Updates for Cisco Catalyst 8200 and Catalyst 8300 Series Edge Platforms

Improvements

• Application Performance Monitor
• Cisco SD-Routing Cloud OnRamp for Multicloud
• Enhancements to BGP Maximum Prefix
• Initiating GARP for NAT Mapping
• SD-Routing Configuration Group
• Segment Routing over IPv6 Dataplane
• Speed Test for SD-Routing Devices
• Schedule Software Upgrade on SD-Routing Devices
• Support for Flexible NetFlow Application Visibility on SD-Routing Devices
• Support for Packet Capture for SD-Routing
• Support for Persistence of BGP Dynamic Neighbors
• Support for Suite B ciphers with GET VPN
• Support for Security-Enhanced Linux
• Strength Enforcement for IKE Security Association (SA)

CUBE Features

• NAT Traversal using RTP Keepalive

Bug fixes

CSCwh10813 - Add verbose log to indicate grant ra-auto un configures grant auto in PKI server.
CSCwf25735 - QoS with more than four remark with set-cos does not work.
CSCwf44703 - NAT64 prefix is not originated into OMP.
CSCwf80400 - IOS XE router may experience unexpected reset while executing show utd engine standard statistics command
CSCwf14607 - Crash observed exporting PKCS12 to terminal via SSH CLI.
CSCwf71116 - Static route keep advertising via OMP even though there is no route.
CSCwf45486 - OMP to BGP redistribution leads to incorrect AS_Path installation on selected Next-hop.

Open problems

CSCwh94906 - Device segmentation fault crash with Network Mobility Services Protocol (NMSP).
CSCwi03502 - Creation of CLI to push at#enadis=0, followed by at#reboot to FN980, is required when configuring Multi-PDN.
CSCwh84068 - Device crash after changing NAT HSL configuration.
CSCwh77221 - SNMP unable to poll Cisco SD-WAN tunnel data after a minute.
CSCwi15930 - Device failing to upgrade due to CDB issue.
CSCwi08171 - Device may crash due to crypto IKMP process.
CSCwh76453 - Tracker for TLOC extension is down even though TLOC is up and there is ICMP reachability.
CSCwi14178 - Failed to connect to device : x.x.x.x Port: 830 user : Cisco SD-WAN-admin error : Connection failed.
CSCwh01678 - Device FTM crash with SIG enabled.
CSCwi05395 - SNMP bulkget cannot get loss, latency and jitter for ProbeClassTable and ClassIntervalTable OIDs.
CSCwi06843 - Endpoint tracker triggers a CPU hog.
CSCwi05680 - Device crashed generating multiple system reports.
CSCwi16452 - Error thrown when switching from SSE to SIG
CSCwi11807 - SNMP bulkget breaks the OID "appRouteStatisticsTable" after minute Not returning the correct order.
CSCwi00369 - Device lost security parameter after upgrade.
CSCwi06404 - PKI related crash after failing a CRL Fetch
CSCwi13563 - IP SLA probe for End-point-tracker doesnt work once endpoint tracker is changed until reload.
CSCwh65016 - Unexpected reboots on device due to QFP exception.
CSCwi15688 - Unexpected NAT translation occurs in a specific network.
CSCwh91136 - IOS XE:Traffic not encrypted and droped over IPSec SVTI tunnel.
CSCwi14899 - Device dropping IPSEC traffic when SVI is used as source for DMVPN tunnel.
CSCwi23562 - When RADIUS down, and there is an IKE-AUTH request received, the box stops replying to DPD packets.
CSCwi16015 - SSE tunnels don't come up with Dialer interface. Relax check in IKE.
CSCwi19875 - Device is unable to process hidden characters in a file while trying to use bootstrap method.
CSCwh52440 - IP SLA does not have checks for ICMP probes to be sent on source interface.
CSCwi31833 - UTD deployment failing if deployed from remote server hostname rather than ip.
CSCwi35177 - Router crash caused by continuous interface flap, interface associated to many IPsec interfaces.
CSCwi30529 - AAA:Template push fail when AAA authorization is set to local.