The following sections describe what is new in this release:
In this release, support for Microsoft Internet Explorer to access Enterprise Device Manager (EDM) is removed.
You can use the following browsers to access EDM:
Microsoft Edge 97
Mozilla Firefox 96
Google Chrome 97
Safari 15.3
This release introduces version 5.2.0.0 of the Fabric IPsec Gateway. This version introduces support for IPsec compression, which reduces the size of the IP payload to improve the performance over an IPsec tunnel with Fabric Extend.
Fabric IPsec Gateway OVA image 5.2.0.0 support extends to the following switches:
VSP4900-12MXU-12XE
VSP4900-24XE
VSP 7400 Series
5720-24MXW
5720-48MXW
Note
If the Fabric IPsec Gateway version is earlier than 5.0.0.0, the CLI command virtual-service <VM_name> figw-cli <FIGW_CLI_COMMAND> does not function.
For more information, see Fabric Engine User Guide.
This release includes new feature support introduced in Fabric Engine 8.6.1. Documentation is updated to include the following support changes:
Reauthentication on ports through RADIUS
Support for concurrent 4-port and 8-port 10 Gbps licenses on 5320 Series
Malicious Driver Detection (MDD) disabled in Linux kernel for Integrated Application Hosting SR-IOV operation
Support for SNMP MIB to report the current operational speed of the fan in RPM
Increase the number of SPB nodes per area using EDM on 5320 Series and 5420 Series
For more information, see Fabric Engine User Guide or view Release Notes for 8.6.1.0.
This release introduces a change to the ACL architecture for Fabric Engine switches.
In earlier releases, ACL ACE rules were defined as:
Security: ACE ID range 1-1000
QoS: ACE ID range 1001-2000
Security ACEs were used to perform permit or deny actions on a match. QoS ACEs were used to perform remarking actions on a match. The switch performed a parallel search on both Security and QoS ACE lists, which resulted in distinct and non-conflicting actions.
Now, ACL ACE rules can be defined as:
Primary Bank: ACE ID range 1-1000
Secondary Bank: ACE ID range 1001-2000
You can use both Primary and Secondary Banks for Security and QoS ACEs. The switch performs a parallel search on both ACE lists. If actions do not conflict, both actions apply. If actions conflict, the action from the Primary Bank has precedence.
Note
As a best practice, apply deny actions to Primary Bank ACEs in configurations where ACEs in Primary and Secondary Banks with deny and permit actions applied can match the same flow.
For more information, see Fabric Engine User Guide.
This change results in improved ACL scaling on the Fabric Engine switches.
For more information, see Filter Scaling.
This release introduces Extreme Integrated Application Hosting support for 5720-24MXW and 5720-48MXW, providing high-performance and flexible visibility applications using dedicated resources.
For more information, see Fabric Engine User Guide.
This release introduces EDM support to modify the spbm-node scaling boot config flag. This is only applicable to, and supported on, 5320 Series and 5420 Series.
For more information, see Fabric Engine User Guide.
You can now configure OSPFv2 point-to-point network interface type, which provides a single connection between two specific points or OSPF routers. In earlier releases, you could only configure broadcast, non-broadcast multiple access, and passive OSPFv2 network interface types.
For more information, see Fabric Engine User Guide.
Prior to this release, packets tagged with VLAN ID 0 were dropped. This release provides support for processing and forwarding packets with VLAN ID 0.
In this release, the Third Party Virtual Machine (TPVM) version is based on Ubuntu 20.04.04 LTS.
In this release, you can use CLI and EDM to view the current operational speed of the chassis fan in rotations per minute (RPM).
For more information, see Fabric Engine User Guide.