Professional Documents
Culture Documents
OcNOS SP 4.0 ReleaseNotes All
OcNOS SP 4.0 ReleaseNotes All
Open Compute
Network Operating System
Version SP 4.0
Release Notes
February 3, 2021
© 2021 IP Infusion Inc. All Rights Reserved.
This documentation is subject to change without notice. The software described in this document and this
documentation is furnished under a license agreement or nondisclosure agreement. The software and
documentation may be used or copied only in accordance with the terms of the applicable agreement. No
part of this publication may be reproduced, stored in a retrieval system, or transmitted in any form or any
means electronic or mechanical, including photocopying and recording for any purpose other than the
purchaser's internal use without the written permission of IP Infusion Inc.
IP Infusion Inc.
3965 Freedom Circle, Suite 200
Santa Clara, CA 95054
+1 408-400-1900
http://www.ipinfusion.com/
Trademarks:
IP Infusion, OcNOS, VirNOS, ZebM, and ZebOS-XP are trademarks or registered trademarks of IP
Infusion. All other trademarks, service marks, registered trademarks, or registered service marks are the
property of their respective owners.
Use of certain software included in this equipment is subject to the IP Infusion, Inc. End User License
Agreement at http://www.ipinfusion.com/license. By using the equipment, you accept the terms of the End
User License Agreement.
Dell
EdgeCore
Tibit Communications
Delta Agema
Qualified ONUs
• BFW Software/Firmware version: 3.2.20 (WAC5-40PG-TLAB-SR3.2.20).
• Alpha Software/Firmware version: Provisionally 5.02L.07_008 (PON-34000B).
EdgeCore AS5912-54X
EdgeCore AS7316-26XB
NETWORKS
EdgeCore AS5916-54XKS
EdgeCore ASXvOLT16
LACP Force-Up
The Force-up feature forces the member port of a dynamic LAG (Link Aggregation Group) to
be logically operational irrespective of the operation status of the dynamic LAG.
Port Security
Port security enables users to configure the maximum number of secured MACs for each
physical and logical port.
Dynamically learned or statically programmed MAC addresses do not exceed the maximum number of
secured MACs configured for a particular port.
Once the switch reaches the maximum limit for secured MACs, traffic from all other MACs is dropped.
Debounce Timer
This feature avoids frequent updates (churn) to higher layer protocols during flapping of an interface. If
the status of a link changes quickly from up to down and then back to up, the port debounce timer
suppresses the link status notification. If the link transitions from up to down, but does not come back up,
then the port debounce timer delays the link status notification. This feature is applicable only for physical
link flaps.
Bidirectional-PIM
Bidirectional PIM extends it to provide source-agnostic multipoint-to-multipoint multicast forwarding. This
forwarding is based on a RP rooted distribution tree and designated forwarder election on each
forwarding segment. The implementation is based on RFC 5015.
Note:
• Bidirectional PIM RP count up to 256 supported.
• Supported gross multicast routes (including bidir,non-bidr and snooping) is up to 48K for Qumran
MX and up to 12K for Qumran AX chipsets.
EVPN-MPLS
Ethernet VPN (EVPN) is a next generation solution that provides Ethernet multipoint services (E-LAN, E-
LINE, E-TREE) over VxLAN/MPLS networks. It solves the limitations of existing deployed VPLS/VPWS
such as, control plane MAC learning for load-balancing, Multi-Homing and Scalability.
EVPN-VxLAN
EVPN with VxLAN is popular in DC deployments, also can be used in other deployments for
end to end L2 VPN service. This facilitates control plane MAC learning for load-balancing,
ARP/ND cache local response and Multi-Homing.
EVPN-VxLAN network port can be of any L3 type (physical/SVI/LAG/sub-ifp etc) . The below
sub-features are supported in this release:
• E-LAN : ARP/ND cache (enable/disable), ARP revalidate, MAC-hold timer, ESI-hold timer
• E-LAN Multihoming Support in Active-Active Mode.
• QoS support on Access & Network ports.
• Scalability support upto 2K VNID.
PCEP RSVP
With the help of PCEP protocol, OcNOS can query the path required to establish MPLS-TE tunnels. PCE
Protocol allows the PCC to offload the CSPF computations to the controller and be responsible only for
signaling the MPLS Tunnels using RSVP-TE. Controllers typically can be used for leveraging the overall
visibility it might possess.
PCEP-SR
With the PCE-SR it is possible to use a stateful PCE for computing one or more SR-TE paths subject to
certain constraints and optimization criteria in SR networks. A PCC can request an SR path from either a
stateful or stateless PCE using SR Policy. PCE will send PCReply with SR-ERO sub objects to make SR-
POLICY up. A network controller (acting as a PCE) can also initiate candidate paths for an SR policy onto
head-end node (acting as a PCC) using PCEP. PCC can also delegate SR Policies to controller (PCE),
later PCE can update the candidate paths ERO. Stateless LSPs can also be delegated to controller
(PCE), after delegation it will act as stateful LSP.
SR OAM
LSP ping and Traceroute mechanisms are used to detect and isolate faults in MPLS dataplane. Segment
routing operates on top of MPLS dataplane. So the mechanism of data plane validation defined in RFC
4379 can be applied to Segment routing as well. SR Ping and Traceroute will be an extension to MPLS
Ping/Traceroute to detect and isolate the fault. In this case, IGP Prefix SID or IGP Adjacency SID Target
FEC stack TLV are carried to perform FEC validation.
LDP Inter-Area
During scaling scenarios with many PE nodes require redistribution of a large number of addresses by
the ABR which is not an optimal solution. To address this issue, LDP Inter-Area feature as defined in RFC
5283 is supported, with following:
• Route (IP) aggregation at the ABR. This route aggregation when enabled, shall ensure that only
summary routes (aggregated prefix) be advertised by the ABR. The LSR receiving the route update
shall install the summary routes in the corresponding RIB.
• Handling of FEC’s for which an exact match is not present in the RIB. Once the ABR starts
advertising the IGP aggregated routes, the same gets installed in the LSR RIB. Now when an LDP
RSVP MIB
Support for managed objects to monitor MPLS RSVP MIB w.r.t RFC 2206.
L3VPN MIB
Support for managed objects to monitor MPLS L3VPN MIB w.r.t RFC 4382.
OSPFv3 MTU
This feature helps in establishing the OSPFv3 sessions over interfaces that have mis-matched
MTUs by advertising the configured OSPFv3 MTU in OSPFV3 DD packets.
BFD MIB
BFD private MIB support implemented for BFD IPv4 and IPv6.
PON FEC
The OcNOS OLT supports configuration of Forward Error Correction for PON network.
Jumbo Frame
The OcNOS OLT supports Jumbo frames.
SFlow
The OcNOS OLT supports SFlow Counter Sampling for PON and NNI interfaces.
OSPF v2 domain-id
The domain-id feature helps in installing VPNv4 MP-BGP learned OSPF Intra-area and summary routes
of the same domain as summary routes instead of AS external routes. When routes are learned from
different domains, the routes will be installed as external routes.
Netconf Support
Netconf Framework Support
Support of Netconf Server accepting incoming connections over SSH port 830.
Reconfiguration
The OcNOS OLT supports handling of reconfiguration: OLT reboot, ONU reboot, enabling/disabling of
PON and NNI port, ONU MIB reset, locking/unlocking of UNI port and enabling/disabling OLT.
MLD Snooping
The MLD Snooping runs on a Layer 2 device to listen on MLD conversations between hosts and routers.
It maintains a map regarding which port is interested in which IP Multicast streams. This prevents hosts
from receiving traffic for a multicast group to which they haven’t joined.
Note:
• MLD snooping feature is implemented as per RFC 4541.
• MLD snooping is enabled by default.
MLD snooping supports maximum multicast groups up to ~49151 for Qumran MX chipset and up to
~12248 for Qumran AX chipset.
L2 Sub-Interface
L2 Sub-Interface makes it possible for a logical interface to be created on an Ethernet physical interface
to handle one slice of resource handled by the physical interface. The supported method for this resource
slicing is VLAN credential based. VLAN credential for a Subinterface may be a single tag as in 802.1q or
double tag based on 802.1ad. This L2 Subinterface provides support for 4 TPIDs (8100,88a8,
9100,9200), of which all 3 later TPIDs will be referred through Service-TPID value configured under the
corresponding parent port.
The intended L2 service with this support for L2 subinterface is:
L3 Sub-Interface
L3 Sub-Interface is enhanced with the below features:
• MAC and IPv4 ACL is supported on L3 Sub-interface.
• QoS (dscp-to-queue, dscp-to-dscp, Policer & Remarking) are supported on L3 Sub-Interface.
• MPLS support - LDP, RSVP on the network side and L3VPN on access side is available for L3
Sub-Interface.
• IPv6 unicast routing with OSPFv3 and BGP is supported on L3 Sub-Interface.
Note:
• Both L2 and L3 Sub-Interfaces are supported on the same physical interface.
Passwordless SSH
OcNOS now supports passwordless SSH. with this, key-based authentication is supported in SSH which
is more secure than password-based authentication.
Technical Documentation
Please refer to the following technical documentation for OcNOS:
• OcNOS Installation Guide
Installation procedure for OcNOS on ONIE (Open Network Install Environment).
• OcNOS Configuration Guide
Complete configuration guide for all features.
• OcNOS MPLS Configuration Guide
Complete configuration guide for MPLS features.
• Quick Configuration Guides:
Use the guides below for quick feature configurations. Refer to the OcNOS Configuration Guide
for features other than those covered below.
o OcNOS Layer 2 Quick Configuration Guide
Layer2 features VLAN, LAG, LLDP, STP, RSTP, and MSTP.
o OcNOS Layer 3 Unicast Quick Configuration Guide
RIP, OSPFv2, ISIS, BGP, BFD, and VRRP.
o OcNOS System Management Quick Configuration Guide
User management, SSH, Telnet, Syslog, DNS, and DHCP.
• OcNOS Feature Matrix
Standards compliance by feature.
• OcNOS Troubleshooting Guide
Procedures to resolve common problems.
• OcNOS MIBs (Layer 2, Layer 3):
https://github.com/IPInfusion/OcNOS/tree/OcNOS-SP-4.0/mibs
• OcNOS Ansible modules:
https://github.com/IPInfusion/OcNOS/tree/OcNOS-SP-4.0/ansible
• OcNOS Yang modules for NetConf clients:
https://github.com/IPInfusion/OcNOS/tree/OcNOS-SP-4.0/yang-files/qumran
ONIE:/ # onie-sysinfo
x86_64-dellemc_s4248fbl_c2538-r0
OcNOS can be installed via ONIE installer using various methods such as HTTP, TFTP, FTP and DHCP.
Same has been verified on all the Edgecore platforms that are supported as part of this release.
Remote Access
OcNOS login (username/password: ocnos/ocnos) is for administration access of the router via
console/SSH/Telnet.
Root login (username/password: root/root) is supported only via console.
Reinstall
A reinstall is nondestructive and saves existing configuration files which are applied when OcNOS starts.
In a reinstall upgrade, you install a new OcNOS version over an existing OcNOS version by:
• Choosing ONIE: Install OS during ONIE boot up, following the instructions in the OcNOS
Install Guide
or
• Running the sys-update install command as described in the OcNOS Install Guide
It is recommended to take a backup of the configuration before a reinstall.
Migration pre-requisite
• Upgrade from SP 2.4 or previous releases to SP 4.0 is incompatible and requires NOS
installation from ONIE shell. Alternatively, perform sys-update to SP 3.0 followed by sys-update to
SP 4.0 or later releases.
Note: The sys-update method is the only way when management port and the device console are
not is use.
• Upgrade from SP 2.4 or previous releases to SP-3.0 or above may lead to license invalidation
because of the SKU mismatch between the license and software installed on the device.
Subsequently, device configurations will be lost and cannot be restored. Please refer to the
“License SKU migration” section from the Migration document.
Please refer to the Migration document for the CLI/Configuration changes.
Fresh Install
A fresh install is destructive and deletes all existing configuration. You must manually restore the
configuration from backups as needed.
In a fresh install upgrade, you:
• Uninstall an existing OcNOS version by choosing ONIE: Uninstall OS during ONIE boot up.
• Install a new OcNOS version by choosing ONIE: Install OS and then follow the instructions in
the OcNOS Install Guide.
A fresh install can only be done during ONIE boot up.
BGP ECMP
• Weight, Local Preference, AS Path, Origin code, MED, IGP metric Needs to be same to be a
multipath candidate.
• To be multipath-candidate with AS Path - AS path length and Neighbor AS value should be same.
• Next-Hop address for the each path should be different.
6PE/MPLS VPN
• Graceful restart is not supported for L3VPN/6PE/6VPE.
• In MPLS VPNv4/VPNv6/6PE Inter-AS Option-C, RSVP-TE tunnel is not supported as end-to-end
trunk cannot be created in this case. TE to LU stitching is also not supported on ASBRs in Inter-
AS option C.
6PE
• Only per VRF label allocation (default) is recommended though per prefix and per VRF label
allocation modes are supported.
• If per-VRF label allocation is configured, the per VRF label allocation applies only for the local
routes (connected routes, static routes redistributed OSPFv3/ISIS routes and routes from BGP
IPv6-unicast peer to IPv6-labeled-unicast peer). Other than these, label allocation happens per-
prefix (on 6PE ASBR).
Layer-2
• VLAN IDs that can be configured and used are mentioned below. Remaining VLANs have been
reserved for internal use:
Layer 3
• Graceful Restart of OSPF with Virtual link is not supported.
• IPv4 is supported with the following caveats:
o BGP configurations are limited to a single instance
o ECMP is not supported for routes learned via RIP
o OSPF Multi-Area Adjacency is not supported
o BGP Next-Hop Tracking is not supported for MPLS routes
o BGP Outbound Route Filter is not supported
o BFD is not supported for VPNv4 address family
o VRF for ISIS is not supported
CFM
• Down MEP and MIP are not supported for VPWS instance.
• AIS (Alarm Indication Signal) is not supported for MEPs created over VPWS.
• CCM Tx/Rx counters are not supported for MEPs created for VPWS.
• UP MEP/MIP is not supported for L2 Bridge.
• A maximum of 950 MEPs is supported.
Sub-interface
• NETCONF is not supported for Layer 2 and Layer 3 sub-interface
• Only In and Out interface statistics are supported
MPLS
• LDP Inter-Area Graceful Restart (GR) is not supported in this release.
• LDP Inter-Area Downstream-on-Demand(DOD) is not supported.
• LDP Inter-Area - Only PREFIX_ACL is supported. Prefix-list is not supported.
• For L3 VPN MIB, 6PE/6VPE VRF routes fetching is not supported.
• Port Security:
o Violation detection: Traffic drop from unsecure MAC will not be notified to users via log
messages or SNMP traps.
o On enabling port-security , device shall clear all previous programmed MAC on that port.
• For LACP Force-up, configuring multiple ports as force-up is not allowed.
• lacp force-up cannot be configured when channel-group mode is configured as passive.
• MPLS for IPv6 networks are not supported.
• MAC aging timers for VPLS are not supported in Hardware.
• MPLS ECMP is not supported.
• For RSVP, Penultimate Hop Popping (PHP) is disabled by default i.e default behavior is no-php.
We recommend to use this default behavior and not to enable the PHP configuration for RSVP. If
PHP mode is used, the total number of RSVP trunks will be limited to 512 due to hardware
limitation. Egress node should be in no-php for FRR if the protection is on the PHP node.
• The advertise-label command under LDP is supported only for downstream, on-demand label
distribution mode.
• L2VPN:
o The supported TPID for VPLS/VPWS is 0x8100,0x88a8,0x9100.
• Depending on the topology, detour path may not merge with the protected LSP, it may directly
terminate at the egress. This may increase the number of LSPs in the network.
• If the user provides the RSVP path option for secondary, the primary path exclusion logic gets
disabled. User needs to keep primary and secondary path mutually exclusive. Else, RSVP-
Primary LSP and RSVP-Secondary LSP may select the same next hop, when RSVP is
configured with loose. Hence RSVP-Path first next-hop should be strict.
• Statistics:
o Statistics for reserved label range (0-15) is not supported.
o Multicast traffic is not counted in egress direction statistics.
o On egress node, in-label statistics for tunnel label shows only IP traffic count, L2VPN or
L3VPN traffic not counted for in-label statistics.
o Statistics do not show error packets or policy dropped packets on LSP Tunnel or L2-Circuit
Pseudowire.
Management
• Routing and switching protocols are not supported on management VRF. Only the management
application protocols mentioned in new feature section are supported on management VRF.
• The I2C takes about 2 minutes to read the transceiver EEPROM, which causes the delay.
• Sometimes telnet process can take 100% CPU usage continuously after overnight stress testing.
• During the Upgrade via In-band port, the download of the build is taking a long time. Though the
build is getting downloaded, it is not booting up with the downloaded image due to the session
timeout. So the upgrade is failed.
Note:
• Although the upgrade is failed due to session time-out, then also the system can be upgraded
with the downloaded image which is present under /installer/ folder using the size - update.
Multicast
• IGMPv2 group compatibility mode and IGMPv2 host compatibility mode is not supported.
• A maximum number of Multicast interfaces (VIF) supported are 100.
MLD Snooping
• Limited support for version 2. i.e: Source-based learning is not supported.
• Report-suppression is not supported on Qumran devices.
• Explicit host tracking, Immediate leave and MLD snooping proxy are not supported
• Multiple Group addresses map to single multicast MAC address, as only one forwarding entry can
exist for the same set of group addresses, the forwarding entry would typically be that of one of
the group entries
• On Broadcom dune platforms, MLD reports would be flooded to all ports except the incoming
ports
Hardware BFD
• Supports a maximum of 256 BFD Sessions only.
MPLS DIFFSERV
• For L2 VPN, at the egress node, Queue selection happens on basis of service label’s Exp.
• Service template configuration without rewrite operation will override the MPLS Diffserv model.
EVPN VxLAN
• This feature is not supported on QumranAX (QAX) chipset based platforms and supported only
on QumranMX (QMX) chipset-based platforms.
• Due to chipset limitation COS override at the access port egress is not supported, when inner VID
is not disabled.
• Due to chipset limitation, a specific TPID cannot be set on the access interface when inner VID is
not disabled.
• The limitation with hardware profile groups, when VxLAN is enabled, a maximum of 3 other
groups can be configured. Alternatively, if already 4 other groups are enabled then VxLAN enable
will fail.
• MAC move and MAC-IP conflict are not supported.
Note: MAC move for L2 traffic is not supported. MAC move can be detected through the ARP/ ND packet.
• Only All-Active multihoming will be supported. A CE can be multihomed to only two PEs.
• MAC Hold timer will not be applicable on ESI interface.
• Arp-cache disable sometimes affects host state and hence flooding might occur.
• Queue-color-cos remarking will not work for VNI which do not have inner-vid-disable.
• Source and target MPLS-ID to be unique for XConnect.
EVPN MPLS
• EVPN can work with either VxLAN or MPLS underlay. Both cannot be enabled together on the
same node.
• Multi-Homing only Active-Active mode supported with max 2 MH peers and max 8 ESI (ethernet
segments) per node towards access-side.
• When admin does “evpn mpls enable/disable” the board needs to be rebooted to enable the
EVPN SOC in hardware.
OSPFv3
• SNMP Get APIs are not supported.
• Domain-id is not supported in OSPFv3.
• OSPFv3 MTU size should be less than or equal to interface MTU to avoid fragmentation.
ISISv6
• Multi-topology is not supported. (This is not supported for ISISv4 as well)
BFD
• BFD for RSVP-TE not supported. However, when OSPF BFD is enabled, in case of connectivity
lost, RSVP FRR is triggered within 50ms.
• With Hardware-offload BFD (on hardware), keyed-MD5 and Meticulous keyed-MD5
authentication type is not supported.
Traffic Management
• IEEE 802.1P/Q mapping to IP DSCP is not supported.
Platform
• When Incompatible transceiver(s) insertions result in hang, two possible recovery mechanisms
are:
o Remove the incompatible transceiver
o Power Cycle the board (Not reboot)
• When Incompatible transceivers insertion results in hang, system reboot or CMMd restart could
lead to undefined behavior (includes inaccessible system).
• When the system first boots up after upgrade with incompatible transceiver present which results
in hang, the system might be inaccessible after the upgrade.
• DELL transceiver having Part No. 14NV5 is not supported.
• UFI_S9500-30XS does not support notification logs and SNMP traps for insert/removal of power
cable/power fluctuation on one of the PSUs.
Entropy Label
• Entropy label for OAM is not supported.
• ELC signaling is currently supported for RSVP and LDP transport only.
OLT
• 1:1 subscriber service is identified based on s-tag and c-tag (p-bit is not included)
• NNI port-breakout is not supported
• ACL, DHCP & Statistics for N:1 flow is not available.
• Maximum bandwidth for Edgecore platform with FEC enabled is 8G and for TIBIT its 8.5G.
• OcNOS 4.0 is not compatible with 1.2 firmware on TIBIT.
• Parallel interactive ONU command execution at the same time is not supported.
• Multiple N:1 flows for same S-vlan on the same Alpha ONU require upstream traffic to be sent
first for downstream to work.
• Rx Packet counter on OLT for jumbo frame traffic does not increment.
• MTU for jumbo frame needs to be set in the beginning, on the UNI port before flow is configured.
System Management
• DHCP Prefix delegation is not supported
Debounce Timer
• Debounce timer has to be configured on both ends of the network link. Configuring it on one side
of the network is not supported.
Segment Routing
• For ISIS and OSPF:
o Redistribution of Prefix-SID stlv is not supported.
o Graceful Restart for SR is not supported.
o For the SR Label Switched Path, Load balancing or ECMP is not supported.
o SNMP MIB Support for SR is not available.
o Anycast-SID and Parallel adjacencies (RFC 8402 Section 3.4.1.) is not supported.
o In case of OSPF-SR, Segment Routing for External Prefixes is not supported.
• For BGP-LS-OSPFand BGP-LS-ISIS, SRLB range is not carried in BGP-LS NLRI.
• As part of SR-TI-LFA, only Link protection is supported. Node Protection is not supported.
• For SR policy:
o Only Type-1 segment(mpls label) is supported in segment-list.
o Multiple weighted segment-lists not supported for a Candidate Path.
o Originator based selection is not supported for Candidate Path.
o trace mpls for SR policy with explicit path is not supported.
o MAX SID depth is platform-dependent. With QUMRAN boards, the supported stack-
depths is as follows:
Without-service i.e., Only transport labels - 6 label stack.
With Service - 4 transport labels + 1 or 2 Service label.
• For SR-OAM, reply-mode 3 for ping (or trace) ospf-sr/isis-sr is not supported.
NetConf
• Defect Description:
Setting the anycast flag for IPv6 address for an interface is not working via CLI and Netconf.
Defect ID: 37983
• Defect Description:
Speed monitor configuration for Interface is not supported via Netconf in this release.
• Defect ID: 38155
• Defect Description:
Static IPv6 neighbors cannot be configured via Netconf in this release.
Defect ID: 38235
• Defect Description:
ARP ageing timeout and proxy ARP for an interface cannot be configured via Netconf in this
release.
Defect ID: 38119
Workaround: Can be configured via CLI.
OLT
• Defect Description:
When using BFW ONU with firmware SR.3.2.28 1:1 flow traffic is dropped at Tibit because tag
0x88a8 is not inserted at ONU.
Defect ID: 43209
Workaround: Configure double tagged traffic or downgrade to prior BFW ONU version to get 1:1
single tagged flow traffic.
• Defect Description:
For multiple N:1 flows on different uni ports of same Alpha ONU, downstream traffic drops, if run
prior to upstream traffic. This is a limitation of Broadcom firmware running on ONU.
CFM
• Defect Description:
Y.1731 SLM Loss Measurement is not supported on AS7316.
Defect ID: 30709
L2
• Defect Description:
Port security for static MAC is not supported on the customer edge port.
Defect ID: 43394
L3
• Defect Description:
OSPF LSA Refresh timer modifications are not supported in this release of OcNOS.
Defect ID: 28892
• Defect Description:
OSPF max-metric is not supported in OSPF global configuration in this release of OcNOS. Other
sub-features of max-metric are also not available for this release.
Defect ID: 28889
Workaround: User needs to manually configure maximum metric if the router needs to be
bypassed for any upgrades or reloads.
• Defect Description:
During node reboot, the LSP advertisement can take place before the route is installed on the
rebooting node. This can result in traffic loss for the duration until the route is installed in the data
plane (normally less than 15 sec).
Defect ID: 31140
• Defect Description:
When the OSPF-FRR and flood reduction is configured on all nodes, and flap the network
interfaces on LSR node it may result in LDP ILM missing case which breaks the LSP path
impacting the services over it (BGP session may be stuck in connect state). The issue has seen
1/10 attempts. Without OSPF-FRR and flood reduction, the issue is not observed.
Defect ID: 36500
Workaround: Clear LDP session to recover from the issue.
• Defect Description:
MPLS
• Defect Description:
Inter-area RSVP-TE is not supported for this release of OcNOS.
Defect ID: 26546
• Defect Description:
During multiple link failures testing, LDP-LSP path could be broken between AGG nodes. This
may occur in a specific scenario with two redundant IGP ASBRs and is only observed while
running two different MPLS transports in different ISIS instances (one using LDP and other using
RSVP) and avoids LDP to select the next-hop on an interface which is not enabled for LDP
protocol. The issue is only specific to ISIS and cannot be seen with any other routing protocol or a
mix of routing protocols.
Defect ID: 36345
Workaround: The recommendation is to change the ISIS metric (or metric-type) in route-map
when redistributing its loopback between two ISIS instances on the IGP ASBR nodes so that ISIS
selects the next-hop which lies in the redistributing ISIS instance when calculating SPF for the
loopback address advertised by the redundant IGP ASBR.
• Defect Description:
Traffic loss is observed for VPWS service after multiple shut / no shut of the network interfaces.
Defect ID: JIRA- 36094
Workaround: Clear transport (RSVP/LDP) over which VPWS service is configured, for recovering
traffic loss.
• Defect Description:
BGP LU next-hop updates are handled as a delete followed by add. This may lead to higher
convergence time in case there are more services over BGP LU.
Defect ID: JIRA- 37622
• Defect Description:
When LU and LDP are configured at the same time in the network, Manual stopping of LDP by
way of software-induced segmentation fault will result in inconsistent LSP's in the data path.
Defect ID: JIRA- 40304
Workaround: When the LDP process is manually stopped by induced software crash, reload the
node to avoid inconsistent MPLS LSP.
• Defect Description:
LDP label re-distribution(mapping) process may take longer when ISIS daemon (underlying IGP)
alone is re-started upon fault recovery. This may result in higher convergence (around 2
seconds).
System Features
• Defect Description:
Interface level LLDP counters are not displayed in Netconf get output when only lldp run is
enabled globally, (without explicitly configuring LLDP agent on the interface).
Defect ID: 40050
Workaround: Use show lldp interface <> to check the counters.
• Defect Description:
"Clear ntp statistics" does not clear the statistics
Defect ID: 42501
Use the CLI “ntp sync-retry“, which clears the statistics. Please make a note that this CLI triggers
the NTP clock sync operation as well.
PTP
• Defect Description:
PTP: Packet Layer Transient Response and Holdover Performance not in an acceptable range
(UFI 9500-30XS).
Defect ID: 29852
Workaround : Use command in Synce mode “dpll3-select 10mhz-in” (UFI 9500-30XS). Connect a
loopback cable 10mhz-in to 10mhz-out.
Hardware Statistics
• Defect Description:
For all the following hardware statistics, need to enable the appropriate Hardware Profile for
statistics to be enabled. Without enabling the profile, the statistics will be reflected as 0
o ac-lif stats for VxLAN access ports
o CFM-CCM stats for CFM CCM counter
o CFM-LM stats for CFM Loss Measurements
o Ingress-ACL stats for Ingress ACL
o MPLS-AC stats for attachment circuits
o MPLS-LSP stats for MPLS LSP's
o MPLS-PWE stats for MPLS pseudowire-lif's
o Tunnel-lif stats for VxLAN tunnels
Defect ID: 28345
EVPN MPLS
• Defect Description:
In the scalable EVPN MPLS config(2K EVI, 2K access ports) with traffic,if "clear mac address
table dynamic evpn-mpls" command is issued, temporary CPU hog is observed till FDB sync is
settled.
Defect ID: 43279
Workaround: No functional impact, suggested to avoid doing clear mac address table when
scalabale config is there and traffic is running for the same. If the issue happens, system will
recover by itself.
• Defect Description:
In EVPN MPLS multihoming scaled config(2K EVI, 2K access ports) when one of the PE reboots,
traffic loss may be seen for some of the streams. This issue is seen only intermittently.
Defect ID: 43278
Workaround: At the switch/CE, do shut no-shut of the interface connected to multihomed PE
nodes making sure that shut and no-shut are at least 5 sec apart.
• Defect Description:
In EVPN multihoming sometimes ARP/ND entries are not visible in the remote PE/VTEP, locally
they are present.
Sub Interface
• Defect Description:
Interface MIB objects Speed and Phyaddress values are wrongly displaying for Sub-interface
Defect ID: 43251
Multicast
• Defect Description:
MSDP session may flap if there are more than 200 source advertisements to the same peer.
Defect ID: 42487
OLT
• Defect Description:
Single tagged traffic (S-tagged only) with non-zero p-bit does not work.
Defect ID: 40075
Workaround: Use double tag traffic for the service if non zero p-bit is to be configured.
• Defect Description:
Traffic is not resuming after upgrading BFW ONU firmware.
Defect ID: 41528
Workaround: Traffic is resumed after ONU reboot.
• Defect Description:
ONU is not discovered when changing the ONU profile before the ONU discovery and OLT
coming up.
Defect ID: 41385
Workaround: Reboot the OLT to discover the ONUs.
• Defect Description:
Dynamically changing of ONU mode and disabling/enabling of OLT may result in BFW ONU not
getting discovered.
Defect ID: 42118
Reboot of the OLT will recover the BFW ONU discovery.
VxLAN
• Defect Description:
vxlan disable with huge config (more than 1K VNID and 1K access-ports) and continuous ARP
traffic on VxLAN-access ports makes OSPF session to flap.
Defect ID: 37784
MPLS
• Defect Description:
During scaling scenario (around 4000 VPWS), if the LDP process is forcefully restarted (kill -11 or
kill -9), it results in few of the PW's to go in standby at one end.
Defect ID: JIRA- 40550
Workaround: Clearing LDP session over which VPWS is mapped.
• Defect Description:
Have VPWS services over LDP transport. Also, have another LDP FEC path via the alternate
interface and BGP LU FEC for same. After shut of interface, VPWS goes in standby at one side.
Defect ID: JIRA- 40227
Workaround: Clear LDP session over which VPWS is mapped.
• Defect Description:
When an RSVP session is established with JUNIPER box with one-to-one protection enabled, all
sessions come up fine for the first time. Now if we change the primary path of the primary
session, the detour session which originates from downstream node to JUNIPER calculates
exclude link wrongly due to which it doesn't come up.
Defect ID: 40183
If path change is required for primary, delete the trunk and reconfigure the trunk with new
required parameters.
• Defect Description:
LDP forwarding path may be different than the IGP path if LDP configs are removed from one
node and alternate path for LDP exists.
Defect ID: 39608
• Defect Description:
Have LDP FEC as forwarding path and L2/L3 VPN services over it. Now configure/un-configure
static ip route with blackhole next-hop for same FEC. This results in the reload of the board.
Defect ID: 40791
Workaround: Avoid configuring static ip route with blackhole next-hop for FEC's installed via
LDP.
• Defect Description:
This is an interop scenario with Cisco VM where the MPLS OAM Trace over RSVP is not
successful.
Defect ID: 40380
L3
• Defect Description:
When an OSPFv3 NSSA LSA is received from two ASBRs, tie-breaking is not working as per
highest router-id.
Defect ID: 37187
• Defect Description:
When Static route is being configured with next-hop as network address [1000::] but interface IP
is not /127, it fails and returns an error.
Defect ID: 39408
Workaround: In case static route has to be configured with network address [1000::],
interface IP shall be configured as /127.
• Defect Description:
VRRP is allowing L2 interface to be configured in interface-tracking.
Defect ID: 37790
• Defect Description:
" FTN installation failed" error is seen when BGP LU implicit label is received by OcNOS. as
OCNOS does not support LU implicit NULL label.
Defect ID: 39759
Workaround: Configure peer node not to send BGP LU implicit NULL. ( OCNOS will not send
implicit BGP NULL) to avoid this issue.
• Defect Description:
VRRP Tracked interface is not getting removed after making the configured interface as L2-
interface.
Defect ID: 37793
Workaround: Before making the interface as L2 interface, remove VRRP interface tracking
configuration on the interface.
• Defect Description:
Note: If the number of MEPs is 300, all 300 MEPs can be configured 100 Ms or above (not that
first 150 MEPs are in 3.3 Ms and the rest in 100Ms).
If the number of MEPs is 700, all 700 MEPs can be configured 1Sec or above.
• Defect Description:
Configuring sub-ring with multiple major rings on the same VLAN without virtual channel
configuration leads to ERPS interface flaps
Defect ID: 33875
Workaround: Either of the two approaches can be applied,
o By configuring virtual channel on subrings which are interconnected with main rings.
o Configuring the other Mainring and Subrings with different VLANs and Data VLAN should
be the same over the devices.