Citrix SD-WAN Orchestrator for On-premises 14.4

Release Notes for SD-WAN Orchestrator for On-premises 11.4.0a Release

This release notes document describes the enhancements and changes, fixed and known issues that exist for the Citrix SD-WAN Orchestrator for On-premises release Build 11.4.0a.

Notes

  • Citrix SD-WAN Orchestrator for On-premises 11.4.0a addresses the issue described in SDWANHELP-2317 and replaces release 11.4.

  • This release notes document does not include security related fixes. For a list of security related fixes and advisories, see the Citrix security bulletin.

What’s New

The enhancements and changes that are available in Build 11.4.0a.

Configuration and Management

HTTP Proxy

You can configure HTTP proxy settings on Citrix SD-WAN Orchestrator for On-premises. This feature centralizes the management of all the outgoing requests made to Citrix Cloud. The administrators can route the outgoing requests from Citrix SD-WAN Orchestrator for On-premises to Citrix Cloud through an HTTP proxy server.

[ SDW-20247 ]

Cloud Direct service

Citrix SD-WAN Orchestrator for On-premises supports Cloud Direct service.

Cloud Direct service delivers SD-WAN functionalities as a cloud service through reliable and secure delivery for all internet-bound traffic regardless of the host environment (data center, cloud, and Internet).

Cloud Direct service improves network visibility and management. It enables partners to offer managed SD-WAN services for business critical SaaS applications to their end customers.

[ SDW-16396 ]

Storage management - General Availability

The Storage management feature now supports General Availability.

Citrix SD-WAN Orchestrator for On-premises supports migrating the configuration and data from one disk to another. You can perform disk migration either to increase the disk space or for disaster recovery.

  • Add a new disk: You can add a new disk with a storage size at least twice as that of the current data consumed by Citrix SD-WAN Orchestrator for On-premises.
  • Disaster recovery: In the event of a disaster, you can attach the disk containing the Citrix SD-WAN Orchestrator for On-premises configuration and data to a new instance of Citrix SD-WAN Orchestrator for On-premises virtual machine.

[ SDW-21316 ]

Cloud brokered zero-touch deployment - General Availability

The Cloud brokered zero-touch deployment feature now supports General Availability.

Cloud brokered zero-touch deployment is an automated process that involves Citrix SD-WAN Orchestrator for On-premises as a broker to establish connectivity between Citrix SD-WAN Orchestrator for On-premises and the Citrix SD-WAN appliances.

[ SDW-21312 ]

Citrix SD-WAN 11.4.1 release

Citrix SD-WAN 11.4.1 release is supported on Citrix SD-WAN Orchestrator for On-premises 11.4.

[ SDW-21082 ]

Platform and systems

ICMP probing

Citrix SD-WAN Orchestrator for On-premises supports ICMP probing. It enables administrators to determine the Internet reachability to/from the SD-WAN appliance and the destination host. The following ICMP services are introduced in the UI:

  • Determine Internet reachability from link using ICMP probes
  • IPv4 ICMP endpoint address
  • Probe Interval (in seconds)
  • Retries

[ SDW-19292 ]

Override global transit node settings

You can now override the global transit node settings and choose to enable or disable spoke to spoke forwarding and route export only on selected control transit nodes.

[ SDW-19276 ]

Member path statistics API (Preview):

Member path statistics API is modified to allow the API client to specify the fields of interest. The specified fields are returned in the response payload.

[ SDW-18903 ]

Site Reports: VRRP

The VRRP report provides a real-time report of the configured VRRP groups.

[ SDW-12082 ]

Site Reports: IGMP

The IGMP reports table provides a real-time report of the IGMP statistics and IGMP Proxy groups.

[ SDW-12077 ]

Site Reports: IPsec

The IPsec reports provide the real-time report of the IPsec tunnel configurations on your network.

[ SDW-12076 ]

Site Reports: Routing Protocols

The Routing Protocols report provides the details of the parameters associated with the routing protocols. You can choose the protocol from View drop-down list a routing domain from Routing Domain drop-down list as needed. To view the current data, click Retrieve Latest Data.

[ SDW-12075 ]

Provider audit logs, Network audit logs

The provider level and network level audit log pages have been enhanced with the following capabilities:

  • Search: Ability to search for an audit activity based on a keyword.
  • Filtering: Run an audit log search by filtering based on user, feature, and time range. For network level logs, you can also filter by the site.
  • Audit Info: Select the info icon on the Action column to navigate to the Audit info section. This section provides the following information:
  • Method: HTTP request method of the invoked API.
  • Status: Result of the API request. You see an error message when the API request fails.
  • Payload message: Body of the request message sent through API.
  • URL: HTTP URL of the revoked API.
  • Log payloads: By default, this option is disabled. When enabled, the request body of the API message is displayed in the Audit Info section.

[ SDW-18937 ]

Site selection component

Usability of the site selection component in the following configurations is improved for its usability:

  1. Partial site upgrade
  2. Network location service
  3. Routing policies
  4. QoS Policies
  5. Import route filters
  6. Export route filters
  7. Proxy Auto Config
  8. Intrusion prevention
  9. Firewall policies
  10. Application settings

[ SDW-16895 ]

Fixed Issues

The issues that are addressed in Build 11.4.

Miscellaneous

Cloud brokered ZTD feature has a dependency on SD-WAN Orchestrator service, for it to work. This will be addressed in an upcoming SD-WAN Orchestrator release. However, customers need not upgrade their Citrix SD-WAN Orchestrator for On-premises.

[ SDW-20307 ]

SD-WAN cloud ZTD configuration fails to work for HA Sites if the cloud ZTD is already configured on a primary site.

[ SDW-20208 ]

Citrix SD-WAN Orchestrator for On-premises displays the status as Not Connected although the SD-WAN appliance is connected to Citrix SD-WAN Orchestrator for On-premises.

[ SDW-18280 ]

Known Issues

The issues that exist in release 11.4.

Configuration and Management

On a newly imported Citrix SD-WAN Orchestrator for On-premises instance, staging gets stuck in the Preparing package state. This issue occurs when the staging process is initiated shortly after creating a new virtual machine.

Workaround: Retry the staging process.

[ SDW-20863 ]

Miscellaneous

The Staging process fails when users running Citrix SD-WAN Orchestrator for On-premises 11.4 upgrade their Citrix SD-WAN appliances to the 11.4.1 version. The UI displays the status as Staging Failed (Failed to download script files). This issue occurs when the bandwidth between the Citrix SD-WAN appliance and Citrix SD-WAN Orchestrator for On-premises is less.

[ SDWANHELP-2317 ]

Citrix SD-WAN Orchestrator for On-premises running VMware ESXi 13 fails to reboot and goes into a bad state.

Workaround: Use VMware ESXi version 9.

[ SDWANHELP-2182 ]

The UI displays an incorrect SD-WAN appliance software version on the Configuration > Network Config Home and the Configuration > Deployment pages. This issue occurs on Citrix SD-WAN Orchestrator for On-premises instances that are newly installed and before users perform a change management.

[ SDW-21018 ]

The UI fails to display an error message when the Cloud Direct site operation fails.

[ SDW-21009 ]

The Software Version drop-down list under Partial Site Upgrade settings shows all the supported software versions instead of showing only those versions that are published under Infrastructure > Orchestrator Administration > Software Images > Appliance.

If a software version listed in Partial Site Upgrade is not available for publish under Infrastructure > Orchestrator Administration > Software Images > Appliance, then Partial Site Upgrade cannot be performed for that release.

[ SDW-20992 ]

On the Configuration > Network Config Home page of the UI, the Orchestrator connectivity status for a secondary SD-WAN appliance appears online immediately after the configuration file is uploaded. However, the correct status is displayed after the configuration is saved for the site.

[ SDW-20913 ]

In a provider managed setup, the announcements added by the provider administrators are not getting displayed to customers at their login.

[ SDW-18491 ]

When the database backup of an appliance is restored on another appliance having the same release of Citrix SD-WAN Orchestrator for On-premises, the user details are not restored. On the restored appliance, if you create a user with the same user name as in the backed-up database, the following error is displayed:

User has a role already assigned

Workaround: Create a user with a different user name that did not exist on the backed-up database.

[ SDW-15984 ]

Release Notes for SD-WAN Orchestrator for On-premises 11.4.0a Release