Cisco Cisco IOS Software Release 12.2(1)DX
9
Release Notes for Cisco 7000 Family for Cisco IOS Release 12.2 DX
OL-2930-03
New and Changed Information
The Modular QoS CLI on PXF does not currently support the following match criteria that are available
on other Modular QoS CLI-supported platforms:
on other Modular QoS CLI-supported platforms:
•
Destination address
•
Input Interface
•
Internet Protocol (IP) values
•
Multiprotocol Label Switching (MPLS) values
•
Protocol
•
Quality of Service (QoS) group values
•
Source address
For additional information on the Modular QoS CLI, see the Modular Quality of Service Command-Line
Interface document.
Interface document.
RADIUS Attribute Screening
Platforms: Cisco 7200 and Cisco 7400 series routers
The RADIUS Attribute Screening feature allows users to configure a list of “accept” or “reject”
RADIUS attributes on the network access server (NAS) for purposes such as authorization or
accounting.
RADIUS attributes on the network access server (NAS) for purposes such as authorization or
accounting.
If a NAS accepts and processes all RADIUS attributes received in an Access-Accept packet, unwanted
attributes may be processed, creating a problem for wholesale providers who do not control their
customers’ authentication, authorization, and accounting (AAA) servers. For example, there may be
attributes that specify services to which the customer has not subscribed, or there may be attributes that
may degrade service for other wholesale dial users. The ability to configure the NAS to restrict the use
of specific attributes has therefore become a requirement for many users.
attributes may be processed, creating a problem for wholesale providers who do not control their
customers’ authentication, authorization, and accounting (AAA) servers. For example, there may be
attributes that specify services to which the customer has not subscribed, or there may be attributes that
may degrade service for other wholesale dial users. The ability to configure the NAS to restrict the use
of specific attributes has therefore become a requirement for many users.
The RADIUS Attribute Screening feature should be implemented in one of the following ways:
•
To allow the NAS to accept and process all standard RADIUS attributes for a particular purpose,
except for those on a configured reject list
except for those on a configured reject list
•
To allow the NAS to reject (filter out) all standard RADIUS attributes for a particular purpose,
except for those on a configured accept list
except for those on a configured accept list
Virtual Private Dial-up Network Extended Fail-over Conditions
Platforms: Cisco 7200 and Cisco 7400 series routers
The Virtual Private Dial-up Network (VPDN) failover has been extended to occur in instances where the
receiving node sends an error message to the transmitting node. Before this feature, the failover
mechanism would only occur when the transmitting node did not receive a response from the receiving
node.
receiving node sends an error message to the transmitting node. Before this feature, the failover
mechanism would only occur when the transmitting node did not receive a response from the receiving
node.
This feature occurs automatically when failover is configured, so this feature has no new command.
Failover is configured in the VPDN group by using the initiate-to command.
Failover is configured in the VPDN group by using the initiate-to command.