Release Notes for Cisco RF Gateway 10 in Cisco IOS Release 12.2SQ
Available Languages
Table of Contents
Release Notes for Cisco RF Gateway 10 in Cisco IOS Release 12.2SQ
Overview of CiscoRF Gateway 10 UEQAM Platform
Determining the Software Version
New Hardware Features in Cisco IOS Release 12.2(50)SQ7
New Hardware Features in Cisco IOS Release 12.2(50)SQ6
New Hardware Features in Cisco IOS Release 12.2(50)SQ5
New Hardware Features in Cisco IOS Release 12.2(50)SQ4
New Hardware Features in Cisco IOS Release 12.2(50)SQ3
New Hardware Features in Cisco IOS Release 12.2(50)SQ2
New Hardware Features in Cisco IOS Release 12.2(50)SQ1
New Hardware Features in Cisco IOS Release 12.2(50)SQ
New Hardware Features in Cisco IOS Release 12.2(44)SQ2
New Hardware Features in Cisco IOS Release 12.2(44)SQ
Cisco RF Gateway 10 Universal Edge QAM Chassis
Cisco RFGW-10 DS-48 Universal EQAM Line Card
Cisco RF Gateway 10 Supervisor Engine V-10GE
New Software Features in Cisco IOS Release 12.2(50)SQ7
New Software Features in Cisco IOS Release 12.2(50)SQ6
New Software Features in Cisco IOS Release 12.2(50)SQ5
New Software Features in Cisco IOS Release 12.2(50)SQ4
New Software Features in Cisco IOS Release 12.2(50)SQ3
New Software Features in Cisco IOS Release 12.2(50)SQ2
New Software Features in Cisco IOS Release 12.2(50)SQ1
Pass-through Video Session Enhancements
New Software Features in Cisco IOS Release 12.2(50)SQ
Supervisor Stateful Switchover
Video Control Plane with Generic QAM Interface (GQI)
1:1 and 1:N DS-48 Line Card Redundancy for Video and DEPI
New Software Features in Cisco IOS Release 12.2(44)SQ2
Bundled Image upgrade enhancements
New Software Features in Cisco IOS Release 12.2(44)SQ1
New Software Features in Cisco IOS Release 12.2(44)SQ
Universal Edge Quadrature Amplitude Modulation
M-CMTS DOCSIS MPEG Transport Manual Mode
1:1 and 1:N DS-48 Line Card Redundancy
1:1 Supervisor Card Redundancy
1:1 Timing, Communication and Control (TCC) Card Redundancy
Open Caveats for Cisco IOS Release 12.2(50)SQ7
Resolved Caveats for Cisco IOS Release 12.2(50)SQ7
Open Caveats for Cisco IOS Release 12.2(50)SQ6
Resolved Caveats for Cisco IOS Release 12.2(50)SQ6
Open Caveats for Cisco IOS Release 12.2(50)SQ5
Resolved Caveats for Cisco IOS Release 12.2(50)SQ5
Open Caveats for Cisco IOS Release 12.2(50)SQ4
Resolved Caveats for Cisco IOS Release 12.2(50)SQ4
Open Caveats for Cisco IOS Release 12.2(50)SQ3
Resolved Caveats for Cisco IOS Releases 12.2(50)SQ3
Open Caveats for Cisco IOS Release 12.2(50)SQ2
Resolved Caveats for Cisco IOS Releases 12.2(50)SQ2
Open Caveats for Cisco IOS Release 12.2(50)SQ1
Resolved Caveats for Cisco IOS Releases 12.2(50)SQ1
Open Caveats for Cisco IOS Release 12.2(50)SQ
Resolved Caveats for Cisco IOS Release 12.2(50)SQ
Open Caveats for Cisco IOS Release 12.2(44)SQ2
Resolved Caveats for Cisco IOS Release 12.2(44)SQ2
Open Caveats for Cisco IOS Release 12.2(44)SQ1
Resolved Caveats for Release 12.2(44)SQ1
Open Caveats for Cisco IOS Release 12.2(44)SQ
Resolved Caveats for Cisco IOS Release 12.2(44)SQ
Cisco IOS Software Documentation Set
Obtaining Documentation and Submitting a Service Request
Release Notes for Cisco RF Gateway 10 in Cisco IOS Release 12.2SQ
Last Updated: December 22, 2014
The Cisco RF Gateway 10 (RFGW-10) is a Universal Edge Quadrature Amplitude Modulation (UEQAM) platform in the Cisco RF Gateway series introduced in Cisco IOS Release 12.2(44)SQ. These release notes for the Cisco RF Gateway 10 describe the features and caveats for all releases in the Cisco IOS Release 12.2SQ train.
These release notes are updated with each release in the train. For a list of the caveats that apply to this release, see the “Caveats” section.
To download and upgrade to the new ROMMON image for the Cisco RFGW-10, see the ROMMON Release Notes for Cisco RF Gateway 10.
Cisco recommends that you view the field notices for this release to see if your software or hardware platforms are affected. If you have an account on Cisco.com, you can find field notices at: http://www.cisco.com/en/US/support/tsd_products_field_notice_summary.html.
For information on new features and the Cisco IOS documentation set supported, see the “New and Changed Information” section and the “Related Documentation” section.
Contents
- Overview of Cisco RF Gateway 10 UEQAM Platform
- System Requirements
- New and Changed Information
- Important Notes
- Caveats
- Related Documentation
- Obtaining Documentation and Submitting a Service Request
Note
Use the service internal command on the Cisco RFGW-10 only for system debugging and troubleshooting purposes. This command should not be used in normal operation mode.
Overview of Cisco RF Gateway 10 UEQAM Platform
The Cisco RFGW-10 is a carrier-class Universal Edge QAM (UEQAM) platform that offers concurrent support for standard and high-definition digital broadcast television, Switched Digital Video (SDV), Video on Demand (VoD), and DOCSIS/Modular CMTS services. It is a chassis-based product based on open standards with superior performance, capacity, power consumption, ease of management, and scalability. All components of the Cisco RFGW-10 are designed for high availability, including dual Supervisor and Ethernet switching line cards, 1:N Universal Edge QAM line cards, dual timing, communication and control (TCC) line cards, dual load balancing and load sharing DC PEMs and integrated RF switching modules.
The Cisco RFGW-10 is targeted to cable operators worldwide, and is optimized for operators requiring carrier-class high availability solutions and wanting to collapse video and data over cable EQAM systems into a common platform. A collapsed Universal EQAM architecture achieves the following business benefits: EQAM resource utilization gains, cost efficiencies, rack space optimization, reduced cost and complexity of management, and high availability for all services. The Cisco RFGW-10 is part of the Cisco cable ecosystem, and is fully integrated and tested as part of the Cisco Digital Broadband Delivery System (DBDS) video solution and the Cisco uBR10012 DOCSIS 3.0 and Modular CMTS solution.
The Cisco RFGW-10 is a centralized switching architecture leveraged from the Cisco Catalyst 4500 Series switches. The Cisco RFGW-10 is a 13-rack unit, modular chassis designed for providing front-to-back airflow and system-level redundancy. All chassis components are hot-swappable and redundant. The chassis supports “wire-once” cabling for RF line cards and an integrated dual-zone RF switch matrix. The Supervisor engine provides non-blocking, robust Layer 2 to Layer 4 switching with the addition of wire-speed 10-Gigabit Ethernet uplinks, 136 Gbps capacity, and 102 mpps packet throughput.
The Cisco RFGW-10 system is a UEQAM platform that supports both upstream and downstream RF line cards over a frequency range of 5 MHz to 1.2 GHz. The initial line card release is a UEQAM downstream card that supports the DOCSIS (1.0/2.0/3.0), the EURODOCIS, and J-DOCSIS specifications. Additionally, the RF line card supports high definition digital broadcast television, Switched Digital Video (SDV), and Video on Demand (VoD) video delivery.
Based on the Cisco IOS networking software, the Cisco RFGW-10 supports advanced switching and routing features. The platform supports full upgradeability, ensuring investment protection as software enhancements and industry standards continue to evolve.
System Requirements
This section describes the system requirements for Cisco IOS Release 12.2SQ series and includes the following sections:
Hardware Supported
Table 1 provides information on the hardware supported on the Cisco RFGW-10.
Software Compatibility
The Cisco RF Gateway 10 is supported by the 12.2(44)SQ and 12.2(50)SQ release trains. Cisco IOS Release 12.2(44)SQ is the first deployment release of the Cisco RFGW-10. It is based on Cisco IOS Release 12.2(44)SG1 for the Cisco Catalyst 4500 platform. The Cisco RFGW-10 and Catalyst 4500 share common Cisco IOS software on the Supervisor card. Therefore, there is IOS feature parity in Cisco IOS Release 12.2(44)SQ with release 12.2(44)SG1. The Cisco RFGW-10 features are supported only on Cisco IOS Release 12.2(44)SQ.
Cisco IOS Release 12.2(50)SQ is based on Cisco IOS Release 12.2(50)SG4 for the Cisco Catalyst 4500 platform. Therefore, Cisco IOS Release 12.2(50)SQ has IOS feature parity with Cisco IOS Release 12.2(50)SG4. The Cisco IOS Release 12.2(50)SQ1 and later provide Cisco RFGW-10 specific features as described in this document.
Determining the Software Version
To determine the version of Cisco IOS software running on the Cisco RFGW-10 platform, log in to the platform and enter the show version EXEC command.
Below is an example of the output from the show version command:
Feature Set Tables
Table 2 provides a summary of the features supported in the Cisco IOS Release 12.2SQ release train.
New and Changed Information
These sections list the new and existing hardware and software features supported by the Cisco RFGW-10.
New Hardware Features in Cisco IOS Release 12.2(50)SQ7
There are no new hardware features supported in the Cisco IOS Release 12.2(50)SQ7.
New Hardware Features in Cisco IOS Release 12.2(50)SQ6
There are no new hardware features supported in the Cisco IOS Release 12.2(50)SQ6.
New Hardware Features in Cisco IOS Release 12.2(50)SQ5
There are no new hardware features supported in the Cisco IOS Release 12.2(50)SQ5.
New Hardware Features in Cisco IOS Release 12.2(50)SQ4
There are no new hardware features supported in the Cisco IOS Release 12.2(50)SQ4.
New Hardware Features in Cisco IOS Release 12.2(50)SQ3
There are no new hardware features supported in the Cisco IOS Release 12.2(50)SQ3.
New Hardware Features in Cisco IOS Release 12.2(50)SQ2
There are no new hardware features supported in the Cisco IOS Release 12.2(50)SQ2.
New Hardware Features in Cisco IOS Release 12.2(50)SQ1
Cisco IOS Release 12.2(50)SQ1 introduces the Cisco RFGW-DS48-1G line card. The Cisco RFGW-DS48-1G line card has similar features as the RFGW-DS48 line card, however it supports full DOCSIS DRFI compliance up to an operating frequency of 1GHz. The operating bandwidth of the Cisco RFGW-DS48-1G line card is 88 MHz to 1GHz. The Cisco RFGW-DS48-1G resolves the noise floor and spurious emission limitations of the Cisco RFGW-DS48 line card, which was not compliant with the DRFI technical specifications. For more information on the RFGW- DS-48 line card, see Cisco RFGW-10 DS-48 Universal EQAM Line Card.
New Hardware Features in Cisco IOS Release 12.2(50)SQ
There are no new hardware features supported in the Cisco IOS Release 12.2(50)SQ.
New Hardware Features in Cisco IOS Release 12.2(44)SQ2
There are no new hardware features supported in the Cisco IOS Release 12.2(44)SQ2.New Hardware Features in Cisco IOS Release 12.2(44)SQ1
Table 3 lists the Cisco IOS Release 12.2(44)SQ1 support for a minor board revision of the Cisco RFGW-10 DS-48 line card.
Note
New Hardware Features in Cisco IOS Release 12.2(44)SQ
Cisco IOS Release 12.2(44)SQ coincides with the introduction of the Cisco Radio Frequency (RF) Gateway 10 system. All released field-replaceable units (FRUs) are supported only by Cisco IOS Release 12.2(44)SQ and the Cisco RFGW-10 platform.
Below is a high level summary of the supported hardware features of the Cisco RFGW-10.
Cisco RF Gateway 10 Universal Edge QAM Chassis
–
–
–
–
–
–
–
–
–
–
–
–
Cisco RFGW-10 DS-48 Universal EQAM Line Card
The Cisco RFGW-10 DS-48 line card is a 12-port, 48-channel UEQAM card designed to support Downstream External PHY Interface DOCSIS MPEG Transport (DEPI D-MPT), downstream data traffic, and video applications (VoD, SDV, and broadcast video). The RFGW-10 DS-48 card is similar to the traditional QAM solutions where the card receives encapsulated data, depacketizes and reformats the packets, maps them to the output QAM channel, and performs QAM modulation and frequency upconversion. From a high level, the DS-48 line card receives video and DOCSIS data encapsulated over Ethernet and outputs analog QAM data to the subscriber devices (set top box (STB) and DOCSIS modems).
As a DOCSIS engine, the DS-48 line card supports DEPI D-MPT mode. DEPI is based on the L2TPv3 protocol, which includes a data plane and a control plane. DEPI data plane traffic is terminated at the line card. The Cisco RFGW-10 Supervisor card terminates DEPI control and communicates the control to each line card in the system via the chassis IPC infrastructure. DOCSIS timing information (10.24 MHz synchronous DTI clock) is received by the line card from the system TCC cards.
As a video engine, the DS-48 terminates video data path traffic forwarded from the Supervisor card (video control plane traffic is terminated and processed by the system Supervisor card). The DS-48 processing path classifies video packets, performs inter-QAM processing, bit rate scheduling, program muxing and scheduling, program identifier (PID) remapping, program clock references (PCR) restamping, and CC restamping.
The DS-48 line card has 12 physical RF ports, which support up to four QAMs per port. The number of QAM outputs is configurable on a per-port basis (meaning an individual port can support 1, 2, or 4 QAMs as well as muting of individual QAMs within a QAM group). In stacked QAM mode, the QAMs are stacked contiguously over a 24-MHz or 32-MHz band. The line card supports a downstream channel frequency range of 88 MHz to 870 MHz.
Table 4 provides the DOCSIS and EuroDOCSIS downstream rates:
The front panel display includes two Gigabit Ethernet ports and a single DVB-ASI interface (covers all video output streams). The front panel connectors support both copper and fiber SFP modules. The front panel Gigabit Ethernet ports are not processed directly by the line card; these are independent of the line card and route directly to the Supervisor card switch fabric. These ports do not go out of service if the line card crashes and a failover to the redundant card occurs.
A critical feature of the DS-48 line card is redundancy and high availability support. The line cards are designed to detect and react to a wide range of faults and failures, and respond with sub-second failover to a dedicated protect card. In the Cisco RFGW-10 platform, DS-48 line cards can be configured with 1:N redundancy (up to 1:9), resulting in a fully-protected, high capacity, and highly dense EQAM solution.
Cisco RF Gateway 10 Supervisor Engine V-10GE
The Cisco RFGW-10 Supervisor Engine V-10GE provides data path and data control for all network interfaces and provides 10-Gigabit Ethernet interfaces for uplink connections. The Cisco RFGW-10 Supervisor design is leveraged from the Cisco Catalyst 4500 Series switch Supervisor family.
The Supervisor Engine V-10GE has a very high performance Ethernet switching feature set. Advanced traffic management features include:
- Quality of service (QoS)
- Virtual LANs (VLANs)
- Multiple traffic queuing techniques such as IP Differentiated Service Code Points (DSCPs)
- Full-featured traffic classification, marking, and policing
The Cisco RFGW-10 Supervisor Engine V-10GE handles the management of DOCSIS and video traffic for the RF Gateway 10 system. Management of data and video traffic can be split into data plane and control plane processing. The data plane manages the aggregation and forwarding of multiple services to the edge QAM resources (for example, Ethernet switching, routing, aggregation, and filtering). Interactions with control interfaces for video and Data over Cable Service Interface Specifications (DOCSIS) are managed by the control plane (for example, setup and tear-down of video sessions, creation of VoIP calls, management of high-speed data services, and management of the distribution of packets and environmental factors in the gateway). The aggregation management utility in the Supervisor engine allows cable operators to extract detailed information from a single line card on the overall operational status of the entire gateway.
The Supervisor engine receives either DEPI (DOCSIS) data or video data (MPEG/UDP/IP) and forwards the data to the RF line cards based on either the DEPI session content (IP/L2TP) or encapsulated video session information (IP/UDP). All data path traffic is terminated at the line cards. The Supervisor engine receives data traffic, classifies the traffic, and forwards the data traffic to the line cards.
Control traffic for DOCSIS (DEPI mode), video, and HA functionality is terminated on the Supervisor engine. Local video mode (CLI, GUI, SNMP), remote video mode control plane (DNCS, GQI), and native video mode (GQI v2, object model) are implemented in the IOS and terminated at the Supervisor engine.
The following defines the LEDs, connectors, and switches on the Cisco RFGW-10 Supervisor Engine V-10GE:
RFGW-10 RF Switch Cards
The RF Switch provides RF data path redundancy at both the line card (slot) level and the RF port level for bidirectional DOCSIS traffic up to 1.2 GHz. Additionally, the RF Switch cards are the coaxial cable termination point for the Cisco RFGW-10.
Functionally the RFGW-10-RFSW1 card physically switches out a failed line card (port by port) at the RF data path level. The card is capable of supporting two simultaneous RF line card failures. It is designed to support dual 1:N redundancy groups (where N is a group of RF line cards associated with a single protect card).
There are 12 RF Switch cards per chassis, providing 120 RF ports for the system.
Note
Each RF Switch card supports a single Cisco UCH2 connector header; the UCH2 supports 10 MCX coaxial connections per card. The RF Switch card is physically separate from the RF line card slots allowing insertion or removal of the RF line cards without disruption of the cable plant wiring.
The RF Switch card is the central hardware component for chassis-level HA features. The card can be configured and controlled via the system-level CLI functionality. The RF Switch card is a hardware and firmware-based module (no operating software) that can be field-upgraded via the chassis command line interface (CLI).
The RF Switch card faceplate includes a single LED. The LED does not indicate a line card failover.
RFGW-10 TCC Cards
The Cisco RFGW-10 UEQAM supports two Timing, Communication, and Control (TCC) slots. The TCC card acts as a secondary processor that controls the overall system clock generation and distribution, DOCSIS time-stamp synchronization, and system control of the front panel display (FPD), and the RF Switch cards.
The most critical function of the TCC card is distribution of the system clocking, in particular the DOCSIS Timing Interface (DTI). The TCC card is a DTI client interface. It supports dual DTI external input allowing DTI server redundancy. Based on the DTI input information, the TCC card generates DOCSIS 10.24-MHz clock and time-stamp information to every line card in the chassis. All clocks and DOCSIS information are redundant. When there is no external DTI clock, the TCC card provides an internal DOCSIS DTI clock and time-stamp reference.
When two TCC cards are installed, they are configured as active and backup (redundant). If the TCC card in the first slot is working at system power-up, it automatically becomes the active card and the TCC card in the second slot becomes the backup card (typically slot 13 boots as the primary TCC card and slot 14 as the secondary, but this is not mandatory).
In terms of the overall system high availability, the TCC cards work autonomously from the centralized control mechanisms. Redundant TCC cards monitor each other’s priority information so that when the active card fails, the active card role is transferred to the redundant backup card without loss of data.
The following is a summary of the TCC card’s functions and features:
- Generates and distributes 10.24-MHz clock references and 32-bit time-stamp references to every cable interface line card
- Drives the LCD module used to display the system configuration and status information
- Proxy control mechanism (via Supervisor cards) for the RF Switch cards
- Front panel LEDs providing status and alarm indicators
- Provides two RJ-45 ports supporting redundant DTI server sources
RFGW-10-PWR-DC1 (DC PEM)
The Cisco RFGW-10 system is powered by redundant DC PEMs. An individual PEM is capable of providing 4536 watts of total output. Redundant modules work as a 1:1 redundancy configuration supporting current sharing and online insertion and removal (OIR) (hot swapping).
Each PEM includes two 60A input lines that operate between –40 VDC and –72 VDC input voltages. Proper configuration and operation requires that both DC inputs are properly wired. The PEM also includes an earth ground connection (this is not power return) for grounding the chassis.
- Closed frame, NEBS-compliant module design
- Front-to-back airflow (exhaust air exits out of the rear of the chassis)
- Power input range: –48 VDC to –60 VDC
- 4536W power capacity
- Supports OIR (hot swap) and current sharing
- Supports 1:1 redundancy (system can run with a single PEM)
- CLI support for status and configuration
- Remote shutdown feature
- Front panel LED status and alarm indicators
RFGW-10 Fan Assembly
The Cisco RFGW-10 UEQAM system uses a modular fan assembly to dissipate heat from the system and control the temperature of the chassis system components (except the DC PEM, which contains its own internal fan). The fan assembly is a multi-fan design that pulls ambient air from the lower front of the chassis and exhausts air out of the rear top of the chassis. The fan assembly provides individual fan control and failure monitoring, multiple thermistors to monitor exhaust air and a wide range of speed control parameters based on the system and the environmental conditions. Inlet air monitoring is communicated to the fan tray via the system software from the sensors on each of the RF line cards.
The fan tray module provides the following features:
- Online insertion and removal (OIR) support
- Failure monitoring of individual fans
- Backup temperature monitoring to control individual fan RPM
- Usage counter based on hours of operation (CLI-based)
- Front panel LED for alarm status indication
- Control and power circuit failure alarms
- On-board multi-level fan speed control based on system temperature
New Software Features in Cisco IOS Release 12.2(50)SQ7
There are no new software features supported in the Cisco IOS Release 12.2(50)SQ7.
New Software Features in Cisco IOS Release 12.2(50)SQ6
There are no new software features supported in the Cisco IOS Release 12.2(50)SQ6.
New Software Features in Cisco IOS Release 12.2(50)SQ5
There are no new software features supported in the Cisco IOS Release 12.2(50)SQ5.
New Software Features in Cisco IOS Release 12.2(50)SQ4
There are no new software features supported in the Cisco IOS Release 12.2(50)SQ4.
New Software Features in Cisco IOS Release 12.2(50)SQ3
This section describes the new and modified software features supported in Cisco IOS Release 12.2(50)SQ3.
DEPI Path Redundancy
The DEPI Path Redundancy feature is supported on the Cisco uBR-MC3GX60V cable interface line card starting with Cisco IOS Release 12.2(33)SCE1. For more information, see Cisco uBR10012 Router Release Notes for Cisco IOS Release 12.2(33)SCE.
New Software Features in Cisco IOS Release 12.2(50)SQ2
This section describes the new and modified software features supported in Cisco IOS Release 12.2(50)SQ2.
DEPI Path Redundancy
DEPI Path Redundancy (DPR) is used in conjunction with N+1 DEPI control plane redundancy for Cisco uBR-MC3GX60V line card. This feature allows you to configure a backup DEPI session on the protect card using the protect-tunnel command in DEPI tunnel configuration mode. In this mode, the protect line card has a fully operational secondary DEPI control connection and sessions for the QAM channels on the working line card. The primary DEPI control connection and session is established on the Gigabit Ethernet ports on the working line card. These primary and secondary DEPI sessions are paired using the common TSID, which uniquely identifies the target QAM channel.
The following commands were introduced or modified:
For more information, see M-CMTS DEPI Control Plane.
Note
DEPI EQAM Statistics
The DEPI EQAM statistics feature enables the EQAM to send RF channel statistics to the M-CMTS router.
The following command was introduced:
For more information, see M-CMTS DEPI Control Plane.
New Software Features in Cisco IOS Release 12.2(50)SQ1
This section describes the new and modified software features supported in Cisco IOS Release 12.2(50)SQ1.
Video SSO
Video sessions on the Cisco RFGW-10 are either unicast or multicast sessions created manually or remotely using Generic QAM Interface (GQI). At run time, the video session state information is check pointed from the active Supervisor card to the standby Supervisor card.
Unicast video sessions continue to forward traffic during Supervisor card switchover with about an approximate traffic outage of one second
Multicast video sessions may experience longer traffic outage during Supervisor card switchover. For a small number of SDV sessions (for example, 1,000), the traffic outage is less than four seconds. For a large number of SDV sessions (for example, 10,000), the traffic outage time is around ten seconds. This is because, in Cisco IOS Release 12.2(50)SQ1, the underlying multicast function is not SSO-aware although the video session state is synchronized to the standby Supervisor card. The SSO performance of multicast video sessions will be improved in a later release.
For more information, see 1:1 Supervisor Card Redundancy.
Pass-through Video Session Enhancements
The following features have been added for pass-through video sessions:
MPTS Multiplexing of Pass-through Sessions
A pass-through session can be multiplexed with other remapped sessions, pass-through sessions, or data piping sessions into the same QAM channels.
Input PID Filtering
The Input PID Filtering feature enables you to specify a list of PIDs to be dropped for a pass-through video session. PID filtering is used in scenarios where the SI table is replaced in the BDV digital broadcast feed. The incoming feed from the video session is a Multiple Program Transport Stream (MPTS) containing BDV SI tables. These SI tables are replaced with locally generated SI tables. The PID filtering capability enables the drop of SI tables from the incoming feed. The local SI tables can then be reinserted from a data piping session to be multiplexed to the QAM channel.
Up to 32 PIDs can be filtered per pass-through session.
The following commands have been modified to support input PID filtering:
- cable video udp port {filter pid pid-list}
- asm label { filter pid pid-list }
- ssm label { filter pid pid-list}
For more information, see the Cisco RF Gateway 10 Command Reference and Video guides.
CBR Clock Recovery
The CBR dejittering and clock recovery method assumes all video sessions are variable bit rate (VBR) by default. This method also works for sessions that are constant bit rate (CBR) sessions. However, in scenarios where the MPTS input stream contains programs with faulty PCRs, providing the CBR information helps isolate the faulty PCRs. Isolating the faulty PCRs prevents them from corrupting the good PCRs within the same input session. The CBR dejittering and clock recovery mode has been added in Cisco IOS Release 12.2(50)SQ1 to support this.
The following commands have been modified to support CBR dejittering and clock recovery:
- cable video udp port {passthru [cbr]}
- ssm label source source-IP-address group group-IP-address [cbr]
- asm label { group IP-address [cbr]}
For more information, see the Cisco RF Gateway 10 Command Reference and Video guides.
New Software Features in Cisco IOS Release 12.2(50)SQ
This section describes the new and modified software features supported in Cisco IOS Release 12.2(50)SQ.
Supervisor Stateful Switchover
In the Supervisor Stateful Switchover (SSO) mode, the standby Supervisor card is fully initialized and configured. This allows SSO to reduce the switchover time if the active Supervisor card fails, or if a manual switchover is performed. Both the startup and running configurations are continually synchronized from the active to the standby Supervisor cards, and the line cards are not reset during a Supervisor switchover. The interfaces remain active during the switchover, hence the neighboring routers do not detect a physical link flap (the link does not go down and back up).
The SSO feature supports both the DEPI Manual and the DEPI Protocol modes. It is unavailable for Video in Cisco IOS Release12.2(50)SQ.
For more information, see 1:1 Supervisor Card Redundancy.
M-CMTS DEPI Control Plane
The Downstream External PHY Interface (DEPI) control plane is based upon Layer Two Tunneling Protocol-Version 3 (L2TPv3) signaling. The DEPI is the communication protocol over an IP tunnel between the Modular Cable Modem Termination Systems (M-CMTS) core and the Edge Quadrature Amplitude Modulation (EQAM). It is an IP tunnel between the MAC (M-CMTS Core) and PHY (EQAM) in an M-CMTS system, which contains both a data path for Data-Over-Cable Service Interface Specifications (DOCSIS) frames and a control path for setting up, maintaining, and tearing down data sessions.
The DEPI Latency Measurement (DLM) packet is a special type of data packet used for measuring the network latency between the M-CMTS core and the EQAM.
For more information, see M-CMTS DEPI Control Plane.
Video Control Plane with Generic QAM Interface (GQI)
The Generic QAM Interface (GQI) based video control plane provides video session management through a GQI signaling protocol with Digital Network Control System (DNCS) and Universal Session/Resource Manager (USRM).
The GQI supports the following:
- Session management: session creation, deletion, and queries
- SDV shell session management: shell session creation, deletion, binding, and unbinding
- Packet management: packet insertion, cancellation, and queries
- Edge device maintenance: reset control.
For more information, see Video.
1:1 and 1:N DS-48 Line Card Redundancy for Video and DEPI
The line card redundancy (LCRED) feature introduced in Cisco IOS Release 12.2(44)SQ supports DEPI D-MPT traffic under the DEPI Manual mode. In Cisco IOS Release 12.2(55)SQ, line card redundancy supports Video and DEPI D-MPT with DEPI Control Plane in the DEPI Protocol mode. In case of line card failure, OIR, or a forced line card switchover, the standby line card becomes active and continues to process Video or DEPI traffic.
For more information, see the 1:1 and 1:N DS-48 Line Card Redundancy.
New Software Features in Cisco IOS Release 12.2(44)SQ2
This section describes the new and modified software features supported in Cisco IOS Release 12.2(44)SQ2.
Bundled Image upgrade enhancements
The Supervisor image is bundled with upgrades for all device images. The Supervisor card automatically checks the versions of the software and firmware on all line cards during system boot up and upgrades as necessary.
For more information, see Bundled Image Upgrade.
New Software Features in Cisco IOS Release 12.2(44)SQ1
There are no new software features supported in Cisco IOS Release 12.2(44)SQ1.
New Software Features in Cisco IOS Release 12.2(44)SQ
Below are the software features supported on the Cisco RFGW-10 for Cisco IOS Release 12.2(44)SQ.
Universal Edge Quadrature Amplitude Modulation
The Universal EQAM platform integrates the capabilities of an M-CMTS EQAM platform and the capabilities of a video EQAM, thereby supporting both DOCSIS and digital video services in a single UEQAM platform. The granularity of the DOCSIS and video traffic mix is per 4-channel group, that is, per RF port.
The Universal EQAM can be configured with 64 QAM or 256 QAM Downstream Modulation with 1:4 Frequency Stacking under Annex B, Annex A, or Annex C.
M-CMTS DOCSIS MPEG Transport Manual Mode
The interface between the M-CMTS core and the EQAM is defined by Downstream External PHY Interfaces (DEPI), which is an L2TP-based IP tunnel containing both a data path for DOCSIS frames and a control path for session setup, maintenance, and tear-down. This feature supports the DEPI data path with the DOCSIS MPEG Transport (D-MPT) mode with manual configuration for session setup.
D-MPT places integer number of MPEG transport packets into the L2TP payload. Only one D-MPT flow can be present in a QAM channel. The EQAM extracts the D-MPT packets within the DEPI payload and forwards them to the output QAM.
The D-MPT feature supports bonded DOCSIS through downstream channel bonding. Channel bonding is a technique of grouping multiple QAM channels into a bonding group to provide a logical downstream channel with larger aggregated bandwidth. Bonded traffic can be encapsulated in D-MPT.
D-MPT traffic from the M-CMTS core contains SYNC messages (DOCSIS time stamps). The EQAM finds all the SYNC messages in the D-MPT payload and performs the SYNC correction.
DTI Offset
The DOCSIS Timing Interface (DTI) Offset feature enables DOCSIS timing offset adjustment per channel in the RFGW-10 DS-48 line card. The operator must measure the actual timing offset adjustment required on each QAM channel first and then use the DTI Offset CLI to make the adjustment. To configure all the QAM ports to the same timing offset, use the cable depi offset command specifying the port range of the QAM interfaces. With this command, users can configure an entire chassis with the same timing offset.
1:1 and 1:N DS-48 Line Card Redundancy
The RFGW-10 supports both 1:1 and 1:N line card redundancy schemes. 1:1 redundancy refers to a configuration where a line card has a dedicated backup card. 1:N redundancy means one line card protecting N line cards. Therefore, a single DS-48 line card can protect as many as nine other line cards. There can be up to two line card redundancy groups in an RFGW-10 chassis with each group being 1:1 or 1:N redundancy.
The RFGW-10 performs line card switchover on such events as a user-initiated switchover command, line card insertion and removal (OIR), as well as hardware and software faults, RF upconverter failure, and DTI failure on the line card. At line card switchover, the standby line card becomes active, resuming the functions of the line card it is switched from. With the internal RF Switch card, line card switchover is transparent to the RF connections to the plant.
The line card redundancy supports M-CMTS D-MPT traffic. The line card switchover has little impact on the DOCSIS applications. This release does not provide line card redundancy support for video applications.
1:1 Supervisor Card Redundancy
The Cisco IOS Route Processor Redundancy (RPR) feature enables the RFGW-10 to use two Supervisor cards in a redundant configuration, such that if the active Supervisor card fails or becomes inactive, the system automatically performs a switchover, where the standby Supervisor card takes over and assumes full responsibility for systems operations.
The RPR mode is the simplest mode in which the standby Supervisor card completes its initialization but suspends just before parsing the startup-config. The standby monitors the active Supervisor and switches over when it detects a failure on the active Supervisor or when the user issues a switchover command. When the standby Supervisor card becomes active, all the line cards in the chassis are reset and the startup-config is parsed. There will be a traffic outage in this mode because the line cards are reset.
1:1 Timing, Communication and Control (TCC) Card Redundancy
The Timing, Communication and Control (TCC) card operates in 1:1 redundancy configuration in the RFGW-10 chassis, where each TCC card has its own peer as a dedicated backup card in case of failure (hot standby mode). Only one of the two TCC cards provides the DTI client functionality at any given time. The standby TCC is accessible from other line cards, but does not provide any DTI functionality. In the event of active TCC failure, the standby TCC becomes active and serves as the DTI client.
Video
The Cisco RFGW-10 performs MPEG-2 video processing for Video on Demand (VoD) and Digital Video Broadcast applications. The video feature involves both video control plane and video data plane functions. The control plane resides on the Supervisor card and the data plane runs on the DS-48 line card.
The video control plane provides video session configurations with table-based UDP port-to-QAM port mapping. The table-based mapping is used only for unicast video sessions. Apart from the table-based mapping, the Cisco RFGW-10 also supports the flexible port mapping method, where the users can set up video sessions by configuring the mapping dynamically. The flexible port mapping can be used for both unicast and multicast video sessions. In addition, the video control plane provides show commands for users to access run-time session information.
The video data plane processes Unicast Constant Bit Rate (CBR) Single Program Transport Stream (SPTS) for VoD sessions with Trick Mode support, which provides functionalities like fast forward, rewind, and pause for an MPEG stream. It also serves Multicast Multiple Program Transport Stream (MPTS) for DVB Pass-Through sessions.
The data plane supports the video feature with a number of video-processing functions including Program ID (PID) remapping, Program Clock Reference (PCR) restamping, Dejittering and Clock Recovery, and Program Specific Information (PSI) processing.
SNMP MIBs
The Cisco RFGW-10 provides network management with a set of standard-based MIBs. The MIBs specific to the Cisco RFGW-10 platform include:
- IF-MIB
- ENTITY-MIB
- DOCS-IF-MIB
- DOCS-IF-MCMTS-MIB
- DOCS-CABLE-DEVICE-MIB
- DTI-MIB
- SCTE-HMS-MPEG-MIB
- SCTE-HMS-QAM-MIB
In addition, the Cisco RFGW-10 supports MIBs common in Cisco IOS which can be found in the Cisco RF Gateway 10 MIB Specifications Guide.
GUI Monitoring
GUI Monitoring is a web-based tool that enables operators to monitor the RFGW-10 system. GUI Monitoring is comprised of two functional components: a web browser client on a computer and a Web server residing in the Cisco RFGW-10 Supervisor card. The web browser accesses the Cisco RFGW-10 via an authenticated IP connection to the RFGW-10.
Important Notes
Cisco IOS Behavior Changes
Behavior changes describe the minor modifications to the way a device works that are sometimes introduced in a new software release. These changes typically occur during the course of resolving a software defect and are therefore not significant enough to warrant the creation of a stand-alone document. When behavior changes are introduced, existing documentation is updated with the changes described in this section.
Cisco IOS Release 12.2(44)SQ2
This section describes the behavior changes introduced on the Cisco RFGW-10 platform in Cisco IOS Release 12.2(44)SQ2.
- cable image-upgrade download command modified. A new keyword forced is added to the output of cable image-upgrade download command.
Old Behavior: The cable image-upgrade download command upgrades all the images on the line card. The background keyword is used so that the upgrade occurs in the background and the control is returned to the command prompt.
New Behavior: Using the forced option in the cable image-upgrade download command forces the upgrade on all the devices on the line card.
Additional information: For more information, see the Cisco RF Gateway 10 Command Reference.
Cisco IOS Release 12.2(44)SQ1
This section describes the behavior changes introduced on the Cisco RFGW-10 platform in Cisco IOS Release 12.2(44)SQ1.
- show cable line card version command output modified. A new field is added to the output of show cable line card version command.
Old Behavior: The show cable line card version command displays the image version information of the line card. The application upgrade version, Rommon version, and image version are displayed.
New Behavior: The show cable line card version command displays the application permanent version in addition to the application upgrade version, Rommon version, and image version fields.
Additional information: For more information, see the Cisco RF Gateway 10 Command Reference.
Caveats
Caveats describe unexpected behavior in Cisco IOS software releases. Severity 1 caveats are the most serious caveats; severity 2 caveats are less serious. Severity 3 caveats are moderate caveats, and only selected severity 3 caveats are included in the caveats document.
Caveat numbers and brief descriptions for Cisco IOS Release 12.2SQ-based releases are listed in this section.
Cisco Bug Search
Cisco Bug Search Tool (BST), the online successor to Bug Toolkit, is designed to improve effectiveness in network risk management and device troubleshooting. You can search for bugs based on product, release, and keyword, and aggregates key data such as bug details, product, and version. For more details on the tool, see the help page located at http://www.cisco.com/web/applicat/cbsshelp/help.html.
Open Caveats for Cisco IOS Release 12.2(50)SQ7
There are no open caveats for Cisco IOS Release 12.2(50)SQ7.
Resolved Caveats for Cisco IOS Release 12.2(50)SQ7
Open Caveats for Cisco IOS Release 12.2(50)SQ6
Resolved Caveats for Cisco IOS Release 12.2(50)SQ6
Open Caveats for Cisco IOS Release 12.2(50)SQ5
Resolved Caveats for Cisco IOS Release 12.2(50)SQ5
Symptoms: The Cisco RFGW-10 router crashes due to Layer2 traffic getting punted to SP (switch processor).
Conditions: This issue occurs when port-security feature is enabled and rate traffic of high (more than 4k) value of scaled MAC addresses is sent.
Workaround: Rate-limit the Layer2 data using mls rate-limit layer2 port-security 5000 command.
Symptoms: Memory leaks and fragmentation are observed when exceptions are encountered.
Conditions: This issue occurs when SNMP queries lead to exceptions causing memory leaks.
Symptoms: The input and output packet rate is always displayed with “0” at the interface level, even though packets are flowing on the ports normally.
Conditions: This issue was first observed in Cisco IOS Release 12.2(46)SG.
The Cisco IOS Software implementation of the virtual routing and forwarding (VRF) aware network address translation (NAT) feature contains a vulnerability when translating IP packets that could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition.
Cisco has released free software updates that address this vulnerability. Workarounds that mitigate this vulnerability are not available.
This advisory is available at the following link:
http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20130327-nat
Note: The March 27, 2013, Cisco IOS Software Security Advisory bundled publication includes seven Cisco Security Advisories. All advisories address vulnerabilities in Cisco IOS Software. Each Cisco IOS Software Security Advisory lists the Cisco IOS Software releases that correct the vulnerability or vulnerabilities detailed in the advisory as well as the Cisco IOS Software releases that correct all Cisco IOS Software vulnerabilities in the March 2013 bundled publication.
Individual publication links are in “Cisco Event Response: Semiannual Cisco IOS Software Security Advisory Bundled Publication” at the following link:
http://www.cisco.com/web/about/security/intelligence/Cisco_ERP_mar13.html
Symptoms: Traceback observed after power off and power on of the Cisco RFGW-10 line cards.
Conditions: This issue occurs after issuing the no hw-module slot power and hw-module slot power commands.
Symptoms: Telnet needs to be enabled on Cisco RFGW-10 line cards for licensing. Cisco RFGW-10 reserves IP address space 10.0.0.1 to 10.0.0.14 for accessing line cards from Supervisor card. Using these addresses for other interfaces is prohibited.
Conditions: This issue occurs when RFGW does not allow configuration of IP address 10.0.0.1 to 10.0.0.14 addresses on other interfaces by default.
Workaround: Use VRF while configuring 10.0.0.1 to 10.0.0.14 addresses for other interfaces.
Symptoms: The output for the show depi session verbose command is the same when DEPI is enabled or disabled.
Conditions: This issue occurs when show depi session verbose command is executed.
Symptom: The Cisco uBR10012 router does not allow DEPI session reconfiguration on Cisco RFGW-10 QAM interface for 60 seconds after being triggered.
Conditions: This issue occurs when the DEPI session configuration on the Cisco uBR10012 router is removed.
Workaround: Wait for 60 seconds for the local end of the DEPI session on Cisco RFGW-10 router to get removed. Then try to reconfigure.
Symptoms: Traceback observed on Cisco RFGW-10 router while changing the modulation from Annex B to Annex A on the Cisco uBR10012 router.
Conditions: This issue was observed while changing modulation from Annex B to Annex A on the Cisco uBR10012 router.
Symptoms: Memory leak observed on the Cisco RFGW-10 router.
Conditions: This issue occurs after copying the configuration that contains manual DEPI configuration on the Cisco RFGW-10 router and is connected to Cisco uBR10-MC3GX60V line card.
Symptoms: Traceback and error messages are observed on the Cisco RFGW-10 router.
Conditions: This issue occurs when the secondary line card has an error condition such as SerDes failure, S2w failure etc. and is configured as a member of a line card redundancy (LCRED) group.
Workaround: Replace the secondary line card with a good line card with no failure condition.
Symptoms: The secondary Supervisor card silently reloads due to parser error.
Conditions: This issue occurs while configuring Video feature on the Cisco RFGW-10 router.
Symptoms: Traceback and error messages are observed on the Cisco RFGW-10 router.
Conditions: This issue occurs when show cable depi l2tp summary command is executed on the Cisco RFGW-10.
Symptoms: The show facility-alarm status command output displays gibberish output.
Conditions: This issue was observed when power supply redundancy was tested on the Cisco RFGW-10 router.
Symptoms: SSH not working after hostname and domain name change.
Conditions: This issue was first observed in Cisco IOS Release 12.2(50)SQ on the Cisco RFGW-10 router.
Workaround: Execute redundancy force-switchover command on a redundant Supervisor card.
Symptoms: On reloading the Cisco RFGW-10 the following message may be seen:
%C4K_TRANSCEIVERMAN-3-S2WERROR: (Suppressed 1 times)S2w bus error while looking for changed transceivers on port Gi12/13: S2wErrorNoAckDevAddressConditions: This issue was observed when the Cisco RFGW-10 router was reloaded.
Symptoms: Incorrect bandwidth value is displayed at port level while executing show interface qam command on the Cisco RFGW-10 router.
Conditions: This issue is seen on Cisco RFGW-10 DS-48 line card.
Symptoms: Image upgrade errors are displayed on the Cisco RFGW-10 when image is removed from the flash.
Conditions: This issue occurs while inserting the Cisco RFGW-10 DS-48 line card on the router.
Workaround: There is no workaround. This is a cosmetic issue.
Symptoms: Duplicate traps are generated when a power supply unit is inserted into a Cisco RFGW-10 router. The traps ciscoEnvMonSupplyState and entConfigChange traps are duplicated.
Conditions: This issue is observed when a power supply unit is inserted into a Cisco RFGW-10 router.
Symptoms: DEPI sessions exist in the data plane after executing the no cable mode depi remote learn command.
Conditions: This issue occurs when control plane is configured on the Cisco RFGW-10 router.
Symptoms: The line card log may show the following message:
Jul 07 06:23:48 6 10000 0 ERROR mv_hw_ctrl, upx_cmd_set_freq(): UPX freq 500000000 != set freq 603000000Conditions: This issue occurs randomly on line card when the Supervisor card performs a bulk configuration to the line card.
Symptoms: An intrusive carrier is observed on the Cisco RFGW-10 router affecting cable modems and also the video channels.
Conditions: This issue occurs on the Cisco uBR10-MC3GX60V line card on Cisco uBR10012 router connected to a Cisco RFGW-10 router with Cisco RFGW-10 DS48-G1 line card.This issue is not observed on the Cisco RFGW-10 DS-48 line card.
Workaround: Switch to the protect card and then revert to the working card. If protect card does not exist, execute the hw-module slot reset command on the Cisco RFGW-10 DS48-G1 line card. Perform an OIR of the card if needed.
Symptoms: The SNMP query does not get completed when executing the getmany command for entire MIB tree.
Conditions: This issue occurs while running the getmany command for the entire MIB tree.
Symptoms: The show inventory command shows incorrect values for the TCC hardware revision.
Conditions: This issue occurs under normal conditions.
Workaround: Use the show idprom module command to get the correct values.
Symptoms: The SNMP query does not get completed when executing the snmpwalk command for entire MIB tree.
Conditions: This issue occurs while running the snmpwalk command for the entire MIB tree.
Symptoms: Tracebacks seen on the Cisco RFGW-10 router due to l2tp-class configuration.
Conditions: This issue occurs when l2tp-class configuration is changed to depi-class configuration. Stateful switchover is configured on the Cisco RFGW-10 router.
Workaround: Exit out of l2tp-class configuration using exit command before configuring depi-class configuration.
Symptoms: The Gigabit Ethernet interfaces goes to admin down state after a Supervisor card switchover and powering down of the line card.
Conditions: This issue occurs when line card is powered down using the no hw-module power command and after a Supervisor switchover.
Workaround: Unshut the Gigabit Ethernet interface after powering up the line card.
Symptoms: The following error message and traceback is observed on the RFGW-10 console.
.Nov 17 03:30:02.996: %SYS-2-MALLOCFAIL: Memory allocation of 10000 bytes failed from 0x11832D18, alignment 0-Traceback= 10D32524 10D32C70 1181EED0 118213F0 11821700 11832D1C 11833958 11696644 11696844 11691144 116918FC 1094ECF8 1094C6D8 11694628 116693F0 11659D5CConditions: This issue occurs when snmpwalk command is run continuously for 9 hours causing memory leak.
Symptoms: Copying files using secure copy (scp) method on the Cisco RFGW-10 generates errors.
Symptoms: Line card redundancy group (LCRED) validation fails when Cisco RFGW-10 DS-48 line card is configured first.
Conditions: This issue occurs with Cisco RFGW-10 DS-48 and Cisco RFGW-10 DS-48-1G line cards. This issue occurs in 1: N LCRED group with mixed line cards. The Cisco RFGW-10 DS-48 line card is configured first and the secondary member validation prevents the backup for incompatible reserve card.
Workaround: Configure the Cisco RFGW-10 DS-48 line card as the secondary line card and perform a switchover from Cisco RFGW-10 DS-48-1G line card to the Cisco RFGW-10 DS-48 line card.
Symptoms: Error messages are observed on the Cisco RFGW-10 router console.
Conditions: This issue occurs after a Supervisor card switchover is performed using redundancy reload shelf command.
Workaround: There is no workaround. No functional impact is observed.
Open Caveats for Cisco IOS Release 12.2(50)SQ4
Resolved Caveats for Cisco IOS Release 12.2(50)SQ4
Open Caveats for Cisco IOS Release 12.2(50)SQ3
Resolved Caveats for Cisco IOS Releases 12.2(50)SQ3
Open Caveats for Cisco IOS Release 12.2(50)SQ2
Resolved Caveats for Cisco IOS Releases 12.2(50)SQ2
Resolved Caveats for Cisco IOS Releases 12.2(50)SQ1
Open Caveats for Cisco IOS Release 12.2(50)SQ
Resolved Caveats for Cisco IOS Release 12.2(50)SQ
Open Caveats for Cisco IOS Release 12.2(44)SQ2
Resolved Caveats for Cisco IOS Release 12.2(44)SQ2
Open Caveats for Cisco IOS Release 12.2(44)SQ1
Resolved Caveats for Release 12.2(44)SQ1
Symptoms: Several features within Cisco IOS software are affected by a crafted UDP packet vulnerability. If any of the affected features are enabled, a successful attack will result in a blocked input queue on the inbound interface. Only crafted UDP packets destined for the device could result in the interface being blocked, transit traffic will not block the interface.
Cisco has released free software updates that address this vulnerability.
Workarounds that mitigate this vulnerability are available in the workarounds section of the advisory. This advisory is posted at the following link:
http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20090325-udp.
Symptoms: SSLVPN service stops accepting any new SSLVPN connections.
Conditions: A device configured for SSLVPN may stop accepting any new SSLVPN connections, due to a vulnerability in the processing of new TCP connections for SSLVPN services. If “debug ip tcp transactions” is enabled and this vulnerability is triggered, debug messages with connection queue limit reached will be observed. This vulnerability is documented in two separate Cisco bug IDs, both of which are required for a full fix: CSCso04657 and CSCsg00102.
Multiple Cisco products are affected by denial of service (DoS) vulnerabilities that manipulate the state of Transmission Control Protocol (TCP) connections. By manipulating the state of a TCP connection, an attacker could force the TCP connection to remain in a long-lived state, possibly indefinitely. If enough TCP connections are forced into a long-lived or indefinite state, resources on a system under attack may be consumed, preventing new TCP connections from being accepted. In some cases, a system reboot may be necessary to recover normal system operation. To exploit these vulnerabilities, an attacker must be able to complete a TCP three-way handshake with a vulnerable system.
In addition to these vulnerabilities, Cisco Nexus 5000 devices contain a TCP DoS vulnerability that may result in a system crash. This additional vulnerability was found as a result of testing the TCP state manipulation vulnerabilities.
Cisco has released free software updates for download from the Cisco website that address these vulnerabilities. Workarounds that mitigate these vulnerabilities are available.
This advisory is posted at http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20090908-tcp24.
Symptoms: Resetting one line card causes a momentary glitch on another line card.
Conditions: This issue occurs only when the hw-module slot reset command is issued.
Workaround: Use the cable linecard reset command to reset a line card.
Symptoms: When un-muting an RF port, the RF power level tends to raise the noise floor around the RF channels supported momentarily (for several hundreds of milliseconds). There are no reported issues of cable modem performance, though impact is observable on a spectrum analyzer.
Conditions: This issue occurs during muting the RF port output power.
Symptoms: The DocsDevEvent table does not function.
Conditions: When the MIB table is accessed, there is no data returned.
Symptoms: The SNMP trap message is not displayed in the log file for line card reset.
Conditions: The SNMP trap works when running shut/no shut interface command on the line card, but, the trap message is not logged after a line card reset.
Workaround: Use snmp-server queue-length command to increase the size of the trap queue.
During line card reset, some trap messages could be dropped because of trap queue overflow on the device. If trap messages are being dropped, the size of the trap queue may be increased (for example, to 1000) to determine if trap messages can be sent during line card reset.
For the detail of snmp-server queue-length, please see http://www.cisco.com/en/US/docs/ios/netmgmt/command/reference/nm_20.html#wp1012887
Open Caveats for Cisco IOS Release 12.2(44)SQ
Resolved Caveats for Cisco IOS Release 12.2(44)SQ
A vulnerability in the handling of IP sockets can cause devices to be vulnerable to a denial of service attack when any of several features of Cisco IOS software are enabled. A sequence of specially crafted TCP/IP packets could cause any of the following results:
The configured feature may stop accepting new connections or sessions.
The memory of the device may be consumed.
The device may experience prolonged high CPU utilization.
The device may reload. Cisco has released free software updates that address this vulnerability.
Workarounds that mitigate this vulnerability are available in the “workarounds” section of the advisory. The advisory is posted at http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20090325-ip
Cisco IOS software contains a vulnerability in multiple features that could allow an attacker to cause a denial of service (DoS) condition on the affected device. A sequence of specially crafted TCP packets can cause the vulnerable device to reload.
Cisco has released free software updates that address this vulnerability.
Several mitigation strategies are outlined in the workarounds section of this advisory.
This advisory is posted at http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20090325-tcp
Related Documentation
The following sections describe the documentation available for the Cisco RFGW-10 platform.
Platform-Specific Documents
These documents are available for the Cisco RF Gateway 10 platform on Cisco.com:
Feature Modules
Feature modules describe new software enhancements, committed as features, and are updates to the Cisco IOS documentation set. A feature module consists of a brief overview of the feature, benefits, and configuration tasks, and a command reference. As updates, the feature modules are available online only. Feature module information is incorporated in the next printing of the Cisco IOS documentation set.
Cisco IOS Software: Cisco IOS Software Release 12.2SQ Family: Cisco IOS Software Releases 12.2(44)SQ: Feature Guides
Cisco IOS Software Documentation Set
The Cisco IOS software documentation set consists of the Cisco IOS configuration guides, Cisco IOS command references, and several other supporting documents.
Cisco IOS Software: Cisco IOS Software Release 12.2SQ Family: Cisco IOS Software Releases 12.2(44)SQ: Configuration Guide and Command Reference
Documentation Modules
Each module in the Cisco IOS documentation set consists of one or more configuration guides and one or more corresponding command references. Chapters in a configuration guide describe protocols, configuration tasks, and Cisco IOS software functionality, and contain comprehensive configuration examples. Chapters in a command reference provide complete command syntax information. Use each configuration guide with its corresponding command reference.
Cisco IOS Software: Cisco IOS Software Release 12.2SQ Family: Cisco IOS Software Releases 12.2(44)SQ: Command Reference
Obtaining Documentation and Submitting a Service Request
For information on obtaining documentation, using the Cisco Bug Search Tool (BST), submitting a service request, and gathering additional information, see What’s New in Cisco Product Documentation at: http://www.cisco.com/en/US/docs/general/whatsnew/whatsnew.html.
Subscribe to What’s New in Cisco Product Documentation, which lists all new and revised Cisco technical documentation, as an RSS feed and deliver content directly to your desktop using a reader application. The RSS feeds are a free service.
This document is to be used in conjunction with the documents listed in the “Related Documentation” section.
Cisco and the Cisco logo are trademarks or registered trademarks of Cisco and/or its affiliates in the U.S. and other countries. To view a list of Cisco trademarks, go to this URL: www.cisco.com/go/trademarks. Third-party trademarks mentioned are the property of their respective owners. The use of the word partner does not imply a partnership relationship between Cisco and any other company. (1110R)
Any Internet Protocol (IP) addresses used in this document are not intended to be actual addresses. Any examples, command display output, and figures included in the document are shown for illustrative purposes only. Any use of actual IP addresses in illustrative content is unintentional and coincidental.
Feedback