Skip to content
Skip to search
Skip to footer

Release Notes for Cisco Catalyst 9300 Series Switches, Cisco IOS XE Dublin 17.10.x

Bias-Free Language

The documentation set for this product strives to use bias-free language. For the purposes of this documentation set, bias-free is defined as language that does not imply discrimination based on age, disability, gender, racial identity, ethnic identity, sexual orientation, socioeconomic status, and intersectionality. Exceptions may be present in the documentation due to language that is hardcoded in the user interfaces of the product software, language used based on RFP documentation, or language that is used by a referenced third-party product. Learn more about how Cisco is using Inclusive Language.

Book Contents

Find Matches in This Book

Results

Updated:: November 30, 2022

Chapter: Whats New in Cisco IOS XE Dublin 17.10.x

Whats New in Cisco IOS XE Dublin 17.10.x
Hardware Features in Cisco IOS XE Dublin 17.10.1
Software Features in Cisco IOS XE Dublin 17.10.1
Hardware and Software Behavior Changes in Cisco IOS XE Dublin 17.10.1

Whats New in Cisco IOS XE Dublin 17.10.x

Hardware Features in Cisco IOS XE Dublin 17.10.1


Feature Name	Description
100GBASE ER-Lite QSFP Module on Cisco Catalyst 9300X Series Switches	Supported transceiver module product numbers: QSFP-100G-ERL-S For information about the module, see Cisco 100GBASE QSFP-100G Modules Data Sheet. For information about device compatibility, see the Transceiver Module Group (TMG) Compatibility Matrix.
100GBASE DR QSFP Module on Cisco Catalyst 9300X Series Switches	Supported transceiver module product numbers: QSFP-100G-DR-S For information about the module, see Cisco 100GBASE QSFP-100G Modules Data Sheet. For information about device compatibility, see the Transceiver Module Group (TMG) Compatibility Matrix.

Software Features in Cisco IOS XE Dublin 17.10.1


Feature Name	Description
BGP EVPN VXLAN with IPv6 in the Underlay (VXLANv6)	Introduces support for IPv6 addressing in the underlay of a BGP EVPN VXLAN fabric. In a new deployment, you can build your BGP EVPN VXLAN fabric with IPv6 underlay. For an existing BGP EVPN VXLAN fabric with IPv4 underlay, you can seamlessly migrate to an IPv6 or dual stack underlay.
Custom EAPoL	Allows customization of the default EAPoL EtherType to configure MACsec with EtherType as 876F.
DHCP Gleaning	Introduces support for a read–only DHCP snooping functionality that allows components to register and glean only DHCP version 4 packets. (Network Essentials and Network Advantage)
Enhanced Password Security Through Updated Combination Rule	The character-repetition and restrict-consecutive-letters keywords were introduced for the aaa common-criteria policy command.
MACsec Fallback Key Support with High Availability	Introduces support for the MACsec Fallback Key feature with High Availability. The MACsec Fallback Key feature establishes an MKA session with the pre-shared fallback key whenever the PSK fails to establish a session because of key mismatch. (Network Advantage)
NAT support on L3 Port Channel	Introduces support for configuring NAT on Layer 3 port channel using the interface port-channel command.
Programmability Upgrade YANG Models to YANG 1.1 YANG Data Models App-Hosting: ERSPAN Capabilities on AppGigabitEthernet Port	The following programmability features are introduced in this release: Upgrade YANG Models to YANG 1.1: Cisco-defined YANG models are in YANG Version 1.1 in Cisco IOS XE Dublin 17.10.1 and later releases. (Network Advantage) YANG Data Models: For the list of Cisco IOS XE YANG models available with this release, navigate to: https://github.com/YangModels/yang/tree/master/vendor/cisco/xe/17101. (Network Advantage) App-Hosting: ERSPAN Capabilities on AppGigabitEthernet Port: To mirror data traffic, the spanning traffic and captured traffic is transported to the IOx virtual application through the AppGigabitEthenet port. This ensures that the ERSPAN destination is reachable through the AppGigabitEthernet interface. (Network Advantage)
RADIUS Automated Testing Probe-on	The command automate-tester probe-on was introduced. It starts a dead timer and packets are sent to the external RADIUS server after the timer expires.
Reflexive Access Lists (IPv4)	Reflexive access lists allow IP packets to be filtered based on upper-layer session information. (Network Advantage)
Secure Data Wipe	Introduces support for performing factory reset by using the keyword all secure in the factory-reset command. This option performs data sanitisation and securely resets the device. (Network Essentials and Network Advantage)
SHA256 based Password-masking support	You can use the masked-secret keyword on the enable algorithm type command and username command. The keyword masks the secret input and converts to the selected encryption. (Network Essentials and Network Advantage)
Standalone Mode on Layer 3 EtherChannels	Introduces support for configuring standalone mode/independent mode on Layer 3 EtherChannels.
Support for Migrating to Meraki Dashboard-Managed Mode	Introduces support for migrating Cisco Catalyst 9300 Series Switches to Meraki Dashboard-managed mode. This feature migrates the switch or switch stack to be fully controlled by Meraki Dashboard. After migration is complete, the switch access through console is disabled. Configuration and monitoring can only be performed through the dashboard. See System Management → Migrating to Meraki Managed Dashboard.
New on the WebUI
There are no new WebUI features in this release.

Hardware and Software Behavior Changes in Cisco IOS XE Dublin 17.10.1


Behavior Change	Description
debug platform command	The debug platform software fed switch active inject packet-capture start command was modified. full-packet keyword was added. It allows you to capture 1500 bytes of packet. The default packet capture was only for 128 bytes of the packet prior to Cisco IOS XE Dublin 17.10.1.

Was this Document Helpful?

Feedback

Feedback

Contact Cisco

Open a Support Case
(Requires a Cisco Service Contract)