Citrix SD-WAN

Release Notes

This release note describes fixed issues and known issues applicable to Citrix SD-WAN software release 11.1 version 1 for the SD-WAN Standard Edition, WANOP, Premium Edition appliances, and SD-WAN Center.

For information about the previous release versions, see the Citrix SD-WAN documentation.


The release contains security fixes and Citrix recommends the patch be applied by all customers on Amazon Web Services.

What’s New

Dynamic DNS service - The Dynamic DNS service feature enables the SD-WAN to proxy the DNS requests for internet traffic to the DNS servers learned from one or more DHCP based WAN links. This Dynamic DNS service feature is useful in the deployment where the ISPs allow the DNS requests only to the DNS servers hosted by them.

Configurable management/data port - Citrix SD-WAN allows you to configure the management port to operate as either a data port or a management port. You can convert the management port to the data port only on the following platforms.

  • Citrix SD-WAN 110 SE/LTE
  • Citrix SD-WAN 210 SE/LTE

USB LTE modem support - Citrix SD-WAN now supports external USB LTE modems that are - Global Modem Verizon USB730L and AT&T Global Modem USB800. You can connect a pre-approved/qualified 3G/4G USB modem to the USB port of the following appliances.

  • Citrix SD-WAN 110 SE/LTE
  • Citrix SD-WAN 210 SE/LTE

On-prem SD-WAN Orchestrator identity - You can establish a connection between your Citrix SD-WAN appliance and Citrix SD-WAN on-prem Orchestrator by enabling Orchestrator connectivity and specifying the on-prem SD-WAN Orchestrator identity.


This is to provide appliance connectivity to the Citrix SD-WAN on-prem Orchestrator when available.

Appliance UI refresh - A new User Interface (UI) is introduced for SD-WAN appliances. The new UI is only applicable for 110 devices.

Database auto clean-up default settings on SD-WAN Center - The default condition to trigger the database auto clean-up of one day data has been changed from usage exceeding 50% AND database containing more than 6 month data to usage exceeding 50% OR database containing more than 1 month data.


The change in settings has no impact for the already provisioned SD-WAN Center systems which are upgraded to 11.1.1 release. It is only applicable to freshly provisioned 11.1.1 release SD-WAN Center systems.

Zero Touch Deployment enhancement - While performing a branch configuration that already has the same version of appliance software used in MCN, the Zero Touch Deployment (ZTD) process will not download the appliance software file again. This change is applicable for fresh factory shipped appliances, appliances reset to factory defaults, and configuration reset administratively.

In case of the configuration reset, select Reboot after revert check box to initiate the zero-touch deployment process.

Fixed Issues

SDWANHELP-1098: Citrix SD-WAN Optimization Rules UI crashes after adding or modifying any of its rules name with double quotes. This is applicable for Application Classifiers, Links, Service Classes, and Traffic Shaping Policies rules.

SDWANHELP-1113: Intermittently unable to access management GUI on WANOP only platforms after upgrading to 11.0.2.

SDWANHELP-1159: Citrix SD-WAN does not advertise the routes to the OSPF neighbor. This happens when the routes are changed at the SD-WAN appliance or virtual paths flap happens which causes virtual WAN routes to be resynced across the sites. In this case, if the link to OSPF peer is lossy, SD-WAN appliance might enter a state where it never advertises the SD-WAN routes to the OSPF neighbor.

SDWANHELP-1169: The SD-WAN service gets aborted when a packet is scheduled for transmission for a DVP that is pending removal. The software erroneously tries to remove it from an empty packet list.

SDWANHELP-1189: During the software appliance upgrade, the installation process can fail on the SD-WAN 210 Standard Edition (SE) appliances. The appliance must be rebooted to continue with the upgrade process.

SDWANHELP-1222: In rare conditions, when connection tracking is enabled on an SD-WAN appliance, a specific combination of IP addresses, packet length, and IP protocol, might cause an error in checksum validation. Hence, the UDP or TCP packets inappropriately get dropped.

SDWANHELP-1241: In few cases, appliance information is not shown on the SD-WAN Center Inventory and Status page due to the crash of SD-WAN Center service.

SDWANHELP-1248: In few cases, the SD-WAN service might be aborted while processing the Internet Group Management Protocol (IGMP) packets in multi routing domain configurations.

SDWANHELP-1253: The Citrix SD-WAN appliance might drop internet traffic in multi routing domain configurations.

SDWANHELP-1256: During a configuration update in an SD-WAN appliance, when a branch removes all but one Routing Domain, the Network Address Translation (NAT) might fail for Internet traffic.

NSSDW-25440: Significant packet loss or network delays might be observed in Azure on instances with network acceleration enabled.

Known Issues

NSSDW-26315: Unable to access the new User Interface (UI) on SD-WAN 110 appliance after upgrade from 11.1.0 to 11.1.1 release.

  • Workaround: After upgrading from 11.1.0 to 11.1.1 release, open a new browser tab to access the new UI on the SD-WAN 110 appliance.

NSSDW-27205: After the SD-WAN 110 appliance is rebooted, it redirects to the legacy SD-WAN UI in the browser.

  • Workaround: Open a new browser tab and navigate to https://<management-ip> to access the new UI on SD-WAN 110 appliance.

NSSDW-27329: On the SD-WAN 110 appliance, the parentheses () are not supported in the package names for uploading via Local Change Management in the new UI.

NSSDW-27341: In Citrix SD-WAN Center, you cannot perform the configuration for the Notification Settings that are Email Alerts, SNMP traps, Syslog, and HTTP.

NSSDW-27341: In Citrix SD-WAN Center, you cannot perform the configuration for the Notification Settings that are Email Alerts, SNMP traps, Syslog, and HTTP.

NSSDW-27727: Networks with VPX and VPXL instance using the IXGBEVF driver, used for certain Intel 10 GB NICs when SR-IOV is enabled, must not be upgraded to 11.1.1. This might result in a loss of connectivity. This issue is known to impact AWS instances with SR-IOV enabled.

NSSDW-28747: The local virtual IP of the interface is retrieved if the client mode is configured as DHCP. For this, the site management IP must be reachable from SD-WAN Center.

Release Notes