ExtremeXOS Release Notes Version 22.5.1.Patch1-3
> Extreme Switch Security Assessment
Published January 2019
prev
|
next
Print this page
Email this topic
Feedback
View PDF
Download EPUB
Preface
Conventions
Text Conventions
Platform-Dependent Conventions
Terminology
Providing Feedback to Us
Getting Help
Related Publications
Overview
Security Information
Critical CVEs
OpenSSL Version
Linux Kernel
Upgrading ExtremeXOS
New and Corrected Features in ExtremeXOS 22.5.1-Patch1-3
BOOTP Relay over L3VPN
Cisco Discovery Protocol (CDP) Voice VLAN Tag in Every Packet
Multiple Spanning Tree Protocol (MSTP) on Multi-switch Link Aggregation Groups (MLAGs)
Algorithmic Longest-Prefix Match (ALPM) Improvements to Increase Long-Mask IPv6 Routes
Zero Touch Provisioning (ZTP) DHCP Discovery over Tagged VLANs
Logging Unabbreviated Commands
Stacking License Upgrade Process Improvement
Policy icmptype and icmp6type Classification Rules
Virtual Extensible LAN (VXLAN) Tunnel Improvements
Fabric Attach Server Mode Supported and Policy Improvement
sFlow Extensions
Extended Edge Switching
BGP Auto-peering
Policy to Virtual Extensible LAN (VXLAN) Mapping
Comparing Configurations
OpenSSH Upgrade and Increased support for Diffie-Hellman Groups
Avoiding Potential Loss of TLS Syslog Logging
Ability to Restrict TACACS Authentication with Privilege Level Attribute
Power Supply Fan Air Flow Direction Information
Creating Processes on Secondary Nodes
RESTFul API for Telemetry/L2/PoE
Updating the Programmable Logic Firmware on the Summit X440-G2 and ExtremeSwitching X620 Series Switches
Extreme Hardware/Software Compatibility and Recommendation Matrices
Compatibility with ExtremeManagement (Formerly NetSight)
Supported MIBs
Tested Third-Party Products
Extreme Switch Security Assessment
Service Notifications
Limits
Open Issues, Known Behaviors, and Resolved Issues
Open Issues
Known Behaviors
Resolved Issues in ExtremeXOS 22.5
Resolved Issues in ExtremeXOS 22.5.1-Patch1-2
Resolved Issues in ExtremeXOS 22.5.1-Patch1-3
Extreme Switch Security Assessment
DoS Attack Assessment
Tools used to assess DoS attack vulnerability:
Network Mapper (NMAP)
ICMP Attack Assessment
Tools used to assess ICMP attack vulnerability:
SSPing
Twinge
Nuke
WinFreeze
Port Scan Assessment
Tools used to assess port scan assessment:
Nessus
Print
this page
Email this topic
Feedback
View PDF
Download EPUB