D-Link DGS-3620-52T-EI Datasheet

DGS-3620 Series Firmware Release Notes
Firmware Version: V2.60.016
Prom Code Version: V1.00.016
Published: 2013/11/4
These release notes include important information about D-Link DGS-3620 series firmware
revisions. Please verify that these release notes are correct for your switch:
-
If you are installing a new switch, please check the hardware version on the device label;
make sure that your switch meets the system requirement of this firmware version. Please
refer to Revision History and System Requirement for detailed firmware and hardware
matrix.
-
If the switch is powered on, you can check the hardware version by typing “show switch”
command or by checking the device information page on the web graphic user interface.
-
If you plan to upgrade to the new firmware release, please refer to the Upgrade
Instructions
:
D-Link switches support firmware upgrade via TFTP server. You can download the firmware from
D-Link web site http://tsd.dlink.com.tw, and copy the downloaded firmware to the TFTP server
folder. Please make sure that the TFTP server is accessible from the switch via networks.
-
for the correct firmware upgrade procedure.
For more detailed information regarding DGS-3620 series switch products, please refer to Related
Documentation.
You can also download the switch firmware, D-View modules and technical documentation from
http://tsd.dlink.com.tw.
Content:
Revision History and System Requirement ........................................................................ 2
Upgrade Instructions: .................................................................................................... 2
Upgrade using CLI (serial port) ..................................................................................... 2
Upgrading by using Web-UI.......................................................................................... 3
DLMS Instructions: ........................................................................................................ 5
DLMS License Activation by CLI .................................................................................... 5
DLMS License Activation by Web-UI .............................................................................. 6
New Features ................................................................................................................ 7
Changes of MIB & D-View Module .................................................................................... 9
Changes of Command Line Interface .............................................................................. 11
Problem Fixed ............................................................................................................. 12
Known Issues ............................................................................................................. 15
Related Documentation ................................................................................................ 16
1
DGS-3620 Series Firmware Release Notes
Revision History and System Requirement
Firmware Version
Date
Runtime: v1.00.035
Prom: v1.00.012
2011/3/25
Runtime: v1.00.038
Prom: v1.00.014
2011/5/13
Runtime: v1.00.040
Prom: v1.00.016
2011/10/7
Runtime: v2.00.016
Prom: v1.00.016
2012/1/5
Runtime: v2.50.017
Prom: v1.00.016
2013/3/25(A1)
2013/5/6(B1)
Runtime: v2.60.016
Prom: v1.00.016
2013/11/4
Model
DGS-3620-28TC
DGS-3620-28SC
DGS-3620-28PC
DGS-3620-52T
DGS-3620-52P
DGS-3620-28TC
DGS-3620-28SC
DGS-3620-28PC
DGS-3620-52T
DGS-3620-52P
DGS-3620-28TC
DGS-3620-28SC
DGS-3620-28PC
DGS-3620-52T
DGS-3620-52P
DGS-3620-28TC
DGS-3620-28SC
DGS-3620-28PC
DGS-3620-52T
DGS-3620-52P
DGS-3620-28TC
DGS-3620-28SC
DGS-3620-28PC
DGS-3620-52T
DGS-3620-52P
DGS-3620-28TC
DGS-3620-28SC
DGS-3620-28PC
DGS-3620-52T
DGS-3620-52P
Hardware Version
A1
A1
A1
A1
A1
A1
A1
A1
A1
A1
A1
A1
A1
A1
A1
A1
A1
A1
A1
A1
A1, B1
A1, B1
A1, B1
A1, B1
A1, B1
A1, B1
A1, B1
A1, B1
A1, B1
A1, B1
Upgrade Instructions:
Note:
1. EI & SI features are all included in the firmware.
2. It is not necessary to upgrade PROM code.
3. Hardware version B1 supports firmware R2.50.017 and later. If downgrading
to previous old versions, the switch cannot be booted up
D-Link switches support firmware upgrade via TFTP server. You can download the firmware from
D-Link web site http://tsd.dlink.com.tw, and copy the downloaded firmware to the TFTP server
folder. Please make sure that the TFTP server is accessible from the switch via networks.
Upgrade using CLI (serial port)
Connect a workstation to the switch console port and run any terminal program that can emulate
a VT-100 terminal. The switch serial port default settings are as follows:

Baud rate: 115200
2
DGS-3620 Series Firmware Release Notes

Data bits: 8

Parity: None

Stop bits: 1
The switch will prompt the user to enter his/her username and password. It should be noted that
upon the initial connection, there is no username and password by default.
To upgrade the switch firmware, execute the following commands:
Command
Function
download [firmware_from_TFTP [<ipaddr> | <ipv6addr>]
src_file <path_filename 64> {[unit <unit_id> | all]} {dest_file
<pathname 64>}
config firmware image {unit <unit_id>} <path_filename 64>
boot_up
Download firmware file from the TFTP server to
the switch.
Change the boot up image file.
show boot_file
Display the information of current boot image
and configuration.
reboot
Reboot the switch.
Example:
DGS-3620-28TC:15# download firmware_from_TFTP 10.53.13.201 src_file c:\ DGS-3620_Series_FW_1.00.035.had
dest_file c:\ DGS-3620_Series_FW_1.00.035.had
Command: download firmware_from_TFTP 10.53.13.201 src_file c:\ DGS-3620_Series_FW_1.00.035.had dest_file
c:\ DGS-3620_Series_FW_1.00.035.had
Connecting to server................Done.
Download firmware...................Done. Do not power off!
Upload file to FLASH…………………………..Done.
DGS-3620-28TC:15# config firmware c:\ DGS-3620_Series_FW_1.00.035.had boot_up
Command: config firmware c:\ DGS-3620_Series_FW_1.00.035.had boot_up
Success.
DGS-3620-28TC:15# show boot_file
Command: show boot_file
----------------------------------------------------Unit ID : 1
Boot up firmware image : C:\DGS-3620_Series_FW_1.00.035.had
Boot up configuration file: C:\STARTUP.CFG
----------------------------------------------------DGS-3620-28TC:15# reboot
Command: reboot
Are you sure you want to proceed with the system reboot? (y|n) y
Please wait, the switch is rebooting...
Upgrading by using Web-UI
1. Connect a workstation installed with java SE runtime environment to any switch port of the
device.
2. Open the web browser from the workstation and enter the IP address of the switch. The
3
DGS-3620 Series Firmware Release Notes
switch’s default IP address is 10.90.90.90.
3. Enter administrator’s username and password when prompted. It should be noted that the
username and password are blank by default.
4. To update switch's firmware or configuration file, select Tools > Download Firmware from
the banner.
5. Use the drop-down menu to select a unit for receiving the firmware. Select All for all units.
6. Enter the TFTP Server IP address.
7. Enter the name of the firmware file located on the TFTP server.
8. Enter the destination path and the desired file name.
9. Tick the check box to set it as a boot up file.
10. Click “Download” button.
11. Wait until the “Current Status” displays “Done” and the “Percentage” shows “100%”.
11. To select the boot up image used for next reboot, click Network Application > Flash File
System Settings in the function tree and then click the C: drive name. When you see the files
list, click corresponding “Boot Up” button to specify the firmware that will be used for next and
subsequent boot up.
4
DGS-3620 Series Firmware Release Notes
12. To reboot the switch, select Tools > Reboot System from the banner.
13. Select “Yes” and click “Reboot” button to reboot the switch.
DLMS Instructions:
Some D-Link switches support DLMS (D-Link License Management System) feature. With DLMS,
you can upgrade your switches to more enhanced edition to get more sophisticated features.
DLMS License Activation by CLI
Command
install dlms activation_code <string 25> {unit
<unit_id 1-6>}
show dlms license {unit <unit_id 1-6>}
Function
This command is used to install an
activation code to activate or unlock
function on the appliance.
This command is used to display license
information.
Example:
1.
DGS-3620-28TC:admin#install dlms activation_code DF244A4E4BC640C6394510206
Command: install dlms activation_code DF244A4E4BC640C6394510206
Success.
Please reboot the device to active the license.
DGS-3620-28TC:admin#
2.
DGS-3620-28TC:admin#reboot
Command: reboot
Are you sure you want to proceed with the system reboot?(y/n) y
Please wait, the switch is rebooting...
Boot Procedure
V1.00.016
-----------------------------------------------------------------------Power On Self Test ........................................
MAC Address
: 00-40-05-31-20-00
5
100 %
DGS-3620 Series Firmware Release Notes
H/W Version
: A1
Please Wait, Loading V2.50.017 Runtime Image ..............
UART init .................................................
Starting runtime image
Device Discovery ..........................................
Configuration init ........................................
3.
100 %
100 %
100 %
100 %
DGS-3620-28TC:admin#show dlms license
Command: show dlms license
Device Default License : SI
License Model
Activation Code
Time Remaining
----------------------------------------------------------------------------------DGS-3620-28TC-SE-LIC
DF244A4E4BC640C6394510206
No Limited
----------------------------------------------------------------------------------* expired
DLMS License Activation by Web-UI
1. Connect a workstation installed with java SE runtime environment to any switch port of the
device.
2. Open the web browser from the workstation and enter the IP address of the switch. The
switch’s default IP address is 10.90.90.90.
3. Enter administrator’s username and password when prompted. It should be noted that the
username and password are blank by default.
4. To update switch's firmware or configuration file, select Tool->License Management from
the banner.
5.
Enter the Activation Code and select unit of stack then click Install to activate the assigned
switch.
6.
To reboot the switch, select Tools > Reboot System from the banner.
6
DGS-3620 Series Firmware Release Notes
7.
Select Yes and click Reboot button to reboot the switch.
New Features
Firmware
Version
V1.00.035
V1.00.038
V1.00.040
v2.00.016
V2.50.017
New Features
First release, please refer to datasheet and manual for detail function supported
1. Add new flash driver support – “JS28F512M29EWL”.
2. Modify PoE per port default power from 7000mw to 15400mw.
None
1. Support D-Link License Management System(DLMS) to upgrade Standard Image
(SI) to Enhance Image (EI)
2. Support external Alarm port functions
3. Supports 64 characters file name for file system
4. Enlarge PoE maximum power limit to 760W for DGS-3620-28PC
5. Support 100-FX/BX SFP Transceivers: DEM-210/211/220T/220R
6. Modify DDM shutdown default state from alarm to none
7. DSCP to CoS mapping
8. Support SNTPv6
9. Support 128 bits prefix IPv6 routing
10. Support DEM-CB700S 10GbE SFP+ to SFP+ 7meter Direct Attach Cable
1. Support null route be able to redistribute to dynamic routing protocol
2. The priority of route preference is configurable in policy based route or route table
3. Be able to disable a LACP trunk member port
4. Enlarge Super VLAN’s Sub VLAN number to 128.
5. Support to display media type of SFP transceiver
6. Support UDP Helper
7. Support to send SNMP traps when LACP member port is up or down
8. Support Weighted Random Early Detection
9. Storm control supports to configure the threshold by packet types in the same port
10. Support IMPB v3.95
11. Enlarge the BGP neighbor to 20 neighbors and also support 4 byte AS number
12. Support DHCPv6 Prefix Delegation
13. Support DoS Attack Prevention
14. Support Framed-IP-Address Radius attribute
15. Support per port DHCP relay
16. The minimum granularity of bandwidth control changes to 8Kbps
17. Support unicast NLB
7
DGS-3620 Series Firmware Release Notes
V2.60.016
18. Support configurable DHCP server option
19. Support OSPF distribute list witch can limit to specific IP range
20. OSPF supports point-to-point network type
21. Modify OSPF design that one OSPF “link state update” packet be able to carry
multiple “link state advertisement” entries
22. The DDM function is able to show TX/RX power
23. Be able to encrypt SNMP community name.
24. PIM supports passive mode
25. Support advanced power saving (LED Shut-off/ Port Shut-off/ System
Hibernation)
26. Support DHCPv6 relay option 37
27. Support Secure FTP server for IPv4
28. Support DHCPv6 Server Screening
29. Be able to separate RADIUS accounting server from authentication server
30. Support DNSv6
31. When trigger events of alarm port occur, the system is able to send alarm to
external warning devices
32. IGMP authentication supports auth & accounting, auth only or accounting only
modes
33. Be able to show the packet counter of STP drop/HOL drop/CoS drop
34. Support sending SNMP traps via specific port inside of all ports
35. Be able to configure SNMP UDP port number
36. DHCP Auto-configuration supports DHCP option 6, 66, 67, 150
37. Support displaying CPU port statistics
38. Support LBD v4.05
39. Support displaying more specific traffic control information for
broadcast/multicast/unicast traffic types
40. Route redistribution feature supports RIPng/OSPFv3 protocols
41. TACACS+ support command accounting
42. Debug command will also display stacking port’s packet statistics
43. Support Unicast Reverse Path Forwarding
44. Support selective QinQ
45. The RIP update timer downgrade to 1 sec
46. Move Cable Diagnostics function from EI to SI
47. LACP supports configuring timeout parameter
48. Y.1731 supports Loss Measurement / Delay Measurement parameter
49. Storm control feature supports sending trap/log when traffic exceeds the defined
drop threshold
50. Support 802.3az Energy-Efficient Ethernet (Hardware version B1 and later)
1. Increasing stacking bandwidth to 80G (full duplex)
2. The Layer 2 function supports following new features:
 D-Link IMPB v3.96 (Support IP DHCP Snooping Limit Rate)
 VLAN-Based Mirror for Rx
 Flow-based(ACL) mirroring support egress mirroring
 Support to force 10G speed on 10G port
3. VLAN function supports following new features:
 Enlarge to 4K dynamic VLAN groups
 Support Surveillance VLAN
4. QoS function supports following new features:
 Support 802.1Qbb Priority-based Flow Control (PFC) for 10G port
 Configure Bandwidth control rate by percentage
 Support to display per CoS statistics for Tx traffic
5. The Layer 3 function supports following new features:
 RFC3484 (Default Address Selection for Internet Protocol version 6)
 BFD (Bidirectional Forwarding Detection) for OSPF/VRRP
 BGP for IPv6
8
DGS-3620 Series Firmware Release Notes
6.
7.
8.
 IPv6 Stateless Address Auto Configuration (SLAAC) for host mode
 RFC3509 (Alternative Implementations of OSPF Area Border Routers)
The Layer 3 Multicasting function supports following new features:
 Support to display RX/TX counters of multicast protocol packet
 Support to display RP (Rendezvous Point) address in multicast group
Security function supports following new features:
 Support shutdown mode when the number of MAC address reaches the
maximal learning limitation on the port
 SSH Public Key can associate with specific user
Management function supports following new features:
 IPv4/v6 FTP client
 Be able to schedule the reboot system time
 DHCP client supports option 12
 The subtype of Port ID TLV supports MAC address or port number
 DHCP relay supports vendor 6 format
 Support to display CPU utilization per task
 Change the Cable Diagnostics usage level form Power-User level to User
Level
 Support to enable or disable the Automatically Speed Downgrade feature
when the highest speed link fails
 The user can configure IGMP Snooping feature to send the General Query
packet or not when a port is enabled or disabled by STP
Changes of MIB & D-View Module
The new features of MIB file are also included in the corresponding D-View module. Please
download the D-View module on http://tsd.dlink.com.tw. For detailed changes of MIB content,
please refer to the modification history in each MIB file.
Firmware
Version
V1.00.035
V1.00.038
V1.00.040
v2.00.015
V2.50.017
MIB File
New Features
First release, please refer to datasheet for detail MIB supported
None
None
Dlms.mib
Add DLMS
Time.mib
Add SNTPv6
QoS.mib
Add DSCP to CoS mapping
Equipment.mib
Support external alarm port
PoE.mib
Enlarge PoE maximum power limit to 760W for
DGS-3620-28PC
rfc5643.mib
Update OSPFv3-MIB
L3mgmtDgs3620-xx.mib
1. Support redistributing null route to dynamic
routing protocol
2. Support DHCPv6 Prefix Delegation
3. Support OSPF distribution list new parameter
4. OSPF supports point-to-point network type
5. Route redistribution supports RIPng/OSPFv3
6. “RIP update timer” downgrades to 1 sec
policyRoute.mib
The priority of route preference is configurable in
policy based route or route table
L2mgmtDgs3620-xx.mib
1. Be able to disable a LACP trunk member port
9
DGS-3620 Series Firmware Release Notes
SuperVLAN.mib
UDPHelper.mib
rfc2863.mib
wred.mib
PktStromCtrl.mib
IPMacBind.mib
Rfc4273.mib
Dosprev.mib
DHCPRelay.mib
QoS.mib
NLB.mib
DHCPServer.mib
DDM.mib
Genmgmt.mib
Equipment.mib
DHCPv6Relay.mib
SFTPServer.mib
Filter.mib
AAC.mib
DNSResolver.mib
LBD.mib
urpf.mib
QinQ.mib
ie8023ad.mib
CFMExtension.mib
Genmgmt.mib
V2.60.016
L2mgmtDgs3620-xx.mib
2. Support displaying media type of SFP transceiver
3. IGMP authentication supports auth_accounting,
auth only or accounting only modes
4. Support displaying the packet counter of STP
drop/HOL drop/CoS drop packet
Enlarge Super VLAN’s Sub VLAN number to 128.
Support UDP helper
Support to send SNMP traps when LACP member
port is up or down
Support Weighted Random Early Detection
1. Storm control supports to configure the
threshold by packet types in the same port
2. Storm control feature supports sending trap/log
when traffic exceeds the defined drop threshold
Support IMPB v3.95
Enlarge the BGP neighbor to 20 neighbors and also
support 4 byte AS number
Support DoS Attack Prevention
Support DHCP relay per port
The minimum granularity of bandwidth control
changes to 8Kbps
Support unicast NLB
Support configurable DHCP server option
Be able to display TX/RX power
1. Be able to encrypt SNMP community name
2. PIM supports passive mode
3. Support total learned number of ARP entries in
system
4. Support sending SNMP traps via specific port
inside of all ports
5. Be able to configure SNMP UDP port number
1. Support advanced power saving (LED Shut-off/
Port Shut-off/ System Hibernation)
2. Support 802.3az Energy-Efficient Ethernet
(Hardware version B1 and later)
Support DHCPv6 relay option 37
Support Secure FTP server for IPv4
Support DHCPv6 Server Screening
1. Be able to separate RADIUS accounting server
from authentication server
2. TACACS+ support command accounting
DNSv6
LBD v4.05
Unicast Reverse Path Forwarding
Selective QinQ
LACP support configure timeout
Y.1731 support Loss Measurement / Delay
Measurement
1. Support IPv4/v6 FTP client
2. Support to schedule the reboot system time
1. Enlarge to 4K dynamic VLAN groups
10
DGS-3620 Series Firmware Release Notes
L3mgmtDgs3620-xx.mib
QoS.mib
Rspan.mib
EgressACL.mib
PortSecurity.mib
IPMacBind.mib
ssh.mib
dot1xmgmt.mib
wac.mib
SurveillanceVlan.mib
McastSnooping.mib
2. Increasing stacking bandwidth to 80G (full
duplex)
3. Support to display per CoS statistics for Tx traffic
4. Support VLAN-Based Mirror for Rx
5. Support to enable or disable the Automatically
Speed Downgrade feature when the highest speed
link fails
6. Support to force 10G speed on 10G port
7. The subtype of Port ID TLV supports Mac address
or port number
1. BFD (Bidirectional Forwarding Detection) for
OSPF/VRRP
2. DHCP client supports option 12
3. Support IPv6 Stateless Address Auto
Configuration (SLAAC) for host mode
Configure Bandwidth control rate by percentage
Support VLAN-Based Mirror for Rx
Flow-based(ACL) mirroring support egress
mirroring
Support shutdown mode when the number of MAC
address reaches the maximal learning limitation
on the port
Support D-Link IMPB v3.96 (Support IP DHCP
Snooping Limit Rate)
SSH Public Key can associate with specific user
Add 802.1X access login fail trap
Add WAC access login fail trap
Support Surveillance VLAN
The user can configure IGMP Snooping feature to
send the General Query packet or not when a port
is enabled or disabled by STP
NOTE:
All above features ONLY support MIB
Changes of Command Line Interface
The section below only shows command line changes that may bring backward compatibility
issues with configuration settings for previous version of firmware.
Any new feature commands that do not have backward compatibility issues are not included in
the below section.
Firmware
Version
V1.00.035
V1.00.038
V1.00.040
v2.00.016
V2.50.017
V2.60.016
Changes
First release
None
None
None
None
None
11
DGS-3620 Series Firmware Release Notes
Problem Fixed
Firmware
Version
Problems
V1.00.035
First release
V1.00.038
None
V1.00.040
1. Modify CPU GPIO pin setting on DGS-3600-28SC/28TC/52T
2. Modify RTC trickle register to reduce charging time
1. LAG group will be failed due to mis-matching of port configuration if
power cycle in unit 2 (DI20110802000001)
2. The CPU loading of master and slave units will become 100% and make
two master roles in the same stacking system. (DI20110616000011)
3. A loop condition was happened after using ERPS. After rebooted,
DGS-3620 forwarded packets from RPL port whose state was blocking.
(DI20110727000004)
4. Multicast packets cannot be forward after slave unit is rebooted
(DI20110729000007)
5. DULD settings were lost after stacking Member unit reboot
(DI20110726000012)
6. Null characters was occurred when getting the result of MIB
(swERPSMgmtRAPSProtectionVlan) (DI20110726000004)
7. Console freeze when typing "show wac auth_state po*"
(DI20110726000004)
8. Performance issue in WAC for IPv6 (DI20110701000011)
1. After resetting configuration and executing “show config modified”, the
system still displays some non-modified configuration
(DUSA20110616000002)
2. Telnet session will be terminated when DGS-3620 receives unknown
destination IP packets. (DI20110711000004)
3. When the packet exits service provider’s network, the switch didn’t
remove the inner tag in outgoing UNI port (DRU20110919000004)
4. When enabling WAC with invalid virtual IP address, switch does not show
warning message. (DI20111114000004)
5. When creating 4K VLANs, DGS-3620 will stop sending LACP/BPDU
packets (DI20110616000010)
6. When over 2K JWAC authenticated clients in system and then clear all
FDB entries, the switch will stop sending LACP/BPDU packets for a while
(DI20110621000010)
7. When over 4K WAC authenticated clients in system and then clear all
FDB entries, it will stop sending LACP/BPDU packets for a while
(DI20110706000012)
8. In stacking mode, DGS-3620 will take over 50sec to delete FDB entries
(DI20110621000016)
9. BGP session was terminated when DGS-3620 receives IPv6 multicast
packets in 500pps. (DI20111121000006)
10. DGS-3620 will duplicate DHCP OFFER packet when receiving DHCP
snooping packet with VLAN tag. (DI20111208000007)
11. The LACPDU structure doesn’t follow the standard IEEE 802.1AX-2008.
(DRU20111223000001)
12. When enabling DHCPv6 snooping and multicast filter, a DHCPv6 solicit
packet will be forwarded twice. (DI20120117000007)
13. DGS-3620 didn’t add (S, G) entry into PIM multicast route table for IPv6
when the interface was connected to server directly instead of DR.
(DI20120106000002)
14. DHCP inform packet is returned to ingress port when flooding a DHCP
v2.00.016
V2.50.017
12
DGS-3620 Series Firmware Release Notes
packet in the VLAN (DRU20120209000002)
15. The jumbo frame can’t be routed by DGS-3620
(DEUR20120119000003)
16. DGS-3620 can’t reply SYN+ACK in WAC IPv6 clients after continuously
process authentication and de-authentication(DI20111203000001)
17. When configuring DGS-3620’s WAC feature to redirect IPv6 HTTPS
traffic to specific web page, switch will redirect the traffic to incorrect
authentication page. (DI20111208000010)
18. When IPv6 is enabled and be saved, it will be reset to disable again after
rebooting the switch. (DRU20120402000005)
19. The status of remote MEP port displays “up” incorrectly even if the link is
down. (DEUR20120408000001)
20. DGS-3620 will enter the exception mode and then auto-reboot when
getting too big SNMP PDU packet (DRU20120511000004,
DRU20120409000001)
21. When DGS-3620 implements inter-VLAN routing, the ingress packets
without setting 802.1p priority will be modified to priority 5 in egress.
(DRU20120516000002)
22. The loopback interface was not written into hardware table when
disabling system interface (DRU20120530000003)
23. After receiving the last authenticated entry via TACACS+, DGS-3620
can’t time out telnet session. (DEUR20120611000001,
DRU20120710000005)
24. When routing DHCP packet to next hop and the ARP entry of next hop is
not in ARP table, DGS-3620 can’t send ARP request actively and forward
DHCP packets (DRU20120628000002)
25. After installing the activation code, it still displays Standard Image
instead of Enhanced Image when executing “show switch”
command(DGC20120712000001)
26. When DGS-3620 is RP role in PIM-SM, it can’t keep register message
(DRU20120712000006)
27. When leaving one IGMP group and re-joining this group again, it join
action will be delayed around 1 minute (DRU20120626000002)
28. When executing download/upload file script, it will cause the system
memory pool exhausted. (DRU20120402000004)
29. DGS-3620 detects the loop incorrectly in LBD VLAN based mode when
connects ports in different VLANs. (DI20120718000002)
30. DGS-3620 receives multiple multicast groups, the switch will send
incorrect IGMP report packet to server, which will work fine when receiving
signal multicast group(DUSA20120719000002)
31. If the switch’s system interfaces and management interface connect to
TFTP server, download firmware will be failed. (DI20120914000006)
32. DGS-3620 will hang up when enabling BGP (DRU20120924000004)
33. When CPU utilization was high, OAM frame will be stopped
(DI20110728000011)
34. IPv6 multicast stream was not transmitted by PIM6 after the reboot
(DI20110831000006)
35. In stacking, DGS-3620 will still forward CFM frames from ERPS blocking
port after rebooting the backup master unit. (DI20110908000011)
36. After disconnecting a cable from a master unit’s LACP port DGS-3620
cannot forward packet to CPU (DI20110909000001)
37. After master unit of a stack was powered off, the slave unit’s RPL port is
still in block state instead of changing to forward state (DI20110909000002)
38. When DGS-3620 receives IPv6 multicast packet(LLNMR/SSDP) by
1000pps, DGS-3620 will drop BGP keep-alive packets and terminate BGP
session (DI20110905000009)
13
DGS-3620 Series Firmware Release Notes
V2.60.017
39. User cannot change the port speed to 100 full via Web-UI
(DRU20110915000007)
40. DGS-3620 will auto reboot when executing SSH attack tool(rubyinstaller)
(DI20121012000004)
41 DGS-3620 does not forward DHCP packets if interface is disabled and
DHCP relay is enabled (DRU20121025000011)
42 In stacking, when Voice VLAN is enabled first and then assigns VLAN
member ports form slave unit, DGS-3620 will not learn MAC addresses from
those VLAN member ports (DEUR20121220000001)
1. The user login to DGS-3620 via SSH firstly, then telnet to other device
from current DGS-3620, the CPU utilization will raise to 100%
(DRU20130527000008)
2. When setting up time zone parameter, the time of syslog message does
not apply the change of time zone (DRU20130313000003)
3. The client cannot renew IP address when enabling DHCP relay which has
configured VRRP (DI20130305000002)
4. The customer uses SNMPWALK tool to show DGS-3620 ARP table which
has many ARP enters, DGS-3620 CPU utilization will raise to 93%~96%
(DUSA20130330000001)
5. When login switch via RADIUS, the user executes “enable admin”
command and then “show log” command, the username of syslog is
Anonymous instead of correct user name (DRU20130410000006)
6. When user enables VRRP and then enable DHCP Relay feature in
DGS-3620 , if a client sends a unicast DHCP request packet to DHCP
server, the DHCP server will receive two DHCP request packets
(DI20130325000003) (DI20130419000006)
7. If LACP master port is not a flooding port, DGS-3620 cannot forward
DHCP packets (DI20130419000006)
8. When enabling IMPB and DHCP snooping, the user configures DHCP
Snooping’s maximum entry to 1 entry only. The switch will be learned 2
DHCP clients (DRU20130523000006)
9. In stack mode, maser switch is powered off. The user access to the
backup master switch using SSH, it should be login admin level, however it
login user mode (login#) (DI20130603000002)
10. After querying "swPimNeighborExpiryTime" OID under PIM-SM MIB
tree, DGS-3620 will enter the exception mode (DRU20130618000003)
11. In stack mode, when DGS-3620 receives high rate (1000pps) of IPv6
multicast packets, STP function is unstable (DI20130618000006)
12. DGS-3620 cannot resolve DNS records, which contained CNAME
associates multiple A records (DI20130612000001)
13. When uploading configuration/log to TFTP or downloading
firmware/configuration from TFTP, DGS-3620 cannot resolve DNS AAAA
records (DI20130612000001)
14. The client of Sub VLAN cannot receive IP address from DGS-3620 when
DHCP server is in Super VLAN (DI20130611000002)
15. iBGP session would be terminated when enabling PIMv4 or PIMv6 with
large amount of multicast traffics be forwarded (DI20130619000008)
(DI20130621000003)
16. DGS-3620 doesn’t send PIM Hello or Bootstrap message after enabling
CFM (DI20130116000001)
17. When MAC address of next hop is changed, ND entry cannot be
auto-updated. It will fail to ping global IPv6 address of next hop
(DEUR20121119000001)
18. When Private VLAN is configured in DGS-3620 stack, the client still can
communicate with other client in different VLAN. However, If the client is
moved to different switch and still in the same VLAN ID, the client will not
14
DGS-3620 Series Firmware Release Notes
able to communicate with other client in different VLAN
(DI20130123000003)
19. When DHCP relay is enabled, DGS-3620 cannot forward DHCP packet
if layer 3 interface is disabled. Actually, the DHCP relay should be worked
even layer 3 interface is disable (DRU20130218000004)
20. When DHCP relay is enabled, DGS-3620 cannot forward DHCP packet
if DHCP server and DHCP client are different subnet
(DRU20130218000004)
21. MacBook OS 10.7 can be net-booted via DGS-3620, but the previous
MacBook OS version cannot be net-booted (DUSA20130410000002)
22. If DHCP Relay is enabled, the QinQ VLAN Translation works abnormally
(DEUR20130515000004)
23. The display is very slow when executing the command of “show config
effective" and "show config current_config" via SSH (DI20130704000006)
24. If the Multicast filtering mode is configured as “filter_unregistered”, the
IPv6 multicast stream cannot be flooded to same VLAN ports correctly
(DI20130711000008)
25. BGP is configured. Sometimes, DGS-3620 doesn’t apply BGP prefix in
the packet(DRU20130708000004)
26. The webpages of MAC-based Access Control Port Setting list/
MAC-based Access Control Authentication State list/ MAC address table are
unfriendly (DEUR20130628000002)
27. When PIM-SM interface is changed, the old passive interface is not
equal to new passive interface because PIM-SM’s passive interface doesn’t
set the value. DGS-3620 deletes all neighbours and then system will crash
because the switch cannot find any neighbours when sending PIM
Join/Prune message (DI20130624000004)
28. When upgrading the firmware, customer cannot access to DGS-3620 via
out-of-band interface using SSH while WebUI has no such issue
(DEUR20130715000008)
3029. If DGS-3620 receives multicast packets which cannot match IP
multicast routing table inside the switch, the CPU’s utilization will remain
high (DI20130712000002)
* D-Link tracking number is enclosed in ()
Known Issues
Firmware
Version
V1.00.035
V1.00.038
V1.00.040
v2.00.016
V2.50.017
V2.60.016
Issues
Workaround
None
None
None
None
None
CVE-ID: CVE-2013-0149
Due to the ambiguous definition in OSPF protocol as
specified in RFC2328, the attacker can send a false Link
State Advertisement (LSA) which will evade the
fight-back mechanism so that the LSA may be accepted
and propagated by a “genuine” router on the network.
15
1. Enable MD5
authentication
for OSPF
2. Enable OSPF
Passive Interface
to stop sending
or receiving
routing table
DGS-3620 Series Firmware Release Notes
update on
interfaces that do
not participate in
OSPF
3. Enable
MAC-based
Access Control
(MAC) to
authenticate
devices before
they are able to
communicate
with the network
Related Documentation
- DGS-3620 Series Web UI Reference Guide Release 2.60
- DGS-3620 Series CLI Reference Guide Release 2.60
- DGS-3620_Series_HW Installation Guide_v2.60
16