Cisco CSR 1000v Series Cloud Services Routers Overview


Note

Explore the Content Hub, the all new portal that offers an enhanced product documentation experience.

  • Use faceted search to locate content that is most relevant to you.

  • Create customized PDFs for ready reference.

  • Benefit from context-based recommendations.

Get started with the Content Hub at content.cisco.com to craft a personalized documentation experience.

Do provide feedback about your experience with the Content Hub.


Virtual Router

The Cisco CSR 1000v Cloud Services Router is a cloud-based virtual router deployed on a virtual machine (VM) instance on x86 server hardware. It supports a subset of Cisco IOS XE software features and technologies, providing Cisco IOS XE security and switching features on a virtualization platform.

When the Cisco CSR 1000v is deployed on a VM, the Cisco IOS XE software functions as if it were deployed on a traditional Cisco hardware platform. You can configure different features depending on the Cisco IOS XE software image.

Secure Connectivity

The Cisco CSR 1000v provides secure connectivity from an enterprise network (such as in a branch office or data center) to the public or private cloud.

System Requirements

Software Images and Licenses

The following sections describe the licensing and software images for the Cisco CSR 1000v.

Cisco Smart Licensing

The Cisco CSR 1000v supports activation using Cisco Smart Licensing. To use Cisco Smart Licensing, you must first configure the Call Home feature and obtain Cisco Smart Call Home Services. For more information, see the Smart Licensing Guide for Access and Edge Routers.

Cisco CSR 1000v Evaluation Licenses

Evaluation license availability depends on the software version:

The following evaluation licenses are available:

  • IPBASE technology package license with 10 Gbps maximum throughput

  • SEC technology package license with 5 Gbps maximum throughput

  • APPX technology package license with 5 Gbps maximum throughput

  • AX technology package license with 2.5 Gbps maximum throughput

If you need an evaluation license for the Security technology package, or for an AX technology package with higher throughput, contact your Cisco service representative.

For instructions on obtaining and installing evaluation licenses, see the “Installing CSL Evaluation Licenses for Cisco IOS XE 3.13S and Later” section of the Cisco CSR 1000v Software Configuration Guide .

Cisco CSR 1000v Software Licenses

Cisco CSR 1000v software licenses are divided into feature set licenses. Supported feature licenses depend on the release.

Current License Types

(Cisco IOS XE Everest 16.4.1 or later) The following license types are supported:

  • IPBase: Basic Networking Routing (Routing, HSRP, NAT, ACL, VRF, GRE, QoS)

  • Security: IPBase package + Security features (IP Security VPN, Firewall, MPLS, Multicast)

  • AX: IPBase package + Security features + Advanced Networking features (AppNav, AVC, OTV and LISP)

  • APPX Package: IPBase package + Advanced Networking features - Security features (IP security features not supported)

Legacy License Types

Three legacy technology packages - Standard , Advanced , and Premium - were replaced in the Cisco IOS XE Release 3.13 with the IPBase , Security , and AX technology packages.

Features Supported by License Packages

For more information about the Cisco IOS XE technologies supported in the feature set packages, see the overview chapter of the Cisco CSR 1000v Series Cloud Services Router Software Configuration Guide.

Throughput

The Cisco CSR 1000v router provides both perpetual licenses and term subscription licenses that support the feature set packages for the following maximum throughput levels:

  • 10 Mbps

  • 50 Mbps

  • 100 Mbps

  • 250 Mbps

  • 500 Mbps

  • 1 Gbps

  • 2.5 Gbps

  • 5 Gbps

  • 10 Gbps

Throughput levels are supported for different feature set packages in each version. For more information about how the maximum throughput levels are regulated on the router, see the Cisco CSR 1000v Cloud Services Router Software Configuration Guide.

Memory Upgrade

A memory upgrade license is available to add memory to the Cisco CSR 1000v (Cisco IOS XE 3.11S or later). This license is available only for selected technology packages.

Additional Information about Licenses and Activation

For more information about each software license, including part numbers, see the Cisco CSR 1000v Router Datasheet. For more information about the standard Cisco IOS XE software activation procedure, see the Software Activation Configuration Guide, Cisco IOS XE Release 3S.

Software Image Nomenclature for OVA, ISO, and QCOW2 Installation Files

The Cisco CSR 1000v installation file nomenclature indicates properties supported by the router in a given release.

For example, these are filename examples for the Cisco IOS XE Everest 16.4.1 release:

  • csr1000v-universalk9.16.04.01.ova

  • csr1000v-universalk9.16.04.01.iso

  • csr1000v-universalk9.16.04.01.qcow2

The filename attributes are listed below, along with the release properties.

Table 1. OVA Installation Filename Attributes

Filename Attribute

Properties

Example:universalk9

Installed image package.

03.09.00a.S.153-2.S0a

Indicates that the software image is for the Cisco IOS XE 3.9.0aS release image (mapped to the Cisco IOS 15.3(2) release).

std or ext

Standard release or extended maintenance support release.

Features and Notes: Cisco IOS XE Gibraltar 16.10.x

Features—Cisco IOS XE Fuji 16.10.1a

The following new software features are supported on the Cisco CSR 1000v for Cisco IOS XE Fuji 16.10.1a.

Notes

The following section includes important notes about the Cisco CSR 1000v for Cisco IOS XE Fuji 16.10.x

Deferrals

Cisco IOS software images are subject to deferral. We recommend that you view the deferral notices at the following location to determine whether your software release is affected:

https://tools.cisco.com/security/center/publicationListing.x

Field Notices

Limitations and Restrictions

There are no new limitations and restrictions in this release.

Resolved and Open Bugs for Cisco IOS XE 16.x

Overview

Caveats, or bugs describe unexpected behavior. Severity 1 caveats are the most serious, severity 2 caveats are less serious, and severity 3 caveats are moderate caveats. This section includes severity 1, severity 2, and selected severity 3 caveats.

Terminology

The Dictionary of Internetworking Terms and Acronyms contains definitions of acronyms that are not defined in this document:

http://docwiki.cisco.com/wiki/Category:Internetworking_Terms_and_Acronyms_(ITA)

Bug Search Tool

If you have an account on Cisco.com, you can also use the Bug Search Tool (BST) to find select caveats of any severity. To reach the Bug Search Tool, log into Cisco.com and go to https://tools.cisco.com/bugsearch/search.

If a defect that you have requested is not displayed, it is possible that the defect number does not exist or the defect does not have a description available.

You can use the Bug Search Tool to view new and updated caveats. To search for bugs, go to https://tools.cisco.com/bugsearch/search .

For Best Bug Search Tool Results

For best results when using the Bug Search Tool:

  • In the Product field, enter Cloud Services Router.

  • In the Releases field, enter one or more Cisco IOS XE releases of interest. The search results include caveats related to any of the releases that you enter in this field.

The tool provides autofill while you type in these fields to assist in entering valid values. For example, a search using release number 16.6 should find the caveats for Cisco IOS XE Everest 16.6.1.

Caveats: Cisco IOS XE Fuji 16.10.x

Resolved Caveats—Cisco IOS XE Gibraltar 16.10.2

Caveat ID Number

Description

CSCvn02171

HOLE is not created when 'acl default passthrough configured.

CSCvn30138

Crash with show service-insertion service-context command in AppNav cluster.

CSCvn38590

CTS policies download fails with Missing/Incomplete ACEs error.

CSCvn72973

Device is getting crashed on the "cts role-based enforcement".

CSCvo00968

Radius attr 32 NAS-IDENTIFIIER not sending the FQDN.

CSCvo03458

PKI "revocation check crl none" does not fallback if CRL not reachable.

CSCvo24170

Crash due to chunk corruption in ISIS code.

CSCvo25785

Crash on an LNS router in process ACCT periodic procecss.

CSCvo27553

PKI incorrect fingerprint calulation during CA authentication.

CSCvo38985

Crash at the VRF configuration.

CSCvp29906

Cisco Cloud Services Router 1000V Series router crash due to file descriptor leak.

Resolved Caveats—Cisco IOS XE Gibraltar 16.10.1b

Caveat ID Number

Description

CSCvn52259

CSR1Kv: Throughput and bandwidth level is not set correctly when upgrade to 16.10.1 .bin image with AWS/Azure PAYG

Open Caveats—Cisco IOS XE Fuji 16.10.1a

Caveat ID Number

Description

CSCvm25851

qfp-bqs-internal ucode still crashes with fix in CSCvc35307

CSCvm39485

Small clock changes or time drifts can cause GETVPN TBAR drops (GDOI/IPSEC-PI)

CSCvm51112

"clear crypto sa vrf MyVrf" triggers crash after updating pre-shared-keys

CSCvm55018

A control plane 'delete' command to flush the queue is not being drained out of the command queue

CSCvm57021

Crash in CENT-MC-0 process after Doubly-linked list corruption

CSCvm73802

Azure CSR1000v 16.9 - show bootflash: is empty

CSCvm75066

MPLSoVPN: Change behavior of default route in NHRP. Must insert 0.0.0.0/0 instead of /32

CSCvm76452

IPSec background crash while sending SNMP trap

CSCvm80502

Traceroute not working when sourced from NAT Inside interface

CSCvm91323

Router crash with reload reason: LocalSoftADR and core file generated "cpp-mcplo-ucode"

CSCvm93589

Performance Monitor not working when "collect transport round-trip-time" is configured

CSCvm93794

FlexVPN MPLS - label in CEF not added when shortcut to hub is created (by glitch)

CSCvm99778

IOS-PKI: grant auto trustpoint <tp_name> does not work with IOS Sub CA

CSCvn00997

CSR1000V CUBE-Standard INVALID TAG

CSCvn07614

Out of Band DTMF Events Not Passing to CUCM via SCCP When Using IOS MTP

CSCvn09472

cpp_cp_svr memory leak in module: IPHC Svr Info_st

CSCvn10032

Input errors when reloading CSR

CSCvn12253

Software crash due to watchdog after entered switchport command.

CSCvn18757

Crash after removing a service-policy while the BQS is stuck

CSCvn19382

Crash after comparing tunnel FIB entries

CSCvn52259

CSR1Kv:Throughput/BW level not set correctly when upgrade to 16.10.1 .bin image with AWS/Azure PAYG.

CSCvm75697

Create_node should not allow user to create / update same node and throw exception that it exists

Resolved Caveats—Cisco IOS XE Fuji 16.10.1a

Caveat ID Number

Description

CSCve76719

Cisco IOS XE Software for Cisco ISRv Router Static Credential Vulnerability

CSCvj79145

CSRs fail to scale up to desired NAT64 stateful Dynamic translations

CSCvk41664

CSR1000v: crash at mempool_add_region when adding memory

CSCvk72831

CSCvj79145 fix exposed a latent DPDK issue leading to a crash with MPLS IPv6 per vrf prefix

CSCvm46634

Azure CSR1000v HAv1 VXE_CLOUD_HA-4-NOTCFGD, flags=0x7F0000 error