Release Notes for CiscoView Device Manager for the Content Switching Module 1.1

These release notes are for use with CiscoView Device Manager for the Content Switching Module (CVDM-CSM) 1.1, running on Windows and Solaris platforms.

Description

CiscoView Device Manager for the Cisco Catalyst 6500 series Content Switching Module (CVDM-CSM) enables users to easily configure content load-balancing services on their Cisco CSMs.

CVDM-CSM is a task-based tool that allows users to control the versatility of their Cisco CSM by offering configuration based on recommended practices in tasks. It is a free embedded manager that resides in the Cisco Catalyst 6500 Series supervisor engine flash memory.

•

Configuring Layer 4 through Layer 7 policies, including maps and sticky groups.

Product Documentation

Note We sometimes update the printed and electronic documentation after original publication. Therefore, you should also review the documentation on Cisco.com for any updates.

Related Documentation

Table 1 Product Documentation
Document Title	Available Formats
ReadMe Document for CiscoView Device Manager for the Cisco Content Switiching Module	This document is available if you download CVDM-CSM from the software download site. You can reach the CVDM-CSM download site by clicking the Download Software link from this URL: http://www.cisco.com/go/cvdm Note It is important that you read this document before downloading and installing CVDM-CSM from the software download site.
User Guide for CiscoView Device Manager for the Cisco Content Switiching Module	This document is available on Cisco.com at this URL: http://www.cisco.com/go/cvdm
Context-sensitive online help	Click the Help button from any dialog box within the application.

Note We sometimes update the printed and electronic documentation after original publication. Therefore, you should also review the documentation on Cisco.com for any updates.

Table 2 Related Documentation
Document Title	Description and Available Formats
ReadMe Document for CiscoView Device Manager for the Cisco Catalyst 6500 Series Switch	This document is available if you download CVDM-C6500 from the software download site. You can reach the CVDM-C6500 download site by clicking the Download Software link from this URL: http://www.cisco.com/go/cvdm Note It is important that you read this document before downloading and installing CVDM-C6500 from the software download site.
Release Notes for CiscoView Device Manager for the Cisco Catalyst 6500 Series Switch	This document is available on Cisco.com at this URL: http://www.cisco.com/go/cvdm
User Guide for CiscoView Device Manager for the Cisco Catalyst 6500 Series Switch.	This document is available on Cisco.com at this URL: http://www.cisco.com/go/cvdm
Readme Document for CiscoView Device Manager for the Cisco SSL Services Module	This document is available if you download CVDM-SSLSM from the software download site. You can reach the CVDM-SSLSM download site by clicking the Download Software link from this URL: http://www.cisco.com/go/cvdm Note It is important that you read this document before downloading and installing CVDM-SSLSM from the software download site.
Release Notes for CiscoView Device Manager for the Cisco Catalyst 6500 Series SSL Services Module (CVDM-SSLSM)	This document is available on Cisco.com at this URL: http://www.cisco.com/go/cvdm
User Guide for CiscoView Device Manager for the Cisco Catalyst 6500 Series SSL Services Module (CVDM-SSLSM)	This document is available on Cisco.com at this URL: http://www.cisco.com/go/cvdm
Readme Document for CiscoView Device Manager for the Cisco IPSec VPN Acceleration Services Module (CVDM-VPNSM)	This document is available if you download CVDM-VPNSM from the software download site. You can reach the CVDM-VPNSM download site by clicking the Download Software link from this URL: http://www.cisco.com/go/cvdm Note It is important that you read this document before downloading and installing CVDM-VPNSM from the software download site.
Release Notes for CiscoView Device Manager for the Cisco IPSec VPN Acceleration Services Module (CVDM-VPNSM)	This document is available on Cisco.com at this URL: http://www.cisco.com/go/cvdm
User Guide for CiscoView Device Manager for the Cisco IPSec VPN Acceleration Services Module (CVDM-VPNSM)	This document is available on Cisco.com at this URL: http://www.cisco.com/go/cvdm

Downloading the Application

You can download CVDM-CSM, any published patches, and their readme files from the Download Software site. You can reach the CVDM-CSM download site by clicking the Download Software link from this URL:
http://www.cisco.com/go/cvdm

Refer to Readme Document for CiscoView Device Manager for the Cisco Content Switching Module 1.1 for the following information:

Known and Resolved Problems

Installation and launching problems with CVDM-CSM can occur because of known problems with:

•

Ensure that at least three vty lines are available. CVDM-CSM will not launch if all Telnet lines are being used. Instead, you will see a "Page cannot be displayed" error.

•

Manually download the Java plug-in if you do not have Java Plug-in 1.4.2_06, or use Internet Explorer to download the Java plug-in automatically. Sometimes Netscape does not prompt you to download the Java plug-in.

•

If there is not enough space in bootflash:, you can download CVDM-CSM into one of the following filesystems:

Note

Make sure CVDM-CSM is downloaded into the root directory and not in any of the subdirectories.

•

Problems can be caused by previously installed versions of CVDM and CiscoView ADP. To determine whether they are installed, use the following command:

If the response to this command is empty, no CVDM or CiscoView ADP files are installed. Otherwise, you should delete all CVDM and CiscoView ADP files; see Readme Document for CiscoView Device Manager for the Cisco Content Switching Module 1.1 for uninstallation instructions.

Table 3 describes problems known to exist in this release. Table 4 describes problems resolved in this release.

Table 3 Known Problems in CVDM-CSM 1.1
Bug ID	Summary	Explanation
CSCee48552	Some fields look compressed in Solaris 2.8.	When using Netscape on a Solaris system, some of the dialogs may appear squeezed if the font is set to a small size. To work around this problem, go to Tools > Desktop Controls > Font Style Manager. Increase the Font size and restart the Workspace Manager. A medium-sized font should work in most cases.
CSCee57848	Sometimes, a new browser window is not displayed in the foreground when you use Netscape on Windows.	From a CVDM page, after you click a button or link that opens a new browser window, the window does not appear in the foreground. To work around this problem, bring the new browser window to the foreground by clicking the window's title bar. Note Netscape browser brings a new window to the foreground of all windows belonging to the browser process only, not to the foreground of the entire desktop. CVDM belongs to a separate process and remains in the foreground. See CSCsa20728 also.
CSCee75197	You cannot launch Embedded CiscoView or CVDM-CSM from CVDM-C6500 if all three applications are installed on disk0: or disk1:.	To work around this problem, install all three products (CVDM-C6500, Embedded CiscoView and CVDM-CSM) on another memory device such as slot0:, slot1:, sup-bootflash:, or bootflash:.
CSCsa11565	CVDM-CSM icons are missing (they appear as red Xs on device home page).	Insufficient vty lines are available on the supervisor. If you are using Netscape, and want to view all graphics, six vty lines should be free in the device. If you are using Internet Explorer, and want to view all graphics, nine vty lines should be free in the device. Use the show users command on the device to verify the number of lines that are available. Note You need only a minimum of three vty lines to launch CVDM-CSM.
CSCsa11904	Help is not working when a proxy is configured for the browser.	This problem appears when the user has configured the browser to use an HTTP proxy. To work around this problem, exclude 127.0.0.1 (localhost) from getting proxied.
CSCsa12102	When TACACS+ command authorization is turned on in the device configuration, a NullPointerException is seen.	TACACS authorization is not supported. Turn off the TACACS+ command authorization for users who will be using CVDM-CSM.
CSCsa15820	Sometimes, when using Internet Explorer on a Windows system, CVDM-CSM cannot be launched after installing the Java plug-in.	To work around this problem, remove the proxy setting in the browser.
CSCsa15992	The CVDM link from the device home page does not work when using a Cisco IOS 12.1(13)E image.	If you are using a Cisco IOS 12.1.(13)E image, use the following URL: http://<ip-address>/flash/cv/applet.html?dynarchives=cvdm-csm-1.1.sgz&slotNo=<CSM slot no> or http://<ip-address>/flash/cv/applet.html?dynarchives=cvdm-csm-1.1_K9.sgz&slotNo=<CSM slot no> (if you installed Cisco IOS Cryptographic software) where <ip-address> is the IP address of the switch and <CSM slot no> is the slot number of the CSM module in the switch. It might be useful to bookmark this URL for future use.
CSCsa15984	CVDM-CSM is not launched if a nondefault password prompt is configured on a device.	CVDM-CSM works on devices that have default prompts. If you change the default password prompt for a device using CLI commands, then CVDM-CSM cannot be launched. Similarly, in SSL module if the user prompt or the password prompt is changed to nondefault, CVDM is not able to log in to the module.
CSCsa17769	CVDM-CSM link from the device home page is missing.	Insufficient vty lines are available on the supervisor. If you are using Netscape, and want to view all graphics, 6 vty lines should be free in the device. If you are using Internet Explorer, and want to view all graphics, 9 vty lines should be free in the device. Use the show users command on the device to verify that amount of lines are available. Note You only need a minimum of three vty lines to launch CVDM-CSM.
CSCsa18704	CVDM-CSM does not function properly for some special characters.	If you give unmatched double quotes or back slash (\) for names, CVDM-CSM will not function properly. In addition, the question mark (?) character will not be allowed in the following cases: •Redirect Virtual Server Webhost backup string. •Redirect Virtual Server Webhost relocation string. •Request method in HTTP probes.
CSCsa20728	Sometimes a new window is not displayed in the foreground on Windows 2000 and Windows XP clients.	When a new window is opened, it does not appear in the foreground. However, the taskbar button that corresponds to the browser window flashes. To work around this problem: 1. Set the following Windows registry entry to 0 (zero): `HKEY_CURRENT_USER\Control Panel\ Desktop\ForegroundLockTimeout` 2. Reboot the machine. Note If you use Netscape on Windows, see CSCee57848 also.
CSCsa21805	You cannot define the same IP address with different restricted clients.	If you have a restricted client, say with ip X and with mask M1, and if you try to add the same ip X with another valid mask M2, DM will prompt error message for duplicate ip address.
CSCsa47318	Attributes, (such as, IP Address, vlan) of the Virtual Server are missing.	Due to incorrect alignment in running configuration, when Virtual Servers have long names configured using the description command, the application will not show the corresponding attributes (such as, IP Address, vlan) for that virtual server. There is no workaround for this problem. This problem is due to the Cisco IOS bug CSCsa61700.
CSCsa50843	CVDM-CSM does not launch on a Windows 2000 machine with multiple versions of the Java Plug-in installed.	The problem occurs on machine with the following configuration: •Operating system—Windows 2000 Professional with Service Pack 4 •Java Plug-in versions installed—1.4.2_04 and 1.4.2_06 •Active browser—Netscape 7.0 or Internet Explorer 6.0 with SP1 Workaround: Uninstall Java Plug-in 1.4.2_04.
CSCsa50848	Cannot launch CVDM-CSM in Internet Explorer running on a Windows 2000 machine when Java Plug-ins 1.4.2_06 and 1.5 are installed.	Problem occurs on machine with the following configuration: •Operating System—Windows 2000 Professional with SP4 •Java Plug-in versions installed—1.4.2_04, 1.4.2_06, and 1.5 •Active Browser—Internet Explorer 6.0 with SP1 Workaround: To launch CVDM-CSM with Internet Explorer, you must first uninstall Java Plug-in 1.5.
CSCsa51391	Unable to partially delete Expect status	The application does not allow you to delete the partial values of Expect Status but permits the deletion of the complete range. For example, the application does not allow you to delete Expect Status 32-37, which is contained in 30-40. Workaround: Delete the complete range and configure required expect status.
CSCsa54308	When CVDM-CSM is launched with unsupported plug-in, it does not point to the correct download location of the supported Java plug-in (1.4.2_06)	When CVDM-CSM is launched with unsupported plug-in: •Netscape 7.1 (Windows 2000), does not point to the download location of the Java plug-in 1.4.2_06. The splash screen appears, but no error message is displayed. •Firefox 1.0 (Windows 2000), begins installing Java plug-in 1.5. •Netscape 7.0 (Solaris 2.8 and 2.9), does not point to the download location of the Java plug-in 1.4.2_06. Workaround: Install Java plug-in 1.4.2_06 manually.
CSCsa57112	While creating real server under server farm sub-mode, the same real server is created twice inside the server farm.	This problem is due to the IOS bug CSCsa57123. The fix has been integrated into 12.2(18)SXD03. There is no workaround for this problem.
CSCsa57458	Sometimes CSM module resets when deleting the global real server.	If you delete the global real server after it was configured inside a serverfarm and has got redirect-vserver association, the CSM stops functioning. To workaround this problem: 1. Either unconfigure named real mapping in server farm. Or Remove the association with the redirect virtual server. 2. Unconfigure the global real server.
CSCsa57114	Switch gets reloaded while deleting a server farm that has a redirect-virtual server configured in it.	To workaround this problem, remove the individual redirect virtual server before removing the server farm configuration. Remove the individual Redirect-Virtual Server before removing the Server Farm configuration. Note This problem is due to the Cisco IOS bug CSCsa57125. The fix has been integrated in 12.2(18)SXD01.
CSCsa58604	Admin status of real server shown incorrectly.	When the admin status of the real server is changed using the Set Admin Status button and the commands are delivered, the status displayed is wrong. Workaround: This problem is due to the Cisco IOS bug CSCsa57123. The fix has been integrated in 12.2(18)SXD03.
CSCsa64995	Launching CVDM-SSLSM using HTTPS reloads the module if any certificate is not available in the module.	If the SSL module does not have any certificates installed, launching CVDM-SSLSM using HTTPS reloads the module. To work around this problem, try one of the following: •Make sure that at least one certificate for HTTPS access is present on the module. By default, a test PKCS12 file (test/testssl.p12) is embedded in the SSL software on the module. You can install the certificate from CLI, following the steps mentioned in the SSLSM configuration. Use HTTP to launch CVDM-SSLSM.
CSCsa65728	Server Farm association in Virtual Server is incorrect.	If a server farm is deleted before delivering the configuration, the associated virtual server default policy node continues to display the association. To workaround this problem: Deliver the configuration to the switch.

Obtaining Documentation

Cisco documentation and additional literature are available on Cisco.com. Cisco also provides several ways to obtain technical assistance and other technical resources. These sections explain how to obtain technical information from Cisco Systems.

Cisco.com

Documentation DVD

Cisco documentation and additional literature are available in a Documentation DVD package, which may have shipped with your product. The Documentation DVD is updated regularly and may be more current than printed documentation. The Documentation DVD package is available as a single unit.

Registered Cisco.com users (Cisco direct customers) can order a Cisco Documentation DVD (product number DOC-DOCDVD=) from the Ordering tool or Cisco Marketplace.

Ordering Documentation

Table 4 Problems Resolved in CVDM-CSM 1.1
Bug ID	Summary	Additional Information
CSCsa11679	On Windows, Netscape 7.1 does not prompt you to install the supported Java plug-in version again if you cancelled the installation the first time.	To work around this problem, go to http://java.sun.com/products/archive/j2se/1.4.1_05/index.html and download and install the JRE from J2SE v1.4.1_05.
CSCsa22225	VLAN network clash error not shown in wizards.	In Wizard, the CVDM-CSM will accept client and server VLAN with the same network mask without any error message but no commands will be generated for the same.

•

Registered Cisco.com users (Cisco direct customers) can order Cisco product documentation from the Ordering tool:

•

Nonregistered Cisco.com users can order documentation through a local account representative by calling Cisco Systems Corporate Headquarters (California, USA) at 408 526-7208 or, elsewhere in North America, by calling 1 800 553-NETS (6387).

Documentation Feedback

You can submit comments by using the response card (if present) behind the front cover of your document or by writing to the following address:

Cisco Systems
Attn: Customer Document Ordering
170 West Tasman Drive
San Jose, CA 95134-9883

Cisco Product Security Overview

A current list of security advisories and notices for Cisco products is available at this URL:

If you prefer to see advisories and notices as they are updated in real time, you can access a Product Security Incident Response Team Really Simple Syndication (PSIRT RSS) feed from this URL:

Reporting Security Problems in Cisco Products

Cisco is committed to delivering secure products. We test our products internally before we release them, and we strive to correct all vulnerabilities quickly. If you think that you might have identified a vulnerability in a Cisco product, contact PSIRT:

Tip

We encourage you to use Pretty Good Privacy (PGP) or a compatible product to encrypt any sensitive information that you send to Cisco. PSIRT can work from encrypted information that is compatible with PGP versions 2.x through 8.x.

Never use a revoked or an expired encryption key. The correct public key to use in your correspondence with PSIRT is the one that has the most recent creation date in this public key server list:

Obtaining Technical Assistance

For all customers, partners, resellers, and distributors who hold valid Cisco service contracts, Cisco Technical Support provides 24-hour-a-day, award-winning technical assistance. The Cisco Technical Support Website on Cisco.com features extensive online support resources. In addition, Cisco Technical Assistance Center (TAC) engineers provide telephone support. If you do not hold a valid Cisco service contract, contact your reseller.

Cisco Technical Support Website

The Cisco Technical Support Website provides online documents and tools for troubleshooting and resolving technical issues with Cisco products and technologies. The website is available 24 hours a day, 365 days a year, at this URL:

Access to all tools on the Cisco Technical Support Website requires a Cisco.com user ID and password. If you have a valid service contract but do not have a user ID or password, you can register at this URL:

Note Use the Cisco Product Identification (CPI) tool to locate your product serial number before submitting a web or phone request for service. You can access the CPI tool from the Cisco Technical Support Website by clicking the Tools & Resources link under Documentation & Tools. Choose Cisco Product Identification Tool from the Alphabetical Index drop-down list, or click the Cisco Product Identification Tool link under Alerts & RMAs. The CPI tool offers three search options: by product ID or model name; by tree view; or for certain products, by copying and pasting show command output. Search results show an illustration of your product with the serial number label location highlighted. Locate the serial number label on your product and record the information before placing a service call.

Submitting a Service Request

Using the online TAC Service Request Tool is the fastest way to open S3 and S4 service requests. (S3 and S4 service requests are those in which your network is minimally impaired or for which you require product information.) After you describe your situation, the TAC Service Request Tool provides recommended solutions. If your issue is not resolved using the recommended resources, your service request is assigned to a Cisco TAC engineer. The TAC Service Request Tool is located at this URL:

For S1 or S2 service requests or if you do not have Internet access, contact the Cisco TAC by telephone. (S1 or S2 service requests are those in which your production network is down or severely degraded.) Cisco TAC engineers are assigned immediately to S1 and S2 service requests to help keep your business operations running smoothly.

Asia-Pacific: +61 2 8446 7411 (Australia: 1 800 805 227)
EMEA: +32 2 704 55 55
USA: 1 800 553-2447

Definitions of Service Request Severity

To ensure that all service requests are reported in a standard format, Cisco has established severity definitions.

Severity 1 (S1)—Your network is "down," or there is a critical impact to your business operations. You and Cisco will commit all necessary resources around the clock to resolve the situation.

Severity 2 (S2)—Operation of an existing network is severely degraded, or significant aspects of your business operation are negatively affected by inadequate performance of Cisco products. You and Cisco will commit full-time resources during normal business hours to resolve the situation.

Severity 3 (S3)—Operational performance of your network is impaired, but most business operations remain functional. You and Cisco will commit resources during normal business hours to restore service to satisfactory levels.

Severity 4 (S4)—You require information or assistance with Cisco product capabilities, installation, or configuration. There is little or no effect on your business operations.

Obtaining Additional Publications and Information

Information about Cisco products, technologies, and network solutions is available from various online and printed sources.

•

Cisco Marketplace provides a variety of Cisco books, reference guides, and logo merchandise. Visit Cisco Marketplace, the company store, at this URL:

•

Cisco Press publishes a wide range of general networking, training and certification titles. Both new and experienced users will benefit from these publications. For current Cisco Press titles and other information, go to Cisco Press at this URL:

•

Packet magazine is the Cisco Systems technical user magazine for maximizing Internet and networking investments. Each quarter, Packet delivers coverage of the latest industry trends, technology breakthroughs, and Cisco products and solutions, as well as network deployment and troubleshooting tips, configuration examples, customer case studies, certification and training information, and links to scores of in-depth online resources. You can access Packet magazine at this URL:

•

iQ Magazine is the quarterly publication from Cisco Systems designed to help growing companies learn how they can use technology to increase revenue, streamline their business, and expand services. The publication identifies the challenges facing these companies and the technologies to help solve them, using real-world case studies and business strategies to help readers make sound technology investment decisions. You can access iQ Magazine at this URL:

•

Internet Protocol Journal is a quarterly journal published by Cisco Systems for engineering professionals involved in designing, developing, and operating public and private internets and intranets. You can access the Internet Protocol Journal at this URL:

•

World-class networking training is available from Cisco. You can view current offerings at this URL:

Table Of Contents