCP_CONFREQ
–L2TP_AVP_PROXY_AUTHEN_TYPE
–L2TP_AVP_PROXY_AUTHEN_NAME
–L2TP_AVP_PROXY_AUTHEN_CHALLENGE
–L2TP_AVP_PROXY_AUTHEN_ID
–L2TP_AVP_PROXY_AUTHEN_RESPONSE
–L2TP_AVP_CIRCUIT_ERRORS
–L2TP_AVP_ACCM
–L2TP_AVP_RANDOM_VECTOR
–L2TP_AVP_PRIVATE_GROUP_ID
–L2TP_AVP_RX_CONNECT_SPEED
–L2TP_AVP_SEQUENCING_REQUIRED
–L2TP_AVP_IETF_PPP_DISC_CAUSE
•SMI_CISCO_ENTERPRISE_CODE:
–L2TP_AVP_ASSIGNED_CC_ID
–L2TP_AVP_PW_CAP_LIST
–L2TP_AVP_LOCAL_SESSION_ID
–L2TP_AVP_REMOTE_SESSION_ID
–L2TP_AVP_ASSIGNED_COOKIE
–L2TP_AVP_END_IDENTIFIER
–L2TP_AVP_PW_TYPE
–L2TP_AVP_CIRCUIT_STATUS
–L2TP_AVP_SESSION_TIE_BREAKER
–L2TP_AVP_CISCO_DRAFT_AVP_VERSION
–L2TP_AVP_CLIENT_NAS_PORT
–L2TP_AVP_HOPCOUNT
–L2TP_AVP_USERNAME
–L2TP_AVP_ORIG_NAS_IP_ADDR
–L2TP_AVP_CISCO_PPP_DISC_CAUSE
–L2TP_AVP_VENDOR_ERROR_CODE
–L2TP_AVP_FIXED_CHALLENGE_ID
–L2TP_AVP_FIXED_CHALLENGE
–L2TP_AVP_REDIRECT_CAPABLE
–L2TP_AVP_REDIRECT_ID
–L2TP_AVP_PPPOE_RLYFWD_CAPABLE
–L2TP_AVP_PPPOE_RLYRSP_CAPABLE
–L2TP_AVP_PPPOE_PAD
•SMI_REDBACK_ENTERPRISE_CODE
–L2TP_AVP_NAS_PORT_TYPE_LIST
Out-of-Band to In-Band DTMF Relay for Cisco IOS Voice Gateways
The Out-of-Band to In-Band DTMF Relay for Cisco IOS Voice Gateways feature extends support for DTMF-relay communication between SIP devices and non-SIP endpoints using Cisco CallManager to the Cisco 2801.
This feature was introduced in Cisco IOS Release 12.3(8)XY. For detailed information about changes and enhancements to this feature in Cisco IOS Release 12.3(14)T, see the Configuring Enhanced Conferencing and Transcoding for Voice Gateway Routers chapter in the Cisco CallManager and Cisco IOS Interoperability Guide:
PA-POS-1OC3: 1-port Packet over SONET OC3c/STM1 Port Adapter
The 1-port Packet over SONET OC3c/STM1 Port Adapter feature was integrated into the Cisco IOS Release 12.3(14)T and implemented on the Cisco 7200, Cisco 7301, and Cisco 7500 platforms
For detailed information about this feature, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/core/7301/73pa/73-son/6514_1oc/index.htm
Per Interface mroute State Limit
For detailed information about this feature, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123newft/123t/123t_14/gtmrtlim.htm
Per-VRF AAA
The Per-VRF AAA feature was integrated into the Cisco IOS Release 12.3(14)T and implemented on the following platforms:
•Cisco 2811 Series Integrated Services routers
•Cisco 2821 Series Integrated Services routers
•Cisco 2851 Series Integrated Services routers
•Cisco 3825 Series Integrated Services routers
•Cisco 3845 Series Integrated Services routers
Persistent Self-Signed Certificates
For detailed information about this feature, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123newft/123t/123t_14/gtpsscer.htm
Policy Based Routing: Recursive Next Hop
The Policy Based Routing: Recursive Next Hop feature was introduced in Cisco IOS Release 12.0(28)S. For detailed information about changes and enhancements to this feature in Cisco IOS Release 12.3(14)T, see the following document:
QoS Bandwidth Estimation
For detailed information about this feature, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123newft/123t/123t_14/gtcbandw.htm
QSIG Supplementary Features for Cisco IOS Voice Gateways
The QSIG Supplementary Features for Cisco IOS Voice Gateways feature extends support for Q Signaling (QSIG) over PRI backhaul interfaces on MGCP gateways to Cisco CallManager to the Cisco 2801.
For detailed information about this feature, see the Configuring MGCP PRI Backhaul and T1 CAS Support for Cisco CallManager chapter in the Cisco CallManager and Cisco IOS Interoperability Guide:
RADIUS Attribute 104 - Routemap Display Extension
The RADIUS Attribute 104 - Routemap Display Extension feature was introduced in Cisco IOS Release 12.3(7)T. For detailed information about changes and enhancements to this feature in Cisco IOS Release 12.3(14)T, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123newft/123t/123t_7/gt_ra104.htm
RADIUS Attribute 5 (NAS-Port) Format Specified on a Per-Server Group Level
For detailed information about this feature, see the following document:
http://www.cisco.com/univercd/cc/tc/doc/product/software/ios123/123newft/123t/123t_14/ra5f.htm
Reverse Route Injection
The Reverse Route Injection feature was introduced in Cisco IOS Release 12.1(9)E. For detailed information about changes and enhancements to this feature in Cisco IOS Release 12.3(14)T, see the following document:
http://www.cisco.com/en/US/docs/ios/12_3t/12_3t14/feature/guide/gt_rrie.html
RSVP Refresh Reduction and Reliable Messaging
The RSVP Refresh Reduction and Reliable Messaging feature was integrated into the Cisco IOS Release 12.3(14)T and implemented on the following platforms:
•Cisco 2811 Series Integrated Services routers
•Cisco 2821 Series Integrated Services routers
•Cisco 2851 Series Integrated Services routers
•Cisco 3825 Series Integrated Services routers
•Cisco 3845 Series Integrated Services routers
SafeNet IPSec VPN Client Support
For detailed information about this feature, see the following document:
http://www.cisco.com/univercd/cc/tc/doc/product/software/ios123/123newft/123t/123t_14/gt_scse.htm
Second-Generation 1- and 2-Port T1/E1 Multiflex Trunk Voice/WAN Interface Cards
The Second-Generation 1- and 2-Port T1/E1 Multiflex Trunk Voice/WAN Interface Cards feature enables T1/E1 multiflex voice/WAN interface cards to support enhanced voice and data applications in Cisco multiservice routers. This feature provides the following:
•Flexible T1 and E1 support.
•Drop-and-insert multiplexing capability on all versions.
•Support for a dedicated hardware echo-cancellation module.
•On 2-port cards, capability for each port to be clocked from an independent clock source.
This feature was introduced in Cisco IOS Release 12.3(13)T. For more information, see the Configuring Hardware Echo Cancellation chapter in the Voice Port Configuration Guide. For detailed information about changes and enhancements to this feature in Cisco IOS Release 12.3(14)T, see the Second-Generation 1- and 2-Port T1/E1 Multiflex Trunk Voice/WAN Interface Cards document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123newft/123t/123t_14/gthwecan.htm
Secure Device Provisioning Certificate-Based Authorization
The Secure Device Provisioning (SDP) Certificate-Based Authorization feature allows certificates issued by other authority (CA) servers to be used for SDP introductions. For detailed information about this feature, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123newft/123t/123t_14/gtcbauth.htm
Secure SRST
Secure CiscoIP phones that are located at remote sites and that are attached to gateway routers can communicate securely using the WAN with CiscoCallManager. But if the WAN link or CiscoCallManager goes down, all communication through the remote phones becomes nonsecure. To overcome this situation, gateway routers can now function in secure SRST mode, which activates when the WAN link or CiscoCallManager goes down. When the WAN link or CiscoCallManager is restored, CiscoCallManager resumes secure call-handling capabilities.
Secure SRST provides new SRST security features such as authentication, integrity, and media encryption. Authentication provides assurance to one party that another party is whom it claims to be. Integrity provides assurance that the given data has not been altered between the entities. Encryption implies confidentiality; that is, that no one can read the data except the intended recipient. These security features allow privacy for SRST voice calls and protect against voice security violations and identity theft.
Selective Enabling of Applications Using an HTTP or Secure HTTP Server
For detailed information about this feature, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123newft/123t/123t_14/gt_httpe.htm
SHDSL - Auto Detection of 2-Wire Versus 4-Wire Line Mode
This feature is used with SHDSL customer premise equipment (CPE) to automatically detect if the DSLAM is set to two-wire or four-wire mode. Once the mode is detected, the CPE will train to match the DSLAM mode.
This feature was introduced in Cisco IOS Release 12.3(4)XD. For detailed information about changes and enhancements to this feature in Cisco IOS Release 12.3(14)T, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123newft/123t/123t_7/gt4wire.htm
SNA Switching Services Enterprise Extender for IP Version 6
SNA Switching Services (SNASw) announces hostname configuration support for Enterprise Extender (EE) connections. This allows SNASw EE links over an IP Version 6 backbone, and also enables Global Connection Network (also known as GVRN - Global Virtual Routing Node) to work when Network Address Translation (NAT) is in place between the connecting networks (IP Version 4 or IP Version 6). This feature adds an IPv6 keyword to the snasw link and snasw port commands.
For detailed information on configuring IPv6, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123cgcr/ipv6_c/index.htm
For detailed information on configuring SNASw, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios122/122cgcr/fibm_c/bcfpart2/bcfsnasw.htm
For detailed information on the snasw link and snasw port commands, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123tcr/123tb2r/ib2_s4gt.htm
SNMP over IPv6 Support
For detailed information about this feature, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123cgcr/ipv6_c/sa_mgev6.htm
SSG Aware On-Demand IP Address Renewal
For detailed information about this feature, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123newft/123t/123t_14/sgb_odip.htm
SSG Support for Subnet Based Authentication
The Subnet-Based Authentication for SSG feature allows a service provider to identify subscribers to services by their subnet, rather than by a subscriber's IP address.
For detailed information about this feature, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123newft/123t/123t_14/sgbsubnt.htm
Subordinate Certificate Server
For detailed information about this feature, see the following document:
http://www.cisco.com/univercd/cc/tc/doc/product/software/ios123/123newft/123t/123t_14/gt_scs.htm
System Logging - EAL4 Certification Enhancements
Note Official EAL4 certification is not claimed by Cisco. This feature is part of current and planned enhancements which may qualify Cisco IOS Software for future certification.
This feature includes the following enhancements:
•The system logging process will now generate 'audit start' and 'audit stop; messages.
•The system logging process will now generate messages that include the date and time of an event, the type of event, the subject identity, and the outcome (success or failure) of an event.
•Changes to logging parameters will be logged.
•Further enhancements to minimize lost audit records.
T.38 Fax Relay on the Cisco Catalyst 6000 and Cisco 7600 Communication Media Module
The T.38 Fax Relay on the Cisco Catalyst 6000 and Cisco 7600 Communication Media Module feature provides support for T.38 fax relay on the Cisco Catalyst 6000 and Cisco 7600.
For detailed information about this feature, see the Configuring T.38 Fax Relay chapter in the Cisco Fax Services over IP Application Guide:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios122/122newft/122t/122t11/faxapp/t38.htm
T.38 Fax Statistics
The T.38 Fax Statistics feature enables access servers with NextPort digital signal processors to gather detailed statistics about T.38 fax-relay calls. Statistics can be compiled into detailed call-detail records for diagnostic and billing purposes.
For detailed information about this feature, see the RADIUS VSA Voice Implementation Guide:
http://www.cisco.com/univercd/cc/td/doc/product/access/acs_serv/vapp_dev/vsaig3.pdf
T1/E1 Mode for SHDSL
The T1/E1 Mode for SHDSL feature was introduced in Cisco IOS Release 12.3(4)XD. For detailed information about changes and enhancements to this feature in Cisco IOS Release 12.3(14)T, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123newft/123t/123t_7/gtgshdsl.htm
Transient Memory Management
Transient memory is that memory which is allocated and de-allocated within a short period of time. When these type of memory allocations are free and interleaved with 'static' memory allocations, it leads to memory fragmentation. This enhancement helps to minimize memory fragmentation issues. This enhancement is especially effective for devices in BGP networks. The feature is enabled by default: no user configuration is required. Detailed information on transient memory pools, if used on your device, can be viewed using the show memory transient command.
USB Storage
The USB Storage feature enables certain models of Cisco routers to support universal serial bus (USB) Flash modules and provide secure access to a router.
For detailed information about this feature, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123newft/123t/123t_14/gt_etokn.htm
VoIP Alternate Path Fallback SNMP Trap
The VoIP Alternate Path Fallback SNMP Trap feature enhances support for the PSTN Fallback feature by providing the capability to generate Simple Network Management Protocol (SNMP) traps when the fallback subsystem redirects or rejects an H.323 VoIP call because a network condition fails to meet a configured threshold. See the Trunk-Management Features document for configuring information.
For detailed information about this feature, see the VoIP Alternate Path Fallback SNMP Trap document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123newft/123t/123t_14/pstntrap.htm
VRF Aware Cisco IOS Firewall
VRF Aware Cisco IOS Firewall applies Cisco IOS Firewall functionality to VRF (Virtual Routing and Forwarding) interfaces when the firewall is configured on a service provider (SP) or large enterprise edge router.
For detailed information about this feature, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123newft/123t/123t_14/gt_vrfaw.htm
VRF-Aware IPSec
The VRF-aware IPSec feature was integrated into the Cisco IOS Release 12.3(14)T and implemented on the following platforms:
•Cisco 2811 Series Integrated Services routers
•Cisco 2821 Series Integrated Services routers
•Cisco 2851 Series Integrated Services routers
•Cisco 3825 Series Integrated Services routers
•Cisco 3845 Series Integrated Services routers
VRF-Aware MPLS Static Labels
The VRF-Aware MPLS Static Labels feature was introduced in Cisco IOS Release 12.0(23)S. For detailed information about changes and enhancements to this feature in Cisco IOS Release 12.3(14)T, see the following document:
http://www.cisco.com/en/US/products/sw/iosswrel/ps1829/products_white_paper09186a00801b23af.shtml
Warm Reload
The Warm Reload feature was introduced in Cisco IOS Release 12.3(2)T. For detailed information about changes and enhancements to this feature in Cisco IOS Release 12.3(14)T, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123newft/123t/123t_2/gtwrmrbt.htm
WebVPN
The Cisco WebVPN feature provides remote access to enterprise sites by users from anywhere on the Internet.
For detailed information about this feature, see the following document:
http://www.cisco.com/univercd/cc/tc/doc/product/software/ios123/123newft/123t/123t_14/g_sslvpn.htm
WCCP Enhancements
The WCCP Enhancements feature was introduced in Cisco IOS Release 12.3(7)T. For detailed information about changes and enhancements to this feature in Cisco IOS Release 12.3(14)T, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123newft/123t/123t_14/gtwccpis.htm
X.25 Station Type for ISDN D-Channel Interface
The X.25 Station Type for ISDN D-Channel Interface feature was introduced in Cisco IOS Release 12.3(7)XR. For detailed information about changes and enhancements to this feature in Cisco IOS Release 12.3(14)T, see the following document:
New Hardware Features Supported in Cisco IOS Release 12.3(11)T2
This section describes new and changed features in Cisco IOS Release 12.3(11)T2. Some features may be new to Cisco IOS Release 12.3T but were released in earlier Cisco IOS software releases. Some features may have been released in earlier Cisco IOS software releases and have been changed in Cisco IOS Release 12.3(11)T2. To determine if a feature is new or changed, see the feature history table at the beginning of the feature module for that feature. Links to feature modules are included below. If a feature listed below does not have a link to a feature module, that feature is documented only in the release notes, and information about whether the feature is new or changed will be available in the feature description provided below.
Cisco MWR 1900 Series Routers
Cisco IOS Release 12.3(11)T introduces and supports the Cisco MWR 1900 series routers, which includes the Cisco MWR 1941-DC Mobile Wireless Edge Router.
For detailed information about these new routers, see the "Cisco MWR 1900 Series Routers" section on page 34 and the documents at the following location:
http://www.cisco.com/univercd/cc/td/doc/product/wireless/ipran/2_0/1941/index.htm
New Software Features Supported in Cisco IOS Release 12.3(11)T2
This section describes new and changed features in Cisco IOS Release 12.3(11)T2. Some features may be new to Cisco IOS Release 12.3T but were released in earlier Cisco IOS software releases. Some features may have been released in earlier Cisco IOS software releases and have been changed in Cisco IOS Release 12.3(11)T2. To determine if a feature is new or changed, see the feature history table at the beginning of the feature module for that feature. Links to feature modules are included below. If a feature listed below does not have a link to a feature module, that feature is documented only in the release notes, and information about whether the feature is new or changed will be available in the feature description provided below.
Cisco 7301 Router Supports Stateful Failover for IPSec
Cisco IOS Release 12.3(11)T2 introduces support for IPSec stateful failover on the Cisco 7301 router. For detailed information on IPSec stateful failover beginning in Cisco IOS Release 12.3(11)T, see the following document:
https://www.cisco.com/en/US/docs/ios/12_3t/12_3t11/feature/guide/gt_topht.html
Media and Signaling Authentication and Encryption Feature for Cisco IOS MGCP Gateways in SRST Mode
This feature implements signaling authentication along with media and signaling encryption on MGCP gateways and provides secure VoIP calls by addressing security requirements for privacy, integrity, and confidentiality of voice conversations. The Cisco IP telephony network establishes and maintains authenticated communications using signaling authentication, to validate that no tampering has occurred to signaling packets during transmission, and encryption, to provide data integrity and authentication. IPSec ensures that signaling information, that is, DTMF digits, passwords, PINs, encryption keys, and so forth, sent between the gateway and Cisco CallManager is encrypted. Media encryption using standards-based SRTP ensures that media streams between supported devices are secure.
Voice security features support the following capabilities between gateways and from gateways to IP phones that support the encryption feature:
•Gateway to Cisco CallManager call control authentication and encryption using IPSec
•Media encryption and authentication of voice RTP streams using SRTP
•Exchange of RTP Control Protocol (RTCP) information using Secure RTCP (SRTCP)
•SRTP to RTP fallback for calls between secure and nonsecure endpoints
•Secure to clear-text fallback for new calls during SRST operation
New Hardware Features Supported in Cisco IOS Release 12.3(11)T
This section describes new and changed features in Cisco IOS Release 12.3(11)T. Some features may be new to Cisco IOS Release 12.3T but were released in earlier Cisco IOS software releases. Some features may have been released in earlier Cisco IOS software releases and have been changed in Cisco IOS Release 12.3(11)T. To determine if a feature is new or changed, see the feature history table at the beginning of the feature module for that feature. Links to feature modules are included below. If a feature listed below does not have a link to a feature module, that feature is documented only in the release notes, and information about whether the feature is new or changed will be available in the feature description provided below.
•256-MB Memory Capacity Enhancement
•Cisco 3200 Series Mobile Access Routers
•High-Density Analog (FXO/FXS/DID) and Digital (BRI) Extension Module for Voice/Fax (EVM-HD)
256-MB Memory Capacity Enhancement
The new 128-MB synchronous dynamic RAM (SDRAM) dual in-line memory module (DIMM) is available for use in all new and existing Cisco 2600XM series routers. This new 128-MB DIMM offers higher-density memory, providing the ability to support memory increases to 256 MB of DRAM.
Cisco 3200 Series Mobile Access Routers
Cisco IOS Release 12.3(11)T introduces and supports the Cisco 3200 series of mobile access routers, which includes the Cisco 3320 and the Cisco 3250.
For detailed information about these new routers, see the "Cisco 3200 Series Mobile Access Routers" section on page 54 and the documents at the following location:
http://www.cisco.com/univercd/cc/td/doc/product/access/mar_3200/index.htm
Cisco 3800 Series Routers
Cisco IOS Release 12.3(11)T introduces and supports the Cisco 3800 series routers, which includes the Cisco 3825 and the Cisco 3845.
For detailed information about these new routers, see the "Cisco 3800 Series Routers" section on page 70 and the documents at the following location:
http://www.cisco.com/en/US/products/ps5855/tsd_products_support_series_home.html
High-Density Analog (FXO/FXS/DID) and Digital (BRI) Extension Module for Voice/Fax (EVM-HD)
The High-Density Analog (FXO/FXS/DID) and Digital (BRI) Extension Module for Voice/Fax (EVM-HD) feature delivers a higher density integrated analog/digital voice interface. The EVM-HD-8FXS/DID baseboard provides eight FXS and DID ports. This network module accesses digital signal processor (DSP) modules on the motherboard, instead of using onboard DSPs. You can increase the port density by plugging in up to two optional expansion modules in any combination:
•EM-HDA-8FXS—8-port voice/fax expansion module
•EM-HDA-3FXS/4FXO—7-port voice/fax expansion module
•EM-HDA-6FXO—6-port voice/fax expansion module
•EM-4BRI-NT/TE—4-port ISDN BRI expansion module
PVDM2 DSP modules are used in combination with the EVM-HD-8FXS/DID baseboard and its expansion modules. PVDM2 modules are available separately and installed in the DSP module slots located inside the router chassis.
For detailed information about this feature, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123newft/123t/123t_8/hdadv_vm.htm
New Software Features Supported in Cisco IOS Release 12.3(11)T
This section describes new and changed features in Cisco IOS Release 12.3(11)T. Some features may be new to Cisco IOS Release 12.3T but were released in earlier Cisco IOS software releases. Some features may have been released in earlier Cisco IOS software releases and have been changed in Cisco IOS Release 12.3(11)T. To determine if a feature is new or changed, see the feature history table at the beginning of the feature module for that feature. Links to feature modules are included below. If a feature listed below does not have a link to a feature module, that feature is documented only in the release notes, and information about whether the feature is new or changed will be available in the feature description provided below.
•ATM Mode for Two-Wire or Four-Wire SHDSL
•APS Support on AS5850 STM-1 Interface
•BGP Support for Dual AS Configuration for Network AS Migrations
•BGP Support for Named Extended Community Lists
•BGP Support for Sequenced Entries in Extended Community Lists
•Call Failure Recovery (Rotary) on the Cisco Multiservice IP-to-IP Gateway
•Certificate Server Auto Archive
•Cisco 1700 Series Voice Features
•Cisco Enhanced Conferencing and Transcoding for Cisco Voice Gateway Routers
•Cisco IOS Intrusion Prevention System
•Cisco IOS IPv6 Configuration Library
•Clear Certificate Server Enrollment Request Database
•Configurable MAC Address for PPPoE
•Configuring Fast Secure Roaming
•Configuring Remote Site IEEE 802.1X Local Authentication Service
•Default Route on a PPP Virtual Access Interface
•Enabling OSPFv2 on an Interface Using the ip ospf area Command
•Enhanced Crashinfo File Collection Method
•Enhanced cRTP for Links with High Delay, Packet Loss and Reordering
•Enhanced ITU-T G.168 Echo Cancellation
•Gatekeeper Prefix Selection for Hair-Pinned Calls
•IPv6 IOS Firewall FTP Application Support
•IPv6 Multicast: Bootstrap Router (BSR)
•MCID for Cisco IOS Voice Gateways
•MLPP for Cisco IOS Voice Gateways
•Mobile IP CPS Improvement at FA
•Mobile Networks Deployment MIB
•NAT - H.245 Tunneling Support
•NBAR Multiple Applications per Port Capability
•OER Policy-Rules Configuration and Port-Based Prefix Learning
•Out-of-Band to In-Band DTMF Relay for Cisco IOS Voice Gateways
•Overlap Signaling Processing on H.323 Terminating Gateways
•PKI AAA Authorization Using the Entire Subject Name
•Port Translation for Windows Clients and Cisco IOS LNS Support
•QSIG Supplementary Features for Cisco IOS Voice Gateways
•SHDSL - Auto Detection of 2 Wire Versus 4 Wire Line Mode
•Skip FA/HA-CHAP at Mobile IP Lifetime Renewals
•SSG Default Quota for Prepaid Billing Server Failure
•SSG Support for Dynamic Load Balancing
•SSG Support for Overlapping Subscriber IP Addresses
•SSG Support for RADIUS Attributes 27 and 29
•SSM Channel (S,G) Based Filtering for Multicast Boundaries
•Support for AAA Attributes MN-HA-SPI and MN-HA Shared Key
•Upstream PPPoX Connection Speed Transfer at LAC
•VRF Aware Multicast Error Messages
ATM Mode for Two-Wire or Four-Wire SHDSL
For detailed information about this feature, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123newft/123t/123t_7/gt4wire.htm
APS Support on AS5850 STM-1 Interface
For detailed information about this feature, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123newft/123t/123t_11/gt_aps58.htm
AutoQoS for the Enterprise
This feature was introduced in Cisco IOS Release 12.3(7)T. For detailed information about changes and enhancements to this feature in Cisco IOS Release 12.3(11)T, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123newft/123t/123t_11/ft_aqose.htm
BGP Support for Dual AS Configuration for Network AS Migrations
For detailed information about this feature, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123newft/123t/123t_11/gtbgpdas.htm
BGP Support for Named Extended Community Lists
For detailed information about this feature, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123newft/123t/123t_11/gtnextcl.htm
BGP Support for Sequenced Entries in Extended Community Lists
For detailed information about this feature, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123newft/123t/123t_11/gtextseq.htm
Call Failure Recovery (Rotary) on the Cisco Multiservice IP-to-IP Gateway
The Call Failure Recovery feature eliminates the need for identical codec capabilities for all dial peers in the rotary group and allows the IP-to-IP gateway to restart the codec negotiation process with the originating endpoint on the basis of the codec capabilities of the next dial peer in the rotary group.
For detailed information about this feature, see the Cisco Multiservice IP-to-IP Gateway Application Guide:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios122/122newft/122t/122t13/ipipgw/index.htm
CallManager Express 3.2
Cisco CallManager Express 3.2 adds a number of key telephony features including support for 240 phones, transcoding, and RFC 2833 DTMF support:
•Call Pickup Ringing Extension
•External Music on Hold Source
•Japanese Katakana Localization
•Number of Phones Supported on an Access Server
•RFC 2833 DTMF Support from SCCP Devices to Cisco Unity Express
•Translation Profiles Support (CME and SRST)
alias Command
The alias command is enhanced as follows:
•The cfw keyword is added, providing call forward no-answer/busy capabilities.
•The maximum number of alias commands that are used for creating calls to telephone numbers that are unavailable during Cisco CallManager fallback is increased from 10 to 50.
•The alternate-number argument can be used in multiple alias commands.
For detailed information about this feature, see the alias command in the Cisco IOS Survivable Remote Site Telephony Version 3.2 Command Reference:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123newft/123t/123t_11/srst32cr/index.htm
Call Pickup Ringing Extension
The pickup command is introduced to enable the PickUp soft key on all Cisco IP phones, allowing an external Direct Inward Dialing (DID) call coming into one extension to be picked up from another extension during SRST.
For detailed information about this feature, see the pickup command in the Cisco IOS Survivable Remote Site Telephony Version 3.2 Command Reference:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123newft/123t/123t_11/srst32cr/index.htm
COR List
The maximum number of class of restriction (COR) lists is increased from 10 to 20.
For detailed information about this feature, see the cor command in the Cisco IOS Survivable Remote Site Telephony Version 3.2 Command Reference:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123newft/123t/123t_11/srst32cr/index.htm
External Music on Hold Source
Cisco SRST has been enhanced with the moh-live command. The moh-live command provides live-feed MOH streams from an audio device connected to an E&M or FXO port to Cisco IP phones in SRST mode. Music from a live feed is from a fixed source and is continuously fed into the MOH playout buffer instead of being read from a flash file. Live-feed MOH can also be multicast to Cisco IP phones.
For detailed information about this feature, see the Integrating Cisco CallManager and Cisco SRST to Use Cisco SRST as a Multicast MOH Resource document:
http://www.cisco.com/univercd/cc/td/doc/product/access/ip_ph/srs/srsinter/moh.htm
Japanese Katakana Localization
Japanese Katakana is now supported with the JP keyword and is available to Cisco SRST systems running under Cisco CallManager V4.0.
For detailed information about this feature, see the user-locale command in the Cisco IOS Survivable Remote Site Telephony Version 3.2 Command Reference:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123newft/123t/123t_11/srst32cr/index.htm
Number of Phones Supported on an Access Server
The number of phones that are supported on a Cisco 3845 is increased from 240 to 720 and up to 960 ephone-dns or virtual ports.
Option to Disable H.225 TCP Timer from Phone to Gateway to Maintain Calls in Progress During WAN Outage
To preserve existing H.323 calls on the branch in the event of an outage, disable the H.225 keepalive timer by entering the no h225 timeout keepalive command.
For detailed information about this feature, see the "Overview of Cisco IOS SRST" chapter in the Cisco IOS Survivable Remote Site Telephony Version 3.2 System Administrator Guide:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123newft/123t/123t_11/srst32ad/srs_over.htm
RFC 2833 DTMF Support from SCCP Devices to Cisco Unity Express
Cisco Skinny Client Control Protocol (SCCP) phones, such as those used with Cisco SRST systems, provide only out-of-band DTMF digit indications. To enable SCCP phones to send digit information to remote SIP-based IVR and voice-mail applications, Cisco SRST 3.2 and later versions provide conversion from the out-of-band SCCP digit indication to the SIP standard for DTMF relay, which is RFC 2833. You select this method in the SIP VoIP dial peer using the dtmf-relay rtp-nte command.
For detailed information about this feature, see the "Preparing Cisco SRST Support for SIP" chapter in the Cisco IOS Survivable Remote Site Telephony Version 3.2 System Administrator Guide:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123newft/123t/123t_11/srst32ad/srs_sip.htm
Translation Profiles Support (CME and SRST)
Cisco SRST 3.2 supports translation profiles. Translation profiles allow you to group translation rules together and to associate translation rules with the following:
•Called numbers
•Calling numbers
•Redirected called numbers
For detailed information about this feature, see the "Setting Up Call Handling" chapter in the Cisco IOS Survivable Remote Site Telephony Version 3.2 System Administrator Guide:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123newft/123t/123t_11/srst32ad/index.htm
Also, see the translation-profile command in the Cisco IOS Survivable Remote Site Telephony Version 3.2 Command Reference:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123newft/123t/123t_11/srst32cr/index.htm
CallManager Express 3.2 Documentation
For detailed information about CallManager Express 3.2, including the IP phone user guide and quick reference cards, see the CallManager Express 3.2 documentation home page:
http://www.cisco.com/univercd/cc/td/doc/product/access/ip_ph/ip_ks/cme32/index.htm
For more information about CallManager Express 3.2, see the following documents:
•Cisco CallManager Express 3.2 System Administrator Guide:
http://www.cisco.com/en/US/docs/voice_ip_comm/cucme/admin/configuration/guide/cmeadm.html
•Cisco CallManager Express 3.2 Command Reference:
http://www.cisco.com/en/US/docs/voice_ip_comm/cucme/admin/configuration/guide/cmeadm.html
•Cisco IOS Survivable Remote Site Telephony Version 3.2 System Administrator Guide:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123newft/123t/123t_11/srst32ad/index.htm
•Cisco IOS Survivable Remote Site Telephony Version 3.2 System Command Reference:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123newft/123t/123t_11/srst32cr/index.htm
Certificate Server Auto Archive
For detailed information about this feature, see the Cisco IOS Certificate Server document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123newft/123t/123t_4/gt_ioscs.htm
Cisco 1700 Series Voice Features
The following is a list of Cisco IOS voice features that have been introduced in various Cisco IOS releases and that are now supported on the Cisco 1700 series platforms as part of Cisco IOS Release 12.3(11)T.
The following Cisco IOS VoIP features are supported on the Cisco 1700 series platforms for Cisco IOS Release 12.3(11)T:
•H.323v4: Enhanced Call Usage Reporting
•H.323v4 Gateway Zone Prefix Registration Enhancements
•SIP Call Transfer and Call Forwarding
•VoIP and Cisco Express Forwarding (CEF) Interoperability
•VoIP and Policy Based Routing (PBR) Interoperability
H.323v4: Enhanced Call Usage Reporting
This feature provides H.323v4 enhancements that provide standards-based call usage reporting to the gatekeeper from an H.323 gateway. This information is used by the gatekeeper to generate call detail records (CDRs).
For more information, see the following documents:
•The "Cisco IOS Call Control Technology" section in the Cisco IOS Voice Configuration Library:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios124/124tcg/vcl.htm
•The VoIP Gateway Trunk and Carrier Based Routing Enhancements document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios122/122newft/122t/122t11/ftgwrepg.htm
•The VoIP Gatekeeper Trunk and Carrier Based Routing Enhancements document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios122/122newft/122t/122t11/ftgkrenb.htm
H.323v4 Gateway Zone Prefix Registration Enhancements
This feature provides support for two capabilities included in H.323, version 4: additive registration and dynamic zone prefix registration. Additive registration allows a gateway to add to or modify a list of aliases contained in a previous registration without first unregistering from the gatekeeper. Dynamic zone prefix registration allows a gateway to register actual PSTN destinations served by the gateway with its gatekeeper.
For more information, see the following documents:
•The "Cisco IOS Call Control Technology" section in the Cisco IOS Voice Configuration Library:
•The H.323v4 Gateway Zone Prefix Registration Enhancements document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios122/122newft/122t/122t15/ftgwzpre.htm
SIP Call Transfer and Call Forwarding
This feature introduces the ability of Session Initiation Protocol (SIP) gateways to initiate blind or attended call transfers. Release Link Trunking (RLT) functionality is also added. With RLT, SIP blind call transfers can now be triggered by channel-associated signaling (CAS) trunk signaling. This feature also implements SIP support of call forwarding requests from a Cisco IOS gateway.
For more information, see the Cisco IOS SIP Configuration Guide:
http://www.cisco.com/en/US/docs/ios/12_3/sip/configuration/guide/sipconf.pdf
VoIP and Cisco Express Forwarding (CEF) Interoperability
This functionality enables Cisco Express Forwarding of VoIP signaling and payload packets that originate from voice interfaces and interactive voice response (IVR) applications.
This feature modifies the Voice over IP (VoIP) and IVR programming so that they can interoperate with features that are supported only in the CEF path (not in the fast-switching path that VoX uses). Voice and IVR work only in the fast path on the routers where they are originated and terminated (voice and IVR on "transit" routers are just data packets and of course can be CEF-switched).
This feature enables policy-based routing of VoIP traffic that originates or terminates on the specified voice gateways and introduces voice packet differentiated services code point (DSCP) marking for Media Gateway Control Protocol (MGCP) voice gateways.
For more information, see the VoIP Interoperability with Cisco Express Forwarding and Policy-Based Routing document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123cgcr/vvfax_c/vclcef.htm
VoIP and Policy Based Routing (PBR) Interoperability
PBR gives you a flexible means of routing packets by allowing you to configure a defined policy for traffic flows, lessening reliance on routes derived from routing protocols. To this end, PBR gives you more control over routing by extending and complementing the existing mechanisms provided by routing protocols. PBR allows you to set the IP precedence. It also allows you to specify a path for certain traffic, such as priority traffic over a high-cost link.
PBR allows you to perform the following tasks:
•Classify traffic according to extended access list criteria. Access lists, then, establish the match criteria.
•Set IP precedence bits, giving the network the ability to enable differentiated classes of service.
•Route packets to specific traffic-engineered paths; you might need to route them to allow a specific QoS through the network.
For more information, see the VoIP Interoperability with Cisco Express Forwarding and Policy-Based Routing document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123cgcr/vvfax_c/vclcef.htm
Cisco Easy VPN Remote
For detailed information about this feature, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123newft/123t/123t_7/ftezvpnr.htm
Cisco Enhanced Conferencing and Transcoding for Cisco Voice Gateway Routers
The Cisco Enhanced Conferencing and Transcoding for Cisco Voice Gateway Routers feature was introduced in Cisco IOS Release 12.3(8)T. Release 12.3(11)T adds support for this feature on the new Cisco 2801 router.
For detailed information about this feature, see the "Configuring Conferencing and Transcoding for Voice Gateway Routers" chapter in the Cisco CallManager and Cisco IOS Interoperability Guide:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123cgcr/vvfax_c/callc_c/ccm_c/intcnf2.htm
Cisco IOS 802.1x Supplicant
For detailed information about this feature, see the VPN Access Control Using 802.1X Authentication document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123newft/123limit/123x/123xa/gt_802_1.htm
Cisco IOS Intrusion Prevention System
For detailed information about this feature, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123newft/123t/123t_8/gt_fwids.htm
Cisco IOS IPv6 Configuration Library
For detailed information about this feature, see the Cisco IOS IPv6 Configuration Library:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios122/122newft/122t/122t13/ipv6_vgf.htm
Clear Certificate Server Enrollment Request Database
For detailed information about this feature, see the Cisco IOS Certificate Server document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123newft/123t/123t_4/gt_ioscs.htm
Configurable MAC Address for PPPoE
For detailed information about this feature, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123newft/123t/123t_11/gt_cmppp.htm
Configuring Fast Secure Roaming
For detailed information about this feature, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123newft/123t/123t_11/fastroam.htm
Configuring Remote Site IEEE 802.1X Local Authentication Service
For detailed information about this feature, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123newft/123t/123t_11/locauth.htm
Default Route on a PPP Virtual Access Interface
For detailed information about this feature, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123newft/123t/123t_11/gtdfltrt.htm
DHCP - Static Mapping
For detailed information about this feature, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123newft/123t/123t_11/gtdhcpsm.htm
Dial-Out Trunk Group
For detailed information about this feature, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123newft/123t/123t_11/gtdltrgp.htm
Enabling OSPFv2 on an Interface Using the ip ospf area Command
For detailed information about this feature, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios120/120newft/120limit/120s/120s29/ospfarea.htm
Enhanced Crashinfo File Collection Method
For detailed information about this feature, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123newft/123t/123t_11/gt_cricm.htm
Enhanced cRTP for Links with High Delay, Packet Loss and Reordering
For detailed information about this feature, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123newft/123t/123t_11/gt_ecrtp.htm
Enhanced ITU-T G.168 Echo Cancellation
For detailed information about this feature, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123cgcr/vvfax_c/int_c/vclport.htm
FACILITY Debug Enhancement
Overview
This feature enables display of ASN.1-encoded ISDN FACILITY Information Element (IE) contents. All supported operations of the ISDN supplementary services—Advice of Charge (AOC), Two B-Channel Transfer (TBCT), Explicit Call Transfer (ECT), and Malicious Call Identification (MCID)—are now included as part of the debug messages. Prior to this enhancement, the debug isdn q931 command displayed the contents of the FACILITY IE in its raw hexadecimal format. Now, the parameters of FACILITY IE are displayed in text format along with parameter values where they are applicable and as they are relevant to the operation. In addition, the ASN.1 encoded Notification structure of the Notification-Indicator IE are also decoded. This debugging information is available for both incoming and outgoing FACILITY IEs in any message over an ISDN interface.
The debug isdn q931 command must be enabled to display the contents of FACILITY IE. Following are examples of new messages displayed in the debug isdn q931 command output. See the debug isdn q931 command page for more details about the information displayed by the FACILITY IE.
Output for Invoke Component Debug Message with MCID Operation: Example
Old output:
07:20:21: ISDN Se7/4:23 Q931: TX -> FACILITY pd = 8 callref = 0x8001Facility i = 0x91A106020107020103- ETSI Supplementary Service, Invoke, Malicious Call IDNew output:
07:20:21: ISDN Se7/4:23 Q931: TX -> FACILITY pd = 8 callref = 0x8001Facility i = 0x91A106020107020103Protocol Profile = Remote Operations ProtocolA106020107020103Component = Invoke ComponentInvoke Id = 07 (MCID)Operation = McidRequestOutput for Return Result Component Debug Message for TBCT: Example
Old output:
02:05:33: ISDN Se7/4:23 Q931: RX <- FACILITY pd = 8 callref = 0x01Facility i = 0x91A203020105A11302010180010506072A8648CE15000A81020164New output:
02:05:33: ISDN Se7/4:23 Q931: RX <- FACILITY pd = 8 callref = 0x01Facility i = 0x91A203020105A11302010180010506072A8648CE15000A81020164Protocol Profile = Remote Operations ProtocolA203020105Component = Return Result ComponentInvoke Id = 05 (TBCT)A11302010180010506072A8648CE15000A81020164Component = Invoke ComponentInvoke Id = 01 (unknown)Linked Id = 05Operation = SetCallTagCall Tag = 356Output for Return Error Component Debug Message: Example
Old output:
16:27:07: ISDN Se1:23 Q931: RX <- FACILITY pd = 8 callref = 0x01Facility i = 0x91A306020107020109- ETSI Supplementary Service, Return ErrorNew output:
16:27:07: ISDN Se1:23 Q931: RX <- FACILITY pd = 8 callref = 0x01Facility i = 0x91A306020107020109Protocol Profile = Remote Operations ProtocolA306020107020109Component = Return Error ComponentInvoke Id = 07 (MCID)Error = Not Incoming CallOutput for Reject Component Debug Message: Example
Old output:
03:09:17: ISDN Se7/4:23 Q931: RX <- FACILITY pd = 8 callref = 0x01Facility i = 0x91A406020109800102New output:
03:09:17: ISDN Se7/4:23 Q931: RX <- FACILITY pd = 8 callref = 0x01Facility i = 0x91A406020109800102Protocol Profile = Remote Operations ProtocolA406020109800102Component = Reject ComponentInvoke Id = 09 (Unknown)Problem = General Problem; Badly structured ComponentOutput for Notification-Indicator IE Component Debug Message: Example
Old output:
Mar 1 01:48:26.543: ISDN Se1/0:23 Q931: RX <- NOTIFY pd = 8 callref = 0x00Notification Ind i = 0x83300C06072A8648CE15020181010DNew output:
Mar 1 01:48:26.543: ISDN Se1/0:23 Q931: RX <- NOTIFY pd = 8 callref = 0x00Notification Ind i = 0x83300C06072A8648CE15020181010DNotification = Transferred Call ClearingCall Tag = 13Gatekeeper Prefix Selection for Hair-Pinned Calls
The Gatekeeper Prefix Selection for Hair-Pinned Calls feature enables an H.323 gatekeeper to terminate/hairpin calls from a TDM/PSTN endpoint back through the same originating gateway on the basis of priority/zone prefix values.
For detailed information about this feature, see the Cisco Multiservice IP-to-IP Gateway Application Guide:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios122/122newft/122t/122t13/ipipgw/index.htm
IPv6 IOS Firewall FTP Application Support
Cisco IOS IPv6 Firewall FTP application support is provided by port-to-application mapping (PAM). PAM allows you to customize TCP or UDP port numbers for network services or applications. PAM uses this information to support network environments that run services using ports that are different from the registered or well-known ports associated with an application.
For detailed information about this feature, see the following document:
http://www.cisco.com/en/US/docs/ios/ipv6/configuration/guide/ip6-sec_trfltr_fw.html
IPv6 Multicast: Bootstrap Router (BSR)
For Cisco IOS IPv6 multicast implementations, PIM routers in a domain must be able to map each multicast group to the correct RP address. The BSR protocol for PIM-SM provides a dynamic, adaptive mechanism to distribute group-to-RP mapping information rapidly throughout a domain. With the IPv6 BSR feature, if an RP becomes unreachable, it will be detected and the mapping tables will be modified so that the unreachable RP is no longer used, and the new tables will be rapidly distributed throughout the domain.
For detailed information about this feature, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123cgcr/ipv6_c/sa_mcast.htm#wp1126406
IPv6 Support for AS5850 Dial
As of Cisco IOS Release 12.3(11)T, Cisco IOS IPv6 is supported on the Cisco AS5850 platform. For detailed information about Cisco IOS IPv6, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios122/122newft/122t/122t13/ipv6_vgf.htm
MCID for Cisco IOS Voice Gateways
The MCID for Cisco IOS Voice Gateways feature supports the Malicious Call Identification (MCID) supplementary service that enables Cisco CallManager 4.0 to identify the source of malicious calls.
For detailed information about this feature, see the "Configuring MCID for Cisco IOS Voice Gateways" chapter in the Cisco CallManager and Cisco IOS Interoperability Guide:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123cgcr/vvfax_c/callc_c/ccm_c/int_mcid.htm
MLPP for Cisco IOS Voice Gateways
The MLPP for Cisco IOS Voice Gateways feature supports Multilevel Precedence and Preemption (MLPP) service, allowing authorized users to preempt lower priority voice calls using Cisco CallManager 4.0.
For detailed information about this feature, see the "Configuring MGCP Gateway Support for Cisco CallManager" chapter in the Cisco CallManager and Cisco IOS Interoperability Guide:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123cgcr/vvfax_c/callc_c/ccm_c/intcnf1.htm
Mobile IP CPS Improvement at FA
For detailed information about this feature, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123newft/123t/123t_11/moipcps.htm
Mobile Networks Deployment MIB
For detailed information about this feature, see the following document:
http://www.cisco.com/en/US/docs/ios/12_3t/12_3t4/feature/guide/gtmdebug.html
NAT - H.245 Tunneling Support
For detailed information about this feature, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123newft/123t/123t_11/nat245tl.htm
NBAR Multiple Applications per Port Capability
For detailed information about this feature, see the Network-Based Application Recognition and Distributed Network-Based Application Recognition document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios122/122newft/122t/122t8/dtnbarad.htm
NetFlow
Cisco IOS Release 12.3(11)T supports NetFlow on the Cisco 3200 series mobile access routers.
NetFlow Egress Support
For detailed information about this feature, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123newft/123t/123t_11/nflowegr.htm
NetFlow Top Talkers
For detailed information about this feature, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios122s/122snwft/release/122s25/nflowtt.htm
NextPort Voice Tuning and Background Noise Statistics with NextPort Dual-Filter G.168 Echo Cancellation
The NextPort Voice Tuning and Background Noise Statistics with NextPort Dual-Filter G.168 Echo Cancellation feature allows you to dynamically configure voice services on the NextPort-based platforms: the Cisco AS5350, Cisco AS5400, Cisco AS5400HPX, and Cisco AS5850. This feature also provides improved voice quality and statistics reporting and adds dual-filter G.168 echo canceller capability in NextPort SPE firmware (SPEware) version 10.2.2 and later with Cisco IOS Release 12.3(11)T.
Dual-filter G.168 echo canceller capability has been added to the CSMV6 dial feature card (DFC) for NextPort platforms. The NextPort dual-filter G.168 echo canceller (EC) improves voice quality in VoIP connections by providing relatively less residual echo leakage, better non-linear processing (NLP) timing, less clipping, and better comfort noise generation (CNG) in most environments.
The dual-filter G.168 echo canceller features two concurrently operating adaptive filters (which control echo tail coverage) and two double-talk detection functions. In addition, the comfort noise model uses "Hoth noise" spectrum shaping to better replicate the true noise spectrum.
The NextPort dual-filter G.168 echo canceller uses the same voice-tuning (VCtune) interface for configuring voicecap parameters as the Cisco-proprietary G.164 echo canceller. Adjusting the dual-filter echo canceller is carried out by using a voicecap or by using the Cisco IOS command-line interface (CLI) during configuration.
For more information, see the NextPort Voice Tuning and Background Noise Statistics with NextPort Dual-Filter G.168 Echo Cancellation chapter in the Voice Port Configuration Guide document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123cgcr/vvfax_c/int_c/vpcg/index.htm
OER Policy-Rules Configuration and Port-Based Prefix Learning
For detailed information about this feature, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123newft/123t/123t_11/gt_oer2.htm
Out-of-Band to In-Band DTMF Relay for Cisco IOS Voice Gateways
This feature provides RFC 2833 capability, enabling DTMF relay communication between SIP devices and non-SIP endpoints using Cisco CallManager 4.0.
For detailed information about this feature, see the "Configuring Enhanced Conferencing and Transcoding for Voice Gateway Routers" chapter in the Cisco CallManager and Cisco IOS Interoperability Guide:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123cgcr/vvfax_c/callc_c/ccm_c/intcnf2.htm
Overlap Signaling Processing on H.323 Terminating Gateways
In an overlap signaling scenario, the called number in the SETUP message does not contain enough digits to match the incoming dial peer for the dial peer to select the right application. With this change, the H.323 layer determines if a partial match is detected and appends the called number with the needed digits. The new called number is checked to see if it matches any of the incoming dial peers. If either full match or no match is returned, the call will proceed with a SETUP procedure.
For detailed information about this feature, see the Cisco Multiservice IP-to-IP Gateway Application Guide:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios122/122newft/122t/122t13/ipipgw/index.htm
PKI AAA Authorization Using the Entire Subject Name
For detailed information about this feature, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123newft/123t/123t_11/gt_dnall.htm
PKI Status
For detailed information about this feature, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123newft/123t/123t_11/gtpkista.htm
Port Translation for Windows Clients and Cisco IOS LNS Support
For detailed information about this feature, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123newft/123t/123t_11/pt_wnlns.htm
Quick Autoenroll
The Autoenroll feature enables a router to automatically trigger an enrollment when the elapsed lifetime of an existing certificate has reached a certain percentage (for example, after 70 percent of the lifetime has passed, the router automatically enrolls for a new certificate). When no certificate exists, a 1-minute timer is set to trigger autoenrollment as soon as the clock has been set manually or by using Network Time Protocol (NTP).
The Quick Autoenroll feature shortens the 1-minute time when no certificate exists. Instead of having to wait 1 minute, an enrollment will occur after 15 seconds. This feature applies to manually configured autoenroll using the current auto-enroll command. No new or additional commands or keywords are necessary for this feature to work. This feature also applies when the configuration sent to the device includes autoenroll (that is, to any subsystem that calls for the "parse_configure() with RES_MANUAL" flag to enter the auto-enroll command, for example, during a Trusted Transitive Introduction [TTI] exchange).
When the configuration is read from NVRAM or copied from file systems, autoenroll will still have a 1-minute timer. The 1-minute timer prevents the read-in of multiple trustpoints from configuration and trigger enrollments that occur simultaneously.
QSIG Supplementary Features for Cisco IOS Voice Gateways
This feature supports Q Signaling (QSIG) over PRI backhaul interfaces on MGCP gateways to Cisco CallManager 4.0.
For detailed information about this feature, see the "Configuring MGCP PRI Backhaul and T1 CAS Support for Cisco CallManager" chapter in the Cisco CallManager and Cisco IOS Interoperability Guide:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123cgcr/vvfax_c/callc_c/ccm_c/intcnf3.htm
Reverse SSH Enhancements
For detailed information about this feature, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123newft/123t/123t_11/gt_rssh.htm
Role-Based CLI Access
For detailed information about this feature, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123newft/123t/123t_7/gtclivws.htm
SHDSL - Auto Detection of 2 Wire Versus 4 Wire Line Mode
For detailed information about this feature, see the ATM Mode for Two-Wire or Four-Wire SHDSL document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123newft/123t/123t_7/gt4wire.htm
Skip FA/HA-CHAP at Mobile IP Lifetime Renewals
For detailed information about this feature, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123newft/123t/123t_11/skipchap.htm
SSG Default Quota for Prepaid Billing Server Failure
For detailed information about this feature, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123newft/123t/123t_11/gtssgdfq.htm
SSG Support for Dynamic Load Balancing
For detailed information about this feature, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123newft/123t/123t_11/gtssgdfp.htm
SSG Support for Overlapping Subscriber IP Addresses
For detailed information about this feature, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123newft/123t/123t_11/gtssgovr.htm
SSG Support for RADIUS Attributes 27 and 29
The SSG Support for Radius Attributes 27 and 29 feature introduces SSG compliance with RFC 3580 with respect to RADIUS attributes 27 (Session-Timeout) and 29 (Termination-Action). RFC 3580 recommends using attributes 27 and 29 in Access-Accept packets during authentication to enforce periodic reauthentication of users. For details, see RFC 3580, "IEEE 802.1X Remote Authentication Dial In User Service (RADIUS) Usage Guidelines."
For instances that indicate reauthentication after the session timeout, SSG uses the cached username and password while performing reauthentication. If SSG does not have these credentials, the session is brought down as if reauthentication had failed. If a particular deployment makes use of one-time passwords for authenticating users, SSG reauthentication will fail and the session will be brought down.
For SSG transparent autologon (TAL) hosts (TAL users who have host objects created on SSG), SSG will perform TAL reauthorization upon session timeout whenever attribute 29 is present in the RADIUS profile of the user. (Note that for TAL users, SSG performs reauthorization, not reauthentication, because the user profile is downloaded on the basis of the IP address and service password.)
In SSG RADIUS proxy deployments, SSG will not perform session timeout processing when attribute 29 is present in the Access-Accept packet and is set to reauthenticate.
SSM Channel (S,G) Based Filtering for Multicast Boundaries
For detailed information about this feature, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123newft/123t/123t_11/gtmcbnd.htm
Stateful Failover for IPSec
For detailed information about this feature, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123newft/123t/123t_11/gt_topht.htm
Support for AAA Attributes MN-HA-SPI and MN-HA Shared Key
For detailed information about this feature, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123newft/123t/123t_11/spishare.htm
Upstream PPPoX Connection Speed Transfer at LAC
For detailed information about this feature, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123newft/123t/123t_11/gtupppox.htm
VRF Aware Multicast Error Messages
Multicast error messages that are associated with a particular multicast VPN customer in an MPLS VPN environment can be tracked.
VRRP MIB—RFC 2787
For detailed information about this feature, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123newft/123t/123t_11/gtvrrpmb.htm
Warm Upgrade
For detailed information about this feature, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123newft/123t/123t_11/gtwarmup.htm
New Hardware Features Supported in Cisco IOS Release 12.3(8)T4
This section describes new and changed features in Cisco IOS Release 12.3(8)T4. Some features may be new to Cisco IOS Release 12.3T but were released in earlier Cisco IOS software releases. Some features may have been released in earlier Cisco IOS software releases and have been changed in Cisco IOS Release 12.3(8)T4. To determine if a feature is new or changed, refer to the feature history table at the beginning of the feature module for that feature. Links to feature modules are included below. If a feature listed below does not have a link to a feature module, that feature is documented only in the release notes, and information about whether the feature is new or changed will be available in the feature description provided below.
Cisco 1800 Series Routers (Modular)
Cisco IOS Release 12.3(8)T4 introduces and supports the Cisco 1800 series routers (modular). The Cisco 1800 series routers (modular) include the Cisco 1841 in this release. The Cisco 1841 router is a data-only router with two HWIC/WIC/VWIC slots, capable of supporting single-wide HWICs, and one advanced integration module (AIM) slot. It can be placed on a desktop or wall-mounted. The Cisco 1841 does not provide inline power support.
For detailed information about these new routers, see the "Cisco 1800 Series Routers (Modular)" section on page 32.
Cisco 2800 Series Routers
Cisco IOS Release 12.3(8)T4 introduces and supports the Cisco 2800 series integrated services routers. The Cisco 2800 series integrated services routers include the Cisco 2801, Cisco 2811, Cisco 2821, and Cisco 2851 routers.
For detailed information about these new routers, see the "Cisco 2800 Series Routers" section on page 47.
Cisco Gigabit Ethernet High-Speed WAN Interface Cards (HWIC-1GE-SFP)
The Cisco Gigabit Ethernet high-speed WAN interface card (HWIC-1GE-SFP) is a high-speed interface card providing copper and optical Gigabit Ethernet connectivity for Cisco modular access routers.
High-Density Analog (FXS/DID/FXO) and Digital (BRI) Extension Module for Voice/Fax (EVM-HD)
For detailed information about this feature, refer to the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123newft/123t/123t_8/hdadv_vm.htm
HWIC-4ESW
The HWIC-4ESW is a 4-port 10/100 Ethernet switch that is capable of providing inline power to IP phones and access points on all 4 ports when used in conjunction with the ILPM-4 daughter card.
HWIC-9ESW
The HWIC-9ESW is a 9-port 10/100 Ethernet switch that is capable of providing inline power to IP phones and access points on 8 ports (not 9) when used in conjunction with the ILPM-8 daughter card. The HWIC-D-9ESW is in a doublewide form factor and is usable only in those routers that can provide doublewide interface card slots: the Cisco 2800 series and Cisco 3800 series, so far.
ILPM-4 and ILPM-8
The ILPM-4 and ILPM-8 are optional daughter cards to be used in conjunction with the HWICs to provide inline power on those ports that can carry power. These daughter cards require that the router have installed in it an optional -48 volt power supply. The daughter cards use this supply to provide inline power. The ILPM-4 is used only with the HWIC-4ESW, and the ILPM-8 is used only with the HWIC-D-9ESW.
New Hardware Features Supported in Cisco IOS Release 12.3(8)T
This section describes new and changed features in Cisco IOS Release 12.3(8)T. Some features may be new to Cisco IOS Release 12.3T but were released in earlier Cisco IOS software releases. Some features may have been released in earlier Cisco IOS software releases and have been changed in Cisco IOS Release 12.3(8)T. To determine if a feature is new or changed, see the feature history table at the beginning of the feature module for that feature. Links to feature modules are included below. If a feature listed below does not have a link to a feature module, that feature is documented only in the release notes, and information about whether the feature is new or changed will be available in the feature description provided below.
WIC-4ESW (4-Port Ethernet Switch WIC)
The Cisco 4-port 10/100BASE-T Fast Ethernet Switch WAN Interface Card (WIC-4ESW) for Cisco 1700 series modular access routers is an intelligent managed switch, offering small businesses and enterprise small branch office customers the option to integrate LAN switching and routing into one platform. The advanced capabilities of the WIC, including VLAN support, Spanning Tree Protocol, and traffic prioritization, provide the flexibility for customers to deploy different network configurations.
For detailed information about this feature, see the following documents:
http://www.cisco.com/univercd/cc/td/doc/product/access/acs_mod/cis2600/hw_inst/wic_inst/wic_doc/
http://www.cisco.com/univercd/cc/td/doc/product/access/acs_mod/1700/1700cnts/1711swm.htm
New Software Features Supported in Cisco IOS Release 12.3(8)T
This section describes new and changed features in Cisco IOS Release 12.3(8)T. Some features may be new to Cisco IOS Release 12.3T but were released in earlier Cisco IOS software releases. Some features may have been released in earlier Cisco IOS software releases and have been changed in Cisco IOS Release 12.3(8)T. To determine if a feature is new or changed, see the feature history table at the beginning of the feature module for that feature. Links to feature modules are included below. If a feature listed below does not have a link to a feature module, that feature is documented only in the release notes, and information about whether the feature is new or changed will be available in the feature description provided below.
•BGP Cost Community Support for EIGRP MPLS VPN PE-CE with Backdoor Links
•Call Admission Control for IKE
•Call Application HTTP Client Cookie Support
•Certificate to ISAKMP Profile Mapping
•Cisco Enhanced Conferencing and Transcoding for Cisco Voice Gateway Routers
•Cisco General Packet Radio Service (GPRS) Gateway Support Node (GGSN)
•Cisco IOS Intrusion Prevention System
•Cisco IOS Resilient Configuration
•Class-Based Traffic Policing with CLP Tagging
•Conferencing and Transcoding for Voice Gateway Routers
•Crypto Access Check on Clear-Text Packets
•DHCP—Statically Configured Routes Using a DHCP Gateway
•Easy Secure Device Deployment AAA Integration
•EIGRP MPLS VPN PE-CE Site of Origin (SoO)
•EIGRP Support for Route Map Filtering
•Embedded Syslog Manager (ESM) for the Cisco 800 and Cisco 1700 Series Platforms
•MGCP Line Control Signaling Package
•Minimal Disruptive Restart of VIP Cards
•Mobile IP—Support for RFC 3519 NAT Traversal
•Monitoring Control Characters on Async Lines
•MPLS Enhancements to Interfaces MIB
•MPLS Label Distribution Protocol MIB Version 8 Upgrade
•NAT Support for H.323 Fragmented Control Messages
•NAT—Support for H.323 v3 and v4 in v2 Compatibility mode
•Network-based Application Recognition (NBAR)
•Protocol Translation Aggregation
•QoS: Classification, Policing, and Marking on LAC
•Reliable Static Routing Backup Using Object Tracking
•Service Assurance Agent (SAA) Multiple Operation Scheduling
•SIP Audible Message-Waiting Indicator for FXS Phones
•SIP: Cisco IOS Gateway HTTP Digest Authentication and Registration
•SIP: Cisco IOS Gateway Reason Header and Buffered Calling Name Completion
•Virtual Fragmentation Reassembly
•Voice Application Monitoring and Troubleshooting Enhancements
AAL1 CES on AIM-ATM
For detailed information about this feature, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123newft/123t/123t_8/gt_aal1.htm
AutoQoS—VoIP
The AutoQoS—VoIP feature allows you to automate the delivery of quality of service (QoS) on your network and provides a means for simplifying the implementation and provisioning of QoS for Voice over IP (VoIP) traffic.
see the following documents for additional information about this feature:
AutoSecure
For detailed information about this feature, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123newft/123_1/ftatosec.htm
BGP Cost Community Support for EIGRP MPLS VPN PE-CE with Backdoor Links
For detailed information about this feature, see the following document:
Call Admission Control for IKE
For detailed information about this feature, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123newft/123t/123t_8/gtcallik.htm
Call Application HTTP Client Cookie Support
For detailed information about this feature, see the "Configuring Basic Functionality for TCL IVR and VoiceXML Applications" chapter in the Cisco IOS TCL IVR and VoiceXML Application Guide.
Certificate to ISAKMP Profile Mapping
For detailed information about this feature, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123newft/123t/123t_8/gt_isakp.htm
Cisco Enhanced Conferencing and Transcoding for Cisco Voice Gateway Routers
For detailed information about this feature, see the "Configuring Conferencing and Transcoding for Voice Gateway Routers" chapter in the Cisco CallManager and Cisco IOS Interoperability Guide:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123cgcr/vvfax_c/callc_c/ccm_c/intcnf2.htm
Cisco General Packet Radio Service (GPRS) Gateway Support Node (GGSN)
For detailed information about this feature, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123newft/123t/123t_8/ggsn40/index.htm
Cisco IOS Intrusion Prevention System
For detailed information about this feature, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123newft/123t/123t_8/gt_fwids.htm
Cisco IOS Resilient Configuration
For detailed information about this feature, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123newft/123t/123t_8/gtrescfg.htm
CISCO-IP-LOCAL-MIB-Support
For detailed information about this feature, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123newft/123t/123t_8/gt_ipmib.htm
Class-Based Traffic Policing with CLP Tagging
When configured on the router, the Class-Based Traffic Policing with CLP Tagging feature polices the flow of cells in the forward (into the network) direction of a virtual connection. The traffic policing mechanism determines whether received cells comply with the negotiated traffic management values and tags the cell with a CLP bit value of 1. The purpose of this feature is to mark traffic that does not meet the traffic management values so that packets that exceed the set values can be dropped by the network if the network is congested.
CNS Frame Relay Zero Touch
For detailed information about this feature, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123newft/123t/123t_8/gt_zerot.htm
Conferencing and Transcoding for Voice Gateway Routers
This feature provides conferencing and transcoding capability in Cisco IOS gateways using packet voice data modules (PVDMs). This feature is delivered in Cisco IOS software and operates in conjunction with Cisco CallManager to provide enhanced multiservice support for Cisco routers in a Cisco CallManager network.
see the following documentation for more information about this feature:
•Conferencing and Transcoding for Voice Gateway Routers
•Cisco CallManager and Cisco IOS Interoperability
Configurable DHCP Client
For detailed information about this feature, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123newft/123t/123t_8/gtdhcpcf.htm
Crypto Access Check on Clear-Text Packets
For detailed information about this feature, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123newft/123t/123t_8/gt_crpks.htm
DHCP—Statically Configured Routes Using a DHCP Gateway
For detailed information about this feature, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123newft/123t/123t_8/gtddgtwy.htm
Easy Secure Device Deployment AAA Integration
For detailed information about this feature, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123newft/123t/123t_8/gtezsddi.htm
EIGRP MPLS VPN PE-CE Site of Origin (SoO)
For detailed information about this feature, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123newft/123t/123t_8/gtmvesoo.htm
EIGRP Support for Route Map Filtering
For detailed information about this feature, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123newft/123t/123t_8/gteigrpr.htm
Embedded Syslog Manager (ESM) for the Cisco 800 and Cisco 1700 Series Platforms
This release adds support for the Embedded Syslog Manager (ESM) in images for the Cisco 800 and Cisco 1700 series platforms.
The ESM provides enhanced system logging (syslog) message services for Cisco IOS software, including device-level syslog message filtering, and reliable delivery of syslog messages to the syslog message receiving server. The ESM includes a programmable framework that allows customization of messages and delivery options using Tcl scripts.
For detailed information about this feature, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123newft/123t/123t_2/gt_esm.htm
Enhanced Object Tracking
For detailed information about this feature, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios122/122newft/122t/122t15/fthsrptk.htmETSI Call Transfer
For detailed information about this feature, see the "Configuring Telephony Call-Redirect Features" chapter in the Cisco IOS TCL IVR and VoiceXML Application Guide.
IPSec and Quality of Service
For detailed information about this feature, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123newft/123t/123t_8/gtqosips.htm
Managed LAN Switch
The Managed LAN Switch feature enables the control of the four switch ports in Cisco 831, 836, and 837 routers. Each switch port is associated with a Fast Ethernet interface. The output of the command show controllers fastEthernet <1-4> displays the status of the selected switch port. The Managed LAN Switch feature allows setting and display of the following parameters for each of the switch ports:
•Speed
•Duplex
It also allows display of the link state of a switch port—that is, whether a device is connected to that port or not.
For detailed information about this feature, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123newft/123t/123t_2/mlans.htm
MGCP Fax Rate Control
To establish the maximum fax rate for Media Gateway Control Protocol (MGCP) T.38 sessions, use the mgcp fax rate command in global configuration mode. To reset MGCP endpoints to their default fax rate, use the no form of this command.
mgcp fax rate {2400 | 4800 | 7200 | 9600 | 12000 | 14400 | voice}
no mgcp fax rate
For detailed information about this feature, see the "Configuring T.38 Fax Relay" section in the Cisco Fax Services over IP Application Guide.
MGCP Line Control Signaling Package
The mgcp package-capability command has been modified. The lcs-package keyword has been added to the list of package selections.
The line control signaling (LCS) package supports the transport of line supervision signals in the media stream using RFC-2833 event packets in PacketCable GR303-switched IP systems. When the lcs-package keyword is used, the named telephony events (NTEs) associated with the LCS package are enabled automatically. The following telephone events are supported by devices that implement the LCS package:
•Ring (RFC-2833 event 144)
•On-hook (RFC-2833 event 149)
•Open signal interval (RFC-2833 event 159)
For detailed information about this feature, see the "Basic MGCP Configuration" chapter of the Cisco IOS MGCP and Related Protocols Configuration Guide.
Minimal Disruptive Restart of VIP Cards
For detailed information about this feature, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123newft/123t/123t_8/gtmdrvip.htm
Mobile IP—Support for RFC 3519 NAT Traversal
For detailed information about this feature, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123newft/123t/123t_8/gtnatmip.htm
Monitoring Control Characters on Async Lines
For detailed information about this feature, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123newft/123t/123t_8/gtasyncl.htm
MPLS-aware NetFlow
For detailed information about this feature, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123newft/123t/123t_8/gt_mnf.htm
MPLS Enhancements to Interfaces MIB
For detailed information about this feature, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123newft/123t/123t_8/ftifemib.htm
MPLS Label Distribution Protocol MIB Version 8 Upgrade
For detailed information about this feature, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123newft/123t/123t_8/ftldpv8.htm
NAT Support for H.323 Fragmented Control Messages
Control messages for most multimedia applications such as H.323 messages can arrive at a router as fragments. IP-level fragmentation is common and well understood, but some applications have control messages that can span across several IP datagrams, causing the control message of an application that uses TCP to arrive at a router running Network Address Translation (NAT) as multiple IP packets that are not fragmented.
Prior to the introduction of the NAT Support for H.323 Fragmented Control Messages feature, NAT required the entire control message to be present in a single IP packet. If NAT received a control message that was fragmented, the packet was dropped. This feature enables NAT to perform address translation against fragmented packets, and it provides support for H.323 packets that arrive in different TCP segments.
NAT—Support for H.323 v3 and v4 in v2 Compatibility mode
The NAT Support for H.323 v3 and v4 in v2 Compatibility Mode feature is an ITU-T specification for transmitting audio, video, and data across a packet network. Cisco Network Address Translation (NAT) routers are enabled to support messages coded in H.323 v3 and v4 when those messages contain fields compatible with H.323 v2. This feature was introduced in Cisco IOS Release 12.3(2)T. Release 12.3(8)T adds support for the Cisco 1710 Security Access Router, and the Cisco 1751 and 1760 Modular Access Routers. Additional support for H.323 capabilities introduced in v3 and v4, such as new message types or new fields that require address translation, is not added in this feature.
Network Admission Control
For detailed information about this feature, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123newft/123t/123t_8/gt_nac.htm
Network-based Application Recognition (NBAR)
For detailed information about this feature, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios122/122newft/122t/122t8/dtnbarad.htm
Optimized Edge Routing (OER)
For detailed information about this feature, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123newft/123t/123t_8/gt_oer1.htm
Protocol Translation Aggregation
For detailed information about this feature, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123newft/123t/123t_8/gt_ptagg.htm
QoS: Classification, Policing, and Marking on LAC
For detailed information about this feature, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123newft/123t/123t_8/gtqoslac.htm
Reliable Static Routing Backup Using Object Tracking
For detailed information about this feature, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123newft/123limit/123x/123xe/dbackupx.htm
Service Assurance Agent (SAA) Multiple Operation Scheduling
For detailed information about this feature, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123newft/123t/123t_8/gt_saams.htm
SIP Audible Message-Waiting Indicator for FXS Phones
For detailed information about this feature, see the "Configuring SIP MWI Support" chapter of the Cisco IOS SIP Configuration Guide.
SIP: Cisco IOS Gateway HTTP Digest Authentication and Registration
For detailed information about this feature, see the Cisco IOS SIP Configuration Guide.
SIP: Cisco IOS Gateway Reason Header and Buffered Calling Name Completion
For detailed information about this feature, see the Cisco IOS SIP Configuration Guide.
SSG Interface Redundancy
For detailed information about this feature, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/aggr/10000/10kfm/gtssgifr.htm
SSG MIB Extensions
The Service Selection Gateway MIB enables network administrators to use Simple Network Management Protocol (SNMP) to monitor and manage SSG. The SSG MIB contains objects that correspond to various SSG features and that allow the collection of statistics and management of certain SSG configurations.
In Cisco IOS Release 12.3(8)T, the SSG MIB has been enhanced to provide statistics and the ability to manage the configuration of the SSG Transparent Autologon feature. The SSG Transparent Autologon feature enables SSG to authenticate and authorize users based on IP packets received from users. SSG authorizes users based on the source IP address received on the downlink interface. The SSG MIB includes objects for reporting transparent autologon statistics such as the current number of transparent passthrough, suspect, waiting-for-authorization, and unidentified users. The MIB also includes read-write objects that allow certain SSG transparent autologon thresholds and values to be configured in the MIB in addition to configuration using the command-line interface.
For detailed definitions of the SSG MIB objects, see the CISCO-SSG-MIB. To locate and download MIBs, use Cisco MIB Locator found at the following URL:
Upgrade Secondary ROMmon CLI
For detailed information about this feature, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios120/120newft/120limit/120s/120s28/12s28fur.htm
Virtual Fragmentation Reassembly
For detailed information about this feature, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123newft/123t/123t_8/gt_vfrag.htm
Voice Application Monitoring and Troubleshooting Enhancements
For detailed information about this feature, see the "Monitoring and Troubleshooting Voice Applications" chapter in the Cisco IOS TCL IVR and VoiceXML Application Guide.
X.25 Version Configuration
For detailed information about this feature, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123newft/123t/123t_8/gtx25ver.htm
New Software Features Supported in Cisco IOS Release 12.3(7)T1
This section describes new and changed features in Cisco IOS Release 12.3(7)T1. Some features may be new to Cisco IOS Release 12.3T but were released in earlier Cisco IOS software releases. Some features may have been released in earlier Cisco IOS software releases and have been changed in Cisco IOS Release 12.3(7)T1. To determine if a feature is new or changed, see the feature history table at the beginning of the feature module for that feature. Links to feature modules are included below. If a feature listed below does not have a link to a feature module, that feature is documented only in the release notes, and information about whether the feature is new or changed will be available in the feature description provided below.
Easy VPN Client RSA Signature Support
The Easy VPN Client RSA Signature Support feature provides for the support of Rivest, Shamir, and Adelman (RSA) signatures on Easy VPN remote devices. The support is provided through RSA certificates that can be stored on or off the remote device.
New Hardware Features Supported in Cisco IOS Release 12.3(7)T
This section describes new and changed features in Cisco IOS Release 12.3(7)T. Some features may be new to Cisco IOS Release 12.3T but were released in earlier Cisco IOS software releases. Some features may have been released in earlier Cisco IOS software releases and have been changed in Cisco IOS Release 12.3(7)T. To determine if a feature is new or changed, see the feature history table at the beginning of the feature module for that feature. Links to feature modules are included below. If a feature listed below does not have a link to a feature module, that feature is documented only in the release notes, and information about whether the feature is new or changed will be available in the feature description provided below.
•ADSL over POTS WIC with Dying Gasp Support (WIC-1ADSL-DG)
•Circuit Emulation over IP (CEoIP)
•Cisco 1711 and Cisco 1712 Security Access Routers
•Cisco VG224 24-Port Analog Phone Gateway
•Data Compression AIM for the Cisco 2600 Series Routers
•IP Communications High-Density Digital Voice/Fax Network Module
•Network Analysis Module (NM-NAM)
•Single Port Multiline G.SHDSL WIC
ADSL over POTS WIC with Dying Gasp Support (WIC-1ADSL-DG)
The ADSL over POTS WIC with dying gasp support (part number WIC-1ADSL-DG) conforms to Cisco WICs/VICs and enables ADSL services to be deployed. The WIC supports the Annex A, G.992.1 technical specifications and complies with ANSI T1.413 Issue 2. It targets the business ADSL over POTS service worldwide. The dying gasp support on this ADSL over POTS WIC supports a dying gasp message that is sent by the customer premises equipment device (for example, a Cisco 1760 access router with an installed WIC-1ADSL-DG) to the digital subscriber line access multiplier (DSLAM) when a power outage occurs (that is the WIC-1ADSL-DG supports DSLAM notification on power loss).
AIM-CUE
The AIM-CUE Advanced Integrated Module provides support for Cisco Unity Express voice mail and auto attendant for either Cisco CallManager or CallManager Express IP Communications networks. The AIM-CUE is supported on the Cisco 2600XM, Cisco 2691 and Cisco 3700 Series voice gateway routers on an AIM form factor. For detailed information about this feature, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/access/acs_mod/cis2600/hw_inst/aim_inst/aims_ins.htm
Circuit Emulation over IP (CEoIP)
For detailed information about this feature, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123newft/123t/123t_7/bbfeamod.htm
Cisco 1711 and Cisco 1712 Security Access Routers
Cisco IOS Release 12.3(7)T provides support for the Cisco 1711 and Cisco 1712 Security Access routers. The Cisco 1711 and Cisco 1712 are fixed configuration routers that provide secure Internet connectivity and dial backup using the analog modem port (on the Cisco 1711) or the ISDN port (on the Cisco 1712) if your primary connection fails. These routers include an integrated 4-port 10/100-Mbps Ethernet switch in WIC slot 0, an onboard Fast Ethernet port external interface, and a Virtual Private Network (VPN) module in the router's internal slot. These ports enable you to configure a demilitarized zone (DMZ) using VLANs and Cisco IOS firewall features.
Cisco VG224 24-Port Analog Phone Gateway
Cisco VG224 is a 24-port analog phone gateway based on Cisco IOS software. The platform has 24-port FXS through an RJ-21 connector and two 10/100BaseT interfaces. Cisco VG224 is supported on CCM Release 3.2 or later. For detailed information about this feature, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/access/vg/vg224/index.htm
Data Compression AIM for the Cisco 2600 Series Routers
The AIM-COMPR2-V2 provides hardware compression for up to two full duplex E1 links. Supported are the industry standard Limpel Zif Stac (LZS) and Microsoft Point-to-Point Compression (MPPC) compression algorithms over Point-to-Point Protocol (PPP) or Frame Relay. High-level Data Link Control (HDLC) is not supported.
The new AIM-COMPR2-V2 card replaces AIM-COMPR2 compression AIM for the Cisco 2600XM Series routers.
IP Communications High-Density Digital Voice/Fax Network Module
For detailed information about this feature, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123newft/123t/123t_7/hdd_vfnm.htm
Network Analysis Module (NM-NAM)
For detailed information about this feature, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123newft/123limit/123x/123xd/nm_nam.htm
NM-8AM-V2, NM-16AM-V2
The NM-8AM-V2 and NM-16AM-V2 network modules (NMs) serve as integrated analog modem NMs for the modular access routers. These network modules terminate either eight or sixteen analog modem connections through POTS interfaces.
Hardware Specifications
Each network module consists of eight or sixteen analog modems.
PWLAN Access Routers
For detailed information about this feature, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123newft/123limit/123x/123xd/pwlanar.htm
Single Port Multiline G.SHDSL WIC
A single port multi line G.SHDSL WAN interface card (WIC), or WIC-1SHDSL-V2, provides Multirate Symmetrical High-Speed Digital Subscriber Line (G.SHDSL) feature support for Two-Wire Mode and Four-Wire Mode for SHDSL on the Cisco 2600XM series, Cisco 2691, Cisco 3600 series, and Cisco 3700 series modular access routers. The WIC-1SHDSL-V2 incorporates the latest firmware and the latest circuitry.
New Software Features Supported in Cisco IOS Release 12.3(7)T
This section describes new and changed features in Cisco IOS Release 12.3(7)T. Some features may be new to Cisco IOS Release 12.3T but were released in earlier Cisco IOS software releases. Some features may have been released in earlier Cisco IOS software releases and have been changed in Cisco IOS Release 12.3(7)T. To determine if a feature is new or changed, see the feature history table at the beginning of the feature module for that feature. Links to feature modules are included below. If a feature listed below does not have a link to a feature module, that feature is documented only in the release notes, and information about whether the feature is new or changed will be available in the feature description provided below.
•AAA Double Authentication Secured by Absolute Timeout
•ACL—Named ACL Support for Noncontiguous Ports on an Access Control Entry
•Analog Centralized Automatic Message Accounting (CAMA) E911 Trunk
•Attribute Screening for Access Requests
•BGP Support for TTL Security Check
•Call Routing Enhancements to the H.323 Gatekeeper and GKTMP (GK API)
•Cisco CallManager Express 3.1
•Cisco IOS IPv6 Configuration Library
•Cisco NM-8AM-V2 and NM-16AM-V2 Analog Modem Network Modules with V.92
•Cisco VG224 24-Port Analog Phone Gateway
•Class-Based Quality of Service (QoS) MIB (CBQoSMIB) Enhancements III
•CLNS Support for GRE Tunneling of IPv4 and IPv6 Packets
•Distributed Dial-on-Demand Routing
•Enhanced ITU-T G.168 Echo Cancellation
•ESMTP Support for Cisco IOS Firewall
•Extended ACL Support for IGMP to Support SSM in IPv4
•Interoperability Enhancements to the Cisco Multiservice IP-IP Gateway
•IPSec Dead Peer Detection Periodic Message Option
•IS-IS Caching of Redistributed Routes
•IS-IS Fast-Flooding of LSPs Using the fast flood Command
•Key Rollover for Certificate Renewal
•Lossless Compression R1, ATM Cell Switching, External BITS Clocking Source
•Mobile IP—Foreign Agent Local Routing to Mobile Networks
•Mobile IP—Generic Routing Encapsulation for Cisco Mobile Networks
•MPLS VPN VRF Selection Using Policy Based Routing
•Multicast Fast Switching Performance Improvement
•NAT Stateful Failover for Asymmetric Outside-to-Inside Support
•NAT Stateful Failover for Application Layer Gateway (ALG) Support
•New Features in Cisco CallManager
•OSPF Link State Database Overload Protection
•OSPF per-Interface Link-Local Signaling
•PKI: Query Multiple Servers During Certificate Revocation Check
•PPP/MLP MRRU Negotiation Configuration
•Protected Private Key Storage
•Query Mode Definition Per Trustpoint
•RADIUS NAS-IP-Address Configurability
•Rate Based Satellite Control Protocol
•Route Processor Redundancy Plus (RPR+)
•Secure Shell (SSH) Version 2 Client Support
•Signal ISDN B-Channel ID to Enable Application Control of Voice Gateway Trunks
•SSG Enhancements to SSG-SESM Interaction and Service Logon
•SSG Permanent TCP Redirection
•SSG TCP Redirect Access Control Lists
•Survivable Remote Site Telephony 3.1
•T.37 Fax Status Notification Enhancement in an MTA Environment
•TCP Explicit Congestion Notification
•Transparent Cisco IOS Firewall
•Troubleshooting Enhancements for Multilink PPP over ATM Link Fragmentation and Interleaving
•VPN Access Control Using 802.1x Authentication
AAA Double Authentication Secured by Absolute Timeout
For detailed information about this feature, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123newft/123t/123t_7/gt_dasat.htm
ACL—Named ACL Support for Noncontiguous Ports on an Access Control Entry
For detailed information about this feature, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123newft/123t/123t_7/gtaclace.htm
Analog Centralized Automatic Message Accounting (CAMA) E911 Trunk
The Cisco 1751 and Cisco 1760 routers now support analog centralized automatic message accounting (CAMA) trunks on the two- and four-port Foreign Exchange Office (FXO) cards. The VIC2-2FXO and VIC2-4FXO cards are now user configurable for CAMA mode operation on a port-by-port basis. For example, on the VIC2-2FXO card, Port 0 can be configured for CAMA, and Port 1 can be configured for FXO-M1 operation.
Usage of the CAMA feature offers the following benefits:
•Direct connection to the E911 network
•Meets current legislation requiring enterprises to connect directly to the E911 network
•Trunk capabilities to emergency services that are not currently supported on any Cisco product
•Configuration on H.323 Voice over IP (VoIP)
Attribute Screening for Access Requests
For detailed information about this feature, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123newft/123limit/123b/123b3/gt_asfar.htm
AutoQoS for the Enterprise
For detailed information about this feature, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123newft/123t/123t_7/ftautoq2.htm
AutoSecure
AutoSecure is an innovative Cisco IOS software CLI-based feature that provides "one touch" router lockdown. A single command instantly and easily transforms the security posture of routers by disabling nonessential operating system processes, enforcing secure access, and enabling secure forwarding features.
By using a single auto secure command line interface command, the AutoSecure feature allows a user to perform the following functions:
•Disable common IP services that can be exploited for network attacks
•Enable IP services and features that can aid in the defense of a network when under attack
The AutoSecure feature offers the following benefits:
•Simplified router security configuration
•Hardened router configuration
•Enhanced password security
For information on how to configure the AutoSecure feature on your Cisco router, see the following URL:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123newft/123_1/ftatosec.htm
BGP MIB Support Enhancements
For detailed information about this feature, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123newft/123t/gt_bmibe.htm
BGP Support for TTL Security Check
For detailed information about this feature, see the following document:
http://www.cisco.com/en/US/docs/ios/12_3t/12_3t7/feature/guide/gt_btsh.html
Call Routing Enhancements to the H.323 Gatekeeper and GKTMP (GK API)
These features improve routing flexibility in customer networks in which an external route server is used to select potential endpoints for call completion.
•Nonblocking GKTMP (GK API): Timing changes associated with recovery processing when socket errors occur.
•Separate DNIS for Alternate Endpoints: It is now possible to associate a unique DNIS with each alternate endpoint.
•Support for "z" Tag in RESPONSE xRQ: Enhances the responses that a route server can provide to the H.323 gatekeeper to allow greater flexibility for combinations of gateway endpoints and gatekeepers.
Cisco CallManager Express 3.1
For detailed information about this feature, see the following document:
http://www.cisco.com/en/US/docs/voice_ip_comm/cucme/admin/configuration/guide/cmeadm.html
Cisco IOS IPv6 Configuration Library
The following new features have been added to the Cisco IOS IPv6 Configuration Library:
Cisco IOS Firewall for IPv6
Cisco IOS Firewall for IPv6 enables you to implement Cisco IOS Firewall in both IPv4 and IPv6 networks. Cisco IOS Firewall for IPv6 includes the following features:
•Supports fragmented packet inspection. The fragment header is used to trigger fragment processing. Cisco IOS Firewall virtual fragment reassembly (VFR) examines out of sequence fragments and switch the packets in order; examines the number of fragments from a single IP given a unique identifier (Denial of Service (DoS) attack); and performs virtual reassembly to hand off packets to upper layer protocols
•IPv6 DoS attack mitigation mechanisms have been implemented in the same fashion as for the current IPv4 implementation, including SYN half open connections.
•Tunnelled IPv6 packets destined for an IPv4 host are inspected by Cisco IOS Firewall.
•ICMPv6 inspects ICMP echo request/reply packets
•Stateful packet inspection of TCP, UDP, ICMP sessions
•Coexists in IPv4 and IPv6 environments
•Stateful inspection of packets originating from the IPv4 network and terminating in an IPv6 environment by providing IPv4 to IPv6 translation services
•Interpretation or recognition of most IPv6 Extension Header information, including routing header, hop-by-hop Options header, and fragment header
•Supported on all dual IP stack routers
Because Cisco IOS software supports dual IPv4 and IPv6 protocol stacks on the router, Cisco IOS Firewall for IPv6 can also inspect both simultaneously.
For detailed information about this feature, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123cgcr/ipv6_c/v6_tffw.htm
IP over IPv6 Tunnels
This feature provides support for Generic Route Encapsulation (GRE) tunnels over an IPv6 network layer. Also included is direct encapsulation of IPv6-inIPv6 tunnels and IPv6-in-IPv6 tunnels.
For detailed information about this feature, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123cgcr/ipv6_c/sa_tunv6.htm
IPv6 Bidirectional PIM
IPv6 bidirectional PIM allows multicast routers to keep reduced state information, as compared with unidirectional shared trees in PIM-SM. Bidirectional shared trees convey data from sources to the RP and distribute them from the RP to the receivers. This feature appears in the Implementing IPv6 Multicast document in the Cisco IOS IPv6 Configuration Library:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123cgcr/ipv6_c/sa_mcast.htm
IPv6 Multicast: Explicit Tracking of Receivers:
The explicit tracking feature allows a router to track the behavior of the hosts within its IPv6 network. This feature also enables the fast leave mechanism to be used with MLD version 2 host reports. This feature appears in the Implementing IPv6 Multicast document in the Cisco IOS IPv6 Configuration Library:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123cgcr/ipv6_c/sa_mcast.htm
IPv6 Policy-Based Routing
Policy-based routing (PBR) for both IPv6 and IPv4 in Cisco IOS software allows a user to manually configure how received packets should be routed. PBR allows the user to identify packets using several attributes and to specify the next hop or output interface to which the packet should be sent. PBR also provides a basic packet-marking capability. This feature appears in the Implementing Policy-Based Routing for IPv6 document in the Cisco IOS IPv6 Configuration Library:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123cgcr/ipv6_c/sa_pbrv6.htm
Netflow for IPv6
Netflow for Ipv6 enhances Ipv6 services, especially for Service Providers who launch an Ipv6 service and require statistics to control the Ipv6 traffic in their networks.
For detailed information about this feature, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123cgcr/ipv6_c/
Cisco NM-8AM-V2 and NM-16AM-V2 Analog Modem Network Modules with V.92
For detailed information about this feature, see the following documents:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123newft/123t/123t_7/gtnmam.htm
Cisco VG224 24-Port Analog Phone Gateway
Cisco VG224 is a 24-port analog phone gateway based on Cisco IOS software. Cisco VG224 enables a hybrid of using VoIP Technology (AVVID based architectures with Cisco Call Manager as call control) with TDM analog endpoints (analog phones, fax machines, analog modems). Cisco VG224 is supported on CCM Release 3.2 or later.
For detailed information about this feature, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/access/vg/vg224/index.htm
Class-Based Quality of Service (QoS) MIB (CBQoSMIB) Enhancements III
Several MIB objects and tables have been added to the CBQoSMIB to reflect the enhanced functionality of the modular QoS CLI (MQC). These MIB objects and tables provide enhanced traffic policing, shaping, and marking functionality.
The following MIB objects and tables were added to the CBQoSMIB:
•Two time-based MIB objects, burst ms and excess burst ms, used when you are configuring traffic policing.
These parameters were added to allow you to specify the appropriate burst values to be used for policing traffic. However, these two parameters can be used when you are configuring traffic policing on the basis of a percentage of bandwidth only.
For more information about configuring traffic policing on the basis of a percentage of bandwidth, see the Percentage-Based Policing and Shaping feature at the following URL:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios122/122newft/122t/122t13/ftpctpol.htm
•Two time-based MIB objects, sustained burst size in milliseconds (ms) and excess burst size in ms, used when you are configuring traffic shaping.
These parameters were added to allow you to specify the appropriate burst values to be used for shaping traffic. However, these parameters can be used when you are configuring traffic shaping (either average-rate traffic shaping or peak-rate traffic shaping) on the basis of a percentage of bandwidth only.
Note The sustained burst size in ms and excess burst size in ms objects are not currently supported on the Cisco 7500 series router. Therefore, on the Cisco 7500 series router, the counters for these two MIB objects will display zeros.
For more information about configuring traffic shaping on the basis of a percentage of bandwidth, see the Percentage-Based Policing and Shaping feature at the following URL:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios122/122newft/122t/122t13/ftpctpol.htm
•One table used to count statistical data associated with the various set commands available in the Cisco IOS software.
For more information about the Cisco IOS set commands, see the Cisco command reference publications for the Cisco IOS release that you are using.
•Three tables used to support the Enhanced Packet Marking feature available with Cisco IOS Release 12.2(13)T.
For more information about the Enhanced Packet Marking feature, see the following URL:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios122/122newft/122t/122t13/ftenpkmk.htm
For more information about the CBQoSMIB, the MIB objects and tables listed above, and to locate and download MIBs for selected platforms, Cisco IOS releases, and feature sets, use Cisco MIB Locator found at the following URL:
http://tools.cisco.com/ITDIT/MIBS/servlet/index
CLNS Support for GRE Tunneling of IPv4 and IPv6 Packets
GRE tunnelling of IPv4 and IPv6 packets through CLNS networks enables Cisco tunnels to interoperate with networking equipment from other vendors. This feature provides compliance with RFC3147.
For detailed information about this feature, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123cgcr/ipv6_c/sa_tunv6.htm
Control Plane Policing
For detailed information about this feature, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios122s/122snwft/release/122s18/gtrtlimt.htm
Distributed Dial-on-Demand Routing
In previous Cisco IOS software releases, distributed Cisco Express Forwarding (dCEF) is not supported for dialer interfaces on the Cisco 7500 series router. The Distributed Dial-on-Demand Routing (DDR) feature introduces the ability for the Cisco 7500 series router to perform dCEF switching on dialer interfaces. dCEF switching increases the performance of the router by moving processing from the Route Processor (RP) to the line card (LC).
The Distributed DDR feature can be used with all current dialer configurations—dialer profile interfaces, legacy dialer interfaces, and Multilink PPP on dialer interfaces. All pool members of the dialer interface must share the same Versatile Interface Processor (VIP) and the same type of port adaptor (PA). Quality of service (QoS) is not currently supported for the Distributed DDR feature. A VIP2-50 or higher is recommended for running the Distributed DDR feature.
No configuration commands are required to enable the Distributed DDR feature; however dCEF must be enabled. If dCEF is not enabled, processing will occur on the RP as it would in previous releases of Cisco IOS software that lack the Distributed DDR feature. The Distributed DDR feature can be disabled by globally disabling dCEF or by configuring the no ip route-cache distributed command on the dialer interface or D-channel interface.
Easy VPN Server
For detailed information about this feature, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios122/122newft/122t/122t8/ftunity.htm
Enhanced ITU-T G.168 Echo Cancellation
For detailed information about this feature, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123cgcr/vvfax_c/int_c/vclport.htm
ESMTP Support for Cisco IOS Firewall
For detailed information about this feature, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123newft/123t/123t_7/gt_esmtp.htm
Extended ACL Support for IGMP to Support SSM in IPv4
For detailed information about this feature, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123newft/123t/123t_7/gtmcxacl.htm
Four-Wire Mode for SHDSL
The Four-Wire Mode for SHDSL feature adds four-wire support in fixed line-rate mode only on a single port multiline G.SHDSL WIC, or WIC-1SHDSL-V2. This feature builds on the existing features of the Multirate Symmetrical High-Speed Digital Subscriber Line (G.SHDSL) feature supported on the 1-port G.SHDSL WIC (WIC-1SHDSL). Four-Wire Mode for SHDSL supports Cisco 2600XM series, Cisco 2691, Cisco 3600, and Cisco 3700 series routers and incorporates the latest firmware and the latest circuitry. The four-wire feature of G.991.2 doubles the bandwidth in ATM mode and increases usable distance over two pairs of wires.
This feature supports ATM in four-wire mode. Embedded Operation Channel (EOC) messages support for customer premise equipment (CPE) is provided for two-wire and four-wire modes.
IEEE 802.1Q Tunneling
For detailed information about this feature, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123newft/123t/123t_7/gt_qinq.htm
Interoperability Enhancements to the Cisco Multiservice IP-IP Gateway
For detailed information about this feature, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios122/122newft/122t/122t13/ipipgw/
IP Source Tracker
For detailed information about this feature, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios120/120newft/120limit/120s/120s21/ipst.htm
IPSec Dead Peer Detection Periodic Message Option
For detailed information about this feature, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123newft/123t/123t_7/gtdpmo.htm
IS-IS Caching of Redistributed Routes
For detailed information about this feature, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios120/120newft/120limit/120s/120s27/isredrib.htm
IS-IS Fast-Flooding of LSPs Using the fast flood Command
For detailed information about this feature, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios120/120newft/120limit/120s/120s27/fstfld.htm
Key Rollover for Certificate Renewal
For detailed information about this feature, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123newft/123t/123t_7/gtkyroll.htm
Lossless Compression R1, ATM Cell Switching, External BITS Clocking Source
For detailed information about this feature, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123newft/123t/123t_7/gt_llcc.htm
Mobile IP—Foreign Agent Local Routing to Mobile Networks
For detailed information about this feature, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123newft/123t/123t_7/gtfamoip.htm
Mobile IP—Generic Routing Encapsulation for Cisco Mobile Networks
For detailed information about this feature, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123newft/123t/123t_7/gtgremip.htm
Modem Calls over QSIG
Some Cisco customers require that their routers connect to their PBXs and be capable of making modem calls with Q signaling (QSIG). This capability would allow them to continue using their internal private telecommunications network and to migrate from leased lines to Voice over IP (VoIP) topologies. The ISDN software in Cisco IOS Release 12.3(7)T supports modem calls with QSIG signaling. QSIG is one form of the common channel signaling (CCS) protocol used for PBX interconnection and is based on International Telecommunication Union ITU-T Recommendation Q.931.
MPLS VPN VRF Selection Using Policy Based Routing
For detailed information about this feature, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123newft/123t/gt_pbrsv.fm
Multicast Fast Switching Performance Improvement
The Multicast Fast Switching Performance Improvement feature provides improvement of up to 100 percent of the existing multicast path packet throughput. This feature targets software forwarding-based platforms for IPv4 multicast only.
NAT RTSP Support Using NBAR
For detailed information about this feature, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123newft/123t/123t_7/gt_pbrsv.htm
NAT Stateful Failover for Asymmetric Outside-to-Inside Support
For detailed information about this feature, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123newft/123t/123t_7/gtsnatay.htm
NAT Stateful Failover for Application Layer Gateway (ALG) Support
For detailed information about this feature, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123newft/123t/123t_7/gtsnatay.htm
NAT—Static IP
For detailed information about this feature, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123newft/123limit/123x/123xe/gt_ntsip.htm
NetFlow MIB
This release adds MIB support to NetFlow. NetFlow cache information, current NetFlow configuration, and statistics can now be monitored using the Simple Network Management Protocol (SNMP).
For more information about CISCO-NETFLOW-MIB, the MIB objects for the functionality described above, and to locate and download MIBs for selected platforms, Cisco IOS releases, and feature sets, use Cisco MIB Locator found at the following URL:
http://tools.cisco.com/ITDIT/MIBS/servlet/index
New Features in Cisco CallManager
For detailed information about this feature, see the following document:
http://www.cisco.com/en/US/docs/voice_ip_comm/cucme/admin/configuration/guide/cmeover.html
OSPF Area Transit Capability
For detailed information about this feature, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios120/120newft/120limit/120s/120s27/ospfatc.htm
OSPF Link State Database Overload Protection
For detailed information about this feature, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios120/120newft/120limit/120s/120s27/ospfopro.htm
OSPF per-Interface Link-Local Signaling
For detailed information about this feature, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios120/120newft/120limit/120s/120s27/ospflls.htm
Per VRF for TACACS+ Servers
For detailed information about this feature, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123newft/123t/123t_7/gt_pvt.htm
PKI: Query Multiple Servers During Certificate Revocation Check
For detailed information about this feature, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123newft/123t/123t_7/gtcertrc.htm
PPP/MLP MRRU Negotiation Configuration
For detailed information about this feature, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123newft/123t/123t_7/gtmpmrru.htm
Protected Private Key Storage
For detailed information about this feature, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123newft/123t/123t_7/gt_ppkey.htm
Query Mode Definition Per Trustpoint
Certificates and certificate revocation lists (CRLs) are used by your router when a CA is used. Normally certain certificates and all CRLs are stored locally in the router's NVRAM, and each certificate and CRL uses a moderate amount of memory. The Query Mode Definition Per Trustpoint allow you to define a query for a specific trustpoint or for the trustpoints defined on a particular router.
For detailed information about this feature, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123newft/123t/123t_7/gt_qerym.htm#1027129
RADIUS Attribute 104
For detailed information about this feature, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123newft/123t/123t_7/gt_ra104.htm
RADIUS NAS-IP-Address Configurability
For detailed information about this feature, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123newft/123limit/123b/123b3/gt_siara.htm
Rate Based Satellite Control Protocol
For detailed information about this feature, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123newft/123t/123t_7/gt_rbscp.htm
Role-Based CLI Access
For detailed information about this feature, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123newft/123t/123t_7/gtclivws.htm
Route Processor Redundancy Plus (RPR+)
For detailed information about this feature, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123newft/123t/123t_7/gt_rpr2.htm
SEAL Encryption
For detailed information about this feature, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123newft/123t/123t_7/gt_se.htm
Secure Shell (SSH) Version 2 Client Support
For detailed information about this feature, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123newft/123t/123t_4/gt_ssh2.htm
Signal ISDN B-Channel ID to Enable Application Control of Voice Gateway Trunks
This feature enables call management applications to identify specific ISDN bearer (B) channels used during a voice gateway call for billing purposes. With the identification of the B channel, SIP and H.323 gateways can enable port-specific features such as voice recording and call transfer.
For detailed information about this feature, see the following documents:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123cgcr/vvfax_c/callc_c/sip_c/sipc1_c/chapter8.htm#1021335
SSG Default DNS Redirection
For detailed information about this feature, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123newft/123limit/123b/123b3/gbdefdns.htm
SSG Enhancements to SSG-SESM Interaction and Service Logon
For detailed information about this feature, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123newft/123limit/1231abw/ssgenhn.htm
SSG Permanent TCP Redirection
For detailed information about this feature, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123newft/123limit/123b/123b3/gttcpred.htm
SSG TCP Redirect Access Control Lists
For detailed information about this feature, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123newft/123limit/1231abw/tcprdrct.htm
SSG Transparent Autologon
For detailed information about this feature, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123newft/123limit/1231abw/autologn.htm
Survivable Remote Site Telephony 3.1
For detailed information about this feature, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/access/ip_ph/srs/srst31/index.htm
T.37 Fax Status Notification Enhancement in an MTA Environment
For detailed information about this feature, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios122/122newft/122t/122t11/faxapp/t37.htm
TCP Congestion Avoidance
For detailed information about this feature, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123newft/123t/123t_7/gttcpca.htm
TCP Explicit Congestion Notification
For detailed information about this feature, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123newft/123t/123t_7/gttcpecn.htm
Transparent Cisco IOS Firewall
For detailed information about this feature, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123newft/123t/123t_7/gt_trans.htm
Troubleshooting Enhancements for Multilink PPP over ATM Link Fragmentation and Interleaving
For detailed information about this feature, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123newft/123t/123t_7/gttrbmlp.htm
Two-Wire Mode over SHDSL
The Two-Wire Mode over SHDSL feature adds ATM, E1 and T1 support on a single port multiline G.SHDSL WIC, or WIC-1SHDSL-V2, to build on the existing features of the Multirate Symmetrical High-Speed Digital Subscriber Line (G.SHDSL) feature supported on the 1-port G.SHDSL WAN interface card. Frame Mode TDM over G.SHDSL supports Cisco 2600XM series, Cisco 2691, and Cisco 3700 series routers and incorporates the latest firmware and the latest circuitry.
Two-Wire Mode over SHDSL supports ATM, E1 and T1 in two-wire mode. Embedded Operations Channel (EOC) message support for customer premise equipment (CPE) is provided for two-wire and four-wire modes. Some central office (CO) messages are also supported.
VoiceXML Store and Forward
Voice extensible markup language (VXML) capability has been added to the Cisco 2691 router and Cisco 37xx series routers.
VPN Access Control Using 802.1x Authentication
The 802.1xauthentication feature is an Institute of Electrical and Electronics Engineers (IEEE) standards-based authentication technology. This feature enhances the Cisco IOS technology by supporting 802.1x authentication. It allows classification of authenticated and non-authenticated categories, based on the credentials provided by the 802.1x port-based authentication specification. This feature also allows separate processing of traffic coming from authenticated users and non-authenticated users.
In Cisco IOS Release 12.3(2)XA, the 802.1x user authentication will be used in conjunction with Easy VPN Server and Easy VPN Remote (also called Easy VPN Client [EZVPN Client]).
For details on Cisco Easy VPN, see the following URLs:
http://www.cisco.com/en/US/products/sw/secursw/ps5299/index.html
VRF Aware Dialer Watch
For detailed information about this feature, see the following:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123newft/123t/123t_7/gtdwvrfa.htm
New Hardware Features Supported in Cisco IOS Release 12.3(4)T
This section describes new and changed features in Cisco IOS Release 12.3(4)T. Some features may be new to Cisco IOS Release 12.3T but were released in earlier Cisco IOS software releases. Some features may have been released in earlier Cisco IOS software releases and have been changed in Cisco IOS Release 12.3(4)T. To determine if a feature is new or changed, see the feature history table at the beginning of the feature module for that feature. Links to feature modules are included below. If a feature listed below does not have a link to a feature module, that feature is documented only in the release notes, and information about whether the feature is new or changed will be available in the feature description provided below.
•1-Port ADSL WAN Interface Card
•Cisco IAD2430 Series IOS Reduced IP subset/Voice
•Cisco Intrusion Detection System (IDS) Network Module (NM-CIDS-K9)
•Cisco SOHO 90 Series and Cisco 830 Series Routers
•IP Communications Voice/Fax Network Module
1-Port ADSL WAN Interface Card
For detailed information about this feature, see the following:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios122/122newft/122limit/122z/122zj15/adslwan.htm
16- and 36-Port Ethernet Switch Module for Cisco 2600 Series, Cisco 3600 Series, and Cisco 3700 Series (NM-16ESW)
For detailed information about this feature, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123newft/123t/123t_4/gt1636nm.htm
ADSL Broadband Router
The Cisco 1701 router (part number CISCO1701-K9) is an ADSL security access router. It is a fixed configuration dual-port router, designed in a desktop form factor, that provides primary WAN access through ADSL (ADSL over plain old telephone service [POTS]) and a backup link through ISDN (BRI-S/T). It also provides standard Cisco IOS security capabilities through support for IPSec Virtual Private Network (VPN), stateful inspection firewall, and intrusion detection system.
The Cisco 1701 ADSL security router is ideal for providing secure/reliable Internet and corporate network connectivity to enterprise small branch offices and small- and medium-sized businesses. It offers business-class ADSL over POTS service with a redundant ISDN WAN link to ensure high availability of critical business applications. The Cisco 1701 router also supports a wide range of integrated security services, as well as advanced quality of service (QoS) features to prioritize mission-critical data traffic.
Cisco IAD2430 Series IOS Reduced IP subset/Voice
The Cisco IAD2430 is the next generation integrated voice and data services platform for Service Providers, building on the industry leading Cisco IAD2420 series IAD. The Cisco IAD2430 series offers a major leap forward in price performance and enhanced SW functionality such as MGCP SRST used to accelerate the migration from TDM to VoIP cost efficiently. The Cisco IAD2430 series harnesses the maturity of the Cisco IAD2420 series software and enhances functionality by providing more capabilities such as denser interfaces (up to 24 FXS or up to 2 voice and 2 data T1s), encryption, and DC power back up while maintaining its 1RU form factor for space saving Service Provider Managed Services deployment.
Cisco Intrusion Detection System (IDS) Network Module (NM-CIDS-K9)
The Cisco Intrusion Detection System (IDS) Network Module is installed in anyone of the network module slots on the Cisco 2600XM, Cisco 3600, and Cisco 3700 series routers to provide full-featured intrusion-protection services within the router. The Cisco IDS network module provides the ability to:
•inspect all traffic traversing the router.
•identify malicious activity.
•terminate illegitimate traffic.
•integrate the Cisco IDS functionality into the branch office router.
•implement full-featured Cisco IDS at your remote branch offices.
•install the Cisco IDS network module in any one of the network module slots on the Cisco 2600XM, Cisco 3600, and Cisco 3700 series routers.
Note The IDS network module is not supported on the Cisco 3620, Cisco 3631, Cisco 3640, and Cisco 3640A modular access routers.
The Cisco IDS network module provides up to 45 Mbps of intrusion detection capability. Only one Cisco IDS network module is supported per router and is not hot-swappable. The network module runs the latest version of the Cisco IDS software, version 4.1.
You can manage and retrieve events from the Cisco IDS network module through Cisco IOS CLI or through one of these Cisco IDS managers—IDS Device Manager or Management Center for IDS Sensors.
The Cisco IDS network module supports the following interfaces:
•One internal 10/100 Ethernet port—connects to the router's backplane
•One external 10/ 100-based Ethernet port—used for device management (management of other routers and/or PIX Firewalls to perform shunning) and command and control of the Cisco IDS network module by the Cisco IDS manager.
For instructions on accessing the Cisco IDS documentation on Cisco.com, see the Cisco Intrusion Detection System (IDS) Hardware and Software Version 4.1 Documentation Guide that shipped with your IDS router module. It is at the following URL:
http://www.cisco.com/univercd/cc/td/doc/product/iaabu/csids/csids10/15593_01.htm
For basic installation information, see "Connecting Cisco Intrusion Detection System Network Modules," in Cisco Network Modules Hardware Installation Guide, at the following URL:
http://www.cisco.com/univercd/cc/td/doc/product/access/acs_mod/cis2600/hw_inst/nm_inst/nm-doc/index.htm
Cisco SOHO 90 Series and Cisco 830 Series Routers
The Cisco 831, 837, SOHO 91, and SOHO 97 have the following additional features over existing broadband routers:
•A 4-port Ethernet switch.
•Hardware encryption coprocessor.
•Virtual Aux port that uses the same physical port as the console port.
•A newer MPC857DSL processor.
IP Communications Voice/Fax Network Module
For detailed information about this feature, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios122/122newft/122limit/122z/122zj15/flex_dsp.htm
New Software Features Supported in Cisco IOS Release 12.3(4)T
This section describes new and changed features in Cisco IOS Release 12.3(4)T. Some features may be new to Cisco IOS Release 12.3T but were released in earlier Cisco IOS software releases. Some features may have been released in earlier Cisco IOS software releases and have been changed in Cisco IOS Release 12.3(4)T. To determine if a feature is new or changed, see the feature history table at the beginning of the feature module for that feature. Links to feature modules are included below. If a feature listed below does not have a link to a feature module, that feature is documented only in the release notes, and information about whether the feature is new or changed will be available in the feature description provided below.
•ACL IP Options Selective Drop
•ACL Support for Filtering IP Options
•ACL Support for TCP Flags Filtering
•Advanced Encryption Standard (AES)
•Any Transport over MPLS (AToM) SCR VC Mode for PA-A3-T1/E1-IMA
•BGP Configuration Using Peer Templates
•BGP Dynamic Update Peer-Groups
•BGP Policy Accounting Output Interface Accounting
•Blinking LEDs to Indicate DSL Line Training
•Calling Line Identification for Spain and Austria
•CEF Support for Dialer Profiles on Cisco 7500 Routers
•Cisco CallManager Express, V3.0
•Cisco Conferencing and Transcoding for Voice Gateway Routers
•Cisco Easy VPN Remote Enhancements
•Cisco IOS MGCP Gateway Support for Cisco CallManager Network Specific Facilities
•Cisco Multipath Channel (CMPC)
•Cisco Survivable Remote Site Telephony (SRST), V3.0
•Cisco Transaction Connection (CTRC)
•Cisco Unique Device Identifier
•Cisco VoIP Internal Error Codes
•Class-Based QoS MIB (CBQoSMIB) Enhancements
•Combined Packet Protocol (CPP)
•Configuration Change Notification and Logging
•Configuring SIP Header Passing
•Contextual Configuration Diff Utility
•CPU Thresholding Notification
•Custom Tone Download to Cisco IOS MGCP Gateways from Cisco CallManager
•Default Session Application Enhancements
•DHCP Address Allocation Using Option 82
•DHCP Release and Renew CLI in EXEC Mode
•Digital Private Network Signaling System (DPNSS) Backhaul
•Direct HTTP Enroll With CA Servers
•Distributed Multilink Frame Relay (FRF.16)
•Dynamic Multipoint VPN (DMVPN)
•Enhanced Debug Capabilities for Cisco Voice Gateways
•Enhanced ITU-T G.168 Echo Cancellation
•Enhanced Object Tracking of Service Assurance Agent (SAA) Operations
•Firewall Authentication Proxy for FTP and Telnet Sessions
•Firewall Intrusion Detection Signature (IDS) Enhancements
•Firewall Support of SSL Encrypted HTTP Authentication Proxy Sign-on
•Firewall Websense URL Filtering
•Framed-Route in RADIUS Accounting
•Hot Standby Router Protocol Version 2
•Import of RSA Keypair and Certificates in PEM Format
•Integrated IS-IS Global Default Metric
•Integrated IS-IS Protocol Shutdown Support Maintaining Configuration Parameters
•IS-IS Limit on Number of Redistributed Routes
•IS-IS Support for Priority-Driven IP Prefix RIB Installation
•L2TP Tunnel Connection Speed Labeling
•Media Inactive Call Detection
•Memory Threshold Notifications
•Mobile IP Dynamic Security Association and Key Distribution
•Mobile IP Home Agent Redundancy for Dynamic Mobile Networks
•Mobile IP MIB for Reverse Tunnel, Challenge, and VSEs
•Mobile Networks Dynamic Collocated Care-of-Address
•MSDP Compliance with IETF MSDP Draft 20
•NAT-Performance & Scalability Enhancement-Timer Wheel
•NAT-Performance Enhancement-CEF Switching Support
•OSPF MIB Support of RFC 1850 and Latest Extensions
•OSPF Support for Unlimited Software VRFs per Provider Edge (PE) Router
•PIM Dense Mode Fallback Prevention in a Network Following RP Information Loss
•PPPoE Session Limit Per NAS Port
•Pre-fragmentation For IPsec VPNs
•Private Line Automatic Ringdown for Trading Turrets
•Quality of Service for Virtual Private Networks
•Rate Limiting NAT Translation
•Real-time Resolution for IPSec Tunnel Peer
•Regex Engine Performance Enhancement
•RFC 2867—RADIUS Tunnel Accounting
•Secure Shell Version 2 Support
•Service Assurance Agency (SAA) VoIP UDP Operation
•Service Selection Gateway (SSG)
•Service Selection Gateway (SSG) Features in Release 12.3(4)T
•Session Initiation Protocol (SIP)
•SIP Debug Output Filtering Support
•SIP Gateway Support Enhancements to the bind Command
•SIP: SIP Header Support and Subscribe and Notify for External Triggers
•SSG AAA Transaction Enhancements
•SSG Open Garden Configuration Enhancements
•Token Ring LAN Emulation (TR-LANE)
•Tunnel Authentication via RADIUS on Tunnel Terminator
•Using Certificate ACLs to Ignore Revocation Check and Expired Certificates
•V.120 Support Network Access Server (NAS)
•Videoconferencing on the Cisco Multiservice IP-to-IP Gateway
•VLANs over IP Unnumbered Interfaces
•Voice Application Enhancements, Phase 4a
•Voice Call Debug Filtering on Cisco Voice Gateways
•Voice Performance Statistics on Cisco Gateways
•VPN Access Control Using 802.1X Authentication
•VRF and MQC Hierarchical Shaping in PXE
AAA IPv6 Attributes Support
For detailed information about this feature, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123newft/123t/123t_4/gt_aaaip.htm
ACL IP Options Selective Drop
For detailed information about this feature, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123newft/123t/index.htm
ACL Support for Filtering IP Options
For detailed information about this feature, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123newft/123t/123t_4/gtipofil.htm
ACL Support for TCP Flags Filtering
For detailed information about this feature, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123newft/123t/123t_4/gtaclflg.htm
Advanced Encryption Standard (AES)
The Advanced Encryption Standard (AES) feature adds support for the new encryption standard AES, with cipher block chaining (CBC) mode, to IP Security (IPSec). AES is a privacy transform for IPSec and Internet Key Exchange (IKE) that has been developed to replace the Data Encryption Standard (DES). AES is designed to be more secure than DES: AES offers a larger key size, while ensuring that the only known approach to decrypt a message is for an intruder to try every possible key. AES has a variable key length—the algorithm can specify a 128-bit key (the default), a 192-bit key, or a 256-bit key.
For more details on this feature, see the following URL:
http://www.cisco.com/en/US/docs/ios/12_2t/12_2t13/feature/guide/ft_aes.html
Any Transport over MPLS (AToM) SCR VC Mode for PA-A3-T1/E1-IMA
You can configure AToM ATM Single Cell Relay (VC mode) on the following port adapters: PA-A3-8T1IMA and PA-A3-8E1IMA.
BCP Support
For detailed information about this feature, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123newft/123t/123t_2/gt_bcp.htm
BGP Configuration Using Peer Templates
For detailed information about this feature, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123newft/123t/123t_4/gt_bgpct.htm
BGP Dynamic Update Peer-Groups
For detailed information about this feature, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123newft/123t/123t_4/gtbgpdpg.htm
BGP Policy Accounting Output Interface Accounting
For detailed information about this feature, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123newft/123t/123t_4/gtbgppax.htm
Blinking LEDs to Indicate DSL Line Training
ADSL LED Blinking feature provides information on the status of DSL line. ADSL Tx/Rx is used for this purpose. There are three distinct blinking patterns that indicate the various states of a DSL line when it is training.
1. When the firmware is being downloaded within the router, the LED remains ON for 700 ms and goes OFF for 300 ms.
2. When Modem state is MODEM_ACT_ACK (0x8), it means that the router is waiting to hear from the central office (CO) and is not yet seeing an incoming signal. During this, the LED will be ON and OFF for 50 ms each.
3. When modem state is MODEM_TRAINING (0x10), the LED will always be ON. This means that the DSL line is training.
Shortly after the DSL line has started training, the modem state changes to SHOWTIME, then the router is successfully trained with the DSLAM.
Note The CD LED on the front panel will be OFF during the DSL line training process. This distinguishes from the normal operation when packets are being transmitted or received.
Calling Line Identification for Spain and Austria
Caller ID (sometimes called CLID or ICLID for incoming call line identification) is an analog service offered by a central office (CO), which supplies calling party information to subscribers. Typically, the calling party number, and sometimes the name, appears on a station (also called extension) device such as a PC telephony software application screen or the display on a telephone. Type 1 Caller ID show the calling party information while the call is ringing, and Type 2 Caller ID shows calling number display while the recipient is on another call. Type 1 Caller ID is supported in this release.
The Caller ID feature supports the sending of calling party information from Foreign Exchange Station (FXS) loop-start and ground-start ports into a Caller-ID-equipped telephone device. The FXS port emulates the extension interface of a private-branch exchange (PBX) or the subscriber interface for a CO switch.
Spain and Austria both use the ETSI-FSK method for sending the caller number to the analog phone.
CEF Support for Dialer Profiles on Cisco 7500 Routers
For detailed information about this feature, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123newft/123t/123t_4/gtcefrsp.htm
Cisco CallManager Express, V3.0
For detailed information about this feature, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/access/ip_ph/ip_ks/its30/index.htm
Cisco Conferencing and Transcoding for Voice Gateway Routers
The Cisco Conferencing and Transcoding for Voice Gateway Routers feature enables voice conferencing to take place among conferees at small, remote branch offices or distributed sites using local resources, without calls having to traverse the company WAN to the central site that supports such services.
The feature also provides transcoding at the remote site. Different IP telephony devices support different codecs and, for communications to be enabled between them, transcoding is required. The feature provides transcoding at the remote site, without having to access transcoding services at the central site.
To provide these services, the feature takes advantage of unused DSP resources on a network module in an already existing small or midsize Cisco router at the remote site. The collection of DSP resources so made available is called a DSP farm. The DSP farm is managed by Cisco CallManager, the software-based call-processing component of the Cisco IP telephony solution, at a central office or branch office.
The Cisco Conferencing and Transcoding for Voice Gateway Routers feature was originally supported in Cisco IOS Release 12.2(13)T. This feature is now supported on the Catalyst 4000 Access Gateway Module (AGM). see the following document for additional information:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios122/122newft/122t/122t13/ftdsp.htm
Cisco Easy VPN Remote Enhancements
For detailed information about this feature, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123newft/123t/index.htm
Cisco IOS Certificate Server
For detailed information about this feature, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123newft/123t/123t_4/gt_ioscs.htm
Cisco IOS Login Enhancements
For detailed information about this feature, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123newft/123t/123t_4/gt_login.htm
Cisco IOS MGCP Gateway Support for Cisco CallManager Network Specific Facilities
For detailed information about this feature, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123newft/123t/index.htm
Cisco Multipath Channel (CMPC)
As of Cisco IOS Release 12.3(4)T, the Cisco Multipath Channel (CMPC) feature has been removed from Cisco IOS software.
Cisco Survivable Remote Site Telephony (SRST), V3.0
For detailed information about this feature, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/access/ip_ph/srs/srst30/index.htm
Cisco Transaction Connection (CTRC)
As of Cisco IOS Release 12.3(4)T, the Cisco Transaction Connection feature has been removed from Cisco IOS software.
Cisco Unique Device Identifier
For detailed information about this feature, see the following document:
/en/US/docs/ios/12_3t/12_3t4/feature/guide/gtpepudi.html
Cisco VoIP Internal Error Codes
For detailed information about this feature, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123cgcr/vvfax_c/voipt_c/index.htm
Class Based QoS MIB
The Class-Based Quality of Service Management Information Base (CBQoS MIB) provides access to quality of service (QoS) configuration information and statistics. The CBQoS MIB allows service providers to monitor their QoS offerings. This MIB gives QoS configuration done in the router such as ClassMap, PolicyMap, Match Statements and Feature Actions configuration parameters. The MIB also contains counter objects which gives statistics information such as the number of packets traversed conforming to a policing feature. The MIB uses several indexes to identify QoS features and to distinguish among instances of those features. The MIB provides information about marking and policing done using IP precedence and Differentiated Services Code Point (DSCP).
Class-Based QoS MIB (CBQoSMIB) Enhancements
Enhancements were made to the CBQoSMIB to support several new Cisco IOS features that have been added to the Modular QoS CLI (MQC). These new Cisco IOS features (listed below) provide enhanced traffic policing, marking, and queueing functionality.
•MPLS-DiffServ Tunneling, Cisco IOS Release 12.2(13)T
This feature allows you to base Weighted Random Early Detection (WRED) on the discard class value of a packet. This feature also includes the ability to mark and set the Multiple Protocol Label Switching (MPLS) experimental (EXP) value for the TopMost Label when policing and classifying traffic.
•Percentage-Based Policing and Shaping, Cisco IOS Release 12.2(13)T
This feature provides the ability to configure traffic policing and traffic shaping on the basis of a percentage of bandwidth available on the interface.
•Class-Based RTP and TCP Header Compression, Cisco IOS Release 12.2(13)T
This feature allows you to configure Real-Time Transport Protocol (RTP) or TCP IP header compression on a per-class basis, when a class is configured within a policy map.
For more information about the features listed above, see the Cisco IOS 12.2 T New Features index:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios122/122newft/122t/index.htm
For more information about the CBQoSMIB, the MIB objects for the features listed above, and to locate and download MIBs for selected platforms, Cisco IOS releases, and feature sets, use Cisco MIB Locator found at the following URL:
http://tools.cisco.com/ITDIT/MIBS/servlet/index
Combined Packet Protocol (CPP)
As of Cisco IOS Release 12.3(4)T, the Combined Packet Protocol (CPP) feature has been removed from Cisco IOS software.
Configuration Change Notification and Logging
For detailed information about this feature, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123newft/123t/123t_4/gtconlog.htm
Configuring SIP Header Passing
For detailed information about this feature, see the following document:
Contextual Configuration Diff Utility
For detailed information about this feature, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123newft/123t/123t_4/gt_diff.htm
Control Plane Policing
For detailed information about this feature, see the following document:
CPU Thresholding Notification
For detailed information about this feature, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123newft/123t/123t_4/gt_cput.htm
Custom Tone Download to Cisco IOS MGCP Gateways from Cisco CallManager
For detailed information about this feature, see the following document:
Default Session Application Enhancements
For detailed information about this feature, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123newft/123t/123t_4/gtsesapp.htm
DHCP Address Allocation Using Option 82
For detailed information about this feature, see the following document:
DHCP Authorized ARP
For detailed information about this feature, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123newft/123t/123t_4/gtautarp.htm
DHCP Release and Renew CLI in EXEC Mode
For detailed information about this feature, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123newft/123t/123t_4/gtdhcprr.htm
Digital Private Network Signaling System (DPNSS) Backhaul
For detailed information about this feature, see the following document:
Direct HTTP Enroll With CA Servers
For detailed information about this feature, see the following document:
Distributed Multilink Frame Relay (FRF.16)
For detailed information about this feature, see the following document:
Dynamic Multipoint VPN (DMVPN)
The Dynamic Multipoint VPN (DMVPN) feature allows users to better scale large and small IP Security (IPSec) Virtual Private Networks (VPNs) by combining generic routing encapsulation (GRE) tunnels, IPSec encryption, and Next Hop Resolution Protocol (NHRP).
Benefits of the DMVPN feature are as follows:
•Hub router configuration reduction
•Automatic IPSec encryption initiation
•Support for dynamically addressed spoke routers
•Dynamic tunnel creation for spoke-to-spoke tunnels
Easy VPN Server
For detailed information about this feature, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios122/122newft/122t/122t8/ftunity.htm
Embedded Event Manager 1.0
For detailed information about this feature, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123newft/123t/123t_4/gtioseem.htm
Enhanced Debug Capabilities for Cisco Voice Gateways
For detailed information about this feature, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123newft/123t/123t_4/gt17004t.htm
Enhanced ITU-T G.168 Echo Cancellation
For detailed information about this feature, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios122/122newft/122t/122t13/ftecho.htm
Enhanced Object Tracking of Service Assurance Agent (SAA) Operations
For detailed information about this feature, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123newft/123t/123t_4/gtfhrp.htm
Firewall ACL Bypass
For detailed information about this feature, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123newft/123t/123t_4/gt_aclby.htm
Firewall Authentication Proxy for FTP and Telnet Sessions
The authentication proxy in the Cisco IOS firewall feature set currently supports only HTTP protocol. Authentication Proxy support has been extended to FTP/Telnet protocols with this release. This release also introduces absolute timeout functionality to the authentication proxy feature. The absolute timeout sets a time window during which the authentication proxy on the enabled interface is active. As the absolute timer expires, the authentication proxy will be disabled. The addition of the absolute timeout upgrades the functionality of the authentication proxy and also meets the firewall requirements.
Firewall Intrusion Detection Signature (IDS) Enhancements
The Cisco IOS Intrusion Detection System (IDS) feature supports intrusion detection technology on all the Cisco IOS-based router platforms when the Cisco IOS firewall is present. The Cisco IOS IDS feature identifies 101 of the most common attacks, using signatures to detect patterns of misuse in network traffic. The Cisco IOS IDS acts as an in-line intrusion detection sensor, watching packets and sessions as they flow through the router, scanning each to match any of the IDS signatures. When the Cisco IOS IDS detects suspicious activity, it responds before network security can be compromised, and it logs the event through the Cisco IOS syslog or the Cisco Secure Intrusion Detection System (Cisco Secure IDS, formerly known as NetRanger) Post Office Protocol. The network administrator can configure the IDS system to choose the appropriate response to various threats.
Firewall N2H2 Support
N2H2 is globally deployed third-party URL filtering software that can filter HTTP requests, based on destination host name, destination IP address, username, and password. It relies on a sophisticated URL database of more than 15 million sites organized into more than 40 categories using both Internet technology and human review. This feature enables the Cisco IOS firewall to do URL filtering based on N2H2 server. When a Cisco 800 router receives an HTTP request, it sends a query request to N2H2 server with the requested URL. N2H2 server does some necessary lookups for the URL and sends back a query response. Based on N2H2 server's response, the router either blocks the HTTP request by redirecting the browser to a block page or proceeds with normal HTTP processing.
For more information on this feature, see the following URL:
https://www.cisco.com/en/US/docs/ios/12_2t/12_2t15/feature/guide/ft_n2h2.html
Firewall Support of SSL Encrypted HTTP Authentication Proxy Sign-on
The Firewall Support of HTTPS Authentication Proxy feature allows a user to encrypt the change of the username and password between the HTTP client and the Cisco IOS router via Secure Socket Layer (SSL) when authentication proxy is enabled on the Cisco IOS firewall, thereby ensuring confidentiality of the data passing between the HTTP client and the Cisco IOS router.
Firewall Support for SIP
This feature allows Session Initiation Protocol (SIP) signaling requests to traverse directly between gateways or through a series of proxies to the destination gateway or phone. After the initial request, if the Record-Route header field is not used, subsequent requests can traverse directly to the destination gateway address as specified in the Contact header field. Thus, the Cisco IOS firewall is aware of all surrounding proxies and gateways and allows the following functionality:
•SIP signaling responses can travel the same path as SIP signaling requests.
•Subsequent signaling requests can travel directly to the endpoint (destination gateway).
•Media endpoints can exchange data.
For more information on this feature, see the following URL:
https://www.cisco.com/en/US/docs/ios/12_2t/12_2t15/feature/guide/ft_n2h2.html
Firewall Websense URL Filtering
Websense is a third-party URL filtering software program that can filter HTTP requests, based on destination host name, destination IP address, keywords, and username. Websense maintains a URL database of more than 20 million sites organized into more than 60 categories and subcategories. This feature enables the Cisco IOS firewall to do URL filtering based on Websense server. When a Cisco 800 router receives an HTTP request, it sends a query request to the Websense server with the requested URL. The Websense server does some necessary lookups for the URL and sends back a query response. Based on the Websense server's response, the router either blocks the HTTP request by redirecting the browser to a block page or proceeds with normal HTTP processing.
For more information on this feature, see the following URL:
Framed-Route in RADIUS Accounting
For detailed information about this feature, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123newft/123t/123t_4/gt_fra22.htm
GGSN R3.1
For detailed information about this feature, see the following document:
Hot Standby Router Protocol Version 2
For detailed information about this feature, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123newft/123t/123t_4/gthsrpv2.htm
Import of RSA Keypair and Certificates in PEM Format
For detailed information about this feature, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123newft/123t/123t_4/gtrsapem.htm
Integrated IS-IS Global Default Metric
For detailed information about this feature, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123newft/123t/123t_4/gtisglob.htm
Integrated IS-IS Protocol Shutdown Support Maintaining Configuration Parameters
For detailed information about this feature, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123newft/123t/123t_4/gtisprot.htm
IP Security VPN Monitoring
For detailed information about this feature, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123newft/123t/123t_4/gt_ipsvm.htm
IP to ATM CoS Enhancements
The IP to ATM CoS feature implements a solution for coarse-grained mapping of quality of service (QoS) characteristics between IP and ATM, using Cisco Enhanced ATM port adapters (PA-A3) on Cisco 7200 and Cisco 7500 series routers. This category of coarse-grained QoS is often referred to as class of service (CoS). The resulting feature makes it possible to support differential services in network service provider environments.
With the Cisco IOS Release 12.3(4)T, the IP to ATM CoS feature has been enhanced to include support for the Cisco 7500 series router with either the PA-A3-8T1 IMA or PA-A3-8E1 IMA port adapters.
For more information about the IP to ATM CoS feature, see the "Quality of Service Solutions" section of the Cisco IOS Quality of Service Solutions Configuration Guide.
IPsec NAT Transparency
The IPSec NAT Transparency feature introduces support for IP Security (IPSec) traffic to travel through the Network Address Translation (NAT) or Point Address Translation (PAT) point in the network by addressing many known incompatibilities between NAT and IPSec. This feature encapsulates IPSec packets in a User Datagram Protocol (UDP) wrapper, which allows the packets to travel across NAT devices.
A standard IPSec Virtual Private Network (VPN) tunnel would not work if there are one or more NAT or PAT points in the delivery path of the IPSec packet. This feature makes NAT IPSec aware, thereby allowing remote access users to build IPSec tunnels to home gateways.
ISDN Calling Name Display
For detailed information about this feature, see the following document:
IS-IS Limit on Number of Redistributed Routes
For detailed information about this feature, see the following document:
IS-IS Support for Priority-Driven IP Prefix RIB Installation
For detailed information about this feature, see the following document:
L2TP Tunnel Connection Speed Labeling
For detailed information about this feature, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123newft/123t/123t_4/gtclabel.htm
LAN Network Manager (LNM)
As of Cisco IOS Release 12.3(4)T, the LAN Network Manager (LNM) feature has been removed from Cisco IOS software.
Media Inactive Call Detection
For detailed information about this feature, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123newft/123t/123t_2/gt_icd.htm
Memory Threshold Notifications
For detailed information about this feature, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123newft/123t/123t_4/gt_memnt.htm
Mobile IP Dynamic Security Association and Key Distribution
For detailed information about this feature, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123newft/123t/123t_4/gtmipsec.htm
Mobile IP Home Agent Redundancy for Dynamic Mobile Networks
With the introduction of the Mobile IP Home Agent Redundancy for Dynamic Mobile Networks feature, the mobile router is capable of dynamically registering network(s) (or subnet) with its home agent. This functionality greatly simplifies deployment and provisioning.
To achieve this functionality, extra information is stored in the mobility binding. However, this extra information was not passed to the standby home agent in case of a redundant home agent configuration. Thus, the standby home agent would not know of a dynamically registered network and the stateful switchover was compromised. If the active home agent went down and the standby home agent took over, the dynamic network information was lost and the entire dynamic network would lose connectivity.
The Mobile IP Home Agent Redundancy for Dynamic Mobile Networks feature provides a solution to this problem by keeping the mobility bindings synchronized between the active and standby home agents. Now the standby home agent will have dynamic mobile network information stored in its mobility binding table ensuring a successful stateful switchover.
Dynamic network support for Cisco Mobile Networks was added in Cisco IOS Release 12.2(13)T. See "Cisco Mobile Networks" feature documentation for more information on this feature at the following location:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios122/122newft/122t/122t4/ftmbrout.htm
Mobile IP MIB for Reverse Tunnel, Challenge, and VSEs
Reverse tunnel, challenge, and vendor specific extensions (VSEs) have been added to Mobile IP functionality. The Mobile IP MIB for Reverse Tunnel, Challenge, and VSEs feature provides MIB objects for this functionality. These features can now be managed and monitored via Simple Network Management Protocol (SNMP).
Mobile Networks Dynamic Collocated Care-of-Address
For detailed information about this feature, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123newft/123t/123t_4/gtcolloc.htm
MSDP Compliance with IETF MSDP Draft 20
For detailed information about this feature, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123newft/123t/123t_4/gt_msdp.htm
NAT-Performance & Scalability Enhancement-Timer Wheel
The NAT-Timer Wheel Enhancement feature reduces CPU utilization in cases where routers must manage large numbers of NAT Network Address Translation (NAT) entries, and eliminates the performance bottleneck caused by the previous timer tree model. By using a more efficient data structure and a priority queue to sort the timer and eliminate the sorting operation during a timer insertion, the NAT-Timer Wheel Enhancement Feature speeds the process of inserting and removing a timer, which improves the scalability of a router running NAT.
NAT-Performance Enhancement-CEF Switching Support
The NAT-CEF Switching Support feature enhances router performance by optimizing packet processing. Through Cisco Express Forwarding (CEF), decisions to translate, punt, drop, or forward a packet are made with a single lookup. To improve performance, packets that do not require translation and fragmented packets are not punted to the process level. Those packets that have special flags, such as TCP syn/fin/reset, are processed in the CEF path itself. Any action that is CPU-intensive is performed by a background process or by process-level NAT code.
New Voice Features
Cisco IOS 12.3(4) T supports the following new voice features:
•Accounting Server Connectivity Failure and Recovery Detection
•Cisco CallManager Express 3.0
•Cisco IOS MGCP Gateway Support for Cisco CallManager Network Specific Facilities
•Cisco Survivable Site Remote Telephony, V3.0
•Customizable Tone Download to Cisco IOS MGCP Gateways from Cisco Call Manager
•Default Session Application Enhancements
•DES/3DES/AES VPN Encryption Module (AIM-VPN/BPII)
•Enhanced ITU-T G.168 Echo Cancellation
•H.323v4 Gateway Zone Prefix Registration Enhancements
•ISDN Calling Name Display for SIP
•NextPort Voice Tuning and Background Noise Statistics
•PLAR (Private Line Automatic Ring-down) for Trading Turrets
•SIP 300 Multiple Choice Messages
•SIP Gateway Support Enhancements to the bind Command
•SIP Debug Output Filtering Support
•SIP Header Support and SUBSCRIBE and NOTIFY for External Triggers
•SIP NOTIFY-Based Out-of-Band DTMF Relay Support
•SIP Survivable Remote Site Telephony (SRST)
•VIC2-2FXS, VIC2-2E/M, VIC2-2FXO, VIC2-4FXO, VIC2-2CAMA, VIC2-2BRI-NT/TE
•Videoconferencing for the Cisco Multiservice IP-to-IP Gateway Feature
•Voice Application Enhancements, Phase 4a
•Voice DSP Crash Dump Analysis
•Voice Performance Statistics on Cisco Gateways
OSPF MIB Support of RFC 1850 and Latest Extensions
This release updates the OSPF MIB support to the latest RFC 1850 and adds the latest draft extensions. For more information regarding the definitions of the draft extensions, see the CISCO-OSPF-MIB.my and CISCO-OSPF-TRAP-MIB.my files.
http://tools.cisco.com/ITDIT/MIBS/servlet/index
For routers that are running Cisco IOS Release 12.0(26)S and later releases, the OSPF MIB and CISCO OSPF MIB will be supported only for the first OSPF process (except for MIB objects that are related to virtual links and sham links). SNMP Traps will be generated for OSPF events that are related to any of the OSPF processes. There is no workaround for this situation.
Note The CISCO-OSPF-MIB.my is a read-only MIB.
OSPF Support for Unlimited Software VRFs per Provider Edge (PE) Router
For detailed information about this feature, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123newft/123t/123t_4/gtospfvf.htm
Peer Pool Backup
For detailed information about this feature, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123newft/123t/123t_4/gtpeerpl.htm
PIM Dense Mode Fallback Prevention in a Network Following RP Information Loss
For detailed information about this feature, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123newft/123t/123t_4/gtautorp.htm
PPPoE Relay
For detailed information about this feature, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123newft/123t/123t_4/gtpppoer.htm
PPPoE Service Selection
For detailed information about this feature, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123newft/123t/123t_4/gtpoess.htm
PPPoE Session Limit Per NAS Port
For detailed information about this feature, see the following document:
Pre-fragmentation For IPsec VPNs
When a packet is nearly the size of the maximum transmission unit (MTU) of the outbound link of the encrypting router, and it is encapsulated with IPSec headers, it is likely to exceed the MTU of the outbound link. This causes packet fragmentation after encryption, which makes the decrypting router reassemble in the process path. Pre-Fragmentation for IPSec VPNs increases the decrypting router's performance by enabling it to operate in the high-performance Cisco Express Forwarding (CEF) path instead of the process path.
Pre-fragmentation for IPSec VPNs enables an encrypting router to predetermine the encapsulated packet size from information available in transform sets, which are configured as part of the IPSec security association (SA). If it is predetermined that the packet will exceed the MTU of the output interface, the packet is fragmented before encryption. This avoids process-level reassembly before decryption and helps improve decryption performance and overall IPSec traffic throughput.
Private Line Automatic Ringdown for Trading Turrets
For detailed information about this feature, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123cgcr/vvfax_c/add_c/vclhhip.htm
Quality of Service for Virtual Private Networks
This feature allows the customer to configure Quality of Service (QoS) features and tunneling/crypto on the same interface.
As VPNs grow to include data, voice, and video traffic, the different types of traffic need to be handled differently in the network. QoS and bandwidth management features allow a VPN to deliver high transmission quality for time-sensitive applications such as voice and video. Each packet is tagged to identify the priority and time sensitivity of its payload, and traffic is sorted and routed based on its delivery priority. Cisco VPN solutions support a wide range of QoS features.
For more details on this feature, see the following URL:
http://www.cisco.com/en/US/tech/tk543/tk757/technologies_tech_note09186a00800b3d15.shtml
Rate Limiting NAT Translation
For detailed information about this feature, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123newft/123t/123t_4/gt_natrl.htm
RAW IP Traffic Export
For detailed information about this feature, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123newft/123t/123t_4/gt_rawip.htm
Real-time Resolution for IPSec Tunnel Peer
For detailed information about this feature, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123newft/123t/123t_4/gtrlres.htm
Regex Engine Performance Enhancement
For detailed information about this feature, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123newft/123t/123t_4/gt_rexpe.htm
RFC 2867—RADIUS Tunnel Accounting
For detailed information about this feature, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123newft/123t/index.htm
Secure Shell Version 2 Support
For detailed information about this feature, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123newft/123t/123t_4/gt_ssh2.htm
Secure SNMP Views
The USM, VACM and Community MIBs have information that can potentially be used to gain access to the router using SNMP. Therefore, the USM, VACM, and Community MIBs are excluded from the default SNMP access view so as not to allow remote access unless specifically configured. However, when an SNMP view is created with any parent object identifier (OID) of these MIBs included (for example "internet included"), these MIBs also get included in the view. To increase security, the Secure SNMP Views enhancement excludes these MIBs from SNMP access views even when parent OIDs are included in the view. Prior to this release, when configuring SNMP views with parent OIDs that include the USM, VACM, or Community OIDs, the user was required to explicitly exclude them. For example, the following configuration can be used for excluding security-sensitive MIBs from the SNMP view named "test":
! - include all MIBs under the parent tree "internet" snmp-server view test internet included
! -- exclude snmpUsmMIB snmp-server view test 1.3.6.1.6.3.15 excluded
! -- exclude snmpVacmMIB snmp-server view test 1.3.6.1.6.3.16 excluded
! -- exclude snmpCommunityMIB snmp-server view test 1.3.6.1.6.3.18 excluded
Beginning in Cisco IOS Releases 12.0(26)S and 12.2(2)T, the USM, VACM, and Community MIBs are excluded from any parent OIDs in a configured view by default. If you wish to include these MIBs in a view, you must now explicitly include them.
Service Assurance Agency (SAA) VoIP UDP Operation
For detailed information about this feature, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123newft/123t/123t_4/gtsaamos.htm
Service Selection Gateway (SSG)
Service Selection Gateway (SSG) is a switching solution for service providers who offer intranet, extranet, and Internet connections to subscribers using broadband access technology such as digital subscriber lines (DSL), cable modems, or wireless to allow simultaneous access to network services. The Service Selection Gateway MIB enables network administrators to use Simple Network Management Protocol (SNMP) to monitor and manage SSG. The SSG MIB contains objects that correspond to and allow the monitoring of several important SSG features, including SSG AutoDomain, SSG Port-Bundle Host Key, and SSG TCP Redirect for Services. For detailed definitions of MIB objects, see the CISCO-SSG-MIB.
Service Selection Gateway (SSG) Features in Release 12.3(4)T
For detailed information about this feature, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123newft/123t/123t_4/ssg/index.htm
Session Initiation Protocol (SIP)
Session Initiation Protocol (SIP) is an ASCII-based, application-layer control protocol (defined in RFC 2543) that can be used to establish, maintain, and terminate calls between endpoints.
Like other VoIP protocols, SIP is designed to address the functions of signaling and session management within a packet telephony network. Signaling allows call information to be carried across network boundaries. Session management provides the ability to control the attributes of an end-to-end call.
This feature is supported on the Cisco 827-4V router beginning with this release. The SIP feature on Cisco 827-4V router supports only basic calls between two end points. Supplementary services like call waiting, call forwarding, etc. are not supported on the Cisco 827-4V router.
For more details on this feature, see the following URL:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios121/121newft/121t/121t1/0251clmb.htm
Show Version Enhancements
The output of the commonly used show version command has been modified slightly to reflect general updates to Cisco IOS software. If you are currently using any automated tools (such as scripts) that parse the output of the show version command, you should review the new output format and make changes as needed.
For more information, see the following:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123tcr/123tfr/cfrgt_10.htm
SIP Debug Output Filtering Support
For detailed information about this feature, see the following document:
SIP Gateway Support Enhancements to the bind Command
For detailed information about this feature, see the following document:
SIP: RFC 3261 Enhancements
For detailed information about this feature, see the following document:
SIP: SIP Header Support and Subscribe and Notify for External Triggers
For detailed information about this feature, see the following document:
SSG 3-Key Authentication
The SSG 3-Key Authentication feature enables Service Selection Gateway (SSG) to authenticate Cisco Subscriber Edge Services Manager (SESM) users on the basis of three keys: username, password, and mobile station integrated services digital network (MSISDN) number. Before the introduction of this feature, users logging into SESM were authenticated on the basis of username and password only (2-key authentication).
When SSG 3-key authentication is used, users are required to provide their MSISDN number (which is typically their phone number), in addition to username and password, at SESM login. RADIUS attribute 31 (calling-station ID) is used to communicate the MSISDN number in account logon requests sent from SESM to SSG and in access requests sent from SSG to a AAA server. When 3-key authentication is used, all host and connection accounting packets for the user contain the MSISDN number. SSG 3-key authentication is performed for account logon only, not for service logon; however, SSG will include the MSISDN number in the access requests for service logons.
SSG AAA Transaction Enhancements
The Service Selection Gateway (SSG) AAA transactions for host logon and service profile downloading have been enhanced. The AAA server can now handle multiple SSG host logon and service profile download requests concurrently without stopping SSG processes.
SSG Complete ID
The SSG Complete ID feature provides enhancements to the interaction between Service Selection Gateway (SSG) and Cisco Subscriber Edge Services Manager (SESM) by allowing SSG to pass along the following information where available:
•Client IP address
•Client MAC address
•Subinterface
•Virtual path identifier/virtual channel identifier (VPI/VCI)
•Mobile station integrated services digital network (MSISDN) number
This feature provides a more flexible way of identifying a client, which can be a single user on a PC, a site managing many users, or a transit user at a wireless (WLAN) hot spot location. The SSG Complete ID feature also enables SESM to offer greater customization of Web portals, specifically by location; so, for example, each WLAN hot spot can have its own branded portal.
SSG Open Garden Configuration Enhancements
A Service Selection Gateway open garden is a collection of websites or networks that subscribers can access as long as they have physical access to the network. Subscribers do not have to provide authentication information before accessing the websites in an open garden. Before the introduction of this feature, open garden services had to be configured in local service profiles. The SSG Open Garden Enhancements allows service profiles for open garden services to be defined and managed locally or remotely on the RADIUS server.
Subscriber Service Support
For detailed information about this feature, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123newft/123t/123t_4/gtsubspt.htm
Token Ring LAN Emulation (TR-LANE)
As of Cisco IOS Release 12.3(4)T, the Token Ring LAN Emulation (TR-LANE) feature has been removed from Cisco IOS software.
Tunnel Authentication via RADIUS on Tunnel Terminator
For detailed information about this feature, see the following document:
http://www.cisco.com/en/US/docs/ios/12_2/12_2b/12_2b8/feature/guide/ftunauth.html
Turbo-Classification for QoS
The Turbo-Classification for QoS feature provides support for using turbo access control lists (ACLs) when you configure quality of service (QoS) functionality. Turbo ACLs compile the ACLs into a set of lookup tables, while maintaining the first packet-matching requirements. Packet headers are used to access these tables in a small, fixed, number of lookups, independent of the existing number of ACL entries.
Turbo ACLs process ACLs more expediently, providing faster functionality for routers. For more information about turbo ACLs, see the Turbo Access Lists feature at the following URL:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios121/121newft/121t/121t5/dttacl.htm
For information on access control lists, see the Access Control Lists: Overview and Guidelines document at the following URL:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios113ed/113ed_cr/secur_c/scprt3/scacls.htm
Using Certificate ACLs to Ignore Revocation Check and Expired Certificates
For detailed information about this feature, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123newft/123t/123t_4/gt_ircec.htm
V.120 Support Network Access Server (NAS)
For detailed information about this feature, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123newft/123t/123t_4/gt120nas.htm
Videoconferencing on the Cisco Multiservice IP-to-IP Gateway
For detailed information about this feature, see the following document:
VLANs over IP Unnumbered Interfaces
For detailed information about this feature, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123newft/123t/123t_4/gtunvlan.htm
Voice Application Enhancements, Phase 4a
For detailed information about this feature, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123cgcr/vvfax_c/tcl_c/index.htm
Voice Call Debug Filtering on Cisco Voice Gateways
For detailed information about this feature, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123cgcr/vvfax_c/voipt_c/index.htm
Voice Performance Statistics on Cisco Gateways
For detailed information about this feature, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123newft/123t/123t_4/gt_th.htm
VPN Access Control Using 802.1X Authentication
For detailed information about this feature, see the following document:
VRF and MQC Hierarchical Shaping in PXE
For detailed information about this feature, see the following document
WCCP Version 2
This release adds support for version 2 of the Web Cache Communication Protocol (WCCP) for the Cisco 830 Series (Cisco 831, 836, and 837 Platforms). WCCP, developed by Cisco Systems, specifies interactions between one or more routers (or Layer 3 switches) and one or more web-caches. The purpose of the interaction is to establish and maintain the transparent redirection of selected types of traffic flowing through a group of routers. The selected traffic is redirected to a group of web-caches with the aim of optimizing resource usage and lowering response times. For information on configuring WCCP, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios122/122cgcr/ffun_c/fcfprt3/fcf018.htm
New Hardware Features Supported in Cisco IOS Release 12.3(2)T1
This section describes new and changed features in Cisco IOS Release 12.3(2)T1. Some features may be new to Cisco IOS Release 12.3T but were released in earlier Cisco IOS software releases. Some features may have been released in earlier Cisco IOS software releases and have been changed in Cisco IOS Release 12.3(2)T1. To determine if a feature is new or changed, see the feature history table at the beginning of the feature module for that feature. Links to feature modules are included below. If a feature listed below does not have a link to a feature module, that feature is documented only in the release notes, and information about whether the feature is new or changed will be available in the feature description provided below.
2-Port GigE/POS
The 2-Port Gigabit Ethernet (GigE) feature refers to the MGX-2GE backcard that is controlled and monitored by the MGX-2GE driver. The MGX-2GE driver is a Cisco IOS software subsystem that provides high speed transport of IP packets at Gigabit Ethernet (GE) rates on each port.
The 2-Port Packet over SONET (POS) feature refers to the MGX-2POS backcard that is controlled and monitored by the MGX-2GE driver. The MGX-2POS driver is a Cisco IOS software subsystem that provides high speed transport of IP packets at OC12 rates on each port.
The MGX-2GE driver has the following features:
•Small Form Factor Pluggable (SFP) Security
•Link Management (Auto Negotiation)
•Flow Control Between Gigabit Links
•Interface MAC Address Assignment
•MAC Address Filtering
•Card Online Insertion & Removal (OIR) support
•SFP Hot Swapping
The MGX-2GE driver performs the following tasks:
•Initializing the GE driver subsystem at IOS boot time
•Initializing and configuring the GE backcard
•Downloading the GE backcard firmware images
•Collecting statistics for the CLI and SNMP
•Managing alarm and trap events after insertion, removal, and hot swap
•Managing interface status and configuration changes
•Processing events and alarms
•Monitoring data path hardware failures
•Controlling front card and backcard port and card status LEDs
The MGX-2POS driver has the following features:
•SONET alarms processing
•SFP Security
•Card OIR support
•SFP Hot Swapping
•Internal and external loopback
•Internal and external clock source
The MGX-2POS driver performs the following tasks:
•Initializing the POS driver subsystem at IOS boot time
•Initializing and configuring the GE backcard
•Downloading the POS backcard firmware images
•Collecting statistics for the CLI and SNMP
•Managing alarm and trap events after insertion, removal, and hot swap
•Managing interface status and configuration changes
•Processing events and alarms
•Monitoring data path hardware failures
•Controlling front card and backcard port and card status LEDs
New Software Features Supported in Cisco IOS Release 12.3(2)T1
This section describes new and changed features in Cisco IOS Release 12.3(2)T1. Some features may be new to Cisco IOS Release 12.3T but were released in earlier Cisco IOS software releases. Some features may have been released in earlier Cisco IOS software releases and have been changed in Cisco IOS Release 12.3(2)T1. To determine if a feature is new or changed, see the feature history table at the beginning of the feature module for that feature. Links to feature modules are included below. If a feature listed below does not have a link to a feature module, that feature is documented only in the release notes, and information about whether the feature is new or changed will be available in the feature description provided below.
IPHC (cRTP/cUDP/cTCP)
Internet Protocol Header Compression (IPHC) includes compressed Routing Table Protocol (cRTP), compressed User Datagram Protocol (cUDP), and compressed Transport Control Protocol (cTCP) and allows low speed links to run more efficiently when IP headers are extremely large or of comparable size to the payload.
An IPHC-enabled interface sends only changes to the header instead of sending the entire header with every packet.
At the beginning of a transmission, the transmitting end (the compressor) sends a full header packet to the receiving end (the decompressor). After this initial packet, the compressor sends all other packets with headers that contain only the differences between them and the original full header. The decompressor maintains a copy of the original full header and reconstructs all the other packet headers by adding the changes to them.
LFI
Link Fragmentation Interleaving (LFI) allows a large packet to be divided into smaller fragments so that excessive head of line blocking can be avoided for smaller packets such as Voice over IP (VoIP) packets.
On slow speed interfaces (slower than T1), a packet with maximum transmission unit (MTU) can cause excessive head of line blocking in low latency priority queues (LLQs) especially in VoIP applications. The solution is to implement LFI on these interfaces.
The RPM-XF supports LFI on MLPPP interfaces and supports up to 200 LFI-enabled interfaces. LFI and PPP interfaces use the Multilink PPP (MLPPP) long sequence number fragment format headers.
LFI over multiple links in an MLPPP bundle is not supported. Receiving and reassembling out of sequence fragments is also not supported.
Multicast VPN
Multicast Virtual Private Network (VPN) provides the ability to transport multicast traffic inside an MPLS-VPN using multicast tunneling. A single MPLS-VPN endpoint can send a multicast packet to all other destination endpoints in the MPLS-VPN.
A customer edge (CE) router sends a multicast packet customer packet (C-packet) to a provider edge (PE) router. The PE router creates a provider packet (P-packet) by adding either a GRE-IP header or an IP-IP header to this packet. The PE router then sends the P-packet to one or more provider routers (P routers) using multicast processing.
Multicast VPN supports only MPLS frame-based encapsulation.
VTMS
Versatile Traffic Management System (VTMS) on the RPM-XF allows bandwidth sharing between virtual channels (VCs). When a VC is idle, its bandwidth can be used by other VCs. It allows all VCs to share the same VTMS link and supports ATM and either Packet Over SONET (POS) or GigE links.
VTMS on the RPM-XF uses a bandwidth divisor of 65535, making it considerably more powerful than P5 VTMS which uses a bandwidth divisor of 255.
VTMS on the RPM-XF uses dummy full queues to handle traffic congestion and allows packet dropping, including undefined bit rate (UBR) packet dropping.
New Hardware Features Supported in Cisco IOS Release 12.3(2)T
This section describes new and changed features in Cisco IOS Release 12.3(2)T1. Some features may be new to Cisco IOS Release 12.3T but were released in earlier Cisco IOS software releases. Some features may have been released in earlier Cisco IOS software releases and have been changed in Cisco IOS Release 12.3(2)T1. To determine if a feature is new or changed, see the feature history table at the beginning of the feature module for that feature. Links to feature modules are included below. If a feature listed below does not have a link to a feature module, that feature is documented only in the release notes, and information about whether the feature is new or changed will be available in the feature description provided below.
•1-Port DSU/CSU T1 WIC for the Cisco 1700, Cisco 2600, Cisco 3600, and Cisco 3700 Series Routers
•8-Port Foreign Exchange Office MRP for the United States with Battery Reversal (MRP3-8FXOM1)
•Enhanced Route Switch Controller (ERSC)
1-Port DSU/CSU T1 WIC for the Cisco 1700, Cisco 2600, Cisco 3600, and Cisco 3700 Series Routers
For detailed information about this feature, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios122/122newft/122limit/122z/122zl15/t1dsu.htm
8-Port Foreign Exchange Office MRP for the United States with Battery Reversal (MRP3-8FXOM1)
The Cisco ICS 7750 now supports an Multiservice Route Processor (MRP) with eight FXO-M1 ports (MRP3-8FXOM1), which you can use to connect to PBXs or key systems and to provide off-premise connections in the United States, Canada, and other countries. FXO-M1 is an enhancement of FXO with battery reversal and caller ID features. Like the MRP3-8FXS, the MRP3-8FXOM1 also includes an open slot (slot 1) that accepts all voice interface cards (VICs), WAN interface cards (WICs), and Voice/WAN interface cards (VWICs) that are supported on the Cisco ICS 7750.
Note You can use H.323 with the caller ID and battery reversal answer supervision features on the MRP3-8FXOM1. Media Gateway Control Protocol (MGCP) on the MRP3-8FXOM1 is supported, but not with caller ID or battery reversal detection.
Enhanced Route Switch Controller (ERSC)
The enhanced route switch controller is a faster route switch controller (RSC) card that supports more calls, better redundancy, and stratum 3 clocking. The RSC is a printed circuit board that connects to the server backplane and performs routing functions. It also supports environmental monitoring and board initialization at power up.
NM-1FE-SMF
The 100BASE-FX SMF Network Module expands fiber Ethernet connectivity options for the Cisco 2691, Cisco 3640, Cisco 3640A, Cisco 3660, Cisco 3725, and Cisco 3745 routers. This network module can transmit at distances of up to 10 kilometers and supports the IEEE 802.3ah Ethernet standard.
NM-16A/S
For detailed information about this feature, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123newft/123t/123t_2/gtnm16as.htm
VIC-4FXS/DID
The VIC-4FXS/DID feature supports the 4-port Foreign Exchange Station/Direct Inward Dialing (FXS/DID) voice interface card (VIC) on the Cisco 1751 and Cisco 1760 routers. The 4-port FXS/DID VIC provides both FXS and DID functionality on a single VIC. The Cisco 1751 router can support three 4-port FXS/DID VICs, up to a maximum of four DID ports. The Cisco 1760 router can support four 4-port FXS/DID VICs, up to a maximum of eight DID ports.
New Software Features Supported in Cisco IOS Release 12.3(2)T
This section describes new and changed features in Cisco IOS Release 12.3(2)T. Some features may be new to Cisco IOS Release 12.3T but were released in earlier Cisco IOS software releases. Some features may have been released in earlier Cisco IOS software releases and have been changed in Cisco IOS Release 12.3(2)T. To determine if a feature is new or changed, see the feature history table at the beginning of the feature module for that feature. Links to feature modules are included below. If a feature listed below does not have a link to a feature module, that feature is documented only in the release notes, and information about whether the feature is new or changed will be available in the feature description provided below.
•Asynchronous Point of Sale-to-IP Conversion
•Authorization for Protocol Translation
•Cisco 1700 Series Voice Features for Cisco IOS Release 12.3(2)T
•Cisco Extension to the Interfaces MIB (CISCO-IF-EXTENTION-MIB)
•CISCO-CONFIG-COPY-MIB: FTP and rcp Support
•CISCO-CONFIG-COPY-MIB: Secure Copy Support
•Cisco Easy VPN Remote Enhancements
•Cisco IOS IPv6 Configuration Library
•Cisco IOS Software Feature Removal: Token Ring Inter-Switch Link
•Class-Based Packet Marking Enhancements
•Class-Based QoS MIB (CBQoSMIB) Enhancements
•Crypto Conditional Debug Support
•DHCP Lease Limit per ATM RBE Unnumbered Interface
•End-of-Record Function for DCNs
•Enhanced Voice and QoS for ADSL and G.SHDSL
•Frame Relay—Multilink (MLFR-FRF.16)
•Frame Relay Switched Virtual Circuits (SVC) over ISDN
•Generic Routing Encapsulation Tunnel IP Source and Destination VRF Membership
•Health Monitor and Diagnostic Monitor for the Cisco AS5850
•Hot Standby Router Protocol (HSRP)
•Invalid Security Parameter Index Recovery
•ISDN Type of Number to RADIUS Server
•IS-IS Mechanisms to Exclude Connected IP Prefixes from LSP Advertisements
•L2TP Client-Initiated Tunneling
•L2TPv3: Layer 2 Tunnel Protocol Version 3
•Loadsharing IP Packets Over More Than Six Parallel Paths
•MGCP-Controlled Backhaul of BRI Signaling in Conjunction with Cisco CallManager
•MGCP Support for CallManager (IP-PBX)
•Monitoring and Retraining on Reception of Loss of Margin Messages
•MPLS Label Switch Controller and Enhancements
•NAT—Support for H.323 v3 and v4 in v2 Compatibility Mode
•NAT—Support of IP Phone to Cisco CallManager
•Online Certificate Status Protocol (OCSP)
•OSPF Limit on Number of Redistributed Routes
•OSPF Link-State Advertisement (LSA) Throttling
•PAD Subaddress Formatting Option
•PCR Support for the Cisco Signaling Link Terminal
•Periodic MIB Data Collection and Transfer Mechanism
•Persistent TDM Switched Circuits
•PPPoE over VLAN Enhancements: Configuration Limit Removal and ATM Support
•PPPoE Session Recovery After Reload
•RTP Header Compression over Satellite Links
•SAA Support for Frame Relay, VoIP, and MPLS VPN Monitoring
•Service Assurance Agent (SAA)—MPLS VPN Path Jitter
•SNMP Support for Named Access Lists
•SNMP Support over VPNs—Context Based Access Control
•SNMP v1/v2c PDU Conversions for Proxy Forwarder (RFC 2576)
•Source Specific Multicast (SSM) Mapping
•Token Ring Inter-Switch Link (TRISL)
•Virtual Auxiliary Port Feature and Configuration of DSL Settings
•VPDN MIB Enhancements for per-VRF Session Counting
•X.25 Call Confirm Packet Address Control
ACL Performance Enhancement
An IP access control list (ACL) is a Cisco IOS software feature that allows an administrator to configure a network to permit and deny packets based on a set of ACL entries, thus improving security and control within a network. These lists contain entries that are searched sequentially for matches among certain fields in Layer 3 and Layer 4 packet headers.
Before Cisco IOS Release 12.3(2)T, ACL entries were sequentially configured and stored. This implementation caused the first match in a search to be the first ACL entry in a given list, not the entry that provided the best match. Although this implementation was straightforward and logical, it did not scale well with the number of ACL entries in an ACL.
Cisco IOS Release 12.3(2)T implements ACLs using hierarchical radix tries (sometimes called multilevel tries, backtracking tries, or tries-of-tries) to improve matching performance. Individual tries are made for the source prefix and the destination prefix, with additional ACL entry information such as TCP ports, TCP flags, and time ranges being held at the nodes. Cisco IOS software performs a best match lookup for the given set of prefixes. This new implementation is an internal improvement which supports all existing functionality, and the sequential searching properties that cause ACLs to check the entries from start to end and stop searching for a match as soon as one is found is still valid.
The benefits of this implementation of ACLs using hierarchical radix tries are as follows:
•Memory usage is made more efficient.
•Less system resources are required to maintain the tries information.
•Performance of ACL matching is improved for larger access lists.
Asynchronous Point of Sale-to-IP Conversion
For detailed information about this feature, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123newft/123t/123t_2/gt_apos.htm
Authorization for Protocol Translation
For detailed information about this feature, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123newft/123t/123t_2/gttpadta.htm
BCP Support
For detailed information about this feature, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123newft/123t/123t_2/gt_bcp.htm
BGP Convergence Optimization
BGP Convergence Optimization introduces a new algorithm for update generation that reduces the amount of time that is required for Border Gateway Protocol (BGP) convergence. Neighbor update messages are optimized before they are forwarded to neighbors. Updates are optimized and forwarded based on peer groups and per-individual neighbors. This enhancement improves BGP convergence, router boot time, and transient memory usage. This enhancement is not user configurable.
BGP Cost Community
For detailed information about this feature, see the following document:
http://www.cisco.com/en/US/docs/ios/12_0s/feature/guide/s_bgpcc.html
BGP Route-map Continue
For detailed information about this feature, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123newft/123t/123t_2/gt_brmcs.htm
Cisco 1700 Series Voice Features for Cisco IOS Release 12.3(2)T
For detailed information about this feature, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123newft/123t/123t_2/1700voip.htm
Cisco Extension to the Interfaces MIB (CISCO-IF-EXTENTION-MIB)
The Cisco Extension to the Interfaces MIB (CISCO-IF-EXTENTION-MIB) feature introduces support for the Cisco Extension to the Interfaces (IF) MIB. The CISCO-IF-EXTENTION-MIB implements Cisco specific extensions to the Interface MIB (RFC 2233). These extensions are, specifically, two tables that provide information about interface packet statistics and interface properties. Details on these extensions can be found in the MIB file CISCO-IF-EXTENTION-MIB.my {ciscoMgmt 276}.
http://tools.cisco.com/ITDIT/MIBS/servlet/index
CISCO-CONFIG-COPY-MIB: FTP and rcp Support
For detailed information about this feature, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123newft/123t/123t_2/gtrcpmib.htm
CISCO-CONFIG-COPY-MIB: Secure Copy Support
For detailed information about this feature, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123newft/123t/123t_2/gt_cpmib.htm
Cisco Easy VPN Remote Enhancements
For detailed information about this feature, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios122/122newft/122t/122t15/ftezvpnr.htm
CISCO-FLASH-MIB Enhancements
For detailed information about this feature, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123newft/123t/123t_2/gt_fcmib.htm
Cisco IOS IPv6 Configuration Library
For detailed information about this feature, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123cgcr/ipv6_vcg.htm
Cisco IOS Software Feature Removal: Token Ring Inter-Switch Link
For detailed information about this feature, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123newft/123t/123t_2/gt_jncrg.htm
Class-Based Packet Marking Enhancements
With Release Cisco IOS Release 12.3, the Class-Based Packet Marking feature (first introduced in Cisco IOS Release 12.1(2)T) has been enhanced to support packet marking at any level of a hierarchical policy map. With this enhancement, customers can now use the set command to configure packet marking actions in the child classes as well as in the parent classes of a hierarchical policy map.
For more information about class-based packet marking, see the "Classification" part of the Cisco IOS Quality of Service Solutions Configuration Guide.
For more information about the set command, see the Cisco IOS Quality of Service Solutions Command Reference, Cisco IOS Release 12.3T.
Class-Based QoS MIB (CBQoSMIB) Enhancements
This feature enhances the Class-Based Quality of Service (QoS) MIB (CBQoSMIB) in the Cisco IOS software. These MIB enhancements provide support for the following Cisco IOS features:
•Two-Rate Policer, Cisco IOS Release 12.2(4)T
•Policer Enhancement—Multiple Actions, Cisco IOS Release 12.2(8)T
•WRED—Explicit Congestion Notification (ECN), Cisco IOS Release 12.2(8)T
•Modular QoS CLI (MQC) Unconditional Packet Discard, Cisco IOS Release 12.2(13)T
In addition to supporting the features listed above, the CBQoSMIB has been enhanced to provide support for the following functionality:
•Specifying the queue unit type in both the number of cells and bytes.
•Using the Multiprotocol Label Switching (MPLS) experimental (EXP) value in classifying, marking, and transmitting packets.
Also, the objects associated with the marking types currently supported by the MIB have been changed. Specifically, the marking type configured when using the set command has been changed to the bitmap (that is, BITS) type. This enhancement enables the MIB to record more than eight marking types.
For more information about the CBQoSMIB and to locate and download MIBs for selected platforms, Cisco IOS releases, and feature sets, use Cisco MIB Locator found at the following URL:
http://tools.cisco.com/ITDIT/MIBS/servlet/index
Crypto Conditional Debug Support
For detailed information about this feature, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123newft/123t/123t_2/gt_dbcry.htm
DHCP Lease Limit per ATM RBE Unnumbered Interface
For detailed information about this feature, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123newft/123t/123t_2/gtdhcpls.htm
DNS Proxy
In Virtual Private Network (VPN) or PPP over Ethernet (PPPoE) scenarios, the router on the LAN may act as a local Dynamic Host Configuration Protocol (DHCP) server and may receive requests for Domain Name System (DNS) server IP addresses from devices on the LAN. The DNS Proxy feature allows the router to send its own LAN address to devices that request DNS server IP addresses and to forward DNS queries to the real DNS servers after the WAN connection is established. The router can thus act as a proxy for devices on the LAN.
In forwarding DNS queries, the router caches the responses from the real DNS servers. Over time, the router's cache accumulates the DNS information most often requested, enabling the router to respond to most DNS queries coming from the LAN and reducing the packet overhead on the WAN interface.
In order for DNS Proxy to work, the router must obtain the IP address of the real DNS server from the WAN when the WAN connection is established.
The ip dns server global configuration command enables DNS Proxy server functionality on the router and causes the router to forward DNS queries to the actual DNS servers. The dns-server address global configuration command causes the router to respond to DNS queries with its own IP address.
DNS Spoofing
For detailed information about this feature, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123newft/123t/123t_2/gtdnsspf.htm
Easy VPN Server
For detailed information about this feature, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios122/122newft/122t/122t8/ftunity.htm
Embedded Syslog Manager
For detailed information about this feature, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123newft/123t/123t_2/gt_esm.htm
Encrypted Preshared Key
For detailed information about this feature, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123newft/123t/123t_2/gt_epsk.htm
End-of-Record Function for DCNs
For detailed information about this feature, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123newft/123t/123t_2/gteordcn.htm
Enhanced Voice and QoS for ADSL and G.SHDSL
For detailed information about this feature, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123newft/123t/123t_2/gtevqos.htm
File Download Using HTTP
For detailed information about this feature, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123newft/123t/123t_2/gt_hcopy.htm
Frame Relay—Multilink (MLFR-FRF.16)
The Multilink Frame Relay feature introduces functionality based on the Frame Relay Forum Multilink Frame Relay UNI/NNI Implementation Agreement (FRF.16). This feature provides a cost-effective way to increase bandwidth for particular applications by enabling multiple serial links to be aggregated into a single bundle of bandwidth. Multilink Frame Relay is supported on User-to-Network Interfaces (UNIs) and Network-to-Network Interfaces (NNIs) in Frame Relay networks.
Frame Relay Switched Virtual Circuits (SVC) over ISDN
The Frame Relay Switched Virtual Circuits over ISDN feature provides support for Frame Relay switched virtual circuits (SVCs) over ISDN BRI lines. Before the introduction of this feature, Frame Relay over ISDN supported Frame Relay permanent virtual circuits (PVCs) only. Frame Relay SVCs can be configured on dialer or BRI interfaces in the same way that SVCs are configured on serial interfaces.
For additional information on configuring Frame Relay and Frame Relay SVCs, see the "Configuring Frame Relay" chapter of the Cisco IOS Wide-Area Networking Configuration Guide at the following location:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123cgcr/wan_vcg.htm
GLBP MD5 Authentication
For detailed information about this feature, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123newft/123t/123t_2/gtglbpau.htm
Generic Routing Encapsulation Tunnel IP Source and Destination VRF Membership
For detailed information about this feature, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123newft/123t/123t_2/gtgrevrf.htm
Health Monitor and Diagnostic Monitor for the Cisco AS5850
For detailed information about this feature, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123newft/123t/123t_2/ft585hm.htm
Hot Standby Router Protocol (HSRP)
Hot Standby Router Protocol (HSRP) enables a set of routers to work together to present the appearance of a single virtual router or default gateway to the hosts on a LAN. HSRP is particularly useful in environments in which critical applications are running and fault-tolerant networks have been designed. By sharing an IP address and a MAC address, two or more routers that are acting as one virtual router are able to seamlessly assume the routing responsibility in the case of a defined event or an unexpected failure. This enables hosts on a LAN to continue forwarding IP packets to a consistent IP and MAC address so that the changeover of devices that are doing the routing is transparent to them and their sessions.
The routers in an HSRP configuration are known as an HSRP group or standby group. A single router selected from the group is responsible for forwarding the packets that hosts send to the virtual router. This router is known as the active router. Another router is selected as the standby router. If the active router fails, the standby router assumes the packet forwarding duties of the active router. Although an arbitrary number of routers may run HSRP, only the active router forwards the packets sent to the virtual router.
HSRP uses a priority scheme to determine which HSRP-configured router is to be the default active router. To configure a router as an active router, the router is assigned a priority that is higher than the priority of all the other HSRP-configured routers. The default priority is 100. If any of the routers is configured with a higher priority, those routers will be the active router.
HSRP works by the exchange of multicast messages that advertise priority among HSRP-configured routers. When the active router fails to send a hello message within a configured period of time, the standby router with highest priority becomes the active router. The transition of the packet-forwarding function between routers is completely transparent to all the hosts on the network.
HSRP-configured routers exchange three types of multicast messages.
•Hello—The hello messages convey to other HSRP routers the router's HSRP priority and state information. By default, an HSRP router sends hello messages every 3 seconds.
•Coup—When a standby router assumes the function of the active router, it sends a coup message.
•Resign—A router that is the active router sends this message when it is about to shut down or when a router with a higher priority sends a hello message.
At any time, HSRP-configured routers will be in one of the following states:
•Active—The router is performing packet-transfer functions.
•Standby—The router is ready to assume packet-transfer functions if the active router fails.
•Speaking and listening—The router is sending and receiving hello messages.
•Listening—The router is receiving hello messages.
HSRP MD5 Authentication
For detailed information about this feature, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123newft/123t/123t_2/gthsrpau.htm
Invalid Security Parameter Index Recovery
For detailed information about this feature, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123newft/123t/123t_2/gt_ispir.htm
ISDN Backup in MPLS Core
For detailed information about this feature, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123newft/123t/123t_2/gtisdnbk.htm
ISDN Type of Number to RADIUS Server
For detailed information about this feature, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123newft/123t/123t_2/gt_isdnt.htm
IS-IS Incremental SPF
For detailed information about this feature, see the following document:
IS-IS Mechanisms to Exclude Connected IP Prefixes from LSP Advertisements
For detailed information about this feature, see the following document:
IS-IS Support for Route Tags
For detailed information about this feature, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123newft/123t/123t_2/gtisitag.htm
L2TP Client-Initiated Tunneling
For detailed information about this feature, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123newft/123t/123t_2/gtvoltun.htm
L2TPv3: Layer 2 Tunnel Protocol Version 3
For detailed information about this feature, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123newft/123t/123t_2/gtl2tpv3.htm
Note The L2TPv3: Layer 2 Tunnel Protocol Version 3 feature is not currently supported on the Cisco 7200 NPE-G1 in Cisco IOS Release 12.3T.
Loadsharing IP Packets Over More Than Six Parallel Paths
For detailed information about this feature, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123newft/123t/123t_2/gt_mpg6.htm
Low Latency Queueing
Low latency queueing (LLQ) provides a low-latency, strict-priority transmit queue for Voice over IP (VoIP) traffic.
Memory and CPU Measurement
For detailed information about this feature, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123newft/123t/123t_2/gt_mmeas.htm
MGCP-Controlled Backhaul of BRI Signaling in Conjunction with Cisco CallManager
For detailed information about this feature, see the following document:
MGCP Support for CallManager (IP-PBX)
The MGCP Support for CallManager (IP-PBX) feature enables the Cisco IOS software on the Cisco 1751 and Cisco 1760 to interact with Cisco CallManager using Media Gateway Control Protocol (MGCP). It provides MGCP-based supplementary services, failover, redundancy, and multicast music on hold (MoH) support for CallManager.
Mobile IP
Mobile IP is an open standard, defined by the Internet Engineering Task Force (IETF) RFC 2002, that allows users to keep the same IP address, stay connected, and maintain ongoing applications while roaming between IP networks. Mobile IP is scalable for the Internet because it is based on IP—any media that can support IP can support Mobile IP.
Cisco IOS software and its support for Mobile IP provide the technology that enables an IP node's ability to retain the same IP address and maintain existing communications while traveling from one network to another.
Mobile IP eliminates a stop-and-start approach to IP connectivity that is required with network location changes, thus enabling users to maintain the same IP address regardless of their point of attachment to the network.
Mobile IP has the following three components:
1. Mobile Node
The Mobile Node is a device such as a cell phone, PDA, or laptop whose software enables network roaming capabilities.
2. Home Agent
The Home Agent is a router on the home network that serves as the anchor point for communication with the Mobile Node; it tunnels packets from a device on the Internet, called a Correspondent Node, to the roaming Mobile Node. (A tunnel is established between the Home Agent and a reachable point for the Mobile Node in the foreign network.)
3. Foreign Agent
The Foreign Agent is a router that can function as the point of attachment for the Mobile Node when it roams to a foreign network, delivering packets from the Home Agent to the Mobile Node.
The care-of address is the termination point of the tunnel toward the Mobile Node when it is on a foreign network. The Home Agent maintains an association between the home IP address of the Mobile Node and its care-of address, which is the current location of the Mobile Node on the foreign or visited network.
The Mobile IP process has three main phases:
1. Agent Discovery—A Mobile Node discovers its Foreign Agent and Home Agent during agent discovery.
2. Registration—The Mobile Node registers its current location with the Foreign Agent and Home Agent during registration.
3. Tunneling—A reciprocal tunnel is set up by the Home Agent to the care-of address (current location of the Mobile Node on the foreign network) to route packets to the Mobile Node as it roams.
Mobile IP uses a strong authentication scheme for security purposes. All registration messages between a Mobile Node and a Home Agent are required to contain the Mobile-Home Authentication Extension (MHAE).
Monitoring and Retraining on Reception of Loss of Margin Messages
For detailed information about this feature, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123newft/123t/123t_2/dsllom.htm
MPLS Label Switch Controller and Enhancements
For detailed information about this feature, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123newft/123t/123t_2/ftlsc32t.htm
NAT—dCEF Support
The NAT—dCEF Support feature enhances the overall performance of Route Switch Processors on Cisco 7500 series routers by enabling line cards to perform address translation. Without this feature, any Distributed Cisco Express Forwarding (dCEF) switched packet that needs address translation must be switched by the RSC (Route Switch Controller), which increases load and reduces system performance and throughput. With the NAT—dCEF Support feature, Network Address Translation (NAT) is implemented on the line card level so that address translation is carried out at the switching path.
In distributed switching, the switching process occurs on versatile interface processor (VIP) and other interface cards that support switching. When dCEF is enabled, line cards, such as VIP line cards or Gigabit Switch Router line cards, maintain an identical copy of the forwarding information base (FIB) and adjacency tables. The line cards perform the express forwarding between port adapters, relieving the RSC of involvement in the switching operation. dCEF uses an interprocess communication (IPC) mechanism to ensure synchronization of FIBs and adjacency tables on the RSC and line cards. The NAT—dCEF Support feature also enables line cards to maintain a subset of the RSC NAT table. This enables the line cards to switch packets and perform express forwarding within and between port adapters. Because embedded address translation cannot occur at the line card level, packets that require payload translation are punted to the next higher-level switching mechanism in the RSC.
NAT—SIP Support
Session Initiation Protocol (SIP) is an application-layer signaling protocol for creating and controlling multimedia sessions with two or more participants and a client/server protocol transported over TCP or UDP. The messages in the protocol might have IP addresses embedded in the packet payload. If a message passes through a router configured with NAT, the embedded information is translated and encoded back to the packet.
No configurations changes are needed for this feature. However, the SIP proxy server or user agent may sometimes listen to SIP messages in the nonstandard ports. The following global configuration command is used to change the configuration:
ip nat service sip tcp port number
The number argument is the port number on which the SIP proxy server will listen for SIP messages.
NAT—Support for H.323 v3 and v4 in v2 Compatibility Mode
H.323 is an ITU-T specification for transmitting audio, video, and data across a packet network. Four versions of the H.323 protocols are currently in use: v1, v2, v3, and v4. The NAT—Support for H.323 v3 and v4 in v2 Compatibility Mode feature enables Cisco Network Address Translation (NAT) routers to support messages coded in H.323 v3 and v4 when those messages contain fields compatible with H.323 v2. This feature does not add support for H.323 capabilities introduced in v3 and v4, such as new message types or new fields that require address translation.
NAT—Support of IP Phone to Cisco CallManager
Cisco IP phones use the Selsius Skinny Station Protocol to connect with and register to the Cisco CallManager. Messages flow back and forth that include IP address and port information used to identify other IP phone users with which a call can be placed.
To deploy Cisco IOS Network Address Translation (NAT) between the IP phone and the Cisco CallManager in a scalable environment, NAT needs to be able to detect the Selsius Skinny Station Protocol and understand the information passed within the messages.
When an IP phone attempts to connect to the Cisco CallManager and it matches the configured NAT translation rules, NAT will translate the original source IP address and replace it with one from the configured pool. This new address will be reflected in the Cisco CallManager and be visible to other IP phone users.
NAT listens on the default port of the Cisco CallManager to translate the Skinny messages. If the call manager uses a port other than the default port, that port needs to be configured, using the ip nat service skinny tcp port global configuration command. To disable the port, use the no form of this command. The syntax of this command is shown below:
ip nat service skinny tcp port number
no ip nat service skinny tcp port number
Online Certificate Status Protocol (OCSP)
For detailed information about this feature, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123newft/123t/123t_2/gt_ocsp.htm
OSPF Incremental SPF
For detailed information about this feature, see the following document:
OSPF Limit on Number of Redistributed Routes
For detailed information about this feature, see the following document:
OSPF Link-State Advertisement (LSA) Throttling
For detailed information about this feature, see the following document:
PAD Subaddress Formatting Option
For detailed information about this feature, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123newft/123t/123t_2/gtpadsfo.htm
PCR Support for the Cisco Signaling Link Terminal
For detailed information about this feature, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123newft/123t/123t_2/ftsltpcr.htm
Periodic MIB Data Collection and Transfer Mechanism
For detailed information about this feature, see the following document:
Persistent TDM Switched Circuits
For detailed information about this feature, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123newft/123t/123t_2/gttdmsw.htm
PPPoE over VLAN Enhancements: Configuration Limit Removal and ATM Support
For detailed information about this feature, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123newft/123t/123t_2/gtvlansc.htm
PPPoE Session Recovery After Reload
For detailed information about this feature, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123newft/123t/123t_2/gtppprec.htm
Random Sampled NetFlow
For detailed information about this feature, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123newft/123t/123t_2/nfstatsa.htm
RTP Header Compression over Satellite Links
For detailed information about this feature, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123newft/123t/123t_2/ftcrtprf.htm
SAA Support for Frame Relay, VoIP, and MPLS VPN Monitoring
For detailed information about this feature, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios122/122newft/122t/122t2/ft1csaa.htm
Service Assurance Agent (SAA)—MPLS VPN Path Jitter
The Service Assurance Agent (SAA)—MPLS VPN Path Jitter feature supports the use of the ICMP Path Jitter probe operation in an MPLS/VPN environment. ICMP Path Echo operations record statistics for each hop along the path that the operation takes to reach it destination. The ICMP Path Echo operation computes this hop-by-hop response time between a Cisco router and any IP device on the network by discovering the path using traceroute. ICMP Path Jitter uses multiple ICMP packets to determine jitter and packet loss on a hop-by-hop basis.
This feature allows you to specify a Virtual Private Network (VPN) forwarding table for a Path Echo operation using the vrfName command in SAA PathJitter configuration mode. The ICMP Path Jitter operation records statistics for each hop along the path to the destination.
Show Command Section Filter
For detailed information about this feature, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123newft/123t/123t_2/gtshfltr.htm
SNMP linkDown Trap Limiting
This enhancement provides for the correlation of linkDown traps based on layering. When a channelized interface goes down, in addition to the linkDown trap on the main channelized interface, there will be a flood of linkDown traps of all channel interfaces configured on the main channelized interface. A new command line interface (CLI) command, snmp ifmib trap throttle, limits the linkDown Simple Network Management Protocol (SNMP) notifications that are generated for a channel group.
SNMP Support for Named Access Lists
For detailed information about this feature, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123newft/123t/123t_2/gtsnmpal.htm
SNMP Support over VPNs—Context Based Access Control
For detailed information about this feature, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123newft/123t/123t_2/gtsnmpvp.htm
SNMP v1/v2c PDU Conversions for Proxy Forwarder (RFC 2576)
The SNMP v1/v2c PDU Conversions for Proxy Forwarder feature brings all images and platforms that include the SNMP Proxy subsystem (sub_snmp_proxy.o) into partial compliance with RFC 2576. RFC 2576 defines coexistence between three versions of the Internet-standard Network Management Framework: SNMPv3, SNMPv2, and SNMPv1. The only exception to full compliance with RFC 2576 is that this release of Cisco IOS software does not yet support version translations for Simple Network Management Protocol (SNMP) notifications.
Source Specific Multicast (SSM) Mapping
For detailed information about this feature, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123newft/123t/123t_2/gtssmma.htm
Token Ring Inter-Switch Link (TRISL)
As of Cisco IOS Release 12.3(2)T, the Token Ring Inter-Switch Link (TRISL) feature has been removed from Cisco IOS software.
Virtual Auxiliary Port Feature and Configuration of DSL Settings
For detailed information about this feature, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123newft/123t/123t_2/vauxdsl.htm
VPDN MIB Enhancements for per-VRF Session Counting
An extension has been added to the virtual private dialup network (VPDN) CISCO-VPDN-MGMT-MIB that returns the total number of active sessions for each VPDN template. For customers that associate a VPDN template to each VPN routing and forwarding (VRF) instance, this MIB extension provides a way to monitor session usage per VRF.
Service providers can terminate sessions from multiple customer accounts on the same L2TP network server (LNS). The sharing of the LNS is done by creating one VRF per customer. Session limits on VPDN templates and VPDN groups are configured to control the allocation of sessions among customers and among users within the same customer account. A VPDN template is associated with each VRF, and its session limit restricts the total number of sessions for a customer account. Within that account, users may be assigned to different VPDN groups as their access requirements dictate. Session limits on VPDN groups further control the allocation of customer sessions among its users. In such a setup, the service provider must use the Simple Network Management Protocol (SNMP) to retrieve the total number of active sessions per customer to monitor their usage on the LNS.
Prior to the introduction of this MIB enhancement, only the total number of sessions on the LNS across all customer accounts could be retrieved through SNMP. This enhancement extends the CISCO-VPDN-MGMT-MIB to include a read-only table of VPDN template entries, with each entry reporting the number of active sessions across all VPDN groups that are associated with that template. The table entries can be accessed individually using GET requests or consecutively using repeated GET-NEXT requests.
VRRP Object Tracking
For detailed information about this feature, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123newft/123t/123t_2/gtvrrptk.htm
Warm Reload
For detailed information about this feature, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123newft/123t/123t_2/gtwrmrbt.htm
X.25 Call Confirm Packet Address Control
For detailed information about this feature, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123newft/123t/123t_2/gtx25adc.htm
X.25 Data Display Trace
For detailed information about this feature, see the following document:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123newft/123t/123t_2/gtx25ddt.htm
MIBs
To locate and download MIBs for selected platforms, Cisco IOS releases, and feature sets, use Cisco MIB Locator found at the following URL:
http://tools.cisco.com/ITDIT/MIBS/servlet/index
If Cisco MIB Locator does not support the MIB information that you need, you can also obtain a list of supported MIBs and download MIBs from the Cisco MIBs page at the following URL:
http://www.cisco.com/public/sw-center/netmgmt/cmtk/mibs.shtml
To access Cisco MIB Locator, you must have an account on Cisco.com. If you have forgotten or lost your account information, send a blank e-mail to cco-locksmith@cisco.com. An automatic check will verify that your e-mail address is registered with Cisco.com. If the check is successful, account details with a new random password will be e-mailed to you. Qualified users can establish an account on Cisco.com by following the directions found at this URL:
http://tools.cisco.com/RPF/register/register.do
Deprecated and Replacement MIBs
Old Cisco MIBs will be replaced in a future release. Currently, OLD-CISCO-* MIBs are being converted into more scalable MIBs without affecting existing Cisco IOS products or network management system (NMS) applications. You can update from deprecated MIBs to the replacement MIBs as shown in Table 16.
Limitations and Restrictions
SNMP Version 1 BGP4-MIB Limitations
You may notice incorrect BGP trap OID output when using the SNMP version 1 BGP4-MIB that is available for download at ftp://ftp.cisco.com/pub/mibs/v1/BGP4-MIB-V1SMI.my. When a router sends out BGP traps (notifications) about state changes on an SNMP version 1 monitored BGP peer, the enterprise OID is incorrectly displayed as .1.3.6.1.2.1.15 (bgp) instead of .1.3.6.1.2.1.15.7 (bgpTraps). The problem is not due to any error with Cisco IOS software. This problem occurs because the BGP4-MIB does not follow RFC 1908 rules regarding version 1 and version 2 trap compliance. This MIB is controlled by IANA under the guidance of the IETF, and work is currently in progress by the IETF to replace this MIB with a new version that represents the current state of the BGP protocol. In the meantime, we recommend that you use the SNMP version 2 BGP4-MIB or the CISCO-BGP4-MIB to avoid an incorrect trap OID.
Use of Cisco CME and Cisco Unity Express GUI Leads to Cisco 1760 Instability in Cisco IOS Release 12.3(8)T and 12.3(11)T
Use of Cisco CallManager Express (CME) GUI interface configured on a Cisco 1760 may lead to data corruption and system instability when certain commands are issued, such as configuring system-wide parameters or resetting all IP phones. These problems can also occur with the use of the Cisco Unity Express GUI interface when it is interworking with Cisco CME. No problems have been found with using the Cisco CME or Cisco Unity Express GUI for individual ephone configuration or other end-user provisioning.
Important Notes
The following sections contain important notes about Cisco IOS Release 12.3T.
•Important Notes for Cisco IOS Release 12.3T
•Important Notes for Cisco IOS Release 12.3(14)T
•Important Notes for Cisco IOS Release 12.3(7)T
•Important Notes for Cisco IOS Release 12.3(2)T2
•Important Notes for Cisco IOS Release 12.3(2)T1
•Important Notes for Cisco IOS Release 12.3(2)T
Deferrals
Cisco IOS software images are subject to deferral. Cisco recommends that you view the deferral notices at the following location to determine if your software release is affected:
http://www.cisco.com/public/sw-center/sw-ios-advisories.shtml
Field Notices and Bulletins
For general information about the types of documents listed in this section, see the following locations:
•Field Notices—Cisco recommend that you view the field notices for this release to see if your software or hardware platforms are affected. If you have an account on Cisco.com, you can find field notices at http://www.cisco.com/public/support/tac/fn_index.html. If you do not have a Cisco.com login account, you can find field notices at http://www.cisco.com/public/support/tac/fn_index.html.
•Product Bulletins—Product Bulletins—You can find product bulletins at http://www.cisco.com/warp/public/cc/general/bulletin/iosw/index.shtml.
•What's Hot in Software Center—What's Hot in Software Center provides information about caveats that are related to deferred software images. If you have an account on Cisco.com, you can access What's Hot for IOS Releases at http://www.cisco.com/public/sw-center/sw-ios.shtml or by logging in and selecting Software Center: Cisco IOS Software: What's Hot for IOS Releases.
•What's New for IOS—What's New for IOS lists Cisco IOS software releases that have been recently posted and software releases that have been removed from Cisco.com. If you have an account on Cisco.com, you can access What's New for IOS at http://www.cisco.com/public/sw-center/sw-ios.shtml or by logging in and selecting Software Center: Cisco IOS Software: What's New for IOS.
Important Notes for Cisco IOS Release 12.3T
The following information applies to all releases of Cisco IOS Release 12.3T.
Configuring MD5 Authentication for BGP Peering Sessions
This document provides general information about deploying MD5 authentication for a BGP session. You can configure MD5 authentication between two BGP peers, meaning that each segment sent on the TCP connection between the peers is verified. MD5 authentication must be configured with the same password on both BGP peers; otherwise, the connection between them will not be made. Configuring MD5 authentication causes the Cisco IOS software to generate and check the MD5 digest of every segment sent on the TCP connection. If authentication is invoked and a segment fails authentication, then an error message will be displayed in the console.
Old Behavior
In previous versions of Cisco IOS software, configuring MD5 authentication for a BGP peering session was generally considered to be difficult because the initial configuration and any subsequent MD5 configuration changes required the BGP neighbor to be reset.
New Behavior
This behavior has been changed in current versions of Cisco IOS software. CSCdx23494 introduced a change to MD5 authentication for BGP peering sessions. The BGP peering session does not need to be reset to maintain or establish the peering session for initial configuration or after the MD5 configuration has been changed. However, the configuration must be completed on both the local and remote BGP peer before the BGP hold timer expires. If the hold down timer expires before the MD5 configuration has been completed on both BGP peers, the BGP session will time out.
The following example enables the authentication feature between this router and the BGP neighbor at 10.108.1.1. The password that must also be configured for the neighbor is bla4u00=2nkq. The remote peer must be configured before the holddown timer expires.
router bgp 109neighbor 10.108.1.1 password bla4u00=2nkq
When the password has been configured, the MD5 key is applied to the tcp session immediately. If one peer is configured before the other, the TCP segments will be discarded on both the local and remote peers due to an authentication failure. The peer that is configured with the password will print an error message in the console similar to the following:
00:03:07: %TCP-6-BADAUTH: No MD5 digest from 10.0.0.2(179) to 10.0.0.1(11000)The time period in which the password must changed is typically the life time of a stale BGP session. When the password or MD5 key is configured, incoming TCP segments will only be accepted if the key is known. If the key is unknown on both the remote and local peer, the TCP segments will be dropped, and the BGP session will time out when the holddown timer expires.
If the BGP session has been preconfigured with a hold time of 0 seconds, no keepalive messages will be sent. The BGP session will stay up until one of the peers, on either side, tries to transmit a message (For example, a prefix update).
Note Configuring a new timer value for the holddown timer will only take effect after the session has been reset. So, it is not possible to change the configuration of the holddown timer to avoid resetting the BGP session.
Important Notes for Cisco IOS Release 12.3(14)T
The following information applies to Cisco IOS Release 12.3(14)T.
Cisco Catalyst 6500 Series and the Cisco 7600 Series Communication Media Module
Release Upgrade Notice
The CMM wscmm-i6s-mz.123-14.T image contains a new bundle 4.4.X DSPware infrastructure. Once downloaded, this software will perform an automatic FPGA upgrade to version 10 (hex 0xA) in order to take advantage of the new bundle 4.4.X DSPware infrastructure.
After the upgrade, power cycling CMM is required. If you have an ACT module on CMM, you must reconfigure the ACT module with the new FastEthernet interface instead of Ethernet. Any other CMM release before wscmm-i6s-mz.123-14.T image will require an automatic bundle FPGA upgrade to version 10 (hex 0xA).
The ACT module supports the following features.
Supported Features for WS-SVC-CMM-ACT Capacity per ACTMaximum channels for conference
128
Maximum channels for transcoding
128
Maximum channels for MTP
5121
Maximum port adapters for CMM
4
Maximum capacity for CMM
512 conference or transcode, 2048 MTP channels2
Largest conference size
64 parties
Voice codecs
G.711 mu-law and a-law, G.729, G.723
Packetization
10, 20, 30, 60 ms
Protocols
SCCP with Cisco CallManager
Maximum number of conferences
643
1 Requires two channels per session.
2 With MTP-only mode at G.711.
3 With two-party MeetMe conference with Cisco CallManager (typical ad-hoc conference has three parties).
Detailed Installation and Configuration Procedures
For detailed installation and configuration procedures, see the Catalyst 6500 Series and Cisco 7600 Series CMM Installation and Configuration Note at the following URL:
http://www.cisco.com/univercd/cc/td/doc/product/lan/cat6000/cfgnotes/78_14107.htmFor detailed information on automatically upgrading and downgrading feature cards FPGA, see the Release Notes for the Cisco Catalyst 6500 Series and the Cisco 7600 Series Communication Media Module for Cisco IOS Release 12.3(8)XY at the following URL:
http://www.cisco.com/univercd/cc/td/doc/product/lan/cat6000/relnotes/ol_6314.htm
Important Notes for Cisco IOS Release 12.3(7)T
The following information applies to Cisco IOS Release 12.3(7)T.
debug vwic-mft firmware controller Command
To display debug output from the multiflex (MFT) Voice/WAN interface card (VWIC) controller firmware, use the debug vwic-mft firmware controller command in privileged EXEC mode. To turn off debugging output, use the no form of this command.
debug vwic-mft firmware controller {t1 | e1} slot/port {alarm | all | config | fdl | loopback | register display | status}
no debug vwic-mft firmware controller {t1 | e1} slot/port {alarm | all | config | fdl | loopback | register display | status}
Syntax Description
Command Modes
Privileged EXEC
Command History
Release Modification12.3(6)
This command was introduced.
12.3(7)T
This command was integrated into Cisco IOS Release 12.3(7)T.
Usage Guidelines
Use the debug vwic-mft firmware controller command in privileged EXEC mode to provide firmware-level information for VWICs when information is required beyond the Cisco IOS T1 and E1 controller statistics. The physical-layer information generated by this command includes alarm conditions, line status, controller issues, and register settings, all of which can be used to help troubleshoot MFT VWIC problems.
All the debugging keywords, except register display, enable debugging on both ports of a 2-port card. For example, if T1 0/0 and T1 0/1 are two ports on a 2-port MFT card and any of the keywords except register display is enabled, debugging output will be generated for both ports because they share a common firmware system.
The Cisco 1- and 2-port T1/E1 multiflex VWICs support voice and data applications in Cisco 2600, Cisco 3600, and Cisco 3700 series multiservice routers. The multiflex VWIC combines WAN interface card and voice interface card functionality.
Caution Use any debugging command with caution because the volume of output generated can slow or stop the router operations. We recommend that this command be used only under the supervision of a Cisco engineer.
Examples
The following sample output displays firmware output about alarm messages for an MFT VWIC installed in slot 0.
Router# debug vwic-mft firmware controller e1 0/0 alarm
vwic-mft firmware output messages for wic slot set to: AlarmRouter#*Mar 4 13:58:14.702: E1T1 0/1 FW: alm1:0e p:01 ALOS LOS LOF*Mar 4 13:58:15.194: E1T1 0/1 FW: CERR: 00*Mar 4 13:58:15.194: E1T1 0/1 FW: MERR: 00*Mar 4 13:58:15.194: E1T1 0/1 FW: FERR: 00
Note The output will vary depending on what the router is configured to do after the debug command is entered.
Table 17 describes the significant fields shown in the display.
Related Commands
show controllers e1
Displays information about E1 links.
show controllers t1
Displays information about T1 links.
Important Notes for Cisco IOS Release 12.3(2)T2
The following information applies to Cisco IOS Release 12.3(2)T2.
Cisco Platforms Deferred Because of Caveat CSCin45859
Three platforms in Cisco IOS Release 12.3(2)T, Release 12.3(2)T1, and Release 12.3(2)T2 were deferred due to a severe defect. This defect has been assigned Cisco caveat CSCin45859 (Headline: MALLOCFAIL observed on CM console while doing sweep ping). This caveat affects the following platforms:
•CVA120 Series Cable Voice Adapter
•uBR905 Cable Access Routers
•uBR925 Cable Access Routers
The software solution for these deferred images is Cisco IOS Release 12.3(5).
To increase network availability, Cisco recommends that you upgrade affected Cisco IOS images with the suggested replacement software images. Cisco will discontinue manufacturing shipment of affected Cisco IOS images. Any pending order will be substituted by the replacement software images.
Note Failure to upgrade the affected Cisco IOS images may result in network downtime.
The terms and conditions that governed your rights and obligations and those of Cisco with respect to the deferred images will apply to the replacement images.
Important Notes for Cisco IOS Release 12.3(2)T1
The following information applies to Cisco IOS Release 12.3(2)T1.
mgcp behavior Command
A new command, mgcp behavior auep v0.1, has been introduced in this release. This command forces a voice gateway using MGCP to follow MGCP 0.1 protocol when replying to an Audit Endpoint (AUEP) command. If the mgcp behavior auep v0.1 command is used, an AUEP on an out-of-service endpoint results in a return code of 501. All other MGCP functionality continues to behave according to the MGCP version specified by the mgcp call-agent command in the gateway configuration. For more information, see the Cisco IOS Voice Command Reference, Release 12.3T, at the following location:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios123/123tcr/123tvr/index.htm
Cisco Images Deferred Because of Caveat CSCec23720
Four images in Cisco IOS Release 12.3(2)T and Release 12.3(2)T1 were deferred due to a severe defect. This defect has been assigned Cisco caveat CSCec23720. This caveat affects the following images:
•c5850tb-boot-mz
•c5850tb-k8p9-mz
•c5850tb-k9p9-mz
•c5850tb-p9-mz
The software solution for these deferred images is Cisco IOS Release 12.3(2)T2.
To increase network availability, Cisco recommends that you upgrade affected Cisco IOS images with the suggested replacement software images. Cisco will discontinue manufacturing shipment of affected Cisco IOS images. Any pending order will be substituted by the replacement software images.
Note Failure to upgrade the affected Cisco IOS images may result in network downtime.
The terms and conditions that governed your rights and obligations and those of Cisco with respect to the deferred images will apply to the replacement images.
Cisco Platforms Deferred Because of Caveat CSCin45859
Three platforms in Cisco IOS Release 12.3(2)T, Release 12.3(2)T1, and Release 12.3(2)T2 were deferred due to a severe defect. This defect has been assigned Cisco caveat CSCin45859 (Headline: MALLOCFAIL observed on CM console while doing sweep ping). This caveat affects the following platforms:
•CVA120 Series Cable Voice Adapter
•uBR905 Cable Access Routers
•uBR925 Cable Access Routers
The software solution for these deferred images is Cisco IOS Release 12.3(5).
To increase network availability, Cisco recommends that you upgrade affected Cisco IOS images with the suggested replacement software images. Cisco will discontinue manufacturing shipment of affected Cisco IOS images. Any pending order will be substituted by the replacement software images.
Note Failure to upgrade the affected Cisco IOS images may result in network downtime.
The terms and conditions that governed your rights and obligations and those of Cisco with respect to the deferred images will apply to the replacement images.
Important Notes for Cisco IOS Release 12.3(2)T
The following information applies to Cisco IOS Release 12.3(2)T.
Cisco Images Deferred Because of Caveat CSCec23720
Four images in Cisco IOS Release 12.3(2)T and Release 12.3(2)T1 were deferred due to a severe defect. This defect has been assigned Cisco caveat CSCec23720. This caveat affects the following images:
•c5850tb-boot-mz
•c5850tb-k8p9-mz
•c5850tb-k9p9-mz
•c5850tb-p9-mz
The software solution for these deferred images is Cisco IOS Release 12.3(2)T2.
To increase network availability, Cisco recommends that you upgrade affected Cisco IOS images with the suggested replacement software images. Cisco will discontinue manufacturing shipment of affected Cisco IOS images. Any pending order will be substituted by the replacement software images.
Note Failure to upgrade the affected Cisco IOS images may result in network downtime.
The terms and conditions that governed your rights and obligations and those of Cisco with respect to the deferred images will apply to the replacement images.
Cisco Platforms Deferred Because of Caveat CSCin45859
Three platforms in Cisco IOS Release 12.3(2)T, Release 12.3(2)T1, and Release 12.3(2)T2 were deferred due to a severe defect. This defect has been assigned Cisco caveat CSCin45859 (Headline: MALLOCFAIL observed on CM console while doing sweep ping). This caveat affects the following platforms:
•CVA120 Series Cable Voice Adapter
•uBR905 Cable Access Routers
•uBR925 Cable Access Routers
The software solution for these deferred images is Cisco IOS Release 12.3(5).
To increase network availability, Cisco recommends that you upgrade affected Cisco IOS images with the suggested replacement software images. Cisco will discontinue manufacturing shipment of affected Cisco IOS images. Any pending order will be substituted by the replacement software images.
Note Failure to upgrade the affected Cisco IOS images may result in network downtime.
The terms and conditions that governed your rights and obligations and those of Cisco with respect to the deferred images will apply to the replacement images.
Cisco Images Deferred Because of Caveat CSCec26950
Ten images in Cisco IOS Release 12.3(2)T were deferred due to caveat CSCec26950. This caveat affects the following images:
•c5350-jk8su2-mz
•c5350-jk9su2-mz
•c5400-jk8su2-mz
•c5400-jk9su2-mz
•c5850-k8p9u2-mz
•c5850-k9p9u2-mz
•c5850-p9u2-mz
•c5850tb-k8p9u2-mz
•c5850tb-k9p9u2-mz
•c5850tb-p9u2-mz
Cisco IOS Packaging
Cisco IOS Packaging redefines and simplifies the current Cisco IOS software feature sets. Cisco greatly improves the customer software selection experience by reducing the number of packages from 44 to 8. The first four packages have been designed to satisfy requirements in four typical service categories: IP data, converged voice and data, security and VPN, and enterprise routing protocols. Three additional premium packages offer new Cisco IOS software feature combinations that address more complex network requirements. All features merge in the most premium package, Advanced Enterprise Services, which integrates support for all routing protocols with voice, security and VPN capabilities.
Feature inheritance is another powerful aspect of Cisco IOS Packaging. Once a feature is introduced, it is not removed in the more comprehensive packages. Feature inheritance principle provides clear migration, clarifying the feature content of the different packages and how they relate to one another.
Cisco IOS Packaging also simplifies image naming. Each name has been designed to effectively convey the high-level feature content of, and the inheritance characteristics for, the new packages.
Cisco IOS Packaging is available for customers in Cisco IOS software major Release 12.3. It will be supported on the Cisco 1700, Cisco 2600, and Cisco 3700 series routers. Most Cisco access, aggregation, and core routers will support this model in the future.
For additional information about Cisco IOS Packaging, see the following product bulletin:
http://www.cisco.com/warp/public/732/releases/packaging/docs/pb.pdf89
Caveats for Cisco IOS Release 12.3T
Caveats describe unexpected behavior in Cisco IOS software releases. Severity 1 caveats are the most serious caveats; severity 2 caveats are less serious. Severity 3 caveats are moderate caveats, and only select severity 3 caveats are included in the caveats document.
For information on caveats in Cisco IOS Release 12.3T, see the Caveats for Cisco IOS Release 12.3T document, which lists severity 1 and 2 caveats and select severity 3 caveats for Cisco IOS Release 12.3T and is located on Cisco.com.
The Dictionary of Internetworking Terms and Acronyms contains definitions of acronyms that are not defined in this document:
http://www.cisco.com/univercd/cc/td/doc/cisintwk/ita/index.htm
Note If you have an account on Cisco.com, you can use the Bug Toolkit to find caveats of any severity for any release. To access the Bug Toolkit, log in to Cisco.com and click Service & Support: Software Center: Cisco IOS Software: BUG TOOLKIT. Another option is to go to http://www.cisco.com/pcgi-bin/Support/Bugtool/launch_bugtool.pl. (If the defect that you have requested cannot be displayed, this may be due to one or more of the following reasons: the defect number does not exist, the defect does not have a customer-visible description yet, or the defect has been marked Cisco Confidential.)
Troubleshooting
The following documents provide assistance with troubleshooting your Cisco hardware and software:
•Hardware Troubleshooting Index Page at:
http://www.cisco.com/warp/public/108/index.shtml
•Troubleshooting Bus Error Exceptions at:
http://www.cisco.com/en/US/products/sw/iosswrel/ps1831/products_tech_note09186a00800cdd51.shtml
•Why Does My Router Lose Its Configuration During Reboot? at:
http://www.cisco.com/warp/public/63/lose_config_6201.html
•Troubleshooting Router Hangs at:
http://www.cisco.com/warp/public/63/why_hang.html
•Troubleshooting Memory Problems - SYS-2-MALLOCFAIL at:
http://www.cisco.com/warp/public/63/mallocfail.shtml
•Troubleshooting High CPU Utilization on Cisco Routers at:
http://www.cisco.com/warp/public/63/highcpu.html
•Troubleshooting Router Crashes at:
http://www.cisco.com/warp/public/122/crashes_router_troubleshooting.shtml
•Using CAR During DOS Attacks at:
http://www.cisco.com/warp/public/63/car_rate_limit_icmp.html