What's New for Cisco IOS XE SD-WAN Release 16.12.1b, 16.12.1d, and 16.12.2r
This section applies to Cisco XE SD-WAN devices.
Cisco is constantly enhancing the SD-WAN solution with every release and we try and keep the content in line with the latest enhancements. The following table lists new and modified features we documented in the Configuration, Command Reference, and Hardware Installation guides. For information on additional features and fixes that were committed to the SD-WAN solution, see the Resolved and Open Bugs section in the Release Notes.
Feature |
Description |
---|---|
Getting Started |
|
Multitenancy support in Cisco XE SD-WAN Devices |
Starting release Cisco IOS XE SD-WAN 16.12.2r, multitenancy is supported on the following platforms:
Multitenancy allows service providers to manage multiple customers or tenants. |
Tenant data backup solution in multitenant mode |
Starting from Cisco IOS XE SD-WAN 16.12.2r, when databases are shared by multiple tenants in2 a multitenant mode, you can back up data for a specific tenant and restore it. |
Systems and Interfaces |
|
IPv6 Support for NAT64 Devices |
This release supports NAT64 to facilitate communication between IPv4 and IPv6 on Cisco IOS XE SD-WAN routers. For related information, see Configure NAT64 CLI Equivalent on Cisco XE SD-WAN Routers. |
Secure Shell Authentication Using RSA Keys |
You can now configure RSA keys to secure communication between a client and a Cisco SD-WAN server. For related information, see SSH Authentication using vManage on Cisco XE SD-WAN Devices. |
DHCP option support |
You can now use DHCP server options 43 and 191 to configure vendor-specific information in client-server exchanges. For related information, see Configure DHCP. |
Communication with an UCS-E Server |
This feature provides an interface in the interface feature template list to configure an UCS-E interface to connect to an UCS-E server. For related information, see Create a UCS-E Template. |
Bridging, Routing, Segmentation, and QoS |
|
Subinterface QoS |
A physical interface may be treated as multiple interfaces by configuring one or more logical interfaces called subinterfaces. This feature enables Quality of Service (QoS) policies to be applied to individual subinterfaces. For related information, see QoS on Subinterface. |
Policies |
|
Packet Duplication for Noisy Channels |
This feature helps mitigate packet loss over noisy channels, thereby maintaining high application QoE for voice and video. This feature is supported on Cisco XE SD-WAN devices as well as on Cisco vEdge devices. For related information, see Configure and Monitor Packet Duplication. |
Integration with Cisco ACI |
The SD-WAN and Cisco ACI integration functionality now supports predefined SLA cloud beds. It also supports dynamically generated mappings from a data prefix list and includes a VPN list to an SLA class that is provided by Cisco ACI. For related information, see Integration with Cisco ACI. |
Encryption of Lawful Intercept Messages |
Lawful intercept messages between a Cisco XE SD-WAN router and a Media Device can now be encrypted using static tunnel information. For related information, see Lawful Intercept. |
Security |
|
High-Speed Logging for Zone-Based Firewalls |
High-Speed Logging (HSL) allows a firewall to log records with minimum impact to packet processing. For related information, see Firewall High-Speed Logging. |
Self zone policy for Zone-Based Firewalls |
Self-zone is an default zone in the firewall that is associated with the VPN for punt and inject interface. You can define policies to impose rules on the incoming and outgoing traffic. For related information, see Configure Firewall Policies Using vManage. |
Secure Communication Using Pairwise IPsec Keys |
This feature enables support to create and install private pairwise IPSec session keys to secure communication between IPSec devices and its peers. For related information, see IPSec Pairwise Keys Overview. |
Network Optimization and High Availability |
|
TCP Optimization |
TCP optimization fine tunes the processing of TCP data traffic to decrease round-trip latency and improve throughput. For related information, see TCP Optimization: Cisco XE SD-WAN Routers. This feature support was added in Cisco IOS XE SD-WAN Release 16.12.1d |
Commands |
|
Loopback interface support for WAN (IPsec) |
You can now configure a loopback transport interface on a Cisco IOS XE SD-WAN router to help in troubleshooting and diagnostics. For related information, see the bind command. |