OcNOS Service Providers (SP) provides a complete solution for access, cell site router and aggregation networks. Support for advanced capabilities such as SR-MPLS, Timing and Synchronization, EVPN Fabric, IP over DWDM with 400G ZR/ZR+ optics, and more is available in OcNOS SP. IP Infusion offers disaggregated solutions that reduces overall Total Cost of Ownership (TCO), expands the vendor landscape, and enables agile service introduction through automation.

Disaggregation is pivotal, separating networking software from hardware to enhance programmability, automation, and control, resulting in better network management and potential cost savings.

Rising network traffic due to remote work applications has prompted efficient data and performance management. Service Providers must deliver high-performance services reliably, efficiently, and securely. Robust carrier-grade capabilities are needed for effective broadband aggregation and edge routing, accommodating the escalating capacities required for advanced networks. This enables efficient management of high-traffic volumes across applications like mobility, cloud networking, video, and gaming.

Open Compute Network Operating System (OcNOS) is a network operating system designed to run on Commercial Off-The-Shelf (COTS) platforms, following the principles of disaggregated networking. OcNOS provides a software-based solution for network switches and routers, offering a flexible and open approach to networking.

Key benefits of OcNOS:

OcNOS works with applications in diverse network environments, including data centers, service provider networks, enterprise networks, and cloud deployments. It provides an open, flexible environment, extensive protocol support for software-defined networking (SDN) and disaggregated networks.

 

OcNOS SP Release 6.6.1 introduces several software features, and product enhancements.

This enhancement adds support for manually configuring and retaining Adjacency Segment Identifiers (Adj-SIDs) in IS-IS-based Segment Routing (SR) networks. In traditional SR deployments, Adj-SIDs are dynamically allocated, which can lead to inconsistent SID values across router restarts or topology changes. This poses challenges for SR Traffic Engineering (SR-TE), particularly when tunnels are provisioned by external controllers that lack real-time IGP visibility.

With this feature, users can explicitly assign Adj-SIDs to specific links, ensuring SID consistency across restarts. This enables reliable path steering through specific links in the network, simplifies SR-TE policy management, and improves interoperability with external SDN controllers that require static SID references.

For more details, refer to the User Defined Adjacency SID for ISIS or OSPF section in the OcNOS Segment Routing Guide, Release 6.6.1.

This feature introduces Topology Independent Loop-Free Alternate (TI-LFA) support for IS-IS Segment Routing (SR) in combination with Flexible Algorithms (Flex-Algo). TI-LFA provides Fast Reroute (FRR) capabilities, ensuring sub-50-ms protection against link and node failures. The integration with Flex-Algo enables the reroute paths to comply with user-defined routing constraints, ensuring traffic engineering objectives and service-level requirements are maintained even during failures.

For more details, refer to the TILFA for ISIS SR with Flexible Algorithms section in the OcNOS Segment Routing Guide, Release 6.6.1.

The targeted-peer IPv4 configuration in LDP now includes a new tunneling CLI option. This CLI enables targeted peer tunneling for LDP FECs, providing greater flexibility in managing targeted LDP sessions. It allows users to define tunneling parameters directly within the targeted-peer IPv4 configuration.

For more information, refer to the Targeted-peer Tunneling section in the OcNOS Multi-Protocol Label Switching document, Release 6.6.1.

In Resource Reservation Protocol Traffic Engineering (RSVP-TE), the creation of the auto-bypass tunnel group is based not only on the excluded Shared Risk Link Group (SRLG) value but also on the interface index. Hence, the show rsvp auto-bypass-group command replaces show rsvp srlg-group command to make it more generic.

For more details, refer to the show rsvp auto-bypass-group command section from the OcNOS Multi-Protocol Label Switching document, Release 6.6.1.

OcNOS enhances BGP Large Communities (LC), allowing networks to tag routes with 12-byte identifiers. This makes it easier to manage routing policies across large-scale, multi-domain, and multi-vendor environments. LC provides a clean, structured way to group and control routes, especially when standard or extended communities aren't enough. Users can match, set, or delete Large Community values in route-maps and apply policies to neighbors like other community types. This feature gives operators flexibility, simplifies policy management, and helps ensure consistent behavior across complex networks.

For more details, refer to the BGP Large Communities section from the OcNOS Layer 3 Guide, Release 6.6.1.

OcNOS now supports IS-IS Segment Routing (SR) Micro-loop Avoidance, leveraging SR-MPLS to prevent micro-loops during IGP re-convergence after link-state changes (up/down) or metric adjustments. This feature ensures loop-free traffic forwarding by enforcing a Segment Identifier (SID) list on the post-convergence path, minimizing packet loss to under 50ms. It integrates with Fast Reroute (FRR) mechanisms like TI-LFA for critical failures and supports MPLS-based services (L2VPN, L3VPN, EVPN, and BGP).

For more details, refer to the SR based Micro-Loop Avoidance section in the OcNOS Segment Routing Guide, Release 6.6.1.

Equal Cost Multipath (ECMP) support for L3VPN helps in load-balancing the traffic for L3VPN routes while managing traffic distribution across multiple paths of equal cost. It enables improved load balancing and resiliency across VPN traffic paths. Using ECMP, multiple paths are configured in fast path while also balancing the traffic load for a given L3VPN route.

For more details, refer to the ECMP Support for L3VPN section in the OcNOS Multi-Protocol Label Switching document, Release 6.6.1.

OcNOS introduces the signal integrity (SI) tuning commands to provide fine-grained control of the following physical layer level features:

The phy dfe enable command activates adaptive receiver feedback equalization to compensate for inter-symbol interference (ISI).

Use cases:

The phy link-training enable command activates adaptive training frames for dynamic equalization during link initialization.

Use Cases:

The phy unreliable-los enable command facilitates masking of short-duration LOS events to prevent link flaps caused by transient disturbances.

Use cases:

For more details, refer to the Interface Commands section in the System Management Guide, Release 6.6.1.

The new gi-addr and src-ip-addr parameters are added to enhance the ip dhcp relay and ipv6 dhcp relay command. When both of these parameters are executed, it configures the gateway interface (GI) address and specifies it as the source IP address for the DHCP relay packets. When a router functions as a DHCP relay, the GI address distinguishes between different subscriber interfaces and between the defined group interfaces.

For more details, refer to the Dynamic Host Configuration Protocol Relay section in the System Management Guide. Release 6.6.1.

OcNOS provides support for Telecom Grandmaster (T-GM), which is a Precision Time Protocol (PTP) Grandmaster Clock on the EdgeCore AS7515-24X platform that enables multiple application architectures required for high traffic loading in a 5G mobile Ethernet network.

For more information refer to the Precision Time Protocol Configuration section in OcNOS Timing and Synchronization Guide Release 6.6.1.

The all parameter for the no match cos (WORD|all) and no match cos inner (WORD|all) commands are removed to explicitly specify the cos value as an individual or as a range.

For more information refer to the Quality of Service Commands section in OcNOS Quality of Service Guide Release 6.6.1.

This enhancement introduces a new CLI parameter learn-disable with the MAC access-list filter topic. Enabling this command prevents the learning of new MAC addresses, when configured with hardware profile filter.

For more information refer to the mac access-list filter section in the OcNOS System Management Guide, Release 6.6.1.

OcNOS supports CPU monitoring for streaming telemetry. When enabled (default), the system actively tracks CPU utilization and pauses telemetry subscriptions if usage exceeds a configurable threshold. This reduces telemetry-related CPU usage when the 5-minute average exceeds the threshold, allowing critical functions, such as control plane applications, to retain sufficient CPU resources. The gNMI server resumes normal operation once CPU usage returns to safe levels.

For more details, refer to the Streaming Telemetry CPU Monitoring section of the OcNOS Streaming Telemetry Guide, Release 6.6.1.

OcNOS adds support for new IPI data model paths that extend telemetry visibility across BGP peers, interfaces, VPRN/VRF, IS-IS, VRRP, TWAMP, IP-SLA, LAGs/Bonds, sub-interfaces, and MPLS. The added support includes administrative and operational state, protocol metrics, and performance indicators such as latency and packet loss. These enhancements improve real-time monitoring and diagnostics of critical services and protocols.

For more details, refer to the IPI Data Models section in the OcNOS Streaming Telemetry Guide, Release 6.6.1.

Improved internal caching in the gNMI server to reduce CPU utilization during telemetry streaming. The optimization enables stable performance at higher scale (up to 4k), ensures unique timestamps in responses, and prevents stream disconnections. This enhances control-plane stability during heavy monitoring operations.

For more details, refer to the gNMI Server Cache Optimization section of the OcNOS Streaming Telemetry Guide, Release 6.6.1.

OcNOS introduces the mpls-l2vpn-nw-statistics command to enable traffic statistics collection at the L2VPN service level (VPLS or VPWS). By default, statistics are collected at the transport layer. Enabling this option shifts collection to the L2VPN layer but disables transport-level statistics. This setting should not be used with auto-bandwidth, as it impacts bandwidth calculation accuracy.

For more details, refer to the mpls l2vpn-nw-statistics command in the OcNOS Multi-Protocol Label Switching document, Release 6.6.1.

OcNOS introduces the show mpls ilm-table command to display unique MPLS labels assigned for the same FEC per TLDP session, providing improved visibility into label distribution and aiding in troubleshooting and validation of MPLS forwarding entries.

For more details, refer to the MPLS Commands section of the OcNOS Multi-Protocol Label Switching document, Release 6.6.1.

Netconf now supports the copy-text-config feature, which replaces the entire configuration using CLI-style (CML-formatted) text files. This provides a simpler alternative to XML-based configuration.

The system transfers files over user-defined VRFs or the management VRF, enabling flexible deployment across isolated routing domains.

For more details, refer to copy-text-config in the URL Capabilities section of the NetConf User Guide, Release 6.6.1.

The check for uniqueness of the key attributes is already enforced in datamodel check and the validation of CLI / NetConf configurations is done by CML validation layer.

However, sometimes even some non-key attributes need to be unique within a list. With the unique datamodel support, the uniqueness in YANG lists with non-key attributes is also checked by a CML validation layer. The check is defined in the CML datamodel XML, validated by the CMLd.

For more details, refer to the YANG Unique Datamodel Support section in the NetConf Guide, Release 6.6.1.

A command syntax #show xml|json candidate-config-diff has been introduced to show the difference between candidate configuration and running configuration in Custom NetConf Remote Procedure Calls (RPC).

For more details, refer to the Common Management Layer Commands section in the OcNOS System Management Guide, Release 6.6.1.

OcNOS now supports Two-Way Active Measurement Protocol (TWAMP) for VPN Inter-Access Interfaces, extending end-to-end performance measurements across multi-VPN or multi-VRF environments. This feature enables precise measurement of one-way/two-way latency and packet loss between access interfaces in service provider networks, accounting for Quality of Service (QoS) policies and queuing mechanisms. It supports SLA verification and troubleshooting by measuring delays directly on VPN access interfaces, beyond tunnel endpoints, ensuring accurate reflection of user-experienced performance in L3VPN and similar services.

For more details, refer to the TWAMP for VPN Inter-Access Interface section in the Layer 3 Guide, Release 6.6.1.

OcNOS now supports Simple Network Management Protocol (SNMP) for TWAMP, enabling monitoring and fault detection of TWAMP modules. This feature provides SNMP interfaces for TWAMP Sender, Reflector, Server, and Client components, supporting snmpwalk, snmpget, and trap generation. The TWAMP Sender generates and collects TWAMP packets, the Reflector responds to received packets, the Server manages TCP connections for control messages per RFC 5357, and the Client initiates connections to the Server. This enhances network management by integrating TWAMP performance metrics with SNMP-based monitoring systems.

OcNOS introduces the notification enabled, notification minimum-change <0–10000>, and notification threshold <1–100> commands to support this SNMP-based TWAMP monitoring.

For more details, refer to TWAMP for Client and Server with SNMP in OcNOS Layer3 Guide for configurations, notification enabled, notification minimum-change <0-10000>, and notification threshold <1-100> the Simple Network Management Protocol section in the OcNOS System Management Guide, Release 6.6.1.

OcNOS introduces the MAC Limit feature for EVPN, enabling control of MAC address learning at the Ethernet Virtual Instance (EVI) and per-Access Circuit (per-AC) levels across MPLS, VxLAN, or SR underlays. Per-AC limits track MAC addresses learned from Customer Edge (CE) to Provider Edge (PE) or Virtual Tunnel Endpoint (VTEP), while EVI limits encompass all MACs, including those from ACs and BGP. Configurable actions include logging for both EVI and AC limit breaches and error-disabling for ACs, with high/low watermark thresholds for syslog notifications and recovery timers for error-disabled ACs. This software-based feature halts MAC learning upon reaching limits without stopping flooding, enhancing network stability and security.

For more details, refer to the EVPN MAC Limit Enforcement at EVI and AC for EVPN-MPLS section in the OcNOS Multi-Protocol Label Switching document, Release 6.6.1.

For more details, refer to the MAC Limit Enforcement at EVI and AC for EVPN-VxLAN section in the OcNOS Virtual Extensible LAN Guide, Release 6.6.1.

OcNOS introduces support for 4-byte Autonomous System Numbers (ASN) in BGP-VPLS. To accommodate this, the Route Distinguisher (RD) has an expanded administrator field for the 4-byte ASN, while the assigned number field remains 2 bytes. This enhancement ensures consistent and unique identification of VPLS instances in large-scale networks.

For more details, refer to the BGP Four Bytes ASN with VPLS Configuration section of the OcNOS Multi-Protocol Label Switching document, Release 6.6.1.

OcNOS has increased the maximum number of peers from 200 to 512 that can be configured in a BGP dynamic peer-group.

For more details, refer to the BGP section of the OcNOS Layer 3 Guide, Release 6.6.1.

OcNOS introduces a new feature to set a maximum route limit in a VRF FIB, restricting routes imported from local CE devices into a PE device.

For more details, refer to the Maximum Allowed VRF FIB Routes in BGP/MPLS L3VPN Configuration section of the OcNOS Layer 3 Guide, Release 6.6.1.

OcNOS introduces the show mpls ilm-table command to display unique MPLS labels assigned for the same FEC per TLDP session, providing improved visibility into label distribution and aiding in troubleshooting and validation of MPLS forwarding entries.

For more details, refer to the MPLS Command section of the OcNOS Multi-Protocol Label Switching document, Release 6.6.1.

OcNOS now supports the kdump-tools package, streamlining kernel crash dump setup and management. This feature configures kdump to capture system memory (vmcore) during kernel failures, aiding post-mortem debugging. Systems with over 8GB of memory reserve 256MB for a secondary kernel during crashes; kdump is disabled on systems with less than 8GB. This software update works seamlessly with existing Linux setups, enhancing kernel diagnostics without hardware changes.

For more details, refer to the Debugging Kernel Crash section in the OcNOS Troubleshooting Guide, Release 6.6.1.

OcNOS introduces new alarm types in the Fault Management System (FMS). This enhances the network monitoring capability. It also enables precise tacking of critical system components, improving fault detection and operational reliability. The new alarms include:

CMM_MONITOR_ENTITY_PRESENCE: Monitors the presence of entities within the system.

CMM_CMIS_MODULE_MONITOR: Tracks the operational status of the Common Management Information Service (CMIS) module.

CMM_CMIS_MODULE_MEDIA_LANE_MONITOR: Observes the media lane performance within the CMIS module.

CMM_CMIS_MODULE_HOST_LANE_MONITOR: Monitors the host lane functionality within the CMIS module.

For more details, refer to the Fault Management System Configuration section in the OcNOS System Management Guide, Release 6.6.1.

The ip source-interface and ipv6 source-interface are updated with new default port numbers 123,162,1812,49, and 514 parameters to configure multiple ports for the same protocol.

For more details, refer to the Source Interface Commands section in the OcNOS Layer 3 Guide, Release 6.6.1.

The sFlow sampling feature has been enhanced to support configurable sampling directions — ingress, egress, or both. This enhancement is available in both the global sFlow configuration mode and the interface-level sFlow configuration mode.

A new CLI sub-menu has been introduced under sFlow sampling to consolidate related attribute configurations. Additionally, a new attribute is added to the interface-level sFlow configuration, allowing users to enable or disable sampling for a specific direction.

The show sflow details CLI command output has also been updated with a new column to display the active sampling direction.

For more information, refer to “Configuring sFlow Sampling Direction and Rate and sflow commands sections in OcNOS System Management Guide Release 6.6.1.

In OcNOS, the mpls bfd ldp all and mpls bfd rsvp all commands are removed to prevent high CPU usage in scaled transport scenarios. Enable MPLS BFD only on the required tunnels or Label Switched Paths (LSPs) instead of using global options.

For more details, refer to the mpls bfd command section in the OcNOS Multi-Protocol Label Switching document, Release 6.6.1.

OcNOS introduces the L2VPN-L3VPN stitching feature, designed to enhance the interworking capabilities between Layer 2 VPNs (VPLS) and the Layer 3 VPN/IP domain. This feature simplifies traffic management by eliminating the need for physical interconnections between devices.

For more details, refer to the L2VPN-L3VPN Stitching section in the OcNOS Multi-Protocol Label Switching document, Release 6.6.1.

The BGP-Auto-Discovery (AD) feature has been enhanced to introduce the "Multiple Route-Targets" capability, which improves the flexibility and configurability of route management within BGP configurations.

For more details, refer to the BGP Auto-Discovery (AD) for LDP VPLS section in the OcNOS Multi-Protocol Label Switching document, Release 6.6.1.

Policy-Based Routing (PBR) with Next-Hop Tracking is a networking feature designed to increase routing resiliency and efficiency by dynamically tracking the availability of the next-hop IP address associated with a PBR policy. When the next hop becomes unavailable, the device automatically shifts traffic to an alternative route without needing to modify the PBR rule itself. This approach ensures high network availability and improved responsiveness to failures or link changes.

For more details, refer to the Policy Based Routing Configuration section in the OcNOS Layer 3 Guide, Release 6.6.1.

BVI support, which was initially limited to Q2-Platform and IPv4, is now extended to support Q1-Platform and IPv6.

For more details, refer to the QoS and ACL over Bridge Virtual Interface (BVI) section in the OcNOS Layer 3 Guide and Bridge Virtual Interface (BVI) Over 6vPE in the OcNOS Multi-Protocol Label Switching document, Release 6.6.1.

This feature enables BGP to aggregate VRF-learned routes and advertise only summarized prefixes to specific BGP peers. It reduces the number of advertised routes while maintaining optimal routing efficiency.

For more details, refer to the BGP Aggregate-Address in VRF Address-family section in the OcNOS Layer 3 Guide, Release 6.6.1.

MAC Withdrawal Support for VPWS deployments on MTUs Node. This enhancement extends MAC withdrawal support to VPWS configurations on MTUs Node. Previously, MAC flushing was supported for VPLS configured on MTUs. With this update, MAC withdrawal is now triggered during Virtual Circuit (VC) switchover (standby to active or vice versa) even when VPWS is deployed.

For more details, refer to the MAC Withdrawal - VPLS/H-VPLS section in the OcNOS Multi-Protocol Label Switching document, Release 6.6.1.

OcNOS introduces support for configuring static MAC address entries on Layer 2 sub-interface-based Bridge-Domains. This enhancement enables explicit forwarding or denial of specific MAC addresses on tagged sub-interfaces, offering precise control over MAC learning and traffic forwarding behavior in VLAN-aware bridging environments.

For more details, refer to the Configuring Static MAC Address on L2 Sub-interface subsection in the Bridging Support Over Layer2 Sub-interface section of the OcNOS Layer 2 Guide, Release 6.6.1.

To allow an IPv4 and IPv6 prefix list creation without any action associated with it, a new module Prefix-Group has been implemented. To dynamically reference values from the system configuration, a feature Match XPath has been introduced where the match-xpath configuration is added in the CLI in addition to IPv4 and IPv6 addresses directly on prefixes group creation. This feature dynamically generates prefix list entries based on XPath and makes the configuration more flexible and reusable.

For more details, refer to the Dynamic and Static Prefix-Group with Match XPath Configuration section in the OcNOS System Management Guide, Release 6.6.1.

This enhancement introduces support for dynamically imported prefixes from a prefix-group and match-path into IPv4 and IPv6 ACLs used in Control Plane Policing (CoPP). It enables flexible and efficient CoPP configuration by allowing ACL rules to be dynamically updated based on other configuration elements.

The update allows IPv4 and IPv6 ACLs to explicitly permit, deny, or rate-limit specific traffic types. It also introduces a new log action for ACL rules, which helps analyze matched packets and improves CoPP debugging and CPU protection mechanisms.

For more details, refer to the Control Plane Policing Using IPv6 ACL and Access List Filter Import from Prefix-Group section in the OcNOS System Management Guide, Release 6.6.1.

This section discusses the new hardware introduced in the Release OcNOS 6.6.1.

OcNOS supports EdgeCore AS9947-36XKB, a high-performance 7.2Tbps aggregation router with Jericho2+ and external Ternary Content Addressable Memory (TCAM).

It supports the following:

For more information, refer to the AS9947-36XKB Port Mapping section in the OcNOS EdgeCore Installation Guide, Release 6.6.1.

For more details on the ASIC Model, Ports, SKU, and Hardware Revision, refer to the OcNOS Hardware Compatibility List.

OcNOS supports UfiSpace S9610-46DX, a high-performance 7.2Tbps aggregation router with Qumran2c+ and TCAM.

It supports the following:

For more information, refer to the S9610-46DX Port Mapping section in the OcNOS UfiSpace Installation Guide, Release 6.6.1.

For more details on the ASIC Model, Ports, SKU, and Hardware Revision, refer to the OcNOS Hardware Compatibility List.

OcNOS provides supports the EdgeCore AS7515-24X platform with a 360 Gbps bidirectional switching capacity.

It supports the following:

For more information, refer to the AS7515-24X Port Mapping section in the OcNOS EdgeCore Installation Guide, Release 6.6.1.

For more details on the ASIC Model, Ports, SKU, and Hardware Revision, refer to the OcNOS Hardware Compatibility List.

 

OcNOS SP Release 6.6.0 introduces several software features, and product enhancements.

The Border Gateway Protocol (BGP) plays a critical role in routing data using route maps, enables precise filtering, and helps modify routing information for optimal advertisement. In OcNOS 6.5.x and earlier, updates to route maps required manual commands to reflect changes in the BGP Routing Information Base (RIB), posing challenges for efficiency.

The introduction of the new bgp auto-policy-soft-reset enable command automates updates to the BGP RIB whenever changes are made to route maps or associated lists. This eliminates the need for manual intervention, simplifying network operations and ensuring seamless updates. With this enhancement, users can avoid executing the clear ip bgp <> soft in/out command, as the CLI now handles resets per neighbor or group automatically.

For more information refer to the BGP Automated Dynamic Route Policies Update section in OcNOS Key Features document, Release 6.6.0.

OcNOS now supports Flexible Algorithms (Flex-Algo) with IS-IS as the IGP, enabling advanced traffic engineering through customized path computation. In SR environments, Flex-Algo defines routing rules to optimize path selection based on specific network requirements. This capability allows the creation of segregated routing planes, isolating and directing different traffic types through preferred paths to meet distinct service-level agreements (SLAs), especially in 5G networks.

Flex-Algo enables operators to define constraints such as link attributes, latency, and administrative policies, ensuring traffic follows the most efficient route without external controllers. This enhances network efficiency, improves resiliency, and provides deterministic routing for critical applications.

For more information refer to the Flex Algorithm for ISIS section in the Segment Routing Guide, Release 6.6.0.

OcNOS now supports traffic steering using Flexible Algorithms (Flex-Algo) and BGP On-Demand Next Hop (ODN) policies, enabling dynamic and optimized path selection. Flex-Algo directs traffic based on latency, bandwidth, and other network metrics to ensure efficient distribution.

This capability allows OcNOS to compute and adjust optimal paths in real time, adapting to changing network conditions and service demands. BGP UPDATE messages carry color information, with egress PE nodes assigning colors to MPLS service FTNs and advertising them to ingress PE nodes. The ingress node maps the color to an ODN policy, enabling precise and adaptive traffic steering—ideal for 5G and high-performance networks.

For more information refer to the Traffic Steering for Flexible Algorithms section in the Segment Routing Guide, Release 6.6.0.

OcNOS introduces a new recursive parameter in the ip route and ipv6 route commands, allowing users to enable recursive lookup behavior for the next-hop in each static route. This behavior is disabled by default. As part of this change, any existing static route configurations will become non-recursive after upgrading to 6.6.0. To make static routes recursive, reconfigure static routes using the recursive option.

Additionally, the egress interface for static routes in a VRF instance is now optional, enhancing configuration flexibility.

For more information, refer to the Fundamental Layer 3 Commands section in the OcNOS Layer 3 Guide, Release 6.6.0.

The Multi-Chassis Link Aggregation (MLAG) Active-Standby for Virtual Private LAN Service (VPLS) feature facilitates the implementation of the MLAG Active-Standby between the VPLS PE devices, enhancing the reliability of VPLS by providing redundancy. During the failure of the Active MLAG link, the Stabdy link becomes Active, changing the topology. The change in the topology requires MAC flush in the peer devices. This feature supports the automatic forwarding of MAC flush messages to the peer devices by configuring mac flush send on mlag switchover command.

For more information, refer to the MLAG Active-Standby for VPLS section in the OcNOS Multi-Protocol Label Switching document, Release 6.6.0.

The test-signal frame-size command has changed to frame-size, without change in the functionality. Two new commands cir and eir are added to help configure the committed information rate (CIR) and excess information rate (EIR) respectively.

For more information refer to the CFM and Y.1731 Commands section in OcNOS Carrier Ethernet Guide, Release 6.6.0.

OcNOS introduces a new bfd multihop-peer interval command to facilitate the global configuration of timers for all multi-hop BFD sessions.

For more information, refer to the Bidirectional Forwarding Commands section in OcNOS Layer 3 Guide, Release 6.6.0.

The maximum range for bfd slow-timer <1000-30000> command has changed to bfd slow-timer <1000-1703>, and the default slow timer interval has changed from 2000 to 1703 milliseconds.

For more information, refer to the Bidirectional Forwarding Commands section in OcNOS Layer 3 Guide, Release 6.6.0.

The time range for the switchover type revertive command has changed from <1-255> to <1-3600>, allowing configuration of a broader range of revertive time.

For more information, refer to the Multi-chassis Link Aggregation Commands section in the OcNOS Layer 2 Guide.

OcNOS introduces new restrictions for BGP peer groups, affecting peer binding and activation. These restrictions apply to IPv4, IPv6, and unnumbered peer groups, ensuring configuration controls.

For more details refer to the neighbor peer-group command in the BGP Commands section of the OcNOS Layer 3 Guide, Release 6.6.0.

OcNOS supports the EVPN functionality for the Ufispace S9610-36D [2xJ2C+] platform.

This release introduces the Ethernet Service Activation Testing (SAT) feature, compliant with the ITU-T Y.1564 standard, on OcNOS devices equipped with Qumran2 and J2C+ chipsets. SAT provides a comprehensive framework for validating Service Level Agreements (SLAs) by measuring key performance indicators (KPIs) such as Frame Delay (FD), Frame Loss Ratio (FLR), and Frame Delay Variation (FDV).

This feature empowers service providers to verify network readiness and SLA compliance before activating services for customers. It enables testing for multiple services on each User Network Interface (UNI) while ensuring compliance with Bandwidth Rate Profiles and Performance Criteria.

For more information, refer to Y.1564 - Ethernet Service Activation Test Methodology in OcNOS Carrier Ethernet Configuration Guide, Release 6.6.0.

Prior to version 6.6.0, all sessions displayed logging messages by default, and there was no option to disable this feature globally. The new command [no] terminal monitor default enables users to either enable or disable logging messages globally, ensuring that new sessions reflect the desired behavior without the need for manual configuration every time.

For more details, refer to the Basic Commands section in the OcNOS System Management Guide, Release 6.6.0.

The number of flow samples per export message setting value in IPFIX is changed from <1-7> to 1 and 8 due to a limit imposed by Broadcom through their latest SDK.

In accordance with the limit imposed by Broadcom’s latest SDK, the setting value for the number of flow samples per IPFIX export message is changed from <1-7> to 1 and 8.

For more details, refer to the samples-per-message command in the IPFIX section of the OcNOS System Management Guide, Release 6.6.0.

The existing OcNOS IPI-CMM-CHASSIS-MIB.txt file is deprecated. Renamed IPI-CMM-CHASSIS-V2-MIB.txt file to IPI-CMM-CHASSIS-MIB.txt.

To get the latest MIB files, visit the IPInfusion GitHub repository.

The diff_ignore_lines argument now supports regular expressions and exact line matches, providing flexibility in ignoring dynamically updated configuration lines. Previously, it could only ignore specific lines but lacked pattern-matching capabilities. This enhancement allows users to specify regex patterns for dynamic values or plain strings for static entries, giving better control over configuration management and reducing unnecessary diffs in automated workflows.

For more details, refer to the OcNOS Ansible Guide, Release 6.6.0.

The MAC Move Protection is a Layer 2 mechanism that enables the system to detect MAC address movements across different network ports.

This enhancement specifically applies to VPLS, allowing detection of MAC moves across various attachment circuits (AC), attachment circuits (PW), and Mesh P in any combination. This improvement enhances network stability and security by mitigating unintended MAC movements.

For more details, refer to the MAC Move Protection section in the OcNOS Multi-Protocol Label Switching document, Release 6.6.0.

The MAC-limit provides a mechanism to restrict the number of MAC entries learned by the system at the Layer 2 level.

For more details, refer to the MAC Limit for VPLS section in the OcNOS Multi-Protocol Label Switching document, Release 6.6.0.

VPLS/H-VPLS now supports MAC withdrawal messaging triggered by specific switchover scenarios across network elements, improving convergence efficiency.

For more details, refer to the MAC Withdrawal Support for VPLS/H-VPLS section in the OcNOS Multi-Protocol Label Switching document, Release 6.6.0.

Bridge Virtual Interface (BVI), a virtual interface on a router that acts as a routed interface associated with a single bridge domain has been introduced. BVI serves as an L3 routed interface gateway between the bridge domain (L2 network) and L3VPN, enabling seamless traffic exchange. Incoming tagged packets from L2 subinterfaces are consolidated into the bridge domain, which uses the BVI to forward IP traffic to the L3VPN tunnel.

For more details, refer to the BVI Integration with L3VPN for VPLS/H-VPLS section in the OcNOS Multi-Protocol Label Switching Guide, Release 6.6.0.

BGP Auto-Discovery feature enables the automatic discovery of VPLS peers, eliminating the need for manual peer configuration. Once peers are discovered, pseudo-wires (PWs) are established between them using LDP signaling, there by simplifying and streamlining the VPLS setup process.

For more details, refer to the BGP Auto-Discovery (AD) for LDP VPLS section in the OcNOS Multi-Protocol Label Switching document, Release 6.6.0.

Enhanced the following CLI commands by providing additional information for clarity:

For more details, refer to the Commit-Confirmed and Commit Rollback sections in the OcNOS System Management Guide, Release 6.6.0.

OcNOS supports wildcard capability in streaming telemetry sensor paths to subscribe automatically to multiple components with minimal configuration. Users can dynamically include all appropriate components automatically using wildcard-based sensor paths, reducing operational complexity and increasing scalability. The system automatically streams and monitors telemetry for newly included components with the wildcard pattern. This feature increases Dial-In and Dial-Out telemetry mode flexibility, enhancing network monitoring efficiency.

For more details, refer to the Wildcard Support in Sensor Paths section of the OcNOS Streaming Telemetry Guide, Release 6.6.0.

OcNOS now enables streaming telemetry across multiple Virtual Routing and Forwarding (VRF) instances, allowing users to manage data for up to four VRFs simultaneously. This enhancement improves efficiency and monitoring capabilities within the network.

For more details, refer to the feature streaming-telemetry section of the OcNOS Streaming Telemetry Guide, Release 6.6.0.

OcNOS enhances user control over telemetry maximum subscriptions and minimum sampling intervals. Users can manage the sensor path subscriptions using the command telemetry maximum-subscribe-paths, which allows customized monitoring based on specific operational needs. Users set the minimum sampling interval across all VRF instances within a range from 10 to 36000 seconds using the telemetry minimum-sample-interval command. These enhancements help users optimize resource usage while ensuring timely data collection.

For more details, refer to the telemetry maximum-subscribe-paths and telemetry minimum-sample-interval commands in the OcNOS Streaming Telemetry Guide, Release 6.6.0.

OcNOS now supports VRF-specific telemetry display in the show streaming-telemetry command by adding the optional parameters (vrf (NAME|management)|). This update allows users to view telemetry details for specific or all configured VRFs, improving data accessibility and readability.

OcNOS has removed the (vrf (NAME|management)|) parameters from the debug telemetry gnmi command, enabling users to debug gNMI telemetry and configure tunnel-server retry intervals across all VRFs without specifying a VRF name.

The grpc-tunnel-server retry-interval command is moved under the streaming-telemetry feature sub-mode; hence, retry-interval can be set per VRF.

For more details, refer to the individual commands in the streaming telemetry commands section of the OcNOS Streaming Telemetry Guide, Release 6.6.0.

Before OcNOS version 6.6.0, the gNMI Subscribe RPC response timestamp indicated when the gNMI server sent the response packet. In OcNOS version 6.6.0, the timestamp shows when the protocol modules collect the streamed data, providing accurate telemetry, improving synchronization and event correlation, and ensuring precise real-time network analysis.

OcNOS supports streaming telemetry over Transport Layer Security (TLS), ensuring secure, encrypted telemetry data transmission between the gNMI server (OcNOS Target) and gNMI client (Collector). This feature protects telemetry streams from unauthorized access, interception, and tampering while maintaining real-time network monitoring. Users can configure TLS with server, client, and CA certificates, define sensor groups, and establish secure subscriptions with a customizable sample interval. The system also supports an optional insecure TLS mode, allowing certificate validation only when provided. This enhancement improves security, compliance, and reliability in network telemetry streaming.

For more details, refer to the Streaming Telemetry Over Transport Layer Security section in the OcNOS Streaming Telemetry Guide, Release 6.6.0.

OcNOS supports the gNMI Get RPC operation with JSON-IETF encoding, expanding its management capabilities alongside the existing Subscribe operation. This enhancement allows users to retrieve Configuration, State, or Operational data via the gNMI interface. Since State and Operational data are the same in OcNOS, the system fetches state data for both types when requested. This update improves flexibility and interoperability, enabling more efficient retrieval of network configuration and status information.

For more details, refer to the Get RPC section in the OcNOS Streaming Telemetry Guide, Release 6.6.0.

OcNOS now enforces XPath formatting rules for gNMIc subscription commands in Dial-In mode. String keys must be enclosed in double quotes (""), while integer keys must be provided without quotes to ensure correct parsing. Implicit wildcard keys can be specified with or without single quotes. These rules improve command consistency, prevent syntax errors, and enhance compatibility with gNMI-based telemetry subscriptions.

For more details, refer to the XPath Formatting Rules section in the OcNOS Streaming Telemetry Guide, Release 6.6.0.

OcNOS adds support for additional IPI and OpenConfig data model modules and new transceiver states in the ipi-platform data modules. The new modules ipi-lldpv2, ipi-bfd, ipi-vrf, ipi-qos, ipi-bgp, ipi-isis, ipi-rib, and oc-cmis enhance visibility into the operational status and attributes of various components.

For more details, refer to the IPI Data Models and OpenConfig Data Models sections in the OcNOS Streaming Telemetry Guide, Release 6.6.0.

The command to remove the Layer-2 MPLS Virtual Circuit FIB entry is changed from no mpls l2-circuit-fib-entry <1-4294967295> to no mpls l2-circuit-fib-entry <1-4294967295> (A.B.C.D|X:X::X:X).

For more information, refer to the MPLS Commands section in the OcNOS Multi-Protocol Label Switching document, Release 6.6.0.

OcNOS introduces suppress-oper-log mpls l2vpn command to provide an option to suppress the operator logs for the MPLS L2VPN service.

In case of a transport down event, all the L2VPN services generate operator logs. If users do not want to receive notifications for all the L2VPN services, they can suppress the operator logs. Use the no parameter of this command to get back the notifications.

For more information, refer to the MPLS Commands section in the OcNOS Multi-Protocol Label Switching document, Release 6.6.0.

BGP Route Reflector (RR) or ASBR for VPN IPv4/IPv6 address families allocates per-prefix MPLS labels during a BGP next-hop-self operation. To avoid scalability issues caused by this operation, an enhancement has been made such that RR or ASBR allocates MPLS labels per initial BGP nexthop + per initial MPLS label value.

This enhancement is displayed in the show mpls ilm-table command.

For more information, refer to the MPLS Commands section in the OcNOS Multi-Protocol Label Switching document, Release 6.6.0.

The hardware-profile filter-match ingress-ip-outer command is introduced to make the following ingress ACL groups match only the outer IPv4 and IPv6 headers:

For more information refer to the System Configure Mode Commands section in OcNOS System Management Guide, Release 6.6.0.

Link Loss Forwarding (LLF) for EVPN EPL services provides a critical fault propagation mechanism in point-to-point connections, preventing traffic blackholing by administratively bringing down the local physical link when a remote peer service failure is detected. Enabled per service on a physical interface using the CLI command llf enable, this capability triggers the withdrawal of Ethernet AD per EVI (RT-1) routes and activates traffic failover mechanisms. LLF plays a vital role in maintaining seamless service continuity and is enabled by default for EVPN EPL services.

For more information, refer to the EVPN Link Loss Forwarding section in the OcNOS Multi-Protocol Label Switching document, Release 6.6.0.

OcNOS introduces the storm control feature, allowing rate limiting of Broadcast, Unknown Unicast, and Multicast (BUM) traffic at the ingress interface. This configuration is independent of the QoS feature. To verify the BUM rate limit configuration, use the show storm-control (INTERFACE-NAME|) command.

On Qumran1 hardware, discard counters for BUM rate limiting are not supported. However, BUM traffic discards can be displayed on Qumran2 using the show storm-control (INTERFACE-NAME|) discards command.

For more information refer to the Displaying BUM rate limit information and Displaying BUM discards on Qumran2 section in the OcNOS Quality of Service Configuration Guide, Release 6.6.0.

OcNOS provides support for sending SYSLOG messages over SNMP traps.

For more information, refer to Logging Server Command Reference in the OcNOS System Management Guide, Release 6.6.0.

OcNOS previously limited support for System Management protocols to the Default and Management VRFs. This support has been extended to address more flexible deployment needs to allow the below protocols to operate within user-defined VRFs. This enhancement improves management plane connectivity and enables better customization for a broader range of network environments:

For more information, refer to the OcNOS System Management Guide, Release 6.6.0.

OcNOS introduces a new parameter, cl108, for the FEC command to support the configuration of 64/66b 5T low-latency Reed-Solomon (RS) Forward Error Correction (FEC) on designated physical ports. This enhancement improves data transmission reliability and efficiency in fabric environments.

For more details, refer to the fec command in the Interface Commands section of the OcNOS System Management Guide, Release 6.6.0.

OcNOS introduces a Global Configuration mode to streamline network configuration by allowing centralized management of key parameters such as PCH load-balance, load-interval, L2 protocol tunnel, sFlow sampling rate and poll interval, Interface MTU, and LLDP settings for all LLDP-enabled interfaces. This configuration mode ensures consistent configurations across the network.

For more information, refer to Link Layer Discovery Protocol v2 Commands section in the OcNOS Layer 2 Guide, Release 6.6.0.

For more information, refer to Interface commands and Monitoring and Reporting Server Commands sections in the OcNOS System Management Guide, Release 6.6.0.

OcNOS introduces a new ipv6-address parameter in the set lldp management-address-tlv, set lldp port-id-tlv, and set lldp port-id-tlv commands. This enhancement allows users to configure IPv6 addresses for LLDP TLV (Type-Length-Value) attributes, improving network management and addressing capabilities in IPv6-based environments.

For more information, refer to the Link Layer Discovery Protocol v2 Commands section in the OcNOS Layer 2 Guide, Release 6.6.0

When an interface port continuously receives Broadcast, Unknown Unicast, and Multicast (BUM) traffic exceeding the configured storm control thresholds, it transitions to the ErrDisable state. In this state, the port becomes inactive and cannot send or receive traffic. Recovery from ErrDisable can be achieved either manually using the shut or no shut command or automatically if a timeout value is configured.

For detailed configuration and recovery procedures, refer to the Spanning Tree Protocol Configuration section in the OcNOS Layer 2 Guide, Release 6.6.0.

Ethernet Linear Protection Switching (ELPS), based on ITU-T G.8031, provides a fast and reliable protection mechanism for VLAN-based Ethernet networks by reserving a dedicated protection path for a selected working entity. It offers a simpler and more predictable alternative to other survivability mechanisms like Rapid Spanning Tree Protocol (RSTP), making network management more efficient. This implementation is tailored to specific customer requirements, focusing on a modular and flexible CLI restructure, cross-connect support to extend ELPS over bridge-domains, and control plane enhancements to make ELPS bridge-independent. These improvements enhance network reliability, simplify operations, and provide a scalable solution for protection switching in VLAN-based Ethernet environments.

For more information, refer to the Ethernet Linear Protection Switching Configuration section in the OcNOS Layer 3 Guide, Release 6.6.0.

The feature allows administrators to selectively disable FlowSpec on Layer 3 interfaces, including VLAN, LAG, sub-interfaces, and physical interfaces. By configuring the ipv4 flowspec-disable command, the system installs high-priority disabling rules to prevent regular FlowSpec policies from being applied. This ensures that traffic on disabled interfaces is unaffected by FlowSpec, while other interfaces continue to enforce FlowSpec rules. This feature provides flexibility by excluding specific ports from FlowSpec processing without affecting overall network functionality.

For more details, refer to the ipv4 flowspec-disable command in the BGP Flowspec Commands section of the OcNOS Layer 3 Guide, Release 6.6.0.

A new option to encrypt sensitive information, such as authentication keys, using the Advanced Encryption Standard (AES) algorithm is now available in OcNOS. Previously, sensitive data was encrypted using the 3DES algorithm by default. With this update, users can configure AES encryption for enhanced data security.

The AES encryption option provides improved confidentiality and integrity for sensitive data stored in the OcNOS database, particularly for routing protocols such as BGP, OSPF, RIP, IS-IS, LDP, BFD, MSDP, and RADIUS authentication.

For more information, refer to the User Config AES Encryption section in the OcNOS System Management Guide, Release 6.6.0.

OcNOS now supports ACL-based packet classification and configurable actions for CPU-bound traffic, enhancing Control Plane Policing (CoPP) to improve control and protect against excessive or malicious traffic.

For more information, refer to the Control Plane Policing Using ACL section in the OcNOS System Management Guide, Release 6.6.0

This section discusses the new hardware introduced in the Release OcNOS 6.6.0.

OcNOS supports the following transceivers and amplifiers:

The Ciena IPI-CI-176-3590-900 is an is an advanced power-efficient, low heat-dissipating, multi-carrier transceiver with multi-span of 100, 200, and 400 GbE speeds for metro regional and single-span Data Center Interconnect (DCI) applications.

For more details, refer to the 400G ZR/ZR+ Optics Qualified on OcNOS Bundles.

The 400G ZR/Open ZR+ full C-band tunable coherent optical transceiver supports 100, 200, 300, and 400 GbE speeds.

For more details, refer to the 400G ZR/ZR+ Optics Qualified on OcNOS Bundles.

The C-band tunable coherent optical transceiver with 100, 200, and 400 GbE speeds supports DCI and Metro Wavelength Division Multiplexing (WDM). DDM.

For more details, refer to the 400G ZR/ZR+ Optics Qualified on OcNOS Bundles.

The EDFA module supports a 100G or higher-speed channel optical amplification for long-haul fiber optic communication.

OcNOS supports EdgeCore AS5915-16X, an open cell site gateway platform. This platform has 4x1/10G SFP+, 8x1G SFP, and 4x1G RJ45 fixed ports. This platform also supports network timing and synchronization in the hardware, making it ideal for current LTE and emerging 5G mobile backhaul network solutions.

It supports the following:

For more information, refer to the AS5915-16X Port Mapping in the OcNOS EdgeCore Installation Guide, Release 6.6.0.

For more details on the ASIC Model, Ports, SKU, and Hardware Revision, refer to the OcNOS Hardware Compatibility List.

To ensure product security, OcNOS undergoes rigorous vulnerability scanning and promptly addresses any issues that are found. OcNOS version 6.6.0 provides a detailed list of CVEs that are included in the OcNOS Security Updates document. In addition, request a detailed OcNOS Security Guide from the IPI sales team.