Asr1000-rommon.173-1r.spa.pkg 〈8K〉
Many network breaches target firmware before the OS loads. The NSA and CERT have published alerts regarding (e.g., "JCR" or "Lurid" attacks). By staying at 173-1r , you benefit from:
The filename follows the Cisco ASR 1000 naming convention, breaking down as follows:
Older ROMMON versions are prone to specific edge-case bugs, such as unexpected reboots during power cycles, memory leaks in the pre-boot environment, and failure to recognize high-density interface modules. The 17.3(1r) release resolves these microcode-level anomalies. Cisco IOS XE 17.x Train Compatibility
verify /md5 bootflash:asr1000-rommon.173-1r.spa.pkg asr1000-rommon.173-1r.spa.pkg
Before applying the asr1000-rommon.173-1r.spa.pkg firmware, ensure you meet the following requirements:
:
It provides the necessary low-level microcode to support newer line cards, shared port adapters (SPAs), and Route Processors (such as the RP2 and RP3) running newer Cisco IOS XE codebases. Many network breaches target firmware before the OS loads
If you’re already on a recent 17.x IOS XE train, 173-1r is the de facto standard. It’s not flashy, but it fixes real-world boot and security issues that can take down remote routers. Just ensure you meet the IOS XE version prerequisite and schedule a reload window. Recommended for all ASR 1000 deployments on IOS XE 17.3+.
upgrade rom-monitor filename bootflash:asr1000-rommon.173-1r.SPA.pkg all Use code with caution. Copied to clipboard
Next time you log into your ASR 1000, run show rom-monitor . If the version does not read 173-1r , plan your upgrade window today. The 17
Compare the resulting hash against the official MD5 hash provided on the Cisco Software Download portal. Step-by-Step ROMMON Upgrade Procedure
The upgrade is applicable to various hardware components including Route Processors (RPs), Embedded Services Processors (ESPs), and SPA Interface Processors (SIPs). It is often a prerequisite for moving older platforms like the or 1002-HX toward the final supported releases of the 17.3 train.
If the router fails to boot normally after the upgrade, it may drop into the ROMMON prompt ( rommon 1> ). From this prompt, you can manually boot a known good IOS XE image using the following command:
If the router reboots directly into a rommon 1> prompt instead of loading IOS XE, it means the boot variables were cleared or corrupted. You can manually boot your regular IOS XE image directly from the ROMMON prompt:
: The router will indicate when the upgrade is finished. Do not power cycle during this process.
