System Requirements
Cisco IOS XR Release 6.5.3 contains all features released in Cisco IOS XR Release 6.5.2, and Release 6.5.1.
Release 6.5.2 and Release 6.5.1 are limited availability (LA) releases.
This section describes the system requirements for the Cisco Network Convergence System 540 Series Routers Release 6.5.3.
For more information on IOS XR Release 6.5.1 features, see Release Notes for Cisco NCS 540 Series Routers, Release 6.5.1
For more information on IOS XR Release 6.5.2 features, see Release Notes for Cisco NCS 540 Series Routers, Release 6.5.2
Release 6.5.1 Packages
This table lists the Cisco IOS XR Software feature set matrix (packages) with associated filenames.
Composite Package |
||
Feature Set |
Filename |
Description |
Cisco IOS XR IP Unicast Routing Core Bundle |
ncs540-mini-x.iso-r6.5.1 |
Contains base image contents that includes:
|
Individually-Installable Optional Packages |
||
Feature Set |
Filename |
Description |
Cisco IOS XR Manageability Package |
ncs540-mgbl-1.0.0.0-r651.x86_64.rpm |
Extensible Markup Language (XML) Parser, Telemetry, Netconf, gRPC and HTTP server packages. |
Cisco IOS XR MPLS Package |
ncs540-mpls-1.0.0.0-r651.x86_64.rpm ncs540-mpls-te-rsvp-1.0.0.0-r651.x86_64.rpm |
MPLS and MPLS Traffic Engineering (MPLS-TE) RPM. |
Cisco IOS XR Security Package |
ncs540-k9sec-1.0.0.0-r651.x86_64.rpm |
Support for Encryption, Decryption, Secure Shell (SSH), Secure Socket Layer (SSL), and Public-key infrastructure (PKI) |
Cisco IOS XR ISIS package |
ncs540-isis-1.0.0.0-r651.x86_64.rpm |
Support ISIS |
Cisco IOS XR OSPF package |
ncs540-ospf-1.0.0.0-r651.x86_64.rpm |
Support OSPF |
Lawful Intercept (LI) Package |
ncs540-li-1.0.0.0-r651.x86_64.rpm |
Includes LI software images |
Multicast Package |
ncs540-mcast-1.0.0.0-r651.x86_64.rpm |
Support Multicast |
Determine Software Version
Log in to the router and enter the show version command:
RP/0/RP0/CPU0:router# show version
Thu Aug 9 15:32:58.615 UTC
Cisco IOS XR Software, Version 6.5.1
Copyright (c) 2013-2018 by Cisco Systems, Inc.
Build Information:
Built By : ahoang
Built On : Wed Aug 8 16:57:32 PDT 2018
Built Host : iox-ucs-029
Workspace : /auto/srcarchive17/prod/6.5.1/ncs540/ws
Version : 6.5.1
Location : /opt/cisco/XR/packages/
cisco NCS-540 () processor
System uptime is 4 hours 22 minutes
Determine Firmware Support
Use the show hw-module fpd command in EXEC mode to view the hardware components with their current FPD version and status. The status of the hardware must be CURRENT; Running and Programed version must be the same.
RP/0/RP0/CPU0:Router# show fpd package
Thu Aug 9 15:33:23.438 UTC
=============================== ================================================
Field Programmable Device Package
================================================
Req SW Min Req Min Req
Card Type FPD Description Reload Ver SW Ver Board Ver
=================== ========================== ====== ======= ======== =========
N540-24Z8Q2C-M Bootloader YES 1.10 1.10 0.0
CPU-IOFPGA YES 0.03 0.03 0.0
MB-IOFPGA YES 0.18 0.18 0.0
SATA NO 5.00 5.00 0.0
--------------------------------------------------------------------------------
N540-X-24Z8Q2C-M Bootloader YES 1.10 1.10 0.0
CPU-IOFPGA YES 0.03 0.03 0.0
MB-IOFPGA YES 0.18 0.18 0.0
SATA NO 5.00 5.00 0.0
--------------------------------------------------------------------------------
RP/0/RP0/CPU0:Router# show hw-module fpd
Thu Aug 9 15:32:46.264 UTC
FPD Versions
=================
Location Card type HWver FPD device ATR Status Running Programd
------------------------------------------------------------------------------
0/RP0 N540-24Z8Q2C-M 0.5 MB-MIFPGA CURRENT 0.04 0.04
0/RP0 N540-24Z8Q2C-M 0.5 Bootloader CURRENT 1.10 1.10
0/RP0 N540-24Z8Q2C-M 0.5 CPU-IOFPGA CURRENT 0.03 0.03
0/RP0 N540-24Z8Q2C-M 0.5 MB-IOFPGA CURRENT 0.18 0.18
Supported MIBs
The Cisco NCS 5500 MIB support list is also applicable to the Cisco NCS 540 Series Routers. For the list of supported MIBs, see the Cisco NCS5500 MIB Support List.
Supported Features
Software Features Introduced in this Release
Autobandwidth Bundle TE++
The MPLS-TE auto-bandwidth feature allows to resize the tunnels based on the measured traffic load. The autobandwidth bundle TE++ feature is an extension of the auto-bandwidth feature. This feature allows to automatically increase or decrease the number of MPLS-TE tunnels to a destination based on real time traffic needs. Hence, this feature helps to avoid large LSPs and enables load sharing the traffic between source and destination.
For more information about configuring the Autobandwidth bundle TE++ feature, see MPLS Configuration Guide for Cisco NCS 540 Series Routers.
BGP Flow Specification version 4 and version 6
BGP Flow Specification version 4 and version 6 feature allows you to receive IPv4 and IPv6 traffic flow specifications and actions that need to be taken on that traffic through BGP update. This feature allows you to rapidly deploy and propagate filtering and policing functionality among a large number of BGP peer routers to mitigate the effects of a distributed denial-of-service (DDoS) attack over your network.
For more informnation about the feature, see the chapter Implementing BGP in the BGP Configuration Guide for Cisco NCS 540 Series Routers.
Enhancements to Programmability
Cisco IOS XR supports programmability of OC NI
, OC local routing
, OC-MPLS
, OC-RSVP-SR
, OC-RPL
and OC-BGP-Policy
OpenConfig data models for configuration and operational data.
For more information about YANG data models and configuration, see Using Data Models chapter in Programmability Configuration Guide for Cisco NCS 540 Series Routers
Enhancements to ZTP
The following enhancements are introduced in Release 6.5.1:
-
During the fresh boot, to establish a secured connection with DHCP server, authentication is performed on data ports through DHCP option 43 for IPv4 and option 17 for IPv6. These DHCP options are defined in option space and included within dhcpd.conf/dhcpd6.conf configuration files.
-
During the fresh boot of a router auto ZTP process is initiated from the management port and switches to data port when:
-
ZTP does not find an active interface,
-
delay in DHCP response, and
-
ZTP encounters an error.
Note
The auto breakout mode is not supported.
-
-
During fresh boot of the router or manual invocation of ZTP, IPv6 is enabled on all dataports (in dataport mode).
-
The log file ztp.log is saved in /var/log folder, and a copy of log file is available at /disk0:/ztp/ztp.log location using a soft link. However, executing ztp clean command clears files saved on disk and not on /var/log folder where current ZTP logs are saved. In order to have a log from current ZTP run, you must manually clear the ZTP log file from /var/log/ folder.
-
When ZTP process encounters any error, or when ZTP quits or terminates, it reverts to the initial configuration that exists before starting of ZTP process.
For more information on Auto ZTP feature, see the chapter Configuring Zero Touch Provisioning in the System Management Configuration Guide for Cisco NCS 540 Series Routers
EVPN Single-Active Multi-Homing
The EVPN Single-Active Multi-Homing feature supports single-active redundancy mode. In single-active mode, the provider edge (PE) nodes locally connected to an Ethernet Segment load balance traffic to and from the Ethernet Segment based on EVPN service instance (EVI). Within an EVPN service instance, only the Designated Forwarder (DF) PE forwards traffic to and from the Ethernet Segment.
EVPN MPLS Seamless Integration with VPLS
Seamless integration of EVPN MPLS with VPLS enables the co-existence of PE nodes running EVPN and VPLS for the same VPN instance. VPLS or legacy network can be upgraded to the next generation EVPN network without service disruption. You can introduce EVPN service on all the selected VPLS provider edge (PE) nodes simultaneously. However, to avoid traffic disruption, provision EVPN service on existing VPLS-enabled PEs one by one.
For more information on this feature, see the EVPN Features chapter in the L2VPN and Ethernet Services Configuration Guide for Cisco NCS 540 Series Routers.
G.8032 Ethernet Ring Protection
The G.8032 Ethernet Ring Protection feature provides protection for Ethernet traffic in a ring topology. This feature prevents loops within the ring at the Ethernet layer by blocking either a pre-determined link or a failed link.
For more information on this feature, see the Configure Point-to-Point Layer 2 Services chapter in the L2VPN and Ethernet Services Configuration Guide for Cisco NCS 540 Series Routers.
Global LLDP Knob to Enable LLDP Configuration
Earlier, in IOS-XR platforms, LLDP was enabled only with global LLDP configuration and administrators had to manually disable each interface.
With this feature, you can now enable the global LLDP configuration per-interface basis. To enable the feature, you must make the necessary configuration changes. For more information on the feature, see the Interface and Hardware Component Configuration Guide for Cisco NCS 540 Series Routers.
Global Weighted SRLG Protection
A shared risk link group (SRLG) is a set of links sharing a common resource and hence shares the same risk of failure. The current implementation of SRLG protection considers only the directly connected links. Hence, if the router that computes the backup path includes a link that is not directly connected but shares the same SRLG, the SRLG protection fails. The global weighted SRLG protection feature provides better path selection for the SRLG by associating a weight with the SRLG value and using the weights of the SRLG values while computing the backup path.
For more information about configuring the global weighted SRLG protection feature, see MPLS Configuration Guide for Cisco NCS 540 Series Routers.
Highest Random Weight Mode for EVPN DF Election
Highest Random Weight (HRW) Mode for EVPN DF Election feature provides optimal load distribution of Designated Forwarder (DF) election, redundancy, and fast access. It ensures a non-disruptive service for an Ethernet Segment (ES) irrespective of the state of a peer DF.
IS-IS Authentication with Keychain
IS-IS Authentication with Keychain feature enables the support of Hashed Message Authentication Code (HMAC) and Cipher-based Message Authentication Code (CMAC) during IS-IS authentication. New cryptographic algorithms such as, AES-128-CMAC-96, HMAC-SHA-256, and HMAC-SHA1-96 are added under Keychain infra as part of this feature. These algorithms provide more secured authentication.
Keychains can be configured at the router level (in case of the lsp-password command) and at the interface level (in case of the hello-password command) within IS-IS. These commands refer to the global keychain configuration and instruct the IS-IS protocol to obtain security parameters from the global set of configured keychains.
For more information about Keychain configuration, see Implementing Keychain Management Chapter of the System Security Configuration Guide for Cisco NCS 540 Series Routers.
IS-IS Distribute List
This feature allows users to specify a filter based on destination prefix list or route policy, and use that filter to prevent routes computed by Intermediate System-to-Intermediate System (IS-IS) from being installed in the Routing Information Base (RIB).
When distribute-list in command is configured, some routes that IS-IS computes are not installed in the forwarding plane of the local router, but other IS-IS routers will not be aware of this. This introduces a difference between the forwarding state computed by other IS-IS routers and the actual forwarding state on this router. In some cases, this could lead to traffic being dropped or looped. Hence, be careful about when to use this command.
For more information about the distribute-list in command, see Routing Command Reference for Cisco NCS 5500 Series Routers and Cisco NCS 540 and NCS 560 Series Routers.
For more information about this feature, see Implementing IS-IS Chapter of the Routing Configuration Guide for Cisco NCS 540 Series Routers.
Layer 2 Adjacency SID
An adjacency SID is typically associated with a Layer 3 adjacency to a neighboring node. If you have Layer 2 bundle interfaces, where multiple physical interfaces form a bundle interface, the individual Layer 2 bundle members are not visible to IGP; only the bundle interface is visible.
The Layer 2 Adjacency SID feature provides adjacency SID functionality for individual bundle members. This feature allows you to track the availability of individual bundle member links and to verify the segment routing forwarding over the individual bundle member links, for Operational Administration and Maintenance (OAM) purposes. A Layer 2 adjacency SID can be allocated dynamically or configured manually.
For more information on this feature, see the Configure Segment Routing for IS-IS Protocol chapter in the Segment Routing Configuration Guide for Cisco NCS 540 Series Routers.
Master Key Tuple Configuration
This feature specifies the TCP Authentication Option (TCP-AO) that replaces the TCP MD5 option. TCP-AO uses the Message Authentication Codes (MACs), which provides the following:
-
protection against replays for long-lived TCP connections
-
more details on the security association with TCP connections than TCP MD5
-
a larger set of MACs with minimal other system and operational changes.
Cisco provides the MKT configuration by means of the following configurations:
-
keychain configuration
-
tcp tcp-ao keychain configuration
For more information on this feature, see BGP Configuration Guide for Cisco NCS 540 Series Routers.
MPLS over GRE Hashing
The hw-module profile load-balance algorithm command provides the ability to modify the hashing algorithm used for ECMP and bundle member selection. Effective with Cisco IOS XR release 6.5.1, this command is enhanced to include GPRS tunneling protocol (GTP) mode which allows hashing based upon the tunnel id in GTP-U packets.
For more information about the hw-module profile load-balance algorithm command, see Interface and Hardware Component Command Reference for Cisco NCS 5500 and NCS 540 and NCS 560 Series Routers.
Minimum Remaining Lifetime for IS-IS
The Minimum Remaining Lifetime for IS-IS feature helps to maintain the stability of the network when the Remaining Lifetime field in a Link State Protocol (LSP) is corrupted. Corruption of the Remaining Lifetime field in a LSP data unit can go undetected. In certain scenarios, this may cause or exacerbate flooding of LSPs. This feature resolves this problem by enabling IS-IS to reset the Remaining Lifetime value of the received LSP, to the maximum LSP lifetime (1200 seconds), if the Remaining Lifetime value of the received LSP is less than the maximum LSP lifetime configured in a local node. If the received LSP lifetime value is less than the Zero Age Lifetime (60 seconds), IS-IS generates an error message indicating that it’s a corrupted lifetime event.
IS-IS saves the received Remaining Lifetime value in LSP database. The value is shown in the show isis database command output under the Rcvd field.
For more information about the show isis database command, see IS-IS Commands Chapter of the Routing Command Reference for Cisco NCS 5500 Series Routers and Cisco NCS 540 and NCS 560 Series Routers.
For more information about this feature, see Implementing IS-IS Chapter of the Routing Configuration Guide for Cisco NCS 540 Series Routers.
MLDP on Edge Routers
The Multicast Label Distribution Protocol (MLDP) feature is enhanced to support the edges; that is, the encapsulation (headend) and the decapsulation (tailend) at the Provider Edge (PE) devices. The MLDP Edge feature enables service providers to extend the existing MPLS backbone network for multicast services. This feature extends the functionality from midpoint to support the edges - the headend and the tailend.
Earlier than Cisco IOS XR Release 6.5.1, MLDP VRF In-band Signaling (profile 6) and Global Inband Signaling (Profile 7) was supported only at the core, now it is supported on the edge as well.
For more information about this feature, see Implementing Multicast Chapter of the Multicast Configuration Guide for Cisco NCS 540 Series Routers.
Multiple Spanning Tree Access Gateway (MSTAG)
The Multiple Spanning Tree Access Gateway (MSTAG) feature provides a mechanism to block the redundant path to avoid a loop. This feature enables the provider edge (PE) devices to flush the MAC addresses over VPLS network to prevent unreported traffic drops.
OSPF Authentication with Keychain
OSPF Authentication with Keychain feature enables the support of Hashed Message Authentication Code (HMAC) during OSPF authentication. New crypto algorithms such as, HMAC-SHA-256 and HMAC-SHA1-96 are added under key-chain infra as part of this feature. These algorithms provide more secured authentication.
Keychains can be configured at different levels of OSPF like at the router level, or the area level, or the interface level.
Point-to-Multipoint Traffic-Engineering
Label switched multicast (LSM) is an MPLS technology extension to support multicast using label encapsulation.The label encapsulation could be either point-to-multipoint (P2MP) label switched paths (LSPs) or multipoint-to-multipoint (MP2MP) LSPs. For creating multicast LSPs, two protocol extensions can be used. The RSVP-TE protocol is extended to signal P2MP LSPs across the MPLS networks which is known as P2MP RSVP-TE. Multicast Label Distribution Protocol (MLDP) provides extensions to the label distribution protocol (LDP) for the setup of P2MP and MP2MP LSPs.The point-to-multipoint traffic-engineering (P2MP-TE) feature implements P2MP RSVP-TE on Cisco NCS 540 series routers.
For more information about configuring the P2MP-TE feature, see MPLS Configuration Guide for Cisco NCS 540 Series Routers.
Persistent Interface Shutdown
Prior to Cisco IOS XR Release 6.5.1, the configurations committed in a newly created interface are lost when:
-
you do not issue no shutdown command to remove the default shutdown config, and
-
you issue no shutdown command and reload the router.
From Release 6.5.1, onwards, automatic shutdown config behavior is persistent and configurations are intact whether or not the default shhutdown config is removed and even if the router is reloaded.
For more information on the feature, see interface (global) command in the Global Interface Commands chapter of the Interface and Hardware Component Command Reference for Cisco NCS 5500 and NCS 540 and NCS 560 Series Routers
Resilient Hashing and Flow Auto-Recovery
Resilient Hashing and Flow Auto-Recovery feature provides an option to selectively override the default equal cost multipath (ECMP) behavior during a ECMP path failure. This feature enables the redirection of flows through inactive links only and the prevention of all existing flows from being rehashed to a new link. This feature also provides an option to recover a link or a server when it comes back so it can be reused for sessions.
For more informnation about the feature, see the chapter Implementing BGP in the BGP Configuration Guide for Cisco NCS 540 Series Routers.
Pseudowire Redundancy
The Pseudowire Redundancy feature allows you to configure a redundant pseudowire that backs up the primary pseudowire. When the primary pseudowire fails, the PE router switches to the redundant pseudowire. You can elect to have the primary pseudowire resume operation after it becomes functional. The primary pseudowire fails when the PE router fails or when there is a network outage.
For more information on this feature, see the Configure Point-to-Point Layer 2 Services chapter in the L2VPN and Ethernet Services Configuration Guide for Cisco NCS 540 Series Routers.
Purge Originator Identification TLV for IS-IS
At present, an IS-IS purge does not contain any information to identify the Intermediate System (IS) that generates the purge. This makes it difficult to locate the source IS.
To address this issue, the Purge Originator Identification (POI) TLV for IS-IS feature defines a type, length, and value (TLV) that can be added to the purges, to record the system ID of the IS that had initiated the purge. This makes it easier to locate the origin of the purge and its cause. If you are using cryptographic authentication, then the enable-poi keyword in lsp-password command must be enabled to insert the Purge Originator Identification (POI). If you are not using cryptographic authentication, then the POI is inserted by default. This TLV is also helpful in lab environments.
For more information about this feature, see Implementing IS-IS Chapter of the Routing Configuration Guide for Cisco NCS 540 Series Routers.
QoS Policy Propagation via BGP
QoS Policy Propagation via BGP (QPPB,) is a mechanism that allows propagation of quality of service (QoS) policy and classification by the sending party based on access lists, community lists and autonomous system paths in the Border Gateway Protocol (BGP), thus helping to classify based on destination instead of source address.
With the enablement of this feature, you can configure QPPB on NCS 540. For more information on the feature, see Modular QoS Configuration Guide for Cisco NCS 540 Series Routers.
RPF Vector Encoding
RPF vector is a PIM proxy that lets core routers without RPF information forward join and prune messages for external sources (for example, a MPLS-based BGP-free core, where the MPLS core router is without external routes learned from BGP). The RPF vector encoding is now compatible with the new IETF encoding. Use the rpf-vector use-standard-encoding command to enable the feature.
For more information on RPF, see the Implementing Layer-3 Multicast Routing chapter in the Multicast Configuration Guide for Cisco NCS 540 Series Routers
Replace Installed Files with Golden ISO
Golden ISO (GISO) upgrades to a version that has a predefined list of software maintenance update (SMUs) with a single operation.
However, to update to the same version with a different set of SMUs requires a two-step process. This two-step process can
be avoided using the install update replace
functionality to replace the currently active version with the full package including the image and SMUs from the newly added
GISO.
.
Resilient Ethernet Protocol Access Gateway (REPAG)
The Resilient Ethernet Protocol Access Gateway (REPAG) feature provides a mechanism to block the redundant path to avoid a loop. This feature enables the provider edge (PE) devices to flush the MAC addresses over VPLS network to prevent unreported traffic drops.
The REPAG feature provides the same functionality as MSTAG, but in REPAG the access network runs REP and not multiple spanning tree (MST) protocol.
NRSSVR Process Infra Hardening on Repeated Configuration Commits
This feature provides resolution to prevent RDSFS process crash, and memory leakage at Name Registration Service (NRS) and Replicated Data Services File System (RDSFS) Server due to large number of configuration commits. To achieve this, nrs_purge API is enhanced to purge the NRS handles for files that are already deleted. This resolution provides significant improvements in the following aspects:
-
Enables a large number of configuration commits, without any issues
-
Ensures lower memory consumption for NRS server and RDSFS processes.
-
Prevents the need to reload the router when it has to recover from the following scenarios:
-
Continuous restarting or crashing of RDSFS processes
-
Not being able to commit any configurations
-
Segment Routing-Specific Drop Counter
When a router is part of an RSVP-TE network and an segment routing (SR) network, the Multiprotocol Label Switching (MPLS) drop counters do not indicate if the dropped packets are in an RSVP-TE network or an SR network. The show cef mpls drops command displays MPLS drop counters for packets that belong to a segment routing (SR) network.
The incoming top MPLS label is inspected. If the label belongs to the Segment Routing Local Block (SRLB) or the Segment Routing Global Block (SRGB), an MPLS SR drop counter is incremented for unknown label value.
For more information on this command, see the Cisco Express Forwarding Commands chapter in the IP Addresses and Services Command Reference for Cisco NCS 5500 Series and NCS 540 Series Routers.
Service cli submode-exit Configuration
XR-VM supported a global configuration to exit service cli submode on all configuration session for all Virtual Terminal Type lines (VTY) earlier. But, you would need a knob to enable this feature specific to a VTY.
Cisco IOS XR now supports a configuration to exit service cli submode on all interactive configuration sessions for each VTY using terminal commands. The command, terminal cli submode-exit lets you enable or disable submode-exit on all interactive configuration sessions for each VTY. You can use the show cli submode-exit status command to check the status of the configuration.
Split Horizon Group 2
The Split Horizon Group 2 feature allows you to prevent Broadcast, Unknown unicast and Multicast (BUM) and known unicast traffic to be flooded from one attachment circuit (AC) to other AC within the bridge domain. This feature enables efficient bandwidth allocation and resource optimization.
For more information on this feature, see the Configure Point-to-Point Layer 2 Services chapter in the L2VPN and Ethernet Services Configuration Guide for Cisco NCS 540 Series Routers.
SR-TE Address-Family Agnostic Steering
Address-family agnostic steering uses an SR-TE policy to steer both labeled and unlabeled IPv4 and IPv6 traffic. This steering mechanism relies on color-only steering and requires support of IPv6 encapsulation (IPv6 caps) over IPV4 endpoint policy, which is enabled automatically when the policy is created in XTC. The result is that you can have a single SR-TE policy to forward traffic, regardless of the address-family.
For more information on this feature, see the Configure SR-TE Policies chapter in the Segment Routing Configuration Guide for Cisco NCS 540 Series Router.
SR-TE Color-Only Steering
A segment routing traffic engineering (SR-TE) policy is identified as an ordered list (head-end, color, end-point). The color-only steering feature is a traffic steering mechanism where a policy is created with a given color, regardless of the endpoint. You can create an SR-TE policy for a specific color that uses a NULL end-point (ipv4 0.0.0.0 for IPv4 NULL, and ipv6 ::0 for IPv6 NULL end-point), which minimizes the number of SR-TE policies required at a headend to forward traffic for a given address family.
You can also configure a color-only (CO) flag (co-flag 00 and co-flag 01 ) for color-only steering (NULL end-point) as part of the color extended community in BGP for overlay routes. The CO flag allows the selection of an SR-TE policy with a matching color, regardless of the endpoint.
For more information on this feature, see the Configure SR-TE Policies chapter in the Segment Routing Configuration Guide for Cisco NCS 540 Series Router.
Telemetry over gNMI subscribe RPC
Cisco IOS XR supports Google network management interface (gNMI) protocol in dial-in mode where the client establishes a connection to the router. gNMI is an unified mangement protocol for streaming telemetry data using OpenConfig RPC framework. This framework and protocol does not need explicit configuration, but simplifies telemetry configuration on the router by only starting the gRPC server.
In addition, support is provided for transport layer security (TLS) ciphers in gRPC session. Two new gRPC configuration parameters
max-streams
and max-streams-per-user
are provided to stream only the gRPC-specific requests.
To enable the gRPC server in dial-in mode, see Configure Model-driven Telemetry chapter in Telemetry Configuration Guide for Cisco NCS 540 Series Routers.
Usability Enhancements for ACL YANG Models
This feature addresses some of the issues identified with native ACL YANG models that affect usability of the YANG model. It improves user-friendliness and standards compliance in the following ACL YANG models:
-
Cisco-IOS-XR-es-acl-cfg
-
Cisco-IOS-XR-ipv4-acl-cfg
-
Cisco-IOS-XR-ipv6-acl-cfg
For more information about issues addressed as part of this enhancement, see Components to Use Data Models chapter of the Programmability Configuration Guide for Cisco NCS 540 Series Routers.
Validate Commit Check
Before committing a configuration, the overall configuration can be validated. This helps remove conflicts when the configurations within a single commit operation are interdependent.
For information about enabling and running the command, see Bring-up the Router chapter in System Setup and Software Installation Guide for NCS 540 Series Routers, IOS XR Release 6.5.x.
VLAN Switch
The VLAN Switch feature enables you to configure L2 VLAN switching with minimum configuration. This feature allows you to configure L2 bridging without having to configure and manage separate bridge instances and sub-interfaces for each per VLAN L2 forwarding domain.
Prior to implementation of this feature, to configure and manage basic L2 bridging, numerous sub-interfaces were required. Using separate sub-interfaces for each VLAN on a port overloads the system scalability and consumes hardware resources, slows down provisioning, and makes the device harder to manage due to the large number of sub-interface constructs that exists in the system.
For more information on this feature, see the Configure Virtual LANs in Layer 2 VPNs chapter in the L2VPN and Ethernet Services Configuration Guide for Cisco NCS 540 Series Routers.
New Hardware Features Introduced in IOS XR Release 6.6.25
The following hardware are introduced in this release:
-
Chassis: Cisco NCS 560-4 Router
-
Plenum: N560-4-F2B-AIR-U=
-
Router Switch Processors: N560-4-RSP4 and N560-4-RSP4E
-
Master Fan Tray: N560-4-PWR-FAN
-
Slave Fan Tray: N560-4-FAN-H
-
DC Power Supply: N560-PWR1200-D-E
-
Interface Module: 2x100G Interface module (N560-IMA2C N560-IMA2C-CC)
For more information, see the Cisco NCS 560-4 Router Hardware Installation Guide.
Supported Optics
The following optics are supported on the Cisco NCS 540 Series router in this release:
-
QSFP-100G-SR4-S
-
QSFP-100G-LR4-S
-
QSFP-100G-PSM4-S
-
QSFP-100G-CWDM4-S
-
QSFP-100G-SM-SR
-
QSFP-100G-ER4L-S
-
QSFP-100G-AOCxxM
-
QSFP-40G-SR4, and –S
-
QSFP-40G-CSR4
-
QSFP-40G-SR-BD
-
QSFP-40G-LR4, and –S
-
WSP-Q40GLR4L
-
QSFP-40G-ER4
-
QSFP-4x10G-LR-S (40G-PSM4)
-
SFP-25G-SR-S
-
SFP-10/25G-LR-S – 25G mode support only
-
SFP-10G-SR, and –S
-
SFP-10G-SR-X
-
SFP-10G-LR, and –S
-
SFP-10G-LR-X
-
SFP-10G-ER, and –S
-
CWDM-SFP10G-xxxx (CWDM-SFP10G-1610)
-
SFP-10G-ZR, and –S
-
DWDM-SFP10G-xxxx (fixed) (DWDM-SFP10G-59.79)
-
DWDM-SFP10G-C (tunable)
-
GLC-TE (1000BASE-T)
-
GLC-SX-MMD
-
GLC-SX-MM-RGD
-
GLC-LH-SMD
-
GLC-EX-SMD
-
GLC-ZX-SMD
-
GLC-ZX-SM-RGD
-
CWDM-SFP-xxxx (CWDM-SFP-1550, CWDM-SFP-1570)
-
DWDM-SFP-xxxx (DWDM-SFP-5494)
-
RPHY-S10G-40K-200=
-
RPHY-S10G-20K-200=
Behavior Change Introduced in this release
Deprecated Commands
-
From this release onwards the interface tunnel-te tunnel-id path-option pref {dynamic|explicit} segment-routing command is deprecated. Configure Segment Routing Traffic Engineering (SR-TE) using the segment-routing traffic-eng command.
For more information on the SR-TE commands and configurations, see the Segment Routing Command Reference and Segment Routing Configuration Guide for Cisco NCS 540 Series Routers.
RPKI Prefix Validation
Starting from Cisco IOS XR Release 6.5.1, origin-as validation is disabled by default, you must enable it per address family.
Restrictions and Limitations on the Cisco NCS 540 Series Router
The following restrictions are applicable only to Cisco N540-24Z8Q2C-SYS, N540X-ACC-SYS, and N540-ACC-SYS variants.
-
In the Cisco IOS XR Release 7.0.1, the Packet IO feature is not supported on bundle interfaces.
-
The show inventory and the show diagnostic commands do not display the fan serial number.
-
The interface ports 0/0/0/24 to 0/0/0/31 do not support 1G Copper SFPs.
-
Remove the speed settings on the 1G Copper optics when 10M/100M is configured and replaced with 1G SFP optics.
-
The hw-module profile mfib statistics command is not supported.
Caveats
This section describes open and resolved severity 1 and 2 caveats and select severity 3 caveats:
-
The “Open Caveats” sections list open caveats that apply to the current release and may apply to previous releases. A caveat that is open for a prior release and is still unresolved applies to all future releases until it is resolved.
-
The “Resolved Caveats” sections list caveats resolved in a specific release, but open in previous releases.
The bug IDs are sorted alphanumerically.
Note |
The Caveats section includes the bug ID and a short description of the bug. For details on the symptoms, conditions, and workaround for a specific caveat you must use the Bug Search Tool. |
Cisco Bug Search Tool
Cisco Bug Search Tool (BST), the online successor to Bug Toolkit, is designed to improve effectiveness in network risk management and device troubleshooting. You can search for bugs based on product, release, and keyword, and aggregates key data such as bug details, product, and version. For more details on the tool, see the help page located at http://www.cisco.com/web/applicat/cbsshelp/help.html.
Cisco IOS XR Caveats
Bug ID |
Headline |
---|---|
YANG framework detected the fatal condition Backend processing failed for cdp netconf request |
|
Failed to obtain hardware interface key for BVI interface after series of 10+ reloads |
|
Install Fails if GISO build tool is used from 6.5.x |
Caveats Specific to the NCS 540 Routers
Bug ID |
Headline |
---|---|
CSCvi36859 |
Operational Failures are not made available to "Show configurations warnings" CLI |
Bug ID |
Headline |
---|---|
Both PI and PD license UNREGISTERED after HwModuleLocRP0Reload |
Communications, Services, and Additional Information
-
To receive timely, relevant information from Cisco, sign up at Cisco Profile Manager.
-
To get the business impact you’re looking for with the technologies that matter, visit Cisco Services.
-
To submit a service request, visit Cisco Support.
-
To discover and browse secure, validated enterprise-class apps, products, solutions and services, visit Cisco Marketplace.
-
To obtain general networking, training, and certification titles, visit Cisco Press.
-
To find warranty information for a specific product or product family, access Cisco Warranty Finder.
Cisco Bug Search Tool
Cisco Bug Search Tool (BST) is a web-based tool that acts as a gateway to the Cisco bug tracking system that maintains a comprehensive list of defects and vulnerabilities in Cisco products and software. BST provides you with detailed defect information about your products and software.