Cisco Cisco Aironet 1310 Access Point Bridge
13
Release Notes for Cisco Aironet 1300 Series Outdoor Access Point/Bridge for Cisco IOS Release 12.3(7)JA3
OL-10097-01
Caveats
•
CSCef77951—Excessive processor memory is no longer held by IRB/CRB rxtypes.
•
CSCee36192—The no snmp-server enable traps tty command is effective through reload.
•
CSCeg83274—Access point now sends RADIUS state information.
Resolved Caveats in Cisco IOS Release 12.3(7)JA
These caveats are resolved in Cisco IOS Release 12.3(7)JA for the access point/bridge:
•
CSCeg45312—Radius authentication bypassed when configured with a none fallback method.
Remote Authentication Dial In User Service (RADIUS) authentication on a device that is running
certain versions of Cisco Internetworking Operating System (IOS) and configured with a fallback
method to none can be bypassed. Systems that are configured for other authentication methods or
that are not configured with a fallback method to none are not affected. Only the systems that are
running certain versions of Cisco IOS are affected. Not all configurations using RADIUS and none
are vulnerable to this issue. Some configurations using RADIUS, none and an additional method are
not affected.
certain versions of Cisco Internetworking Operating System (IOS) and configured with a fallback
method to none can be bypassed. Systems that are configured for other authentication methods or
that are not configured with a fallback method to none are not affected. Only the systems that are
running certain versions of Cisco IOS are affected. Not all configurations using RADIUS and none
are vulnerable to this issue. Some configurations using RADIUS, none and an additional method are
not affected.
Cisco has made free software available to address this vulnerability. There are workarounds
available to mitigate the effects of the vulnerability.
available to mitigate the effects of the vulnerability.
For more information about the security advisory, see
.
•
CSCsb06824—Open authentication is no longer added to an EAP SSID when a non-root bridge
configuration is loaded.
configuration is loaded.
•
CSCsb12321—The access point bridge table is now correct when a workgroup bridge roams.
•
CSCeh42053—Access point/bridge no longer shows dot11radio 0 enabled.
•
CSCeb52431—When logging into a TACACS+ server, access points sometimes send hundreds of
additional authentication requests to the server after a successful authentication.
additional authentication requests to the server after a successful authentication.
•
CSCsb31323, CSCsa98906—In non-root bridge or workgroup bridge mode, the access point/bridge
no longer requires an infrastructure SSID.
no longer requires an infrastructure SSID.
•
CSCeh65538 (duplicate of CSCei09772)—Access point/bridge now accepts associations after a
traffic burst.
traffic burst.
•
CSCeh42504—When VLANs are configured and the radio interface goes down, the traceback
INTERFACE_ACE_API-3-NOADDSUBBLOCK no longer displays.
INTERFACE_ACE_API-3-NOADDSUBBLOCK no longer displays.
•
CSCei09744—The access point/bridge roams within specifications.
•
CSCei09772—The access point/bridge no longer shuts down the radio interface after roaming.
•
CSCsb26690—The access point/bridge no longer crashes when more than 20 devices are associated.
•
CSCsb14224—Reverse ARP now works on all VLANs.
•
CSCsa98961—dot11RetryCount SNMP counters now agree with the CLI.
•
CSCeh88199—Critical temperature threshold established for access point/bridge.
•
CSCeh84137—Dot11 arp cache causes the access point/bridge to reload.
Cisco has been unable to reproduce this caveat.
•
CSCsa53019—Access point/bridge experiences UDP traffic performance problem when using WEP
Cisco has been unable to reproduce this caveat.