On 16th Aug 2020, Cisco has published the latest IOS XE Release- Cisco IOS XE Amsterdam 17.3.1a.
IOS XE 17.3.1a continues to enhance the Enterprise Routing offerings. There are key software feature enhancements covering Licensing, Security, Voice, VPN, Layer 3 and Network Management areas.
New Software Features with IOS XE Release 17.3.1a
Release 17.3.1a will enable key feature enhancements to address various use-cases in today’s network deployments.
Prior to 17.3.1a Smart Licensing log messages were hard to understand. We have improved readability of Smart Licensing error messages in 17.3.1a.
In this release, we are also enabling support for LAN MACSEC for ISR4K. This allows interoperation with Cisco and third-party switches at line rate using 128/256 bit encryption.
We have also done SSL VPN migration from TLS 1.0 to TLS 1.2 for CSR1Kv.
UDLR tunnels enable a router to emulate the behavior of a bidirectional link for IP operations over the unidirectional links (UDL). Return traffic for multicast protocols is required. As part of this release we have enabled configuration of a tunnel for the UDL’s return traffic.
Dynamic Application Policy Routing (DAPR) feature was introduced in IOS-XE 16.11. As part of 17.3.1a release we have address scale requirements, additional platform support (ASR1k, CSR1kv, ISRv) and minimum bandwidth for flow admission.
We have also addressed the scale requirements for PBR interfaces as part of this release. Prior to 17.3.1a, maximum number of supported PBR interfaces were 1024. We have increased this to 30k PBR interfaces. This is only supported on high-end platforms – ASR1009X with RP3, ESP100/200/200x, C8500-12X4QC, C8500-12X.
ePBR support in Office365 traffic categories for DIA has also been improved to support two additional use cases
Match and steer O365 traffic based on traffic category to provide optimal and reliable experience and improve O365 application experience
Enabled on enterprise internet edge to load balance internet traffic across multiple links to provide redundancy and better link utilisation
There are few improvements done on Network Management side as well as part of 17.3.1a release.
ASR1000 MIBS support for all relevant QFP resources in SNMP and Netconf/YANGF372
RPC support for multicast platform specific CLIs
YANG support for “show platform software ipsec policy statistics
There are a number of Serviceability’s also addressed as part of this release.
You will be able to find few additional feature support details on individual platform Release note pages:
Hello everyone. Is anybody here that has implement RTBH with RPKI deployment enabled?How to correctly implement Remote Triggered Blackholing together with Route-Origin Validation I have a full mesh topology configured with EBGP&IBGP enabled....
Hi, I am new to Cisco devices. I have a question regarding ISR 4321. after i load the configuration as per below, i will not be able to login the router via console. can anyone help me to verify if my configuration is correct? or did i missed out any...
Hi, I have a SG350X switch with a Private VLAN (100), which contains three Community VLANs (101, 102, 103). This works fine for LAN ports. The VLAN 100 promiscuous port is connected to the "Guest LAN" port of my router. I also have WiFi APs, whi...
Helloflexible flow says the management interface is not an authorized interfaced to send netflow data. This is my internet router for the organization and I am trying to just manage everything through the MGMT-vrf so the data plane is only exposed to the ...