About Cisco ASR 1000 Series Aggregation Services Routers


Note

Explore the Content Hub, the all new portal that offers an enhanced product documentation experience.

  • Use faceted search to locate content that is most relevant to you.

  • Create customized PDFs for ready reference.

  • Benefit from context-based recommendations.

Get started with the Content Hub at content.cisco.com to craft a personalized documentation experience.

Do provide feedback about your experience with the Content Hub.


Cisco ASR 1000 Series Aggregation Services Routers are Cisco routers deployed as managed service provider routers, enterprise edge routers, and service provider edge routers. These routers use an innovative and powerful hardware processor technology known as the Cisco QuantumFlow Processor.

Cisco ASR 1000 Series Aggregation Services Routers run the Cisco IOS XE software and introduce a distributed software architecture that moves many operating system responsibilities out of the IOS process. In this architecture, Cisco IOS, which was previously responsible for almost all of the internal software processes, now runs as one of many Cisco IOS XE processes while allowing other Cisco IOS XE processes to share responsibility for running the router.

New Features and Important Notes

New and Changed Information

The following sections list the new hardware and software features that are supported on the Cisco ASR 1000 Series Aggregation Services Routers.

New Hardware Features in Cisco IOS XE Everest 16.6.2

No new hardware features were introduced for Cisco ASR 1000 Series in Cisco IOS XE Everest 16.6.2.

New Software Features in Cisco IOS XE Everest 16.6.2

The following are the new software features introduced in Cisco ASR 1000 Series Aggregation Services Routers for Cisco IOS XE Everest 16.6.2.

ASR1000: EPA 2x40G Support

Effective Cisco IOS XE Everest 16.6.2, Cisco ASR 1000 2x40GE Ethernet Port Adapter (EPA-2X40GE) is supported on the following Cisco ASR 1000 Series Aggregation Services Routers:

  • ASR 1006-X

  • ASR 1009-X

  • ASR 1013

  • ASR 1002-HX

Encrypted Traffic Analytics

For detailed information, see the following Cisco documents:

https://www.cisco.com/c/en/us/td/docs/ios-xml/ios/netflow/configuration/xe-16-6/nf-xe-16-6-book/encrypted-traffic-analytics.html

https://www.cisco.com/c/dam/en/us/td/docs/solutions/CVD/Campus/CVD-Encrypted-Traffic-Analytics-Deployment-Guide-2017DEC.pdf

New Hardware Features in Cisco IOS XE Everest 16.6.1

No new hardware features were introduced for Cisco ASR 1000 Series in Cisco IOS XE Everest 16.6.1.

New Software Features in Cisco IOS XE Everest 16.6.1

The following are the new software features introduced in Cisco ASR 1000 Series Aggregation Services Routers for Cisco IOS XE Everest 16.6.1.

10GBase AOC SFP+ Cable support

Effective with Cisco IOS XE Everest 16.6.1, the following transceiver models are supported on Cisco 1001-X Router, Cisco ASR 1001-HX Router, and Cisco ASR 1002-HX Router:

  • SFP-10G-AOC1M

  • SFP-10G-AOC1M

  • SFP-10G-AOC2M

  • SFP-10G-AOC3M

  • SFP-10G-AOC5M

  • SFP-10G-AOC7M

  • SFP-10G-AOC10M

  • SFP-10G-SR-S

  • SFP-10G-LR-S

For detailed information, see the following Cisco document:

https://www.cisco.com/c/en/us/td/docs/interfaces_modules/transceiver_modules/compatibility/matrix/10GE_Tx_Matrix.html#_Toc487104295

BGP - SR: BGP Prefix SID Redistribution

For detailed information, see the following Cisco document:

https://www.cisco.com/c/en/us/td/docs/ios-xml/ios/seg_routing/configuration/xe-16-6/segrt-xe-16-6-book/sr-bgp-prefix-sid-redis.html

BGP Feature Monitoring

Effective with Cisco IOS XE Everest 16.6.1, the Cisco IOS XE YANG models are supported for Border Gateway Protocol (BGP).

Broadband Smart Licensing

For detailed information, see the following Cisco document:

https://www.cisco.com/c/en/us/td/docs/ios-xml/ios/bbdsl/configuration/xe-16-6/bba-xe-16-6-book/bba-smrt-lnse.html

CPAK-100G-SR4 Transceiver Support

For detailed information, see the following Cisco document:

https://www.cisco.com/c/en/us/td/docs/routers/asr1000/install/guide/1001HX_1002HX/b_ASR1001HX-1002HX_HIG/b_ASR1001HX-1002HX_HIG_chapter_010.html

Extensible Authentication Protocol - Transport Layer Security (EAP-TLS) method support for MACsec Key Agreement (MKA)

The Extensible Authentication Protocol - Transport Layer Security (EAP-TLS) method support for MACsec Key Agreement (MKA) feature uses 802.1X port-based authentication with Extensible Authentication Protocol – Transport Layer Security (EAP-TLS) to carry certificates for router ports where MACsec encryption is required. EAP-TLS mechanism is used to do the mutual authentication and to get the master session key (MSK) from which the connectivity association key (CAK) is derived for the MACsec Key Agreement (MKA) protocol.

For detailed information, see the following Cisco document:

https://www.cisco.com/c/en/us/td/docs/ios-xml/ios/macsec/configuration/xe-16-6/macsec-xe-16-6-book/macsec-cert-based-encrypt.html

Gx Monitoring

For detailed information, see the following Cisco document:

https://www.cisco.com/c/en/us/td/docs/ios-xml/ios/isg/configuration/xe-16-6/isg-xe-16-6-book/isg-gx-dia-report-monitor.html

IPSec Anti-Replay Should Work When QoS is Enabled

For detailed information, see the following Cisco document:

https://www.cisco.com/c/en/us/td/docs/ios-xml/ios/sec_conn_dplane/configuration/xe-16-6/sec-ipsec-data-plane-xe-16-6-book/sec-ipsec-antireplay.html

ISIS - SR OAM: ISIS FEC

For detailed information, see the following Cisco document:

https://www.cisco.com/c/en/us/td/docs/ios-xml/ios/seg_routing/configuration/xe-16-6/segrt-xe-16-6-book/oam-entropy-label-support.html

ISIS - SR: uLoop Avoidance

For detailed information, see the following Cisco document:

https://www.cisco.com/c/en/us/td/docs/ios-xml/ios/seg_routing/configuration/xe-16-6/segrt-xe-16-6-book/sr-is-is-uloop-aviodance.html

IWAN Application Group IWAN Harmonization

An attribute “application-set” is added, which shares the existing features of all other attributes. This attribute can be used in QoS/PfR configurations and protocol customizations. The limitation of this attribute is that the “application-set” and “application-group” attributes must not be configured simultaneously with match protocol attribute statements.

Multiple HSL (N44 & N64) destinations over IPv6Multiple HSL (N44 & N64) destinations over IPv6

For detailed information, see the following Cisco document:

https://www.cisco.com/c/en/us/td/docs/ios-xml/ios/ipaddr_nat/configuration/xe-16-6/nat-xe-16-6-book/iadnat-hsl-vrf.html

NAT-Serviceability

For detailed information, see the following Cisco document:

https://www.cisco.com/c/en/us/td/docs/ios-xml/ios/ipaddr_nat/configuration/xe-16-6/nat-xe-16-6-book/iadnet-int-overload-ports.html

OSPFv2: SR-OAM LSP Support

For detailed information, see the following Cisco document:

https://www.cisco.com/c/en/us/td/docs/ios-xml/ios/seg_routing/configuration/xe-16-6/segrt-xe-16-6-book/oam-entropy-label-support.html

Patch for x86

For detailed information, see the following Cisco document:

https://www.cisco.com/c/en/us/td/docs/ios-xml/ios/config-mgmt/configuration/xe-16-6/config-mgmt-xe-16-6-book/cm-smu.html

PBR Named Ordering Rules Support for Yang

For detailed information, see the following Cisco document:

http://www.cisco.com/c/en/us/td/docs/ios-xml/ios/iproute_pi/configuration/xe-16-6/iri-xe-16-6-book/iri-iprouting.html

PfRv3 Remote Prefix Tracking

For detailed information, see the following Cisco document:

http://www.cisco.com/c/en/us/td/docs/ios-xml/ios/pfrv3/configuration/xe-16-6/pfrv3-xe-16-6-book/pfrv3-remote-prefix.html

PfRv3 Per Interface Probe Tuning

For detailed information, see the following Cisco document:

http://www.cisco.com/c/en/us/td/docs/ios-xml/ios/pfrv3/configuration/xe-16-6/pfrv3-xe-16-6-book/pfrv3-int-probe.html

PfRv3-Inter-DC-Optimization

For detailed information, see the following Cisco document:

https://www.cisco.com/c/en/us/td/docs/ios-xml/ios/pfrv3/configuration/xe-16-6/pfrv3-xe-16-6-book/pfrv3-inter-dc.html

PnP:SMU/Patching Support

For detailed information, see the following Cisco document:

https://www.cisco.com/c/en/us/td/docs/ios-xml/ios/pnp/configuration/xe-16-6/pnp-xe-16-6-book.html

RESTconf Programmable Interface

For detailed information, see the following Cisco document:

https://www.cisco.com/c/en/us/td/docs/ios-xml/ios/prog/configuration/166/b_166_programmability_cg/restconf_prog_int.html

SCP Performance Improvement

For detailed information, see the following Cisco document:

https://www.cisco.com/c/en/us/td/docs/ios-xml/ios/sec_usr_ssh/configuration/xe-16-6/sec-usr-ssh-xe-16-6-book.html

SD-Access Phase 2

For detailed information, see the following Cisco document:

https://www.cisco.com/c/en/us/td/docs/ios-xml/ios/sdaccess/configuration/xe-16-6/sda-xe-16-6-book.html

SD-AVC Auto-update Capability

For detailed information, see the following Cisco document:

https://www.cisco.com/c/en/us/td/docs/ios-xml/ios/qos_nbar/configuration/xe-16-6/qos-nbar-xe-16-6-book.html

SD-AVC NBAR Export Capability

For detailed information, see the following Cisco document:

https://www.cisco.com/c/en/us/td/docs/ios-xml/ios/qos_nbar/configuration/xe-16-6/qos-nbar-xe-16-6-book.html

Software Maintenance Upgrade

For detailed information, see the following Cisco document:

https://www.cisco.com/c/en/us/td/docs/ios-xml/ios/config-mgmt/configuration/xe-16-6/config-mgmt-xe-16-6-book/cm-smu.html

SR TE OAM

For detailed information, see the following Cisco document:

https://www.cisco.com/c/en/us/td/docs/ios-xml/ios/seg_routing/configuration/xe-16-6/segrt-xe-16-6-book/oam-entropy-label-support.html

SR:OAMIGPFEC, BGPFEC

For detailed information, see the following Cisco document:

https://www.cisco.com/c/en/us/td/docs/ios-xml/ios/seg_routing/configuration/xe-16-6/segrt-xe-16-6-book/oam-entropy-label-support.html

SXP Enhancements for Filtering (IP prefix and SGT) and Fail-open

For detailed information, see the following Cisco document:

https://www.cisco.com/c/en/us/td/docs/ios-xml/ios/sec_usr_cts/configuration/xe-16-6/sec-usr-cts-xe-16-6-book/cts-sxp-sgt.html

UDF ACL Enhancement

For detailed information, see the following Cisco document:

https://www.cisco.com/c/en/us/td/docs/ios-xml/ios/lanswitch/configuration/xe-16-6/lanswitch-xe-16-6-book/lnsw-conf-erspan.html

Web Server Enhancements

For detailed information, see the following Cisco document:

https://www.cisco.com/c/en/us/td/docs/ios-xml/ios/https/configuration/xe-16-6/https-xe-16-6-book.html

WEB User Interface

Supports an embedded GUI-based device-management tool that provides the ability to provision the router, simplifies device deployment and manageability, and enhances user experience. The following features are supported on Web User Interface from Cisco IOS XE Everest 16.6.1:

  • Cisco Umbrella Branch—The Cisco Umbrella Branch feature enables cloud-based security service by inspecting the Domain Name System (DNS) query that is sent to the enterprise DNS server through the Cisco 4000 Series Integrated Services Routers (ISR). The security administrator configures policies on the Cisco Umbrella Branch cloud to either allow or deny traffic towards the fully qualified domain name (FQDN). Cisco 4000 Series ISR acts as a DNS forwarder on the network edge, transparently intercepts DNS traffic, and forwards the DNS queries to the Cisco Umbrella Branch cloud.

  • Dynamic Multipoint VPN—The Dynamic Multipoint VPN feature allows users to better scale large and small IP Security (IPsec) Virtual Private Networks (VPNs) by combining generic routing encapsulation (GRE) tunnels, IPsec encryption, and Next Hop Resolution Protocol (NHRP).

  • Snort IPS/IDS—The Snort IPS feature enables Intrusion Prevention System (IPS) or Intrusion Detection System (IDS) for branch offices on Cisco 4000 Series Integrated Services Routers and Cisco Cloud Services Router 1000v Series. This feature uses the open source Snort solution to enable IPS and IDS.

  • Zone-Based Firewall—Allows you to easily manage Cisco IOS unidirectional firewall policy between groups of interfaces known as zones.

YANG Data Models

For the list of Cisco IOS XE YANG models available with this release, navigate to https://github.com/YangModels/yang/tree/master/vendor/cisco/xe/1661. Revision statements embedded in the YANG files indicate if there has been a model revision. The README.md file in the same github location highlights changes that have been made in the release

Zero Touch Provisioning

Supports HTTP file downlaod with TFTP file download. For detailed information, see the following Cisco document:

https://www.cisco.com/c/en/us/td/docs/ios-xml/ios/prog/configuration/166/b_166_programmability_cg/zero_touch_provisioning.html

Important Notes

The following sections contain important notes about Cisco ASR 1000 Series Aggregation Services Routers.

Encrypted Traffic Analytics and Embedded Services Processors

Because of CSCvg38872 Cisco ASR 1000 Series Aggregation Services Routers with ESP100 or ESP200 is not supported in .

Caveats

Open and Resolved Bugs

The open and resolved bugs for a release are accessible through the Cisco Bug Search Tool. This web-based tool provides you with access to the Cisco bug tracking system, which maintains information about bugs and vulnerabilities in this product and other Cisco hardware and software products. Within the Cisco Bug Search Tool, each bug is given a unique identifier (ID) with a pattern of CSCxxNNNNN, where x is any letter (a-z) and N is any number (0-9). The bug IDs are frequently referenced in Cisco documentation, such as Security Advisories, Field Notices and other Cisco support documents. Technical Assistance Center (TAC) engineers or other Cisco staff can also provide you with the ID for a specific bug. The Cisco Bug Search Tool enables you to filter the bugs so that you only see those in which you are interested.

In addition to being able to search for a specific bug ID, or for all bugs in a product and release, you can filter the open and/or resolved bugs by one or more of the following criteria:

  • Last modified date

  • Status, such as fixed (resolved) or open

  • Severity

  • Support cases

You can save searches that you perform frequently. You can also bookmark the URL for a search and email the URL for those search results.

Using the Cisco Bug Search Tool

For more information about how to use the Cisco Bug Search Tool, including how to set email alerts for bugs and to save bugs and searches, see Bug Search Tool Help and FAQ.

Before You Begin

You must have a Cisco.com account to log in and access the Cisco Bug Search Tool. If you do not have one, you can register for an account.

Procedure


Step 1

In your browser, navigate to the Cisco Bug Search Tool.

Step 2

If you are redirected to a Log In page, enter your registered Cisco.com username and password and then, click Log In.

Step 3

To search for a specific bug, enter the bug ID in the Search For field and press Enter.

Step 4

To search for bugs related to a specific software release, do the following:

  1. In the Product field, choose Series/Model from the drop-down list and then enter the product name in the text field. If you begin to type the product name, the Cisco Bug Search Tool provides you with a drop-down list of the top ten matches. If you do not see this product listed, continue typing to narrow the search results.

  2. In the Releases field, enter the release for which you want to see bugs.

    The Cisco Bug Search Tool displays a preview of the results of your search below your search criteria.

Step 5

To see more content about a specific bug, you can do the following:

  • Mouse over a bug in the preview to display a pop-up with more information about that bug.

  • Click on the hyperlinked bug headline to open a page with the detailed bug information.

Step 6

To restrict the results of a search, choose from one or more of the following filters:

Filter

Description

Modified Date

A predefined date range, such as last week or last six months.

Status

A specific type of bug, such as open or fixed.

Severity

The bug severity level as defined by Cisco. For definitions of the bug severity levels, see Bug Search Tool Help and FAQ.

Rating

The rating assigned to the bug by users of the Cisco Bug Search Tool.

Support Cases

Whether a support case has been opened or not.

Your search results update when you choose a filter.


Cavin Cisco IOS XE Everest 16.6.10

Resolved Caveats—Cisco IOS XE Everest 16.6.10

All resolved bugs for this release are available in the Cisco Bug Search Tool through the Open Bug Search.

Caveat ID Number

Description

CSCvt53563

Cisco IOS XE Software NETCONF and RESTCONF Authentication Bypass Vulnerability

CSCvw25564

Cisco IOS and IOS XE Software IKEv2 AutoReconnect Feature Denial of Service Vulnerability

CSCvw46194

IOS and IOS XE Software UDLD Denial of Service Vulnerability

CSCvx41294

High CPU usage caused by "TCP Timer" process

CSCvx66699

Cisco IOS and IOS XE Software TrustSec CLI Parser Denial of Service Vulnerability

CSCvv78028

Cisco IOS XE Software Zone-Based Policy Firewall ICMP and UDP Inspection Vulnerability

CSCvx16081

Cisco IOS XE Software H.323 Application Level Gateway Bypass Vulnerability

CSCvx37176

Cisco IOS XE Software Rate Limiting Network Address Translation Denial of Service Vulnerability

Open Caveats—Cisco IOS XE Everest 16.6.10

All open bugs for this release are available in the Cisco Bug Search Tool through the Open Bug Search.

Caveat ID Number

Description

CSCvv12527

Crash in SNMP Engine process while polling chassis id in lldp

CSCvw57495

Cisco ASR 900 and ASR 920 Series Aggregation Services Routers Access List Bypass Vulnerability

Cavin Cisco IOS XE Everest 16.6.9

Resolved Caveats—Cisco IOS XE Everest 16.6.9

All resolved bugs for this release are available in the Cisco Bug Search Tool through the Open Bug Search.

Caveat ID Number

Description

CSCvg79590

Traffic passed with port unauthorized

CSCvn68893

ASR1k Process = TUN ETHER Thread crash

CSCvr26524

Crash due to NBAR classification

CSCvr66463

With CRL fetch failed, stuck at Failed to send the request. There is another request in progress

CSCvr93458

Hub router crashed when run test_mpol_policy_qos_policy_template testcase

CSCvs48300

Arkenstone boot fail in ISR4221

CSCvs58804

Cisco IOS XE Software Arbitrary Code Execution Vulnerability

CSCvs71952

Cisco IOS XE Software Zone-Based Firewall Denial of Service Vulnerabilities

CSCvs85642

ISR G3 router crashes when rtp-nte DTMF packet arrives at MTP + BDI

CSCvt19873

ASR1k:Router stops forwarding traffic with MPLS TE & FRR

CSCvt76844

ASR1002-X ESP crash in multikey_hash_ager_tw_timer_to()

CSCvt79205

ASR1001-X: 'show environment' is no longer monitoring R0 voltage sensors

CSCvu00800

Unexpected reload when UC wsapi CLI is enabled.

CSCvu04413

Cisco IOS XE Software for Cisco ASR 1000 Series ESP-20 IP ARP DoS Vulnerability

CSCvu11115

IOS-XE MTP Fails to Interwork DTMF RFC2833 from Payload 100 to Payload 101

CSCvu34009

Calls going through T1 are rejected with "no dsps found" Analog/TDM Hairpin calls

CSCvu99045

NIM-1GE-CU-SFP/NIM-2GE-CU-SFP: Show interface output reports incorrect bandwidth

CSCvv98528

ISR 4K SER parity error checks continuing till router crashes

CSCvw34157

APPNAV CFT Crashes

CSCvw40079

ASR1k crashes in ipv6 mgd timer code when removing vrf config

CSCvw57860

Duplicate entries seen in MAC filter table.

CSCvw68171

Duplicate Bytes and Packet when Q in Q is configured

CSCvx02515

BGP IPv6 link-local session doesn't come up

Open Caveats—Cisco IOS XE Everest 16.6.9

All open bugs for this release are available in the Cisco Bug Search Tool through the Open Bug Search.

Caveat ID Number

Description

CSCve01479

e2e ping is failed after configuring profiles qos-de and aaaauth1

CSCvf50723

Packet-tracer error message % Error: Failed to collect packet info

CSCvf86185

NIM-SSD: Inventory of disk0 and disk1 are interchanged on Polaris 16.x

CSCvg77924

FRR feature not working in ESP100 and ESP200

CSCvi37580

There is unexpected packets lost TCA reported on ISR4331 platform

CSCvj17326

isr44xx crashes in o2_cavm_pci_unlock when forwarding large packets for VPLS

CSCvj56098

CDP over EVC is not working

CSCvn82063

Input CRC counter increasing on Tengi interface

CSCvp49863

Incomplete arp in management interface

CSCvp68166

CDETS to follow up fix "P-bit Sev Err Secs" increasing in patterns of 256 in SM-X-1T3/E3 in ISR4451

CSCvr27554

ASR1000-RP2/ASR1000-RP3: OIR after clock set doesn't save the time in RTC

CSCvr89973

NIM interfaces go into shutdown after router bootup

CSCvt15551

Crash observed in QFP in ASR1001-X running 16.06.05 when GPM is running low

CSCvt35331

Console port goes unresponsive, reboot required to restore it

CSCvt53843

Dataplane QFP crash with CAPWAP traffic when CAPWAP stripping is enabled

CSCvt71774

C1111 HSRP preempt worked even though HSRP's preempt is not configured

CSCvt90424

CRC increasing on down int Te0/0/20

CSCvv33576

IGMP snooping table not populated on ISR4k

CSCvw52574

ASR1K configured with 'no ip unreachables' sending ICMP Type 3 Code 13

CSCvw59276

erspan classify ucode crash

CSCvw87188

Stuck SGT pending-issue-update objects with CTS configured and NIM installed

CSCvw89147

Crash at the moment of calculating tcp header

CSCvw90983

ISR4K crashes with scaled QOS after applying QOS configuration to sub-interfaces

CSCvx23482

ISR4321 reloading once NIM-1MFT-T1/E1 module is installed

Caveats Cisco IOS XE Everest 16.6.8

Resolved Caveats—Cisco IOS XE Everest 16.6.8

All resolved bugs for this release are available in the Cisco Bug Search Tool through the Open Bug Search.

Caveat ID Number

Description

CSCua95810

IOS PKI: trustpoint doesn't rollover regenerated RSA keys.

CSCva53392

Polaris 16.3.1 : Machine and bus error failures in ESP20

CSCvh59431

Byte counters for physical interface and subinterface don't match

CSCvi07924

ASR1k ESP200 is missing suite B support when ESP200 is put into slot 1 only

CSCvi48253

Self-signed certificates expire on 00:00 1 Jan 2020 UTC, cannot be created after that time

CSCvk71047

Router fails to reserve necessary ports for VPN traffic (UDP 500 & 4500) for ISAKMP

CSCvm46362

ASR1k node in HA pair might crash due to punt-keepalive failures

CSCvo46778

ESP200X:ucode Crash seen with PR2650((URPF+QOS+ACL+Netflow Multicast)- with IMIX traffic)

CSCvo97985

path-id discovery failure with "CENT throttle check fails, throttle type:0"

CSCvp23112

OBS: ping stop working on replacing MIP100 ->>> SIP40 >>>>>>MIP100

CSCvp70459

IOS: Prevent crypto ACL change if already mapped with crypto map configuration

CSCvp89419

Error messages seen when configuring "logging persistent protected" on ASR1K routers

CSCvp94050

cpp_bqs_srt_yoda_csr_tree_seid_initialize:1744 is not in "placed" state

CSCvq61590

ESP reload due to cpp_cp_svr exception at cpp_bqs_exponent_cnt_validate

CSCvq81620

Router crashes with ZBF HA sync.

CSCvq90361

NHRP process crash on using same tunnel address on multiple spokes

CSCvq98095

Gi0/0/0 interface stays up/up and LED green after cable removed

CSCvr01327

incorrect Total number of translations on show ip nat translations

CSCvr01454

Punt fragment crash when receive EoGRE packets which have many fragments

CSCvr15127

ASR1K/ISR4K Calls fade to no-way audio due to media inactivity detection after 20 minutes

CSCvr17167

High memory utilization under "ezman" due to excessive parity error logging

CSCvr27777

ASR1k - Egress byte count is innacurate

CSCvr42114

16.6.7 UTD: Signature download failure

CSCvr43037

"sh macsec statistics int <>" and "sh macsec status interface <>" does not show output

CSCvr45917

ASR1K DSP MIB cdspTotalChannels not responding

CSCvr58230

While signalling forking the CUBE is not Sending Re-INVITE for T.38 with the Authorized header.

CSCvr76534

ISR4k : Crash seen at Process Exec

CSCvr80706

IOSXE - ucode crash in ZBF during flow creation for TCP subflows

CSCvr89957

CFT crashed frequently

CSCvs04194

Process = Exec crash seen on dmap longevity testbed with clear cry sa peer several times

CSCvs07609

Portchannel stats not working on ASR1002-HX

CSCvs09052

ASR1K OTV: Incorrect MAC address count on EFP/BD QFP stats

CSCvs28073

IOS-XE memory leak seen in 16.3.7 in IOSd due to update_sn_ao_state not deleting TDL bucket.

CSCvs75958

ISR4331/K9 Dialer cannot make calls suddenly

CSCvs86573

Connect message is never forwarded to the calling side

CSCvt33799

Virtual address not reachable: "mac:0000:0c07:xxxx download to DP failed" for HSRP / VRRP over BDI.

Open Caveats—Cisco IOS XE Everest 16.6.8

All open bugs for this release are available in the Cisco Bug Search Tool through the Open Bug Search.

Caveat ID Number

Description

CSCvj55210

Memory leaks at __be_PKI_keypair_name_get

CSCvo70549

CME SIP: BE4000 Smart Licensing - Extension Assigner temp registration uses endpoint license

CSCvp70211

Crash when running show crypto map

CSCvp98673

Inband to OOB DTMF Fails to Be Passed On CUBE If Media Inactive Comes During Digit Processing

CSCvq91046

ASR 1000 crash in NAT code when processing PPTP traffic

CSCvr17169

qfp ucode crash with media monitor

CSCvr48349

ESP ucode crashed when running NAT with bpa (CGN)

CSCvt70723

ASR 1000 router crashed due to Crypto IKEv2 memory leaks

CSCvt76844

ASR1002-X ESP crash in multikey_hash_ager_tw_timer_to()

CSCvt78293

ASR 1000 RP3 crash due to CpuCatastrophicError

Caveats in Cisco IOS XE Everest Release 16.6.7

Resolved Caveats—Cisco IOS XE Everest 16.6.7

All resolved bugs for this release are available in the Cisco Bug Search Tool through the Open Bug Search.

Caveat ID Number

Description

CSCvd55092

C3650 traffic will not be block although hit deny ACL entry

CSCvd77610

AAA always reports server down with non-management VRF also

CSCvg32153

"show interface port-channel" falsely reports output drops when there are no actual output drops

CSCvh11088

Crash on OPF_CSR32_OPF_LOGIC_ERR_LEAF_INT__INT_START_OF_BURST_MARKER_ERR

CSCvh23735

CSR1000v HA vCUBE IP-4-DUPADDR detected after Active router goes down.

CSCvh49874

FNF monitor download to DP failed after changing netflow record

CSCvh79264

Change the punt cause of packets whose destination is virtual IP from SUBNET_BCAST to FOR_US

CSCvh92659

BFD flaps everytime with dynamic tunnel creation in DMVPN

CSCvi04907

T38 Packets are dropped by CUBE on ISR G2 in Multi VRF Scenario

CSCvi22263

Crash when IOS is adapting shaping with Adaptive QoS over DMVPN configured

CSCvj00317

Memory leak VOIP *MallocLite*

CSCvj08229

ASR1001-X: interface LED remains amber after shut/no shut on the interface

CSCvj28921

High CPU due to Alignment Corrections - SMEF & IWAN

CSCvj72294

memory leak @ CCSIP_SPI_CONTR

CSCvj76866

Partial Power Failure in Stack Causes Interfaces to Become "shutdown"

CSCvk17998

Rekey Timer are same for both the Server and Client

CSCvk47271

ISR4K crashed in FXS-FXS non-hairpin call

CSCvk51939

SSS Manager Traceback observer when test MLPPP

CSCvk63764

Driver code improvement for debug-ability of XAUI link issues

CSCvm10850

Crash after CPUHOG in ISDN L2D SRQ Process

CSCvm47690

Addition/Edits to numbered OG ACL using "access-list <>" command does not re-expand the ACL.

CSCvm65979

ASR-CUBE: Crashes with call spike configuration changes

CSCvn00104

Software crash due to memory corruption after packet trace was enabled.

CSCvn01507

ISR not re-calculating the hash value correctly after payload change

CSCvn02456

Router crashes when the calls doesn't establish after making 2 calls when we set "max-conn 2"

CSCvn03502

SR: CFLOW input intf index is 0xffffffff for Service-engine DSP module interface

CSCvn23906

DHCP Server sends Renew ACKs to Clients with 00:00:00:00:00:00 MAC in L2 frame

CSCvn38960

pending objects seen which fp reload with OGACL config

CSCvn45732

Device crashing if we unconfigure the NTP on the device

CSCvn57892

High Memory utilization due to Wireless Manager IOSD process

CSCvn61039

ISR4k - 'control-plane host' feature was moved to APPX feature set.

CSCvn71373

IOS-XE routers cannot boot due to a bootflash problem

CSCvn78961

Subscribers cannot re-login due to CoA time-out (lite-sessions in routed mode)

CSCvo03458

PKI "revocation check crl none" does not fallback if CRL not reachable

CSCvo04856

DataPlane (DP) crash observed in MMOH call flow

CSCvo06817

Router crash while executing show commands using '|' (pipe) to filter the output.

CSCvo08740

TCP 3WAY handshake fail for redirected packet using PBHK

CSCvo10145

Memory overlay crash when using include-cui

CSCvo10491

PnP Agent should detect image upgrade scenario and configure dialer to bring up cellular interface

CSCvo11786

SCCP Application does not clear failed sockets leading to leak and socket pool exhaustion

CSCvo12745

Packet drop occurs after acl permit configurations

CSCvo12799

Call is not getting connected in Forking Re-INVITE scenario

CSCvo17287

ASR1001-X crashed upon receiving Radius Access-Accept message

CSCvo21122

Memory leak at hman process

CSCvo36031

WSMA crash formatting show command output

CSCvo46138

Stuck CPP Thread while processing H323 packet

CSCvo46405

qfp ucode crashed with sRTP traffic - chunk memory corruption

CSCvo47376

Cisco REST API Container for IOS XE Software Authentication Bypass Vulnerability

CSCvo55194

After RSP switchover label imposition was not programmed in Software on APS standby router

CSCvo57768

NetFlow issue 3850 switch not sending TCP flags

CSCvo61610

FXS - no busy tone is generated on remote-onhook condition with call pickup scenario

CSCvo65415

ASR1k crashes by handling DHCP packet

CSCvo66216

IPSec-Session count in "show crypto eli" reaches max causing VPN failure

CSCvo70504

Missing Calling-Station-ID in Accounting Ticket for Web-Tal locations

CSCvo71721

When sending account-logon ISG do not reply with ACK nor NACK.

CSCvo73897

[SDA] [PI changes] No audio during first few seconds of voice call between 2 Fabric Edge

CSCvo73954

ASR1001-HX: Excessive pause frames (IEEE802.3x compliant) affect traffic on other interfaces

CSCvo74486

IOS-XE ACL port information preserved after encapsulation

CSCvo83945

Ping failure on Port-channel sub interface when is using EVC in main port channel

CSCvo87827

Crash when polling IPForwarding MIB

CSCvo90060

Wrong label programming leading to traffic drop

CSCvo92514

SDP attribute list corruption causes voice gateway crash

CSCvo94211

Traffic stops flowing on Xconnect tunnel when upgraded to 16.9.2

CSCvp08353

Add ERROR message over IOS console when HSPRDA TCAM region gets full

CSCvp10711

Hierarchical QoS stops working on GRE tunnel if dest route flaps between 2nd tunnel and physical int

CSCvp24405

Router crash after adding macsec reply-protection command on an interface

CSCvp24911

SRTP ROC Stress: CPP crash with 6000+ concurrent calls - g729

CSCvp24981

When FQDN used for APN, IOS DNS resolves FQDN to IP, but GTP stays in DNS pending and IP 0.0.0.0

CSCvp25052

ISR4K: Router crash due to twice memory release

CSCvp27220

Tail drops on IPSLA sender when using scaled udp-jitter probes

CSCvp31779

Router Running IOS-XE 16 Crashes when Stopping EPC with ACL

CSCvp32910

CHUNKBADROOTCHUNKPTR: Bad root chunk pointer in chunk header post SSO - ASR1K

CSCvp33578

Crash at the moment of deleting a DVTI

CSCvp34230

CUBE HA - Global bind is removed during interface flap

CSCvp38317

MGCP GW doesn't reset SSRC/ROC on receiving MDCX with new IP/port/SDP parameter for SRTP call.

CSCvp38424

On-Prem DMVPN fails to establish a dynamic tunnel between Spoke nodes.

CSCvp38852

[SDA] 1st ARP getting dropped due to stale SISF IP-MAC binding

CSCvp39597

Crashes with GRE tunnels configured with QOS over Multilink Frame-relay interfaces

CSCvp42709

ISR44xx NO_PUNT_KEEPALIVE kernel crash due to CP drivers stuck punt and IPC rings

CSCvp47006

QoS counter didn't generate at ASR1001-X

CSCvp47723

ISR4K CME no way audio on calls across E1/PRI, reboot resolves for sometime

CSCvp56596

ISR4K crashes after voice register reset command is applied

CSCvp56737

Counters of interfaces are reporting inexistent peaks

CSCvp59848

ASR1001-x crash while configuring policy-map

CSCvp63616

Crash due to too many DSPs

CSCvp65151

CPP Stuck thread when processing IPv6 traffic

CSCvp67530

Corrupt free block of memory with high availability config for Session Initiation Protocol

CSCvp69393

Router crashes after snmpget to OID related to NHRP

CSCvp70443

isdn cause-location command support for switch-type primary-ntt

CSCvp72220

crash at sisf_show_counters after entering show device-tracking counters command

CSCvp72379

ip dns primary command does not get removed

CSCvp74674

QoS fails to apply to tunnel2 when underlying tunnel1 reachability change

CSCvp77100

ASR1k: Crypto Engine remains in stuck state post dataplane crash

CSCvp84831

name-ip_address mapping is bypassed when the ip domain command is configured on Cisco C1111X Router

CSCvp86216

Router ucode crash with NAT with interface flap

CSCvp87488

no login on-success log CLI does not persist across device reloads

CSCvp92334

Crash after Media monitor look up.

CSCvp96418

ISR4k BRI ping failure with WIC-1B-S/T-V3 with ISDN 128 leased line

CSCvp99884

CUBE not passing History-Info header in 181 Call is being forwarded

CSCvq00263

Device crashed @ radius_io_stats_timer_handler due to dynamic-author

CSCvq02003

ASR1002-X High Platform CPU for process mcpcc-lc-ms

CSCvq02215

ASR1K-X WATCHDOG crashes while printing to console

CSCvq04828

VRF aware reverse DNS lookup not working

CSCvq10660

ASR1006-X: cpp_cp_svr: QFP0.0 CPP Driver LOCKDOWN encountered due to previous fatal error

CSCvq10663

NAT SIP Contact Header changed to port 512

CSCvq12723

DPDK: Performing Shut/No-Shut with traffic running can cause packets to silently drop on TX

CSCvq18793

NIM-2FXS/4FXOP crashing due to DSP failed to reply properly

CSCvq19808

Egress shaping on port-channel sub-intf tail dropping traffic long before rate

CSCvq23869

ASR 1k sub-interface counters wrong.

CSCvq25297

BRI leased line can't come up automatically after remove/insert one side's cable

CSCvq29575

Voice gateway crash due to segmentation fault in process CCSIP_DNS

CSCvq30306

IOSXE: IOMD / TDL leak seen with tdl_response_xcode_stat_side_t

CSCvq31129

AppNav: Optimization failed with Asymmetrical traffic, VRF, FNF and NBAR

CSCvq32736

ARM - Marvell 7040 SoC Hardware Erratum - Kernel Driver Fix

CSCvq36130

Router is on Bootloop after QoS configuration.

CSCvq39121

ISR4k crash during packet inspection due to stuck thread

CSCvq45088

asr1k BDI not working properly for packet fragmentation - very small fragments are getting dropped

CSCvq49000

Supervisor reloaded due to cpp_cp_svr process crashing

CSCvq50202

Class-attributes duplicated after EAP reauthen. in ISG radius proxy scenario

CSCvq57205

Recording failures with XMF media forking and SIP preservation timer

CSCvq57862

cable-detect command not reflecting proper status in Analog ports on IOS-XE platforms

CSCvq58144

cpp_cp_svr crash in cpp_bqs_rm_yoda_select_sch_exponent

CSCvq58237

Supervisor reload due to cpp_cp_svr crash.

CSCvq58265

ASR1K BGP PIC Repair path broke after link flap

CSCvq58378

Crash after exiting RADIUS server configuration mode.

CSCvq58520

after reload dial-peers with ports that have the 'signal did' command show operational state none

CSCvq72560

More connections are getting passthrough with reason SNG_OVERLOAD

CSCvq74418

connectivity is broken on ingress-replication L2DP/VXLAN

CSCvq75610

IWAN router crash after upgrading to 16.3.8

CSCvq92102

VG450: SCCP crashing router while shutdown the process

CSCvq98949

ASR1000-RP3: Punt Keepalive Failure (Punt LINK DOWN) or RP FREEZE

Open Caveats—Cisco IOS XE Everest 16.6.7

All open bugs for this release are available in the Cisco Bug Search Tool through the Resolved Bug Search.

Caveat ID Number

Description

CSCva53392

Polaris 16.3.1 : Machine and bus error failures in ESP20

CSCvd65197

IOSd crashed when dialer disconnect the ISDN call

CSCve54914

NDSSO vrf ha table to be populated correctly

CSCve78446

[1661]- Switch number is missing in stack merged logs.

CSCvf28977

ESP Crash with FP Switchover

CSCvg23820

CTS PAC download fails with VRF config on non-managenent interface

CSCvh59431

Byte counters for physical interface and subinterface don't match

CSCvi36351

standby rp crash on removing member link from port-channel

CSCvj17326

isr44xx crashes in o2_cavm_pci_unlock when forwarding large packets for VPLS

CSCvj55210

Memory leaks at __be_PKI_keypair_name_get

CSCvj56098

CDP over EVC is not working

CSCvk75838

netconf/yang or telemetry retrieval of /trustsec-state/cts-rolebased-policies breaks

CSCvm42345

Ping failing due to missing address resolution entry on the XTR

CSCvn39506

ISIS: system crashed when we configure ISIS on the interface.

CSCvn82063

Input CRC counter increasing on Tengi interface.

CSCvo70549

CME SIP: BE4000 Smart Licensing - Extension Assigner temp registration uses endpoint license

CSCvp70211

Crash when running show crypto map

CSCvp77521

Device-tracking tracking 0.0.0.0 mask ignored after Legacy IPDT to SISF conversion

CSCvp89419

Error messages seen when configuring "logging persistent protected" on ASR1K routers

CSCvp98673

Inband to OOB DTMF Fails to Be Passed On CUBE If Media Inactive Comes During Digit Processing

CSCvq43004

Need to check qfp ucode crash with RTCP traffic - chunk memory corruption in RTCP path

CSCvq43550

C1111-4P doesn't restart authentication for "clear authen session" if "authen open" the port

CSCvq56114

Cat3k crash in IGMP code due to invalid source count in DNS lookup

CSCvq61590

ESP reload due to cpp_cp_svr exception at cpp_bqs_exponent_cnt_validate

CSCvq69866

HSRPv2 crash whilst retrieving group from received packet

CSCvq73281

TLS connections in WebEx between CUBE and iCP/CUSP breaks intermittently

CSCvq75307

Crash due to watchdog after adding a prefix-list/ Route-map entry to existing route map.

CSCvq78692

mGRE L3VPN broken after reload

CSCvq81620

Router crashes with ZBF HA sync.

CSCvq85913

FlexVPN with password encryption -- after MasterKey change password in profile is not working

CSCvq90361

NHRP process crash on using same tunnel address on multiple spokes

CSCvq91046

ASR1k crash in NAT code when processing PPTP traffic

CSCvq97906

"DHCPD Receive" process crash

CSCvq98095

Gi0/0/0 interface stays up/up and LED green after cable removed

CSCvr00983

Unrecoverable Error with PVDM in 0/4 and Thule+dreamliner in 1/0 on ISR4300

CSCvr05406

LISP Map-cache not updated correctly after wired Host-mobility

CSCvr15127

ASR1K/ISR4K Calls fade to no-way audio due to media inactivity detection after 20 minutes

CSCvr15253

Router Crashes while Parsing and Printing Voice Packet IEs

CSCvr17167

High memory utilization under "ezman" due to excessive parity error logging

CSCvr17169

qfp ucode crash with media monitor

CSCvr17670

The ISR4331 crash and lost all config files

CSCvr22969

3850 switch crashes on Process "DHCPD Receive" (16.6.6)

CSCvr32292

Router may crash due to segmentation fault after running EEM script

Caveats in Cisco IOS XE Everest Release 16.6.6

Resolved Caveats—Cisco IOS XE Everest 16.6.6

All resolved bugs for this release are available in the Cisco Bug Search Tool through the Open Bug Search.

Caveat ID Number

Description

CSCuw36080

SNMP with Extended ACL

CSCvb87675

BGP event crash@bgp_afpriv_imp_is_imported_path

CSCve91084

CUBE:ASR1004:sRTP-RTP (No TLS) calls failed at an input of 27CPS

CSCvg23363

Virtual-access interface MTU wrongly set when using ipsec ipv4

CSCvg79610

APPNAV - Overlapping Loopback Interface Causes Incorrect Forwarding Decision with AppNav and PfR

CSCvh57657

NAT MIB not populated when using traditional NAT

CSCvi44855

cEdge: not enough space when SSHing to bootflash having more than enough space

CSCvj12370

ASR1002-X router crashed in cpp_qm_event_collapse_hl_node

CSCvk32822

QoS stats process crash

CSCvk62792

IKE Fragmentation payload incorrectly marked as critical

CSCvk63782

Quick RP3 recovery after the Punt Path XAUI link goes down

CSCvm17883

Standby switch crashes when adding a host name to an object-group

CSCvm42441

Router crash when clearing ip nat translations

CSCvm51112

"clear crypto sa vrf MyVrf" triggers crash after updating pre-shared-keys

CSCvm56670

ACL dropping packets after updating it - %CPPEXMEM-3-NOMEM

CSCvm64865

[EIGRP] a summary route is updated by an external route

CSCvm65397

Active RP crash at __be_datagram_done

CSCvm70471

'hw-module subslot 0/2 reload' CLI does not activate the container after harddisk format

CSCvm75066

MPLSoVPN: Change behavior of default route in NHRP. Must insert 0.0.0.0/0 instead of /32

CSCvm76452

IPSec background crash while sending SNMP trap

CSCvm96960

ASR1001-X throwing: ETH_SPA_MAC-3-SPI4_ERROR: SIP0/1: Marvel MAC

CSCvn00218

CUBE Crash in sipSPIAppAddCallInfoUI

CSCvn00277

ASR 1006-X RP2 : Standby RP Crashed after running command "license boot level adventerprise"

CSCvn02419

Device running IOS-XE 16 Polaris Sees Crash When Performing NAT ALG on FTP Packet

CSCvn07478

Ethernet FRR switchover takes more than 200ms on EPA10 and EPA100 if remote Rx fiber is pulled

CSCvn17530

Router Crashes When PKI-CRL-IO_0 Runs out of Stack Space During Failed DNS Lookup for CA Server

CSCvn18790

Cube crash with %SDP-3-SDP_PTR_ERROR

CSCvn23226

NHRP process is crashing

CSCvn27449

PBR doesn't work for dialer intf when it doesn't have fixed ip address

CSCvn36359

CUBE doesn't forward INVITE with "midcal-signalling passthru media-change" during a video escalation

CSCvn37237

ASR1002-HX crashed after huge traffic is transmitted over it

CSCvn51553

QFP crashes with a HW interrupt

CSCvn56017

Crash while processing ISIS updates when DiffServ-TE is enabled

CSCvn56365

In some cases non AppNav Configuration cause AppNav-XE Token changes

CSCvn57165

Static Nat fails to translate SIP Trying L7 header

CSCvn59020

Modified EIGRP timers on Virtual-Template put all associated Vi interfaces into passive mode

CSCvn66258

ASR1000-2T+20X1GE interface speed change from 100 to 1000 after switchover

CSCvn71041

TACACS group server is not seen, when "transport-map type console test" is configured.

CSCvn72208

RP3 Punt Interface May Drop Traffic Due to VLAN Filter Hardware

CSCvn77783

class-attributes support in ISG radius proxy scenario

CSCvn78349

FlexVPN with password encryption - keyring aaa LIST password 6 xxxxx encrypted again upon reload

CSCvn83172

Router reloads on 'show track' command when there is track object for deleted serial sub-interface.

CSCvn92709

SNG_AO unavailable alarms are not clearing after removing the monitor-load feature under policy

CSCvo00585

Split DNS in case of UDP query to WAN interface IP via LAN interface

CSCvo01298

Correction to Quick RP3 recovery after the Punt Path XAUI link goes down

CSCvo05000

SIP global binding disappears when the interface to which SIP is bound flaps.

CSCvo15141

CLI "nat force-on" in voice service voip not working as expected

CSCvo19395

Router crashes when removing a crypto map

CSCvo20934

FMAN crash due to Flexible Netflow (fnf)

CSCvo24170

Crash due to chunk corruption in ISIS code

CSCvo27553

PKI incorrect fingerprint calulation during CA authentication

CSCvo36188

Crash at NAT clear

CSCvo41815

When roaming to another AP, services received from RADIUS are not applied to the session

CSCvo43953

Memory leak in CENT-BR-0 process

CSCvo47436

IOSXE - firewall corrupts half open list

CSCvo47866

Crash at Process = SCCP Auto Config

CSCvo62584

DHCP discover packets were being dropped at firewall since UDP source port as 0.

CSCvo99156

Software crash in btrace routines due to division by NULL.

Open Caveats—Cisco IOS XE Everest 16.6.6

All open bugs for this release are available in the Cisco Bug Search Tool through the Resolved Bug Search.

Caveat ID Number

Description

CSCvk51939

SSS Manager Traceback observer when test MLPPP

CSCvn01507

ISR not re-calculating the hash value correctly after payload change

CSCvo17287

ASR1001-X crashed upon receiving Radius Access-Accept message

CSCvo56553

ASR1000: RP3 crash due to punt-keepalive failures

CSCvo60849

Crash noticed when routes are getting imported twice(from vpnv4 to vrf to evpn) with route churn

CSCvo62122

IOS-XE Router may crash when attempting to Fragment Corrupted IPv4 Packet

CSCvo65415

ASR1k crashes by handling DHCP packet

CSCvo94943

ESP100 - ucode crash in encryption routines with Illegal Instruction

CSCvp02119

Crash at mpass_restore_nonbl_persist_state due to invalid vector

CSCvp03110

After Configuring a New VRF Routes Are Not Imported From WAN Into l2vpn EVPN For Unrelated VRF

CSCvj72294

Memory leak happens at CCSIP_SPI_CONTR process for every trunk out-of-dialog message with "contact" header in it.

Caveats in Cisco IOS XE Everest Release 16.6.5

Resolved Caveats—Cisco IOS XE Everest 16.6.5

All resolved bugs for this release are available in the Cisco Bug Search Tool through the Resolved Bug Search.

Caveat ID Number

Description

CSCvb03610

Watchdog crash after "% AAA/AUTHEN/CONT: Bad state in aaa_cont_login()."

CSCve31475

SNMP Error: OID not increasing: @ipAddressIfIndex.ipv6z

CSCvf91392

Catalyst switch crashes when editing wireless controller settings through web interface on c3650

CSCvg04712

ESP crash with cpp-mcplo-ucode core file

CSCvg29105

asr1k: Gec 5 tuple feautre not working in IOS-XE releases post 16.4.1

CSCvh92275

QoS Overrides loadbalancing to per prefix even with only session level policing applied

CSCvi08303

Standby RP Reloads due to Config Sync Failure When Applied Service-insertion WAAS on Physical Int

CSCvi52608

CLI show aaa clients detailed command triggered SSH to crash

CSCvi65958

Standby RP crashes due to shortage of memory when running OSPF

CSCvi70145

ASR1k | Segmentation fault in dhcp_sip process

CSCvi72480

Memory leak seen when having same src mac -address with different src ip address

CSCvi79674

CPP 0 failure Stuck Thread resulting in Unexpected Reboot

CSCvi83306

Crash with IOSXE-WATCHDOG: Process = IPv6 RIB Event Handler

CSCvi83419

Router crash when removing route-target and with hard clear

CSCvi92528

ZBFW HA: Configuring redundancy RII on virtual template auto-tunnel does not take effect

CSCvi96450

Router crashed when lsp-mtu is changed

CSCvj02910

Reload removing ipv6 VRRP group

CSCvj22537

Standby switch crashes when flow-exporter destination configured with Hostname

CSCvj31705

ASR1k unexpected crash when appNav holds a stale pointer.

CSCvj37835

EPA-1X100GE/CPAK-100G-SR4 stays in a down/down state after a reset.

CSCvj43156

Crash in XDR process: "fib_rp_table_broker_encode_buf.size <= FIB_RP_TABLE_BROKER_ENC_BUF_SZ"

CSCvj44507

16.10 ASR1K: IOSd crash @SSS Manager during sessions teardown

CSCvj45781

QFP CGM Memory depletion during ISG session churn

CSCvj68607

ASR1K crash in tplus_handle_req_timeout

CSCvj71845

Backup path incorrect for ring topology where high ISIS cost is configured on 1 link.

CSCvj76285

Snmp v2 breaks due to Authentication failure, bad community string, 16.03.06

CSCvj76316

subscriber template not cleared after idle time exceed as well as traceback generation

CSCvj77688

Shimming have some issue over selecting idb

CSCvj78551

ASR1001X @incorrect traffic statistics reported of port-channel sub interface using SNMP.

CSCvj78647

mtu cli is disappeared from show run when interface dialer sh/no shu

CSCvj79542

Missing interface source template model

CSCvj79694

sgt-map gets cleared for some of the end points for unknown reason

CSCvj83551

SISF crash in IPV6 neighbor discovery packets

CSCvj88805

ASR1K - No kernel/coredump generated with watchdog reload event

CSCvj90145

Zero Touch Provisioning (ZTP) fails to apply certain service instance configuration.

CSCvk07070

Observing bmalloc smd leaks at OBJ_WEBAUTH_LOGOUT_URL with webauth

CSCvk10633

bgp crash while running show command and same time bgp peer reset

CSCvk12253

ASR1001-HX crashed due to critical software exception on operation group-object add/remove

CSCvk12448

ESP crash due to fatal error

CSCvk20589

SSH V2 crash

CSCvk23363

ASR1k PWLAN: Cisco-AVPair = remote-id-tag=5 missing after roaming

CSCvk24143

ASR1001-X crash due to free block at tty_handle

CSCvk26471

Traffic fails after changing Copper SFP to Fiber SFP on 1GE built-in interface.

CSCvk45142

3850 crash with smd fault on rp_0_0

CSCvk46664

DNA Center SWIM Upgrade fails and unable to upgrade manually

CSCvk50734

Device Tracking - Memory leak observed with IPv6 NS/NA Packets .

CSCvk58143

500~600 secs Increase in boot time when "ip domain lookup" configured.

CSCvk59419

Crash in xoslib code for onepk process when using yang-netconf

CSCvk63602

WAAS Policy Configuration push may caused AppNav Class-maps programming issue in TCAM

CSCvk63706

ASR1000-6TGE / ASR1000-2T+20X1GE in status Unknown after Active RP3 OIR

CSCvk67137

Crash observed on ASR1002-X @ fnf_age_recalculate_record_len with AVC performance monitor config

CSCvm12196

Memleak (IP: RIB Alternate Preference): provides fix for CSCvk68355

CSCvm21219

Crash on Running "show vpdn tunnel summary" command.

CSCvm33871

ASR1K: ipv6 telnet session with vrf is failing

CSCvm39130

16.6 and 16.9: cannot OIR harddisk on ASR1000-RP2

CSCvm40441

CFD: PNP DNS discovery with trust pool flow uses IP address in PNP profile instead of FQDN

CSCvm43071

[IBNS 2.0] aaa-available event is not being triggered when using authentication/authorization list

CSCvm44488

ASR1001-HX 10GE SFP+ ports may operate as 1000Mbps

CSCvm50139

2nd phase fix for CSCvk45142

CSCvm51739

SNMP v3 discloses password in the parser warning syslog trap

CSCvm55465

BGP updates missing ISIS advertising-bits led to LDP label purge on peer.

CSCvm57817

ASR1002-X crash due to ccp_cp_svr going into lockdown state.

CSCvm59172

"autoroute announce" and "loose" path not working on intra-area TE tunnel

CSCvm76464

ASR1k crash due to QoS in case of 4k subscribers per subinterface

CSCvm95929

100FX OPNEXT SFP does not come up on ASR1001-X

CSCvn02171

POLARIS: HOLE is not created when 'acl default passthrough' configured

Open Caveats—Cisco IOS XE Everest 16.6.5

All open bugs for this release are available in the Cisco Bug Search Tool through the Open Bug Search.

Caveat ID Number

Description

CSCus13106

IOS-XE - RSA key-gen: Error in generating keys:no available resources

CSCvd65197

IOSd crashed when dialer disconnect the ISDN call

CSCve32648

Traceback@cpp_mlp_bundle_stats_query_all_cmn on fp reload

CSCve54914

NDSSO vrf ha table to be populated correctly

CSCve78446

[1661]- Switch number is missing in stack merged logs.

CSCvg23820

CTS PAC download fails with VRF config on non-managenent interface

CSCvg77859

ASR1k: 16.5 and later: tracelogs/punt_debug.log* missing when punt keepalive timeout / crash occurs

CSCvh57657

NAT MIB not populated when using traditional NAT

CSCvh59431

Byte counters for physical interface and subinterface don't match

CSCvh66584

ESP100: wrong show platform software ipsec fp active encryption-processor 1 registers result

CSCvi36351

standby rp crash on removing member link from port-channel

CSCvj12370

ASR1002-X router crashed in cpp_qm_event_collapse_hl_node

CSCvj79547

Complete content for interface templates

CSCvj89047

Quake-sessmgrd Huge Mem Leak After Master switchover

CSCvk15062

Modification to ZBFW access-lists do not reflect in TCAM

CSCvk22449

BGP Traceback/Crash seen with 20k IPv4 BGP scale after reload/clearing bgp

CSCvk32822

QoS stats process crash

CSCvk63782

Quick RP3 recovery after the Punt Path XAUI link goes down

CSCvk75838

netconf/yang or telemetry retrieval of /trustsec-state/cts-rolebased-policies breaks

CSCvm06775

ATOM CW is not exchanged after node reload

CSCvm25921

Signaling interface inactive on "show snmp mib ifmib ifindex de" on IOS 16.6.3

CSCvm42441

ASR 1001-X reboots when clearing ip nat translations

CSCvm51112

"clear crypto sa vrf MyVrf" triggers crash after updating pre-shared-keys

CSCvm56670

ACL dropping packets after updating it - %CPPEXMEM-3-NOMEM

CSCvm70471

'hw-module subslot 0/2 reload' CLI does not activate the container after harddisk format

CSCvm76452

IPSec background crash while sending SNMP trap

CSCvm78822

config-sync failure 'aaa authorization commands'

CSCvm84742

Crash after issuing "no ip dhcp snooping VLAN <VLAN #>" command

CSCvm96960

ASR1K throwing: ETH_SPA_MAC-3-SPI4_ERROR: SIP0/1: Marvel MAC

CSCvn00277

ASR 1006-X RP2 : Standby RP Crashed after running command "license boot level adventerprise"

CSCvn02419

Router crash occurs while running Dell software update

CSCvn07478

Ethernet FRR switchover takes more than 200ms on EPA10 and EPA100 if remote Rx fiber is pulled

CSCvn17655

Removing ip flow monitor from an interface caused ESP crash

CSCvn19382

Crash after comparing tunnel FIB entries

CSCvn23732

show interface output reports incorrect bandwidth

CSCvn23906

DHCP Server sends Renew ACKs to Clients with 00:00:00:00:00:00 MAC in L2 frame

CSCvn24569

No MPLS label after SSO with ISIS segment routing

CSCvn30280

ASR1000 Flexible NerFlow ucode crash

CSCvn37237

ASR1002-HX crashed after about 40G traffic is transmitted over it

CSCvn38313

Traceback: crash on load/store transfer error

CSCvn44891

Policy-map on GEC suspended even if total required BW is below interface BW

CSCvn47929

ASR1k crashes when reconfiguring netflow, getting FMFP-3-OBJ_DWNLD_TO_DP_FAILED logs

CSCvn49372

Unexpected flood in case of MVPN profile 0 with BiDir in VRF

CSCvn49911

Stuck thread crash after executing 'clear ip nat translation vrf <VRFNAME>'

Caveats in Cisco IOS XE Everest Release 16.6.4

Open Caveats—Cisco IOS XE Everest 16.6.4

All open bugs for this release are available in the Cisco Bug Search Tool through the Open Bug Search.

Caveat ID Number

Description

CSCuy75886

Lots of chunk memory leak about SNMP SMALL CHUN and SNMP MEDIUM CHU

CSCvb72829

show ipv6 neighbor statistics not updated post RPSO for entries synced

CSCvc73961

OSPF BGP LS: When seg mpls is disabled on the nbr, the unnumbered links not withdrawn from LSLIB.

CSCvd20054

Polaris 16.4: Traceback @mpls_ldp_cfg_interface while enabling isis

CSCvd65197

IOSd crashed when dialer disconnect the ISDN call

CSCve01479

e2e ping is failed after configuring profiles qos-de and aaaauth1

CSCve05486

ISDN switch-type configure issue for BRI leased-line

CSCve12319

ISIS SRTE: When one of ECMP path for prefix is not enabled for SR, SRTE tunnel does not come up.

CSCve16269

IKEv2 CoA does not work with ISE

CSCve32648

Traceback@cpp_mlp_bundle_stats_query_all_cmn on fp reload

CSCve39101

OSPF SROAM: “%ARP-3-ARPADJ: Internal software error during updating CEF Adjacency” when box comes up

CSCve39572

BGP net should have inlabel if bgp mpls-local-label is configured

CSCve54914

NDSSO vrf ha table to be populated correctly

CSCve78446

[1661]- Switch number is missing in stack merged logs.

CSCve96308

Observing memory leak in AAA_MALLOC_LITE

CSCvf22725

OSPF SR/SIDredistribute: when SID configured > avbl SRGB, that sid should not be advertised in EPL.

CSCvf28564

Show details soft key is not functioning in a conference call

CSCvf28977

ESP Crash with FP Switchover

CSCvf34848

License synchronized to SSMS despite being removed from SL Portal

CSCvf37923

Crash due to Stack overflow

CSCvf50723

Packet-tracer error message % Error: Failed to collect packet info

CSCvf51917

dns-a-override CLI not working due to breakage since 16.4 IOS

CSCvf76436

Combination of add-path, backup path and advertised-to leaves is not giving expected netconf values

CSCvf95739

Remove “dns-vrf-aware” CLI and make DNS vrf aware by default.

CSCvg23363

Virtual-access interface MTU wrongly set when using ipsec ipv4

CSCvg23820

CTS PAC download fails with VRF config on non-managenent interface

CSCvg29105

asr1k: Gec 5 tuple feautre not working in IOS-XE releases post 16.4.1

CSCvg77859

ASR1k: 16.5 and later: tracelogs/punt_debug.log* missing when punt keepalive timeout / crash occurs

CSCvg77924

FRR feature not working in ESP100 & ESP200

CSCvg81772

VRF import config missing ipv4 unicast after no router bgp

CSCvh49364

PFRv3 Incorrect time-stamp in traffic-class router change history

CSCvh57657

NAT MIB not populated when using traditional NAT

CSCvh66584

ESP100: wrong show platform software ipsec fp active encryption-processor 1 registers result

CSCvh67422

IPSLA ICMP-jitter stats reporting some of the received packets as lost.

CSCvh85031

Branch MC crashed@cent_send_syslog_on_violated_policies under stress test

CSCvi06417

SIP stack matching the dial-peer when processing NOTIFY message causing call routing issues

CSCvi10089

EXEC process stuck vty line where “no exec” is set

CSCvi15955

Call failure after Bye-Also blind transfer from CUE requires failure indication

CSCvi36351

standby rp crash on removing member link from port-channel

CSCvi54372

%NHRP-3-PAKERROR loop detected Pak sanity failure

CSCvi70145

ASR1k Segmentation fault in dhcp_sip process

CSCvi72480

Memory leak seen when having same src mac -address with different src ip address

CSCvi83419

Router crash when removing route-target and with hard clear

CSCvi86093

Switch reloads when kron job scheduled in 0 minutes

CSCvi90729

IKEv2 CoA does not work with ISE (coa-push=TRUE instead of true)

CSCvi92505

MWI info is not preserved on CME SIP phone after a reboot for unsolicited method

CSCvi93972

IWAN versions with prefix tracking only allow prefix splitting for internet and not enterprise

CSCvi97233

CME radius accounting does not generate complete called number for EA

CSCvi97572

ASR 1K Running 16.6.x Code Experiences CPP Crash When Processing Packet Through NBAR / MTP

CSCvj08942

SNMPwalk of cipslaPercentileLatestStatsTable does not give all the cipslaPercentileTypeVar types

CSCvj09305

slow convergence when configuring ha-mode sso for IPv6 peers

CSCvj11263

nbar2: resource exhaustion might occur in FNF with vmware-vsphere and flow monitors

CSCvj15262

ASR1k with stateful nat conf, mapping ID got locked after vrf delete

CSCvj35317

Ti-LFA Repair Path is not Loop-Free

CSCvj44615

Ringback stops on REFER based xfer when CUBE receives 180 followed by 183 w/SDP media change

CSCvj45781

QFP CGM Memory depletion during ISG session churn

CSCvj47270

IKEv2 sessions cannot establish due to CAC leakage

CSCvj51510

Crash after service-policy APPNAV change on WAAS instance

CSCvj51929

Out of order ESP packets triggering IPSEC replay error message

CSCvj57453

OSPF TILFA: tilfa repair path computation ALGORITHM fails with reason code BAD FH NBR

CSCvj57487

OSPF TILFA: tilfa repair path computation ALGORITHM uses incorrect firsthop router-id

CSCvj59152

Evaluation of all for May CPU Side-Channel Information Disclosure Vulnerabilities

CSCvj60144

OSPF TILFA: tilfa ALGORITHM fails to get repair node n-sid label when vertex is beyond PGW node

CSCvj64493

Standby switch crash whem removing kron scheduler command

CSCvj66204

initial SNMP traps take agent-addr from shutdown interface

CSCvj67623

DNS ALG will not work when trying to match specific destination hosts

CSCvj68607

ASR1K crash in tplus_handle_req_timeout

CSCvj70568

FlexVPN DHCP entries not flushing for ikev2 timed out reconnect sessions

CSCvj72854

Router crash due to NHRP process Segmentation fault(11)

CSCvj74888

Kernel OOPS reporting ECC error

CSCvj75853

Device crash after execute command “show lldp neighbor [int] detail”

CSCvj76285

Snmp v2 breaks due to Authentication failure, bad community string, 16.03.06

CSCvj76316

subscriber template not cleared after idle time exceed as well as traceback generation

CSCvj76662

GetVPN TBAR failure does not generate syslogs

CSCvj77638

“Disabled” counter increase after enter “interface Async1”

CSCvj78876

CUBE: FPI Hung Sessions and Provisioning Failures observed in Standby CUBE

CSCvj79019

ASR: SCH Diagnostic Signature Feature is missing in IOS XE 16.x releases

CSCvj81382

IPv6 AAA Prefix Support for 3rd party PPP clients no password for -dhcpv6 Access-Request

CSCvj82095

nbar mismatch cisco video traffic

CSCvj83551

SISF crash in IPV6 neighbor discovery packets

CSCvj84104

PLR channel is not muted for some time

CSCvj84158

PfRv3: BR May Crash due to Channel Creation/Modification and Next-Hop State

CSCvj88805

ASR1K - No kernel/coredump generated with watchdog reload event

CSCvj89345

AVC license should be activated only in case of smart licensing model

CSCvj90089

Crash while doing a conference call

Resolved Caveats—Cisco IOS XE Everest 16.6.4

All resolved bugs for this release are available in the Cisco Bug Search Tool through the Resolved Bug Search.

Caveat ID Number

Description

CSCsd58148

%SEC_LOGIN-4-LOGIN_FAILED does not show username in [user: ]

CSCut56684

Appnav Passthrough Counter goes to infinite

CSCuv14856

WATCHDOG timeout crash during IPSEC phase 2

CSCuv90519

Map does not get updated with socket change on local address change

CSCuw90084

DS: Download should print alerts in case of unresolved variables

CSCux20847

R0/0: ASR1002-X kernel: bullseye_i2c_master_xfer Error Repeats Every Hour

CSCvb34443

IKEv2 fragmentation not working with aes-gcm encryption - hmac failure

CSCvb69966

Memory leak under LLDP Protocol process

CSCvb88867

Excess BGP Traps Generated after upgrade

CSCvd14310

IP Tunnels: Overlapping Loopback Interface Causes Incorrect Forwarding Decision with AppNav and PfR

CSCvd21937

Unknown unicast packet need be filtered before to BDI

CSCvd81374

Orthrus: FP 100 crashed when sending traffic around 55 MPPS with pkts size 64 byte

CSCvd90410

Router loses RSA keys upon boot with private-config encryption and config archive enabled

CSCve11959

Memory leak occurs on DHCP client

CSCve41775

crash over CCSIP_SPI_CONTROL process due to null pointer / segmentation fault

CSCve55004

OSPF GIR BASE: not all repair paths calculated for AS ext routes when routes rxed with maxmetric

CSCve61143

CME SIP sip-ua do not send registration request when vrf forwarding is enabled.

CSCvf05864

BGP RR changes tunnel parameters for bgp evpn route type 3

CSCvf06123

Route-map not checked when packet is flowing from OUT to IN with Static NAT

CSCvf07153

SIP Date header format not in GMT Format

CSCvf07576

router reloaded when doing show BGP RT filter routes

CSCvf19460

CTS Pac download fails with ISE reachability through loopback interface over vrf

CSCvf23485

DS: Increase the size of command and prompt strings

CSCvf26916

RTCP/RTP based Media Inactivity timers for MGCP GW do not work in newer releases

CSCvf34608

Excessive Reflector Tracelogs

CSCvf49126

Stub is not leaking the network as expected

CSCvf51773

NHRP redirect overriding routing table

CSCvf53053

Crash when issuing no dspfarm profile x stuck on DOWN_PENDING state.

CSCvf57090

CUBE automatically considers re-INVITE with a=silenceSupp:off - - - - as fax call

CSCvf66030

OSPF SR: When SRGB range is changed, mapping server entries do not get re-installed.

CSCvf66860

IOS crash in SOCK TCP Test Server process

CSCvf70383

Crash in SDP Passthru when T.38 as 1st mline in mid-call SDP

CSCvf80363

rotate nginx access/error log files

CSCvf84528

False indication of RTP port leak on ISR4K & Neptune

CSCvf88705

Malformed GETVPN message %GDOI-4-COOP_KS_UNAUTH

CSCvf89894

GETVPN // Primary KS sending rekey first to GMs and then to Secondary KS via scheduled rekey.

CSCvf96009

OSPF SR: When loopback isconfigured with prefix suppression, EPL should be withdrawn

CSCvf96294

MIB counter for IPsec tunnels does not decrement under high tunnel scale and churn

CSCvf97908

When NSSA ASBR is reloaded, ECMP to ext routes not installed in other routers.

CSCvf98378

IOSXE_INFRA-6-PROCPATH_CLIENT_HOG: IOS shim client ‘fman stats bipc’ has taken 278 msec

CSCvg01774

OSPF SSPF: when seg area is disabled and enabled, mapping server EPL entries not re-generated.

CSCvg03444

Hub MC continues to send EIGRP SAF hellos after adjacency removed

CSCvg05172

Crash in VOIP media loop detection

CSCvg05452

IOS-XE router crash from memory corruption during CCB cleanup

CSCvg06142

‘ipsm Tunnel Entry’ and ‘Crypto IKMP’ memory leak due to IKE tunnel entry not deleted

CSCvg06428

After reloading the ELC40 linecards are not coming up online

CSCvg08471

OSPF; process ospf segmentation fault when shut and no shut is performed in active RP.

CSCvg08768

OSPF BGP LS: After fail over, error msg seen: %LSLIB-4-EOD: Producer OSPF-0x0 did not send EOD

CSCvg12605

Corrupted NOTIFY leads to %CRYPTO-4-IKMP_BAD_MESSAGE, stale ISAKMP SA and traffic failure

CSCvg16234

ISR receives a control packet (CDP) with a CMD tag it should process it, not drop it

CSCvg18094

GETVPN: show crypto gdoi ks member summary missing last octet in IP address

CSCvg19259

MPLSoFlexVPN: Hub does not forward resolution req when default route is advertised to spokes

CSCvg25874

Toggling the switchport then default the interface, load-interval config reapplied

CSCvg30133

EPAs failed to boot in IOS, with multiple ASR1000-MIP100 installed.

CSCvg30991

IOS-XE routers: Memory leak observed on process ivr: peer_item_t in AFW_application_process

CSCvg32701

Night-Service fails if it overlaps with FAC codes

CSCvg32858

Snort control plane connectivity with Mgmt-intf is broken

CSCvg33454

Pass load balancing information in IP header to container

CSCvg34986

Media recording on IOS-XE does not work if a refer is received immediately after the call is answered

CSCvg36598

ISAKMP Fails When Multiple HSRP tunnel/SVTI Interfaces Configured

CSCvg39082

Crash after TCP session timeout

CSCvg41950

Cisco IOS XE Software Diagnostic Shell Path Traversal Vulnerability

CSCvg43263

when shutting interface with no isis adjacency, local micro-loop avoidance blocks FRR recalculation

CSCvg44135

OSPF SRTE: prefix information is not provided to SRTE when it is learnt via mapping server.

CSCvg45950

packet drop seen intermittently if 40G traffic sent via cts interface

CSCvg47453

Default route redistributed into RIP from EIGRP is not removed from RIP database

CSCvg48470

ISIS l1-l2 redistribution prefix doesnt get redistributed till clear isis rib redistribution is done

CSCvg51358

DHCPNAK is not sent in roaming scenario.

CSCvg53159

%SNMP-3-RESPONSE_DELAYED: processing GetNext of cafSessionEntry.2 seen on catalyst switch

CSCvg54267

CDP Protocol can run device out of memory

CSCvg56088

Getting "HA Module DSP_MSP reported CALL_MODIFY RECREATE failure" in CUBE HA.

CSCvg56110

Error and pending objects when mma policy flap with egress monitor for multi-VRF case

CSCvg58096

Increase of dampening penalty on route refresh

CSCvg58599

Syslog: Logging host is truncating lines causing debug output to be cutoff in the middle of a msg

CSCvg59604

Cube crashes intermittently multiple times within every two days.

CSCvg67028

VRF deletion status <being deleted> after removing the RD

CSCvg67820

HIGH CPU observation on FMAN RP ESS EVENT TRACING

CSCvg68391

ISIS SR: When seg mpls is shut globally, ISIS SID entries not withdrawn from the entire network.

CSCvg71944

OSPF SR: When loopback is defined as /24 address, EPL should not be sent for the prefix.

CSCvg75315

ASR1K BGP scanner crash when change VRF and BGP configuration

CSCvg75419

ISIS SRTE: Explicit SRTE keeps flapping when ISIS is not the winning route in the RIB

CSCvg76664

OSPF SSPF: With SRTE tunnel, constrained bind of SID0 uses invalid old repair path in some cases

CSCvg76990

Missing LSP sending after configuration change

CSCvg77128

ASR1009-X FAN SN in show inventory display incorrectly after replace the FAN and do RP switchover

CSCvg82855

OSPF SSPF: mapping-server strict SID is processed by images which are not strict spf capable

CSCvg84181

“CLID restrict” on outbound leg is setting “Privacy=Full” on inbound leg

CSCvg85146

OSPFv2 Encoding for local-id in LLS needs to be fixed

CSCvg85879

BGP sets the wrong Local Preference for routes validated by RPKI server

CSCvg89163

CUBE does not acknowledge Session-Expires header in UPDATE

CSCvg94978

CUBE Router crashed - Critical software exception, Process = CCH323_CT

CSCvg96936

IOS-XE : PAT entry using the same port which is configured for static NAT

CSCvg97010

load-balance advanced moving traffic to fallback path when primary path are not over utilized

CSCvg99559

OSPF SSPF/TILFA: TILFA ECMP tunnels are not created when the last segment is adjacency sid.

CSCvh00630

ISRv/QOS - service-policy defined in bootstrap config may not be applied

CSCvh01652

Multicast IPSLA UDP Jitter throws Socket open error if vrf interface is configured on responder

CSCvh02109

WSMA: Server responds with HTTP 404 on wsma-exec with http transport profile

CSCvh03359

EIGRP network statement reappearing after reboot

CSCvh03788

EIGRP Name mode Summary route is not being apply on Virtual-Access on HUB

CSCvh05611

IOSd crash while applying dial peer configuration

CSCvh06249

Crash when receiving EVPN NLRI with incorrect NLRI length field value

CSCvh09334

SDA-IPV6::SISF traceback @ar_relay_create_entry - L2 Binding tbl entry insertion failed

CSCvh09525

CME: BLF monitor function fails intermittently with TCP connection

CSCvh10607

ISG: IETF-Disc-Cause = 0 if DHCP SIP disconnect

CSCvh14715

CVLA crash on memory merge scan task

CSCvh15336

OSPF SSPF: ECMP combination of SRTE tunnels and MPLS-TE tunnels does not work properly sometimes.

CSCvh15484

ISIS SR: When the SRGB range is increased, the local SIDs which are in new range are re-installed.

CSCvh18001

Crash due to race condition caused by IOS radioactive trace code

CSCvh21564

AAA Attrbute list leak in Polaris 16.6.2

CSCvh21909

LISP: Overlapping prefix causes “probe-down” for map-cache entry

CSCvh21973

QFP crashed to while sending oversubscribe traffic

CSCvh22278

OSPF Hello timer 10sec is not applied in network type non-broadcast

CSCvh22300

Update IOS XE OSPFv2 ELL private TLVs to IANA codepoints

CSCvh22589

Preempt timer does not work due to old HSRP Hello packet get just after interface up

CSCvh22775

SIP40 in slot 5 of ASR1013 when inserted ESP-200 in F1 by replacing ESP-40, showed ESI lock failure

CSCvh24315

Memory leak for CCSIP_TCP_SOCKET and CCSIP_UDP_SOCKET on CUBE

CSCvh25624

ISIS SR: When seg mpls is shut under ISIS, sid entries not cleared in the local router.

CSCvh26072

EIGRP SAF Adjacency does not form with /31 mask

CSCvh26560

ESP crashes with high scale QoS configuration

CSCvh28323

ASR1002HX FP Crash post LNS path switchover

CSCvh29771

Kernel crash in ASR1002-HX during LNS path switchover

CSCvh29821

CME should send out a refer with notify_clear when night-service is manually disabled

CSCvh30968

ISIS BGP LS: When distribute link state changed from level 1 to level 2, entries not given to BGP LS

CSCvh32216

Sporadic Crashes Due to IPsec (during ISAKMP AAA interaction)

CSCvh47626

"ERR: Unable to connect to domain socket tamc_tams_socket" seen continuously

CSCvh48085

OSPF SSPF/SRTE: when we have ABR with multiple interfaces to backbone area, SPF keeps running.

CSCvh48610

iwan router crash while updating pmi policy

CSCvh49600

Output “sh sip-ua connections tcp tls detail” shows that CUBE has stuck connection ids.

CSCvh51038

[168] OSPF process crash on P router when “router ospf” is unconfigured on another PE or P router

CSCvh53691

FP reload with IMGR deregister interface

CSCvh53764

RP Unexpected reboot when using conditional debugging with CCSIP debug

CSCvh54229

TCAM critical limit shows incorrect value of 55 %.

CSCvh54672

VRRP doesnt work over Port-channel L3 interface

CSCvh56594

EIGRP offset-list still active if ACL used in offset-list is removed before offset-list

CSCvh57091

ESP crash when flapping interface with l2tp tunnels that have qos applied to the tunnels.

CSCvh57108

CPUHOG on QoS statistics collection for DMVPN. QoS crash with DMVPN/NHRP.

CSCvh57242

cpp-mcplo-ucode crash when layer 2 switching packet

CSCvh57340

DMVPN: Crypto session stuck into UP-IDLE status after reconfiguring tunnel

CSCvh58702

Router crashes after interface flap where sessions get moved from one interface to another

CSCvh58909

OSPFv3 cost calculation not correct in some specific topology

CSCvh61453

NULL remote_hostname from LAC

CSCvh62532

System reload when clearing cts pac

CSCvh62615

There is junk entry in route-import table on branch when shutdown/no shutdown WAN interface

CSCvh62925

ASR1001-HX log alarm “Install interface_10g license to unshut the port”

CSCvh63932

Noisy debugs in “periodic” tracelog

CSCvh64729

FP crash @cpp_qm_create_queue while adding fair-queue

CSCvh66033

IKEv2 - Crash with segmentation fault when debugs crypto ikev2 are enabled

CSCvh66642

uIDB leaks at the DMVPN hub if the route to remote NBMA is not learned

CSCvh68228

CUBE Unsolicited NOTIFY returns 481 Subscription does not exist

CSCvh70297

Redundancy Mode None does not Sync

CSCvh70356

ASR1K - ECMP load-balance w/ DPI L2TP Tunnel visibility and QoS may generate ucode crash

CSCvh71539

Command “show aaa servers” reloads the switch

CSCvh71856

IOSd crash when enabling dot1q in a port-channel sub-interface

CSCvh72700

CME: GUI user page does not load correctly. It is showing “View Window”

CSCvh73805

Explicit SRTE tunnels are not come up when a prefix is redistributed between levels

CSCvh75132

CPP crash stuck thread detected multikey_hash_replace_int

CSCvh77733

RR does not send VPNv4 routes to peer

CSCvh79067

Call Park with standard FAC fails if phones extensions overlap with FAC codes

CSCvh79942

Chunk corruption crash related to PNP or Guestshell

CSCvh82112

Polaris Routers - Memory leak under process RECMSPAPP in IOSd

CSCvh83215

IOS-XE Voice NIM/PVDM Service-Engine Admin Down leads to one-way audio

CSCvh85788

Local LAN-only prefix present in master route-import table but not present in site prefix DB

CSCvh88330

VAI Leaks with IKEv1 DVTI

CSCvh88975

performance-monitor does not report classification after tunnel shutdown

CSCvh91443

ISR4k Crashed due to CPUHOG Net background.

CSCvh92130

downloaded policies hit by traffics were all gone after the second SSO

CSCvh92378

High CPU utlization with presence feature when reset is issued under voice register global

CSCvh93071

Redistributing connected route with AIGP attribute is being continuously readvertised

CSCvh95376

ASR1k reloaded after IPv4 RR stress test

CSCvh96542

CCSIP_SPI_CONTROL holding memory increasing

CSCvh96821

ASR1004 started relaying clients DHCP Discover messages to DHCP Server with the wrong IP address

CSCvh97691

tacacs-server is missing keyword “key” in argument/option available

CSCvh97923

Erroneous fan failure indication on some units - Speed Racer (ASR1001-HX)

CSCvh99576

LACP Rate defaults to fast with no way to change it to normal

CSCvh99651

AAA-Proxy errors in dmiauthd tracelogs

CSCvh99949

Options Keepalive not triggered on applying profile to dial-peer

CSCvi01558

iBGP dynamic peer using TTL 1

CSCvi01650

SIP Out-of-Dialog OPTIONS Ping Group Shows Dial-Peers Marked as None

CSCvi01745

cpp_cp_svr crashes, causing reload

CSCvi01805

Router with SIP traffic crashes at ccsip_free_kpml_info

CSCvi02816

ZBF not able to identify the WAAS optimized flow and drops ACK

CSCvi03339

[ECA-SIT] IOSd crash seen on xTR with baseline @ sisf_macdb_get_vlanid

CSCvi04666

ISIS SRTE: SRTE tunnel not created due to R-flag set

CSCvi05126

ISAKMP Notification messages carry unnecessary data

CSCvi05408

Memory leak due to asnl

CSCvi06312

Subsystem stopped: ios-emul-oper-db due to bgp table issue

CSCvi06357

config issue after remove Standby RP and insert it into active slot

CSCvi06480

OSPF SSPF: EPL not sent for secondary addresses on loopback interfaces.

CSCvi06897

dialpeer matching for inbound SIP profile fails with VRFs

CSCvi07387

ip dhcp excluded-address deletion issues via netconf

CSCvi08933

Crash processing MMA punt records

CSCvi10166

ASR1009-X/RP2:power supplies are seen as ASR1000X-FAN and Insufficient number of power supplies (0)

CSCvi11065

Router cpp_cp_svr process crashes at cpp_qm_event_parent_event_create

CSCvi11123

FMFP-3-OBJ_DWNLD_TO_DP_FAILED error after modifying QoS policy

CSCvi11665

Virtual-service guest IP accepts broadcast address

CSCvi11970

Abnormal output for show pnp tech-support

CSCvi12657

BQS pending deferred is stuck

CSCvi13062

FP cpp_cp_svr crash @cpp_bqs_srt_yoda_place_child

CSCvi14656

Loss TCA is not generated for traffic with DSCP0 when 0-SLA enabled

CSCvi14745

EPA-10X10GE or EPA-18X1GE - Memory leak with input mac-address accounting

CSCvi15950

DTMF fails when mid-call renegotiation changes DTMF method

CSCvi16306

Cube sends reinvite with annexb=yes even when it receives annexb=no

CSCvi16454

Router crash due to PuntInject Keepalive Process - kmalloc failures

CSCvi20882

Netconf IP-SLA udp-jitter case missing leaf codec

CSCvi21288

PFRv3 RC FIA is not enabeld on interfaces with one of sub-interface with xconnect config

CSCvi21353

ASR1000X-AC-1100W PEM status displayed as "Unknown" in CCO-16.06.02 on 6X chassis

CSCvi23169

ASR1006-X EPA card input errors

CSCvi24515

IOS-XE - FTP closing connection as NAT device does not process the 230 reply message

CSCvi26061

RP crash @policymap_associated_to_multiple_instances

CSCvi26398

“%LISP-4-LOCAL_EID_RLOC_INCONSISTENCY” should be suppressed in SDA context

CSCvi27958

MIP100 get struck in disconnecting state on FP reload

CSCvi28362

Unexpected metric value for route redistribution from BGP to OSPF

CSCvi28746

ASR1k “add-route” does not work with “ip nat outside static” statement under VRF

CSCvi31038

Interface on ASR1001-X will become down/down after shut/no shut

CSCvi32156

Router crashes when DMVPN tunnel moves accoss ports

CSCvi34260

16.8.1: dot1x Clients stops responding ( ping to clinet IP fails) after SSO

CSCvi35143

Repeatedly Tracebacks seen: %INFRA-3-INVALID_GPM_ACCESS: Invalid GPM Load

CSCvi35960

VRF aware CUBE fails to send OOD OPTIONS pings

CSCvi36290

Incorrect BDI configuration state shown by NETCONF on interface creation

CSCvi38244

IPv6 VRRP Master is using using vlan BIA MAC while sending Neighbor advertisements (NA)

CSCvi38391

H.245 messages are not translated by NAT outside when H.323 video call is initiated from Out-2-In

CSCvi38916

Persistent Telnet and SSH crashes when configured in 16.6.2

CSCvi40033

802.1x authentications are failing if there was interface template config applied before

CSCvi41050

PFRv3 route-control is inconsistently set to “Disabled” on BR devices

CSCvi41465

All router mcast is removed by “no ipv6 mld router” in specific timing

CSCvi42002

CDP packets not getting encapsulated over multipoint GRE tunnel

CSCvi44476

IS-IS unnecessarily updates RIB when in metric-style narrow

CSCvi48837

Ensure load-balance internet TCs do not match “class DEFAULT” if configured

CSCvi50061

Evaluate NTP February 2018 Vulnerabilities.

CSCvi51398

ASR 1001-X Te0/0/1 link fails when AOC transceivers are used

CSCvi52659

Incorrect “Hop count” obsearbed in IPv6 EIGRP

CSCvi54878

Memory leaks seen at PKI_name_list_add(0xa139cc0)+0x3e

CSCvi56463

Unexpected Reset, Crypto IKMP Segmentation fault with IPSec AAA Configuration

CSCvi57096

MATM RP Shim Process memory leak @aaa_attr_list_alloc make_a_sublist_max

CSCvi58526

CPUHog and crash on DNS-SRV-1 process

CSCvi58996

Several OID from CISCO-CLASS-BASED-QOS-MIB stop working when performing upgrade to Denali-16.3.x

CSCvi61745

Crash when running “mpls tunnel protection” command

CSCvi63840

vif interface counters do not increment with multicast service reflection on IOS-XE

CSCvi64534

Remove stack 1+1 CLI for WS-C3850-48XS

CSCvi67613

Protocol type for GRE header does not work consistently with“cts sgt inline” enable over auto-tunnel

CSCvi71376

OSPF SSPF: tilfa ALGORITHM fails to compute repair path, reports incorrect reason of too many labels

CSCvi72996

NMR TTL is wrongly considering eid-record of 0.0.0.0/0 for its calculation

CSCvi74088

link local multicast packets are received when the SVI is in down state

CSCvi74893

ICMP Redirect send even if destination and source address are in different networks

CSCvi75086

Rapid TDL memory leak in SMD process leads to crash of active switch in stack for ipv6 clients

CSCvi76084

Device-tracking entry stuck in TENTATIVE for certain Mac Pro hosts configured with static IP

CSCvi79948

OSPF TILFA: tilfa ALGORITHM preference rules does not pick repair path with lowest number of labels

CSCvi86082

ASR1001-x crash due to wrong packet size

CSCvi86630

Crash due appnav SYN-ACK packets without a flow

CSCvi86983

ZBFW HA: active router stuck in cold standby state after shut no shut the wan interface

CSCvi91714

IPv6 address not assigned or delayed when RA Guard is enabled

CSCvi92571

On IOSXE neighbor command under pseudowire interface is rejected

CSCvi94425

TBAR issues on KS after running “clear crypto gdoi ks coop role”

CSCvi95775

Reverse-tunnel routes under PMIPv6 MAG config not using configured distance metric

CSCvi96874

ASR1001 has crashed with cgm_avlmgr_find_node

CSCvi96933

mac-move does not work on IBNS 2.0 unless you disable it then enable it back

CSCvj00858

CPP Microcode Crash during sRTP Call Encryption

CSCvj01098

Evaluation of IOS-XE and IOS for OpenSSL CVE-2018-0739 and CVE-2018-0733

CSCvj02081

CPP crash on L2TP router

CSCvj03263

H225 gatekeeper request dropping under “ALG PARSER” with ZBF

CSCvj04717

OSPF SSPF: With SRTE tunnel scale, SRTE SID0 constraint Label Bind fails with LABEL_BROKER error msg

CSCvj05446

Initial Trustpool installation not successful before PKI is ready

CSCvj06388

Type 7 password parsed incorrectly in dot1x credentials causing auth failure

CSCvj06391

Recommit of CSCvg77924 - FRR feature not working in ESP100 & ESP200

CSCvj06909

Reverse-route configuration is unsupported under gdoi crypto map

CSCvj08248

Packet throughput drops down when enable tunnel visibility with single tcp flow(>1MPPS)

CSCvj11876

Provide Passthrough Reason in IOS-XE for AppNav

CSCvj13382

ASR1K crash with Last reload reason: Critical process fman_fp_image fault on fp_0_0 (rc=134)

CSCvj14521

Web redirect clients do not get redirected, Create IO ctx, too many intercepted connections

CSCvj16825

“VoIP dial-Peer is Up” incorrectly log prints at every up interval when server-group is configured

CSCvj21692

UNIX-EXT-SIGNAL: Segmentation fault(11), Process = ACCT Periodic Proc

CSCvj23301

IOS: Crypto Ruleset fails to get deleted

CSCvj24940

Voice VRF with No Bind OPTIONS Ping response not sent

CSCvj27172

Crash during Generic Call Filter Module cleanup

CSCvj27526

BGP attribute map for aggre address can not set attribute

CSCvj29126

RADIUS client on network fails to solicit PAC key from CTS even though the device has a valid PAC

CSCvj30023

DNS Debug seen without enabling any debug

CSCvj30995

ASR1K - exhausted IP Session Handles - %IDMGR-3-INVALID_ID: bad id in id_get (Out of IDs!) (id: 0x0)

CSCvj38384

%PMIPV6-5-TUNNELDELETE:

CSCvj39346

OSPF SSPF: When sid 0 is removed, wrong implicit-null label used for inter-area prefix.

CSCvj41224

Crash when doing SNMP walk and applying QOS over a GRE tunnel

CSCvj41550

default channel operation state changing from I/O to D/O failed when zero-sla enabled

CSCvj49476

Telnet Sessions Hang/Become unavailable at execution of “show run”

CSCvj52231

ACEs after an object-group reference not being processed in software if ACL has more than 13 ACEs

CSCvj52681

dynamic vlan assignment causes all sisf entires under the port to be deleted

CSCvj53634

The OID - adslAtucCurrOutputPwr returns incorrect output.

CSCvj57502

Memory leak@CENT-BR-0 when change the path label frequently

CSCvj61603

“dtmf-interworking rtp-nte” command breaking software MTP.

CSCvj65296

“ip rsvp bandwidth” max value llimitation to 10GE

Caveats in Cisco IOS XE Everest Release 16.6.3

Open Caveats—Cisco IOS XE Everest 16.6.3

All open bugs for this release are available in the Cisco Bug Search Tool through the Open Bug Search.

Caveat ID Number

Description

CSCux20847

R0/0: ASR1002-X kernel: bullseye_i2c_master_xfer Error Repeats Every Hour

CSCuy30341

Skywalker: Failed to create, Pseudowire interface

CSCvb88867

Excess BGP Traps Generated just after upgrade

CSCvc80822

OSPF SRTE: Invalid primary paths and metric seen with SRTE autoroute announce with metric option

CSCvd14310

IP TUNNELS: Overlapping Loopback Interface Causes Incorrect Forwarding Decision with AppNav and PfR

CSCvd65197

IOSd crashed when dialer disconnect the ISDN call

CSCve01479

e2e ping is failed after configuring profiles qos-de and aaaauth1

CSCve54914

NDSSO vrf ha table to be populated correctly

CSCve69049

Crash when it tries to write over a TTY session

CSCvf07576

router reloaded when doing show BGP RT filter routes

CSCvf28977

ESP Crash with FP Switchover

CSCvf34608

Excessive "Reflector" Tracelogs

CSCvf38050

Voice Gateway crash due to memory corruption while finding DN index during redirect

CSCvf70383

Crash in SDP Passthru when T.38 as 1st mline in mid-call SDP

CSCvf89894

GETVPN // Primary KS sending rekey first to GM's and then to Secondary KS via scheduled rekey.

CSCvf96294

MIB counter for IPSec tunnels does not decrement under high tunnel scale and churn

CSCvf98231

Broadcast counters issue on ISR4400

CSCvg05452

IOS-XE router crash from memory corruption during CCB cleanup

CSCvg08471

OSPF; process ospf segmentation fault when shut and no shut is performed in active RP.

CSCvg19259

MPLSoFlexVPN: Hub doesn't forward resolution req when default route is advertised to spokes

CSCvg19671

ASR1K not dropping frames with unknown MAC when EVC + Sub-interface is configured

CSCvg23820

CTS PAC download fails with VRF config on non-managenent interface

CSCvg29105

asr1k: Gec 5 tuple feautre not working in IOS-XE releases post 16.4.1

CSCvg40893

BE4K Registration failed for REGISTER matching wrong voip dial-peer

CSCvg42218

BE4K VRF failed to associate if binding is used in tenant

CSCvg43408

IOS-XE Router crashed unexpectedly with critical process fault, fman_fp_image, fp_0_0, rc=134

CSCvg48492

BE4000 one way audio seen line to trunk side call with VRF enabled

CSCvg53159

%SNMP-3-RESPONSE_DELAYED: processing GetNext of cafSessionEntry.2 seen on catalyst switch

CSCvg60185

ISR 4000 discards private RSA key after upgrade and reload with WAAS module

CSCvg67820

HIGH CPU observation on FMAN RP ESS EVENT TRACING

CSCvg75315

ASR1K BGP scanner crash when change VRF and BGP configuration

CSCvg77128

ASR1009-X FAN SN in show inventory display incorrectly after replace the FAN and do RP switchover

CSCvg79608

PFR: Overlapping Loopback Interface Causes Incorrect Forwarding Decision with AppNav and PfR

CSCvg91169

3850 standby switch reloads due to configuration-mismatch after use "exception crashinfo" command

CSCvg94600

crash with "debug platform condition ipv4 access-list "

CSCvg94978

CUBE Router crashed - Critical software exception, Process = CCH323_CT

CSCvg95032

Crash when downloading configuration from APIC-EM server

CSCvh02109

WSMA: Server responds with HTTP 404 on wsma-exec with http transport profile

CSCvh02575

PLATFORM_INFRA-5-IOS_INTR_OVER_LIMIT error with traceback

CSCvh05611

IOSd crash while applying dial peer configuration

CSCvh09620

Continuous crash in "/kernel/mki/src/free" after upgrade to version 15.5(3)S6

CSCvh20302

"HTTP CORE" Process Crashes When Parsing PNP Transport Config

CSCvh22775

SIP40 in slot 5 of ASR1013 when inserted ESP-200 in F1 by replacing ESP-40, showed ESI lock failure

CSCvh24315

Memory leak for CCSIP_TCP_SOCKET and CCSIP_UDP_SOCKET on CUBE

CSCvh24730

PfRv3: Crash while Printing the Same TCA Message

CSCvh26241

Crash after crypto map removal

CSCvh26560

ESP crashes with high scale QoS configuration

CSCvh32216

Sporadic Crashes Due to IPSec (during ISAKMP AAA interaction)

CSCvh47124

Nexthop is wrong in route-import table on branch when delete WAN interface and reconfigure it

CSCvh48610

iwan router crash while updating pmi policy

CSCvh52882

Memory Leak due to nbar config

CSCvh53691

FP crash with scaled IKE sessions.

CSCvh53764

RP Crash @ gcfm_check_percall_status

CSCvh54229

TCAM critical limit shows incorrect value of 55 %.

CSCvh57091

ESP crash when flapping interface with l2tp tunnels that have qos applied to the tunnels.

CSCvh57108

CPUHOG on QoS statistics collection for DMVPN. QoS crash with DMVPN/NHRP.

CSCvh57242

cpp-mcplo-ucode crash when layer 2 switching packet

CSCvh58702

Router crashes after interface flap where sessions get moved from one interface to another

CSCvh59431

Byte counters for physical port-channel interface and port-channel subinterface don't match

CSCvh61453

NULL remote_hostname from LAC

CSCvh62925

ASR1001-HX log alarm "Install interface_10g license to unshut the port"

CSCvh63857

Memory leak in some SBC functions

CSCvh64729

FP crash @cpp_qm_create_queue while adding fair-queue

CSCvh66445

ISR4k router crashes during status check on WAAS Express

CSCvh70356

ASR1K - ECMP load-balance w/ DPI L2TP Tunnel visibility and QoS may generate ucode crash

CSCvh71668

ASR1002-HX/Polaris 16.5: Traceback seen for full VMI when lcp AVPs pushed by RADIUS

CSCvh72004

ARP for the gateway on ASR1k for Mgmt-intf g0 is not generated on Dataplane after it times out

CSCvh74076

Performance monitor related field (like SSRC) is not collected.

CSCvh75132

CPP crash stuck thread detected multikey_hash_replace_int

CSCvh77439

traffic is dropped when goes over tunnel

CSCvh77835

ucode core due to stuck thread detected - DoubleExceptionVector

CSCvh82112

Polaris Routers - Memory leak under process RECMSPAPP in IOSd

Resolved Caveats—Cisco IOS XE Everest 16.6.3

All resolved bugs for this release are available in the Cisco Bug Search Tool through the Resolved Bug Search.

Caveat ID Number

Description

CSCua00661

Memory leak seen while creating vlans using Tclsh

CSCus83515

Unable to verify files on stby-bootflash: filesystem.

CSCuy74937

upgrade rom-monitor filename flash: returns "Invalid File"

CSCuz93679

"dot1x auth-fail eapol" is always seen in "show run all"

CSCvc48752

VPDN not switching traffic to new path after link failover or routing protocol convergence

CSCvc60745

tcp_getbuffer memory leak - refcount not reduced when packet dropped

CSCvd04871

Crash after IWAN does a recalculation in the RIB

CSCvd64670

SCEP enrollment failing with HTTP/1.1 500 Internal Error

CSCvd82858

Standby RP3 fails to boot on soft start

CSCvd96815

Enhancement: Un-controlled TC in DISCARDED state is dropped instead of RIB-routed

CSCve08418

IPsec/IKEv2 Installation Sometimes Fails With Simultaneous Negotiations

CSCve18549

CME/BE4000 Intermittently Crash when making configuration changes

CSCve32330

%UTIL-6-RANDOM: A pseudo-random number was generated twice in succession

CSCve53263

Configured Speed/Duplex are not supported on Mgmt Eth port

CSCve55089

BGP crashes at bgp_ha_sso_enable_ssomode

CSCve58650

System Boot Hung without EULA Acceptance

CSCve64341

920 : Mid Point LSP creation failure after reload with latest polaris Image

CSCve66601

Crash in CISCO-SLB-EXT-MIB code

CSCve75579

CUBE crashed on executing "show sip-ua calls called-number''

CSCve75919

In-dialog options ping received post ACK (call completion) cause cube to change codec and no audio

CSCve78038

IKE_INIT is sent before PPPoE dialer obtains its IP address

CSCvf16338

voiprtp_register_transport_port_manager_and_reserve: Alloc ports failed, min: 8000, max: 48199 248

CSCvf16626

iwan router crash while updating pmi policy

CSCvf24928

QFP exmem memory leak in cpp_fm_sce_result_chunk

CSCvf31368

router crash after EEM-wanfailover script triggered

CSCvf33947

CUBE can't handle mid-call re-invite when midcall-signalling passthrough mediachange is configured

CSCvf36269

Cisco IOS and IOS XE Software Plug-and-Play PKI API Certificate Validation Vulnerability

CSCvf36888

IOS-XE DMVPN Per-tunnel QoS not working on CSR1k without AX license

CSCvf39474

GETVPN: TBAR sync "timer is not running" after KS upgrade causing anti-reply drops and GM outages

CSCvf43271

Traceback: Stack master crash at dot1x authentication

CSCvf48159

Router crash during T38 fax bitrate negotiation

CSCvf60862

Cisco IOS and IOS XE Software IOS daemon Cross-Site Scripting Vulnerability

CSCvf65522

ESP crashed - double_exception_has_occured - malformed PIM packet over GRE tunnel & ERR_DTL_INV_ADDR

CSCvf68261

Crash when printing IPSEC anti-replay error

CSCvf84349

Router crash on polling cEigrpPeerEntry

CSCvf90066

ASR1K RP2 crash due to CPUHOG occourred by arp input process infinite loop

CSCvf92460

show gtp parameters causes RP to crash

CSCvf93129

Mid-call failure because all available Crypto is not Offered in SDP

CSCvf97230

RE-INVITE and OPTIONS Glare not handled by CUBE

CSCvg02533

router crashed after triggers with debug

CSCvg03542

[RIB route watch] detect stale pointer from client to avoid system crash with corrupted memory

CSCvg04055

Re-calculate PKI SHADOW timer after NTP synchronization

CSCvg05896

IWAN EIGRP SAF - seq number mismatch after branch reload

CSCvg09010

KS merge fails for groups with TBAR due to PST update failure on primary KS

CSCvg09235

OPTIONS not replied by CUBE over TCP without interface bind

CSCvg14256

Crash at cc_detect_mute_call

CSCvg15158

DMVPN session get stuck in NHRP and UP-NO-IKE state without active IKEv2 session until rekey

CSCvg16357

Copying file larger than 2GB to FTP destination fails with "Invalid argument" (revisit CSCug41449)

CSCvg17971

ASR1k ESP may crash after a switchover if IPsec configured

CSCvg20200

Polaris: Crash observed while client association with key-wrap enabled in controller.

CSCvg22515

After upgrade of IOS, SSH passwords longer than 25 characters do not work

CSCvg26073

QFP Memory leak in 'cpp_cp_svr' with 'CPP List Hdr Chunk'

CSCvg29183

ISR4K - XE 16.3.4 - SIP-TDM GW - FLEXDSPRM-3-TDM_CONNECT errors and crash

CSCvg29609

Crash when crypto map applied to several tunnel interfaces

CSCvg30722

EAPTLS:- Session manger crashing with MKA/EAPTLS session bring up with newly installed certificates.

CSCvg31525

In HA system, with secure storage, the private-config is being encrypted multiple times

CSCvg34034

Te0/0/0 or Te0/0/1 shows up/up without cable

CSCvg34731

IOS-XE MOS scores always show 4.x even with massive packet loss.

CSCvg34783

Voice-port command compand-type is remove during a reboot

CSCvg34790

Device crashes due to crypto pki functions

CSCvg38307

CME/BE4000 crash occurs when call is made to invalid SNR destination

CSCvg38313

both ESP100 crashed when the ATM interface input QOS configure is applied

CSCvg40085

ISR4K - IOSd crash with SIGABRT with CCVPM_HTSP

CSCvg40430

4431 QFP crashes by a LLC packet received in a Serial Interface

CSCvg42042

crash seen on clearing "ip nat translation" while also doing show "ip nat translation"

CSCvg46973

ASR1K -LNS ESP crash after failing/flapping TeGig interfaces

CSCvg49753

Received EVPN route type 2 ignored by ASR1K RR

CSCvg52500

cpp_cp_svr 100% CPU due to dumping 'TX idle timer expire (channel 111055)"

CSCvg52560

Traceback: OCSP creates a large number of lists and triggers a memory problem

CSCvg52687

quiet mode exit does not re-apply "vrf-also" to config.

CSCvg54074

3rd Party SIP Phones not registering from CME 11.6

CSCvg55316

Multiple crashes on ASR1k at iWAG GTP PDP director event dispatcher

CSCvg56518

ASR920 / ASR1k: PING MIB not returning results / Counter 32 = 0

CSCvg60135

Yoda based platform : Crash on cpp_qm_obj_destroy with reason as LocalSoft on Polaris Release

CSCvg60288

Device IP address AV pair replaced with 192.168.1.5

CSCvg71566

"no cdp enable" is rewritten to "no cdp tlv app" after reload.

CSCvg71581

hub BR gets crashed after issue "show domain iwan border channels" following with border shutdown

CSCvg72960

ASR1K - LNS node de-aggregation w/ POLARIS image

CSCvg74048

PKI: All SCEP requests fail with "Failed to send the request. There is another request in progress"

CSCvg75380

Polaris 16.3.5: Crash at auth_mgr_show_dc_details

CSCvg76912

CFD: pnp config upgrade failed when IFS returns size 0 for all TFTP files

CSCvg77410

qos/cce AOM pending batch ack due to BQS pending config

CSCvg84039

Traceback: Crash on WAAS menu prompt for WAN Interface

CSCvg88988

Crash in IP SLAs Responder process when removing 'ip sla responder' from config during TWAMP session

CSCvg89855

ESP crashed - cpp_cp failed in cpp_qm_event_proc_defer_parent_event

CSCvg90226

Crypto Traceback: Router crash at 'Crypto Support' segmentation fault

CSCvg92437

AToM: MSPW VC Down with Reason as No VC Remote Label Binding Received on RP SSO

CSCvg93473

IOSd crash due to segfault in show_snmp

CSCvg94908

Mgig stack keeps crashing while configuring with Radius commands

CSCvg98890

IOS-XE GM router might crash after the rekey method is changed from unicast to multicast

CSCvh00038

Device IP address AV pair replaced with 192.168.1.5

CSCvh02516

Cannot add static route through dynamic NEMO tunnel interface

CSCvh05575

ISR 4k SCCP Process Does Not Wait for All PVDM Modules to Come Up Before Registering

CSCvh14580

Router Crashes on command show ip dhcp vrf <vrf name > binding remembered

CSCvh15305

"ip access-list resequence" causing crash on CBR-8

CSCvh17481

PKI: Device crash during crl download with multiple CDP URI

CSCvh29981

Suite-B Not Supported with ESP-200 on ASR1000-X Platform

CSCvh32416

Evaluation of all for CPU Side-Channel Information Disclosure Vulnerabil

CSCvh54813

Output Qos policy is removed from Dialer interface after reloading the device if input policy exists

CSCvh60525

CLI 'aaa common-criteria' not available on IPBASEK9 license

CSCvh60871

show platform software adjacency oce <ID> crashing router

Caveats in Cisco IOS XE Everest Release 16.6.2

Open Caveats—Cisco IOS XE Everest 16.6.2

All open bugs for this release are available in the Cisco Bug Search Tool through the Open Bug Search.

Caveat ID Number

Description

CSCus83515

Unable to verify files on stby-bootflash: filesystem.

CSCvg38872

Crash observed while sending 40K 4Kb packet size html session with ETA configured on ESP 100

CSCux20847

R0/0: kernel: bullseye_i2c_master_xfer Error Repeats Every Hour

CSCuz84374

SPA modules on ASR1002-x show "missing" under show platform

CSCvc59505

Member link of Port channel gets removed on doing a SSO on the peer end

CSCvc80822

OSPF SRTE: Invalid primary paths and metric seen with SRTE autoroute announce with metric option

CSCvd04871

Crash after IWAN does a recalculation in the RIB

CSCvd65197

IOSd crashed when dialer disconnect the ISDN call

CSCvd96815

Enhancement: Un-controlled TC in DISCARDED state is dropped instead of RIB-routed

CSCve01479

e2e ping is failed after configuring profiles qos-de and aaaauth1

CSCve18549

CME/BE4000 Intermittently Crash when making configuration changes

CSCve32330

%UTIL-6-RANDOM: A pseudo-random number was generated twice in succession

CSCve53263

Configured Speed/Duplex are not supported on Mgmt Eth port

CSCve54914

NDSSO vrf ha table to be populated correctly

CSCve60276

Crash in ADSL SNMP code

CSCve64341

920 : Mid Point LSP creation failure after reload with latest polaris Image

CSCve75919

In-dialog options ping received post ACK (call completion) cause cube to change codec and no audio

CSCve78446

[1661]- Switch number is missing in stack merged logs.

CSCve78802

Overlord: GLC-TE SFP module cannot up after OIR during traffic

CSCvf16626

iwan router crash while updating pmi policy

CSCvf28977

ESP Crash with FP Switchover

CSCvf33947

CUBE can't handle mid-call re-invite when midcall-signalling passthrough mediachange is configured

CSCvf39868

[UniScale]isr4431 crashes while verifying IPv6 CEF scalability

CSCvf43271

Traceback: Stack master crash at dot1x authentication

CSCvf50723

Packet-tracer error message % Error: Failed to collect packet info

CSCvf53573

ISR4K 4400 fail to boot up on 3.13.8S 3.12.3s 3.11.4s 3.10.9s (4300 fail to boot up on 3.13.8S)

CSCvf65079

ASR CUBE 1K reloaded with reason: RG-application reload on voice-b2bha RG

CSCvf68261

Crash when printing IPSEC anti-replay error

CSCvf70383

Crash in SDP Passthru when T.38 as 1st mline in mid-call SDP

CSCvf71066

Router crash due to memory corruption in PKI

CSCvf74334

mSATA SSD inventory is missing after module stop/start/reload

CSCvf84349

Router crash on polling cEigrpPeerEntry

CSCvf86185

NIM-SSD: Inventory of disk0 and disk1 are interchanged on Polaris 16.x

CSCvf87904

IWAN Performance degredation on PI32 images

CSCvf88231

Watchdog crash during file copy operation

CSCvf89399

Flexible NetFlow crash

CSCvf90614

ASR1k Regarding ifHCInBroadcastPkts value decreasing

CSCvf93129

Mid-call failure because all available Crypto is not Offered in SDP

CSCvf96762

[Amur-MR8] SM-X reload after configuring channel-group 18 on an interface