New MX 17.10.7 stable firmware - fixes IPv6 iBGP issue

cmr
Kind of a big deal
Kind of a big deal

New MX 17.10.7 stable firmware - fixes IPv6 iBGP issue

Security appliance firmware versions MX 17.10.7 changelog

Important notice

  • MX100 appliances may become unresponsive and unable to be recovered with a factory reset after upgrading to MX 17.10.5 or MX 18.1.07 from very old, unsupported firmware versions that reflect as critically out of date from the Organization > Firmware upgrades page in Dashboard. We recommend upgrading these devices to MX 17.10.2 first before proceeding to upgrade to either of these newer versions.
  • While Meraki appliances have traditionally relied on UDP port 7351 for cloud communication and TCP ports 80 and 443 for backup communications, with MX 16 we are beginning a transition to using TCP port 443 as the primary means for cloud connectivity. In order to ensure proper connectivity to the Meraki cloud after this upgrade, please ensure that all “Meraki cloud communication” traffic specified in the Help > Firewall Info page is allowed through any firewalls or security filtering devices that may be deployed upstream of your Meraki appliances. These requirements have been updated on Nov 2022, so it’s important that you review them.
  • HTTP proxy, which allows default management traffic from MX appliances to be sent through a proxy, is deprecated on MX 16 and higher firmware versions.
  • The transition to Cisco Talos intelligence for our content filtering services means that some URL categories have changed names, some categories are no longer available, and multiple new categories are now available. Please review your configuration after upgrading to ensure content filtering is effectively tailored to your needs and deployment environment.

Bug fixes

  • Corrected a rare issue that could result in IBGP instability when two AutoVPN peers established their IBGP session using IPv6.

Legacy products notice

  • When configured for this version, Z1 and MX80 devices will run MX 14.56.
  • When configured for this version, MX400 and MX600 devices will run MX 16.16.9.

Known issues

  • After making some configuration changes on MX84 appliances, a brief period of packet loss may occur. This will affect all MX84 appliances on all MX firmware versions
  • Due to an MX 15 regression, the management port on MX84 appliances does not provide access to the local status page
If my answer solves your problem please click Accept as Solution so others can benefit from it.
1 Reply 1
Brash
Kind of a big deal
Kind of a big deal

Interesting that the following line has been removed from the "known issues" section but also isn't in the bug fixes

 

"Due to an MX 17 regression, RADIUS messages that transit across AutoVPN may fail to be routed correctly."

 

Anyone know whether it's actually fixed or just forgotten to add to the release notes?

Get notified when there are additional replies to this discussion.
Welcome to the Meraki Community!
To start contributing, simply sign in with your Cisco account. If you don't yet have a Cisco account, you can sign up.
Labels