Cisco SFP Modules for Gigabit Ethernet

Supported transceiver module product numbers:

• GLC-EX-SMD

For information about the module, see Cisco SFP Modules for Gigabit Ethernet Data Sheet. For information about device compatibility, see the Transceiver Module Group (TMG) Compatibility Matrix.

Cisco 10GBASE SFP+ Module

Supported transceiver module product numbers:

• SFP-10G-T-X

For information about the module, see Cisco 10GBASE SFP+ Modules Data Sheet. For information about device compatibility, see the Transceiver Module Group (TMG) Compatibility Matrix.

BGP EVPN VXLAN with IPv6 in the Underlay (VXLANv6)

Introduces support for IPv6 addressing in the underlay of a BGP EVPN VXLAN fabric. In a new deployment, you can build your BGP EVPN VXLAN fabric with IPv6 underlay. For an existing BGP EVPN VXLAN fabric with IPv4 underlay, you can seamlessly migrate to an IPv6 or dual stack underlay.

Custom EAPoL

Allows customization of the default EAPoL EtherType to configure MACsec with EtherType as 876F.

DHCP Gleaning

Introduces support for a read–only DHCP snooping functionality that allows components to register and glean only DHCP version 4 packets.

(Network Essentials and Network Advantage)

Enhanced Password Security Through Updated Combination Rule

The character-repetition and restrict-consecutive-letters keywords were introduced for the aaa common-criteria policy command.

MACsec Fallback Key Support with High Availability

Introduces support for the MACsec Fallback Key feature with High Availability. The MACsec Fallback Key feature establishes an MKA session with the pre-shared fallback key whenever the PSK fails to establish a session because of key mismatch.

(Network Advantage)

Programmability

• Upgrade YANG Models to YANG 1.1

• YANG Data Models

• App-Hosting: ERSPAN Capabilities on AppGigabitEthernet Port

The following programmability features are introduced in this release:

• Upgrade YANG Models to YANG 1.1: Cisco-defined YANG models are in YANG Version 1.1 in Cisco IOS XE Dublin 17.10.1 and later releases.

  (Network Advantage)

• YANG Data Models: For the list of Cisco IOS XE YANG models available with this release, navigate to: https://github.com/YangModels/yang/tree/master/vendor/cisco/xe/17101.

  (Network Advantage)

• App-Hosting: ERSPAN Capabilities on AppGigabitEthernet Port: To mirror data traffic, the spanning traffic and captured traffic is transported to the IOx virtual application through the AppGigabitEthenet port. This ensures that the ERSPAN destination is reachable through the AppGigabitEthernet interface.

  (Network Advantage)

PTPv2 with Cisco StackWise Virtual

Introduces support for PTPv2 with Cisco StackWise Virtual.

(Network Advantage)

RADIUS Automated Testing Probe-on

The command automate-tester probe-on was introduced. It starts a dead timer and packets are sent to the external RADIUS server after the timer expires.

Reflexive Access Lists (IPv4)

Reflexive access lists allow IP packets to be filtered based on upper-layer session information.

(Network Advantage)

Secure Data Wipe

Introduces support for performing factory reset by using the keyword all secure in the factory-reset command. This option performs data sanitisation and securely resets the device.

(Network Essentials and Network Advantage)

SHA256 based Password-masking support

You can use the masked-secret keyword on the enable algorithm type command and username command. The keyword masks the secret input and converts to the selected encryption.

(Network Essentials and Network Advantage)

Standalone Mode on Layer 3 EtherChannels

Introduces support for configuring standalone mode/independent mode on Layer 3 EtherChannels.

There are no new WebUI features in this release.