Cisco Nexus 9000 Series NX-OS Release Notes, Release 9.3(5)
Available Languages
Cisco Nexus 9000 Series NX-OS Release Notes, Release 9.3(5)
For more information, see Related Content.
| April 25, 2024 |
Added CSCwh50989 to Open Issues. |
| August 18, 2020 |
Added CSCvv25573 to Open Issues. |
| August 14, 2020 |
Updated FEX entry in the Software Features for the Cisco Nexus 9300-FX3 Platform Switches. |
| July 28, 2020 |
Updated the New Software Features section and Software Features for the Cisco Nexus 9300-FX3 Platform Switches. |
Contents
■ Software Features for the Cisco Nexus 9300-FX3 Platform Switches
■ Cisco Network Insights for Data Center
New Software Features
| 25G FCoE |
Added support for 25G FCoE on Cisco Nexus 93180YC-FX, 93180YC-EX, and 93360YC-FX2 platform switches.
For more information, see the Cisco Nexus 9000 Series NX-OS FC-NPV and FCoE-NPV Configuration Guide, Release 9.3(x). |
| Alias Option for Sensor Path for Model-Driven Telemetry |
Added the Alias Option for Sensor Path for Model-Driven Telemetry for Cisco Nexus 9000 Series switches and line cards. For more information, see the Cisco Nexus 9000 Series NX-OS Programmability Guide, Release 9.3(x). |
| ARP Suppression with Reflective Relay |
Supports the coexistence of these features for Cisco Nexus 9364C, 9300-EX, 9300-FX/FX2/FXP, and 9300-GX platform switches. For more information, see the Cisco Nexus 9000 Series NX-OS VXLAN Configuration Guide, Release 9.3(x). |
| Authentication through MAC Authentication Bypass Only |
Added the ability to configure MAB as the default authentication method for all traffic on dot1x-enabled ports. Added support for Cisco Nexus 9000 Series switches and line cards. For more information, see the Cisco Nexus 9000 Series NX-OS Security Configuration Guide, Release 9.3(x). |
| BGP PIC Core |
Support added for BGP Prefix Independent Convergence (PIC) Core. Added support for Cisco Nexus 9300-GX platform switches. For more information, see the Cisco Nexus 9000 Series NX-OS Unicast Routing Configuration Guide, Release 9.3(x). |
| Breakout Support |
Added 2x50G breakout support on Cisco Nexus 93600CD-GX platform switches. 4x10G, 4x25G, and 2x50G breakout support on the Cisco Nexus 9364C-GX switch on ports 1-24. For more information, see the Cisco Nexus 9000 Series NX-OS Interfaces Configuration Guide, Release 9.3(x). |
| Cisco NX-OS Software Image Compaction |
Added support for compacting the software image during copy operations. Added support for Cisco Nexus 9300 platform switches. For more information, see the Cisco Nexus 9000 Series NX-OS Software Upgrade and Downgrade Guide, Release 9.3(x). |
| Cisco NX-OS Upgrade History |
Added support for maintaining the software upgrade history across upgrades. Added support for Cisco Nexus 9000 Series switches and line cards. For more information, see the Cisco Nexus 9000 Series NX-OS Software Upgrade and Downgrade Guide, Release 9.3(x). |
| Configuration Replace for FEX Interfaces |
Added support for FEX interface configuration modifications. Added support for Cisco Nexus 9000 Series switches and line cards. For more information, see the Cisco Nexus 9000 Series NX-OS System Management Configuration Guide, Release 9.3(x). |
| Configuration Replace for Port Profiles |
Added support for port profiles. Added support for Cisco Nexus 9000 Series switches and line cards. For more information, see the Cisco Nexus 9000 Series NX-OS System Management Configuration Guide, Release 9.3(x). |
| Configure Jobs Mode Option for Configuration Replace |
Added support for the configure jobs mode. Added support for Cisco Nexus 9000 Series switches and line cards. For more information, see the Cisco Nexus 9000 Series NX-OS System Management Configuration Guide, Release 9.3(x). |
| Consistency Checker |
ACL Consistency Checker: Added support on Cisco Nexus 93240YC-FX2, 93180YC-EX switches; Cisco Nexus 9500 platform switches with 9636Q-R, 9636C-R, 9636C-RX, and 96136YC-R line cards, and Cisco Nexus 9300-GX platform switches. Layer 2 Switchport Consistency Checker: Added support for all option in show consistency-checker l2 switchport interface command on Cisco Nexus 9200, 9300-EX, and 9300-FX platform switches and Cisco Nexus 9500 platform switches with -EX, -FX, and -R line cards. Multicast Consistency Checker: Verifies the programming consistency of these Layer 2 components IGMP snooping, MFDM, MFIBPI, MFIBPD, Hardware tables; and these Layer 3 components PIM, MRIB, IGMP snooping, MFDM, MFIBPI, MFIBPD and Hardware tables. SVI/subinterface Consistency Checker: Added support for Layer 3 setting of SVI and Sub-interfaces on Cisco Nexus 9200, 9300-EX, and 9300-FX platform switches and Cisco Nexus 9500 platform switches with -EX, and -FX line cards; and Cisco Nexus 9300-GX platform switches. |
| Device Led Conversion (DLC) |
Added support for conversion of a traditional license to a Smart License. Supported for all Cisco Nexus 9000 Series switches and line cards. For more information, see the Cisco NX-OS Licensing Guide. |
| DHCPv6 |
Added support for DHCPv6 Option 79 (client link layer address) in DHCPv6 relayed packets for Cisco Nexus 9300-GX platform switches. For more information, see the Cisco Nexus 9000 Series NX-OS Security Configuration Guide, Release 9.3(x). |
| DSCP Wildcard Mask |
Added support for creating an ACL that matches or filters traffic based on a DSCP bit mask. Added support for Cisco Nexus 9504 with 9464PX line card. For more information, see the Cisco Nexus 9000 Series NX-OS Quality of Service Configuration Guide, Release 9.3(x). |
| Dual RD Support for Multi-Site |
Enables route reorigination with dual route distinguishers (RDs). It is enabled automatically for Cisco Nexus 9332C, 9364C, 9300-EX, and 9300-FX/FX2/FXP platform switches and Cisco Nexus 9500 platform switches with -EX/FX line cards that have VXLAN EVPN Multi-Site enabled. For more information, see the Cisco Nexus 9000 Series NX-OS VXLAN Configuration Guide, Release 9.3(x). |
| Dual-Homed FEX |
Added support for Cisco Nexus 9300-FX2 platform switches. Note: The following third-party equipment is not supported for dual-homed FEX for Cisco Nexus 9300-FX2/FX3 platform switches and straight-through FEX for Cisco Nexus 9300-FX3 platform switches: B22-HP, B22-IBM, B22-Dell, and B22-Fujitsu. For more information, see the Cisco Nexus 2000 Series NX-OS Fabric Extender Configuration Guide for Cisco Nexus 9000 Series Switches, Release 9.3(x). |
| Dynamic ACL |
Added the ability to restrict access to the dot1x blocked list of MAB clients. This feature is supported for Cisco Nexus 9236C, 9336C-FX2, 93108TC-EX, and 93180YC-EX platform switches. For more information, see the Cisco Nexus 9000 Series NX-OS Security Configuration Guide, Release 9.3(x). |
| Enhanced ISSU |
Added support for Cisco Nexus 92348GC-X, 9332C, 9364C, and 9300-FX/FX2/FXP switches. For more information, see the Cisco Nexus 9000 Series NX-OS Software Upgrade and Downgrade Guide, Release 9.3(x). |
| Enhanced Policy-Based Routing (ePBR) |
Provides traffic redirection and service chaining across the standalone and fabric topologies. It leverages the policy-based routing solution and achieves service chaining without adding additional headers. This feature allows you to define traffic selection, redirection of traffic to the service endpoint, and various fail-action mechanisms on the endpoints. It is supported on Cisco Nexus 9300-EX and 9300-FX/FX2 platform switches and Cisco Nexus 9500 platform switches with -EX/FX line cards. For more information, see the Cisco Nexus 9000 Series NX-OS ePBR Configuration Guide, Release 9.3(x). |
| ePBR Multi-Hop |
Maintains the symmetry when fail-action bypass is configured for all of the services in the service chain. This feature is supported on Cisco Nexus 9300-EX and 9300-FX/FX2 platform switches and Cisco Nexus 9500 platform switches with -EX/FX line cards.
For more information, see the Cisco Nexus 9000 Series NX-OS ePBR Configuration Guide, Release 9.3(x). |
| ePBR with Probes |
ePBR creates SLA and Track objects based on the probe types configured on the policies and supports various probes and timers such as ICMP, TCP, UDP, DNS, HTTP. ePBR monitors the health of the end points by provisioning IP SLA probes and object tracks to track the IP SLA reachability when you apply the ePBR probe configuration. This feature is supported on Cisco Nexus 9300-EX and 9300-FX/FX2 platform switches and Cisco Nexus 9500 platform switches with -EX/FX line cards. For more information, see the Cisco Nexus 9000 Series NX-OS ePBR Configuration Guide, Release 9.3(x). |
| ePBR with User-Defined Probes |
ePBR with User-Defined Probes—Enables you to define tracks separately and assign the track ID to each service endpoint in ePBR. If no user-defined track is assigned to an endpoint, ePBR creates a track using the probe method for the endpoint. If no probe method is defined at the endpoint level, the probe method configured for the service level is used. This feature is supported on Cisco Nexus 9300-EX and 9300-FX/FX2 platform switches and Cisco Nexus 9500 platform switches with -EX/FX line cards. For more information, see the Cisco Nexus 9000 Series NX-OS ePBR Configuration Guide, Release 9.3(x). |
| ERSPAN destination |
Added support for Cisco Nexus 9300-GX platform switches. For more information, see the Cisco Nexus 9000 Series NX-OS System Management Configuration Guide, Release 9.3(x). |
| ERSPAN Type III |
Added support for ERSPAN type III header for Cisco Nexus 9300-GX platform switches. For more information, see the Cisco Nexus 9000 Series NX-OS System Management Configuration Guide, Release 9.3(x). |
| Event Log Auto-Collection and Backup |
Added updates to the auto-collection YAML file and additional options for the bloggerd log-snapshot command. Added support for Cisco Nexus 9000 Series switches and line cards. For more information, see the Cisco Nexus 9000 Series NX-OS System Management Configuration Guide, Release 9.3(x). |
| FC NPV |
Added support for the Cisco Nexus 93360YC-FX2 switch. For more information, see Cisco Nexus 9000 Series NX-OS FC-NPV and FCoE-NPV Configuration Guide, Release 9.3(x). |
| FC/FCoE Switch Mode Features |
Enhanced Device Alias: Added support for enhanced device alias mode. |
| FCoE NPV |
Added support for Cisco Nexus 93360YC-FX2 switches. For more information, see Cisco Nexus 9000 Series NX-OS FC-NPV and FCoE-NPV Configuration Guide, Release 9.3(x). |
| Flex Link |
Added support for Cisco Nexus 9300-GX platform switches. For more information, see the Cisco Nexus 9000 Series NX-OS Layer 2 Switching Configuration Guide, Release 9.3(x). |
| gNMI Get/Set |
Added support for the Get and Set Remote Procedure Call (RPC). Added support for Cisco Nexus 9000 Series switches and line cards. For more information, see the Cisco Nexus 9000 Series NX-OS Programmability Guide, Release 9.3(x). |
| iCAM Memory Monitoring |
Added support for Cisco Nexus 9300-GX platform switches. For more information, see the Cisco Nexus 9000 Series NX-OS iCAM Configuration Guide, Release 9.3(x). |
| In-Service ACL Refresh for ITDv6 |
Added support for Cisco Nexus 9300-GX platform switches. For more information, see the Cisco Nexus 9000 Series NX-OS Intelligent Traffic Director Configuration Guide, Release 9.3(x). |
| Interface Statistics |
Added support for the Cisco Nexus 9000v. For more information, see the Cisco Nexus 9000v (9300v/9500v) Guide, Release 9.3(3). |
| IP Source Guard (IPSG) |
Added support for Cisco Nexus 9300-GX platform switches. For more information, see the Cisco Nexus 9000 Series NX-OS Security Configuration Guide, Release 9.3(x). |
| IPv6 Egress ACL |
Added support for Cisco Nexus 9504 and 9508 platform switches with -R and -RX line cards. For more information, see the Cisco Nexus 9000 Series NX-OS Security Configuration Guide, Release 9.3(x). |
| IPv6 First Hop Security (FHS) |
Added support for Cisco Nexus 9300-GX platform switches. For more information, see the Cisco Nexus 9000 Series NX-OS Security Configuration Guide, Release 9.3(x). |
| IPv6 Flow Label Hashing |
Added support for additional options such as IPv6 flow and TTL for Cisco Nexus 9300-GX platform switches. For more information, see the Cisco Nexus 9000 Series NX-OS Interfaces Configuration Guide, Release 9.3(x). |
| IPv6 MLD Snooping |
Added support for Cisco Nexus 9300-GX platform switches. For more information, see the Cisco Nexus 9000 Series NX-OS Multicast Routing Configuration Guide, Release 9.3(x). |
| ISSU for uRPF |
Added support for standard ISSU on Cisco Nexus 9300-EX and 9300-FX/FX2/FXP platform switches configured with uRPF. For more information, see the Cisco Nexus 9000 Series NX-OS Software Upgrade and Downgrade Guide, Release 9.3(x). |
| ITD |
Added support for Cisco Nexus 9300-GX platform switches. For more information, see the Cisco Nexus 9000 Series NX-OS Intelligent Traffic Director Configuration Guide, Release 9.3(x). |
| ITD Destination NAT |
Added support for Cisco Nexus 9300-GX platform switches. For more information, see the Cisco Nexus 9000 Series NX-OS Intelligent Traffic Director Configuration Guide, Release 9.3(x). |
| ITD Fail Action Node with Include ACL |
Added support for Include ACL with weighted fail action node-per-bucket and added new least-bit and mask position support for Include ACL. Added support for Cisco Nexus 9300-GX platform switches. For more information, see the Cisco Nexus 9000 Series NX-OS Intelligent Traffic Director Configuration Guide, Release 9.3(x). |
| ITD with User-Defined Probes |
Added support for user-defined track objects (system health monitoring). Added support for Cisco Nexus 93108TC-EX and 9300-GX platform switches. For more information, see the Cisco Nexus 9000 Series NX-OS Intelligent Traffic Director Configuration Guide, Release 9.3(x). |
| ITDv6 |
Added support for Cisco Nexus 9300-GX platform switches and Cisco Nexus 9500 platform switches with 97160YC-EX and 9732C-FX line cards. For more information, see the Cisco Nexus 9000 Series NX-OS Intelligent Traffic Director Configuration Guide, Release 9.3(x). |
| Layer 3 Tenant Routed Multicast (TRM) |
Added support for Cisco Nexus 9300-GX platform switches. For more information, see the Cisco Nexus 9000 Series NX-OS VXLAN Configuration Guide, Release 9.3(x). |
| MACsec |
Added support for Cisco Nexus 9500 platform switches with 9732C-FX and 9788TC-FX line cards. For more information, see the Cisco Nexus 9000 Series NX-OS Security Configuration Guide, Release 9.3(x). |
| MacSecPortLoopback Test |
Added support for the bootup diagnostic test MacSecPortLoopback for Cisco Nexus 9504, 9508 and 9516 with 9736C-FX and 9736Q-FX line cards. For more information, see the Cisco Nexus 9000 Series NX-OS System Management Configuration Guide, Release 9.3(x). |
| MLD Snooping |
Added support for 9300-GX platform switches and 9500 platform switches with 9400 and 9600 line cards. For more information, see the Cisco Nexus 9000 Series NX-OS Multicast Routing Configuration Guide, Release 9.3(x). |
| Modify Format of Repeated Syslog Messages |
Added support for an updated indicator in repeated syslog messages. Added support for Cisco Nexus 9000 Series switches and line cards. For more information, see the Cisco Nexus 9000 Series NX-OS System Management Configuration Guide, Release 9.3(x). |
| MPLS QoS |
Added support for Cisco Nexus 9300-GX platform switches. For more information, see the Cisco Nexus 9000 Series NX-OS Label Switching Configuration Guide, Release 9.3(x). |
| MPLS Stripping |
Added support for Cisco Nexus 9300-GX platform switches. For more information, see the Cisco Nexus 9000 Series NX-OS Label Switching Configuration Guide, Release 9.3(x). |
| Multicast Service Reflection |
Enables you to translate externally received multicast destination addresses to addresses that conform to your organization's internal addressing policy. This feature is supported on Cisco Nexus 9300-EX and 9300-FX/FX2/FXP platform switches. For more information, see the Cisco Nexus 9000 Series NX-OS Multicast Routing Configuration Guide, Release 9.3(x). |
| Multiple LLDP Neighbors per Physical Interface |
Added support for up to three LLDP neighbors per interface. Added support for LLDP on interface port channels. Added support for Cisco Nexus 9000 Series switches and line cards. For more information, see the Cisco Nexus 9000 Series NX-OS System Management Configuration Guide, Release 9.3(x). |
| Multiple VRFs for Tunnel Decapsulation |
Added support for Cisco Nexus 9300-GX platform switches. For more information, see the Cisco Nexus 9000 Series NX-OS Interfaces Configuration Guide, Release 9.3(x). |
| NAT |
Added support for Cisco Nexus 9300-GX platform switches. For more information, see the Cisco Nexus 9000 Series NX-OS Interfaces Configuration Guide, Release 9.3(x). |
| NDcPP: OCSP for Syslog |
Added OCSP support for syslog servers. This feature is supported on all Cisco Nexus 9000 Series switches and line cards. For more information, see the Cisco Nexus 9000 Series NX-OS Security Configuration Guide, Release 9.3(x). |
| NETCONF OpenConfig Notifications |
Added support for NETCONF OpenConfig Notifications. Added support for Cisco Nexus 9200, 9300-EX, 9300-FX/FX2/FXP, 9300-GX, and 9500 with 9400, 9700-EX, and 9700-FX line cards. For more information, see the Cisco Nexus 9000 Series NX-OS Programmability Guide, Release 9.3(x). |
| NETCONF/gRPC |
Added support for NETCONF/gRPC. Added support for Cisco Nexus 9200, 9300-EX, 9300-FX/FX2/FXP, 9300-GX, and 9500 with 9400, 9700-EX, and 9700-FX line cards. For more information, see the Cisco Nexus 9000 Series NX-OS Programmability Guide, Release 9.3(x). |
| NX-API Idle Timeout-Enables |
Enables you to configure the amount of time before an idle NX-API session is invalidated. For more information, see the Cisco Nexus 9000 Series NX-OS Programmability Guide, Release 9.3(x). |
| NX-API REST Data Paths |
See the “New and Changed Information” section of the Cisco Nexus 3000 and 9000 Series NX-API REST User Guide and API Reference for a detailed list of the updates. |
| OpenConfig Model Additions |
Added updates for the OpenConfig YANG data modeling language. For more information, see the Cisco Nexus OpenConfig YANG Reference for examples of configuring and retrieving state data. |
| Optics Support |
Added support for 10G BASE-T SFP+ on Cisco Nexus 93180YC-EX, 93180YC-FX, 93240YC-FX2, and 93360YC-FX2 switches. For more information, see the Cisco Nexus 9000 Series NX-OS Interfaces Configuration Guide, Release 9.3(x). |
| PACL Redirects |
Added support for Cisco Nexus 9300-GX platform switches. For more information, see the Cisco Nexus 9000 Series NX-OS Security Configuration Guide, Release 9.3(x). |
| PFC Watchdog Interval |
Added support for Cisco Nexus 9300-GX platform switches. For more information, see the Cisco Nexus 9000 Series NX-OS Quality of Service Configuration Guide, Release 9.3(x). |
| PIM6 for SVI |
Added support for Cisco Nexus 9300-GX platform switches. For more information, see the Cisco Nexus 9000 Series NX-OS Multicast Routing Configuration Guide, Release 9.3(x). |
| Policy-Based Routing (PBR) |
Added support for PBR on Cisco Nexus 9300-GX platform switches. For more information, see the Cisco Nexus 9000 Series NX-OS Unicast Routing Configuration Guide, Release 9.3(x). |
| Private VLANs (PVLANs) |
Added support for Cisco Nexus 9300-GX platform switches. For more information, see the Cisco Nexus 9000 Series NX-OS Layer 2 Switching Configuration Guide, Release 9.3(x). |
| Proportional Multipath for VNF for Segment Routing |
Added the ability to advertise the VNF of a service network in the EVPN address family. This feature is supported on Cisco Nexus 9300-EX, 9300-FX/FX2, 9300-GX, and 9500 switches with 9700-EX, and 9700-FX line cards. For more information, see the Cisco Nexus 9000 Series NX-OS Label Switching Configuration Guide, Release 9.3(x). |
| Proportional Multipath for VNF for VXLAN |
Introduced the following enhancements for Cisco Nexus 9364C, 9300-EX, and 9300-FX/FX2 platform switches: · Added the ability to have only eBGP or iBGP filter the ECMP paths, rather than using mixed paths. · Added the maximum-paths local number command, which allows multiple local paths to be chosen as the BGP best path. For more information, see the Cisco Nexus 9000 Series NX-OS VXLAN Configuration Guide, Release 9.3(x). |
| PTP and Timestamp Tagging (TTAG) |
Added support for Cisco Nexus 9300-GX platform switches. For more information, see the Cisco Nexus 9000 Series NX-OS System Management Configuration Guide, Release 9.3(x). |
| PTP Event Notifications |
Added support for configuring event-based notifications for PTP error scenarios. This feature is supported on: · Cisco Nexus 92348GC-X, 9332C, 9364C, 9300-EX, 9300-FX/FX2/FXP, and 9300-GX platform switches. · Cisco Nexus 9500 platform switches with 97160YC-EX, 9732C-EX, 9732C-FX, 9736C-EX, 9736C-FX, and 9788TC-FX line cards. · Cisco Nexus 9504 and 9508 platform switches with 9636C-R, 9636C-RX, and 9636Q-R line cards. For more information, see the Cisco Nexus 9000 Series NX-OS System Management Configuration Guide, Release 9.3(x). |
| PTP Monitoring |
Added support for Cisco Nexus 9300-GX platform switches. For more information, see the Cisco Nexus 9000 Series NX-OS System Management Configuration Guide, Release 9.3(x). |
| Python 3 on NX-OS |
Added support for all Cisco Nexus 9000 Series switches and line cards. For more information, see the Cisco Nexus 9000 Series NX-OS Programmability Guide, Release 9.3(x). |
| Q-in-VNI |
Added support for Cisco Nexus 9300-GX platform switches. For more information, see the Cisco Nexus 9000 Series NX-OS VXLAN Configuration Guide, Release 9.3(x). |
| QinQ-QinVNI |
Added support for Cisco Nexus 9300-GX platform switches. For more information, see the Cisco Nexus 9000 Series NX-OS VXLAN Configuration Guide, Release 9.3(x). |
| Seamless Integration of EVPN (TRM) with MVPN (Draft Rosen) |
Enables packets to be handed off between a VXLAN network (TRM or TRM Multi-Site) and an MVPN network. A Cisco Nexus 9504 or 9508 platform switch with an 9636C-RX line card with VXLAN TRM and MVPN enabled can serve as a handoff node. This central node performs the necessary packet forwarding, encapsulation, and decapsulation to send the traffic to the respective receivers. It is the PE for the MVPN network and the VTEP for the VXLAN network. For more information, see the Cisco Nexus 9000 Series NX-OS VXLAN Configuration Guide, Release 9.3(x). |
| Seamless Integration of EVPN with L3VPN (MPLS SR) |
Added support for Cisco Nexus 9300-GX platform switches. For more information, see the Cisco Nexus 9000 Series NX-OS VXLAN Configuration Guide, Release 9.3(x). |
| Secure VXLAN EVPN Multi-Site using CloudSec |
Ensures data security and data integrity for VXLAN-based Multi-Site fabrics. Using the cryptographic machinery of IEEE MACsec for UDP packets, this feature provides a secure tunnel between authorized VXLAN EVPN endpoints. It is supported for Cisco Nexus 9300-FX2 platform switches only. For more information, see the Cisco Nexus 9000 Series NX-OS VXLAN Configuration Guide, Release 9.3(x). |
| Segment Routing MPLS |
Added support for Layer 2 EVPN on Cisco Nexus 9300-GX platform switches. For more information, see the Cisco Nexus 9000 Series NX-OS Label Switching Configuration Guide, Release 9.3(x). |
| Selective Q-in-Q with Multiple Provider VLANs |
Added support for Cisco Nexus 9300-GX platform switches. For more information, see the Cisco Nexus 9000 Series NX-OS Interfaces Configuration Guide, Release 9.3(x). |
| Selective Q-in-VNI |
Added support for Cisco Nexus 9300-GX platform switches. For more information, see the Cisco Nexus 9000 Series NX-OS VXLAN Configuration Guide, Release 9.3(x). |
| Selective Q-in-VNI + Advertise PIP on a VTEP |
Supports the advertise-pip command with selective Q-in-VNI on a VTEP. This feature is supported for Cisco Nexus 9300-EX, 9300-FX/FX2/FXP, and 9300-GX platform switches. For more information, see the Cisco Nexus 9000 Series NX-OS VXLAN Configuration Guide, Release 9.3(x). |
| Selective Q-in-VNI and VXLAN VLAN on Same Port |
Supports selective Q-in-VNI and VXLAN VLANs on the same port. By adding the vlan vlan-range option to the system dot1q-tunnel transit command, you can specify the provider VLANs and allow other VLANs to be used for regular VXLAN traffic. This feature is supported for Cisco Nexus 9300-EX, 9300-FX/FX2/FXP, and 9300-GX platform switches. For more information, see the Cisco Nexus 9000 Series NX-OS VXLAN Configuration Guide, Release 9.3(x). |
| Selective Q-in-VNI with Multiple Provider VLANs |
Added support for Cisco Nexus 9300-GX platform switches. For more information, see the Cisco Nexus 9000 Series NX-OS VXLAN Configuration Guide, Release 9.3(x). |
| SPAN Truncation |
Added support for Cisco Nexus 9300-GX platform switches. For more information, see the Cisco Nexus 9000 Series NX-OS System Management Configuration Guide, Release 9.3(x). |
| SRv6 Static Per-Prefix TE |
Added the ability to advertise multiple prefixes as a part of the same VRF through the route map. This feature is supported on Cisco Nexus 9300-GX platform switches. For more information, see the Cisco Nexus 9000 Series NX-OS Label Switching Configuration Guide, Release 9.3(x). |
| SRv6 Traffic Engineering |
Introduced this feature for Cisco Nexus 9300-GX platform switches. For more information, see the Cisco Nexus 9000 Series NX-OS SRv6 Configuration Guide, Release 9.3(x). |
| Standard ISSU with FC/FCoE |
Added support for Cisco Nexus 93180YC-FX and 93360YC-FX2 switches. For more information, see the Cisco Nexus 9000 Series NX-OS FC-NPV and FCoE-NPV Configuration Guide, Release 9.3(x). |
| SVI and Subinterface Ingress/Egress Unicast Counters |
Added support for Cisco Nexus 9300-GX platform switches. For more information, see the Cisco Nexus 9000 Series NX-OS Interfaces Configuration Guide, Release 9.3(x). |
| Syslog for Exceeding Logging Message Size Threshold |
Added support for logging message files to a location that is persistent across system reloads. Added support for all Cisco Nexus 9000 Series switches and line cards. For more information, see the Cisco Nexus 9000 Series NX-OS System Management Configuration Guide, Release 9.3(x). |
| Time-to-Live for ECMP Hashing |
Added support for additional options such as UDF and TTL for Cisco Nexus 9300-GX platform switches. For more information, see the Cisco Nexus 9000 Series NX-OS Interfaces Configuration Guide, Release 9.3(x). |
| Type-6 Encryption of MACsec Keys |
Added support for all Cisco Nexus 9000 Series switches and line cards that support MACsec. For more information, see the Cisco Nexus 9000 Series NX-OS Security Configuration Guide, Release 9.3(x). |
| UDP for IP Helper Address |
Added the ability to enable route configuration to relay broadcasts destined for all UDP ports, except DHCPv4 port numbers 67 and 68. This feature is supported on Cisco Nexus 9200, 9332C, 9364C, 9300-EX, 9300-FX/FX2/FXP platform switches, and Cisco Nexus 9500 platform switches with -EX/FX line cards. For more information, see the Cisco Nexus 9000 Series NX-OS Security Configuration Guide, Release 9.3(x). |
| Unidirectional Ethernet (UDE) |
Added support for Cisco Nexus 9500 platform switches with 97160YC-EX line cards. For more information, see the Cisco Nexus 9000 Series NX-OS Interfaces Configuration Guide, Release 9.3(x). |
| vPC Fabric Peering |
Added support for Cisco Nexus 9300-GX platform switches. For more information, see the Cisco Nexus 9000 Series NX-OS VXLAN Configuration Guide, Release 9.3(x). |
| VXLAN EVPN Loop Detection and Mitigation |
Detects Layer 2 loops in a single VXLAN EVPN fabric or a Multi-Site environment. This feature operates at the port/VLAN level and disables the VLAN(s) on each port where a loop is detected. In this way, it ensures that the network remains up and available. This feature is supported for Cisco Nexus 9332C, 9364C, 9300-EX, 9300-FX/FX2/FXP, and 9300-GX platform switches and Cisco Nexus 9500 platform switches with -EX/FX line cards. For more information, see the Cisco Nexus 9000 Series NX-OS VXLAN Configuration Guide, Release 9.3(x). |
| VXLAN EVPN Multi-Site |
Added support for Cisco Nexus 9300-GX platform switches. For more information, see the Cisco Nexus 9000 Series NX-OS VXLAN Configuration Guide, Release 9.3(x). |
| VXLAN EVPN with Downstream VNI |
Provides the following solutions for Cisco Nexus 9332C, 9364C, 9300-EX, and 9300-FX/FX2/FXP platform switches, Cisco Nexus 9500 platform switches with -EX/FX line cards. · Enables asymmetric VNI communication across nodes in a VXLAN EVPN network · Provides customers access to a common shared service outside of their domain (tenant VRF) · Supports communication between isolated VXLAN EVPN sites that have different sets of VNIs For more information, see the Cisco Nexus 9000 Series NX-OS VXLAN Configuration Guide, Release 9.3(x). |
| VXLAN over Parent Interface that Carries Subinterfaces |
Adds the ability for subinterfaces on VXLAN uplinks to carry non-VXLAN L3 IP traffic for Cisco Nexus 9332C, 9364C, 9300-EX, 9300-FX/FX2/FXP, and 9300-GX platform switches and Cisco Nexus 9500 platform switches with -EX/FX line cards. This feature is supported for VXLAN flood and learn and VXLAN EVPN, VXLAN EVPN Multi-Site, and DCI. For more information, see the Cisco Nexus 9000 Series NX-OS VXLAN Configuration Guide, Release 9.3(x). |
| VXLAN Static Tunnels |
Added support for Cisco Nexus 9300-GX platform switches. In Cisco NX-OS Release 9.3(5), this feature allows the Cisco Nexus switch to send packets to the hosts or other switches over the tunnel. In Cisco NX-OS Releases 9.3(3) and 9.3(4), VXLAN static tunnels support communication only from the local host to the remote host. For more information, see the Cisco Nexus 9000 Series NX-OS VXLAN Configuration Guide, Release 9.3(x). |
| YANG Support for Multiple Keys |
YANG Support for Multiple Keys added. Supported for all Cisco Nexus 9000 Series switches and line cards. For more information, see the Cisco Nexus 9000 Series NX-OS Programmability Guide, Release 9.3(x). |
Software Features for the Cisco Nexus 9300-FX3 Platform Switches
| Feature |
Description |
| FEX |
· 802.1X · Dual-homed FEX · Straight-through FEX Note: The following third-party equipment is not supported for dual-homed FEX for Cisco Nexus 9300-FX2/FX3 platform switches and straight-through FEX for Cisco Nexus 9300-FX3 platform switches: B22-HP, B22-IBM, B22-Dell, and B22-Fujitsu. For more information, see the Cisco Nexus 2000 Series NX-OS Fabric Extender Configuration Guide for Cisco Nexus 9000 Series Switches, Release 9.3(x). |
| Fundamentals |
· Erase configuration · USB support for POAP For more information, see the Cisco Nexus 9000 Series NX-OS Fundamentals Configuration Guide, Release 9.3(x). |
| iCAM |
· iCAM Scale Monitoring For more information, see the Cisco Nexus 9000 Series NX-OS iCAM Configuration Guide, Release 9.3(x). |
| Interfaces |
· 802.1Q Tunnel Port · Autonegotiation on native 25G ports · BFD Multihop · ECMP load balancing · ECMP resilient hashing · ECMP symmetric hashing · EtherType for Q-in-Q · FEC information · GRE inner headers · GTP Tunnel Load Balancing · Interface port channel · IP event dampening · IP load sharing · IP TCP MSS · IP tunnels · IPv6 flow label · LACP System MAC · Link debounce time · Management Interface Configurable MTU · Multiple IP-in-IP/GRE tunnel interfaces · Multiple VRF Support on Tunnel Decap · MTU Configuration on Interfaces in Switch Profiles · Port-channel symmetric hashing · Selective Q-in-Q with multiple provider VLANs · SVI and Subinterface Ingress/Egress Unicast Counters · TCP aware NAT · vPCs o Dual vPCs o vPC non-dis role change o vPC Object Tracking o vPC Peer Gateway o vPC Peer Switch o vPC Role Preempt (ND - no traffic loss on STP root switch) o vPC with server NIC teaming o vPC with user defined MAC scale 256 o vPC, vPC GIR, Convergence(fast) For more information, see the Cisco Nexus 9000 Series NX-OS Interfaces Configuration Guide, Release 9.3(x). |
| ITD |
· In-Service ACL Refresh for ITDv6 · ITD Destination NAT · ITD Fail Action Node with Include ACL · ITD with User-Defined Probes · ITDv6 |
| Label Switching |
· Ingress and Egress Label Stats with Stats Knob · Layer2 EVPN over Segment Routing MPLS · Layer3 VPN over Segment Routing · Local label allocation · MPLS Adjacency Statistics · MPLS QoS · MPLS Queuing · MPLS stripping with VLAN tagging · NetFlow for MPLS · Port Channel and ECMP Load balancing based on MPLS Label Information · Segment routing · sFlow · sFlow collector over segment routing · vPC-based multihoming For more information, see the Cisco Nexus 9000 Series NX-OS Label Switching Configuration Guide, Release 9.3(x). |
| Layer 2 Switching |
· Flex Link · PVLANs · PVLANs over vPCs and port channels · Reflective Relay · STP Extensions · SVI · Traffic storm control For more information, see the Cisco Nexus 9000 Series NX-OS Layer 2 Switching Configuration Guide, Release 9.3(x). |
| Licensing |
· Device Led Conversion (DLC) · Honor mode syslog · Smart software licensing For more information, see the Cisco NX-OS Licensing Guide. |
| Multicast Routing |
· IPv6 MLD snooping · MLD snooping · Multicast on GRE tunnels · Network Load Balancing · PIM and PIM6 · PIM6 for SVI · PIM BiDir For more information, see the Cisco Nexus 9000 Series NX-OS Multicast Routing Configuration Guide, Release 9.3(x). |
| QoS |
· Classification/Marking o ACL Classification o Bank (MAC level) o COS o DSCP o Label Sharing o MAC o No-DROP o Precedence o QoS-grp o ROCE/RTP o Set action/MARKING o TCAM Carving · Policer o Egress Policer o Ingress Policer o Policer - 1R2C o Policer - 2R3C · Queuing o 4-Q and 8-Q policy support o AFD o Bandwidth (Percentage/Remaining Percent) o Congestion control - ECN o Congestion control - WRED o ETRAP o Forward NON-ECN o Ingress Queueing o Interface Level Queuing o Micro-Burst Monitoring o Queue Limits - Dynamic (0 to 10 alpha) o Queue Limits - Static o Shaper - bps/gbps/kbps/mbps/pps o Strict Priority (Level from 1 to 8) o System Queueing o TD and ECN polling via hardware knobs · Congestion Management o Buffer Default o Buffer Swap across drop & no-drop o DPP o Ingress drop PFC-WD o Link-Level Flow control o Mode 'AUTO' – DCBX, CEE/IEEE mode o Mode 'ON' – NON-DCBX o MTU o Pause PFC-COS o PFC Watchdog o PFC-WD Force Knob o PFC-WD Interface Multiplier o PFC-WD Syslog Only o Priority Flow control / A-PFC o PRM Pause Buffers Allocation o PRM/PBX stages o User Defined Buffer · Miscellaneous o Breakout Interface Queueing o FEX QoS o MAC based port mapping o MC drop syslog o MC transmit Syslog o Override mode o Process Restart o SNMP stats For more information, see the Cisco Nexus 9000 Series NX-OS Quality of Service Configuration Guide, Release 9.3(x). |
| Programmability |
· Ansible 2.4 · BASH · Cloud Scale Telemetry · Direct Streaming from DME to Native YANG · Docker Containers · Flow Monitor for VRF Filtering · gRPC · Guest Shell · Model-Driven Telemetry · Native Data Source · NETCONF RFC 6241 · NX-API CLI · NX-API Client Authentication · NX-API · NX-SDK · OpenConfig YANG · Perl Modules · Puppet · Salt Stack · Streaming Syslog and Filtered Syslog · Streaming of YANG Models · Streaming Telemetry · Synchronization · Telemetry gNMI OpenConfig · Telemetry Multi-Threading For more information, see the Cisco Nexus 9000 Series NX-OS Programmability Guide, Release 9.3(x). |
| Security |
· ACLs o ACL log Rate Limits o ACL TCAM Regions o ACL with UDF o LOU o MAC ACL o MGMT ACL o PACL o RACL o VACL · CoPP · DHCPv4/v6 · First-Hop Security · IP ACL – object groups · IPv6 First-Hop Security - IPv6 RA Guard · IPv6 wildcard masks · MACsec · MACsec EAPOL · Option 82 String Identifiers · SSH · uRPF For more information, see the Cisco Nexus 9000 Series NX-OS Security Configuration Guide, Release 9.3(x). |
| Software Upgrade |
· Optionality · vPC topology For more information, see the Cisco Nexus 9000 Series NX-OS Software Upgrade and Downgrade Guide, Release 9.3(x). |
| System Management |
· ASIC Register Health Check · Configuration Replace · DCBX/DCBXP · EEM · Extended Event Log Storage · FEX ports as SPAN sources in the ingress direction · LLDP · MIBs · NetFlow · Online diagnostics · PTP, PTP Offload · SNMP · System message logging · Syslog messages - link level pause frames · Timestamp Tagging (TTAG) · SPAN and ERSPAN o SPAN o ERSPAN (Type II and Type III, RFC-compliant header 3 option) o ERSPAN destination o SPAN/ERSPAN ACL o SPAN/ERSPAN UDF support o SPAN/ERSPAN Rate Limits o SPAN + sFlow · SyncE - Support for ITU-compliant precision frequency over Ethernet ports and the PHY-level frequency distribution of known common precision frequency references. NOTE: GNSS and GPS are not supported on the Cisco Nexus 93180YC-FX3S switch for Cisco NX-OS Release 9.3(5).
· Telecom Profile G.8275.1 and Telecom Profile G.8273.2 - Support for ITU-T Telecom Profiles for PTP as defined in the ITU-T recommendation. NOTE: Time of Day and PTP GM are not supported on the Cisco Nexus 93180YC-FX3S switch for Cisco NX-OS Release 9.3(5).
For more information, see the Cisco Nexus 9000 Series NX-OS System Management Configuration Guide, Release 9.3(x). |
| Troubleshooting |
· ACL Consistency Checker · Multicast Consistency Checker · Optimized Memory Utilization · Slow Drain Detection and Congestion Isolation · VXLAN Consistency Checker For more information, see the Cisco Nexus 9000 Series NX-OS Troubleshooting Guide, Release 9.3(x). |
| Unicast Routing |
· 64-way ECMP · ACL Logging · ACL statistics · ARP / GRAT ARP / Proxy ARP · BFD support for both IPv4 and IPv6 · BGP (VRF Aware) · BGP Fast Failover · BGP Next-Hop Address Tracking · BGP scan timer, & Best path algorithm · Bidirectional Flow Detection (BFD) for ipv4 and v6 Static routes · Default Interface Configuration · DHCP · DHCP Relay · Duplicate Address Detection · Dynamic Port Breakout · ECMP Routing and Port-Channel Load-Balancing Hash · EIGRP (IPv4 and IPv6 - VRF Aware) · Enable/disable fast External Fallover · Fast reboot · FIB Dest MISS statistics · Flexible ACL Carving · Generic Routing Encapsulation (GRE) Tunneling · Graceful Restart Helper · HA & Fast Convergence · Hot-Standby Router Protocol (HSRP) for IPv6, including link-layer address as well as global IPv6 address support · Ingress/Egress ACL · Internet Control Message Protocol (ICMPv6) · IPv6 RACLs · IPv6 stateless address autoconfiguration · ISIS - VRF Aware · Low Memory Handling · Neighbor discovery · OSPF HA & Fast Convergence · OSPF with BFD and VRF Aware · OSPFv3 and BGP support for IPV6 · OSPFv3 with BFD and VRF Aware · Ping6 and traceroute6 · Policy Based Routing (PBR) · RACL: Routed ACL with Layer 3 and 4 options to match ingress and egress ACLs · Redundancy · Resilient Hashing - ECMP · Select Layer 3 as the Default Port Mode · SVI Autostate Disable · Symmetric Hashing - ECMP · Tunnel - GRE / IPnIP · Unicast Reverse-Path Forwarding (uRPF) with ACL; strict and loose modes · Unique local IPv6 unicast addresses · uRPF Support for IPv4 and IPv6 · vPC / Non-vPC HSRP · vPC / Non-vPC VRRP For more information, see the Cisco Nexus 9000 Series NX-OS Unicast Routing Configuration Guide, Release 9.3(x). |
| VXLAN |
· BGP EVPN filtering · IPv6 in the underlay · Layer 3 Tenant Routed Multicast (TRM) · MultiAuth with CoA · Nested VXLAN (Host Overlay over Network Overlay) · NGOAM · PIM BiDir · Port VLAN routing · Proportional Multipath for VNF · PVLANs with VXLAN · Q-in-VNI · QinQ-QinVNI · RP Everywhere · Sampled Flow Export · Seamless Integration of EVPN with L3VPN (MPLS SR) · Selective Q-in-VNI · Tenant Routed Multicast (TRM) · TRM with Multi-Site with External Connectivity on BGW · TRM with Multi-Site · TRM with vPC border leafs · VLAN-mapping switching · vPC Fabric Peering · VXLAN BGP EVPN · VXLAN BiDir · VXLAN Bud Node · VXLAN Cross Connect · VXLAN DHCP Relay · VXLAN EVPN Multi-Site · VXLAN Flood and Learn · VXLAN Multi-Site with vPC · VXLAN QoS · VXLAN Static Tunnels · VXLAN Tunnel Egress QoS Policy · VXLAN with IPv6 in the Underlay (VXLANv6) For more information, see the Cisco Nexus 9000 Series NX-OS VXLAN Configuration Guide, Release 9.3(x). |
New Hardware Features
| Cisco Nexus 93180YC-FX3S |
The Cisco Nexus 93180YC-FX3S switch (93180YC-FX3S) is a 1-rack unit (RU), fixed-port switch designed for deployment in data centers. This switch has the following ports: · 48 x 1/10/25-Gbps fiber ports and 6 x 40/100-Gbps QSFP28 ports. · Due to hardware limitation native FC on 93180YC-FX3S is not supported (although the LS 1800 FX3 ASIC is FC capable). · One management port (one 10/100/1000BASE-T port) · One console port (RS-232) · One USB port For more information, see the Cisco Nexus 93180YC-FX3S NX-OS Mode Switch Hardware Installation Guide. |
Release Versioning Strategy
Where the Z = 1 is always the first FCS release of a Major/Minor release.
Note: The Cisco Nexus 34180YC and 3464C platform switches are not supported in Cisco NX-OS Release 9.3(5).
Open Issues
| Headline: TRM Multisite: traffic drop on BGW after restarting ngmvpn |
|
| Headline: N9K-C9364C-GX: 100G (1/50 AOC1M, 1/56 PSM4) steady state flap after 61st/multiple reload Symptoms: When tested with a reload loop, on one of the reloads the link flaps in steady state. |
|
| Headline: Lpe16002BM6 negotiates to 8G when speed changed to auto when port in 'Link failure or not-connected' Symptoms: 16G Lpe16002B-M6 adapter is connected to a port with 32G SFP on N93360YC-FX2 switch. Workarounds: The port should be brought up in "fixed 16G" on N93360YC-FX2 switch instead of "Auto". |
|
| Headline: N9k/Cloud Scale - Flood list missing po member port - broadcast traffic loss Symptoms: Broadcast may not Tx an Ethernet port for VLAN's allowed for one of the port-channel member links. ARP request or any other form of ethernet broadcast may not reach destination. This would lead to no connectivity for affected hosts. Consistency check will report failure for VLAN membership: Example: Workarounds: Enter shut/no shut (flap) the affected interface. Do not use the "port-channel port load-defer" command. |
|
| Headline: buffer-stuck on mac-block (macsec-enabled) while one-port auto-neg to 100M Symptoms: Link up but no Tx packets when speed is auto negotiated to 100M on any interface of the same port group (MacId), where macsec is/was configured previously. Seen on Cisco Nexus 9300-FX platform switches only. Workarounds: If 100M speed is desired -> Remove the MACsec configuration from all interfaces on the port group (MacId) and reload --OR -- If MACsec is not configured explicitly -> Reload with Bootup Diag Level set to Minimal. --OR -- If MACsec configuration is desired -> Reload with different peer AN speed. Note: Use the show interface hardware-mappings command to check if the ports are part of the same port group (MacId). |
|
| Headline: VXLAN vPC VTEP - Extended traffic loss when vPC peer reloads before NVE source hold timer expiry Symptoms: Traffic loss for hosts behind VPC in a VXLAN setup. NVE interface remains down after source hold-down timer expiry: From the same device, we can see the following in the log: From here, VXLAN traffic will stop and all the devices behind vPC will have traffic black-holed for an extended duration Workarounds: Do not upgrade/reload on vPC Peer switch (SW2) before NVE source hold-down timer has expired on SW1. |
|
| Headline: Type 5 not propagated after Remove/add of "evpn multisite border-gateway" on Site BGW Symptoms: In a TRM use case, with the removal of multisite config and configuration replace - traffic loss is seen. Workarounds: clear bgp ipv4 mvpn <BGP router ID of remote BGW> soft out |
|
| Headline: DHCP request sent towards the server has router ID in option 54 instead of server ID Symptoms: Host doesn’t receive IP address from DHCP server Workarounds: SMU available in software download page for permanent fix. |
|
| Headline: Custom COPP causing transit traffic to be punted to the CPU on Nexus 9300-GX2 Symptoms: When custom-COPP policy contains ACL rules which match on Layer 4 destination or source port, transit traffic also hits the COPP and the packets are copied to CPU. This causes duplication of traffic as CPU also routes the copied packets to the destination. Workarounds: Custom COPP policy using src/dst match mitigates punt for transit traffic. |
Resolved Issues
| Bug ID |
Description |
| Headline: Cisco Nexus 9000 Series Switches NX-OS Mode Fibre Channel over Ethernet NPV DoS Vulnerability The vulnerability is due to an incorrect processing of FCoE packets when the fcoe-npv feature is uninstalled. An attacker could exploit this vulnerability by sending a stream of FCoE frames from an adjacent host to an affected device. An exploit could allow the attacker to cause packet amplification to occur, resulting in the saturation of interfaces and a DoS condition. Cisco has released software updates that address this vulnerability. There are no workarounds that address this vulnerability. This advisory is available at the following link:https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190306-nxos-npv-dos This advisory is part of the March 2019 Cisco FXOS and NX-OS Software Security Advisory Bundled Publication, which includes 25 Cisco Security Advisories that describe 26 vulnerabilities. For a complete list of the advisories and links to them, see Cisco Event Response: March 2019 Cisco FXOS and NX-OS Software Security Advisory Bundled Publication. http://tools.cisco.com/security/center/viewErp.x?alertId=ERP-70757 |
|
| %PTP-2-PTP_HIGH_CORR: Slave port Eth1/X High correction -125750482(nsec) This issue is applicable only to Cisco Nexus 9500-R platforms. A. - Remove PIM config from PTP VLAN SVI B. - Use other VLAN to PTP instead of VLAN used for multicast |
|
| Headline: Need Support for Multiple LLDP Neighbors over Same Interface This can cause issues with accounting tools that are expecting specific values in a given LLDP TLV field |
|
| Headline: 25g AOC/LR/SR Cable type is shown as unknown Symptoms: Cable type is shown as "unknown" for 25G SFP- LR, SR, and AOC cables. However, for copper 25G cables 'cable type' is displayed as CA-L, CA-N and CA-S accordingly. Workarounds: There is no workaround for this problem. |
|
| Headline: Control-plane traffic might be affected by high rate of NetFlow record packets on inband |
|
| Headline: N9K-C9336C-FX2 front port ingress direction silent drop packet |
|
| Headline: Intermittent VNI in DOWN state due to vni-add-await-buffer Non working: |07-29 17:26:52.314255 |51089 |115 |nve1 |vni-add-await |vni-add-await-buffer | Expected: 06-13 19:04:35.705995 |51024 |108 |nve1 |vni-add-comp |vni-add-complete | |
|
| Headline: Sequence timeout seen at reload with VXLAN PBR -- SVI flap optimizations needed. Symptoms: The system might experience a sequence timeout that might cause the L2alredirect loopback test to fail, rpm verification to fail, or a DHCP snoop hardware programming failure. When hit on the vPC secondary, this situation might result in vPC VLANs getting suspended on primary. Workarounds: Once the issue is hit, you can shut/no-shut the MCT link in vPC primary or operational primary to bring up the suspended VLANS. Also, to avoid getting into this situation, you may use GIR (graceful insertion and removal) to isolate the 9500, upgrade the chassis, and after all modules are up, insert the switch in to the network. |
|
| Headline: Netstack core seen in non-destructive ISSU using FQDN for NTP Symptoms: FQDN for NTP server and ND ISSU on T2 ToR Workarounds: Do not use FQDN for NTP Servers. Use IP Address. |
|
| Headline: receive-only path overwrites BRIB path in ephemeral DME database |
|
| Headline: Security: service NTP SIGABRT due to heartbeat failure |
|
| Headline: N9K: LLFC returns 'Ingress buffer allocation fail' error after ASCII reload on 52nd port 2019 Nov 22 17:47:59 Sug-3-chart2 %$ VDC-1 %$ %IPQOSMGR-2-QOSMGR_LLFC_APPLY_FAILURE: Unable to apply flow-control configuration on interface: Ethernet1/52 due to 'Ingress buffer allocation fail'. |
|
| Headline: SVI is down while VLAN has active port after port flapping Workaround #2 |
|
| Headline: MPLS entries present after no feature-set mpls command Symptoms: After entering the "no feature-set mpls" command, the output of the "show for adjacency mpls stats" command is not empty. Workarounds: Reload the box. |
|
| Headline: 93600CD-GX: Extra Flaps seen after Multiple reloads/flaps on different Optics on Gearbox Ports Symptoms: One Extra Flap seen after Multiple reloads/flaps on different Optics on ports 1-24 of 93600CD-GX. Similar extra flap seen after Multiple reloads/flaps on QSFP-100G-PSM4 and QSFP-100G-FR of N9K-9364C-GX. Workarounds: None |
|
| Headline: Memory utilization for nginx process is growing over time |
|
| Headline: interface port-channel all command fails when sub interfaces are present |
|
| Headline: Traffic drop seen when silent member FOP is shut. Due to that mbr_chk idx in Vif state does not reflect until PC MOD trigger from PCM. To solve this, it needs to be changed mbr_chk_idx next fop of PC mbr. |
|
| Headline: N9K-C9364C-GX: 100G CRC (1/50,53, AOC 1M/5M) after 61st/16th reload Due to this low SNR, CRC is seen on that lane. Issue is seen only with one board and only when AOC cable is connected. |
|
| Headline: NVE interface remains up while associated loopbacks are down |
|
| Headline: DCNM configured VXLAN SVI's unable to be shutdown. "ERROR: Profile conflicts with manual config" |
|
| Headline: Cisco Nexus process crash in syslog, callhome server due to SNMP leak %SYSMGR-2-SERVICE_CRASHED: Service "callhome server" (PID #) hasn't caught signal # (core will be saved). |
|
| Headline: Changing prefix-list in route-map doesn't change number of prefixes received in BGP summary |
|
| Headline: IPv6 BGP neighborship fails to come up (Idle state) on N9K-C93180YC-FX %BGP-3-SOCKBIND: bgp- [1592] Cannot bind local socket for peer 2000:x:x:x Cannot assign requested address |
|
| Headline: Revert CSCvi89490 Symptoms: If exact the same as existing type-2 EVPN route received but with decreased sequence number, we would not send it to l2rib component. There should be no functionality impact with this change. Workarounds: None |
|
| Headline: Cisco NX-OS 9.3(3) to 9.3(5): ND ISSU on LXC TOR causing transient traffic drop Symptoms: Cisco NX-OS 9.3(3) to 9.3(5): ND ISSU on LXC TOR causing transient traffic drop when we have the BFD enabled as the BFD is going down and coming up during the ND ISSU Workarounds: Remove the BFD and re-add. |
|
| Headline: Upgrade from 7.0(3)IA7(2) to I7(5a) results in incorrect PSS convert for breakout Pre-upgrade check failed. Return code 0x0000000C (if_index type mismatch). |
|
| Headline: sysmgr failed and stuck while writing to /mnt/pss |
|
| Headline: IPv6 routes use wrong VLAN as next hop This doesn't affect IPv4. Example: 2a00:1:2:10:::10/128, ubest/mbest: 1/0, attached *via 2a00:1:2:10:::10, Vlan10, [190/0], 00:26:24, hmm interface Vlan20 |
|
| Headline: Global | Nexus 9k 7.0(3)I7(5a) Layer 2 Multicast traffic delivery issues |
|
| Headline: Port-channel load balancing issue when PBR load-share in use When PBR sets several next-hops with "load-share" keyword, and in case the traffic has to be sent out (load-shared) over several port-channel interfaces further, an issue might be observed with load-balancing of the traffic over the physical member interfaces on these port-channel interfaces. |
|
| Headline: VXLAN Spine MAC Address Learning Ignored - IGN_LRN_RVTEP_MISS |
|
| Headline: MAC ACL + MAC packet classification could not let IPv6 NS/NA pass through Example configuration: interface Ethernet2/1 |
|
| Headline: PTP unicast packets sent out with wrong destination MAC on Master ports after reloading |
|
| Headline: SNMP traps can't be disabled N9K# show run all | i i entity_mib_change |
|
| Headline: Python script not able to log out console user The following logs are seen: %VSHD-2-VSHD_SYSLOG_EOL_ERR: EOL function security_clear_vty from library libsecuritycli.so exited due to Signal 11 <pre>switch# show file scripts/test.py cli('clear line ttyS0') User Access Verification |
|
| Headline: RX power shows -26.98 dBm when remote device TX shows -5.11 dBm When rx cable is removed from E1/1 on N9K1, link will be down after debounce timer expired and the TX laser will be toggled on N9K1 which is expected. N9K1 Switch# show int e1/1 transceiver details SFP Detail Diagnostics Information (internal calibration) ---------------------------------------------------------------------------- N9K switch# show int e1/1 transceiver details SFP Detail Diagnostics Information (internal calibration) |
|
| Headline: Permanent traffic loss from hosts in IPSG table when port-security is also combined on the interface Symptoms: Hosts connected to Cisco Nexus 9000 Series switch might experience complete traffic loss when connected to interfaces where both IP Source Guard and port-security is configured. Workarounds: Don't use both features at the same time. |
|
| Headline: Nexus 9372 tahusd crash due to transceiver speed mismatch N9K# sh int trans |
|
| Headline: device rebooted due to Kernel panic - not syncing: WATCHOG HIT `show system reset-reason` Stack trace observed as below: |
|
| Headline: Remote VTEP loopback is programmed incorrectly in hardware on receipt of a default route |
|
| Headline: N9k: PFC mode config wiped out from port-channel interface with no member ports after reload |
|
| Headline: [ ] is removed from show run when configuring interface description for mgmt 0 |
|
| Headline: Cannot modify NTP server configs for 192.0.x.x address due to DB and PSS inconsistency NTP server configuration removal via config-replace fails for address in 192.x.x.x range N9K(config)#ip host NTPServer1 192.0.1.1 N9K(config)#ntp server NTPServer1 use-vrf management Note: Cannot use underscore in hostname NN9K(config)# ntp server NTPServer_1 ? % Invalid command at '^' marker. |
|
| Headline: When mapping a VLAN to VNI, the VLAN is suspended resulting in a line card aclqos client crash %NVE-5-NVE_INTF_STATE: nve1: NVE Interface state changed to down |
|
| Headline: N9K/FEX: Sup bound traffic coming from FEX HIF dropped in LCND |
|
| Headline: The "show system error-id list" CLI command results in a VSH crash on FEX This causes VSH to crash and generate a core. The FEX doesn't reload and the core does not impact the functionality of the FEX. |
|
| Headline: Longevity: kernel panic on EOR fabric module after DUT running I+A MR CCO for ~5days5hours Symptoms: Kernel panic may occur on Cisco Nexus 9500 non-CloudScale LCs/FMs after upgrade to 9.3(4). Workarounds: No known workarounds are available for this issue as of now. |
|
| Headline: N9K: TRM/VXLAN, Non-Multi-Site setup, Type-7 routes are not imported into BRIB |
|
| Headline: Cisco Nexus 9000 Cloud Scale devices drop 25G broadcast traffic as output discard with queue-limit As this issue affects all multi-destination traffic, this issue can manifest itself with multiple different symptoms. Some common ones include: +++ 25G-connected hosts are not able to obtain IP addresses via DHCP |
|
| Headline: FEX ports go through STP LRN state regardless of the default Edge config |
|
| Headline: N9K - "ttag" is not configured under an interface in running-config but still enabled in hardware. |
|
| Headline: Storm control commands broadcast/muliticast added to interface configs after non disruptive ISSU For instance, non-disruptive ISSU was carried as below versions and all L2/L3 interfaces were added with below commands. I7.0(3)I4(1) > 7.0(3)I7(7)> 7.0(3)I7(8) interface Ethernet1/17 configure terminal config t Or Write erase and reapply the original configurations. |
|
| Headline: N9K active sup reload due to tempSensor policy trigger even though temp is not high Symptoms: Cisco Nexus 9500 active SUP switchover due to major temperature alarm for the outlet sensor even though temp is not high. Workarounds: NA |
|
| Headline: SNMP slow response seen after reload With the below configuration: snmp-acl should permit check once for every OID. However, after reload, we see the permit checks are performed twice. Before reload: (from "debug snmp all") After reload: 2020-05-04 16:56:25.227101 us: [101] check_acl_permit : Call npacl_apply_filter for acl:snmp-acl:4194308 |
|
| Headline: NX-OS BGP: rare BGP updates corruption Symptoms: Very rarely BGP update messages can get corrupted Workarounds: disable enhanced error processing via CLI router bgp <as number> ; no enhanced-error |
|
| Headline: tahusd crash due to link flapping |
|
| Headline: Not able to create (s,g) entry for non-directly connected source. |
|
| Headline: Leaking of OSPF Hello packet received in P2P link This issue is not limited to OSPF hello packets, but applies to LL MC packets. |
|
| Headline: WR-ERSPAN-DEST: terminating traffic is getting acl_drop Symptoms: ACL_DROP seen on ERSPAN termination for monitored packets Workarounds: None |
|
| Headline: Unexpected reload of sysmgr process |
|
| Headline: bcm-crash after configuring/adding VLAN |
|
| Headline: OSPFv3 packets are punted to CPU from STP ALT-BLK ports N9K# sh logging log | i ' Bad source address fe80::171:102:250:4 - ours on Vlan28' |
|
| Headline: Cisco Nexus 9000 TAHUSD crash with a HAP failure on Cisco NX-OS 9.2(3) 2/ show cores 1 3 1 tahusd 9187 2020-05-25 13:18:41 3/ Module crash with the following reason ********* Exception info for module 1 ******** exception information --- exception instance 1 ---- 4/ I/O modules models: N9K-X9732C-EX and N9K-X97160YC-EX |
|
| Headline: N9K-C93600CD-GX TOR GOLD process crash || "device_test" SIGABRT <pre> |
|
| Headline: 3rd Party QSFP ports are down |
|
| Headline: JSON request for "show l2route mac all" or "show l2route evpn mac all" respond w/ empty flag field. |
|
| Headline: Need to revert SqiVNI catchall to allow native VLAN config Should encapsulate all C-VLANs except native VLAN without having to specify them explicitly. Release 9.3.4 reject ?all? keyword: This is incorrect behavior. |
|
| Headline: Sysmgr failed on active sup when standby sup reloaded |
|
| Headline: N9K VXLAN EVPN - static route VRF leaking issue upon recursive lookup This issue is related to recursive lookup, where NH for the destination IP is reachable over the fabric. The presence of this static route may be justified by the fact that the NH can move around the fabric/VTEPs. + Instead of using route leaking with RT import/export, leak the route using static route in the VRF where the source resides (VRF A), pointing towards next-hop in VRF B: vrf context A + Use hmm tracking to advertise the route in VRF where the destination resides only where the NH is reachable over hmm. |
|
| Headline: EX_EOR : ACL commands not working after upgrade from 9.3.2 or 9.3.4 Sat Jun 6 19:27:52 2020:type=update:id=10.79.102.146@pts/2:user=admin:cmd=install all nxos bootflash:/nxos.9.3.4.bin (SUCCESS) switch(config-acl)# 40 permit ip 3.3.3.3/32 4.4.4.4/32 |
|
| Headline: BGP packets sent with invalid label after SR route change |
|
| Headline: Add event history error log with invalid character by show lldp entry |
|
| Headline: BFD must teardown packets with TTL other than 255 in a directly connected neighbor async mode |
|
| Headline: Route Leak - VXLAN EVPN - Attached-Export not flushed with host mobility Move host A behind Leaf4 and now routing is broken in VRF-Y, attached-export entry is still seen: 10.26.11.202/32, ubest/mbest: 1/0, attached *via 10.26.11.202%VRF-X, Vlan1820, [190/0], 00:11:49, attached-export >>>>>> problem as this entry should be removed once host moved from Leaf1 IP Route Table for VRF "VRF-Y" 10.26.11.202/32, ubest/mbest: 1/0 |
|
| Headline: Unable to disable auto-negotiation on 100mb RJ-45 ports |
|
| Headline: Remote VTEP forms PIM adjacency in underlay with router connected to L2-only VXLAN fabric |
|
| Headline: ARP failed in Kstack causing BGP to go IDLE state bash-4.3$ ip netns exec test-vxlan arp |
|
| Headline: N9K reloading continuously because of kernel panic after upgrade. N9k started rebooting continuously after upgrade from 7.0(3)I7(4) to 9.3(3) `show system reset-reason` `show logging onboard module 1 stack-trace` ************************************************************** Panic#1 Part2 Workarounds: None |
|
| Headline: Modify IPv6 LPM 4096 cause Cisco Nexus 9508 IPv6 forwarding issue hardware profile multicast max-limit lpm-entries 0 hardware profile ipv6 lpm-entries maximum 4096 Multicast Heavy mode N9K# show system routing mode Configured System Routing Mode: Multicast Heavy Scale Applied System Routing Mode: Multicast Heavy Scale Workarounds: NA |
|
| Headline: sup switchover causes ECMP OIF of CNH missing in hardware |
|
| Headline: Ports don't come up after NX-OS upgrade from any release to I7.8, 9.3.3, 9.3.4 Symptoms: Ports fail to come up after NXOS upgrade from any release to I7.8, 9.3.3,9.3.4 %USER-2-SYSTEM_MSG: BCMXXXXX UCODE Download Failure at PHY ID 0 - tahusd Workarounds: Contact TAC. |
Known Issues
Behavior Changes for Cisco Nexus 9504 and 9508 Switches with -R Line Cards
General Known Issues
| Setting the value of "none" for the property authName, basically stands for a zero value, which is not allowed, and shouldn’t be used. Allowable values other than "none" should be used as inputs to this property. |
|
| The allocate-label option-b command is disabled and not shown in the configuration unless MPLS Layer 3 VPN is enabled. This is achieved by entering the feature mpls l3vpn command. |
|
| An NVE interface is required to be in shut state before making changes to the source-interface for NVE. Trying to do the default operation on NVE interface brings it out of the shut state as it performs a no shut first. This causes the operation to fail as there is an attempt to modify the source-interface in the no shut mode. Fixing this might require changes to how the default keyword behaves fundamentally. This can affect other types of interfaces, as well, as they too can be operated on using the default keyword. For this reason, if there is a need to remove the configuration for the NVE interface, enter the shut command on the NVE interface. Then enter the no interface nve 1 command, followed by reconfiguring the NVE interface with the new configuration. |
|
| Due to an ASIC limitation, FC-FEC cannot be configured on the native (non-retimer) ports (ports 25-36) of N9K-C93600CD-GX when broken out to 2x50G. Only RS-FEC and FEC off are supported. To be consistent, the retimer port (ports 1-24) capabilities are also being limited to RS-FEC and FEC off when broken out to 2x50G. There is no plan to enable FC-FEC on the retimer ports for this reason, so this CDET is being closed. |
|
| Workarounds: Avoid these connections. Ports 9-28 on the Cisco Nexus N9K-C9236C can be used instead. |
|
| If the issue is seen, pinned static routes can be deleted and added back. Also, entering the clear ip route vrf <vrf-name> command can be done to recover from the issue. |
|
| When large files, for example NX-OS, images are copied to USB, the following message is printed: As long as these messages correspond to a copy operation to USB, this message can be ignored. |
|
| </nf:source> <============nf: is extra <namespace> : extra characters are seen with XML and JSON from NX-API. |
|
| PTP is not supported on the 96136YC-R line card or for line cards on the Cisco Nexus 9504 switch. |
|
| The following features are not supported on the Cisco Nexus 9364C switch. |
|
| The following feature is not supported on the Cisco Nexus 9332C: |
|
| Only the following switches support QSFP+ with the QSFP to SFP/SFP+ adapter (40 Gb to 10 Gb): |
|
| The Cisco Nexus 9300 platforms support for the QSFP+ breakout has the following limitations: ■ For the Cisco Nexus 9332PQ switch, all ports except 13-14 and 27-32 can support breakout. |
|
| The following switches and line cards support the breakout cable (40 Gb ports to 4x10-Gb ports): ■ N9K-C93180LC-EX—last four ports are breakout capable (10x4, 24x4, 50x2) |
|
| N/A |
Nested VXLAN is supported on a Layer 3 interface or on a Layer 3 port-channel interface from Cisco NX-OS Release 9.3(5) onwards. |
| Limitations for ALE (Application Link Engine) uplink ports are listed at the following location: Limitations for ALE 40G Uplink Ports on Cisco Nexus 9000 Series Switches |
|
|
|
On Cisco Nexus N2K-C2348TQ HIFs fail to utilize redundant Port-Channel links, to NIF, during link failover events. |
Device Hardware
Table 1 Cisco Nexus 9500 Switches
Table 2 Cisco Nexus 9500 Cloud Scale Line Cards
Table 3 Cisco Nexus 9500 R-Series Line Cards
Table 4 Cisco Nexus 9500 Classic Line Cards
Table 5 Cisco Nexus 9500 Cloud Scale Fabric Modules
Table 6 Cisco Nexus 9500 R-Series Fabric Modules
Table 7 Cisco Nexus 9500 Fabric Modules
Table 8 Cisco Nexus 9500 Fabric Module Blanks with Power Connector
Table 9 Cisco Nexus 9500 Supervisor Modules
Table 10 Cisco Nexus 9500 System Controller
Table 11 Cisco Nexus 9500 Fans and Fan Trays
Table 12 Cisco Nexus 9500 Power Supplies
Table 13 Cisco Nexus 9200 and 9300 Fans and Fan Trays
Table 14 Cisco Nexus 9200 and 9300 Power Supplies
Table 15 Cisco Nexus 9200 and 9300 Switches
Table 16 Cisco Nexus 9000 Series Uplink Modules
Table 1 Cisco Nexus 9500 Switches
Table 2 Cisco Nexus 9500 Cloud Scale Line Cards
Table 3 Cisco Nexus 9500 R-Series Line Cards
| Cisco Nexus 9500 36-port 40/100 Gigabit Ethernet QSFP28 line card |
|||
| Cisco Nexus 9500 36-port 40/100 Gigabit Ethernet QSFP28 line card |
|||
Table 4 Cisco Nexus 9500 Classic Line Cards
Table 5 Cisco Nexus 9500 Cloud Scale Fabric Modules
Table 6 Cisco Nexus 9500 R-Series Fabric Modules
Table 7 Cisco Nexus 9500 Fabric Modules
Table 8 Cisco Nexus 9500 Fabric Module Blanks with Power Connector
| Cisco Nexus 9508 Fabric blank with Fan Tray Power Connector module |
|||
| Cisco Nexus 9516 Fabric blank with Fan Tray Power Connector module |
Table 9 Cisco Nexus 9500 Supervisor Modules
Table 10 Cisco Nexus 9500 System Controller
Table 11 Cisco Nexus 9500 Fans and Fan Trays
Table 12 Cisco Nexus 9500 Power Supplies
Table 13 Cisco Nexus 9200 and 9300 Fans and Fan Trays
| Fan 1 module with port-side intake airflow (burgundy coloring) |
||||
| Fan 2 module with port-side intake airflow (burgundy coloring) |
||||
| Fan 3 module with port-side intake airflow (burgundy coloring) |
||||
| Fan module with port-side intake airflow (burgundy coloring) |
||||
|
|
||||
| Fan module with port-side intake airflow (burgundy coloring) |
|
|||
| Fan module with port-side intake airflow (burgundy coloring) |
92160YC-X |
|||
| 92160YC-X |
||||
| 93108TC-FX3P 93180YC-FX3S2 |
||||
| Fan module with port-side intake airflow (burgundy coloring) |
93108TC-FX3P 93180YC-FX3S2 |
|||
| Fan module with port-side exhaust airflow (burgundy coloring) |
||||
1For specific fan speeds see the Overview section of the Hardware Installation Guide.
2 This switch runs with +1 redundancy mode so that if one fan fails, the switch can sustain operation. But if a second fan fails, this switch is not designed to sustain operation. Hence before waiting for the major threshold temperature to be hit, the switch will power down due to entering the fan policy trigger command.
Table 14 Cisco Nexus 9200 and 9300 Power Supplies
| Product ID |
Description |
Quantity |
Cisco Nexus Switches |
|
| NXA-PAC-500W-PE |
500-W AC power supply with port-side exhaust airflow (blue coloring) |
2 |
93108TC-EX |
93180YC-EX 93180YC-FX |
| NXA-PAC-500W-PI |
500-W AC power supply with port-side intake airflow (burgundy coloring) |
2 |
93108TC-EX |
93180YC-EX 93180YC-FX |
| N9K-PAC-650W |
650-W AC power supply with port-side intake (burgundy coloring) |
2 |
9332PQ 9372TX |
9372TX-E |
| N9K-PAC-650W-B |
650-W AC power supply with port-side exhaust (blue coloring) |
2 |
9332PQ 9372TX |
9372TX-E |
| NXA-PAC-650W-PE |
650-W power supply with port-side exhaust (blue coloring) |
2 |
92160YC-X 93180YC-FX3S |
92304QC |
| NXA-PAC-650W-PI |
650-W power supply with port-side intake (burgundy coloring) |
2 |
92160YC-X 93180YC-FX3S |
92304QC |
| NXA-PAC-750W-PE |
750-W AC power supply with port-side exhaust airflow (blue coloring) 1 |
2 |
9336C-FX2 93240YC-FX2 |
9332C 9336C-FX2 |
| NXA-PAC-750W-PI |
750-W AC power supply with port-side exhaust airflow (burgundy coloring) 1 |
2 |
9336C-FX2 93240YC-FX2 |
9332C 9336C-FX2 |
| NXA-PAC-1100W-PE2 |
1100-W AC power supply with port-side exhaust airflow (blue coloring) |
2 |
93240YC-FX2 9332C 9316D-GX |
9336C-FX2 93600CD-GX |
| NXA-PAC-1100W-PI2 |
1100-W AC power supply with port-side intake airflow (burgundy coloring) |
2 |
93240YC-FX2 9332C 9316D-GX |
9336C-FX2 93600CD-GX |
| NXA-PAC-1100W-PI |
Cisco Nexus 9000 PoE 1100W AC PS, port-side intake |
2 |
93108TC-FX3P |
|
| NXA-PAC-1100W-PE |
Cisco Nexus 9000 PoE 1100W AC PS, port-side exhaust |
2 |
93108TC-FX3P |
|
| NXA-PAC-1900W-PI |
Cisco Nexus 9000 PoE 1900W AC PS, port-side intake |
2 |
93108TC-FX3P |
|
| N9K-PAC-1200W |
1200-W AC power supply with port-side intake airflow (burgundy coloring) |
2 |
93120TX |
|
| N9K-PAC-1200W-B |
1200-W AC power supply with port-side exhaust airflow (blue coloring) |
2 |
93120TX |
|
| NXA-PAC-1200W-PE |
1200-W AC power supply with port-side exhaust airflow (blue coloring) |
2 |
9272Q |
9364C |
| NXA-PAC-1200W-PI |
1200-W AC power supply with port-side intake airflow (burgundy coloring) |
2 |
9272Q |
9364C |
| N9K-PUV-1200W |
1200-W Universal AC/DC power supply with bidirectional airflow (white coloring) |
2 |
92160YC-X 93180YC-FX3S |
93120TX |
| NXA-PDC-930W-PE |
930-W DC power supply with port-side exhaust airflow (blue coloring) |
2 |
9272Q |
93120TX |
| NXA-PDC-930W-PI |
930-W DC power supply with port-side intake airflow (burgundy coloring) |
2 |
9272Q |
93120TX |
| NXA-PDC-1100W-PE |
1100-W DC power supply with port-side exhaust airflow (blue coloring) |
2 |
93240YC-FX2 93600CD-GX 9316D-GX |
9332C 9336C-FX2 |
| NXA-PDC-1100W-PI |
1100-W DC power supply with port-side intake airflow (burgundy coloring) |
2 |
93240YC-FX2 93600CD-GX 9316D-GX |
9332C 9336C-FX2 |
| UCSC-PSU-930WDC |
930-W DC power supply with port-side intake (green coloring) |
2 |
92160YC-X |
9332PQ 9372TX |
| UCS-PSU-6332-DC |
930-W DC power supply with port-side exhaust (gray coloring) |
2 |
92160YC-X |
9332PQ 9372TX |
| NXA-PHV-1100W-PE |
1100-W AC power supply with port-side exhaust airflow (blue coloring) |
2 |
93240YC-FX2 |
9336C-FX2 |
| NXA-PHV-1100W-PI |
1100-W AC power supply with port-side intake airflow (burgundy coloring) |
2 |
93240YC-FX2 |
9336C-FX2 |
| NXA-PAC-2KW-PE |
2000-W AC power supply with port-side exhaust airflow (blue coloring) |
2 |
9364C-GX |
|
| NXA-PAC-2KW-PI |
2000-W AC power supply with port-side intake airflow (burgundy coloring) |
2 |
9364C-GX |
|
| NXA-PDC-2KW-PE |
2000-W DC power supply with port-side exhaust airflow (blue coloring |
2 |
9364C-GX |
|
| NXA-PDC-2KW-PI |
2000-W DC power supply with port-side intake airflow (burgundy coloring) |
2 |
9364C-GX |
|
| N2200-PAC-400W |
400-W AC power supply with port-side exhaust airflow (blue coloring) |
2 |
92348GC-X |
|
| N2200-PAC-400W-B |
400-W AC power supply with port-side intake airflow (burgundy coloring) |
2 |
92348GC-X |
|
| N2200-PDC-350W-B |
350-W DC power supply with port-side intake airflow |
2 |
92348GC-X |
|
| N2200-PDC-400W |
400-W DC power supply with port-side exhaust airflow (blue coloring) |
2 |
92348GC-X |
|
1 Compatible with Cisco NX-OS Release 9.3(3) and later.
Table 15 Cisco Nexus 9200 and 9300 Switches
Table 16 Cisco Nexus 9000 Series Uplink Modules
| An enhanced version of the Cisco Nexus N9K-M6PQ uplink module. |
|
| Cisco Nexus 9300 uplink module with 12 40-Gigabit Ethernet QSPF+ ports. |
Optics
To determine which transceivers and cables are supported by a switch, see the Transceiver Module (TMG) Compatibility Matrix.
To see the transceiver specifications and installation information, see the Install and Upgrade Guides.
Cisco Network Insights for Data Center
For more information, see the Cisco Network Insights documentation.
Upgrade and Downgrade
To perform a software upgrade or downgrade, follow the instructions in the Cisco Nexus 9000 Series NX-OS Software Upgrade and Downgrade Guide, Release 9.3(x).
For information about an In Service Software Upgrade (ISSU), see the Cisco NX-OS ISSU Support Matrix.
Exceptions
■ Cisco Nexus 9200, 9300-EX, and 9300-FX Platform Switches
■ Cisco Nexus 9300-FX3 Platform Switches
■ Cisco Nexus 9300-GX Platform Switches
■ Cisco Nexus 9500 Platform N9K-X9408PC-CFP2 Line Card and 9300 Platform Switches
Cisco Nexus 9200, 9300-EX, and 9300-FX Platform Switches
■ ACL filters to span subinterface traffic on the parent interface
■ FEX (not supported for Cisco Nexus 9200 platform switches)
■ GRE v4 payload over v6 tunnels
■ IP-in-IP (not supported on the Cisco Nexus 92160 switch)
■ Maximum Transmission Unit (MTU) checks for packets received with an MPLS header
■ NetFlow (not supported on Cisco Nexus 9200 platform switches)
■ Packet-based statistics for Traffic Storm Control (only byte-based statistics are supported)
■ PVLANs (not supported on Cisco Nexus 9200 platform switches)
■ PXE boot of the Cisco NX-OS image from the loader (not supported for Cisco Nexus 9272PQ and 92160YC switches)
■ Q-in-VNI (not supported on Cisco Nexus 9200 platform switches)
■ Q-in-Q for VXLAN (not supported on Cisco Nexus 9200 and 9300-EX platform switches)
■ Q-in-VNI (not supported on Cisco Nexus 9200 platform switches)
■ Resilient hashing for port channels
■ SVI uplinks with Q-in-VNI (not supported for Cisco Nexus 9300-EX platform switches)
■ Traffic Storm Control for copy-to-CPU packets
■ Traffic Storm Control with unknown multicast traffic
■ Tx SPAN for multicast, unknown multicast, and broadcast traffic
■ VACL redirects for TAP aggregation
Cisco Nexus 9300-FX3 Platform Switches
The following features are not supported for the Cisco Nexus 9300-FX3 Platform switches:
■ ACL with DSCP Wildcard Mask
■ ARP Suppression with Reflective Relay
■ Dynamic ACL - Named ACL support for applying blacklist/limited VLAN access for devices
■ ECMP Hashing based on GRE Inner IP Header
■ Enhanced ISSU
■ Enhanced Policy-Based Routing (ePBR)
■ ePBR Multi-Hop
■ ePBR with Probes
■ ePBR with User-Defined Probes
■ IPv6 MIB support (IP-MIB)
■ Multicast Service Reflection (Ingress, PIM-border, Egress)
■ Multiple LLDP neighbors per physical interface
■ Secure VXLAN EVPN Multi-Site using CloudSec
■ Selective Q-in-VNI + Advertise PIP on a VTEP
■ Selective Q-in-VNI + VXLAN VLAN on the same port
■ Standard ISSU
■ Symmetric Hashing - ECMP (Inner DA)
■ Unidirectional Ethernet (UDE)
■ VXLAN EVPN with downstream VNI
■ VXLAN over parent interface that also carries sub-interfaces
Cisco Nexus 9300-GX Platform Switches
The following features are not supported for the Cisco Nexus 9300-GX platform switches:
■ Autonegotiation on all ports
■ Enhanced ISSU
■ IPv6 Underlay, TRM + Multi-Site
■ Standard ISSU
Cisco Nexus N9K-X9408PC-CFP2 Line Card and 9300 Platform Switches
■ FEX (supported on some Cisco Nexus 9300 platform switches)
■ Flows other than 40G
■ Multichassis EtherChannel Trunk (MCT)
■ Precision Time Protocol (PTP)
■ PVLAN (supported on Cisco Nexus 9300 platform switches)
■ Shaping support on 100g port is limited
■ SPAN destination/ERSPAN destination IP
FEX Modules
The following features are not supported for FEX modules:
■ Active-Active FEX and straight-through FEX are not supported on the Cisco Nexus 92348GC switch.
■ For Cisco Nexus 9500 platform switches, 4x10-Gb breakout for FEX connectivity is not supported.
Cisco Nexus N9K-X96136YC-R Line Card
Cisco Nexus N9K-X9736C-FX Line Card
■ Ports 29-36 do not support 1 Gbps speed.
Cisco Nexus 9500 Cloud Scale (EX/FX) Line Cards
The following features are not supported for Cisco Nexus 9500 platform switches with -EX/FX line cards:
■ IPv6 support for policy-based routing
■ SPAN port-channel destinations
Related Content
Cisco Nexus 3000 and 9000 Series NX-API REST SDK User Guide and API Reference: Cisco Nexus NX-API Reference
Cisco Nexus 9000 Series documentation: Cisco Nexus 9000 Series Switches
Cisco Nexus 9000 and 3000 Series NX-OS Switch License Navigator: Cisco Nexus 9000 and 3000 Series NX-OS Switch License Navigator
Cisco Nexus 9000 Series Software Upgrade and Downgrade Guide: Cisco Nexus 9000 Series NX-OS Software Upgrade and Downgrade Guide, Release 9.3(x)
Cisco Nexus 9000 Series FPGA/EPLD Upgrade Release Notes: Cisco Nexus 9000 Series FPGA/EPLD Upgrade Release Notes, Release 9.3(5)
Cisco Nexus OpenConfig YANG Reference, Release 9.3(x): Cisco Nexus OpenConfig YANG Reference, Release 9.3(x)
Cisco NX-OS Supported MIBs: ftp://ftp.cisco.com/pub/mibs/supportlists/nexus9000/Nexus9000MIBSupportList.html
Supported FEX modules: Cisco Nexus 9000 Series Switch FEX Support Matrix.
Licensing Information: Cisco NX-OS Licensing Guide
For more information, see the Cisco NX-OS Licensing Guide.
Documentation Feedback
To provide technical feedback on this document, or to report an error or omission, please send your comments to nexus9k-docfeedback@cisco.com. We appreciate your feedback.
Legal Information
Cisco and the Cisco logo are trademarks or registered trademarks of Cisco and/or its affiliates in the U.S. and other countries. To view a list of Cisco trademarks, go to this URL: www.cisco.com/go/trademarks. Third-party trademarks mentioned are the property of their respective owners. The use of the word partner does not imply a partnership relationship between Cisco and any other company. (1110R)
FeedbackContact Cisco
- Open a Support Case
- (Requires a Cisco Service Contract)