Skip to main content

Enterprise SONiC Distribution (AsterNOS) for Campus Release Note Version V5.2R015

Date: December 31, 2025

Modify Remarks: AsterNOS version-V5.2R015 released

1 Preface

The purpose of this document is to provide important information about the released software version, including but not limited to the following information: running platform, important components, main features, key updates.

Target Audience

This manual is primarily intended for following engineers.

  • Software Developers
  • Software Testers
  • Customer Site Implementers

2 Description

AsterNOS is a SONiC-based network operating system. The release version is AsterNOS-V5.2R015; the specific information is as follows:

  • AsterNOS-V5.2R015.bin
    • Md5sum: f2eb04a664cdf9ee5336bbbe748160e4
    • Supported models: All device models of CX102S, CX104S, CX204Y, CX206Y, CX202P, CX204P, CX206P series
  • AsterNOS-V5.2R015-x86.bin
    • Md5sum: 97686f7f07293dae8cac7ad54ee46be7
    • Supported models: CX306P, CX308P, CX532P series
  • Supporting user manual
    • AsterNOS-Command_Line_Manual-en-v5.2.15
    • AsterNOS-Configuration_Guide-en-v5.2.15

3 Dependent Components

Components
Versions
Linux kernel
5.10.34
SAI
1.6.3
FRR
8.2.2
lldpd
1.0.5
libteam
1.29
snmpd
5.7.3
redis
5.0.3
isc-dhcp
4.3.5
radvd
2.17
mstp
0.0.9
parpd
1.0.0
ndppd
1.0.0
docker-engine
18.09.5

4 Update Records

4.1 New Feature & Enhance

  • Supported the dynamic RP function for PIM
  • Supported the GNSS-based time synchronization in PTP
  • Supported the global ACL mode
  • Supported the ACL filtering of DSCP field
  • Supported the dynamic VLAN authorization vid VLAN Pool and VLAN Name
  • Supported the DHCP Server to perform discontinuous IP address allocation range
  • Supported the DHCPv6 Relay to carry the client MAC address through Option79
  • Supported the tunnel routing leakage between VRFs
  • Supported the data packet statistics based on VLAN
  • Supported the switch of STP/RSTP/MSTP modes for Spanning Tree Protocol
  • Supported the viewing of changes between running-config and startup-config
  • Supported the new models of switch:
    • CX306P-48Y
    • CX204P-16Y
    • CX104S-8MT24GT
  • Enhanced QoS Policer specifications
  • Defaulted to disabling rarely used containers
  • Optimized system startup time in pure Layer 2 scenarios
  • Enhanced dot1x authentication, allowing dynamic VLANs carried in challenge messages to be authorized to users
  • Optimized the dynamic IP acquisition process for interfaces, not granting IP addresses to VLAN members/LAG members

4.2 Major Bug Fix

  • BGP: An abnormal “no extended-nexthop” configuration appears in the BGP view.
  • Klish: The “show running-config” command unexpectedly loses some content.
  • Tunnel Route: When the next hop of the tunnel route is ECMP, there is a failure in the issuance of the chip.
  • Dot1x: During dynamic VLAN authorization, when the vlanid is a string, it causes the system to restart.

4.3 Document Changes

4.3.1 Command Line

  • Chapter 1.2 Added new view-related CLI commands
  • Chapter 1.4 Added image partition management CLI command: set-default for setting the default boot image
  • Chapter 1.5 Added enhanced configuration management commands
  • Chapter 2.1 Added license and docker management commands
  • Chapter 2.6 Added system operation and maintenance (O&M) commands
  • Chapter 2.7 Added a new subchapter for Controller Configuration
  • Chapter 3.1.8 Added descriptions and CLI commands for viewing and managing DPU expansion ports
  • Chapter 4.4 Added VLAN-related CLI commands
  • Chapter 4.7 Updated STP-related show commands
  • Chapter 5.4.1 Added support for Option 79 configuration commands
  • Chapter 5.5.9 Updated the DHCP Server address-pool configuration
  • Chapter 7.4 Added CLI commands for dynamic RP, Auto-RP configuration
  • Chapter 8.1 Add global ACL binding configuration commands
  • Chapter 14.1.3 Added CLI commands to display MACsec status and statistics

4.3.1 User Guide

  • Chapter 6.5.2.9 Added dynamic RP-BSR configuration
  • Chapter 6.5.3.3 Added dynamic RP configuration
  • Chapter 6.5.3.4 Added source RP configuration
  • Chapter 6.5.6 Added Dynamic RP configuration examples
  • Chapter 9.4.6.5 Added GNSS as the PTP clock source configuration example

5 List of Features

Features
Level 1
Level 2
CX102S, CX104S Series
CX204Y, CX206Y Series
CX202P, CX206P Series
CX308P, CX532P Series
Interface and Port
Interface Speed
10M


Interface and Port
Interface Speed
100M


Interface and Port
Interface Speed
1G

Interface and Port
Interface Speed
2.5G


Interface and Port
Interface Speed
10G
Interface and Port
Interface Speed
25G

Interface and Port
Interface Speed
40G


Interface and Port
Interface Speed
100G


Interface and Port
100G Interface Breakout
4x1G


Interface and Port
100G Interface Breakout
4x10G


Interface and Port
100G Interface Breakout
4x25G


Interface and Port
Interface MTU
Physical Interface MTU
Interface and Port
Interface MTU
Virtual Interface MTU
Interface and Port
Interface MTU
MAX Jumbo Frame Size (Default 9k)
Interface and Port
Interface Startup Delay

Interface and Port
Link Flapping

Interface and Port
Interface Statistics
Packets/Bytes;Speed; Error/Drop Packets
Interface and Port
Buffer
Buffer Management per Interface
Interface and Port
Buffer
Buffer Management per System
Interface and Port
Optical Module
Reading Information (Power Meter,Vendor,Model)
Interface and Port
PoE
LLDP Negotiates PoE Delivery Parameters


Interface and Port
PoE
Delayed Power Supply


Interface and Port
PoE
PD Alive Check


Interface and Port
PoE
POE Supply Status Diagnosis


Interface and Port
Loopback
Multiple Loopback
Interface and Port
Loopback
Loopback as Syslog Source
Interface and Port
Loopback
Loopback as FTP Source
Interface and Port
Loopback
Loopback as TFTP/FTP Source
Interface and Port
Loopback
Loopback as NTP Source
Interface and Port
Storm Suppression
Broadcast Suppression
Interface and Port
Storm Suppression
Unknown Unicast/Multicast Suppression
Interface and Port
Storm Suppression
Known Multicast Suppression
L2 Switching
MAC
Static Configuration
L2 Switching
MAC
Dynamic Learning
L2 Switching
MAC
MAC Aging
L2 Switching
MAC
MAC Address Move
L2 Switching
MAC
MAC Flapping Detection
L2 Switching
MAC
MAC Limit
L2 Switching
VLAN
VLAN Trunk Mode
L2 Switching
VLAN
VLAN Access Mode
L2 Switching
VLAN
Strategy for BUM Packets
L2 Switching
Batch VLAN
Batch VLAN Creation
L2 Switching
QinQ
Basic QinQ
L2 Switching
QinQ
Flexible QinQ
L2 Switching
Link Aggregation
Static Link Aggregation
L2 Switching
Link Aggregation
LACP Mode
L2 Switching
Port Isolation Group
Layer 2 Port Isolation
L2 Switching
MSTP
STP / RSTP / MSTP
L2 Switching
MSTP
Set BPDU Packet Interval
L2 Switching
MSTP
Set Interface State Delay Switching Time
L2 Switching
MSTP
Set Maximum Aging Time of BPDU
L2 Switching
MSTP
Set Instance Priority
L2 Switching
MSTP
Set Interface Priority
L2 Switching
MSTP
Ignore STP Results based on VLAN
L2 Switching
MSTP
BPDU Filter
L2 Switching
MSTP
BPDU Guard
L2 Switching
Loopback Detection
Strict Mode
L2 Switching
Loopback Detection
Loose Mode
L2 Switching
Loopback Detection
Loopback Action: Warning or Shutdown Interface
L2 Switching
Hash
Load Balance Hash Key (src-dst- ip,src-dst-mac,src-dst-ip-port,src-dst-mac-ip,src-dst-mac- ip-port)
L2 Switching
LLDP

L3 Switching
ARP/NDP
Static ARP/NDP
L3 Switching
ARP/NDP
Dynamic ARP/NDP
L3 Switching
ARP/NDP
ARP/NDP Aging and Update
L3 Switching
ARP/NDP
ARP/NDP Proxy
L3 Switching
ARP/NDP
ARP/NDP to Host Route
L3 Switching
Basic Route
Static Route
L3 Switching
Basic Route
ECMP
L3 Switching
BGP
IBGP
L3 Switching
BGP
EBGP
L3 Switching
BGP
MP-BGP
L3 Switching
BGP
Peer Group
L3 Switching
BGP
Route Redistribution
L3 Switching
BGP
Route Aggregation
L3 Switching
BGP
Route Reflector
L3 Switching
BGP
AS Dot Notation
L3 Switching
BGP
Graceful Restart
L3 Switching
OSPF v2
Instance: Single or Multiple
L3 Switching
OSPF v2
Stub Area
L3 Switching
OSPF v2
NSSA
L3 Switching
OSPF v2
Route Redistribution
L3 Switching
OSPF v2
MD5 Authentication
L3 Switching
OSPF v3
Instance: Single
L3 Switching
OSPF v3
Stub Area
L3 Switching
OSPF v3
NSSA
L3 Switching
OSPF v3
Route Redistribution
L3 Switching
Route policy
Route Map
L3 Switching
Route policy
IP Prefix List
L3 Switching
Policy Route
ECMP
L3 Switching
Policy Route
Master-Backup
L3 Switching
DHCPv4 Relay
Multiple DHCP Server
L3 Switching
DHCPv4 Relay
Agent IP
L3 Switching
DHCPv4 Relay
Option 82
L3 Switching
DHCPv6 Relay
Multiple DHCP Server
L3 Switching
DHCPv6 Relay
Agent IP
L3 Switching
DHCPv4 Server
Fixed Allocation by MAC+IP
L3 Switching
DHCPv4 Server
Dynamic Allocation by Address Pool
L3 Switching
DHCPv4 Server
Setting Renewal Period
L3 Switching
DHCPv4 Server
DHCP Failover
L3 Switching
DHCPv6 Server
Dynamic Allocation by Address Pool
L3 Switching
DHCPv6 Server
Setting Renewal Period
L3 Switching
DHCPv4 Client
-
L3 Switching
IPv6 Router Advertisement
Set M/0/A/L Flag
L3 Switching
IPv6 Router Advertisement
Set Prefix
L3 Switching
IPv6 Router Advertisement
Set Route Information
L3 Switching
IPv6 Router Advertisement
Set DNS
L3 Switching
IPv6 Router Advertisement
Set MTU
L3 Switching
MAC trigger
-
L3 Switching
VRF
Max VRF Instance
L3 Switching
VRF
ARP/Route Isolation
L3 Switching
VRF
Bind L3 Port to VRF
Multicast
IGMP Snooping
v1/v2/v3
Multicast
IGMP Snooping
Static Table Entry
Multicast
IGMP Snooping
Dynamic Table Entry
Multicast
IGMP Snooping
IGMP Snooping Querier
Multicast
IGMP Snooping
IGMP Snooping Proxy
Multicast
MLD Snooping
v1/v2
Multicast
MLD Snooping
Static Table Entry
Multicast
MLD Snooping
Dynamic Table Entry
Multicast
MLD Snooping
IGMP Snooping Querier
Multicast
MLD Snooping
IGMP Snooping Proxy
Multicast
Multicast VLAN
-
Multicast
PIMv4
PIM-SM
Multicast
PIMv4
Dynamic RP
Security
ACL
L3
Security
ACL
IACL/EACL
Security
ACL
ACL for Management
Security
TACACS+
Authentication & Authorization
Security
RADIUS
Authentication & Authorization
Security
DHCPv4/DHCPv6 Snooping
Snooping Entry Learning
Security
DHCPv4/DHCPv6 Snooping
Snooping Entry Aging
Security
DHCPv4/DHCPv6 Snooping
Snooping Entry Synchronization
Security
DHCPv4/DHCPv6 Snooping
Snooping Trust Interface
Security
ND Snooping
Snooping Entry Learning
Security
ND Snooping
Snooping Entry Aging
Security
ND Snooping
Snooping Entry Synchronization
Security
ND protection
SMAC Conformance Check

Security
ND protection
RA Guard

Security
ND protection
SAVI

Security
DAI (Dynamic ARP Inspection)
Activate based-on VLAN

Security
DAI (Dynamic ARP Inspection)
Setting Trusted Interface

Security
IPSGv4/IPSGv6 (IP Source Guard)
Activate based-on VLAN

Security
IPSGv4/IPSGv6 (IP Source Guard)
Setting Trusted Interface

Security
802.1x
Restrict VLAN

Security
802.1x
Guest VLAN

Security
802.1x
MAC Address-based 802.1x Authentication

Security
802.1x
802.1x Authentication based on Ethernet Port

Security
802.1x
Dynamic Authorization

Security
802.1x
Escape Mode

Security
Portal Authentication
Guest VLAN

Security
Portal Authentication


Security
Portal Authentication
MAC Address-based 802.1x Authentication

Security
Portal Authentication
Dynamic Authorization

Security
Portal Authentication
Escape Mode

Security
MACSec
GCM-AES-128 / 256
Only support on ASICs that integrated with MACSec chip
Security
MACSec
GCM-AES-XPN-128 / 256
Security
MACSec
Replay Protection
Security
COPP
Setting the rate of packets forwarded to CPU
Security
COPP
Setting actions for packets forwarded to CPU
QoS
Interface-based Priority Mapping
Dot1p to TC
QoS
Interface-based Priority Mapping
DSCP to TC
QoS
Interface-based Priority Mapping
TC to Queue
QoS
Traffic Policing
Filter
QoS
Traffic Policing
Remark/Drop/Forward
QoS
Traffic Shaping
Port based
QoS
Traffic Shaping
Queue based
QoS
Queue Scheduling
PQ
QoS
Queue Scheduling
DWRR
QoS
Queue Scheduling
PQ+DWRR
Reliability
Track
Track for Static Route
Reliability
Monitor Link
-
Reliability
BFD
BFD for OSPF
Reliability
BFD
BFD for BGP
Reliability
BFD
BFD for Static Route
Reliability
MC-LAG
MAC Table Synchronization
Reliability
MC-LAG
ARP/ND Table Synchronization
Reliability
MC-LAG
Peer Link
Reliability
MC-LAG
DAD Detection
Reliability
VRRPv2/v3
Setting Priority
Reliability
VRRPv2/v3
Setting Advertisement Message Interval
Reliability
VRRPv2/v3
Enabling Preemptive Mode
Reliability
VRRPv2/v3
Periodic sending of free ARP
Reliability
MAC-Scan
Scanning based-on IP Address Ranges
Reliability
MAC-Scan
Scanning based on DHCP Snooping Entry
Reliability
MAC-Scan
Scanning based on Static Snooping Entry
Reliability
System Robust
Docker automatic Recovery
Reliability
System Robust
Memory Detection for Key Processes
Network Management & Monitor
Management
SSH
Network Management & Monitor
Management
Telnet
Network Management & Monitor
Management
Console
Network Management & Monitor
SNMP
v1/v2/v3
Network Management & Monitor
Syslog
Rsyslog
Network Management & Monitor
Local User Management
-
Network Management & Monitor
System Information
-
Network Management & Monitor
NTP
-
Network Management & Monitor
PTP
1588v2
Network Management & Monitor
PTP
Smpte-2059-2
Network Management & Monitor
PTP
Aes67
Network Management & Monitor
SyncE

Network Management & Monitor
sFlow
Setting the Sampling Rate
Network Management & Monitor
sFlow
Setting the Sampling Direction
Network Management & Monitor
Mirror
SPAN
Network Management & Monitor
Mirror
RSPAN
Network Management & Monitor
Mirror
ERSPAN
Network Management & Monitor
ZTP
System Upgrade
Network Management & Monitor
ZTP
Load the Configuration
Network Management & Monitor
Cluster
Manage Devices in a Clustered Manner
Virtualization
VXLAN
v4-v4 / v4-v6
Virtualization
VXLAN
VTEP Encap/Decap
Virtualization
VXLAN
L2 Forwarding
Virtualization
VXLAN
VXLAN Mapping (VLAN-VNI(1:1), VRF-VNI)
Virtualization
VXLAN
L3 Gateway (Distributed
Virtualization
VXLAN
Gateway, Centralized Gateway)
Virtualization
VXLAN
MP-BGP EVPN (Type 1/2/3/4/5)
Virtualization
VXLAN
EVPN Multihoming
Virtualization
VXLAN
Cross-connect
Virtualization
VXLAN
Multicast Mode with (S,G) per VNI
Virtualization
VXLAN
ARP suppression
Virtualization
VXLAN
Tunnel Auto Establish/Tear Down
Virtualization
GRE
GRE Tunnel Establish

Virtualization
GRE
v4-v4 / v6-v6 / v4-v6 / v6-v4