Cisco IOS XE 17.16 Update Version Cisco IOS XE 17.16.1a

Views
1

Your rating
Rate update installation process

Log in to rate this update.
Login

Risk factor
No ratings yet. Be the first to rate this update.

Smooth installs 0%
Minor issues 0%
Major issues 0%

Update Summary

Release notes for Cisco ASR 1000 Series running Cisco IOS XE 17.16.x. Cisco IOS XE 17.16.1a is the first release in this series and adds SD-Routing, logging, ThousandEyes, CUBE SCIP preview support, and disables `ssh-rsa` by default on port 22.

Update Details

Security

  • Disables the weak ssh-rsa algorithm by default on port 22 to improve security.
  • Adds support for Secure Communication Interoperability Protocol (SCIP) voice and video codec in CUBE, available in preview mode.
  • Improves security logging by allowing source interfaces for High-Speed Logging (HSL) and SysLog.
  • Includes fixes related to PKI, IKEv2, and RSA weak key handling.

Bug Fixes

  • Fixes multiple crashes and tracebacks, including OMPd, IOSD, NHRP, and platform information retrieval issues.
  • Resolves SD-Routing and SD-WAN configuration issues such as YANG default IKEv2 authorization policy handling and vManage crypto profile push problems.
  • Fixes cellular and interface behavior issues, including last-resort mode status and show cellular output enhancements.
  • Addresses PKI and certificate-related problems, including trustpoint password encryption handling and OCSP revocation-check crashes.
  • Fixes data policy commit failures, config sync issues in stack members, and cflowd export-spread problems.

New Features

  • UTD Container Management for SD-Routing devices, including detection, upgrade, and management of UTD Security Virtual Images.
  • Source interface configuration for High-Speed Logging and SysLog in Cisco SD-WAN Manager.
  • Site-to-site speed test enhancement over DMVPN tunnels for SD-Routing devices.
  • Binary trace retrieval for IOS process events without enabling DMVPN event tracing.
  • Enhanced show cellular 0/x/0 connection output with APN and cellular link uptime.
  • Onboard Cisco ThousandEyes Enterprise Agent on SD-Routing devices.

Known Issues

  • Open bugs remain for 17.16.1a, including traffic blackholing after power-cycle, login failures after power-cycle, EPC crashes on 100Gb links, and several SD-WAN and routing issues.

Hints

  • Cisco IOS XE 17.16.1a is the first release for Cisco ASR 1000 Series routers in the 17.16.x train.
  • Cisco notes that the SCIP feature is in preview mode and may have limited functionality or incomplete dependencies.
  • Cisco recommends reviewing product field notices to determine whether affected software or hardware platforms require action.

Links

Product Information

Vendor: Cisco

Product: IOS XE

Version: Cisco IOS XE 17.16.1a

Release date: Dec 22, 2024

View All Updates