Академический Документы
Профессиональный Документы
Культура Документы
for Ethernet
Date Description
January 18, 2018 First release
1 Introduction
This document is the MLNX-OS® Release Notes for Ethernet.
MLNX-OS® is a comprehensive management software solution that provides optimal perfor-
mance for cluster computing, enterprise data centers, and cloud computing over Mellanox
SwitchX®, and Spectrum™ IC families. The fabric management capabilities ensure the highest
fabric performance while the chassis management ensures the longest switch up time.
The MLNX-OS® documentation package includes the following documents:
• User Manual – provides general information about the scope, organization and command line
interface of MLNX-OS® as well as basic configuration examples
• Release Notes – provides information on the supported platforms, changes and new features,
and reports on software known issues as well as bug fixes
The Mellanox Community also offers useful end-to-end and special HowTo guides at:
http://community.mellanox.com/community/solutions.
MSX1410 SwitchX®-2 48-port SFP+ 10GbE, 12-Port QSFP 56GbE 1U dual core x86
Ethernet switch system
MSX1710 SwitchX®-2 36-port QSFP (56GbE) 1U Ethernet dual core switch system x86
When using Mellanox AOC cables longer than 50m use one VL to achieve full wire
speed.
Release 3.6.5011
General Added GA level support for PTP
Release 3.6.5009
General Bug fixes
Release 3.6.5000
General Added GA level support for Signal Degradation Monitoring
General Configured DH default key size to 2048
Added support for UDK
ACLs
See commands under “Access Control List” section in the User Manual
Added support for TCP-UDP
ACLs
See commands under “Access Control List” section in the User Manual
Added support for ACL remarks
ACLs
See command “remark” in the User Manual
Added support for ACL shared counters
ACLs
See commands “shared-counter” and “clear shared-counter” in the User Manual
Added support for IPv6
ACLs
See commands under “Access Control List” section in the User Manual
Added support for interface VLAN binding point
ACLs
See command “bind-point rif” in the User Manual
ACLs Added support for L4 port range
Added support for logging
ACLs
See the command “access-list log” in the User Manual
Added support for TCP flags
ACLs See the commands “deny/permit (IPv4 TCP ACL rule)” and “deny/permit
(IPv6 TCP ACL rule)” in the User Manual
Added support for HLL
HLL
See section “Head-of-Queue Lifetime Limit” in the User Manual
IGMP Querier Added GA support for IGMP Querier
Added support for additional JSON commands
JSON
See Appendix “Show Commands Supported by JSON API”
PIM Added GA level support for PIM SSM
Shared Buffers Added support for user mode configuration
Shared Buffers Enhanced and simplified advanced mode configuration
Telemetry Added support for Ethernet thresholds telemetry
Added support for Tx error packet counter and “last change in operation” field
Ethernet Switching
on Ethernet interfaces
Added support for 1GbE and 56GbE speeds on Spectrum™ based switch sys-
Ethernet Switching
tems
Added support for Interface Isolation
Ethernet Switching
See section “Interface Isolation” in the User Manual
Added support for Voice VLAN
Ethernet Switching
See section “Voice VLAN” in the User Manual
Added support for Shared Buffers
Ethernet Switching
See section “Shared Buffers” in the User Manual
Ethernet Switching Added VRF support for OSPF, DHCP-R, VRRP and MAGP
Added support for last link change timestamp and a counter for link changes
Ethernet Interfaces
See command “show interface ethernet” in the User Manual
Added support for QoS Classification and Reclassification on Spectrum based
switch systems
QoS
See sections “QoS Classification”, “QoS Rewrite”, “Queuing and Scheduling”,
and “Policers” in the User Manual
Added initial support for limited OpenFlow v1.3
OpenFlow
See section “OpenFlow” in the User Manual
Added support for FEC PHY counters on Spectrum based switch systems.
FEC See commands “show interfaces ethernet transceiver counters” and “show
interfaces ethernet transceiver counters details” in the User Manual
Added support for SSH server configuration
WebUI
See page Security > SSH in the WebUI
4 Known Issues
The following sections describe MLNX-OS® known issues in this software release and possible
workarounds.
For hardware issues, please refer to the switch support product page.
1. Management Inter- The CLI command “ip default-gateway Delete the entry by
faces <interface>” sets the gateway address to using the command “no
0.0.0.0 and prevents the user from adding ip default-gateway”.
other gateways.
2. Management Inter- The “no” negation prefix is not supported Use the “no” keyword
faces prefix in the following CLI commands: as an infix (e.g. “inter-
• interface ethernet <s/p> ipv4 port face port-channel
access-group nodhcprelay <num> no switchport”).
• interface port-channel <num> switch-
port mode
3. Management Inter- Switch systems may have an expired Generate a new certifi-
faces HTTPS certification. cate by changing the
hostname.
4. Management Inter- Consecutive hostname modification is not Wait 25 seconds before
faces supported. reattempting to modify
the hostname.
5. Management Inter- Speed of mgmt0 interface is shown as N/A
faces “UNKNOWN” when working with VM.
6. ZTP Occasionally, DHCPv6 cannot get bound Run “reset factory
on management ports (mgmt0, mgmt1). [only-config]” sev-
eral times. Eventually
DHCPv6 will bind to
the mgmt port.
7. DHCP If the switch is part of an HA cluster and its N/A
hostname is set to the default hostname,
please refer to section “Configuring Host-
name via DHCP” to understand how host-
name is set by DHCP, before upgrading to
this version.
26. WebUI Importing a configuration text file with Import the configura-
commands that only get enabled after run- tion text file through the
ning other commands is not possible CLI.
through the WebUI. For example: the com-
mand “mlag-vip” is only available after
running “protocol mlag”.
27. WebUI If the configured ciphers in versions prior N/A
to 3.4.0012 were SSL and TLS ciphers,
upgrading to this version will override that.
The new default is to allow TLS ciphers
only. To enable SSL, please run the com-
mand “web https ssl ciphers all”.
28. CLI Command output filtering does not support N/A
the following commands:
• show log
• show puppet-agent log
• show configuration text files <file>
29. CLI When moving an IP filter rule (IPv4 or Complete the com-
IPv6) using the “rule move” option, the mand string using tab
prefix “mov” does not auto-complete prop- after “mov” or make
erly to “move.” This can result in incorrect sure to fully type
help options and execute errors. “move”.
30. JSON When sending JSON GET requests with a Send JSON GET
payload, it may result in the request being requests without a pay-
ignored. load.
31. SNMP Upon system shutdown, the following N/A
error may appear: “[mibd.ERR]: mdc_-
foreach_binding_ prequeried_parsed(),
mdc_main.c”. This error can be safely
ignored.
32. SNMP The ifNumbers MIB (OID: N/A
1.3.6.1.2.1.2.1.0) on x86 switch systems
displays 42 interfaces while the ifTable
displays 40 due to VM management inter-
faces that are not shown in the ifTable.
33. SNMP The tables dot1dTpFdbTable and dot1qT- N/A
pFdbTable support up to 10,000 entries
34. SNMP Request timeout should be set to at least 20 N/A
seconds since initial table calculation
requires time.
9. LAG SwitchX®: LAG Hash function lacks con- Change the distribu-
figuration of a randomization seed parame- tion function between
ter. Traffic passed over LAG in hierarchy layers performing
topology via multiple SwitchX based sys- LAG using the com-
tems is not distributed evenly. mand “port-channel
load-balance”. The
workaround is applica-
ble in case there are
multiple mixed flows.
10. LAG On PPC systems, configuring multiple N/A
LAGs as a range causes the switch to hang
for up to 10 minutes.
11. MLAG When upgrading MLNX-OS® from a ver- N/A
sion prior to 3.6.3130 to a version newer
than 3.6.3130 with MLAG cluster, output
will show “UP” and “Peering” state instead
of “Upgrade” state on both MLAG VIP
clusters.
Upgrade process will not be affected.
12. MLAG Each MLAG VIP group must be configured N/A
with a different unicast IP address. If not,
MLAG behavior is inconsistent.
13. MLAG MLAG configuration (including mlag-port- N/A
channel configuration) must be identical in
MLAG pair.
14. MLAG MLAG VIP is limited to 2 switches. If more N/A
than 2 switches connected to the same
MLAG VIP, MLAG behavior is not antici-
pated.
15. MLAG When the MPO is connected to host, span- N/A
ning tree should be disabled on the MLAG
port-channel before it is enabled (port type
set to edge and BPDU filter enabled). When
connected to a switch, spanning tree should
be disabled on the switch (“no spanning-
tree”).
16. MLAG On PPC systems, keepalive interval should N/A
be set to 3 seconds when working with over
1,000 VLANs.
25. VLAN On PPC systems, when working with more To fix the problem, run
than 2000 VLANs and trying to change a the commands
port’s VLAN membership in modes hybrid/ “interface ether-
trunk using the command “interface 1/x net 1/x switch-
switchport trunk allowed-vlan”, the port trunk
operation may timeout on account of it allowed-vlan all”
being too heavy. Thus, the port does not and “interface eth-
become properly configured as a member of ernet 1/x switch-
those VLANs. Assuming port 1 is in trunk port trunk
mode and there are 3000 VLANs created, a allowed-vlan
good practice would be to achieve member- remove 1-100” in
ship of port 1 in VLANs 100-3000, use the succession.
command “interface ethernet 1/x
switchport trunk allowed-vlan
remove 1-100” instead of “interface
ethernet 1/x switchport trunk
allowed-vlan 100-3000”.
26. QinQ QinQ is not supported over VXLAN. N/A
27. Spanning Tree Non-standard behavior may occur on third N/A
party switch STP functionality when the
port moves from Root to Alternate state.
The standard Proposal-Agreement sent by
MLNX-OS® is unanswered which may
result in traffic loss of up to 30 seconds.
28. Spanning Tree STP convergence time is slower than N/A
expected.
29. Spanning Tree BPDUs are sent from both the superior and N/A
the inferior switches.
30. Spanning Tree Port-specific attributes are not supported in N/A
MIB dot1dBridge (OID 1.3.6.1.2.1.17) in
spanning tree mode RPVST.
31. HLL Changing the HLL duration configuration No action is needed
while the port is in stall state takes effect because once it exits
after a few seconds of random delay. The stall state, expected
next time stall state is entered, it may take a system behavior
little less time (next HLL) or up to 60 sec- resumes.
onds.
32. UDK UDK might provide inconsistent results N/A
after system reload and/or if multiple keys
are configured.
33. MSTP The command “no vlan” on a VLAN inter- Dissociate the VLAN
face associated with an MSTP instance is from the MSTP
not supported. instance before run-
ning the command.
34. MSTP PPC systems under heavy MSTP configura- N/A
tion may exhibit slowness after adding a
new MSTP instance. In the ensuing minute,
if a show command is issued an error mes-
sage may appear. That message can be
safely ignored.
35. IGMP Snooping Setting the “ip igmp snooping unregistered N/A
multicast” option to “forward-to-mrouter-
ports” option reduces the number of sup-
ported VLANs to 250.
36. IGMP Snooping There is no possibility to have more than After enabling IGMP
one mrouter port on a single VLAN if snooping on that
IGMP snooping is disabled for that VLAN. VLAN, the user needs
to re-add the mrouter-
ports on that VLAN.
37. IGMP Snooping If the IP address of the IGMP querier is not Configure IGMP que-
specified explicitly and no IP address is rier IP address explic-
configured on the VLAN interface, the itly or setup an IP
default IGMP querier address is 0.0.0.0. address on the required
VLAN.
38. IGMP Snooping IGMP snooping is limited to a single MC IP N/A
per MC MAC.
39. LLDP LLDP notifications are not supported. N/A
40. LLDP LLDP ifIndexes do not match the ones pub- Use the ifDescr and
lished in the ifTable in IEEE 802.1. fields.
41. ECN Configuration of minimum-absolute value N/A
smaller than 3K might cause constant ECN
tagging.
42. ACLs Packets dropped by the switch due to con- N/A
gestion or ACL rules are added to the bad
type counter of the matching VLAN inter-
face.
43. ACLs SwitchX®-2: Interface type (router port/ Unbind the interface
switchport) cannot be changed if it is bound and then change its
to an ACL. type.
1. IPv6 DHCP-Relay None default UDP port is not supported for N/A
IPv6 DHCP-R.
2. IPv6 Routing IPv4 mapped address is not supported. N/A
3. IPv6 Routing IPv6 is not supported for SwitchX®-2 N/A
based switch systems.
4. IPv6 Routing IPv6 is supported only on the default VRF. N/A
5. ARP Under stress of ARP learning and aging, Allow software events
some ARP messages are not learned to hold unlimited notifi-
cation length.
6. In-band Manage- IPv6 in-band management does not work Enable IPv6 routing for
ment when IPv6 routing is disabled. IPv6 in-band manage-
ment.
7. IP Interfaces ICMP echo packets are not counted as part ICMP packets are
of the VLAN interface counters. counted in the interface
L2 counters.
8. IP Interfaces The maximum number of L3 interfaces N/A
that can be configured is 64.
9. Router Port Router ports are not supported on SX10xx- N/A
xxxR and SX60xx-xxxR systems.
10. Router Port It is not possible to add or remove member Physical port must
interfaces from a LAG, or delete that LAG explicitly be changed
when it is configured as a router port. from “no switchport” to
“switchport” so that
router capabilities are
reset from physical
port.
11. Router Port ICMP redirect is not supported over router N/A
port.
12. Router Port Setting a 802.1Q mode on a router port N/A
does not function properly.
13. Router Port A trunk port which is configured as router Configure the port to
port does not receive traffic to the host access mode (using the
interface. command “switchport
mode access”) before
making it a router port.
14. LLDP A port connected to a router-port receives N/A
from it an LLDP packet containing IPv4
and IPv6 management addresses. How-
ever, the IPv6 address is not included in the
LLDP MIB as a remote management
address. Only the IPv4 remote manage-
ment address is published.
15. IP Diagnostic Tools While using invoked shell commands such N/A
as ping, traceroute, tcpdump, for egressing
from a specific router interface use “-I/i
vlan<vlan id>”. For example, to ping
10.10.10.10 via interface VLAN 30 run the
command: “ping 10.10.10.10 -I vlan30”.
16. IP Routing SwitchX®-2: LAG and L3 ECMP Hash Change the distribution
functions lack the configuration of a ran- function between lay-
domization seed parameter. Traffic passed ers performing LAG or
over LAG or L3 ECMP in hierarchy topol- L3 ECMP using the
ogy via multiple SwitchX based systems is command “port-channel
not distributed evenly. load-balance” or “ip
load-sharing”. The
workaround is applica-
ble in case there are
multiple mixed flows.
17. IP Routing In IP Routing mode, multicast or broadcast N/A
packets such as ARP may be counted as
“RX discard” in case only one interface is
a member of the VLAN. These kind of
packets do reach the CPU for processing.
The progressing counter can be ignored.
18. IP Routing The configuration of “ip arp timeout” does N/A
not affect entries related to gateway, out-
of-band, or management interfaces.
19. Multicast Spectrum™: Static MC is not supported. N/A
20. OSPF The undocumented command “show ip N/A
ospf statistics” is no longer supported.
21. OSPF Removing a static ID using the command N/A
“no router-id” requires at least one L3
interface to be configured.
22. OSPF On PPC systems, OSPF supports learning N/A
of up to 4K routes.
23. OSPF Reverse packet filtering is not supported. N/A
When mis-configured, traffic may pass on
an unintended subnets.
24. DHCP DHCP-client is not functional. Use static IP instead.
25. DHCP Relay Running “clear ip dhcp relay counters” on N/A
a specific instance in a non-default VRF
deletes counters in all VRF.
26. DHCP Relay DHCP Relay is not supported on A1 N/A
SwitchX® based switch systems.
27. DHCP Relay IPv6 DHCP instance status is not accurate when Check if IPv6 is
VRF auto-helper is enabled. enabled on interfaces in
the VRF.
28. DHCP Relay IPv6 Running IPv6 DHCP-R fails if there is no N/A
upstream interface and if the downstream
interface does not have an IPv6 address
assigned or enabled.
29. VRRP Using the same Virtual IP (VIP) as the N/A
VLAN interface is not supported.
30. VRRP Upon enabling IP routing, VRRP protocol N/A
only becomes visible after VRRP is con-
figured on any L3 interface.
31. MAGP Designated traffic, such as ping, to the N/A
MAGP interface is not supported.
32. PIM MRoute entries learned via PIM remains N/A
when the interface is shutdown until the
timer expires.
33. PIM Static MRoutes are not deleted from the N/A
hardware upon interface deletion even
though they do not appear in the running
config anymore.
34. BFD The command “show ip route” does not N/A
display the BFD protection flag for both
OSPF and BGP added.
35. BFD A BFD session is not signaled as removed N/A
on a static route which is set to admin
down.
36. BFD BFD is supported for 100 sessions. N/A
37. BGP If the local network address is received N/A
from a neighbor as well, it is not learned.
38. BGP Route reflection client is only configured After configuring route
after performing “shutdown” then “no reflection, client admin
shutdown”. should run “shutdown”
then “no shutdown”.
39. BGP IGP metric does not influence route selec- N/A
tion where routes are learned from differ-
ent IGPs.
40. BGP A peer does not inherit the update-source Run “shutdown” then
parameter from its group configuration. “no shutdown” on the
peer.
41. BGP BGP is supported for 100 sessions. N/A
53. BGP IGP metric does not affect route selection N/A
where routes are learned from different
IGPs.
54. IGMP Querier IGMP on router port currently does not Reorder “IGMP” and
have a dedicated show command for “PIM stop” in “no ip
included groups. multicast-routing”.
55. IGMP Querier Running “show ip igmp groups” command N/A
does not print “source” and “expires”
parameters in output.
56. IGMP Querier Spectrum™: IGMP Querier is not sup- N/A
ported.
57. VRF Any VRF can be monitored with sFlow, N/A
but a collector can be on the management
VRF only.
5 Bug Fixes
5.1 General Bug Fixes
The following table describes MLNX-OS® bug fixes in this software release.
N/A N/A