The firewall would also mistakenly report SYN attacks. These issues have been resolved. PCR: 01159 Module: PIM Network affecting: No The CREATE CONFIG command generated duplicate PIM interface configuration command lines. This issue has been resolved. PCR: 01162 Module: PKI Network affecting: No Certificates containing GeneralisedTime with the year in YYYY format are now parsed correctly. The keyUsage field of certificates is now parsed Patch 86222-10 for Software Release 2.2.2 C613-10319-00 REV J Patch Release Note correctly when only one byte has been specified. The CRL update time is now displayed correctly in hours. If the username and password parameters are present the location parameter must be present and appear before the username and password parameters. PCR: 01165 Module: DHCP Network affecting: No The DHCP server now correctly allocates addresses to clients running Apple Open Transport 2.5.1 or 2.5.2. PCR: 01166 Module: FIREWALL Network affecting: No Both public and private access could be configured on the same interface on a policy. This issue has been resolved. PCR: 01167 Module: ENCO Network affecting: No RSA encryption is now periodically suspended to ensure other processes get some CPU time during large RSA calculations. PCR: 01169 Module: ISAKMP Network affecting: No The CREATE ISAKMP command now checks that the key specified by the LOCALRSAKEY parameter actually exists in the ENCO module. PCR: 01171 Module: ETH, TRIGGER Network affecting: No The INTERFACE parameter of the CREATE TRIGGER and SET TRIGGER commands now supports Ethernet interfaces. Ethernet interface events can now generate triggers. PCR: 01173 Module: Telnet Network affecting: No The Telnet server’s listen port can now be configured to a number in the range 1 to 65535, excluding any ports already assigned as listen ports. PCR: 01174 Module: Firewall Network affecting: No The CREATE CONFIG command sometimes generated scripts for rule commands with GBLIP=0.0.0.0 when this was not necessary. This issue has been resolved. Features in 86222-03 Patch file details for Patch 86222-03 are listed in Table 8. Table 8: Patch file details for Patch 86222-03. Base Software Release File 86s-222.rez Patch Release Date 8-Aug-2001 Compressed Patch File Name 86222-03.paz Compressed Patch File Size 205828 bytes Patch 86222-03 includes all issues resolved and enhancements released in previous patches for Software Release 2.2.2, and the following enhancements: Patch 86222-10 for Software Release 2.2.2 C613-10319-00 REV J Patch 86222-10 For Rapier Switches and AR800 Series Modular Switching Routers PCR: 01112 Module: IPG Network affecting: No DNS response packets with corrupt length fields were causing a fatal error. This issue has been resolved. PCR: 01139 Module: IPG Network Affecting: No IP NAT caused a fatal error when an ARP wait timer timed out and tried to send a host unreachable message. This issue has been resolved. PCR: 01147 Module: STT Network affecting: No The router was restarting after a “teardrop” attack on the STT listen port. This issue has been resolved. PCR: 01150 Module: FIREWALL Network affecting: No The entry aging process now works correctly even when there are large numbers of firewall entries to be aged. PCR: 01153 Module: IPG Network affecting: No The command SHOW IP DEBUG=n was entered, where n was one greater than the number of items in the IP debug queue resulted in a fatal error. This issue has been resolved. Features in 86222-02 Patch file details for Patch 86222-02 are listed in Table 9. Table 9: Patch file details for Patch 86222-06. Base Software Release File 86s-222.rez Patch Release Date 26-Jul-2001 Compressed Patch File Name 86222-02.paz Compressed Patch File Size 202564 bytes Patch 86222-02 includes all issues resolved and enhancements released in previous patches for Software Release 2.2.2, and the following enhancements: PCR: 01081 Module: FIREWALL Network affecting: No When an interface on the firewall was configured with a global IP address of 0.0.0.0, outgoing packets from the private interface to the public interface sometimes caused a fatal error. This issue has been resolved. PCR: 01126 Module: PKI Network affecting: No Re-validation of temporary CA certificates now works correctly. PCR: 01128 Module: IPG Network affecting: No A fatal error occurred when IGMP received a Join message and attempted to forward the Join message to other switch ports. This issue has been resolved. Patch 86222-10 for Software Release 2.2.2 C613-10319-00 REV J Patch Release Note PCR: 01131 Module: CORE Network affecting: No The SHOW CPU command sometimes displayed incorrect CPU utilisation figures. Typically a value of about 74% was reported when in fact the CPU was almost idle. This issue has been resolved. PCR: 01134 Module: GUI Network affecting: No Port parameters can now be set correctly using the Layer 3 Switch GUI. PCR: 01135 Module: GUI,INST Network affecting: No Clicking the Apply button on a Layer 3 Switch GUI pag...