BIG-IP 10.2.2 がリリース
BIG-IP 10.2.2 がリリースされました。
新機能¶
新機能は以下だそうです。
- VIPRION 2400 がサポートされた
- BIG-IP 8950S がサポートされた
- Virtual Edition のイメージが Hyper-V や XenServer 上で動作するようになった
修正点¶
その他、修正点は以下だそうです。
| ID / Abstract | Description |
|---|---|
| IPv6 trunk hashing | IPv6 performance improvements for the BIG-IP 3900, 8900, and 8950 platforms, and VIPRION platforms using blade 4200 (also referred to as blade PB-200) by correcting the IPv6 trunk hashing issue. |
| UDP performance | This release provides UDP performance improvements through use of the Stateless virtual server type. |
| ID 222455, CR119790 | TMM previously queued only one packet per flow for a given destination when there was a pending neighbor ARP response. The default depth is four packets and can be configured by adding the bigdb variable tmm.nbr.pbqlen. |
| ID 222455, CR119790 | TMM previously queued only one packet per flow for a given destination when there was a pending neighbor ARP response. The default depth is four packets and can be configured by adding the bigdb variable tmm.nbr.pbqlen. |
| ID 224060, CR133759 | On 1600, 3600, 3900, 6900, and 8900, and 8950 platforms, the values in the sysIfxStat portion of the F5-BIGIP-SYSTEM-MIB file are now updated properly. |
| ID 224966, CR138207 | When the nameservers are changed using b db nameserver, the system restarts httpd service to reload the DNS configuration. |
| ID 227144, CR142802 | When load balancing UDP datagrams, the flow table is properly checked in order to prevent a server-initiated flow from inadvertently using the same port as an in-progress client-initiated flow. |
| ID 339291 | The default maximum size of the IPv6 routing table has been increased to 8192 entries. |
| ID 345944 | BIND has been updated to mitigate two vulnerabilities, tracked by the Common Vulnerabilities and Exposures (CVE) project as CVE-2010-3613 and CVE-2010-3615. |
| ID 346107 | When using VLAN groups, egress traffic is correctly handled (no longer dropped) when the egress VLAN is the same as the ingress VLAN, when using a non-VLAN-group listener. |
| ID 346202 | On the VIPRION system, the system_check utility now correctly checks the temperature on all blade types. |
| ID 346501 | Clients can now connect with 4096-bit key/certificate pairs to virtual servers that utilize cryptographic acceleration hardware and require client certificate authentication. |
| ID 346901 | The 8900 NEBS platform is now checked properly for timezone updates. |
| ID 347628 | You can specify the netmask in an iRule in dotted quad format, for example, /255.255.255.0. In versions 10.0.0 through 10.2.1 of the software, this functionality was deprecated. In 10.2.2, the functionality has been restored. |
| ID 350434 | In previous releases, certain iRule commands (for example, table and persist) might not complete when executed in the CLIENT_CLOSED event. In this release, commands of this type complete correctly. |
| ID 350218 | Link Aggregation Control Protocol (LACP) now properly enforces the partner SysId match check to prevent aggregation of ports connected to different remote switches. |
| ID 353934 | File and directory permissions for /shared/ssh/root now have the proper umask settings. |
| ID 356718 | In appliance mode, running an edit command in tmsh invokes the nano editor instead of the vi editor. |