cc/td/doc/solution/srvcpro/wireline/mss
hometocprevnextglossaryfeedbacksearchhelp
PDF

Table Of Contents

Release Notes for the
Cisco Managed Services Solution

Contents

Introduction

Resolved Caveats

Open Caveats

Related Documentation

Obtaining Documentation, Obtaining Support, and Security Guidelines


Release Notes for the
Cisco Managed Services Solution

November 2, 2007

These release notes describe the caveats for the Cisco Managed Services Solution 1.1.

Note You can access the most current Cisco documentation, including the release notes, online at http://www.cisco.com/en/US/netsol/ns663/networking_solutions_sub_solution.html.

Contents

These release notes contain the following sections:

Introduction

Resolved Caveats

Open Caveats

Related Documentation

Obtaining Documentation, Obtaining Support, and Security Guidelines

Introduction

The Cisco Managed Services Solution helps service providers efficiently deploy managed security services based on Cisco Integrated Services Router technology. This comprehensive solution includes provisioning, configuration, and fault monitoring for device management, managed firewall, and managed IP Security Virtual Private Network (IPsec VPN). The solution package is designed for service providers who want to purchase both network management software and associated Cisco advanced services. The software and service combination has been designed and tested based on a managed service lifecycle model to optimize value, lower risk, and decrease time to market. For this reason, the solution is only offered as a comprehensive software and service package. For service providers who want a highly customized solution, standalone products can be purchased from Cisco Systems and tailored to the service provider's specific requirements.

For rapid and trouble-free deployments, the Cisco Managed Services Solution includes the installation and configuration of the management software. This offering begins with a foundation Element Management System (EMS) for the Cisco Integrated Services Router, with optional managed security packages layered on top of the EMS. A one-year term software license supports a scalable pricing model to lower service provider deployment risk.

The following solution components are provided in the Cisco Managed Services Solution:

Carrier Ethernet, platform-ready MSS to help you plan, deploy, provision, and manage customer-premises equipment (CPE) and value-added services over a Carrier Ethernet-based transport network. It is cost-effective and simple to manage, and it guarantees an end-to-end Service Level Agreement (SLA) to customers over Carrier Ethernet networks.

Zero-touch provisioning of the Cisco Integrated Services Router platform through the Cisco Configuration Express program.

Network Management System (NMS) software platform for provisioning and fault monitoring of Cisco Integrated Services Router devices and managed security services.

Managed security service support includes managed firewall, managed Network Address Translation (NAT), and managed site-to-site IPsec VPN.

Cisco Managed Services Solution analysis service for managed services.

An additional security analysis service package for the Cisco Managed Services Solution is available for specific managed security applications.

Cisco advanced services for Operations Support System (OSS) to complete the following lifecycle phases: Prepare, Plan, Design, and Implement.

Additional advanced services can be requested for the Operate and Optimize lifecycle phases.

Advanced partner services may be available in some regions for integration to an existing OSS environment and for the implementation of additional solution components.

Resolved Caveats

The following table lists caveats that are resolved in Cisco Managed Services Solution 1.1.

Table 1 Caveats Resolved in Cisco Managed Services Solution 1.1

Caveat ID
Caveat

CSCsd38982

The Agent Virtual Machine 11 (AVM 11) process crashes with an out of memory error.

CSCse52342

When loading the scale setup, many Virtual Network Elements (VNEs) remain in the Initializing Investigation state.

CSCse71127

Cannot perform IPsec ping connectivity tests.

CSCse72955

Easy VPN client decommission fails to deploy with Cisco IOS Software version 12.4.

CSCse73279

Functional audit for IPsec service from the IP Solution Center (ISC) is not working.

CSCse73736

Intermittent role-based access control (RBAC) permission error occurs for nonadmin users when deploying an IPsec service request.

CSCse74942

Site-to-site VPN service request in IPsec transport mode goes to the Invalid state if NAT transparency is set to Off in both the policy and service requests.

CSCse75519

Cannot create a customer-associated IP address pool from the northbound interface.

CSCse83074

Deployment of an IPsec service request sometimes fails for the first time with the service request remaining in the Requested state.

CSCse83326

Error occurs when creating a firewall policy for generic management traffic and selecting the parent policy from the GUI.

CSCse87394

Adding a CPE to any of the sites in an IPsec site-to-site VPN without providing a metric attribute gives a northbound interface error.

CSCse87651

Setting the value (On/Off/Ignore) for RIP Split horizon when creating a Dynamic Multipoint VPN (DMVPN) service request gives an error.

CSCse90218

When ISC creates a firewall service, ISC does not validate that the CPE device and firewall policy ownership are the same.

CSCse90225

A better error message is needed when creating a CPE device and the outside interface is not selected.

CSCse91344

Cannot create an IPsec site-to-site VPN service using nothbound interface when customer CPE has the IPsec high availability (HA) set to Normal/Stateful Failover.

CSCse91349

When modifying a firewall policy, then redeploying the policy, the system gives an internal error.

CSCsg38351

Installing ISC 3.2.2.1 on ISC 3.2.2 gives a SQL exception message during the schema upgrade.


Open Caveats

The following section describes the caveats that are not resolved in the Cisco Managed Services Solution.

CSCse72959

Symptom    When creating and deploying an IPsec service, the ping service fails with an exception even when manual ping verification succeeds between sites.

Conditions   See Symptom.

Workaround   None.

CSCse85831

Symptom    Device has a port down alarm even though no ports are down on the device and the polling interval has passed. It appears that the port down alarm has not been cleared with a corresponding port up alarm.

Conditions   See Symptom.

Workaround   None.

CSCse85841

Symptom    The interface description in the routing entities section of the logical inventory does not get updated after it is provisioned on a device with ISC. It is not updated after the polling interval has passed.

Conditions   See Symptom.

Workaround   None.

CSCse85857

Symptom    The routing table in the routing entities section of the logical inventory does not get updated to display the Enhanced Interior Gateway Routing Protocol (EIGRP) routing entries.

Conditions   EIGRP routing is enabled.

Workaround   None.

CSCsj08178

Symptom    The Collect Config task fails for some of the Integrated Services Routers (ISRs).

Conditions   None.

Workaround   None.

CSCsj33854

Symptom    Cannot create the firewall policy with an inspect rule from northbound interface.

Conditions   Applies to northbound interface only.

Workaround   None.

CSCsj46714

Symptom    Security menu installation is not available when installing ISC 4.3. If ISC 4.3 is installed using Full Menu Security, policy and service are available as read only.

Conditions   None.

Workaround   From $ISC_HOME/bin directory, execute sitemap.sh security to switch to the security management menu.

CSCsj79250

Symptom    Command download fails for a device with Cisco IOS Software version 12.4 (11)T. Commands are being downloaded to a device from ISC using Cisco Configuration Engine (CE) as the transport mechanism.

Symptom    Commands are being downloaded to a device from ISC with CE as the transport mechanism.

Conditions   None.

Workaround   None.

CSCsj85136

Symptom    Cannot create a DMVPN service request from the GUI.

Conditions   None.

Workaround   None.

CSCsj85321

Symptom    Creating and deploying a DMVPN service request using the northbound interface goes to the FAILED_DEPLOY state.

Conditions   None.

Workaround   None.

CSCsj85395

Symptom    Decommission of an Easy VPN service request fails to deploy.

Conditions   Applys to decommission only.

Workaround   Redeploying the service request succeeds with moving the service request to a Closed state.

CSCsk54699

Symptom    When deploying an IPSec Site-to-Site VPN service request that was created using a northbound interface and the CPE has IPsec HA set as Normal/Stateful Failover, the service request gets stuck in a Requested state.

Conditions   Applies to northbound interface only.

Workaround   Edit the service request from the GUI and redeploy the service request.

CSCsk53448

Symptom    After installing ANA 3.6.1, configuring the gateway fails for the Oracle 10g server. This occurs when the Oracle 10g is installed on the default directory set by the Oracle installer.

Conditions   None.

Workaround   Reinstall the Oracle 10g server to a different directory other than the default directory set by the Oracle installer.

Related Documentation

The Cisco Managed Services Solution documentation includes:

Cisco Managed Services Solution Brochure

Cisco Managed Services Solution Data Sheet

Cisco Managed Services Solution Q & A

Documentation Guide for Cisco Managed Services Solution

Cisco Router Guide

You can access the Cisco Managed Services Solution documentation from the following URL: http://www.cisco.com/en/US/netsol/ns663/networking_solutions_sub_solution.html.

Printed copies of the Cisco Managed Services Solution and the Cisco Router Guide are available from the following URL:

https://www.nationsprint.com/clients/ciscoguides/

Obtaining Documentation, Obtaining Support, and Security Guidelines

For information on obtaining documentation, obtaining support, providing documentation feedback, security guidelines, and also recommended aliases and general Cisco documents, see the monthly What's New in Cisco Product Documentation, which also lists all new and revised Cisco technical documentation, at:

http://www.cisco.com/en/US/docs/general/whatsnew/whatsnew.html

This document is to be used in conjunction with the documents listed in the "Related Documentation" section.

CCVP, the Cisco logo, and the Cisco Square Bridge logo are trademarks of Cisco Systems, Inc.; Changing the Way We Work, Live, Play, and Learn is a service mark of Cisco Systems, Inc.; and Access Registrar, Aironet, BPX, Catalyst, CCDA, CCDP, CCIE, CCIP, CCNA, CCNP, CCSP, Cisco, the Cisco Certified Internetwork Expert logo, Cisco IOS, Cisco Press, Cisco Systems, Cisco Systems Capital, the Cisco Systems logo, Cisco Unity, Enterprise/Solver, EtherChannel, EtherFast, EtherSwitch, Fast Step, Follow Me Browsing, FormShare, GigaDrive, HomeLink, Internet Quotient, IOS, iPhone, IP/TV, iQ Expertise, the iQ logo, iQ Net Readiness Scorecard, iQuick Study, LightStream, Linksys, MeetingPlace, MGX, Networking Academy, Network Registrar, PIX, ProConnect, ScriptShare, SMARTnet, StackWise, The Fastest Way to Increase Your Internet Quotient, and TransPath are registered trademarks of Cisco Systems, Inc. and/or its affiliates in the United States and certain other countries.

All other trademarks mentioned in this document or Website are the property of their respective owners. The use of the word partner does not imply a partnership relationship between Cisco and any other company. (0709R)

hometocprevnextglossaryfeedbacksearchhelp

Posted: Fri Nov 2 14:30:51 PDT 2007
All contents are Copyright © 1992--2007 Cisco Systems, Inc. All rights reserved.
Important Notices and Privacy Statement.