Contents
The Release Note document applies to the following software version for the Cisco Wide Area Application Services (Cisco WAAS) software. It describes what is new or changed in this release, instructions to upgrade to this release, and provides information about the open and resolved caveats for this release:
-
6.4.5e
-
6.4.5d
-
6.4.5c
-
6.4.5b
-
6.4.5a
-
6.4.5
This Release Note contains the following sections:
-
Upgrading from an Earlier Cisco WAAS Version to Cisco WAAS Version 6.4.5x
-
Downgrading from Cisco WAAS Version 6.4.5x to an Earlier Version
For information on Cisco WAN optimization, including Cisco WAAS and Cisco SD-WAN, see https://www.cisco.com/c/en/us/products/routers/wan-optimization/index.html.
Cisco WAAS Software Version 6.4.5x New and Changed Features
This section contains the following topics:
Cisco Software Version 6.4.5e New and Changed Features
There are no new software features available in WAAS software version 6.4.5e.
Cisco Software Version 6.4.5d New and Changed Features
There are no new software features available in WAAS software version 6.4.5d.
Cisco Software Version 6.4.5c New and Changed Features
The following features are newly available in WAAS software version 6.4.5c.
-
Starting from WAAS software version 6.4.5c, the WAAS Central Manager provides support to differentiate between branch and data center devices by introducing a Custom AV Pair field in the TACACS+ server configuration. Values entered here help the ISE server recognize that the request is from the respective WAAS device (for e.g. Branch or DC) so that the ISE server rules can be applied accordingly to provide authorization privileges.
-
Support for VMware ESXi 7.0 : Cisco vWAAS in Cisco WAAS Version 6.4.5c and later supports VMware ESXi 7.0 with HTML5.
Cisco Software Version 6.4.5b New and Changed Features
The following features are newly available in WAAS software version 6.4.5b.
-
Support for new Cisco Catalyst 8300 Series Edge Platforms and Cisco Catalyst 8500 Series Edge Platforms in WAAS Central Manager for WAAS AppNav-XE Cluster and AppNav-SDWAN cluster deployments.
-
Support for Cisco Catalyst 8000V platform : WAAS software release 6.4.5b supports the integration of on-demand WAAN optimization and application services using the Cisco Catalyst 8000V device. The platform acts as a control point for networking services by redirecting traffic to the Cisco Virtual Wide Area Application Services (vWAAS) appliances deployed in the cloud.
-
WAAS Central Manager support for Disk Encryption at Device Group Level and view status : You can now enable Disk Encryption for Device Groups from the WAAS Central Manager and view reload status on All Devices page.
-
WAAS Central Manager support for NFVIS shutdown for particular devices : You can now shutdown NFVIS for CSP and ENCS devices from the WAAS Central Manager.
-
Smart Licensing screen enhancements on the WAAS Central Manager : Based on device's software version, HTTPs support and certificate details for securely communicating with the Smart Software Satellite portal is available. If the device is running software version 6.4.5b or later, support for a secure https communciation is available. Devices running software version lesser than 6.4.5b, can communicate with the portal using only the http option.
Cisco Software Version 6.4.5a New and Changed Features
The following feature is newly available in WAAS software version 6.4.5a.
-
Cisco WAAS Central Manager Failover and Recovery: If your primary Cisco WAAS Central Manager becomes inoperable, a standby Central Manager automatically continues connectivity with Cisco vManage.
Cisco Software Version 6.4.5 New and Changed Features
The following features are newly available in WAAS software version 6.4.5.
-
Flow sync of passthrough sessions for AppNav-XE connections: Configuration support to disable passthrough flow synchronization to other AppNav-XE devices in a cluster has been provided in this release.
-
Cisco WAAS Central Manager support for revocation and reimport of certificates for vManage Registration.
-
Cisco WAAS Central Manager support for latest vManage Template status: This template is pushed from vManage to the SDWAN device, whenever a SDWAN AppNav cluster is created, configured or deleted.
Cisco WAAS Software Version 6.4.5x Filenames
This section contains the following topics:
Cisco WAAS Standard Image Files
Cisco WAAS Software Version 6.4.5x includes the following standard primary software image files for use on Cisco WAAS appliances and modules:
-
Cisco_NFVIS_4.1.7-FC1_WAAS-APPLIANCE-6.4.5e-b21.iso: Unified Cisco WAAS image package for the ENCS-W-5400 Platform and CSP-W-5000 Platform devices.
-
waas-universal-6.4.5x.x-k9.tar: Universal software image that includes Cisco WAAS Central Manager and Application Accelerator functionality. You can use this software file to upgrade a device operating in any device mode.
-
waas-accelerator-6.4.5x.x-k9.tar: Application Accelerator software image that includes only the Application Accelerator functionality. You can use this software file to upgrade only an Application Accelerator device. This software image file is significantly smaller than the Universal image. The kdump analysis functionality is not included in the Accelerator-only image.
The following additional files are also included:
-
waas-rescue-cdrom-6.4.5x.x-k9.tar: Cisco WAAS software recovery CD image.
-
waas-6.4.5x.x-k9.sysimg.tar: Flash memory recovery image for 64-bit platforms (WAVE-294/594/694/7541/7571/8541).
-
waas-kdump-addon-6.4.5x.x-k9.bin: The kdump analysis component that you can install and use with the Application Accelerator software image. The kdump analysis component is intended for troubleshooting specific issues and should be installed following instructions provided by Cisco Technical Assistance Center (TAC).
-
waas-alarm-error-books-6.4.5x.x.zip: Contains the alarm and error message documentation.
No Payload Encryption Image Files
Cisco WAAS Software Version 6.4.5x includes No Payload Encryption (NPE) primary software image files that have the Disk Encryption feature disabled. These images are suitable for use in countries where Disk Encryption is not permitted. NPE primary software image files include the following:
-
Cisco_NFVIS_4.1.7-FC1_WAASNPE-APPLIANCE-6.4.5e-b21.iso: Unified Cisco WAAS image package for the ENCS-W-5400 Platform and CSP-W-5000 Platform devices.
-
waas-universal-6.4.5.x-npe-k9.tar: Universal NPE software image that includes the Cisco WAAS Central Manager and Application Accelerator functionalites. You can use this software file to upgrade a device operating in any device mode.
-
waas-accelerator-6.4.5.x-npe-k9.tar: Application Accelerator NPE software image that includes only Application Accelerator functionality. You can use this type of software file to upgrade only an Application Accelerator device. This software image file is significantly smaller than the Universal image. The kdump analysis functionality is not included in the Accelerator-only image.
The following additional files are also included:
-
waas-rescue-cdrom-6.4.5.x-npe-k9.tar: Cisco WAAS NPE software recovery CD image.
-
waas-6.4.5.x-npe-k9.sysimg.tar: Flash memory NPE recovery image for 32-bit platforms (all other devices).
Cisco vWAAS Unified OVA Package Formats by Hypervisor
Each unified OVA package file provides an option to choose a Cisco vWAAS or Cisco vCM model and other required parameters to launch Cisco vWAAS or Cisco vCM in Cisco WAAS in the required configuration.
The following table shows the unified OVA filename formats supported for hypervisors, appliances, Cisco vWAAS models, and Cisco vCM models.
Note |
On VMware ESXi, the OVA deployment for Cisco WAAS Version 6.4.5x must be done only through VMware vCenter. For more information on deployment, see the Cisco Virtual Wide Area Application Services Installation and Configuration Guide. |
For a complete listing of NPE and non-NPE OVA files for Cisco vWAAS or Cisco vCM by hypervisor, see the Cisco Wide Area Application Services (WAAS) Download Software page and select the Cisco WAAS software version for your Cisco vWAAS instance.
Cisco Unified OVA Filename Format |
Supported Cisco vWAAS Models |
Supported Cisco vCM Models |
---|---|---|
Hypervisor: VMware ESXi |
||
Cisco WAAS Version 6.4.5e
Cisco WAAS Version 6.4.5d
Cisco WAAS Version 6.4.5c
Cisco WAAS Version 6.4.5b
Cisco WAAS Version 6.4.5a
Cisco WAAS Version 6.4.5
|
|
|
Hypervisor: Microsoft Hyper-V |
||
Cisco WAAS Version 6.4.5e
Cisco WAAS Version 6.4.5d
Cisco WAAS Version 6.4.5c
Cisco WAAS Version 6.4.5b
Cisco WAAS Version 6.4.5a
Cisco WAAS Version 6.4.5
|
|
|
Hypervisor: KVM CentOS |
||
Cisco WAAS Version 6.4.5e
Cisco WAAS Version 6.4.5d
Cisco WAAS Version 6.4.5c
Cisco WAAS Version 6.4.5b
Cisco WAAS Version 6.4.5a
Cisco WAAS Version 6.4.5
|
|
|
Hypervisor: Cisco NFVIS vBranch |
||
Cisco WAAS Version 6.4.5e
Cisco WAAS Version 6.4.5d
Cisco WAAS Version 6.4.5c
Cisco WAAS Version 6.4.5b
Cisco WAAS Version 6.4.5a
Cisco WAAS Version 6.4.5
|
|
|
Hypervisor: Cisco ISR-WAAS |
||
Cisco WAAS 6.4.5e
Cisco WAAS 6.4.5d
Cisco WAAS 6.4.5c
Cisco WAAS 6.4.5b
Cisco WAAS 6.4.5a
Cisco WAAS 6.4.5
|
|
|
Appliance: Cisco ENCS 5400-W |
||
Cisco WAAS Version 6.4.5e
Cisco WAAS Version 6.4.5d
Cisco WAAS Version 6.4.5c
Cisco WAAS Version 6.4.5b
Cisco WAAS Version 6.4.5a
Cisco WAAS Version 6.4.5
|
|
|
Appliance: CSP 5000-W |
||
Cisco WAAS Version 6.4.5e
Cisco WAAS Version 6.4.5d
Cisco WAAS Version 6.4.5c
Cisco WAAS Version 6.4.5b
Cisco WAAS Version 6.4.5a
Cisco WAAS Version 6.4.5
|
|
|
Note |
On VMware ESXi, the OVA deployment for Cisco WAAS Version 6.4.5 and later must be done only through VMware vCenter. For more information on deployment, see Cisco Virtual Wide Area Application Services Installation and Configuration Guide. |
For a listing of hypervisor-wise NPE and non-NPE OVA files for Cisco vWAAS or Cisco vCM, see the Cisco Wide Area Application Services (WAAS) Download Software Page and select the WAAS software version for your Cisco vWAAS instance.
Interoperability and Support
This section contains the following topics:
Hardware, Client, and Web Browser Support
This section contains the following topics:
Platforms Supported by WAAS
The Cisco WAAS software operates on these hardware platforms:
-
ENCS-W-5406, ENCS-W-5408, ENCS-W-5412
-
CSP-W-5228, CSP-W-5436
-
WAVE-294, 594, 694, 7541, 7571, 8541
-
ISR-WAAS-200, 750, 1300, 2500
-
ISR-44xx Series Routers
You must deploy the Cisco WAAS Central Manager on a dedicated device.
Hypervisors Supported by Cisco vWAAS
The table shows the operating systems and supported hypervisors, hardware platforms, and Cisco vCM and vWAAS models.
Note |
You must deploy the Cisco WAAS Central Manager on a dedicated device. |
Operating System |
Hypervisor |
Recommended Cisco Hardware |
Supported Versions for Cisco vWAAS 6.4.5 |
Cisco vWAAS and Cisco vCM Models Supported |
---|---|---|---|---|
VMware |
ESXi 6.0 |
UCS-C or UCS-E Series |
ESXi 6.0 (U3h) (Build 9313334) vCenter 6.0.0 (Build 9154154) |
vWAAS-150 vWAAS- 200 vWAAS-750 vWAAS-1300 vWAAS-2500 vWAAS-6000 vWAAS-12000 vWAAS-50000 vWAAS-150000 vCM-100 vCM-500 vCM-1000 vCM-2000 |
ESXi 6.5 |
UCS-C or UCS-E Series |
ESXi 6.5 (U2) (Build 8294253) vCenter Version 6.5.0.20000 (Build 8307201) |
||
ESXi 6.7 |
UCS-C or UCS-E Series |
ESXi 6.7 (U1) (Build 10302608) vCenter Version 6.7.0.30000 (Build 13007145) |
||
ESXi 7.0 |
UCS-C or UCS-E Series |
ESXi, 7.0.1, (Build 16850804) 1 vCenter Server 7.0 update 1a (Build 7.0.1.00100) |
||
Microsoft Windows |
SCVMM |
UCS-C or or UCS-E Series |
Windows Server 2012R2 Standard - Microsoft System Center 2012 R2 - Version 3.2.7510.0 |
vWAAS-150 vWAAS-200 vWAAS-750 vWAAS-1300 vWAAS-2500 vWAAS-6000 vWAAS-12000 vWAAS-50000 vCM-100 vCM-500 vCM-1000 vCM-2000 |
Hyper-V |
UCS-C or UCS-E Series |
Windows Server 2012R2 Standard - Version 6.3 (Build 9600) |
||
Hyper-V |
UCS-C or UCS-E Series |
Windows Server 2016 Standard - Version 1607 (Build 14393.0) |
||
RHEL Linux |
KVM |
UCS-C or UCS-E Series |
Red Hat Enterprise Linux (RHEL) Server 7.1 RHEL Server 7.5 RHEL Server 7.6 |
vWAAS-150 vWAAS-200 vWAAS-750 vWAAS-1300 vWAAS-2500 vWAAS-6000 vWAAS-12000 vWAAS-50000 vCM-100 vCM-500 vCM-1000 vCM-2000 |
CentOS Linux |
KVM |
UCS-C or UCS-E Series |
CentOS Linux 7.2.1511 (Core) CentOS Linux 7.5.1804 (Core) CentOS Linux 7.6.1810 (Core) |
|
SUSE Linux |
KVM |
UCS-C or UCS-E Series |
SUSE Linux Enterprise Server-12-SP3 |
|
NFVIS |
- |
ENCS-W-5400 Series |
NFVIS 3.7.1 and later |
vWAAS 200, 750, 1300, 2500, 6000-R |
ISR-WAAS |
- |
ISR-44xx Series |
IOS-XE 16.x and later |
vWAAS 200, 750, 1300, 2500, |
Azure (Standard/ Premium) |
Hyper-V |
Microsoft Azure Cloud |
–- |
vWAAS models that are supported on Microsoft Hyper-V: vWAAS-200, 750, 1300, 2500, 6000, 12000 |
OpenStack (CentOS) |
KVM |
UCS-C Series |
--- |
vWAAS models that are supported on KVM on CentOS: vWAAS-150 vWAAS- 200 vWAAS-750 vWAAS-1300 vWAAS-2500 vWAAS-6000 vWAAS-12000 vWAAS-50000 |
Note |
VMware vCenter Server version 6.7 (build) 15129938 or later version supports HTML mode of deployment for vWAAS OVAs. |
For more information, see Cisco Virtual Wide Area Application Services Installation and Configuration Guide.
Browsers Supported by WAAS
The Cisco WAAS Central Manager GUI requires Internet Explorer Version 11, Windows Version 7 or later, Firefox Version 4 or later, Chrome Version 10 or later, or Safari version 5.x (only on Apple OS X) and the Adobe Flash Player browser plug-in.
Note |
For best results for Windows-based systems with WAAS, we recommend using FireFox as your browser. |
- For WAAS version 5.4.1 and later, you are no longer prompted to install the Google Frame plug-in when you access the Central Manager GUI using Internet Explorer. However, if Google Frame plug-in has already been installed earlier, IE will continue using it.
- When using Internet Explorer, ensure that the Tools > Internet Options > Advanced tab > Do not save encrypted pages to disk check box (under Security) is checked. If this box is unchecked, some charts will not display.
Note |
A known issue in Chrome Version 44.0 may prevent some WAAS Central Manager pages—including Device Listing, Reports, Software Update pages—from loading properly. In all other Chrome versions, earlier and later than Chrome Version 44.0, all WAAS Central Manager pages work as expected. |
Cisco WAAS Version Interoperability
Consider the following guidelines when operating a Cisco WAAS network that combines Cisco WAAS Version 6.4.5x devices with devices running earlier Cisco WAAS versions:
- Cisco WAAS Central Manager interoperability:
In a mixed version Cisco WAAS network, the Cisco WAAS Central Manager must be running the highest version of the Cisco WAAS software, and associated Cisco WAAS devices must be running Cisco WAAS Version 5.1.x or later.
- Cisco WAAS system interoperability with earlier Cisco WAAS versions:
You cannot run Cisco WAAS Version 6.4.5x in a Cisco WAAS network in which any Cisco WAAS device is running a software version earlier than Version 5.1.x. For upgrade information, see the section Upgrading from an Earlier Cisco WAAS Version to Cisco WAAS Version 6.4.5x.
Cisco WAAS and Cisco vWAAS Interoperability
This section contains the following topics:
Cisco ISR-WAAS Models and Supported Cisco ISR Platforms
The following table shows the Cisco ISR-WAAS model profiles, the Cisco ISR platforms supported, and the earliest Cisco WAAS version supported.
Cisco ISR Model Profiles |
CPUs |
Memory |
Disk Storage |
Cisco ISR Platform Supported |
Earliest Cisco WAAS Version Supported |
---|---|---|---|---|---|
ISR-WAAS-200 |
1 |
3 GB |
151 GB |
ISR-4321 |
6.2.3x |
1 |
4 GB |
151 GB |
ISR-4321 |
6.2.3x |
|
ISR-WAAS-750 |
2 |
4 GB |
151 GB |
ISR-4351, ISR-4331, ISR-4431, ISR-4451 |
6.2.3x |
4 |
6 GB |
151 GB |
ISR-4351, ISR-4331, ISR-4431, ISR-4451, ISR-4461 |
6.4.1b |
|
ISR-WAAS-1300 |
4 |
6 GB |
151 GB |
ISR-4431, ISR-4451 |
6.2.3x |
4 |
6 GB |
151 GB |
ISR-4431, ISR-4451, ISR-4461 |
6.4.1b |
|
ISR-WAAS-2500 |
6 |
8 GB |
338 GB |
ISR-4451 |
6.2.3x |
6 |
8 GB |
338 GB |
ISR-4451, ISR-4461 |
6.4.1b |
Operating Guidelines for Cisco ISR-WAAS:
-
For Cisco vWAAS in Cisco WAAS Version 6.2.3c or later, for Cisco ISR-4321 with profile ISR-WAAS-200, the ISR-WAAS RAM is increased from 3 GB to 4 GB.
For this increase in ISR-WAAS RAM to be implemented, you must complete a new OVA deployment of Cisco WAAS Version 6.2.3c or later. The increase in ISR-WAAS RAM is not automatically implemented with an upgrade to Cisco WAAS Version 6.2.3c or later.
-
For ISR-WAAS-200 in ISR-4321 with Cisco IOS-XE 16.x, 4 GB of memory is mandatory.
-
For ISR-WAAS-200 in ISR-4321 with Cisco IOS-XE 3.x, 3 GB of memory is recommended; 4 GB of memory is optional.
-
Cisco vWAAS Resizing in Cisco WAAS Version 6.4.1 and Later
Cisco vWAAS in Cisco WAAS Version 6.4.1 and later requires additional resources. Therefore, we highly recommend that you resize CPU and memory resources, as shown in the following table. Resizing Cisco vWAAS on the recommended platforms enables Cisco vWAAS to scale to optimized TCP connections for the associated device, and to optimize CPU and RAM utilization.
Note |
|
Cisco vWAAS Model |
Old CPU |
Resized CPU |
Tested CPU Clock Speed |
Old Memory |
Resized Memory |
Disk Storage |
Minimum Recommended Cisco Platform |
---|---|---|---|---|---|---|---|
vWAAS-150 |
1 CPU |
2 CPUs |
1.7 GHz |
3 GB |
4 GB |
160 GB |
UCS-E140N-M2 |
vWAAS-200 |
1 CPU |
2 CPUs |
1.8 GHz |
3 GB |
4 GB |
260 GB |
UCS-E140S-M2 |
vWAAS-750 |
2 CPUs |
4 CPUs |
1.8 GHz |
4 GB |
8 GB |
500 GB |
UCS-E140S-M2 |
vWAAS-1300 |
2 CPUs |
4 CPUs |
1.9 GHz |
6 GB |
12 GB |
600 GB |
UCS-E160S-M3 |
vWAAS-2500 |
4 CPUs |
6 CPUs |
1.9 GHz |
8 GB |
16 GB |
750 GB |
UCS-E160S-M3 |
vWAAS-6000 |
4 CPUs |
8 CPUs |
2.0 GHz |
11 GB |
24 GB |
900 GB |
UCS-E180D-M3 |
vWAAS-6000-R |
4 CPUs |
8 CPUs |
2.0 GHz |
11 GB |
24 GB |
875 GB |
UCS-E180D-M3 |
vWAAS-12000 |
4 CPUs |
12 CPUs |
2.6 GHz |
12 GB |
48 GB |
750 GB |
UCS-C220 or UCS-C240 |
vWAAS-50000 |
8 CPUs |
16 CPUs |
2.6 GHz |
48 GB |
72 GB |
1500 GB |
UCS-C220 or UCS-C240 |
vWAAS-150000 |
24 CPUs |
N/A |
3.0 GHz |
96 GB |
N/A |
2999 GB |
UCS-C220 or UCS-C240 |
Guidelines for Using Cisco vWAAS with Cisco WAAS
This section describes operating guidelines and upgrade and downgrade guidelines for Cisco vWAAS in Cisco WAAS:
Consider the following operating guidelines for Cisco vWAAS in Cisco WAAS:
Note |
Before installing new Cisco vWAAS instances along with existing Cisco vWAAS instance in any host, ensure that there is sufficient CPU, Memory, and Storage for all the instances planned. |
-
For Cisco vWAAS in Microsoft Azure, the supported traffic interception method is policy-based routing (PBR). Cisco vWAAS in Microsoft Azure does not support WCCP or AppNav interception methods.
-
For Cisco vWAAS in Cisco WAAS Version 6.1.x and later, the Cisco vWAAS and Cisco vCM devices require both virtual (network) interfaces to be present, but both need not be active.
-
The virtual interface 1/0 of Cisco vWAAS will come up in the No Shutdown state and will send a DHCP request for an IP address request from DHCP server.
-
Virtual interface 2/0 will be in the Shutdown state and can be configured as required. In the case of Cisco vCM, by default, both the virtual interfaces will come up in the Shutdown state.
For more information, see the Cisco vWAAS Configuration Guide.
-
Consider the following upgrade and downgrade guidelines for Cisco vWAAS in Cisco WAAS:
Note |
When upgrading Cisco vWAAS, upgrade one Cisco vWAAS node at a time in any Cisco UCS device. Considering the resized options selection, ensure that there is enough available disk space before and after the upgrade. Upgrades done without sufficient space makes the Cisco vWAAS device go offline and in diskless mode. |
-
To ensure reliable throughput with the vWAAS on Windows Server 2012 R2 Hyper-V in Cisco UCS-E Series 160S-M3 configuration, we recommend that you do the following:
-
Upgrade to the latest Cisco UCS-E firmware, which is available on the Cisco Download Software Page for UCS E-Series Software, for UCS E160S M3 Software.
-
Verify that you have installed the critical Windows server updates, which are available on the Microsoft Windows RT 8.1, Windows 8.1, and Windows Server 2012 R2 Update Rollup page. You can also obtain the standalone update package through the Microsoft Download Center by searching for KB2887595.
-
-
If the virtual host was created using an OVA file of Cisco vWAAS in Cisco WAAS Version 5.0 or earlier, and you have upgraded Cisco vWAAS within Cisco WAAS, you must verify that the SCSI Controller Type is set to VMware Paravirtual. Otherwise, Cisco vWAAS will boot with no disk available and will fail to load the specified configuration.
If needed, change the SCSI controller type to VMware Paravirtual by following these steps:
-
Power down the Cisco vWAAS.
-
From the VMware vCenter, choose vSphere Client > Edit Settings > Hardware.
-
Choose SCSI controller 0.
-
From the Change Type drop-down list, verify that the SCSI Controller Type is set to VMware Paravirtual. If this is not the case, choose VMware Paravirtual.
-
Click OK.
-
Power up the Cisco vWAAS, in Cisco WAAS Version 6.1.x or later.
For more information on setting the SCSI Controller Type and on the Cisco vWAAS VM installation procedure, see the Cisco vWAAS Configuration Guide.
-
Note |
If the Cisco vWAAS device is downgraded in either of the following scenarios, the Cisco WAAS alarm filesystem_size_mismatch is displayed. It indicates that the partition was not created as expected. To clear the alarm, run the disk delete-data-partitions command to re-create the DRE partitions.
|
Cisco WAAS, Cisco ISR, and Cisco IOS-XE Interoperability
The following table shows Cisco WAAS ISR platforms, and the Cisco WAAS and Cisco IOS-XE versions supported.
Cisco ISR Platform |
Cisco WAAS Version Supported |
Cisco IOS-XE Version Supported |
---|---|---|
ISR-4461, ISR-4451, ISR-4431, ISR-4351, ISR-4331, ISR-4321 |
6.4.5e |
17.3.6, 17.6.3, 17.8.01a, 17.9.2 |
ISR-4461, ISR-4451, ISR-4431, ISR-4351, ISR-4331, ISR-4321 |
6.4.5d |
16.12.6, 17.6.1a, 17.6.2, 17.8.1 |
ISR-4461, ISR-4451, ISR-4431, ISR-4351, ISR-4331, ISR-4321 |
6.4.5c |
16.9.7, 16.12.6, 17.3.3, 17.3.4*, 17.3.4a |
ISR-4461, ISR-4451, ISR-4431, ISR-4351, ISR-4331, ISR-4321 |
6.4.5b |
16.9.7, 16.12.5 *, 17.3.2a, 17.3.3 |
ISR-4461, ISR-4451, ISR-4431, ISR-4351, ISR-4331, ISR-4321 |
6.4.5a |
16.9.5*, 16.12.4, 17.2.1, 17.3.1a |
ISR-4461, ISR-4451, ISR-4431, ISR-4351, ISR-4331, ISR-4321 |
6.4.5 |
16.9.5, 16.12.2, 16.12.3, 17.1.1, 17.2.1 |
* Suggested version.
Note |
Engineering Special (ES) image for WAAS 6.4.5e software version now supports the ISR-WAAS 17.6 and 17.9 release. Contact TAC for details on the ES image. |
Operating Guidelines for Cisco WAAS, ISR and IOS-XE Interoperability
Consider the following guidelines for Cisco WAAS, Cisco ISR, and Cisco IOS-XE interoperability:
-
Cisco ISR-4321-B/K9 is not supported for Cisco ISR-WAAS installation.
-
Cisco IOS-XE 3.14 should not be used for Cisco ISR-WAAS.
-
Activating Cisco ISR-WAAS after formatting the Cisco 4000 Series Cisco ISR-router bootflash:
After you format the Cisco 4000 Series ISR-router bootflash, you must reload the router to ensure a successful activation of Cisco ISR-WAAS. If you do not reload the Cisco ISR router after formatting the bootflash, you will be unable to activate Cisco ISR-WAAS. For more information on formatting the Cisco 4000 Series ISR router bootflash, see the Configuration Guide for Integrated AppNav/AppNav-XE and ISR-WAAS on Cisco 4000 Series ISRs.
-
Using the intrusion detection and prevention system Snort with Cisco ISR-WAAS and Cisco ISR-4000 Series, with a hard disk that is less than or equal to 200 GB:
To ensure successful installation of Cisco ISR-WAAS and Snort on a Cisco ISR router, you must install Cisco ISR-WAAS before you install Snort. If you do not follow this installation order, Cisco ISR-WAAS will not get installed and a disk error will be displayed.
-
VRF restriction for VirtualPortGroup31 on Cisco ISR-WAAS:
When you configure Cisco ISR-WAAS with EZConfig VirtualPortGroup31, the Cisco WAAS service and router interface, is automatically created, and you can then add or modify specific parameters for it.
Note
Do not add Virtual Routing and Forwarding (VRF) to VirtualPortGroup31. VRF will cause VirtualPortGroup31 to lose its IP address and will disable AppNav. To re-establish these, you must uninstall and reinstall Cisco ISR-WAAS without VRF.
For more information on VirtualPortGroup31, see the Configuration Guide for Integrated AppNav/AppNav-XE and ISR-WAAS on Cisco 4000 Series ISRs.
-
We recommend you vManage Version 20.1 for SDWAN Appnav deployments.
Cisco AppNav and Cisco AppNav-XE Interoperability
Consider the following guidelines when deploying the Cisco AppNav solution, for AppNav and AppNav-XE.
Note |
AppNav Controller functionality is available for Cisco WAAS Version 6.4.1 and later. However, configuration of the AppNav Controller function and Cisco WAAS node function on the same device is not supported. |
-
All Cisco WAAS nodes in an AppNav deployment must be running Cisco WAAS version 5.0 or later.
-
Cisco WAAS Version 6.4.1 and later ensure porting of AppNav to the Cisco WAASNet infrastructure.
-
Cisco WAAS Version 6.4.1 and later supports Cisco AppNav IOM.
-
All Cisco AppNav devices in a single cluster must be of the same exact type. This includes Cisco IOS-XE devices, down to memory and ESP configuration.
-
All Cisco ASRs (Aggregation Services Routers) in an AppNav Controller Group need to be the same model, with the same ESP (Embedded Services Processor) rate (in Gbps). For example, in an AppNav Controller Group, you cannot have one ASR-1006 40-Gbps ESP and one ASR-1006 100-Gbps ESP.
-
The same principle is true for using the Cisco Cloud Services Router (Cisco CSR) 1000V Series or the Cisco Integrated Services Router (Cisco ISR) 4000 series. For example, you cannot have a Cisco ISR-4451 and a Cisco ISR-4321 in the same AppNav-XE cluster.
-
-
If you are connecting an AppNav Controller (ANC) to a Cisco Catalyst 6500 series switch and you have configured the ANC to use the Web Cache Communication Protocol (WCCP) with the L2 redirect method, do not deploy the ANC on the same subnet as the client computers. This configuration can cause packet loss due to a limitation of the Cisco Catalyst 6500 series switch.
-
If you have configured NBAR protocols and nested class maps on an AppNav-XE cluster (AppNav- XE device running software version Cisco IOS-XE version 16.10 and later) and want to downgrade the AppNav-XE device to a lower version, we recommend that you remove the NBAR protocol and nested class map configurations from the Cisco WAAS Central Manager AppNav-XE cluster first, otherwise the AppNav-XE cluster gets into the Force Device Group settings mode.
-
If you have configured PaasThrough Flow synchronization on an AppNav XE Cluster (AppNavXE device running software version Cisco IOS-XE version 17.2 and later) and want to downgrade the AppNav-XE device to a non-supported version, we recommend that you disable PT Flow synch from the Cisco WAAS Central Manager AppNav-XE cluster first. Otherwise the AppNav-XE cluster gets into the Force Device Group settings mode.
-
If vManage or SDWAN devices are registered with WCM and SDWAN clusters are configured in Cisco WAAS Central Manager in Cisco WAAS Version 6.4.5x, we recommend that you delete the SDWAN AppNav Cluster, de-register the SDWAN device and de-register vManage from the Cisco WAAS Central Manager before downgrading it to a version earlier than Cisco WAAS Version 645.
Note |
Although a Cisco IOS router can have a dot (".") in the hostname, this special character is not allowed in a Cisco WAAS device hostname. If you try to import an AppNav-XE device that has a dot in the hostname, the import will fail and the following error message is displayed:
|
Cisco WAAS, Cisco ASR and Cisco CSR, and Cisco IOS-XE Interoperability
The following table shows Cisco WAAS versions and the Cisco ASR and Cisco CSR Series, and the Cisco IOS-XE versions supported.
Cisco WAAS Version |
Cisco ASR and Cisco CSR |
Cisco IOS-XE Version Supported |
---|---|---|
6.4.5e |
ASR-1000x and CSR-1000V |
17.3.6, 17.6.3, 17.8.01a, 17.9.2 |
6.4.5d |
ASR-1000x and CSR-1000V |
16.12.6, 17.6.1a, 17.6.2, 17.8.1 |
6.4.5c |
ASR-1000x and CSR-1000V |
16.9.7, 16.12.6, 17.3.3, 17.3.4, 17.4.2, 17.5.1a, 17.6.1 |
6.4.5b |
ASR-1000x and CSR-1000V |
16.6.9, 16.9.7, 16.12.5, 17.3.2a, 17.3.3, 17.4.1, 17.5.1 |
6.4.5a |
ASR-1000x and CSR-1000V |
16.6.8, 16.9.5, 16.12.4, 17.2.1,17.3.1a |
6.4.5 |
ASR-1000x and CSR-1000V |
16.6.7, 16.9.5, 16.12.2, 16.12.3, 17.1.0., 17.2.1, |
6.4.3d |
ASR-1000x and CSR-1000V |
16.6.7, 16.9.4, 17.1.1, 16.12.2, 16.3.9 |
6.4.3c |
ASR-1000x and CSR-1000V |
16.3.8, 16.6.6, 16.9.3, 16.11.1, 16.11.2 |
6.4.3b |
ASR-1000x and CSR-1000V |
16.3.8, 16.6.5, 16.6.6, 16.9.3, 16.11.1 |
6.4.3a, 6.4.3 |
ASR-1000x and CSR-1000V |
16.3.6, 16.3.7, 16.6.3, 16.6.4, 16.5.2, 16.8.1, 16.3.5, 16.6.2, 16.9.1, 16.9.2, 16.9.3 3.16.4a, 3.16.7b |
6.4.1x |
ASR-1000x and CSR-1000V |
16.4.1, 16.3.3, 16.4.2, 16.3.5, 16.6.1, 16.6.2, 16.7.1 3.13.8, 3.16.6, 3.17.4 |
6.2.3 |
ASR-1000x and CSR-1000V |
16.3.4, 16.3.5, 16.4.2, 16.5.1, 16.5.2, 16.6.1, 16.7.1 3.13.8,3.15.2, 3.16.1a, 3.16.2, 3.16.3, 3.16.6, 3.17, 3.17.3, 3.17.4 |
6.2.1x, 6.1.1a |
ASR-1000x and CSR-1000V |
3.15.2, 3.16.1a, 3.16.2, 3.17 |
5.5.7x |
ASR-1000x and CSR-1000V |
3.12 to 3.17 |
5.5.5x |
ASR-1000x and CSR-1000V |
3.13 to 3.17 |
5.5.3 |
ASR-1000x and CSR-1000V |
3.13 to 3.16 |
5.5.1 |
ASR-1000x and CSR-1000V |
3.13 to 3.15 |
5.4.x |
ASR-1000x and CSR-1000V |
3.13 |
5.3.5f |
ASR-1000x and CSR-1000V |
3.15.2, 3.16.1a, 3.16.2, 3.17 |
5.3.1, 5.3.3, 5.3.5a |
ASR-1000x and CSR-1000V |
3.9-3.12 |
5.2.1 |
ASR-1000x and CSR-1000V |
3.9 |
5.4.x |
ASR-1000x/CSR-1000V |
3.13 |
5.5.1 |
ASR-1000x/CSR-1000V |
3.13-3.15 |
5.5.3 |
ASR-1000x/CSR-1000V |
3.13-3.16 |
5.5.5x |
ASR-1000x/CSR-1000V |
3.13-3.17 |
5.5.7x |
ASR-1000x/CSR-1000V |
3.12-3.17 |
The following table shows Cisco WAAS versions, the Cisco Catalyst Edge Platforms, and the Cisco IOS-XE versions supported.
Cisco WAAS Version |
Cisco Catalyst Edge Platforms |
Cisco IOS-XE Version Supported |
---|---|---|
6.4.5e |
C8300, C8500 |
17.6.3, 17.7.0, 17.8.1, 17.9.1 |
6.4.5d |
C8300, C8500 |
17.6.3, 17.7.0, 17.8.1 |
6.4.5c |
C8300, C8500 |
17.6.1 |
6.4.5b |
C8300, C8500 |
17.5.1 |
Traffic Interception Interoperability
This section contains the following topics:
General Traffic Interception Interoperability
Cisco WAAS uses the following traffic interception methods: Web Cache Communications Protocol (WCCP), WCCP Version 2, AppNav, Inline, Policy-Based Routing (PBR) and ITD (advanced version of PBR) and Catena. For Cisco WAAS Version 5.5.1 and earlier, Cisco WAAS supports WCCP, AppNav, and vPATH.
Consider the following guidelines when configuring traffic interception for Cisco WAAS:
-
Cisco ISR-WAAS devices support only the AppNav Controller interception method. For more information on Cisco AppNav, see the see the Cisco AppNav and Cisco AppNav-XE Interoperability section.
-
For Cisco vWAAS in Microsoft Azure, the supported traffic interception method is PBR. Cisco vWAAS in Microsoft Azure does not support WCCP or AppNav interception methods.
-
Passthrough traffic does not benefit from optimization. For example, because SSH port 22 has minimal traffic volume, it does not benefit from optimizing TCP flows.
-
If you use Microsoft System Center Configuration Manager with Preboot Execution Environment (SCCM with PXE), we recommend the following configurations for the ports that carry SCCM/PXE traffic:
-
Port 80: Communicates with the distribution point. Configure for passthrough traffic.
-
Port 443: Communicates with the distribution point. Configure for passthrough traffic.
-
Port 445: Used for software package distribution data transfer. Configure for traffic optimization.
If these configurations are not present, the following error message is displayed:
PXE error code 80070056
-
For more information on traffic interception methods, see the chapter "Configuring Traffic Interception" of the Cisco Wide Area Application Services Configuration Guide.
WCCP Interception Interoperability
Before you begin
Cisco WAAS Central Managers running Cisco WAAS Version 6.4.5 and later can manage WAEs running Cisco WAAS Software Version 5.x and later. However, we recommend that all WAEs in a given WCCP service group be running the same version.
Note |
All the WAEs in a WCCP service group must have the same mask. |
SUMMARY STEPS
- You must disable WCCP redirection on the Cisco IOS router first. To remove the global WCCP configuration, run the following no ip wccp global configuration commands, one after the other:
- To perform the Cisco WAAS software upgrade on all WAEs, use the Cisco WAAS Central Manager GUI.
- If mask assignment is used for WCCP, ensure that all the WAEs in the service group are using the same WCCP mask value.
- Re-enable WCCP redirection on the Cisco IOS routers. To enable WCCP redirection, run the following ip wccp global configuration commands, one after the other:
DETAILED STEPS
Step 1 |
You must disable WCCP redirection on the Cisco IOS router first. To remove the global WCCP configuration, run the following no ip wccp global configuration commands, one after the other:
|
Step 2 |
To perform the Cisco WAAS software upgrade on all WAEs, use the Cisco WAAS Central Manager GUI.
|
Step 3 |
If mask assignment is used for WCCP, ensure that all the WAEs in the service group are using the same WCCP mask value. |
Step 4 |
Re-enable WCCP redirection on the Cisco IOS routers. To enable WCCP redirection, run the following ip wccp global configuration commands, one after the other:
|
NTLM Interoperability
This section contains the following procedures:
NTLM and Kerberos Authentication Protocols
Before you begin
Cisco WAAS Version 5.1 and later do not support Windows domain login authentication using the NTLM protocol; Cisco WAAS Version 5.1 and later support Windows domain login authentication using the Kerberos protocol
Upgrading from a Cisco WAAS version earlier than Version 5.1 with the device configured with Windows domain login authentication using the NTLM protocol is blocked. For Cisco WAAS Version 5.1 and later, change the Windows domain authentication configuration to use the Kerberos protocol before proceeding with the upgrade.
SUMMARY STEPS
- Unconfigure Windows domain login authentication. To do this, from the Cisco WAAS Central Manager home page, choose the Configure > Security > AAA > Authentication Methods.
- Change the Windows domain configuration setting to use the Kerberos protocol. To do this, from the Cisco WAAS Central Manager home page, choose Configure > Security > Windows Domain > Domain Settings.
- Perform the Windows domain join again from the Cisco WAAS Central manager GUI by choosing Configure > Security > Windows Domain > Domain Settings.
- Configure Windows domain login authentication from the Cisco WAAS Central manager GUI by choosing Configure > Security > AAA > Authentication Methods.
- Upgrade your device.
DETAILED STEPS
Step 1 |
Unconfigure Windows domain login authentication. To do this, from the Cisco WAAS Central Manager home page, choose the Configure > Security > AAA > Authentication Methods. |
||
Step 2 |
Change the Windows domain configuration setting to use the Kerberos protocol. To do this, from the Cisco WAAS Central Manager home page, choose Configure > Security > Windows Domain > Domain Settings. For more information, see the section "Configuring Windows Domain Server Authentication Settings" in the chapter "Configuring Administrative Login Authentication, Authorization, and Accounting" chapter of the Cisco Wide Area Application Services Configuration Guide. |
||
Step 3 |
Perform the Windows domain join again from the Cisco WAAS Central manager GUI by choosing Configure > Security > Windows Domain > Domain Settings. |
||
Step 4 |
Configure Windows domain login authentication from the Cisco WAAS Central manager GUI by choosing Configure > Security > AAA > Authentication Methods. |
||
Step 5 |
Upgrade your device. Consider the following guidelines for upgrading your device:
|
NTLM Interoperability and Kerberos Validation Script
Before you begin
If you try to upgrade your device from the Cisco WAAS CLI and the upgrade fails due to NTLM configuration, then the kerberos_validation.sh script is installed on your device. This script can be used to verify that your network supports the Kerberos protocol before changing from NTLM to Kerberos. This script is not available if you are using the Cisco WAAS Central Manager to upgrade the device.
SUMMARY STEPS
- Run the Kerberos validation script command with the -help option:
- Run the Kerberos validation script to verify that your network supports the Kerberos protocol before migrating from NTLM to Kerberos:
- Change the device Windows domain login authentication from NTLM to Kerberos and upgrade your device, as described in the section NTLM and Kerberos Authentication Protocols.
DETAILED STEPS
Step 1 |
Run the Kerberos validation script command with the -help option:
|
Step 2 |
Run the Kerberos validation script to verify that your network supports the Kerberos protocol before migrating from NTLM to Kerberos:
|
Step 3 |
Change the device Windows domain login authentication from NTLM to Kerberos and upgrade your device, as described in the section NTLM and Kerberos Authentication Protocols. |
Citrix ICA Interoperability
Consider the following guidelines for Citrix ICA interoperability:
-
Citrix ICA Version 7.x (XenApp and XenDesktop) contains changes that affect the optimization efficiency of Cisco WAAS compared to that achieved with Citrix ICA Version 6.x. To maximize the effectiveness of WAAS, the Citrix administrator should configure the following:
-
Adaptive Display: Disabled
-
Legacy Graphic Mode: Enabled
-
-
Citrix NetScaler and HDX Insight versions used for test validation for Cisco WAAS Version 6.4.3x and earlier (interoperability for Citrix and Cisco WAAS are unchanged for Cisco WAAS Version 6.4.5x):
-
NetScaler VPX 12.1.51.19 (HDX insight 12.1.50.43), DDC 7.18 VDA 7.18 (Windows Server 2016), Windows Client 2007, 2010, Citrix Receiver 14.1,14.5,14.9,14.12.
-
XenApp & Desktop DDC 7.18, VDA 7.18 (Windows Server 2016), Windows Client 2007, 2010, Citrix Receiver 14.1,14.5,14.9,14.12.
-
XenApp & Desktop DDC 7.15.300LTSR, VDA 7.15.300LTSR (Windows Server 2016), Windows Client 2007, 2010, Citrix Receiver 14.1,14.5,14.9,14.12.
-
XenApp & Desktop DDC 7.6, VDA 7.6 (Windows Server 2012 R2), Windows Client 2007, 2010, Citrix Receiver 14.1,14.5,14.9,14.12.
-
XenApp & Desktop 6.5 (Windows server 2008 R2), Windows Client 2007, 2010, Citrix Receiver 14.1,14.5,14.9,14.12.
-
Cisco WAAS Application Accelerators Interoperability with Third-Party Load Balancers
A load balancer is used to balance network and application traffic across a set of servers, The resulting evenly-distributed traffic improves the response rate of network traffic, increases the availability of applications, and minimizes the risk of a single server becoming overloaded.
The following table shows the interoperability between Cisco WAAS application accelerators and the F5 load balancer. For more information about Cisco WAAS load balancing, see the sections "About Traffic Interception Methods" and "Configuring Policy-Based Routing" in the Cisco Wide Area Application Services Configuration Guide, and see the Server Load-Balancing Guide vA5(1.0), Cisco ACE Application Control Engine.
Cisco WAAS Status |
Load Balancer Status |
Authentication Method |
Cisco WAAS Application Accelerator Supported or Not Supported |
---|---|---|---|
WAAS enabled |
F5 enabled |
Kerberos |
|
WAAS disabled |
F5 enabled |
Kerberos |
|
WAAS enabled |
F5 enabled |
Kerberos |
|
WAAS enabled |
F5 enabled |
NTLM |
|
Cipher Support for SSL Acceleration
No new cipher support is available for SSL Acceleration (Legacy SSL Acceleration) other than those listed in the section "Configuring SSL Management Services" of the Cisco Wide Area Application Services Configuration Guide. For additional ciphers supported, see the supported cipher list for SMART-SSL Acceleration.
Upgrading from an Earlier Cisco WAAS Version to Cisco WAAS Version 6.4.5x
This section contains the following topics:
Guidelines for Upgrading from an Earlier Cisco WAAS Version to Cisco WAAS Version 6.4.5x
Upgrade Paths and Guidelines for Cisco WAAS Version 6.4.5x
Workflow: Upgrading from an Earlier Cisco WAAS Version to Cisco WAAS Version 6.4.5x
Migrating a Cisco WAAS Central Manager from an Unsupported Platform to a Supported Platform
Migrating a Physical Appliance Being Used as a Primary Cisco WAAS Central Manager to a Cisco vCM
Ensuring a Successful RAID Pair Rebuild
For additional upgrade information and detailed procedures, see the Cisco Wide Area Application Services Upgrade Guide.
Guidelines for Upgrading from an Earlier Cisco WAAS Version to Cisco WAAS Version 6.4.5x
Consider these guidelines to upgrade from an earlier Cisco WAAS version to Cisco WAAS Version 6.4.5:
-
Upgrading to Cisco WAAS Version 6.4.5 is supported from Cisco WAAS Version 4.2.1 and later. For information on upgrade paths, see the section Upgrade Paths and Guidelines for Cisco WAAS Version 6.4.5x.
-
To take advantage of new features and bug fixes, we recommend that you upgrade your entire deployment to the latest version. For an overview of the upgrade process, see the section Workflow: Upgrading from an Earlier Cisco WAAS Version to Cisco WAAS Version 6.4.5x.
Note |
When you perform a software upgrade through the Cisco WAAS Central Manager, there is only a limited system check to verify the support of the target Cisco WAAS version. To ensure that you have a successful Cisco WAAS upgrade, see the section Upgrade Paths and Guidelines for Cisco WAAS Version 6.4.5x to verify that the target version is supported for your system. Workflow: Upgrading from an Earlier Cisco WAAS Version to Cisco WAAS Version 6.4.5x |
Upgrade Support Matrix for Platforms
The following table provides recommendations for Cisco ENCS 5400-W, Cisco CSP 5000-W, and other platforms when you upgrade from an earlier Cisco WAAS version to Cisco WAAS 6.4.5a and later.
Earlier Cisco WAAS Version |
New Cisco WAAS Version |
Cisco ENCS 5400-W or Cisco CSP 5000-W |
Other Supported Platforms |
---|---|---|---|
6.4.3d and earlier |
6.4.5 |
Upgrade supported |
Upgrade supported |
6.4.3e and later |
6.4.5 |
Needs fresh installation |
Upgrade supported |
6.4.5a and later |
6.4.5 |
Needs fresh installation |
Downgrade supported |
6.4.5 |
6.4.5a and later |
Needs fresh installation |
Upgrade supported |
6.4.3d and earlier |
6.4.5a and later |
Needs fresh installation |
Upgrade supported |
6.4.3e and later |
6.4.5a and later |
Upgrade supported |
Upgrade supported |
Upgrade Paths and Guidelines for Cisco WAAS Version 6.4.5x
This section contains the following topics:
Upgrade Paths for Cisco WAAS Version 6.4.5x
Upgrading from Cisco WAAS Version 5.x and Later to Cisco WAAS Version 6.4.5x
Upgrading from Cisco WAAS Version 4.2.x to Cisco WAAS Version 6.4.5
Upgrade Paths for Cisco WAAS Version 6.4.5x
Upgrading to Cisco WAAS Version 6.4.5x is supported from WAAS Version 4.2.x and later. shows the upgrade path for each of these versions.
Note |
When you perform a software upgrade through the Cisco WAAS Central Manager, there is only a limited system check to verify the support of the target Cisco WAAS version. To ensure that you have a successful Cisco WAAS upgrade, use the following table to verify that the target version is supported for your system. |
Current Cisco WAAS Version |
Cisco WAAS Central Manager Upgrade Path |
Cisco WAAS Upgrade Path |
---|---|---|
5.5.3 and later |
|
|
4.3.x through 5.5.1 |
|
|
4.2.x |
|
|
Upgrading from Cisco WAAS Version 5.x and Later to Cisco WAAS Version 6.4.5x
Consider the following guidelines for upgrading Cisco WAAS Version 5.x and later to Cisco WAAS Version 6.4.5x.
-
Cisco WAAS Version 5.1 and Later: NTLM and Kerberos authentication protocols
Cisco WAAS Version 5.1 and later do not support NTLM Windows domain authentication or use of a nonstandard port (other than port 88) for Kerberos authentication.
-
Upgrading from a Cisco WAAS Version earlier than 5.1 is blocked if either of these configurations are detected. You must change these configurations and ensure that your domain controller is configured for Kerberos authentication, before proceeding with the upgrade.
-
A script is provided to verify that your network supports Kerberos protocol before migrating from NTLM. If no application is using the unsupported configurations on the device, remove the unsupported configurations to upgrade.
-
-
Cisco WAAS Version 5.2 and Later: Usernames
Cisco WAAS Version 5.2 and later restrict the characters used in usernames to letters, numbers, period, hyphen, underscore, and the @ sign, and a username must start with a letter or number.
Any username not meeting these guidelines is prevented from logging in. Prior to upgrading the Cisco WAAS Central Manager to Version 5.2 or later, we recommend that you change any such usernames to valid usernames to allow login.
-
For local users: Change usernames in the Cisco WAAS Central Manager Admin > AAA > Users page.
-
For remotely authenticated users: Change usernames on the remote authentication server.
Note
Prior to upgrading the Cisco WAAS Central Manager to Version 5.2 or later, we strongly encourage you to change usernames that use restricted characters. However, if you must maintain existing usernames, contact Cisco TAC.
-
-
Cisco WAAS Version 5.3 and Later: Name and Description Fields
Cisco WAAS Version 5.3 and later restrict the use of characters in the Name and Description fields to alphanumeric characters, periods (.), hyphens (-), underscores (), and blank spaces when you create custom reports. When you upgrade from Cisco WAAS Version 4.x and you have custom reports that have special characters in the Name or Description field, Cisco WAAS automatically removes the special characters from the report name and description, and logs the modification in the Centralized Management System (CMS) logs.
-
Cisco WAAS Version 6.4.5: vWAAS
-
When upgrading Cisco vWAAS, do not upgrade more than five Cisco vWAAS nodes at the same time on a single Cisco UCS device. Upgrading more than five Cisco vWAAS nodes at the same time may cause the Cisco vWAAS devices to go offline and into diskless mode.
-
Cisco vWAAS for Cisco WAAS 6.4.5x requires additional resources before upgrading from Cisco WAAS 6.2.3d to Cisco WAAS 6.4.3x.
Upgrading from the Cisco WAAS Central Manager: If you initiate and complete the upgrade from the Cisco WAAS Central Manager without increasing the resources for Cisco vWAAS, alarms (CPU & RAM) to indicate insufficient resource allocation are displayed on the Cisco WAAS Central Manager after the upgrade process is completed. No alarms are displayed at the beginning of the upgrade process.
Upgrading from the Cisco WAAS CLI: If you initiate an upgrade to Cisco WAAS 6.4.5x with the Cisco WAAS CLI, a warning about insufficient resources is displayed at the start of the upgrade process.
-
-
Cisco WAAS Version 6.4.5x: vCM-100 with RHEL KVM or KVM on CentOS
If you upgrade to Cisco WAAS Version 6.4.5x, or downgrade from Cisco WAAS Version 6.4.5x to an earlier version, and use a Cisco vCM-100 model with the following parameters, the Cisco vCM-100 may not come up due to GUID Partition Table (GPT) boot order errors.
-
Cisco vCM-100 has default memory size of 2 GB
-
Cisco vCM-100 uses the RHEL KVM or KVM on CentOS hypervisor
-
You run either the restore factory-default command or the restore factory-default preserve basic-config command
Note
The restore factory-default command erases user-specified configuration information stored in the flash image, including the starting configuration of the device, and also removes data from the disk, user-defined partitions, and the entire Cisco WAAS Central Manager database.
To resolve this situation, follow these steps:
-
Power down the Cisco vWAAS using the virsh destroy vmname command or the virt-manager.
-
Power up the Cisco vWAAS using the virsh start vmname command or the virt-manager.
This upgrade-downgrade scenario does not occur for Cisco vCM-100 models whose memory size is upgraded to 4 GB.
-
-
Upgrading from Cisco WAAS Version 4.2.x to Cisco WAAS Version 6.4.5
To upgrade from Cisco WAAS Version 4.x, you must reconfigure the custom EPM policy for a device or device group. You must first restore the default policy setting by selecting the Restore default Optimization Policies link for the device group in the Device Groups > Modifying Device Group window and then reconfigure your custom policy rules for the device. For more information on upgrade paths, see the section Upgrade Paths and Guidelines for Cisco WAAS Version 6.4.5x.
Workflow: Upgrading from an Earlier Cisco WAAS Version to Cisco WAAS Version 6.4.5x
To upgrade from an earlier Cisco WAAS version to Cisco WAAS Version 6.4.5x, complete the tasks listed in the following table.
Workflow Task |
Description |
---|---|
Upgrade Part 1: Create a Backup of the Primary Cisco WAAS Central Manager Database |
Before you start the upgrade process from an earlier Cisco WAAS version to Cisco WAAS Version 6.4.5x, create a backup of the primary Cisco WAAS Central Manager database and save it to a remote location. |
Upgrade Part 2: Upgrade the Standby Cisco WAAS Central Manager |
If your Cisco WAAS system has a standby Cisco WAAS Central Manager, upgrade the standby Cisco WAAS Central Manager before you upgrade the primary Cisco WAAS Central Manager. |
Upgrade Part 3: Upgrade the Primary Cisco WAAS Central Manager |
Upgrade the primary Cisco WAAS Central Manager, including verifying that the new Cisco WAAS image is loaded correctly, verifying the connectivity between Cisco WAAS Central Manager and all the Cisco WAE devices, and verifying that all the Cisco WAE devices are online. |
Upgrade the branch Cisco WAE devices, including verifying that the new Cisco WAAS image is loaded correctly, verifying that the correct licenses are installed, and saving the new configuration. |
|
Upgrade Part 5: Preupgrade Task for the Data Center Cisco WAAS Software |
Upgrade the data center Cisco WAAS software, including upgrading each data center Cisco WAE device. |
Upgrade each data center Cisco WAE device, including disabling and re-enabling WCCP. |
|
For information on the sets of tasks to enable and reconfigure WCCP, and information on configuring accelerators, switches, and routers for migration, see the Cisco Wide Area Application Services Upgrade Guide. |
|
After you complete the Cisco WAAS system upgrade to Version 6.4.5x, perform tasks such as clearing your browser cache, verifying licenses, and verifying if application accelerators, policies, and class maps are working correctly. |
Upgrade Part 1: Create a Backup of the Primary Cisco WAAS Central Manager Database
Before you begin
Consider the following CMS database backup scenarios, depending on the size of /sw and /swstore:
-
If you are upgrading your Cisco vCM, Cisco vWAAS or Cisco ISR-WAAS device from an earlier Cisco WAAS version to Cisco WAAS Version 6.4.5, and the /sw and /swstore partition size is less than 2 GB, you must back up the CMS database before creating a backup of the primary Cisco WAAS Central Manager database, using the information provided in the following Notein this listing.
-
For devices using Cisco WAAS Version 5.x, the /sw and /swstore partition size is 1 GB, so you must back up the CMS database before creating a backup of the primary Cisco WAAS Central Manager database, using the information provided in the following Note:
Note
If you are upgrading your Cisco WAAS device from an earlier Cisco WAAS version to Cisco WAAS Version 6.4.5x, and the /sw and /swstore partition size is less than 2 GB, it is crucial that you create a backup of the Cisco WAAS Central Manager database and save it to an external file (FTP-SFTP) before you upgrade to Cisco WAAS Version 6.4.5x.
The upgrade process on this type of configuration will automatically clear system and data partition, which will erase the Cisco WAAS Central Manager database.
After upgrade is complete, restore the saved Cisco WAAS Central Manager database to your system.
-
For devices using Cisco WAAS Version 6.x, the /sw and /swstore partition size is 2 GB. So, you do not need to create a backup of the CMS database before creating a backup of the primary Cisco WAAS Central Manager database.
SUMMARY STEPS
- Use Telnet or SSH to access the primary Cisco WAAS Central Manager IP address.
- To create the database backup, run the cms database backup command:
- To copy the backup database file to a remote location, run the copy disk command:
- Verify that the backup file is copied correctly by verifying the file size and time stamp.
DETAILED STEPS
Step 1 |
Use Telnet or SSH to access the primary Cisco WAAS Central Manager IP address. |
Step 2 |
To create the database backup, run the cms database backup command:
The cms database backup command displays the following information:
|
Step 3 |
To copy the backup database file to a remote location, run the copy disk command:
|
Step 4 |
Verify that the backup file is copied correctly by verifying the file size and time stamp. |
Upgrade Part 2: Upgrade the Standby Cisco WAAS Central Manager
Before you begin
This upgrade procedure is required if your Cisco WAAS system has a standby Cisco WAAS Central Manager.
SUMMARY STEPS
- Use Telnet or SSH to access the standby Cisco WAAS Central Manager IP address.
- To copy the new software image to the standby Cisco WAAS Central Manager, run the copy ftp command.
- To reload the standby Cisco WAAS Central Manager, run the reload command.
- To verify that the new image is loaded correctly, run the show version command.
- To confirm connectivity, ping the primary Cisco WAAS Central Manager and branch Cisco WAE devices.
- Wait at least five minutes.
- To ensure that the database has been synchronized, confirm the database last synchronization time by running the show cms info command.
- From the primary Cisco WAAS Central Manager, confirm that the status indicator for the standby Cisco WAAS Central Manager is online and green.
DETAILED STEPS
Step 1 |
Use Telnet or SSH to access the standby Cisco WAAS Central Manager IP address. |
Step 2 |
To copy the new software image to the standby Cisco WAAS Central Manager, run the copy ftp command. The following example shows the file in the root directory. (Provide the correct path on your Cisco WAAS system, if different from the root directoy path.)
|
Step 3 |
To reload the standby Cisco WAAS Central Manager, run the reload command. |
Step 4 |
To verify that the new image is loaded correctly, run the show version command. |
Step 5 |
To confirm connectivity, ping the primary Cisco WAAS Central Manager and branch Cisco WAE devices. |
Step 6 |
Wait at least five minutes. |
Step 7 |
To ensure that the database has been synchronized, confirm the database last synchronization time by running the show cms info command. |
Step 8 |
From the primary Cisco WAAS Central Manager, confirm that the status indicator for the standby Cisco WAAS Central Manager is online and green. |
Upgrade Part 3: Upgrade the Primary Cisco WAAS Central Manager
Before you begin
Perform the following tasks before you upgrade the primary Cisco WAAS Central Manager:
-
Create a backup copy of the primary Cisco WAAS Central Manager database. For more information, see the section Upgrade Part 1: Create a Backup of the Primary Cisco WAAS Central Manager Database.
-
If your Cisco WAAS system has a standby Cisco WAAS Central Manager, you must upgrade the standby Cisco WAAS Central Manager. For more information, see the section Upgrade Part 2: Upgrade the Standby Cisco WAAS Central Manager.
SUMMARY STEPS
- Use Telnet or SSH to access the primary Cisco WAAS Central Manager IP address.
- Copy the new software image to the primary Cisco WAAS Central Manager, either from the Cisco WAAS Central Manager or the Cisco WAAS CLI.
- To copy the new Cisco WAAS Version 6.4.5x software image to the primary Cisco WAAS Central Manager, run the copy ftp command.
- To reload the primary Cisco WAAS Central Manager, run the reload command.
- To verify that the new Cisco WAAS Version 6.4.5x image is loaded correctly, run the show version command.
- To confirm connectivity, ping the standby Cisco WAAS Central Manager (if present in your Cisco WAAS system) and the branch Cisco WAE devices.
- To confirm that the CMS services are running, run the show cms info command.
- To verify that all the Cisco WAE devices are online, choose Devices > All Devices.
- To verify that each Cisco WAE device has a green check mark, choose Device Groups > AllWAASGroups > Assign Devices.
DETAILED STEPS
Step 1 |
Use Telnet or SSH to access the primary Cisco WAAS Central Manager IP address. |
Step 2 |
Copy the new software image to the primary Cisco WAAS Central Manager, either from the Cisco WAAS Central Manager or the Cisco WAAS CLI. From the Cisco WAAS Central Manager:
From the Cisco WAAS CLI: |
Step 3 |
To copy the new Cisco WAAS Version 6.4.5x software image to the primary Cisco WAAS Central Manager, run the copy ftp command. The following example shows the file in the root directory. (Provide the correct path on your Cisco WAAS system if it is different from the root directory path.)
|
Step 4 |
To reload the primary Cisco WAAS Central Manager, run the reload command. |
Step 5 |
To verify that the new Cisco WAAS Version 6.4.5x image is loaded correctly, run the show version command. |
Step 6 |
To confirm connectivity, ping the standby Cisco WAAS Central Manager (if present in your Cisco WAAS system) and the branch Cisco WAE devices. |
Step 7 |
To confirm that the CMS services are running, run the show cms info command. |
Step 8 |
To verify that all the Cisco WAE devices are online, choose Devices > All Devices. |
Step 9 |
To verify that each Cisco WAE device has a green check mark, choose Device Groups > AllWAASGroups > Assign Devices. |
Upgrade Part 4: Upgrade the Branch Cisco WAE Devices
Before you begin
Perform the following tasks before you upgrade the branch Cisco WAE devices:
-
Create a backup copy of the primary Cisco WAAS Central Manager database. For more information, see the section Upgrade Part 1: Create a Backup of the Primary Cisco WAAS Central Manager Database.
-
Upgrade the standby Cisco WAAS Central Manager, if one is present in your Cisco WAAS system. For more information, see the section Upgrade Part 2: Upgrade the Standby Cisco WAAS Central Manager.
-
Upgrade the primary Cisco WAAS Central Manager. For more information, see the section Upgrade Part 3: Upgrade the Primary Cisco WAAS Central Manager.
SUMMARY STEPS
- Access the primary Cisco WAAS Central Manager GUI:
- Verify that all the Cisco WAE devices are online (the status light indicator for each device is green).
- Resolve any alarm conditions that may exist.
- Copy the new software image to the branch Cisco WAE, either from the Cisco WAAS Central Manager or the CLI.
- To reload the Cisco WAE, run the reload command.
- To verify that the new Cisco WAAS Version 6.4.5x software image has installed correctly, run the show version command.
- To verify that the correct licenses are installed, run the show license command.
- If you have purchased an Enterprise license and have enabled it, proceed to Step 10.
- To save the changed configuration, run the copy running-config startup-config command.
- From the primary Cisco WAAS Central Manager, choose Devices > branchWAE, to verify that the Cisco WAE device is online and that the status light indicator is green.
- Verify the following Cisco WAE device functionalities:
- The branch Cisco WAE devices within the active Cisco WAAS network are now upgraded to Cisco WAAS Version 6.4.5x.
DETAILED STEPS
Step 1 |
Access the primary Cisco WAAS Central Manager GUI:
|
Step 2 |
Verify that all the Cisco WAE devices are online (the status light indicator for each device is green). |
Step 3 |
Resolve any alarm conditions that may exist. |
Step 4 |
Copy the new software image to the branch Cisco WAE, either from the Cisco WAAS Central Manager or the CLI. From the Cisco WAAS Central Manager:
From the Cisco WAAS CLI: |
Step 5 |
To reload the Cisco WAE, run the reload command. |
Step 6 |
To verify that the new Cisco WAAS Version 6.4.5x software image has installed correctly, run the show version command. |
Step 7 |
To verify that the correct licenses are installed, run the show license command. |
Step 8 |
If you have purchased an Enterprise license and have enabled it, proceed to Step 10. If you have purchased an Enterprise license and have not yet enabled it, perform the following tasks:
|
Step 9 |
To save the changed configuration, run the copy running-config startup-config command. |
Step 10 |
From the primary Cisco WAAS Central Manager, choose Devices > branchWAE, to verify that the Cisco WAE device is online and that the status light indicator is green. |
Step 11 |
Verify the following Cisco WAE device functionalities: |
Step 12 |
The branch Cisco WAE devices within the active Cisco WAAS network are now upgraded to Cisco WAAS Version 6.4.5x. |
Upgrade Part 5: Preupgrade Task for the Data Center Cisco WAAS Software
SUMMARY STEPS
- Access the primary Cisco WAAS Central Manager GUI:
- Verify that all Cisco WAE devices are online (the status light indicator is green).
- Resolve any alarm conditions that may exist.
- Upgrade each data center Cisco WAE. For more information, see the section Upgrade Part 6: Upgrade Each Data Center Cisco WAE.
DETAILED STEPS
Step 1 |
Access the primary Cisco WAAS Central Manager GUI:
|
||
Step 2 |
Verify that all Cisco WAE devices are online (the status light indicator is green). |
||
Step 3 |
Resolve any alarm conditions that may exist. |
||
Step 4 |
Upgrade each data center Cisco WAE. For more information, see the section Upgrade Part 6: Upgrade Each Data Center Cisco WAE.
|
Upgrade Part 6: Upgrade Each Data Center Cisco WAE
SUMMARY STEPS
- To disable WCCP on the Cisco WAE and allow a graceful termination of the existing TCP flows that are optimized by Cisco WAAS, run the following sequence of commands:
- (Optional) To disable WCCP on the intercepting router or switch, run the no ip wccp global configuration command.
- (Optional) Verify that WCCP is disabled, using the show ip wccp command, if you have performed Step 2.
- Upgrade the data center Cisco WAE software:
- Copy the new software image to the data center WAE, either from the Cisco WAAS Central Manager or the CLI.
- To reload the Cisco WAE, run the reload command.
- To verify that the new Cisco WAAS Version 6.4.5x software image has installed correctly, run the show version command.
- To verify that WCCP is disabled, run the show wccp status command.
- To save the changed configuration, run the copy running-config startup-config command.
- From the primary Cisco WAAS Central Manager, choose Devices > branchWAE to verify that the Cisco WAE device is online (the status light indicator is green).
- (Optional) Enable WCCP on all intercepting routers or switches in the list, if you have performed Step 2.
- Verify the following Cisco WAE device functionalities:
DETAILED STEPS
Step 1 |
To disable WCCP on the Cisco WAE and allow a graceful termination of the existing TCP flows that are optimized by Cisco WAAS, run the following sequence of commands:
|
||
Step 2 |
(Optional) To disable WCCP on the intercepting router or switch, run the no ip wccp global configuration command.
|
||
Step 3 |
(Optional) Verify that WCCP is disabled, using the show ip wccp command, if you have performed Step 2. |
||
Step 4 |
Upgrade the data center Cisco WAE software: |
||
Step 5 |
Copy the new software image to the data center WAE, either from the Cisco WAAS Central Manager or the CLI. From the Cisco WAAS Central Manager: From the Cisco WAAS Central Manager:
From the Cisco WAAS CLI: |
||
Step 6 |
To reload the Cisco WAE, run the reload command. |
||
Step 7 |
To verify that the new Cisco WAAS Version 6.4.5x software image has installed correctly, run the show version command. |
||
Step 8 |
To verify that WCCP is disabled, run the show wccp status command. |
||
Step 9 |
To save the changed configuration, run the copy running-config startup-config command. |
||
Step 10 |
From the primary Cisco WAAS Central Manager, choose Devices > branchWAE to verify that the Cisco WAE device is online (the status light indicator is green). |
||
Step 11 |
(Optional) Enable WCCP on all intercepting routers or switches in the list, if you have performed Step 2. |
||
Step 12 |
Verify the following Cisco WAE device functionalities:
Each data center Cisco WAE within the active Cisco WAAS network is now upgraded to Cisco WAAS Version 6.4.5x. |
Upgrade Part 7: WCCP and Migration Processes
For information on the sets of tasks to enable and reconfigure WCCP, and information on configuring accelerators, switches and routers for migration, see the Cisco Wide Area Application Services Upgrade Guide.
Upgrade Part 8: Postupgrade Tasks
Perform the following tasks after you have completed the upgrade to Cisco WAAS Version 6.4.5x:
-
After upgrading a Cisco WAAS Central Manager, you must clear your browser cache, close the browser, and restart the browser before reconnecting to the Cisco WAAS Central Manager.
-
After upgrading application accelerator Cisco WAEs, verify that the proper licenses are installed by running the show license command. The Transport license is enabled by default. If any of the application accelerators were enabled on the device before the upgrade, you should enable the Enterprise license. Configure any additional licenses as needed by running the license add command. For more information on licenses, see the "Managing Cisco WAAS Software Licenses" section of the chapter "Configuring Other System Settings" in the Cisco Wide Area Application Services Configuration Guide.
-
After upgrading application accelerator Cisco WAEs, verify that the proper application accelerators, policies, and class maps are configured. For more information on configuring accelerators, policies, and class maps, see the chapter "Configuring Application Acceleration" in the Cisco Wide Area Application Services Configuration Guide.
-
If you use the setup utility for basic configuration after upgrading to Cisco WAAS Version 6.4.5x, WCCP router list 7 is used. Because the setup utility is designed for use on new installations, any existing configuration for WCCP router list 7 is replaced with the new configuration.
-
If you have two Cisco WAAS Central Managers that have secure store enabled, and you have switched primary and standby roles between the two Cisco WAAS Central Managers before upgrading the Cisco WAAS Central Managers to Version 6.4.5x, you must re-enter all passwords in the primary Cisco WAAS Central Manager GUI. The passwords that need to be re-entered include user passwords. If you do not re-enter the passwords, after upgrading to Cisco WAAS Version 6.4.5x, the Cisco WAAS Central Manager fails to send configuration updates to Cisco WAEs and the standby Cisco WAAS Central Manager until after the passwords are re-entered.
-
If you use the setup utility for basic configuration after upgrading to Cisco WAAS Version 6.4.5x, WCCP router list 7 is used. Because the setup utility is designed for use on new installations, any existing configuration for WCCP router list 7 is replaced with the new configuration.
Migrating a Cisco WAAS Central Manager from an Unsupported Platform to a Supported Platform
Before you begin
If you have a Cisco WAAS Central Manager that is running on a hardware platform that is unsupported in Version 6.1.x and later (such as a Cisco WAE-274, WAE-474, WAE-574, WAE-674, WAE-7341, or WAE-7371), you are not allowed to upgrade the device to Version 6.1.x or later. You must migrate the Cisco WAAS Central Manager to a supported platform by following the procedure in this section, which preserves all of the Cisco WAAS Central Manager configuration and database information.
Note |
Database backup is intended only for recovery of the current Cisco WAAS Central Manager. Restoring the database to a different device will retain the device identity and will not allow you to reuse the current hardware in a different role. If you want to migrate the service to a new device, register the device as a standby Cisco WAAS Central Manager first, and then change its role after database synchronization. |
SUMMARY STEPS
- From the primary Cisco WAAS Central Manager CLI, create a database backup by running the cms database backup command. Move the backup file to a separate device by running the copy disk ftp command.
- Display and write down the IP address and netmask of the Cisco WAAS Central Manager:
- Shut down all the interfaces on the primary Cisco WAAS Central Manager.
- Replace the existing Cisco WAAS Central Manager device with a new hardware platform that can support Cisco WAAS Version 6.1. Ensure that the new Cisco WAAS Central Manager device is running the same software version as the earlier version of the Cisco WAAS Central Manager.
- Configure the new version Cisco WAAS Central Manager with the same IP address and netmask as the earlier version of the Cisco WAAS Central Manager. You can do this in the setup utility or by using the interface global configuration command.
- Copy the backup file created in Step 1 from the FTP server to the new version Cisco WAAS Central Manager.
- Restore the database backup on the new Cisco WAAS Central Manager by running the cms database restore command. To restore all the CLI configurations, choose Option 1.
- Enable the CMS service:
- Verify that the Cisco WAAS Central Manager GUI is accessible and all the Cisco WAAS devices are shown in an online state in the Devices window.
- (Optional) If you have a standby Cisco WAAS Central Manager that is running on unsupported hardware and is registered to the primary Cisco WAAS Central Manager, deregister the standby Cisco WAAS Central Manager.
- Upgrade the primary Cisco WAAS Central Manager to Cisco WAAS Version 6.4.5x. You can use the Central Manager Software Update window or run the copy ftp install command.
- Verify that the Cisco WAAS Central Manager GUI is accessible and that all the Cisco WAAS devices are shown in an online state in the Devices window.
- (Optional) Register a new standby Cisco WAAS Central Manager that is running Cisco WAAS Version 5.1.x or later:
- Wait for the device to reload, change the Cisco WAAS Central Manager role to Standby, and register the standby Cisco WAAS Central Manager to the primary Cisco WAAS Central Manager:
DETAILED STEPS
Step 1 |
From the primary Cisco WAAS Central Manager CLI, create a database backup by running the cms database backup command. Move the backup file to a separate device by running the copy disk ftp command.
|
Step 2 |
Display and write down the IP address and netmask of the Cisco WAAS Central Manager:
|
Step 3 |
Shut down all the interfaces on the primary Cisco WAAS Central Manager.
|
Step 4 |
Replace the existing Cisco WAAS Central Manager device with a new hardware platform that can support Cisco WAAS Version 6.1. Ensure that the new Cisco WAAS Central Manager device is running the same software version as the earlier version of the Cisco WAAS Central Manager. |
Step 5 |
Configure the new version Cisco WAAS Central Manager with the same IP address and netmask as the earlier version of the Cisco WAAS Central Manager. You can do this in the setup utility or by using the interface global configuration command.
|
Step 6 |
Copy the backup file created in Step 1 from the FTP server to the new version Cisco WAAS Central Manager.
|
Step 7 |
Restore the database backup on the new Cisco WAAS Central Manager by running the cms database restore command. To restore all the CLI configurations, choose Option 1.
|
Step 8 |
Enable the CMS service:
|
Step 9 |
Verify that the Cisco WAAS Central Manager GUI is accessible and all the Cisco WAAS devices are shown in an online state in the Devices window. |
Step 10 |
(Optional) If you have a standby Cisco WAAS Central Manager that is running on unsupported hardware and is registered to the primary Cisco WAAS Central Manager, deregister the standby Cisco WAAS Central Manager.
|
Step 11 |
Upgrade the primary Cisco WAAS Central Manager to Cisco WAAS Version 6.4.5x. You can use the Central Manager Software Update window or run the copy ftp install command. |
Step 12 |
Verify that the Cisco WAAS Central Manager GUI is accessible and that all the Cisco WAAS devices are shown in an online state in the Devices window. |
Step 13 |
(Optional) Register a new standby Cisco WAAS Central Manager that is running Cisco WAAS Version 5.1.x or later:
|
Step 14 |
Wait for the device to reload, change the Cisco WAAS Central Manager role to Standby, and register the standby Cisco WAAS Central Manager to the primary Cisco WAAS Central Manager:
|
Migrating a Physical Appliance Being Used as a Primary Cisco WAAS Central Manager to a Cisco vCM
SUMMARY STEPS
- Introduce Cisco vCM as the Standby Cisco WAAS Central Manager by registering it with the Primary Cisco WAAS Central Manager.
- Configure the device and the device group settings through Primary Cisco WAAS Central Manager and ensure that devices are getting updates. Wait for two to three data feed poll rate so that the Standby Cisco WAAS Central Manager gets configuration synchronization from the Primary Cisco WAAS Central Manager.
- Ensure that the Primary Cisco WAAS Central Manager and Standby Cisco WAAS Central Manager updates are working.
- Switch over Cisco WAAS Central Manager roles so that Cisco vCM works as Primary Cisco WAAS Central Manager. For more information, see the section "Converting a Standby Central Manager to a Primary Central Manager" of the Cisco Wide Area Application Services Configuration Guide.
DETAILED STEPS
Step 1 |
Introduce Cisco vCM as the Standby Cisco WAAS Central Manager by registering it with the Primary Cisco WAAS Central Manager. |
Step 2 |
Configure the device and the device group settings through Primary Cisco WAAS Central Manager and ensure that devices are getting updates. Wait for two to three data feed poll rate so that the Standby Cisco WAAS Central Manager gets configuration synchronization from the Primary Cisco WAAS Central Manager. |
Step 3 |
Ensure that the Primary Cisco WAAS Central Manager and Standby Cisco WAAS Central Manager updates are working. |
Step 4 |
Switch over Cisco WAAS Central Manager roles so that Cisco vCM works as Primary Cisco WAAS Central Manager. For more information, see the section "Converting a Standby Central Manager to a Primary Central Manager" of the Cisco Wide Area Application Services Configuration Guide. |
Ensuring a Successful RAID Pair Rebuild
RAID pairs get rebuilt on the reboot after you run the restore factory-default command, replace or add a hard disk drive, delete disk partitions, or reinstall Cisco WAAS from the booted recovery CD-ROM.
Note |
You must ensure that all RAID pairs are done rebuilding before you reboot your Cisco WAE device. If you reboot while the device is rebuilding, you risk corrupting the file system. |
To view the status of the drives and check if the RAID pairs are in Normal Operation status or in Rebuilding status, use the show disk details EXEC command. When you see that RAID is rebuilding, you must let it complete that rebuild process. This rebuild process may take several hours.
If you do not wait for the RAID pairs to complete the rebuild process before you reboot the device, you may see the following symptoms that indicate a problem:
-
The device is offline in the Cisco WAAS Central Manager GUI.
-
CMS cannot be loaded.
-
Error messages say that the file system is read-only.
-
The syslog contains errors such as Aborting journal on device md2 or Journal commit I/O error or Journal has aborted or ext3_readdir: bad entry in directory.
-
Other unusual behaviors relating to disk operations or the inability to perform them occur.
If you encounter any of these symptoms, reboot the Cisco WAE device and wait until the RAID rebuild finishes normally.
Using Previous Client Code
If you have upgraded to Cisco WAAS Version 6.4.5 and are using the WSDL2Java tool to generate client stubs that enforce strict binding, earlier version client code (prior to Cisco WAAS Version 4.3.1) may return unexpected exceptions due to new elements added in the response structures in Cisco WAAS Version 4.3.1 and later releases. The observed symptom is an exception related to an unexpected subelement because of the new element (for example, a deviceName element) in the XML response.
To work around this problem, we recommend that you patch the WSDL2Java tool library to silently consume exceptions if new elements are found in XML responses and then regenerate the client stubs. This approach avoids future problems if the API is enhanced with new elements over time.
You must modify the ADBBeanTemplate.xsl file in the axis2-adb-codegen- version.jar file.
To apply the patch, follow these steps:
SUMMARY STEPS
- List the files in the axis2-adb-codegen- version.jar file:
- Change the ADBBeanTemplate.xsl file by commenting out the following exceptions so that the generated code consumes the exceptions:
- Re-create the jar file and place it in the CLASSPATH. Delete the old jar file from the CLASSPATH.
- Use the WDL2Java tool to execute the client code using the modified jar.
DETAILED STEPS
Step 1 |
List the files in the axis2-adb-codegen- version.jar file: Example:
|
Step 2 |
Change the ADBBeanTemplate.xsl file by commenting out the following exceptions so that the generated code consumes the exceptions: Example:
|
Step 3 |
Re-create the jar file and place it in the CLASSPATH. Delete the old jar file from the CLASSPATH. |
Step 4 |
Use the WDL2Java tool to execute the client code using the modified jar. |
Downgrading from Cisco WAAS Version 6.4.5x to an Earlier Version
This section contains the following topics:
Downgrade Support Matrix for Platforms
The following table provides recommendations for Cisco ENCS 5400-W, Cisco CSP 5000-W and other platforms when you downgrade from Cisco WAAS version 6.4.5a to an earlier Cisco WAAS version.
Current Cisco WAAS Version |
New Cisco WAAS Version |
Cisco ENCS 5400-W or Cisco CSP 5000-W |
Other Supported Platforms |
---|---|---|---|
6.4.5a and later |
6.4.3d and earlier |
Needs fresh installation |
Downgrade supported |
6.4.5a and later |
6.4.3e and later |
Downgrade supported |
Downgrade supported |
6.4.5a and later |
6.4.5 |
Needs fresh installation |
Downgrade supported |
Guidelines for Downgrading the Cisco WAAS System from Cisco WAAS Version 6.4.5x to an Earlier Version
This section contains downgrade path guidelines and downgrade component and data guidelines:
-
Downgrade path guidelines:
-
Downgrading from Cisco WAAS Version 6.4.5x is supported to Cisco WAAS Version 6.2.1x, 6.1.1a, 6.1.1, 5.5.7, 5.5.5a, 5.5.5 and 5.5.3. Downgrading directly from Cisco WAAS Version 6.x to a version earlier than Cisco WAAS Version 5.5.3 is not supported.
-
On the Cisco 4451-X Integrated Services Router running Cisco ISR-WAAS, downgrading to a version earlier than Cisco WAAS Version 5.2.1 is not supported.
-
On the Cisco UCS E-Series Server Module installed in a Cisco ISR G2 Router and running Cisco vWAAS, downgrading to a version earlier than Cisco WAAS Version 5.1.1 is not supported. On the Cisco UCS E-Series Server Module installed in the Cisco 4451-X Integrated Services Router and running Cisco vWAAS, downgrading to a version earlier than Cisco WAAS Version 5.2.1 is not supported. On other Cisco vWAAS devices you cannot downgrade to a version earlier than Cisco WAAS Version 4.3.1.
-
On Cisco WAVE-294, WAVE-594, and WAVE-8541 models with solid state drives (SSDs) you cannot downgrade to a version earlier than Cisco WAAS Version 5.2.1.
-
On Cisco WAVE-694 model with SSDs, you cannot downgrade to a version earlier than 5.5.1.
-
On Cisco vCM-500 or Cisco vCM-1000, you cannot downgrade to a version earlier than Cisco WAAS Version 5.5.1.
-
-
Downgrade component and data guidelines:
-
For Cisco WAAS on devices on the Cisco ENCS 5400-W Series:
-
You cannot downgrade a Cisco vWAAS device on Cisco ENCS-W to a version earlier than WAAS Version 6.4.3, if it is connected with inline FTW card and configured with a port channel and standby, or if configured with inline interception.
-
You cannot downgrade a Cisco vWAAS device on Cisco ENCS-W to a version earlier than Cisco WAAS Version 6.4.1.
-
The Cisco WAAS Central Manager supports upgrade and downgrade of all applicable device types in a device group.
For example, if you are downgrading a device group that has a physical Cisco WAE, a Cisco vWAAS, and a Cisco ENCS-W and Cisco CSP-W platform to a version earlier than Cisco WAAS Version 6.4.1, the Cisco WAAS Central Manager will initiate the downgrade process only for the physical and virtual Cisco WAEs, but not for the Cisco ENCS-W and Cisco CSP-W platform.
-
-
Locked-out user accounts are reset upon a downgrade.
-
Any reports and charts that are not supported in the downgrade version are removed from managed and scheduled reports when you downgrade to an earlier version. Any pending reports that were carried forward from an upgrade from a version earlier than Cisco WAAS Version 5.0 are maintained.
-
If you have configured disk cache for a Cisco ISR-WAAS device, downgraded from Cisco WAAS Version 6.4.5 to Cisco WAAS Version 5.5.3, and then restore the rollback to Cisco WAAS Version 6.1.1x, you must reload the disk cache configuration for the new configuration to take effect. If you do not perform a reload after the rollback to Cisco WAAS Version 6.4.5, the new configuration will not take effect, and output from the show disks cache-details command will display the error message:
Disk cache has been configured. Please reload for the new configuration to take effect.
-
Guidelines for Downgrading the Cisco WAAS Central Manager from Cisco WAAS Version 6.4.5x to an Earlier Version
This section contains downgrade path guidelines:
-
Downgrading Cisco WAAS Version 6.4.5x Cisco WAAS Central Manager directly to a version earlier than Cisco WAAS Version 5.5.3 is blocked.
-
If the Cisco WAAS Version 6.4.5x Cisco WAAS Central Manager is downgraded to a version earlier than Cisco WAAS Version 5.2.1, it can no longer manage Cisco AppNav-XE clusters and devices, and all related configuration records are removed.
-
When downgrading Cisco WAAS Version 6.4.5x Cisco WAAS Central Manager to a version earlier than Cisco WAAS Version 4.4.1, if the secure store is in auto-passphrase mode, the downgrade is blocked. You must switch to user-passphrase mode before you can downgrade to a software version that does not support auto-passphrase mode.
Procedure for Downgrading the Cisco WAAS Central Manager from Cisco WAAS Version 6.4.5x to an Earlier Version
Before you begin
Perform the following tasks before a Cisco WAAS Central Manager downgrade:
-
If you have a standby Cisco WAAS Central Manager, it must be registered to the primary Cisco WAAS Central Manager before the downgrade.
-
Before downgrading Cisco WAAS Central Manager to a version up to Cisco WAAS Version 5.2.1, you must remove Backup WNG from the Cisco AppNav-XE cluster and verify that the Cisco WAAS Central Manager and Cisco AppNav-XE device are in sync.
If you have configured App ID and nested class map in the Cisco AppNav XE cluster, you should not downgrade the Cisco WAAS Central Manager (running Cisco WAAS Version 6.4.3b and later) to an earlier version that does not support the App ID configurations from the CLI. To downgrade, you should first remove the AppID and nested class map configurations from the AppNav XE cluster and then proceed with the downgrade. If you try to downgrade the Cisco WAAS Central Manager from the Cisco WAAS Central Manager GUI, an error message prompts you to remove the App ID and nested class map configuration before proceeding with the downgrade.
Each of the following Cisco WAAS Central Manager downgrade procedures requires a particular task sequence:
-
When downgrading Cisco WAAS Central Manager to a version up to Cisco WAAS Version 5.2.1, and if the Cisco AppNav-XE cluster has more than 32 Cisco WAAS nodes, we recommend that you reduce the number of Cisco WAAS nodes to a maximum of 32 Cisco WAAS nodes before the downgrade.
-
When downgrading Cisco WAAS devices, first downgrade the application accelerator Cisco WAEs, then the standby Cisco WAAS Central Manager (if you have one), and lastly the primary Cisco WAAS Central Manager.
When downgrading a Cisco AppNav Controller device to a version earlier than 5.0.1, you must perform the following tasks:
-
Deregister the device from the Cisco WAAS Central Manager.
-
Change the device mode to application-accelerator.
-
Downgrade the device.
-
Reregister the device. Alternatively, you can reregister the device before downgrading.
If you do not deregister the device before downgrading, the device goes offline and the device mode is not set correctly. In such a scenario, run the cms deregister force EXEC command to deregister the device and then reregister it by running the cms enable global configuration command.
Note
All the Cisco WAAS nodes in an AppNav deployment must be running Cisco WAAS Version 5.0 or later.
Note |
Downgrading the database may trigger full updates for registered devices. In the Cisco WAAS Central Manager GUI, ensure that all previously operational devices come online. |
Procedure
Step 1 |
(Optional) From the Cisco WAAS Central Manager CLI, create a database backup by running the cms database backup command. Move the backup file to a separate device by running the copy disk ftp command.
|
||
Step 2 |
Install the downgrade Cisco WAAS software image by using the copy ftp install command:
|
||
Step 3 |
Reload the device. |
Cisco WAE and Cisco WAVE Appliance Boot Process
To monitor the boot process on Cisco WAE and Cisco WAVE appliances, connect to the serial console port on the appliance as directed in the Hardware Installation Guide for the respective Cisco WAE and Cisco WAVE appliance.
Cisco WAE and Cisco WAVE appliances may have video connectors that should not be used in a normal operation. The video output is for troubleshooting purposes only during BIOS boot and stops displaying output as soon as the serial port becomes active.
Operating Guidelines
This section contains the following topics for Cisco WAAS Version 6.4.5x:
Report Scheduling and Policy Changes
-
Cisco WAAS Central Manager report scheduling
In the Cisco WAAS Central Manager, we recommend that you run system-wide reports in device groups of 250 devices or less, or schedule these reports at different time intervals so that multiple system-wide reports are not running simultaneously and do not reach the limit of the HTTP object cache.
-
Cisco WAAS Express policy changes
Making policy changes to large numbers of Cisco WAAS Express devices from the Central Manager may take longer than making policy changes to Cisco WAAS devices.
Device Group Default Settings
When you create a device group in Cisco WAAS Version 6.4.5, the Configure > Acceleration > DSCP Marking window is automatically configured for the group, with the default DSCP marking value of copy.
Autoregistration is designed to operate on the first network interface and will not work if this interface is part of a port-channel interface or standby interface. Do not enable the auto-register global configuration command when the interface is configured as part of a port channel or standby interface.
CIFS Support of FAT32 File Servers
The CIFS accelerator does not support file servers that use the FAT32 file system. You can use the policy rules to exclude from acceleration any file servers that use the FAT32 file system.
Using the HTTP Accelerator with the Cisco ASR 1000 Series Router and WCCP
When using the Cisco ASR 1000 Series router and WCCP to redirect traffic to a WAE that is using WCCP GRE return as the egress method and the HTTP accelerator is enabled, there may be an issue with HTTP slowness because of the way the ASR router handles proxied HTTP connections (see Cisco CSCtj41045). To work around this issue, on the ASR router, create a web cache service in the same VRF as that of the 61/62 service by running the ip wccp [vrf vrf-name] web-cache command.
Consider the following guidelines for using the HTTP accelerator with the Cisco ASR 1000 Series router and WCCP:
-
Disabling WCCP from the Cisco WAAS Central Manager
If you use the Cisco WAAS Central Manager to disable WCCP on a Cisco WAAS device, the Central Manager immediately shuts down WCCP and closes any existing connections, ignoring the setting configured by the wccp shutdown max-wait global configuration command (after a warning message is displayed). If you want to gracefully shut down the WCCP connections, run the no enable WCCP global configuration command on the Cisco WAAS device.
-
Changing the Device mode to or from the Central Manager mode
If you change the Device mode to or from the Central Manager mode, the DRE cache is erased.
-
TACACS+ authentication and default user roles
If you are using TACACS+ authentication, we recommend that you do not assign any roles to the default user ID that has no roles assigned by default. If you assign any roles to the default user, external users that are authenticated by TACACS+ and who do not have the waas_rbac_groups attribute defined in TACACS+ (meaning they are not assigned to any group) can gain access to all the roles that are assigned to the default user.
-
Internet Explorer certificate request
If you use Internet Explorer to access the Cisco WAAS Central Manager GUI (Cisco WAAS Version 4.3.1 or later) and Internet Explorer has personal certificates installed, the browser prompts you to choose a certificate from the list of those installed in the personal certificate store. The certificate request occurs to support Cisco WAAS Express registration and is ignored by Internet Explorer if no personal certificates are installed. To continue to the Cisco WAAS Central Manager login page, click OK or Cancel in the certificate dialog box. To avoid this prompt from being displayed, remove the installed personal certificates or use a different browser.
-
Default settings with mixed versions
If a Cisco WAAS Central Manager is managing Cisco WAAS devices that have different versions, it is possible that a feature could have different default settings in those different versions. If you use the Cisco WAAS Central Manager to apply the default setting for a feature to particular mixed devices in a device group, the default for the Cisco WAAS Central Manager version is applied to all the devices in the group.
Cisco Software Version 6.4.5x Resolved and Open Caveats
This section contains the resolved caveats and open caveats for Cisco Software Version 6.4.5x
Cisco Software Version 6.4.5e Resolved Caveats
The following caveats, impacting earlier software versions of Cisco WAAS, were resolved in Cisco Software Version 6.4.5e.
Identifier |
Headline |
---|---|
Trend micro website URL access being processed by Akamai even after implementing the bypass rules |
|
High memory usage of HTTP AO results in WAAS device reload |
|
CSCwc20125 |
cEdge router registration failed with WCM |
Cisco Software Version 6.4.5d Resolved Caveats
The following caveats, impacting earlier software versions of Cisco WAAS, were resolved in Cisco Software Version 6.4.5d.
Identifier |
Headline |
---|---|
WAAS Interposer-ssl not sending certificate chain to Client during SSL handshake |
|
SDWAN : Attaching device to WCM partner in vManage via WCM |
|
Low disk space alarms due to kernel log flood in Azure Platforms. |
|
Pushdown SMB311 Compression enabled connection |
|
WAAS Interposer-ssl is negotiating SHA-1 with Client during SSL handshake |
|
WAAS command "accelerator smb smb202keyretival enable" is not active after reload |
|
Unexpected Service Restart Of Waasnet During TCP Closure |
|
Apache HTTP Server Multiple Vulnerabilities in 645c build 32 |
|
cEdge registration and deletion creating new user session in vmanage |
|
WCM Partner Registration failed in AppNav |
|
Traffic Blackhole Happening In ISR WAAS After Upgrade To 645b |
|
SMB process Assert based reload |
Cisco Software Version 6.4.5d Open Caveats
The following caveats are open in Cisco Software Version 6.4.5d. Note that there might be additional open caveats from previous releases that are applicable to this release, unless they are specifically listed as resolved.
Identifier |
Headline |
---|---|
Model is Undefined and ISR-WAAS not accessible through Internal IP with other Issues-ISR4K |
|
Top hosts chart not populating data |
Cisco Software Version 6.4.5c Resolved Caveats
The following caveats, impacting earlier software versions of Cisco WAAS, were resolved in Cisco Software Version 6.4.5c.
Caveat ID Number |
Description |
---|---|
Syslog and DRE logs flooded with 'KQ: error:' messages |
|
SNMP Users not getting loaded from startup config. |
|
ENCS-W device with port-cahnnel configuration lost reachability after reload. |
|
Central Manager - Licencing Compatibility Issue |
|
AppNav ACL source port dropdown selection not working as expected |
|
SMB 311 resetting on 6.4.5b |
|
WAAS syslog file flooding with Sense Key logs |
|
ISM crash happened during SSL closure |
|
Unexpected Service Restart Of Waasnet During TCP Closure |
|
Passwords Stored Using Cryptographically Weak Hash algorithm |
Cisco Software Version 6.4.5c Open Caveats
The following caveats are open in Cisco Software Version 6.4.5c. Note that there might be additional open caveats from previous releases that are applicable to this release, unless they are specifically listed as resolved.
Caveat ID Number |
Description |
---|---|
Unexpected Service Restart Of Waasnet During TCP Closure |
|
Disk failure SMART alarm is not cleared after replacing a faulty disk in WAE-8541 |
|
SMB process Assert based crash |
|
SNMPV3 polling failed |
Cisco Software Version 6.4.5b Resolved Caveats
The following caveats, impacting earlier software versions of Cisco WAAS, were resolved in Cisco Software Version 6.4.5b.
Caveat ID Number |
Description |
---|---|
SDWAN Support: SN movement between SNGs Fails |
|
Stale alarm is not clearing in central manager GUI. |
|
Apache HTTP server multiple vulnerabilities CVE-2020-1934 CVE-2020-1927 |
|
SDWAN AppNav Report shows double the actual data after PCM/SCM fail over |
|
Key not retrieved after domain controller connectivity flap |
|
Memory Dump noticed while accessing youtube from a Windows 10 client |
|
Traffic is not optimizing in NFVIS vbranch solution |
|
SMB 2.0 connections pushdown in a specific scenario |
|
Onepclient crash in ISR-WAAS |
|
HTTP Security header not detected reported as part of Qualys scan |
|
print operation is taking much time to process the jobs due to connection reset by WAAS for SMB311 |
|
route conflict observed in ENCS-W platform |
|
waasnet coredump during insertion of ssl in http proxy connection |
|
Unexpected reload of waasnet process (dft thread) |
|
Unexpected restart of WAASNET process in connection closure |
|
Default Gateway Mac Programed as Zero In WAASNET |
|
Unexpected restart of SNMP process in WAAS. |
|
waasnet service restarting frequently while handling malformed packet |
|
snmpwalk gets timed out with Remote SNMP ID and notify inform enabled |
|
Getting 'Communication Send Error' while registering WAAS to the Satellite Server |
|
Unexpected reload of DRE process. |
|
Syslog message not received from WAAS |
|
Disable/enable zswap should set correct swappiness |
|
Generate Syslog/Alarm when Debugs are enabled or disabled |
Cisco Software Version 6.4.5b Open Caveats
The following caveats are open in Cisco Software Version 6.4.5b. Note that there might be additional open caveats from previous releases that are applicable to this release, unless they are specifically listed as resolved.
Caveat ID Number |
Description |
---|---|
Model is Undefined and ISR-WAAS not accessible through Internal IP with other Issues-ISR4K |
|
Passwords Stored Using Cryptographically Weak Hash algorithm |
|
ENCS-W device with port-cahnnel configuration lost reachability after reload. |
|
Unexpected "waasnet" process reloaded |
Cisco Software Version 6.4.5a Resolved Caveats
The following caveats, impacting earlier software versions of Cisco WAAS, were resolved in Cisco Software Version 6.4.5a.
Caveat ID Number |
Description |
---|---|
After Primary & secondary CM fail over, SDWAN AppNav configs removed |
|
slowness observed in "show run" or "write mem" commands post WAAS device domain-join |
Cisco Software Version 6.4.5a Open Caveats
The following caveats are open in Cisco Software Version 6.4.5a. Note that there might be additional open caveats from previous releases that are applicable to this release, unless they are specifically listed as resolved.
Caveat ID Number |
Description |
---|---|
AppNav Policy Pass through data mismatches in AppNav report pass through reasons chart |
|
SDWAN Support: SN movement between SNGs Fails |
|
Apache HTTP server multiple vulnerabilities CVE-2020-1934 CVE-2020-1927 |
|
SDWAN AppNav Report shows double the actual data after PCM/SCM fail over |
Cisco Software Version 6.4.5 Open Caveats
The following caveats are open in Cisco Software Version 6.4.5. Note that there might be additional open caveats from previous releases that are applicable to this release, unless they are specifically listed as resolved.
For NFVIS open caveats that affect Cisco WAAS, see the Release Notes for Cisco Enterprise Network Function Virtualization Infrastructure Software, Release 3.12.x.
Caveat ID Number |
Description |
---|---|
Apache httpd server upgrade to 2.4.x version in WAAS |
|
Resource reservation failed for proxy connect connections |
|
Multiple times WAASNET process abnormal restart |
|
Slow upgrade WCM with many ssl accelerated services |
|
mingetty process constantly restarting |
|
syslog is flooding with Emergency Thaw messages |
|
DFT memory dump occurred in WAASNET |
|
syslog rate-limit does not work well |
|
CM:Latest raised alarm not cleared from DB until new alarm raised |
|
MAPI AO is not optimizing few haader pattern of MAPI over HTTPS traffic. |
|
SMB AO restarts when signed session and unsigned anonymous share session established in single flow |
|
AppNav Policy Pass through data mismatches in AppNav report pass through reasons chart |
|
Invalid extension of vmanage certificate is accepted |
|
SDWAN Support: SN movement between SNGs Fails |
|
waasnet memory dump occurred with SSL traffic |
|
slowness observed in "show run" or "write mem" commands post WAAS device domain-join |
|
SSL connections are breaking due to incomplete packet exchange between waas devices |
|
In some cases, WAAS device shows cpu utilization exceeded threshold alarm |
|
After Primary & secondary CM fail over, SDWAN AppNav configs removed |
|
SMB AO restarts when signed session and unsigned anonymous share session established in single flow |
|
SSL connections are breaking due to incomplete packet exchange between waas devices |
Cisco WAAS Software Version 6.4.5x Command Changes
This section lists the new and modified commands in Cisco WAAS Software Version 6.4.5c.
Mode |
Command |
Description |
---|---|---|
Global configuration |
|
Set the custom AVPair(value). |
|
Set the value for custom attribute (max 32 characters) |
Cisco WAAS Documentation Set
In addition to this document, the Cisco WAAS documentation set includes the following publications: