Cisco IOS Release 15.8(3)M3 - Release Notes for Cisco IR800 Industrial Integrated Services Routers and CGR1000 Series Routers

Available Languages

Download Options

  • PDF     (261.0 KB)
    View with Adobe Reader on a variety of devices

Bias-Free Language

The documentation set for this product strives to use bias-free language. For the purposes of this documentation set, bias-free is defined as language that does not imply discrimination based on age, disability, gender, racial identity, ethnic identity, sexual orientation, socioeconomic status, and intersectionality. Exceptions may be present in the documentation due to language that is hardcoded in the user interfaces of the product software, language used based on RFP documentation, or language that is used by a referenced third-party product. Learn more about how Cisco is using Inclusive Language.

Table of Contents

Cisco IOS Release 15.8(3)M3 - Release Notes for Cisco IR800 Industrial Integrated Services Routers

Contents

Image Information and Supported Platforms

IR8x9

IR807

Software Downloads

IR800 Series

IR807

IR809

IR829

Warning about Installing the Image

Known Limitations

Major Enhancements

Related Documentation

Caveats

Cisco IOS Release 15.8(3)M3

Open Caveats

Resolved Caveats

Cisco IOS Release 15.8(3)M3 - Release Notes for Cisco IR800 Industrial Integrated Services Routers

Updated: July 30, 2021

 

The following release notes support the Cisco IOS 15.8(3)M3 release. These release notes are updated to describe new features, limitations, troubleshooting, recommended configurations, caveats, and provide information on how to obtain support and documentation.

Contents

This publication consists of the following sections:

blank.gif Image Information and Supported Platforms

blank.gifSoftware Downloads

blank.gifKnown Limitations

blank.gifMajor Enhancements

blank.gifRelated Documentation

blank.gif Caveats

Image Information and Supported Platforms

Note : You must have a Cisco.com account to download the software.

Cisco IOS Release 15.8(3)M3 includes the following Cisco IOS images:

IR8x9

blank.gifSystem Bundled Image: ir800-universalk9-bundle.SPA.158-3.M3

This bundle contains the following components:

blank.gifIOS: ir800-universalk9-mz.SPA.158-3.M3

blank.gifGuest Operating System: ir800-ref-gos.img.1.8.4.1.gz

blank.gifHypervisor: ir800-hv.srp.SPA.3.0.77

blank.gifFPGA: 2.A.0

blank.gifBIOS: 25

blank.gifMCU Application: 33

IR807

blank.gifIOS Image: ir800l-universalk9-mz.SPA.158-3.M3

Software Downloads

IR800 Series

The latest image files for the IR800 product family can be found here:

https://software.cisco.com/download/navigator.html?mdfid=286287045&flowid=75322

Click on the 807, 809 or 829 link to take you to the specific software you are looking for.

Caution : MANUAL [non-bundle] DOWNGRADE IS STRICTLY PROHIBITED. For newer releases with the PSIRT fix - while bundle downgrade to 158-3.M2/157-3.M4b/156-3.M6b is supported, manual downgrade is unsupported.

IR807

The IR807 link shows the following entries:

blank.gifir800l-universalk9-mz.SPA. <version>.bin

blank.gifir800l-universalk9_npe-mz.SPA. <version>.bin

IR809

The IR809 link shows the following entries:

blank.gifIOS Software

blank.gifir800-universalk9-bundle. <version>.bin

blank.gifir800-universalk9_npe-bundle. <version>.bin

blank.gifIOx Cartridges

blank.gifYocto 1.7.2 Base Rootfs (ir800_yocto-1.7.2.tar)

blank.gifPython 2.7.3 Language Runtime (ir800_yocto-1.7.2_python-2.7.3.tar)

blank.gifAzul Java 1.7 EJRE (ir800_yocto-1.7.2_zre1.7.0_65.7.6.0.7.tar)

blank.gifAzul Java 1.8 Compact Profile 3 (ir800_yocto-1.7.2_zre1.8.0_65.8.10.0.1.tar)

IR829

The IR829 link shows the following entries:

Software on Chassis

blank.gifIOS Software

blank.gifir800-universalk9-bundle. <version>.bin

blank.gifir800-universalk9_npe-bundle. <version>.bin

blank.gifIOx Cartridges

blank.gifYocto 1.7.2 Base Rootfs (ir800_yocto-1.7.2.tar)

blank.gifPython 2.7.3 Language Runtime (ir800_yocto-1.7.2_python-2.7.3.tar)

blank.gifAzul Java 1.7 EJRE (ir800_yocto-1.7.2_zre1.7.0_65.7.6.0.7.tar)

blank.gifAzul Java 1.8 Compact Profile 3 (ir800_yocto-1.7.2_zre1.8.0_65.8.10.0.1.tar)

AP803 Access Point Module

blank.gif Autonomous AP IOS Software

blank.gifWIRELESS LAN (ap1g3-k9w7-tar.153-3.JH1.tar)

blank.gif Lightweight AP IOS Software

blank.gifWIRELESS LAN (ap1g3-k9w8-tar.153-3.JH1.tar)

blank.gifWIRELESS LAN LWAPP RECOVERY (ap1g3-rcvk9w8-tar.153-3.JH1.tar)

Note : On the IR8x9 devices, the ir800-universalk9-bundle.SPA.158-3.M bundle can be copied via Trivial File Transfer Protocol (TFTP) or SCP to the IR800, and then installed using the bundle install flash: <image name> command. The ir800-universalk9-bundle.SPA.158-3.M.bin file can NOT be directly booted using the boot system flash:/image_name. Detailed instructions are found in the Cisco IR800 Integrated Services Router Software Configuration Guide.

Note : On the IR8x9 devices, the cipher dhe-aes-256-cbc-sha (which is used with the commands ip http client secure-ciphersuite and ip http secure-ciphersuite) is no longer available in IOS 15.6(3)M and later as part of the weak cipher removal process. This cipher was flagged as a security vulnerability.

Warning about Installing the Image

Note : The bundle can be copied via Trivial File Transfer Protocol (TFTP) or SCP to the device, and then installed using the bundle install flash: <image name> command. The bin file can NOT be directly booted using the boot system flash:/image_name.

Known Limitations

This release has the following limitations or deviations from expected behavior:

blank.gif For IOx, please do not use the image installed with the bundle! With this image, the local manager will not work. This has been fixed in the following IOx image download site for IR809 and IR829.

To download image standalone, please execute the following in exec mode:

guest-os 1 image install flash:ir800-ioxvm.img.1.8.5.2.gz
wr mem
reload
 

blank.gifPlease ensure there is a minimum 30MB additional space in the flash: file system before attempting an upgrade or downgrade between releases. Otherwise, the FPGA/BIOS will not have enough space to store files and perform the upgrade. In these current releases, the bundle installation will not display a warning, but future releases from September 2019 going forward will have a warning.

blank.gifSSH access to GuestOS:

From 15.8(3)M2, SSH to the Guest-OS (IOx) shell is disabled by default.

The ssh access can be enabled using a hidden script for PRIV15 users by following command:

Router#iox host exec enablesshaccess IR800-GOS-1
 

To again disable ssh access to highest privilege user again, run following command:

Router#iox host exec disablesshaccess IR800-GOS-1

Major Enhancements

This section provides details on new features and functionality available in this release. Each new feature is proceeded by the platform which it applies to.

Related Documentation

The following documentation is available:

blank.gifCisco IOS 15.8M cross-platform release notes:

https://www.cisco.com/c/en/us/td/docs/ios-xml/ios/15-8m/release/notes/15-8-3-m-rel-notes.html

blank.gifAll of the Cisco IR800 Industrial Integrated Services Router documentation can be found here:

http://www.cisco.com/c/en/us/support/routers/800-series-industrial-routers/tsd-products-support-series-home.html

blank.gifIoT Field Network Director

https://www.cisco.com/c/en/us/support/cloud-systems-management/iot-field-network-director/products-installation-and-configuration-guides-list.html

blank.gifCisco IOx Documentation is found here:

https://www.cisco.com/c/en/us/support/cloud-systems-management/iox/tsd-products-support-series-home.html

blank.gifCisco IOx Developer information is found here:

https://developer.cisco.com/docs/iox/

Caveats

Caveats describe unexpected behavior in Cisco IOS releases. Caveats listed as open in a prior release are carried forward to the next release as either open or resolved.

Note : You must have a Cisco.com account to log in and access the Cisco Bug Search Tool. If you do not have one, you can register for an account.

For more information about the Cisco Bug Search Tool, see the Bug Search Tool Help & FAQ.

Cisco IOS Release 15.8(3)M3

The following sections list caveats for Cisco IOS Release 15.8(3)M3:

Open Caveats

blank.gif CSCvp22063 - IR829

Inserting SIM in Slot 1 disables IP connectivity on a working interface Cell 0/0.

Symptoms : When a SIM is inserted in Slot 1 (Cell 1/0), the first working modem in Slot 0 (Cell 0/0) looses IP connectivity. The cellular 0/0 (related to Slot 0) modem was working before the SIM in Slot 1 was inserted.

Workaround : Remove and re-insert the SIM in Slot 0 and possibly power cycle the Cell 0/0.

Resolved Caveats

The following caveats are fixed with this release:

blank.gif CSCvp47679 - CGR1k Platform

Handling the SD-card password which is stored in CMOS volatile registers.

Note : From Release 15.8(3)M3 onwards, the SD-Card Password will be stored in a FPGA non-volatile registers instead of CMOS volatile registers. In this way, the SD-Card will always be in the protected state if the SD-Card Password is enabled.

blank.gif CSCvq38103 - CGR1k Platform

CGR1k new SPI flash support

Note : From Release 15.8(3)M3 onwards, Winbond SPI flash is added for the CGR1k routers. Serial Flash memory provides a storage solution for systems with limited space, pins and power

blank.gif CSCvp69117 – CGR1k Platform

Secure Boot Bypass PSIRT Fix

Note : From Release 15.8(3)M3 onwards, the bootloader will update the FPGA and BIOS and the bootloader will lock further updates until the system gets power cycled. Secure boot attack can be avoided with this fix.

Any Internet Protocol (IP) addresses and phone numbers used in this document are not intended to be actual addresses and phone numbers. Any examples, command display output, network topology diagrams, and other figures included in the document are shown for illustrative purposes only. Any use of actual IP addresses or phone numbers in illustrative content is unintentional and coincidental.

© 2019-2020 Cisco Systems, Inc. All rights reserved.

Was this Document Helpful?

FeedbackFeedback

Contact Cisco

This Document Applies to These Products