File name: nt_fw_bcsw_10gbhs-1.1.1.0_anyos_noarch.txt **************************************************************** | | | Nortel 10 Gigabit Uplink Ethernet Switch Module (GbESM) | | for IBM BladeCenter Firmware | | | | Revision/Build ID: 1.1.1.0 | | | | (C) Copyright International Business Machines Corporation | | June, 2006. All rights reserved. | | | | US Government Users Restricted Rights -- Use, duplication | | or disclosure restricted by GSA ADP Schedule Contract with | | IBM Corp. | | | | Note: Before using this information and the product it | | supports, read the general information under "NOTICES AND | | TRADEMARKS" in this document. | | | | Updated < June 1, 2007 > | **************************************************************** CONTENTS ________ 1.0 About this README file 2.0 Change history 3.0 Installation and Setup Instructions 3.1 Software update procedure 3.1.1 Using Telnet 3.1.2 Using BBI 3.2 How to check the firmware version 4.0 Configuration Information 5.0 Unattended Mode 6.0 WEB Information and Support Phone Numbers 6.1 Web sites 6.2 Software service and support 6.3 Hardware service and support 7.0 Notices and trademarks 8.0 Disclaimer 8.1 Document provision 8.2 Note to government users 1.0 ABOUT THIS README FILE __________________________ This file is intended for network administrators responsible for upgrading the firmware for the Nortel 10 Gigabit Uplink Ethernet Switch Module (GbESM-10U). For a summary of GbESM-10U features, supplemental information and known issues associated with this release, please refer to the "Release Notes - 10 Gigabit Uplink Ethernet Switch Module for IBM BladeCenter", available via web sites indicated in section 6.1. 2.0 CHANGE HISTORY __________________ Version 1.1.1.0 (Released June 2007) Changes: - The requirement to RESET the switch between the upgrade of the OS and the upgrade of the Boot has been eliminated. - Relocated CLI command info/l2/8021p to /info/qos/8021p. Enhancements: - Added Generic VLAN Registration Protocol (GVRP) which allows the GbESM to configure VLANs dynamically with other GVRP-capable devices in the network, to allow automatic configuration of VLANs on the port The new CLI (Command Line Interface) command to configure GVRP is: [GVRP configuration Menu] port - Port menu jtime - Set GARP join time ltime - Set GARP leave time latime - Set GARP leave all time dynamic - Enable/disable dynamic VLAN creation on - Globally turn GVRP On off - Globally turn GVRP Off current - Display current GVRP parameters When GVRP is globally enabled, the maximum number of VLANs (Virtual Local Area Network) supported is 20,including the total of static and dynamic VLANs, but excluding VLAN 4095 and all disabled VLANs. - The number of Spanning Tree Groups supported was increased from 32 to 128. - Added Institute of Electrical and Electronics Engineers (IEEE) 802.1x with Guest VLAN (Virtual Local Area Network). By default, IEEE 802.1 protocol blocks unauthenticated ports until a user provides a valid user name / password. Instead of blocking unauthenticated ports, Guest VLAN feature will move ports into a defined VLAN. This enables the unauthenticated users to communicate with each other. The new CLI command to configure Guest VLANs is: /cfg/l2/8021x/global/gvlan/ [802.1x Guest VLAN Configuration Menu] vlan - Set 8021.x Guest VLAN number ena - Enable 8021.xGuest VLAN dis - Disable 8021.x Guest VLAN cur - Display current Guest VLAN configuration - Allow the user to disable ICMP (Internet Control Message Protocol) redirect. The new CLI command to configure this setting is: /cfg/L3/frwd/noicmprd Current No ICMP Redirects: disabled Enter new No ICMP Redirects [d/e]: - Added helpful reminders to assist with the configuration of key switch parameters. Also provides a CLI command to select or disable the reminders. /cfg/sys/reminder - Enable/disable Reminders - Provided control on a per port basis to disable mac address learning. Disabling the learning causes all traffic received on a port to be flooded to all ports. /cfg/port/ EXT1 [Port EXT1 Menu] learn - Enable/Disable FDB Learning for port - Also provided control on a per port basis to disable flooding. Disabling flooding causes packets sent to unlearned addresses to be dropped. In certain configurations, flooding is neither needed or desired. For example, a port with only manually assigned addresses or only one connected host has no unknown destinations. Flooding server no purpose for such a port. /cfg/port/ EXT1 [Port EXT1 Menu] floodblk - Enable/disable Port flood blocking - Modifications made to limit packet flooding to the MP (microprocessor) of the switch, keeping the flooding to only those required by the MP. - Improved support for Version 3 (V3) of IGMP (Internet Group Management Protocol) and increased the supported group count to 1000. V3 includes source-specific multicast (SSM) enabling the switch to forward multicast traffic from only the sources the receivers requests. New CLI command added for this improved support is: /cfg/l3/igmp/snoop/igmpv3 - IGMP Version3 Snoop Menu - Added Private VLAN edge support. private VLANs partition a regular VLAN domain into sub domains. No IP (Internet Protocol) traffic is forwarded off of these sub domains. The new CLI commands for private VLANs are: /cfg/l2/vlan/ Enter VLAN number: (1-4095) 1 [VLAN 1 Menu] pvlan - Protocol VLAN Menu privlan - Private-VLAN Menu - Added BPDU (Bridge Protocol Data Unit) Guard. BPDU Guard shuts down Spanning-Tree Protocol PortFast-enabled interfaces when BPDUs are received to avoid accidental topology loops. The new CLI command to enable or disable this function is: /cfg/l2/bpdugrd Enter new BPDU Guard [d/e]: - Added MAC (Media Access Control) address notification. MAC address notification allows an administrator to receive notification of servers added to or removed from the network. The new CLI command to enable or disable this function is: /cfg/l2/macnotif Enable/disable MAC address notification. - Added to the BBI, the ability to enable or disable user-id and password. Included the CLI command to enable this feature which is disabled by default. /cfg/sys/access userbbi - Enable/disable user configuration from BBI - Added to the BBI (Browser Based Interface) the ability to enable or disable telnet or ssh (Secure Shell) server via external ports or the Management Module. Included the CLI command to enable this feature which is disabled by default. /cfg/sys/access tsbbi - Enable/disable telnet/ssh configuration from BBI - For the BCHT (BladeCenter H Telcom) chassis with the ISL (Inter-Switch Link) option the switch will detect the configuration an support the ISL's using internal switch ports 13 and 14. This link functions as a trunk between switch modules installed in I/O bays 1 & 2 or modules in bays 3 & 4. Fixes: - The CLI/BBI will correctly show the maximum trunks in Telco chassis as 8. Max Possible Trunks = (# of Internal ports / 2) + # of External ports (number 7719) - Added a Information command to display the chassis information and POST (Power ON Self Test) results. The new CLI commands for displaying this information is: >> Main# /info/sys/chassis IBM BladeCenter Chassis Related Information: Switch Module Bay = 2 Chassis Type = Enterprise POST Results = 0xff (number 7707) - Improved response so that traffic is forwarded with one minute from the LACP (Link Aggregation Control Protocol) trunk link becoming active. (number 6771) - Enable user to include the MGT port in the ACL (Access Control Lists) filter. (number 6111) - Improved the updating of the internal port link states when connecting to a JS21 blade. Link states were subject to going down. (number 8579) - Correct a condition on initialization of MSTP (Multiple Spanning Tree Protocol) with a 32STG/32VLANs configuration that had resulted in 100% CPU utilization. (number 7590) - Provided a fix for validating CIST (Common and Internal Spanning Tree) bridge priority. Check that the value conforms to the 4096 rule when configuring MST cist priority. (number 8701) - Enable user to set MSTP path cost of auto(0) when configuring the cost for MSTP CIST using ISCLI. (number 8722) - Add a check for invalid IP and Mask. This occurs at apply time if BGP (Border Gateway Protocol) is enabled. (number 8992) - Added capability to add or remove a range of vlans in a spanning tree group (number 8743) - Added option to exit scrolling of a cfg/dump display. (number 7732) Version 1.0.2.1 (Released March 2007) Changes: - NNCLI is now called iSCLI. Nortel Networks Command Line Interface (CLI) now called industry Standard CLI. Enhancements: - Added support for the new daylight savings time rules for NTP (Network Time Protocol). Starting with 2007, daylight savings time will begin at 2AM on the second Sunday in March and end at 2AM on the first Sunday in November. The new change can be configured through AOS (Alteon Operating System) CLI only. - Switch incorrectly identified IBM BladeCenter Telco as IBM BladeCenter. A new field "hdchassis type" was added to correctly identify the IBM BladeCenter Telco Chassis Fixes: - Nortel L2/3 10G uplink switch intermittently showed link status as "down" when a JS21 blade was installed in the chassis. This was resolved by adding a new subroutine to configure default values for Nortel L2/3 10G uplink switch internal links. (number 8579) - Switch was not able to recognize approved IBM 10 Gigabit Small Form Factor Pluggable (XFPS). In the previous release the switch displayed an incorrect message,"UNAPPROVED XFP" even when IBM approved XFPs were installed. This has been resolved by reading the XFP EEPROM (Electrically Erasable Programmable Read Only Memory) correctly. (number 8106) Version 1.0.1.1 (Released June 2006) - Initial Product Release 3.0 INSTALLATION AND SETUP INSTRUCTIONS _______________________________________ The GbESM-10U firmware is composed of two (2) code images: the boot code and the switch operating system. The GbE switch module ships with this firmware pre-installed. However, new versions of the firmware are periodically released and can be used to update the features and function of the switch. 3.1 Software update procedure ----------------------------- Update the switch software using a TFTP or FTP server application. Typically, this application is installed on a machine that is reachable from the switch through the external ports or the management module. NOTES: - The following steps reflect the use of a TFTP server. A FTP server can also be used. - Upgrades can also be performed using external ports. Please see "Enabling management over external ports" in the GbESM-10U Installation Guide. 1) Download the GbESM-10U software package (zip file) to the machine where the TFTP server resides. 2) Extract the Boot and OS image files into a directory. Enable the server and set its default directory to the one where the image files reside. 3) Establish a connection between the Ethernet port of the BladeCenter Management Module and the TFTP Server. 4) Using the Management Module web interface (GUI), configure the IP Address/Mask of the Management Module Network Interfaces, the GbESM-10U switch and the TFTP server so that they all reside on the same subnet. For example, Management Module (eth0) => 192.168.70.125 / 255.255.255.0 Management Module (eth1) => 192.168.70.126 / 255.255.255.0 (NOTE: eth1 interface is not applicable on all MMs) GbESM-10U Current IP Config => 192.168.70.127 / 255.255.255.0 TFTP Server => 192.168.70.254 / 255.255.255.0 NOTE: Although configured as such, for this example, the TFTP Server does not have to be on the same subnet as long as a proper gateway address is configured in the switch. 3.1.1 Using Telnet ------------------ 1) Using the Management Module GUI, navigate to: I/O Module Tasks -> Configuration -> Bay X -> Advanced Configuration -> Start Telnet session When the telnet session is established, you will begin using the Command Line Interface (CLI) of the GbE-10U switch. 2) Enter any admin-level password ('admin' is the default). The GbE-10U switch provides storage for two (2) OS images and one (1) Boot image. What you are about to do consists of the following sequence: - load the new OS image into one of the image banks - load the Boot image - reset the switch NOTE: When you reset the switch it boots using the 'selected' image (1 or 2). Please ensure that you are booting from the upgraded image (execute /boot/cur to determine). 3) Upgrade the OS image by entering the following commands: a) /boot/gtimg X TADDR GbESM-10U-AOS-1.1.1.0_OS.img WHERE: ------ X => 1 or 2 (depends which image bank you want to use) TADDR => IP Address of the TFTP Server NOTE: It is recommended that you retain the previous OS version by loading the upgrade into the other image bank and then reset the switch using the new image. (use /boot/image command to select preferred image) Answer 'Y' to the confirmation question, then wait for the upgrade to complete successfully. b) A RESET between the OS and Boot upgrade is NOT REQUIRED. 4) Upgrade the Boot image by entering the following commands: a) /boot/gtimg boot TADDR GbESM-10U-AOS-1.1.1.0_Boot.img Answer 'Y' to the confirmation question, then wait for the upgrade to complete successfully. b) After the Boot Update completes RESET the switch. /boot/reset NOTE: You MUST Reset the switch to activate the new image. Resetting the switch kicks you out of the CLI, so Steps 1 and 2 will need to be executed again. A switch reset completes in approximately 60 seconds. 3.1.2 Using BBI --------------- 1) Using the Management Module GUI, navigate to: I/O Module Tasks -> Configuration -> Bay X -> Advanced Configuration -> Start Web session 2) Enter any admin-level username and password ('admin' is the default username and 'admin' is the default password). 3) Click the CONFIGURE button (near top of page) 4) In the frame on the left, click on the "Nortel 10Gb Uplink Ethernet Switch Module" folder icon and navigate to: System -> Config/Image Control The GbE-10U switch provides storage for two (2) OS images and one (1) Boot image. What you are about to do consists of the following sequence: - load the new OS image into one of the image banks - load the Boot image - reset the switch NOTE: When you reset the switch it boots using the 'selected' image (1 or 2). Please ensure that you are booting from the upgraded image (see "Next Boot Image Selection" field). 5) Upgrade the OS image as follows: a) Under Config/Image Control, fill in the following three (3) fields on the lower half of the page: Hostname or IP Address of FTP/TFTP server => Image Filename => GbESM-10U-AOS-1.1.1.0_OS.img Image for Transfer => 1 or 2 (i.e. the preferred image bank) NOTE: It is recommended that you retain the previous OS version by loading the upgrade into the other image bank and then reset the switch using the new image. (use the "Next Boot Image Selection" field to select the preferred image). b) Click the "Get Image" button. Wait for the upgrade to complete successfully. 6) Upgrade the Boot image as follows: a) Fill in the following three (3) fields on the lower half of the page: Hostname or IP Address of FTP/TFTP server => Image Filename => GbESM-10U-AOS-1.1.1.0_Boot.img Image for Transfer => boot b) Click the "Get Image" button. Wait for the upgrade to complete successfully. 7) Click the "REBOOT!" button to reset the switch. NOTE: You MUST Reset the switch to activate the new image. Resetting the switch kicks you out of the BBI, so Steps 1-2 will need to be executed again. A switch reset completes in approximately 60 seconds 3.2 How to check the firmware version ------------------------------------- To check the version of the firmware images installed on the GbESM-10U, use either of the following methods: a) From the CLI, execute the command: /boot/cur This command displays (for example): Currently set to boot software image1, active config block. Current CLI mode set to aos with selectable prompt disabled. Current FLASH software: image1: version 1.1.1, downloaded 14:56:10 Thu May 31, 2007 image2: version 1.0.2.1, downloaded 20:45:58 Mon Mar 5, 2007 boot kernel: version 1.1.1 Currently scheduled reboot time: none b) Using the Management Module GUI, navigate to: Monitors -> Firmware VPD Scroll down to view the VPD info for the appropriate GbE-10U Switch. You should see the following entries: FIRMWARE TYPE BUILD ID RELEASED REVISION ------------- -------- -------- -------- Boot ROM WMS01000 05/07/2007 0101 Main Application 1(or 2) WMS01000 05/07/2007 0101 The four digits comprising the version (e.g. 1.0.2.1) correlate to the REVISION/BUILD ID as follows: - Revision => 01 01 ... the first 2 digits of the version - Build ID => 01 000 ... the last 2 digits of the version 4.0 CONFIGURATION INFORMATION _____________________________ For detailed switch configuration, please refer to, "Command Reference - 10 Gigabit Uplink Ethernet Switch Module for IBM BladeCenter", available via web sites indicated in section 6.1. 5.0 UNATTENDED MODE ___________________ Unattended Mode is not supported for updating the Nortel Switch Module firmware. 6.0 WEB Information and Support Phone Numbers _____________________________________________ Information and assistance is available through the IBM Web site and by phone. World wide Help Center Telephone Numbers and URL's can be found at: http://www.pc.ibm.com/qtechinfo/YAST-3P2QYL.html 6.1 Web sites ------------- IBM Support Web Site: http://www.ibm.com/pc/support/ or http://www.ibm.com/support/ IBM eServer Web site, for model information and literature: http://www.ibm.com/eserver/xseries/ 6.2 Software service and support -------------------------------- Through the IBM Support Line, you can get telephone assistance, for a fee, with usage, configuration, and software problems with xSeries servers, IntelliStation workstations, and appliances. For information about which products are supported by Support Line in your country or region, go to http://www.ibm.com/services/sl/products/. For more information about Support Line and other IBM services, go to http://www.ibm.com/services/ For support telephone numbers go to http://www.ibm.com/planetwide/ In the U.S. and Canada, call 1-800-IBM-SERV (1-800-426-7378). 6.3 Hardware service and support -------------------------------- You can receive hardware service through IBM Services or through your IBM reseller, if your reseller is authorized by IBM to provide warranty service. For support telephone numbers go to http://www.ibm.com/planetwide/ or in the U.S. and Canada, call 1-800-IBM-SERV (1-800-426-7378). In the U.S. and Canada, hardware service and support is available 24 hours a day, 7 days a week. In the U.K., these services are available Monday through Friday, from 9 a.m. to 6 p.m. 7.0 NOTICES AND TRADEMARKS __________________________ The following terms are trademarks of International Business Machines Corporation in the United States, other countries, or both: e-business logo eServer IBM xseries BladeCenter GbESM The following terms are trademarks of Nortel in the United States, other countries, or both: Nortel Nortel Networks The following term is a trademark of BLADE Network Technologies, Inc., in the United States, other countries, or both: BladeHarmony 8.0 DISCLAIMER ______________ INTERNATIONAL BUSINESS MACHINES CORPORATION PROVIDES THIS PUBLICATION "AS IS" WITHOUT WARRANTY OF ANY KIND, EITHER EXPRESS OR IMPLIED, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES OF NON-INFRINGEMENT, MERCHANTABILITY OR FITNESS FOR A PARTICULAR PURPOSE. Some jurisdictions do not allow disclaimer of express or implied warranties in certain transactions, therefore, this statement may not apply to you. This information could include technical inaccuracies or typographical errors. Changes are periodically made to the information herein; these changes will be incorporated in new editions of the publication. IBM may make improvements and/or changes in the product(s) and/or the program(s) described in this publication at any time without notice. 8.1 Document provision ---------------------- THIS DOCUMENT IS PROVIDED "AS IS" WITHOUT WARRANTY OF ANY KIND. IBM DISCLAIMS ALL WARRANTIES, WHETHER EXPRESS OR IMPLIED, INCLUDING WITHOUT LIMITATION, THE IMPLIED WARRANTIES OF FITNESS FOR A PARTICULAR PURPOSE AND MERCHANTABILITY WITH RESPECT TO THE INFORMATION IN THIS DOCUMENT. BY FURNISHING THIS DOCUMENT, IBM GRANTS NO LICENSES TO ANY PATENTS OR COPYRIGHTS. 8.2 Note to government users ---------------------------- Note to U.S. Government Users -- Documentation related to restricted rights -- Use, duplication or disclosure is subject to restrictions set forth in GSA ADP Schedule Contract with IBM Corporation.