Hi @PhilipDAth, how are you doing? That's correct, CS17 will be the last CS-branded firmware release, and we will be transitioning to cloud-native IOS XE moving forward. There will be a time for these two firmwares (CS and cloud-native IOS XE) to co-exist on the dashboard until the natural progression. 

Great question - please review the temporary feature gaps on this overview page:  https://documentation.meraki.com/MS/Cloud-Native_IOS_XE/Cloud-Native_IOS_XE_Overview

We should have the DHCP server configuration resolved soon. I will check with engineering and get back to you. 

Ok just checked and the fixes should be in production for the beta. If you have a chance to try it @cmr , please do and feel free to reach out to me alburger@cisco.com if you find issues. From testing we are seeing things working the way it should, but would be glad to have some field feedback. 

Hi @WirelesslyWired thank you for the reply.  I have just tried setting the default gateway and domain name options in a DHCP server on a C9300L and I get the the below:

Hopefully it will make the next update?

The tools (including CLI) work for me on a migrated MS390. It seems like your migration might not be done yet or something else is going on. 

I'm testing on a C9300.

On a C9300L with no Adaptive Policy I get different results to you:

Reboot switch - works

Dashboard Throughput - fail

Terminal - works, but only if everything is lower case, i.e. show and not Show

Blink LEDs - works

MAC forwarding table - works

Have you experienced issues with it randomly crashing (this is what prompted me to roll back)?

Not yet, though the longest uptime I've had was about 4hr30 as I tested the reboot switch command!  It's in my house hallway and my wife doesn't like "that awful noise", so I only have it on in the day when testing... 😬  Once I've completed more tasks I'll move it somewhere out of the way so I can leave it on for a few days. 😎

I think this should say "last fetched" once on IOS-XE. 

On the new version of the switch page it now does!

So, better that a 390 then 😈

Ouch!  Out of interest, what model(s) of 9300 did you try and were you using advanced features, or just the usual L2/L3 switching and routing?

My unit is a C9300-24UX.

I mostly had SGT enabled.

@PhilipDAth I'm guessing this is after your experience, but this was added to the release notes:

Known issues

• Adaptive Policy and SGT configurations are not currently supported

Haha.  That is a good outcome.

I'm working with support at the moment to try and identify the issue further.

Had a similar experience with a c9300x-24 stack. Firmware upgrade went smooth for this stack along with 20'ish other c9300's however I had one stack "die" aprox one hour after IOS_XE boot for the first time. See timeline in the attached image. Is support/RMA the only solution to this? 🙂 

@espenvp what features were being used on that stack?  i.e. adaptive policy etc.

Nothing fancy...

• named vlans / vlan groups
• vlan profiles
  • mostly to counter the default "allowed vlan 1-1000 range"
• multi chassis etherchannel using LACP/Aggr uplink ports

That's pretty much it, very default as its just a distribution switch. No AGP just make that clear 😉 

Did your port names survive the upgrade?  I have a 9300L where the port configs remained, but the names were all lost...

No, all ports had their names overwritten with the default catalyst naming scheme "GigabitEthernet1/0/xyz, TwentyFiveGigE1/0/xyz" etc. My network is currently running C9300L-24P and C9300X-24Y models.

That's exactly what I had, time to add it to the known issues list...

@espenvp are you using the old version of the switch page, try the new version, for me the port names that were there pre IOS-XE all return.  The power section also seems more correct (no phantom power stacking in my case) however the packet counters only seem to work with live data...

Yes, I'm using the "old" switch page and the names return using new switch page (thanks for tip), however i find the new page a bit lacking currently such as the stacking indicators don't work and the power tab is missing. The LLDP/CDP column in the ports page doesn't work either. So I'm going to stay in the "old switch page" for now 😉

I agree that the new switch page needs some work, however you should find the power information under the device health tab 🙂

hahaha found it 🤣

Did it work again after you power cycled it?

No, it seems bricked, stuck in rommon or thereabouts, to bad the CLI port is disabled. The local management page is available but not able to log on using "known" credentials (factory default and dashboard ones). Factory reset has been performed with no result. 

How much do you get on the console port? 

With the C9300L I have, the console port is live for about 3 minutes at the start of the boot and does display bootloader version, 802.3bt support, stack unit number and all the MAC/serial number data. 

It seems to me that the console port stops working after the local management page becomes available.

That would make good sense!

Hey @espenvp - have you already opened a support case to have us take a look at this? If the local status page is available, the switch isn't bricked, and likely that a level 3 reset at worst will restore the device to factory settings, but please call in and let our team have a look. 

the local status page credentials were also recently changed, but support can help you with that as well.

@Brennan_Martin "the local status page credentials were also recently changed".  Do you have a link to the documentation for this?

You bet. 

MX devices running MX 19+ firmware, MS devices running MS 17+ firmware and MS390/Catalyst devices running CS 17+ firmware will use the username admin and the password will be the serial number of the device (upper case letters and dashes). 

https://documentation.meraki.com/General_Administration/Tools_and_Troubleshooting/Using_the_Cisco_Me...

I was told by support that the local status page needs to be accessed using capital A in Admin as username and then the serial as password. Also case sensitive and normally is in all caps.
Meraki documentation says otherwise. 

I couldn't get my admin page to work, and a level 3 reset did nothing in my case (on the console it reports it is doing a level 3 reset - but it doesn't actually do anything).  @espenvp I am interested in your case - as it sounds like the same thing has happened to your C9300 as happened to mine.

With a level 3 reset you mean "hold mode button for more than 21 sec" ?

Under "Factory Reset Button"

https://documentation.meraki.com/MS/MS_Installation_Guides/Catalyst_9300-M_Series_Installation_Guide

For my bricked C9300, the Ethernet ports can not get a link light, and the stack ports no longer work.

Is yours the same - have the Ethernet ports completely stopped working?

Yes my switch is totally offline, there is no link seen from the upstream core switch.

@espenvp that pretty much confirms it - both of our C9300s have exactly the same symptoms.

Meraki are working hard on this one so I am sure they are already all over it, but it you want you could mention my support case #12337148 in your support case, so they both get linked back to the same internal investigation.

Sounds like MR31.1.5, but for switches 😬

To be fair the C9300L I am running the IOS-XE beta on does seem to be stable, however some of the traffic reporting seems a bit odd and the bars for whether a port is up or down and what speed it is connected at are out of whack:

The pink arrow points to where the switch was powered on, the blue bar is for "1Gbps" connectivity and the green bar is for "10Mbps"...  I think the blue bar is actually denoting 10Mbps as the connected PC was in standby and the NIC does throttle down, however I'm not sure why it isn't grey before 7am when the switch was off...

Hey Philip, thanks (as always) for the feedback - sorry you’re having a poor experience. Generally this beta is working pretty well, but it sounds like this switch is likely stuck in ROMMON. I’d like to make sure we’re properly investigating - would you mind sending me the case number via DM and I’ll have the team take another look?

Will we see you next month at CL MEL? Would love to sit down and share a bit about what we’re doing and get your thoughts.

Done, and I plan to be at Cisco Live Melbourne.  🙂

@MRCUR On the 9200L, you have claimed the switch into a network but it has not migrated correct? 

@WirelesslyWired Yes that's correct. 

Did you open a ticket by chance? If not, please do and forward me the ticket ID at alburger@cisco.com

Niiice 😉

To me it seem like a connection problem between the management IP of the switch to the radius server. Is the management IP of the switch defined as a network device and authorized as a radius source on the raduis server? Is the appropriate firewall and routing in place between the switch and radius?

I currently have a working dot1.x/mab deployment using radius (ISE) with IOS-XE on the switches, seems to be working as intended 🙂

Found the issue: IOS-XE mode switches do not include the Message-Authenticator attribute even though in CS mode they do (MS switches also include it).