This event had place on Thursday 11, June 2020 at 10hrs PDT
In this session, the Cisco expert covered single image orchestration changes with the Cisco IOS XE Software Release 17.2.1r for Cisco IOS XE and Cisco IOS XE SD-WAN use cases. During this session, you will learn about single image modes of operation, ease of device onboarding with Plug-and-Play (PnP), and bootstrap workflows using single image.
Sumant Mali is a Technical Marketing Engineer in Cisco’s IBNG Routing Platform TME team. He has over 12 years of experience in the IT industry and is a passionate network enthusiast. Sumant has deep experience on the Quality Assurance Engineering Thrilling Escalation Handling Experience, experience that has shaped him to the expert he is today.
You can download the slides of the presentation in PDF format here.
Q: Does switch port support uplink the mac-sec link?
A: Not presently. Road-mapped for 17.4 Nov release.
Q: Will the older 16.10/16.12 IOS XE SD-WAN (stand-alone) images be maintained for a specific amount of time going forward? Will these stand-alone code branches receive maintenance SW releases going forward or will they be EoL'd now with a single image?
A: We will maintain these for a while.
Q: Will there be any options to go back to perpetual licensing on 17 or will we still need to use the smart licensing?
A: Smart licensing is mandatory staring 16.9 or 16.10, and we have no plans to go back. This is mandatory starting 16.10 release onwards.
Q: There will be no controller mode in unified NPE image, right?
A: Since its unified image, it will hv controller mode. IOS XE SD-WAN mode is not supported with NPE, NOLI, NPE_NOLI image types; these images are not impacted with Single Image orchestration.
Q: What inbuilt security features are made available on 4Ks IOS XE SDWAN image?
A: The entire security stack is supported on SD-WAN with ISR 4K. FW App Aware, IPS, URL-F, AMP&TG, DNS/web Layer security. With a single image, we have brought it TLS decryption as well.
Q: Do licenses cater to both Autonomous and Controller modes?
A: Yes, the DNA SKU will be able to use for either IOS XE or IOS XE SD-WAN use-case for a given platform. Please refer to DNA licensing guide for more details.
Q: NPE image doesn't include crypto by definition -> SD-WAN won't work. So, if there will be a controller mode in NPE image, will it be useless?
A: XE SD-WAN mode is not supported with NPE, NOLI, NPE_NOLI image types; these images are not impacted with Single Image orchestration.
Q: I had issues in the past using ZBF on typical interface modules (NIM - e1/t1). What should I do?
A: So long as the interface has a valid IP address Zone-Based Firewall should work. Please, open a TAC case if the issue persists, and we will find the underlying cause of it.
Hi all, I've been searching but unable to find the answer to this question. Does a client laptop's signal need to reach the actual AP for it to work or just to the AP's signal, if you have a link to any documentation that I could read too that would be gr...
Hello, Rogue detection on AP can do that on the wireless scope. Now, about the wired scope.Is the only way to detect/alert unauthorized AP on the wired network through network vulnerability scanning tools or Cisco ISE could also do that ? T...
Guys, Did anyone integrate mobility express solution with LDAP server before? As i already found the below link that contains the attached info: https://www.cisco.com/c/en/us/td/docs/wireless/controller/technotes/8-5/b_cisco_mobility_expres...
Hi all, We currently have 9120AX access points deployed managed by a 9800L controller. Could anyone tell me if it is possible to 'schedule' the availability of a particular SSID? We want to broadcast a SSID (and allow users to connect) between c...
My school got an old school building that has a AIR LAP1252AG-A-K9 in it.I know it is old, however, what do we need to use it?I was told something like an AIR-RM1552A-A-K9.If that is it, can that be made with a virtual build and not a physical one?I...