From c3b934293ef98fbd69f642db1c9403961557c374 Mon Sep 17 00:00:00 2001
From: nonodark <ef67891@yahoo.com.tw>
Date: Mon, 29 Jan 2024 10:45:15 +0800
Subject: [PATCH] Sync the latest code from the 202305 branch.

Signed-off-by: nonodark <ef67891@yahoo.com.tw>

Squashed commit of the following:

commit 335ebaafc2395d64df0ae36cf259842bb12e555b
Author: mssonicbld <79238446+mssonicbld@users.noreply.github.com>
Date:   Wed Jan 24 16:35:00 2024 +0800

    [submodule] Update submodule sonic-platform-daemons to the latest HEAD automatically (#17891)
    src/sonic-platform-daemons
    ```
    * 824c20a - (HEAD -> 202305, origin/202305) Support 800G ifname in xcvrd (#420) (20 hours ago) [Anoop Kamath]
    ```

commit 78e211cfd084ef50c295f20f20d0da1e78192825
Author: mssonicbld <79238446+mssonicbld@users.noreply.github.com>
Date:   Sun Jan 21 16:32:35 2024 +0800

    [submodule] Update submodule sonic-utilities to the latest HEAD automatically (#17868)
    src/sonic-utilities
    ```
    * 83a548de - (HEAD -> 202305, origin/202305) Disable Key Validation feature during sonic-installation for Cisco Platforms (#3115) (22 hours ago) [selvipal]
    ```

commit 5d3015126800d202859be32c2790343938131b0c
Author: mssonicbld <79238446+mssonicbld@users.noreply.github.com>
Date:   Sat Jan 20 16:32:45 2024 +0800

    [submodule] Update submodule sonic-snmpagent to the latest HEAD automatically (#17863)
    src/sonic-snmpagent
    ```
    * 6f59d29 - (HEAD -> 202305, origin/202305) Fix SNMP dropping some of the queue counter when create_only_config_db_buffers is set to true (#303) (#309) (33 minutes ago) [mssonicbld]
    ```

commit 208c1705f5d2218994d8e5b37c6872f6e591ff73
Author: mssonicbld <79238446+mssonicbld@users.noreply.github.com>
Date:   Sat Jan 20 04:32:37 2024 +0800

    [submodule] Update submodule sonic-snmpagent to the latest HEAD automatically (#17859)
    src/sonic-snmpagent
    ```
    * 2efaf2e - (HEAD -> 202305, origin/202305) Revert "[action] [PR:303] Fix SNMP dropping some of the queue counter when create_only_config_db_buffers is set to true (#303)" (#308) (4 minutes ago) [StormLiangMS]
    ```

commit 306175be2c9455f199be1fb58d456f7549fccbe7
Author: Saikrishna Arcot <sarcot@microsoft.com>
Date:   Fri Jan 19 03:16:04 2024 -0800

    dhcrelay: Don't look up the ifindex for the fallback interface (#17797) (#17840)

    Currently, whenever isc-dhcp-relay forwards a packet upstream,
    internally, it will try to send it on a "fallback" interface. My
    understanding is that this isn't meant to be a real interface, but
    instead is basically saying to use Linux's regular routing stack to
    route the packet appropriately (rather than having isc-dhcp-relay
    specify specifically which interface to use).

    The problem is that on systems with a weak CPU, a large number of
    interfaces, and many upstream servers specified, this can introduce a
    noticeable delay in packets getting sent. The delay comes from trying to
    get the ifindex of the fallback interface. In one test case, it got to
    the point that only 2 packets could be processed per second. Because of
    this, dhcrelay will easily get backlogged and likely get to a point
    where packets get dropped in the kernel.

    Fix this by adding a check saying if we're using the fallback interface,
    then don't try to get the ifindex of this interface. We're never going
    to have an interface named this in SONiC.

    Signed-off-by: Saikrishna Arcot <sarcot@microsoft.com>

commit fc7a1ac02fa94c54ecd0465180e430b93d853de4
Author: mssonicbld <79238446+mssonicbld@users.noreply.github.com>
Date:   Fri Jan 19 18:36:00 2024 +0800

    [submodule] Update submodule sonic-snmpagent to the latest HEAD automatically (#17853)
    src/sonic-snmpagent
    ```
    * b0a4bcc - (HEAD -> 202305, origin/202305) Set the execute bit on sysDescr_pass.py (#306) (22 hours ago) [Andre Kostur]
    ```

commit 30b1f05f0c66eb7d1d7961e8065881dc48048d84
Author: mssonicbld <79238446+mssonicbld@users.noreply.github.com>
Date:   Fri Jan 19 16:34:55 2024 +0800

    [submodule] Update submodule linkmgrd to the latest HEAD automatically (#17851)
    src/linkmgrd
    ```
    * f5e9b54 - (HEAD -> 202305, origin/202305) [CodeQL] fix unmet build dependency (#222) (10 hours ago) [Jing Zhang]
    * 2282cc5 - [active-standby] Probe the link in suspend timeout (#235) (22 hours ago) [Longxiang Lyu]
    ```

commit 66ce739340fbb4612509a19e3297f7774f4242ae
Author: mssonicbld <79238446+mssonicbld@users.noreply.github.com>
Date:   Fri Jan 19 16:34:46 2024 +0800

    [submodule] Update submodule sonic-utilities to the latest HEAD automatically (#17855)
    src/sonic-utilities
    ```
    * 93c42272 - (HEAD -> 202305, origin/202305) [chassis]: Support show ip bgp summary to display without error when no external neighbors are configured on chassis LC (#3099) (22 hours ago) [Arvindsrinivasan Lakshmi Narasimhan]
    ```

commit 076b6c3d2526f77fb40f9062b0f43289b6149416
Author: zitingguo-ms <zitingguo@microsoft.com>
Date:   Fri Jan 19 14:56:01 2024 +0800

    upgrade xgs SAI to 8.4.39.2 (#17842)

    Why I did it
    Upgrade the xgs SAI version to 8.4.39.2 to include the following fix:

    8.4.36.0: [submodule upgrade] [SAI_BRANCH rel_ocp_sai_8_4] SID: SDK-381039 Cosq control dynamic type changes
    8.4.37.0: SID: MMU cosq control configuration with Dynamic Type Check
    8.4.38.0: [sbumodule upgrade] [CSP 0001232212][SAI_BRANCH rel_ocp_sai_8_4]back-porting SONIC-82415 to SAI 8.4
    8.4.39.0: [CSP CS00012320979] Port SONIC-81867 sai spec compliance for get SAI_SWITCH_ATTR_SWITCH_HARDWARE_INFO
    8.4.39.1: changes for phy-re-init of 40G ports for TH platforms CS00012327470
    8.4.39.2: fix capability for Hostif queue by change SET operation of SAI_HOSTIF_ATTR_QUEUE to be true
    Work item tracking
    Microsoft ADO (number only): 26491005
    How I did it
    Upgrade xgs SAI version in sai.mk file.

    How to verify it
    Run basic SONiC test using SAI release pipeline, all cases passed.
    https://dev.azure.com/mssonic/internal/_build/results?buildId=457869&view=results

commit 6d767e549dabb199eb555afae2d10c4993d14275
Author: abdosi <58047199+abdosi@users.noreply.github.com>
Date:   Thu Jan 18 20:53:26 2024 -0800

    [chassis] Support advertisement of Loopback0 of all LC's across all e-BGP peers in TSA mode (#16714) (#17837)

    What I did:
    In Chassis TSA mode Loopback0 Ip's of each LC's should be advertise through e-BGP peers of each remote LC's

    How I did:

    - Route-map policy to Advertise own/self Loopback IP to other internal iBGP peers with a community internal_community as define in constants.yml
    - Route-map policy to match on above internal_community when route is received from internal iBGP peers and set a internal tag as define in constants.yml and also delete the internal_community so we don't send to any of e-BGP peers
    - In TSA new route-map match on above internal tag and permit the route (Loopback0 IP's of remote LC's) and set the community to traffic_shift_community.
    - In TSB delete the above new route-map.

    How I verify:

    Manual Verification

    UT updated.
    sonic-mgmt PR: sonic-net/sonic-mgmt#10239

    Signed-off-by: Abhishek Dosi <abdosi@microsoft.com>

commit 898f1263c80cdb148827eae4144b4a6b4a3858f8
Author: Baorong Liu <baorliu@cisco.com>
Date:   Thu Jan 18 04:08:29 2024 -0800

    [staticroutebfd]double commit PR-16450, change bfd to singlehop (#17549)

    Why I did it
    double commit PR-16450 because of cherry pick conflict for PR#202305

    Work item tracking
    Microsoft ADO (number only):
    How I did it
    How to verify it

commit d81780baa368b4be55fc95cb84270bed1f3ba636
Author: ganglv <88995770+ganglyu@users.noreply.github.com>
Date:   Thu Jan 18 20:07:40 2024 +0800

    Fix host service for 202305 branch (#17781)

    Why I did it
    When we disable telemetry.service, sonic-hostservice will not start. And root cause is sonic-hostservice is only wanted by telemetry.service.

    Work item tracking
    Microsoft ADO (number only):
    How I did it
    Add dependency for gnmi.service.

    How to verify it
    Disable telemetry.service and build new image, and then check sonic-hostservice with new image.

commit b99c46e3f8c8172ae3005b019b341f7670d0119d
Author: Liu Shilong <shilongliu@microsoft.com>
Date:   Thu Jan 18 20:05:04 2024 +0800

    [build] Add gpg keys for sonic-slave-bullseye in arm64 cross build on amd64. (#17182) (#17828)

    Fix #16204

    Microsoft ADO (number only): 25746782

    How I did it
    multiarch/debian-debootstrap:arm64-bullseye is too old.
    It needs to add some gpg keys before 'apt-get update'

commit f460347a3480ffea0cdc8db6ae5835f1d48a1dac
Author: mssonicbld <79238446+mssonicbld@users.noreply.github.com>
Date:   Thu Jan 18 16:34:00 2024 +0800

    [submodule] Update submodule sonic-swss to the latest HEAD automatically (#17821)
    src/sonic-swss
    ```
    * ac94f0b7 - (HEAD -> 202305, origin/202305) [202305][routeorch] Fixing bug with multiple routes pointing to nhg (#3002) (2 hours ago) [Nikola Dancejic]
    ```

commit ed71c12e054d65e448c24092297f8b26c312172e
Author: abdosi <58047199+abdosi@users.noreply.github.com>
Date:   Fri Jul 7 11:10:35 2023 -0700

    Enable BFD for Static Route for chassis-packet. (#15383)

    *What I did:
    Enable BFD for Static Route for chassis-packet. This will trigger the use of the feature as defined in here: #13789

    Signed-off-by: Abhishek Dosi <abdosi@microsoft.com>

commit aa01630841bd0179dab1951ac2fab87f15480727
Author: abdosi <58047199+abdosi@users.noreply.github.com>
Date:   Tue Aug 29 13:41:01 2023 -0700

    [build]: Added flag in sonic_version.yml to see if image is secured or non-secured (#16191)

    What I did:

    Added flag in sonic_version.yml to see if compiled image is secured or non-secured. This is done using build/compile time environmental variable SECURE_UPGRADE_MODE as define in HLD: https://github.com/sonic-net/SONiC/blob/master/doc/secure_boot/hld_secure_boot.md

    This flag does not provide the runtime status of whether the image has booted securely or not. It's possible that compile time signed image (secured image) can boot on non secure platform.

    Why I did:
    Flag can be used for manual check or by the test case.

    ADO: 24319390

    How I verify:
    Manual Verification

    ---
    build_version: 'master-16191.346262-cdc5e72a3'
    debian_version: '11.7'
    kernel_version: '5.10.0-18-2-amd64'
    asic_type: broadcom
    asic_subtype: 'broadcom'
    commit_id: 'cdc5e72a3'
    branch: 'master-16191'
    release: 'none'
    build_date: Fri Aug 25 03:15:45 UTC 2023
    build_number: 346262
    built_by: AzDevOps@vmss-soni001UR5
    libswsscommon: 1.0.0
    sonic_utilities: 1.2
    sonic_os_version: 11
    secure_boot_image: 'no'

    Signed-off-by: Abhishek Dosi <abdosi@microsoft.com>

commit 9f81d9d1bfe826d21f768141bca9d98f0e034d6c
Author: snider-nokia <76123698+snider-nokia@users.noreply.github.com>
Date:   Mon Jan 8 14:38:46 2024 -0500

    [Nokia][sonic-platform] Update Nokia sonic-platform submodule and device data (#17378)

    These changes, in conjunction with NDK version >= 22.9.17 address the thermal logging issues discussed at Nokia-ION/ndk#27. While the changes contained at this PR do not require coupling to NDK version >= 22.9.17, thermal logging enhancements will not be available without updated NDK >= 22.9.17. Thus, coupling with NDK >=22.9.17 is preferred and recommended.

    Why I did it
    To address thermal logging deficiencies.

    Work item tracking
    Microsoft ADO (number only): 26365734
    How I did it
    The following changes are included:

    Threshold configuration values are provided in the associated device data .json files. There is also a change included to better handle the condition where an SFP module read fails.

    Modify the module.py reboot to support reboot linecard from Supervisor

     - Modify reboot to call _reboot_imm for single IMM card reboot
     - Add log to the ndk_cmd to log the operation of "reboot-linecard" and "shutdown/satrtup the sfm"
    Add new nokia_cmd set command and modify show ndk-status output

     - Add a new function reboot_imm() to nokia_common.py to support reboot a single IMM slot from CPM
     - Added new command: nokia_cmd set reboot-linecard <slot> [forece] for CPM
     - Append a new column "RebootStatus" at the end of output of "nokia_cmd show ndk-status"
     - Provide ability for IMM to disable all transceiver module TX at reboot time
     - Remove defunct xcvr-resync service

commit 2f8630c85f62834b65fcf811139fc24743e10c73
Author: Marty Y. Lok <76118573+mlok-nokia@users.noreply.github.com>
Date:   Mon Jan 8 14:39:30 2024 -0500

    [Nokia-IXR7250E] Modify the platform_reboot on the IXR7250E for PMON API reboot and Disable all SFPs (#17483)

    Why I did it
    When Supervisor card is rebooted by using PMON API, it takes about 90 seconds to trigger the shutdown in down path. At this time linecards have been up. This delays linecards database initialization which is trying to PING/PONG the database-chassis. To address this issue, we modified the NDK to use the system call with "sudo reboot" when the request is from PMON API on Supervisor case. The NDK version is 22.9.20 and greater. This new NDK requires this modifcaiton of platform_reboot to work with.

    Work item tracking
    Microsoft ADO (number only): 26365734
    How I did it
    Modify the platform_reboot In Supervisor not to reboot all IMMs since it has been done in the function reboot() in module.py. Also handle the reboot-cause.txt for on the Supervisor when the reboot is request from PMON API.
    Modify the Nokia platform specific platform_reboot in linecard to disable all SPFs.
    This PR works with NDK version 22.9.20 and above

    Signed-off-by: mlok <marty.lok@nokia.com>

commit 6926171e928f8ae6044c3646677e48401c8b13c7
Author: Liu Shilong <shilongliu@microsoft.com>
Date:   Mon Jan 15 14:59:21 2024 +0800

    [build] Fix a bash script some times called by sh issue. (#17761)

    Why I did it
    Fix a bug that sometimes the script runs in sh not bash.

    Work item tracking
    Microsoft ADO (number only): 26297955
    How I did it

commit a262306822925f9045afacc75228f759ec93a537
Author: vdahiya12 <67608553+vdahiya12@users.noreply.github.com>
Date:   Tue Jan 16 11:34:19 2024 -0800

    [Arista] Update config.bcm of 7060_cx32s for handling 40g optics with unreliable los settings (#17768)

    For 40G optics there is SAI handling of T0 facing ports to be set with SR4 type and unreliable los set for a fixed set of ports. For this property to be invoked the requirement is set
    phy_unlos_msft=1 in config.bcm.
    This change is to meet the requirement and once this property is set, the los/interface type settings is applied by SAI on the required ports.

    Why I did it
    For Arista-7060CX-32S-Q32 T1, 40G ports RX_ERR minimalization during connected device reboot
    can be achieved by turning on Unreliable LOS and SR4 media_type for all ports which are connected to T0.

    The property phy_unlos_msft=1 is to exclusively enable this property.

    Microsoft ADO: 25941176

    How I did it
    Changes in SAI and turning on property

    How to verify it
    Ran the changes on a testbed and verified configurations are as intended.

    with property

    admin@sonic2:~$ bcmcmd "phy diag xe8 dsc config" | grep -C 2 "LOS"
    Brdfe_on                    = 0
    Media Type                  = 2
    Unreliable LOS              = 1
    Scrambling Disable          = 0
    Lane Config from PCS        = 0

    without property

    admin@sonic:~$ bcmcmd "phy diag xe8 dsc config" | grep -C 2 "LOS"
    Brdfe_on                    = 0
    Media Type                  = 0
    Unreliable LOS              = 0
    Scrambling Disable          = 0
    Lane Config from PCS        = 0

    Signed-off-by: vaibhav-dahiya <vdahiya@microsoft.com>

commit 245f337d146354c5a138cf42f97a625b3a4916dd
Author: Feng-msft <fenpan@microsoft.com>
Date:   Fri Jan 12 10:51:48 2024 +0800

    Fix dialout build flag issue. (#17715)
    Fix ENABLE_DIALOUT flag issue.
    - Microsoft ADO **(number only)**: 21326000
    Update Makefile.work and add debug string.
    ![image](https://github.com/sonic-net/sonic-buildimage/assets/97083744/960d75d1-618c-4734-acb5-7a32a28c262b)

commit b53a8908b0fdbe01f0fb9b9fe73a2e96b705fc6a
Author: Liping Xu <108326363+lipxu@users.noreply.github.com>
Date:   Fri Jan 12 15:26:06 2024 +0800

    disable restapi for leafRouter in slim image (#17713)

    Why I did it
    For some devices with small memory, after upgrading to the latest image, the available memory is not enough.

    Work item tracking
    Microsoft ADO (number only):
    26324242
    How I did it
    Disable restapi feature for LeafRouter which with slim image.

    How to verify it
    verified on 7050qx T1 (slim image), restapi disabled
    verified on 7050qx T0 (slim image), restapi enabled
    verified on 7260 T1 (normal image), restapi enabled

commit 8561fa6db70252ba3f0a92be1207cbe594de35e0
Author: mssonicbld <79238446+mssonicbld@users.noreply.github.com>
Date:   Fri Jan 12 16:34:35 2024 +0800

    [submodule] Update submodule sonic-utilities to the latest HEAD automatically (#17757)
    src/sonic-utilities
    ```
    * 651a80b1 - (HEAD -> 202305, origin/202305) Modify teamd retry count script to base BGP status on default BGP status (#3069) (22 hours ago) [Saikrishna Arcot]
    ```

commit 9f66a7dbf6e1abe8d6ff379577467e492e07f140
Author: Lawrence Lee <lawlee@microsoft.com>
Date:   Wed Jan 10 14:40:15 2024 -0800

    add timeout to ping6 command (#17729)

    Signed-off-by: Lawrence Lee <lawlee@microsoft.com>

commit 13aa19acf47b164a0a85683eafa956a5321ad0c3
Author: Nazarii Hnydyn <nazariig@nvidia.com>
Date:   Wed Jan 10 15:15:55 2024 +0200

    [swss/syncd]: Remove dependency on interfaces-config.service (#17649)

    Signed-off-by: Nazarii Hnydyn nazariig@nvidia.com

    This improvement does not bring any warm-reboot degradation, since the database availability (tcp/ip access over the loopback interface) was fixed by these PRs:

    Re-add 127.0.0.1/8 when bringing down the interfaces #15080
    Fix potentially not having any loopback address on lo interface #16490
    Why I did it
    Removed dependency on interfaces-config.service to speed up the boot, because interfaces-config.service takes a lot of time on init
    Work item tracking
    N/A
    How I did it
    Changed service files for swss/syncd
    How to verify it
    Boot and check swss/syncd start time comparing to interfaces-config

commit f4c15b83221311d82c72df206c2040a1baeb13b0
Author: mssonicbld <79238446+mssonicbld@users.noreply.github.com>
Date:   Wed Jan 10 16:34:10 2024 +0800

    [submodule] Update submodule linkmgrd to the latest HEAD automatically (#17731)
    src/linkmgrd
    ```
    * 2f5971f - (HEAD -> 202305, origin/202305) [warmboot] use config_db connector to update mux mode config instead of CLI (#223) (4 hours ago) [Jing Zhang]
    ```

commit a3b5ea93eb219f87c4566c78830b450a6ecb3016
Author: Nazarii Hnydyn <nazariig@nvidia.com>
Date:   Wed Jan 10 02:56:20 2024 +0200

    [sonic-cfggen]: Optimize template rendering and database access. (#17650)

    Signed-off-by: Nazarii Hnydyn nazariig@nvidia.com

    Why I did it
    Improved switch init time
    Work item tracking
    N/A
    How I did it
    Replaced: sonic-cfggen -> sonic-db-cli
    Aggregated template list for sonic-cfggen
    How to verify it
    Run warm-reboot

commit 44bc291ba5eef0df1dde44c3df1fd446faffd362
Author: mssonicbld <79238446+mssonicbld@users.noreply.github.com>
Date:   Wed Jan 10 04:32:40 2024 +0800

    [submodule] Update submodule linkmgrd to the latest HEAD automatically (#17721)
    src/linkmgrd
    ```
    * 2089ab6 - (HEAD -> 202305, origin/202305) Exclude DbInterface in PR coverage check (#224) (3 hours ago) [Jing Zhang]
    ```

commit 1337597b3951f9f64df181299ea9e66afcd92db3
Author: mssonicbld <79238446+mssonicbld@users.noreply.github.com>
Date:   Wed Jan 10 02:32:19 2024 +0800

    [submodule] Update submodule sonic-snmpagent to the latest HEAD automatically (#17722)
    src/sonic-snmpagent
    ```
    * e5fd192 - (HEAD -> 202305, origin/202305) Fix SNMP dropping some of the queue counter when create_only_config_db_buffers is set to true (#303) (9 hours ago) [DavidZagury]
    ```

commit bb23f7ba8c9f4980e8e4e58dbaec4ee769e4df32
Author: mssonicbld <79238446+mssonicbld@users.noreply.github.com>
Date:   Sat Jan 6 16:42:00 2024 +0800

    [submodule] Update submodule sonic-gnmi to the latest HEAD automatically (#17696)

commit 7ccef97d308839e6430d244cf2e144ce1eb947d9
Author: mssonicbld <79238446+mssonicbld@users.noreply.github.com>
Date:   Sat Jan 6 03:37:17 2024 +0800

    [YANG] Enable Yang model for BGP_BBR config entry (#17622) (#17692)

commit 8defdfefe66bc5d1f33247462213620798ba1e25
Author: mssonicbld <79238446+mssonicbld@users.noreply.github.com>
Date:   Sat Jan 6 01:15:01 2024 +0800

    [submodule] Update submodule sonic-sairedis to the latest HEAD automatically (#17691)

commit b54996246a930a3747cb9e836612bc8ba484f99b
Author: mssonicbld <79238446+mssonicbld@users.noreply.github.com>
Date:   Sat Jan 6 01:00:55 2024 +0800

    [submodule] Update submodule sonic-gnmi to the latest HEAD automatically (#17690)

commit 02dc49a3ccc8d4715f8e8fb148197ea24d4c5504
Author: mssonicbld <79238446+mssonicbld@users.noreply.github.com>
Date:   Fri Jan 5 15:14:43 2024 +0800

    [submodule] Update submodule linkmgrd to the latest HEAD automatically (#17687)

commit 0d31ee8d4a57a293f548b4f5e8c2b9aedd301e2f
Author: mssonicbld <79238446+mssonicbld@users.noreply.github.com>
Date:   Fri Jan 5 02:39:03 2024 +0800

    Update TELEMETRY_CLIENT YANG model (#16861) (#17679)

commit df22ca9132892374972842be456706b14bc387f2
Author: mssonicbld <79238446+mssonicbld@users.noreply.github.com>
Date:   Fri Jan 5 01:04:39 2024 +0800

    [Arista] Remove aggregate port config files for multi-asic devices (#16923) (#17678)

commit ca2695f4b813a983acf55b908f0ffcadea01a633
Author: mssonicbld <79238446+mssonicbld@users.noreply.github.com>
Date:   Fri Jan 5 00:44:19 2024 +0800

    password-hardening: Add support to disable expiration date like in Linux (PAM) (#17426) (#17674)

commit 388457aaf846b46576738d03a480a4015a139856
Author: mssonicbld <79238446+mssonicbld@users.noreply.github.com>
Date:   Fri Jan 5 00:35:07 2024 +0800

    [arp_update]: Flush neighbors with incorrect MAC info (#17238) (#17677)

commit 38c5e6825dac21553c59ae3703e9397022262fc6
Author: mssonicbld <79238446+mssonicbld@users.noreply.github.com>
Date:   Fri Jan 5 00:32:38 2024 +0800

    Fix can't access IPV6 address via management interface because 'default' route table does not add to route lookup issue. (#17281) (#17676)

commit 76d8ff06b3f7bcae7e4f7fab24c33104950a6155
Author: mssonicbld <79238446+mssonicbld@users.noreply.github.com>
Date:   Thu Jan 4 23:10:28 2024 +0800

    Update backend_acl.py to specify ACL table name (#17553) (#17673)

commit b72a74047e2bd6e2aa6b3edbbcb8ac2a0ee34e3b
Author: mssonicbld <79238446+mssonicbld@users.noreply.github.com>
Date:   Thu Jan 4 22:37:26 2024 +0800

    [docker_image_ctl.j2]: swss docker initialization improvements (#17628) (#17672)

commit 609b3a76465707d74f0d9b5eddc888d1884eeea3
Author: mssonicbld <79238446+mssonicbld@users.noreply.github.com>
Date:   Thu Jan 4 22:29:00 2024 +0800

    [image_config]: Update DHCP rate-limit for mgmt TOR devices (#17630) (#17671)

commit 8362c096a3fdd468cec557cbcb593f9a1949ab1f
Author: mssonicbld <79238446+mssonicbld@users.noreply.github.com>
Date:   Tue Jan 2 15:13:53 2024 +0800

    [submodule] Update submodule sonic-swss to the latest HEAD automatically (#17642)

commit 3cb63433111d750d47d53a53a7527d40a6e4818d
Author: Stepan Blyshchak <38952541+stepanblyschak@users.noreply.github.com>
Date:   Tue Jan 2 02:59:17 2024 +0200

    [202305] Revert bgp suppress fib pending (#17578)

    DEPENDS ON: sonic-net/sonic-swss#2997 sonic-net/sonic-utilities#3093

    What I did

    Revert the feature.

    Why I did it

    Revert bgp suppress FIB functionality due to found FRR memory consumption issues and bugs.

    How I verified it

    Basic sanity check on t1-lag, regression in progress.

commit 64ed3d5b78c56898623f92b6a0056f11b20b97f4
Author: mssonicbld <79238446+mssonicbld@users.noreply.github.com>
Date:   Mon Jan 1 10:31:33 2024 +0800

    Fix system-health hardware_checker to consume fan tolerance details (#16689) (#17640)

commit 98ad3b0a6ce6e8db6b00eb2f56453b45874fb180
Author: mssonicbld <79238446+mssonicbld@users.noreply.github.com>
Date:   Sun Dec 31 17:01:53 2023 +0800

    [submodule] Update submodule sonic-utilities to the latest HEAD automatically (#17643)

commit 1398daa1ef79fdb4326c4ba558bb236bbfcc3309
Author: mssonicbld <79238446+mssonicbld@users.noreply.github.com>
Date:   Sun Dec 31 15:20:25 2023 +0800

    [submodule] Update submodule sonic-platform-daemons to the latest HEAD automatically (#17641)

commit fb83d4d82f14e12bd06b98f1a2e4f02b56a6cb70
Author: mssonicbld <79238446+mssonicbld@users.noreply.github.com>
Date:   Fri Dec 29 01:07:45 2023 +0800

    [Mellanox] wait until hw-management watchdog files ready (#17618) (#17633)

commit a8ad19d4ac91881c10083d632088bf9226bd20f9
Author: Junchao-Mellanox <57339448+Junchao-Mellanox@users.noreply.github.com>
Date:   Thu Dec 28 20:53:49 2023 +0800

    [202305] Optimize syslog rate limit feature for fast and warm boot (#17478)

    Backport PR #17458 due to conflict.

    Why I did it
    Optimize syslog rate limit feature for fast and warm boot

    Work item tracking
    Microsoft ADO (number only):
    How I did it
    Optimize redis start time
    Don't render rsyslog.conf in container startup script
    Disable containercfgd by default. There is a new CLI to enable it (in another PR)
    How to verify it
    Manual test
    Regression test
---
 Makefile.work                                 |   4 +
 .../th-a7060-cx32s-32x40G-t1.config.bcm       |   1 +
 .../Arista-7800R3A-36D2-C36/port_config.ini   |  41 -----
 .../Arista-7800R3A-36D2-C72/port_config.ini   |  77 --------
 .../Arista-7800R3A-36D2-D36/port_config.ini   |  41 -----
 .../platform_ndk.json                         |  22 ++-
 .../platform_reboot                           |   4 +
 .../platform_ndk.json                         |  20 +++
 .../platform_reboot                           |  34 +++-
 dockers/docker-base-bullseye/Dockerfile.j2    |   2 +-
 dockers/docker-base-bullseye/etc/rsyslog.conf |  78 +++++++++
 dockers/docker-base-buster/Dockerfile.j2      |   2 +-
 dockers/docker-base-buster/etc/rsyslog.conf   |  78 +++++++++
 .../etc/supervisor/containercfgd.conf         |   9 -
 dockers/docker-base-stretch/Dockerfile.j2     |   2 +-
 dockers/docker-base-stretch/etc/rsyslog.conf  |  78 +++++++++
 .../etc/supervisor/containercfgd.conf         |   9 -
 dockers/docker-base/Dockerfile.j2             |   2 +-
 dockers/docker-base/etc/rsyslog.conf          |  78 +++++++++
 .../etc/supervisor/containercfgd.conf         |   9 -
 .../docker-database/docker-database-init.sh   |  10 +-
 dockers/docker-database/supervisord.conf.j2   |   4 +-
 dockers/docker-fpm-frr/TS                     |   9 +-
 .../docker-fpm-frr/frr/bgpd/bgpd.main.conf.j2 |   1 -
 .../bgpd/templates/internal/policies.conf.j2  |  48 ++++-
 .../templates/voq_chassis/policies.conf.j2    |  20 +++
 .../frr/bgpd/tsa/bgpd.tsa.isolate.conf.j2     |   5 +-
 .../frr/bgpd/tsa/bgpd.tsa.unisolate.conf.j2   |   3 +-
 .../frr/supervisord/supervisord.conf.j2       |   2 +-
 dockers/docker-orchagent/docker-init.j2       |   4 +-
 dockers/docker-platform-monitor/Dockerfile.j2 |   1 +
 .../docker-platform-monitor/etc/rsyslog.conf  |  89 ++++++++++
 files/build_templates/docker_image_ctl.j2     |  47 ++---
 files/build_templates/init_cfg.json.j2        |   6 +-
 .../per_namespace/swss.service.j2             |   1 -
 .../per_namespace/syncd.service.j2            |   1 -
 .../build_templates/sonic_debian_extension.j2 |   3 +
 files/build_templates/sonic_version.yml.j2    |   5 +
 files/image_config/backend_acl/backend_acl.py |   2 +-
 files/image_config/constants/constants.yml    |   2 +
 .../containercfgd}/containercfgd.conf         |   0
 files/image_config/copp/copp_cfg.j2           |   5 +
 files/image_config/interfaces/interfaces.j2   |  16 +-
 .../rsyslog/rsyslog-container.conf.j2         |  17 +-
 files/scripts/arp_update                      |  41 ++++-
 platform/broadcom/sai.mk                      |   2 +-
 .../broadcom/sonic-platform-modules-nokia     |   2 +-
 .../sonic_platform/watchdog.py                |   3 +-
 .../mlnx-platform-api/tests/test_watchdog.py  |   2 +
 .../vs/docker-sonic-vs/supervisord.conf.j2    |   2 +-
 scripts/docker_version_control.sh             |   3 +-
 slave.mk                                      |   1 +
 sonic-slave-bullseye/Dockerfile.j2            |   7 +
 ...n-t-look-up-the-ifindex-for-fallback.patch |  34 ++++
 src/isc-dhcp/patch/series                     |   1 +
 src/linkmgrd                                  |   2 +-
 src/sonic-bgpcfgd/bgpcfgd/managers_bgp.py     |   5 +-
 src/sonic-bgpcfgd/staticroutebfd/vars.py      |   2 +-
 .../peer-group.conf/result_all_isolate.conf   |  10 +-
 .../peer-group.conf/result_all_unisolate.conf |   6 +-
 .../peer-group.conf/result_isolate.conf       |  10 +-
 .../peer-group.conf/result_unisolate.conf     |   6 +-
 .../internal/policies.conf/param_back.json    |   6 +
 .../policies.conf/param_chasiss_packet.json   |  16 ++
 .../internal/policies.conf/param_front.json   |   8 +-
 .../internal/policies.conf/result_back.conf   |  18 +-
 .../policies.conf/result_chasiss_packet.conf  |  37 ++++
 .../internal/policies.conf/result_front.conf  |   8 +-
 .../data/sonic-cfggen/bgpd.conf.j2/all.conf   |   1 -
 .../sonic-cfggen/bgpd.main.conf.j2/all.conf   |   1 -
 .../sonic-cfggen/bgpd.main.conf.j2/base.conf  |   1 -
 .../bgpd.main.conf.j2/defaults.conf           |   1 -
 .../bgpd.main.conf.j2/ipv6_lo.conf            |   1 -
 .../bgpd.main.conf.j2/packet_chassis.conf     |   1 -
 .../bgpd.main.conf.j2/voq_chassis.conf        |   1 -
 .../data/sonic-cfggen/frr.conf.j2/all.conf    |   1 -
 .../tests/data/sonic-cfggen/tsa/isolate.conf  |   5 +-
 .../tests/data/sonic-cfggen/tsa/isolate.json  |   5 +-
 .../data/sonic-cfggen/tsa/unisolate.conf      |   3 +-
 .../voq_chassis/policies.conf/param_base.json |   6 +
 .../policies.conf/result_base.conf            |  21 ++-
 src/sonic-bgpcfgd/tests/test_device_global.py |   3 +-
 src/sonic-bgpcfgd/tests/test_static_rt_bfd.py |  46 ++---
 src/sonic-config-engine/minigraph.py          |  10 +-
 .../tests/sample_output/py2/bgpd_frr.conf     |   1 -
 .../py2/bgpd_frr_backend_asic.conf            |   1 -
 .../sample_output/py2/bgpd_frr_dualtor.conf   |   1 -
 .../py2/bgpd_frr_frontend_asic.conf           |   1 -
 .../tests/sample_output/py2/frr.conf          |   1 -
 .../tests/sample_output/py2/interfaces        |   3 +
 .../sample_output/py2/t2-chassis-fe-bgpd.conf |   1 -
 .../sample_output/py2/two_mgmt_interfaces     |   6 +
 .../tests/sample_output/py3/bgpd_frr.conf     |   1 -
 .../py3/bgpd_frr_backend_asic.conf            |   1 -
 .../sample_output/py3/bgpd_frr_dualtor.conf   |   1 -
 .../py3/bgpd_frr_frontend_asic.conf           |   1 -
 .../tests/sample_output/py3/frr.conf          |   1 -
 .../tests/sample_output/py3/interfaces        |   3 +
 .../sample_output/py3/t2-chassis-fe-bgpd.conf |   1 -
 .../sample_output/py3/two_mgmt_interfaces     |   6 +
 src/sonic-config-engine/tests/test_cfggen.py  |   4 +-
 .../containercfgd/containercfgd.py            |  20 +--
 .../tests/test_config_daemon.py               |   3 +
 .../tests/test_syslog_config.py               |  11 +-
 src/sonic-device-data/tests/permitted_list    |   1 +
 .../0005-Add-support-of-bgp-l3vni-evpn.patch  | 121 -------------
 ...0007-ignore-route-from-default-table.patch |  31 ----
 ...008-Use-vrf_id-for-vrf-not-tabled_id.patch | 111 ------------
 ..._lookup_by_tableid-to-zebra_vrf_look.patch |  56 +++---
 ...fpm-Use-vrf_id-for-vrf-not-tabled_id.patch |  25 +++
 ...-fpm-ignore-route-from-default-table.patch |  29 ++++
 .../0036-Add-support-of-bgp-l3vni-evpn.patch  | 164 ++++++++++++++++++
 src/sonic-frr/patch/series                    |   6 +-
 src/sonic-gnmi                                |   2 +-
 ...st-services-data.sonic-hostservice.service |   2 +-
 src/sonic-platform-daemons                    |   2 +-
 src/sonic-sairedis                            |   2 +-
 src/sonic-snmpagent                           |   2 +-
 src/sonic-swss                                |   2 +-
 src/sonic-utilities                           |   2 +-
 src/sonic-yang-models/doc/Configuration.md    |  41 +++++
 src/sonic-yang-models/setup.py                |   1 +
 .../tests/files/sample_config_db.json         |   9 +-
 .../tests/yang_model_tests/tests/bgp_bbr.json |   9 +
 .../tests/device_metadata.json                |  10 --
 .../tests_config/bgp_bbr.json                 |  22 +++
 .../tests_config/device_metadata.json         |  30 ----
 .../tests_config/telemetry_client.json        |  62 +++----
 .../yang-models/sonic-bgp-bbr.yang            |  41 +++++
 .../yang-models/sonic-device_metadata.yang    |  12 --
 .../yang-models/sonic-passwh.yang             |   8 +-
 .../yang-models/sonic-static-route.yang       |   6 +
 .../yang-models/sonic-telemetry_client.yang   |  23 +--
 .../health_checker/hardware_checker.py        |  28 +--
 src/system-health/tests/test_system_health.py |  28 ++-
 135 files changed, 1399 insertions(+), 788 deletions(-)
 delete mode 100644 device/arista/x86_64-arista_7800r3a_36d2_lc/Arista-7800R3A-36D2-C36/port_config.ini
 delete mode 100644 device/arista/x86_64-arista_7800r3a_36d2_lc/Arista-7800R3A-36D2-C72/port_config.ini
 delete mode 100644 device/arista/x86_64-arista_7800r3a_36d2_lc/Arista-7800R3A-36D2-D36/port_config.ini
 create mode 100644 dockers/docker-base-bullseye/etc/rsyslog.conf
 create mode 100644 dockers/docker-base-buster/etc/rsyslog.conf
 delete mode 100644 dockers/docker-base-buster/etc/supervisor/containercfgd.conf
 create mode 100644 dockers/docker-base-stretch/etc/rsyslog.conf
 delete mode 100644 dockers/docker-base-stretch/etc/supervisor/containercfgd.conf
 create mode 100644 dockers/docker-base/etc/rsyslog.conf
 delete mode 100644 dockers/docker-base/etc/supervisor/containercfgd.conf
 create mode 100644 dockers/docker-platform-monitor/etc/rsyslog.conf
 rename {dockers/docker-base-bullseye/etc/supervisor => files/image_config/containercfgd}/containercfgd.conf (100%)
 create mode 100644 src/isc-dhcp/patch/0016-Don-t-look-up-the-ifindex-for-fallback.patch
 create mode 100644 src/sonic-bgpcfgd/tests/data/internal/policies.conf/param_chasiss_packet.json
 create mode 100644 src/sonic-bgpcfgd/tests/data/internal/policies.conf/result_chasiss_packet.conf
 delete mode 100644 src/sonic-frr/patch/0005-Add-support-of-bgp-l3vni-evpn.patch
 delete mode 100644 src/sonic-frr/patch/0007-ignore-route-from-default-table.patch
 delete mode 100644 src/sonic-frr/patch/0008-Use-vrf_id-for-vrf-not-tabled_id.patch
 create mode 100644 src/sonic-frr/patch/0034-fpm-Use-vrf_id-for-vrf-not-tabled_id.patch
 create mode 100644 src/sonic-frr/patch/0035-fpm-ignore-route-from-default-table.patch
 create mode 100644 src/sonic-frr/patch/0036-Add-support-of-bgp-l3vni-evpn.patch
 create mode 100644 src/sonic-yang-models/tests/yang_model_tests/tests/bgp_bbr.json
 create mode 100644 src/sonic-yang-models/tests/yang_model_tests/tests_config/bgp_bbr.json
 create mode 100644 src/sonic-yang-models/yang-models/sonic-bgp-bbr.yang

diff --git a/Makefile.work b/Makefile.work
index 7c561e545011..fa9a927e59a9 100644
--- a/Makefile.work
+++ b/Makefile.work
@@ -40,6 +40,9 @@
 #  * ENABLE_NATIVE_WRITE: Enable native write/config operations via the gNMI interface.
 #  *                 Default: unset
 #  *                 Values: y
+#  * ENABLE_DIALOUT: Enable dialout client in telemetry.
+#  *                 Default: unset
+#  *                 Values: y
 #  * SONIC_DPKG_CACHE_METHOD: Specifying method of obtaining the Debian packages from cache: none or cache
 #  * SONIC_DPKG_CACHE_SOURCE: Debian package cache location when cache enabled for debian packages
 #  * BUILD_LOG_TIMESTAMP: Set timestamp in the build log (simple/none)
@@ -542,6 +545,7 @@ SONIC_BUILD_INSTRUCTION :=  $(MAKE) \
                            SONIC_INCLUDE_MUX=$(INCLUDE_MUX) \
                            ENABLE_TRANSLIB_WRITE=$(ENABLE_TRANSLIB_WRITE) \
                            ENABLE_NATIVE_WRITE=$(ENABLE_NATIVE_WRITE) \
+			   ENABLE_DIALOUT=$(ENABLE_DIALOUT) \
                            EXTRA_DOCKER_TARGETS=$(EXTRA_DOCKER_TARGETS) \
                            BUILD_LOG_TIMESTAMP=$(BUILD_LOG_TIMESTAMP) \
                            SONIC_ENABLE_IMAGE_SIGNATURE=$(ENABLE_IMAGE_SIGNATURE) \
diff --git a/device/arista/x86_64-arista_7060_cx32s/Arista-7060CX-32S-Q32/th-a7060-cx32s-32x40G-t1.config.bcm b/device/arista/x86_64-arista_7060_cx32s/Arista-7060CX-32S-Q32/th-a7060-cx32s-32x40G-t1.config.bcm
index a83fa589a538..2a1af354a7d0 100644
--- a/device/arista/x86_64-arista_7060_cx32s/Arista-7060CX-32S-Q32/th-a7060-cx32s-32x40G-t1.config.bcm
+++ b/device/arista/x86_64-arista_7060_cx32s/Arista-7060CX-32S-Q32/th-a7060-cx32s-32x40G-t1.config.bcm
@@ -451,3 +451,4 @@ serdes_preemphasis_109=0x145c00
 
 mmu_init_config="MSFT-TH-Tier1"
 phy_an_lt_msft=1
+phy_unlos_msft=1
diff --git a/device/arista/x86_64-arista_7800r3a_36d2_lc/Arista-7800R3A-36D2-C36/port_config.ini b/device/arista/x86_64-arista_7800r3a_36d2_lc/Arista-7800R3A-36D2-C36/port_config.ini
deleted file mode 100644
index 268ba635ed44..000000000000
--- a/device/arista/x86_64-arista_7800r3a_36d2_lc/Arista-7800R3A-36D2-C36/port_config.ini
+++ /dev/null
@@ -1,41 +0,0 @@
-# name         lanes             alias        index  role       speed       asic_port_name     coreId      corePortId      numVoq
-Ethernet0      72,73,74,75       Ethernet1/1  1      Ext        100000      Eth0-ASIC0         1           1               8
-Ethernet8      80,81,82,83       Ethernet2/1  2      Ext        100000      Eth8-ASIC0         1           2               8
-Ethernet16     88,89,90,91       Ethernet3/1  3      Ext        100000      Eth16-ASIC0        1           3               8
-Ethernet24     96,97,98,99       Ethernet4/1  4      Ext        100000      Eth24-ASIC0        1           4               8
-Ethernet32     104,105,106,107   Ethernet5/1  5      Ext        100000      Eth32-ASIC0        1           5               8
-Ethernet40     112,113,114,115   Ethernet6/1  6      Ext        100000      Eth40-ASIC0        1           6               8
-Ethernet48     120,121,122,123   Ethernet7/1  7      Ext        100000      Eth48-ASIC0        1           7               8
-Ethernet56     128,129,130,131   Ethernet8/1  8      Ext        100000      Eth56-ASIC0        1           8               8
-Ethernet64     136,137,138,139   Ethernet9/1  9      Ext        100000      Eth64-ASIC0        1           9               8
-Ethernet72     64,65,66,67       Ethernet10/1 10     Ext        100000      Eth72-ASIC0        0           10              8
-Ethernet80     56,57,58,59       Ethernet11/1 11     Ext        100000      Eth80-ASIC0        0           11              8
-Ethernet88     48,49,50,51       Ethernet12/1 12     Ext        100000      Eth88-ASIC0        0           12              8
-Ethernet96     40,41,42,43       Ethernet13/1 13     Ext        100000      Eth96-ASIC0        0           13              8
-Ethernet104    32,33,34,35       Ethernet14/1 14     Ext        100000      Eth104-ASIC0       0           14              8
-Ethernet112    24,25,26,27       Ethernet15/1 15     Ext        100000      Eth112-ASIC0       0           15              8
-Ethernet120    16,17,18,19       Ethernet16/1 16     Ext        100000      Eth120-ASIC0       0           16              8
-Ethernet128    8,9,10,11         Ethernet17/1 17     Ext        100000      Eth128-ASIC0       0           17              8
-Ethernet136    0,1,2,3           Ethernet18/1 18     Ext        100000      Eth136-ASIC0       0           18              8
-Ethernet144    72,73,74,75       Ethernet19/1 19     Ext        100000      Eth0-ASIC1         1           1               8
-Ethernet152    80,81,82,83       Ethernet20/1 20     Ext        100000      Eth8-ASIC1         1           2               8
-Ethernet160    88,89,90,91       Ethernet21/1 21     Ext        100000      Eth16-ASIC1        1           3               8
-Ethernet168    96,97,98,99       Ethernet22/1 22     Ext        100000      Eth24-ASIC1        1           4               8
-Ethernet176    104,105,106,107   Ethernet23/1 23     Ext        100000      Eth32-ASIC1        1           5               8
-Ethernet184    112,113,114,115   Ethernet24/1 24     Ext        100000      Eth40-ASIC1        1           6               8
-Ethernet192    120,121,122,123   Ethernet25/1 25     Ext        100000      Eth48-ASIC1        1           7               8
-Ethernet200    128,129,130,131   Ethernet26/1 26     Ext        100000      Eth56-ASIC1        1           8               8
-Ethernet208    136,137,138,139   Ethernet27/1 27     Ext        100000      Eth64-ASIC1        1           9               8
-Ethernet216    64,65,66,67       Ethernet28/1 28     Ext        100000      Eth72-ASIC1        0           10              8
-Ethernet224    56,57,58,59       Ethernet29/1 29     Ext        100000      Eth80-ASIC1        0           11              8
-Ethernet232    48,49,50,51       Ethernet30/1 30     Ext        100000      Eth88-ASIC1        0           12              8
-Ethernet240    40,41,42,43       Ethernet31/1 31     Ext        100000      Eth96-ASIC1        0           13              8
-Ethernet248    32,33,34,35       Ethernet32/1 32     Ext        100000      Eth104-ASIC1       0           14              8
-Ethernet256    24,25,26,27       Ethernet33/1 33     Ext        100000      Eth112-ASIC1       0           15              8
-Ethernet264    16,17,18,19       Ethernet34/1 34     Ext        100000      Eth120-ASIC1       0           16              8
-Ethernet272    8,9,10,11         Ethernet35/1 35     Ext        100000      Eth128-ASIC1       0           17              8
-Ethernet280    0,1,2,3           Ethernet36/1 36     Ext        100000      Eth136-ASIC1       0           18              8
-Ethernet-Rec0  249               Recirc0/0    37     Rec        400000      Rcy0-ASIC0         0           49              8
-Ethernet-IB0   250               Recirc0/1    38     Inb        400000      Rcy1-ASIC0         1           50              8
-Ethernet-Rec1  249               Recirc0/0    39     Rec        400000      Rcy0-ASIC1         0           49              8
-Ethernet-IB1   250               Recirc0/1    40     Inb        400000      Rcy1-ASIC1         1           50              8
diff --git a/device/arista/x86_64-arista_7800r3a_36d2_lc/Arista-7800R3A-36D2-C72/port_config.ini b/device/arista/x86_64-arista_7800r3a_36d2_lc/Arista-7800R3A-36D2-C72/port_config.ini
deleted file mode 100644
index d23b2070d409..000000000000
--- a/device/arista/x86_64-arista_7800r3a_36d2_lc/Arista-7800R3A-36D2-C72/port_config.ini
+++ /dev/null
@@ -1,77 +0,0 @@
-# name         lanes             alias        index  role       speed      asic_port_name     coreId      corePortId      numVoq
-Ethernet0      72,73,74,75       Ethernet1/1  1      Ext        100000      Eth0-ASIC0         1           1               8
-Ethernet4      76,77,78,79       Ethernet1/5  1      Ext        100000      Eth4-ASIC0         1           2               8
-Ethernet8      80,81,82,83       Ethernet2/1  2      Ext        100000      Eth8-ASIC0         1           3               8
-Ethernet12     84,85,86,87       Ethernet2/5  2      Ext        100000      Eth12-ASIC0        1           4               8
-Ethernet16     88,89,90,91       Ethernet3/1  3      Ext        100000      Eth16-ASIC0        1           5               8
-Ethernet20     92,93,94,95       Ethernet3/5  3      Ext        100000      Eth20-ASIC0        1           6               8
-Ethernet24     96,97,98,99       Ethernet4/1  4      Ext        100000      Eth24-ASIC0        1           7               8
-Ethernet28     100,101,102,103   Ethernet4/5  4      Ext        100000      Eth28-ASIC0        1           8               8
-Ethernet32     104,105,106,107   Ethernet5/1  5      Ext        100000      Eth32-ASIC0        1           9               8
-Ethernet36     108,109,110,111   Ethernet5/5  5      Ext        100000      Eth36-ASIC0        1           10              8
-Ethernet40     112,113,114,115   Ethernet6/1  6      Ext        100000      Eth40-ASIC0        1           11              8
-Ethernet44     116,117,118,119   Ethernet6/5  6      Ext        100000      Eth44-ASIC0        1           12              8
-Ethernet48     120,121,122,123   Ethernet7/1  7      Ext        100000      Eth48-ASIC0        1           13              8
-Ethernet52     124,125,126,127   Ethernet7/5  7      Ext        100000      Eth52-ASIC0        1           14              8
-Ethernet56     128,129,130,131   Ethernet8/1  8      Ext        100000      Eth56-ASIC0        1           15              8
-Ethernet60     132,133,134,135   Ethernet8/5  8      Ext        100000      Eth60-ASIC0        1           16              8
-Ethernet64     136,137,138,139   Ethernet9/1  9      Ext        100000      Eth64-ASIC0        1           17              8
-Ethernet68     140,141,142,143   Ethernet9/5  9      Ext        100000      Eth68-ASIC0        1           18              8
-Ethernet72     64,65,66,67       Ethernet10/1 10     Ext        100000      Eth72-ASIC0        0           19              8
-Ethernet76     68,69,70,71       Ethernet10/5 10     Ext        100000      Eth76-ASIC0        0           20              8
-Ethernet80     56,57,58,59       Ethernet11/1 11     Ext        100000      Eth80-ASIC0        0           21              8
-Ethernet84     60,61,62,63       Ethernet11/5 11     Ext        100000      Eth84-ASIC0        0           22              8
-Ethernet88     48,49,50,51       Ethernet12/1 12     Ext        100000      Eth88-ASIC0        0           23              8
-Ethernet92     52,53,54,55       Ethernet12/5 12     Ext        100000      Eth92-ASIC0        0           24              8
-Ethernet96     40,41,42,43       Ethernet13/1 13     Ext        100000      Eth96-ASIC0        0           25              8
-Ethernet100    44,45,46,47       Ethernet13/5 13     Ext        100000      Eth100-ASIC0       0           26              8
-Ethernet104    32,33,34,35       Ethernet14/1 14     Ext        100000      Eth104-ASIC0       0           27              8
-Ethernet108    36,37,38,39       Ethernet14/5 14     Ext        100000      Eth108-ASIC0       0           28              8
-Ethernet112    24,25,26,27       Ethernet15/1 15     Ext        100000      Eth112-ASIC0       0           29              8
-Ethernet116    28,29,30,31       Ethernet15/5 15     Ext        100000      Eth116-ASIC0       0           30              8
-Ethernet120    16,17,18,19       Ethernet16/1 16     Ext        100000      Eth120-ASIC0       0           31              8
-Ethernet124    20,21,22,23       Ethernet16/5 16     Ext        100000      Eth124-ASIC0       0           32              8
-Ethernet128    8,9,10,11         Ethernet17/1 17     Ext        100000      Eth128-ASIC0       0           33              8
-Ethernet132    12,13,14,15       Ethernet17/5 17     Ext        100000      Eth132-ASIC0       0           34              8
-Ethernet136    0,1,2,3           Ethernet18/1 18     Ext        100000      Eth136-ASIC0       0           35              8
-Ethernet140    4,5,6,7           Ethernet18/5 18     Ext        100000      Eth140-ASIC0       0           36              8
-Ethernet144    72,73,74,75       Ethernet19/1 19     Ext        100000      Eth144-ASIC1       1           1               8
-Ethernet148    76,77,78,79       Ethernet19/5 19     Ext        100000      Eth148-ASIC1       1           2               8
-Ethernet152    80,81,82,83       Ethernet20/1 20     Ext        100000      Eth152-ASIC1       1           3               8
-Ethernet156    84,85,86,87       Ethernet20/5 20     Ext        100000      Eth156-ASIC1       1           4               8
-Ethernet160    88,89,90,91       Ethernet21/1 21     Ext        100000      Eth160-ASIC1       1           5               8
-Ethernet164    92,93,94,95       Ethernet21/5 21     Ext        100000      Eth164-ASIC1       1           6               8
-Ethernet168    96,97,98,99       Ethernet22/1 22     Ext        100000      Eth168-ASIC1       1           7               8
-Ethernet172    100,101,102,103   Ethernet22/5 22     Ext        100000      Eth172-ASIC1       1           8               8
-Ethernet176    104,105,106,107   Ethernet23/1 23     Ext        100000      Eth176-ASIC1       1           9               8
-Ethernet180    108,109,110,111   Ethernet23/5 23     Ext        100000      Eth180-ASIC1       1           10              8
-Ethernet184    112,113,114,115   Ethernet24/1 24     Ext        100000      Eth184-ASIC1       1           11              8
-Ethernet188    116,117,118,119   Ethernet24/5 24     Ext        100000      Eth188-ASIC1       1           12              8
-Ethernet192    120,121,122,123   Ethernet25/1 25     Ext        100000      Eth192-ASIC1       1           13              8
-Ethernet196    124,125,126,127   Ethernet25/5 25     Ext        100000      Eth196-ASIC1       1           14              8
-Ethernet200    128,129,130,131   Ethernet26/1 26     Ext        100000      Eth200-ASIC1       1           15              8
-Ethernet204    132,133,134,135   Ethernet26/5 26     Ext        100000      Eth204-ASIC1       1           16              8
-Ethernet208    136,137,138,139   Ethernet27/1 27     Ext        100000      Eth208-ASIC1       1           17              8
-Ethernet212    140,141,142,143   Ethernet27/5 27     Ext        100000      Eth212-ASIC1       1           18              8
-Ethernet216    64,65,66,67       Ethernet28/1 28     Ext        100000      Eth216-ASIC1       0           19              8
-Ethernet220    68,69,70,71       Ethernet28/5 28     Ext        100000      Eth220-ASIC1       0           20              8
-Ethernet224    56,57,58,59       Ethernet29/1 29     Ext        100000      Eth224-ASIC1       0           21              8
-Ethernet228    60,61,62,63       Ethernet29/5 29     Ext        100000      Eth228-ASIC1       0           22              8
-Ethernet232    48,49,50,51       Ethernet30/1 30     Ext        100000      Eth232-ASIC1       0           23              8
-Ethernet236    52,53,54,55       Ethernet30/5 30     Ext        100000      Eth236-ASIC1       0           24              8
-Ethernet240    40,41,42,43       Ethernet31/1 31     Ext        100000      Eth240-ASIC1       0           25              8
-Ethernet244    44,45,46,47       Ethernet31/5 31     Ext        100000      Eth244-ASIC1       0           26              8
-Ethernet248    32,33,34,35       Ethernet32/1 32     Ext        100000      Eth248-ASIC1       0           27              8
-Ethernet252    36,37,38,39       Ethernet32/5 32     Ext        100000      Eth252-ASIC1       0           28              8
-Ethernet256    24,25,26,27       Ethernet33/1 33     Ext        100000      Eth256-ASIC1       0           29              8
-Ethernet260    28,29,30,31       Ethernet33/5 33     Ext        100000      Eth260-ASIC1       0           30              8
-Ethernet264    16,17,18,19       Ethernet34/1 34     Ext        100000      Eth264-ASIC1       0           31              8
-Ethernet268    20,21,22,23       Ethernet34/5 34     Ext        100000      Eth268-ASIC1       0           32              8
-Ethernet272    8,9,10,11         Ethernet35/1 35     Ext        100000      Eth272-ASIC1       0           33              8
-Ethernet276    12,13,14,15       Ethernet35/5 35     Ext        100000      Eth276-ASIC1       0           34              8
-Ethernet280    0,1,2,3           Ethernet36/1 36     Ext        100000      Eth280-ASIC1       0           35              8
-Ethernet284    4,5,6,7           Ethernet36/5 36     Ext        100000      Eth284-ASIC1       0           36              8
-Ethernet-Rec0  221               Recirc0/0    37     Rec        400000      Rcy0-ASIC0         0           221             8
-Ethernet-IB0   222               Recirc0/1    38     Inb        400000      Rcy1-ASIC0         1           222             8
-Ethernet-Rec1  221               Recirc0/0    39     Rec        400000      Rcy0-ASIC1         0           221             8
-Ethernet-IB1   222               Recirc0/1    40     Inb        400000      Rcy1-ASIC1         1           222             8
diff --git a/device/arista/x86_64-arista_7800r3a_36d2_lc/Arista-7800R3A-36D2-D36/port_config.ini b/device/arista/x86_64-arista_7800r3a_36d2_lc/Arista-7800R3A-36D2-D36/port_config.ini
deleted file mode 100644
index 37a8915cf32e..000000000000
--- a/device/arista/x86_64-arista_7800r3a_36d2_lc/Arista-7800R3A-36D2-D36/port_config.ini
+++ /dev/null
@@ -1,41 +0,0 @@
-# name         lanes                             alias        index  role       speed       asic_port_name     coreId      corePortId      numVoq
-Ethernet0      72,73,74,75,76,77,78,79           Ethernet1/1  1      Ext        400000      Eth0-ASIC0         1           1               8
-Ethernet8      80,81,82,83,84,85,86,87           Ethernet2/1  2      Ext        400000      Eth8-ASIC0         1           2               8
-Ethernet16     88,89,90,91,92,93,94,95           Ethernet3/1  3      Ext        400000      Eth16-ASIC0        1           3               8
-Ethernet24     96,97,98,99,100,101,102,103       Ethernet4/1  4      Ext        400000      Eth24-ASIC0        1           4               8
-Ethernet32     104,105,106,107,108,109,110,111   Ethernet5/1  5      Ext        400000      Eth32-ASIC0        1           5               8
-Ethernet40     112,113,114,115,116,117,118,119   Ethernet6/1  6      Ext        400000      Eth40-ASIC0        1           6               8
-Ethernet48     120,121,122,123,124,125,126,127   Ethernet7/1  7      Ext        400000      Eth48-ASIC0        1           7               8
-Ethernet56     128,129,130,131,132,133,134,135   Ethernet8/1  8      Ext        400000      Eth56-ASIC0        1           8               8
-Ethernet64     136,137,138,139,140,141,142,143   Ethernet9/1  9      Ext        400000      Eth64-ASIC0        1           9               8
-Ethernet72     64,65,66,67,68,69,70,71           Ethernet10/1 10     Ext        400000      Eth72-ASIC0        0           10              8
-Ethernet80     56,57,58,59,60,61,62,63           Ethernet11/1 11     Ext        400000      Eth80-ASIC0        0           11              8
-Ethernet88     48,49,50,51,52,53,54,55           Ethernet12/1 12     Ext        400000      Eth88-ASIC0        0           12              8
-Ethernet96     40,41,42,43,44,45,46,47           Ethernet13/1 13     Ext        400000      Eth96-ASIC0        0           13              8
-Ethernet104    32,33,34,35,36,37,38,39           Ethernet14/1 14     Ext        400000      Eth104-ASIC0       0           14              8
-Ethernet112    24,25,26,27,28,29,30,31           Ethernet15/1 15     Ext        400000      Eth112-ASIC0       0           15              8
-Ethernet120    16,17,18,19,20,21,22,23           Ethernet16/1 16     Ext        400000      Eth120-ASIC0       0           16              8
-Ethernet128    8,9,10,11,12,13,14,15             Ethernet17/1 17     Ext        400000      Eth128-ASIC0       0           17              8
-Ethernet136    0,1,2,3,4,5,6,7                   Ethernet18/1 18     Ext        400000      Eth136-ASIC0       0           18              8
-Ethernet144    72,73,74,75,76,77,78,79           Ethernet19/1 19     Ext        400000      Eth0-ASIC1         1           1               8
-Ethernet152    80,81,82,83,84,85,86,87           Ethernet20/1 20     Ext        400000      Eth8-ASIC1         1           2               8
-Ethernet160    88,89,90,91,92,93,94,95           Ethernet21/1 21     Ext        400000      Eth16-ASIC1        1           3               8
-Ethernet168    96,97,98,99,100,101,102,103       Ethernet22/1 22     Ext        400000      Eth24-ASIC1        1           4               8
-Ethernet176    104,105,106,107,108,109,110,111   Ethernet23/1 23     Ext        400000      Eth32-ASIC1        1           5               8
-Ethernet184    112,113,114,115,116,117,118,119   Ethernet24/1 24     Ext        400000      Eth40-ASIC1        1           6               8
-Ethernet192    120,121,122,123,124,125,126,127   Ethernet25/1 25     Ext        400000      Eth48-ASIC1        1           7               8
-Ethernet200    128,129,130,131,132,133,134,135   Ethernet26/1 26     Ext        400000      Eth56-ASIC1        1           8               8
-Ethernet208    136,137,138,139,140,141,142,143   Ethernet27/1 27     Ext        400000      Eth64-ASIC1        1           9               8
-Ethernet216    64,65,66,67,68,69,70,71           Ethernet28/1 28     Ext        400000      Eth72-ASIC1        0           10              8
-Ethernet224    56,57,58,59,60,61,62,63           Ethernet29/1 29     Ext        400000      Eth80-ASIC1        0           11              8
-Ethernet232    48,49,50,51,52,53,54,55           Ethernet30/1 30     Ext        400000      Eth88-ASIC1        0           12              8
-Ethernet240    40,41,42,43,44,45,46,47           Ethernet31/1 31     Ext        400000      Eth96-ASIC1        0           13              8
-Ethernet248    32,33,34,35,36,37,38,39           Ethernet32/1 32     Ext        400000      Eth104-ASIC1       0           14              8
-Ethernet256    24,25,26,27,28,29,30,31           Ethernet33/1 33     Ext        400000      Eth112-ASIC1       0           15              8
-Ethernet264    16,17,18,19,20,21,22,23           Ethernet34/1 34     Ext        400000      Eth120-ASIC1       0           16              8
-Ethernet272    8,9,10,11,12,13,14,15             Ethernet35/1 35     Ext        400000      Eth128-ASIC1       0           17              8
-Ethernet280    0,1,2,3,4,5,6,7                   Ethernet36/1 36     Ext        400000      Eth136-ASIC1       0           18              8
-Ethernet-Rec0  249                               Recirc0/0    37     Rec        400000      Rcy0-ASIC0         0           49              8
-Ethernet-IB0   250                               Recirc0/1    38     Inb        400000      Rcy1-ASIC0         1           50              8
-Ethernet-Rec1  249                               Recirc0/0    39     Rec        400000      Rcy0-ASIC1         0           49              8
-Ethernet-IB1   250                               Recirc0/1    40     Inb        400000      Rcy1-ASIC1         1           50              8
diff --git a/device/nokia/x86_64-nokia_ixr7250e_36x400g-r0/platform_ndk.json b/device/nokia/x86_64-nokia_ixr7250e_36x400g-r0/platform_ndk.json
index 4fbd84df39b6..f444a14a843c 100644
--- a/device/nokia/x86_64-nokia_ixr7250e_36x400g-r0/platform_ndk.json
+++ b/device/nokia/x86_64-nokia_ixr7250e_36x400g-r0/platform_ndk.json
@@ -14,7 +14,7 @@
     },
     {
         "key": "monitor_action",
-        "stringval": "warn"
+        "stringval": "reboot"
     },
     {
         "key": "grpc_thermal_monitor",
@@ -43,6 +43,26 @@
     {
       "key": "sonic_log_level",
       "stringval": "debug"
+    },
+    {
+      "key": "thermal_low_margin_threshold",
+      "intval": 10
+    },
+    {
+      "key": "thermal_log_current_threshold",
+      "intval": 2
+    },
+    {
+      "key": "thermal_log_margin_threshold",
+      "intval": 2
+    },
+    {
+      "key": "thermal_log_min_threshold",
+      "intval": 2
+    },
+    {
+      "key": "thermal_log_max_threshold",
+      "intval": 1
     }
     ]
 }
diff --git a/device/nokia/x86_64-nokia_ixr7250e_36x400g-r0/platform_reboot b/device/nokia/x86_64-nokia_ixr7250e_36x400g-r0/platform_reboot
index 43aace70f7ee..eb0bebef0e54 100755
--- a/device/nokia/x86_64-nokia_ixr7250e_36x400g-r0/platform_reboot
+++ b/device/nokia/x86_64-nokia_ixr7250e_36x400g-r0/platform_reboot
@@ -17,6 +17,10 @@ update_reboot_cause()
     sync
 }
 
+echo "Disable all SFPs"
+python3 -c 'import sonic_platform.platform; platform_chassis = sonic_platform.platform.Platform().get_chassis(); platform_chassis.tx_disable_all_sfps()'
+sleep 3
+
 # update the reboot_cuase file when reboot is trigger by device-mgr
 update_reboot_cause
 
diff --git a/device/nokia/x86_64-nokia_ixr7250e_sup-r0/platform_ndk.json b/device/nokia/x86_64-nokia_ixr7250e_sup-r0/platform_ndk.json
index dddefb0bcf73..9d68aacc59cd 100644
--- a/device/nokia/x86_64-nokia_ixr7250e_sup-r0/platform_ndk.json
+++ b/device/nokia/x86_64-nokia_ixr7250e_sup-r0/platform_ndk.json
@@ -31,6 +31,26 @@
     {
       "key": "sonic_log_level",
       "stringval": "debug"
+    },
+    {
+      "key": "thermal_low_margin_threshold",
+      "intval": 10
+    },
+    {
+      "key": "thermal_log_current_threshold",
+      "intval": 3
+    },
+    {
+      "key": "thermal_log_margin_threshold",
+      "intval": 3
+    },
+    {
+      "key": "thermal_log_min_threshold",
+      "intval": 5
+    },
+    {
+      "key": "thermal_log_max_threshold",
+      "intval": 1
     }
     ]
 }
diff --git a/device/nokia/x86_64-nokia_ixr7250e_sup-r0/platform_reboot b/device/nokia/x86_64-nokia_ixr7250e_sup-r0/platform_reboot
index 00ae76c9de86..dc4f934339c9 100755
--- a/device/nokia/x86_64-nokia_ixr7250e_sup-r0/platform_reboot
+++ b/device/nokia/x86_64-nokia_ixr7250e_sup-r0/platform_reboot
@@ -1,15 +1,39 @@
 #!/bin/bash
-echo "Rebooting all Linecards"
-python3 -c 'import sonic_platform.platform; platform_chassis = sonic_platform.platform.Platform().get_chassis(); platform_chassis.reboot_imms()'
-sleep 3
+
+DEVICE_MGR_REBOOT_FILE="/tmp/device_mgr_reboot"
+
+update_reboot_cause()
+{
+    DEVICE_MGR_REBOOT_FILE=/tmp/device_mgr_reboot
+    REBOOT_CAUSE_FILE=/host/reboot-cause/reboot-cause.txt
+    DEVICE_REBOOT_CAUSE_FILE=/etc/opt/srlinux/reboot-cause.txt
+    if [ -e  $DEVICE_MGR_REBOOT_FILE ]; then
+        if [ -e $DEVICE_REBOOT_CAUSE_FILE ]; then
+            cp -f $DEVICE_REBOOT_CAUSE_FILE $REBOOT_CAUSE_FILE
+        fi
+        rm -f $DEVICE_MGR_REBOOT_FILE
+    else
+        touch /etc/opt/srlinux/devmgr_reboot_cause.done
+        rm -f $DEVICE_REBOOT_CAUSE_FILE &> /dev/null
+    fi
+    sync
+}
+
+if [ ! -e $DEVICE_MGR_REBOOT_FILE ]; then
+    echo "Rebooting all Linecards"
+    python3 -c 'import sonic_platform.platform; platform_chassis = sonic_platform.platform.Platform().get_chassis(); platform_chassis.reboot_imms()'
+    sleep 3
+fi
+
+# update the reboot_cuase file when reboot is trigger by device-mgr
+update_reboot_cause
+
 systemctl stop nokia-watchdog.service
 sleep 2
 echo "w" > /dev/watchdog
 kick_date=`date -u`
 echo "last watchdog kick $kick_date" > /var/log/nokia-watchdog-last.log
 rm -f /sys/firmware/efi/efivars/dump-*
-touch /etc/opt/srlinux/devmgr_reboot_cause.done
-rm -f /etc/opt/srlinux/reboot-cause.txt
 echo "Shutdown midplane"
 ifconfig xe0 down
 sync
diff --git a/dockers/docker-base-bullseye/Dockerfile.j2 b/dockers/docker-base-bullseye/Dockerfile.j2
index 1fa7196ea67c..b31e986e770d 100644
--- a/dockers/docker-base-bullseye/Dockerfile.j2
+++ b/dockers/docker-base-bullseye/Dockerfile.j2
@@ -119,10 +119,10 @@ RUN apt-get clean -y                     && \
     apt-get autoremove -y                && \
     rm -rf /var/lib/apt/lists/* /tmp/* ~/.cache
 
+COPY ["etc/rsyslog.conf", "/etc/rsyslog.conf"]
 COPY ["etc/rsyslog.d/*", "/etc/rsyslog.d/"]
 COPY ["root/.vimrc", "/root/.vimrc"]
 
 RUN ln /usr/bin/vim.tiny /usr/bin/vim
 
 COPY ["etc/supervisor/supervisord.conf", "/etc/supervisor/"]
-COPY ["etc/supervisor/containercfgd.conf", "/etc/supervisor/conf.d/"]
diff --git a/dockers/docker-base-bullseye/etc/rsyslog.conf b/dockers/docker-base-bullseye/etc/rsyslog.conf
new file mode 100644
index 000000000000..7a6667d68a13
--- /dev/null
+++ b/dockers/docker-base-bullseye/etc/rsyslog.conf
@@ -0,0 +1,78 @@
+#
+#  /etc/rsyslog.conf    Configuration file for rsyslog.
+#
+#                       For more information see
+#                       /usr/share/doc/rsyslog-doc/html/rsyslog_conf.html
+
+
+#################
+#### MODULES ####
+#################
+
+$ModLoad imuxsock # provides support for local system logging
+
+#
+# Set a rate limit on messages from the container
+#
+$SystemLogRateLimitInterval 300
+$SystemLogRateLimitBurst 20000
+
+#$ModLoad imklog  # provides kernel logging support
+#$ModLoad immark  # provides --MARK-- message capability
+
+# provides UDP syslog reception
+#$ModLoad imudp
+#$UDPServerRun 514
+
+# provides TCP syslog reception
+#$ModLoad imtcp
+#$InputTCPServerRun 514
+
+
+###########################
+#### GLOBAL DIRECTIVES ####
+###########################
+
+set $.CONTAINER_NAME=getenv("CONTAINER_NAME");
+
+# Set remote syslog server
+template (name="ForwardFormatInContainer" type="string" string="<%PRI%>%TIMESTAMP:::date-rfc3339% %HOSTNAME% %$.CONTAINER_NAME%#%syslogtag%%msg:::sp-if-no-1st-sp%%msg%")
+*.* action(type="omfwd" target=`echo $SYSLOG_TARGET_IP` port="514" protocol="udp" Template="ForwardFormatInContainer")
+
+#
+# Use traditional timestamp format.
+# To enable high precision timestamps, comment out the following line.
+#
+#$ActionFileDefaultTemplate RSYSLOG_TraditionalFileFormat
+
+# Define a custom template
+$template SONiCFileFormat,"%TIMESTAMP%.%timestamp:::date-subseconds% %HOSTNAME% %syslogseverity-text:::uppercase% %$.CONTAINER_NAME%#%syslogtag%%msg:::sp-if-no-1st-sp%%msg:::drop-last-lf%\n"
+$ActionFileDefaultTemplate SONiCFileFormat
+
+#
+# Set the default permissions for all log files.
+#
+$FileOwner root
+$FileGroup adm
+$FileCreateMode 0640
+$DirCreateMode 0755
+$Umask 0022
+
+#
+# Where to place spool and state files
+#
+$WorkDirectory /var/spool/rsyslog
+
+#
+# Include all config files in /etc/rsyslog.d/
+#
+$IncludeConfig /etc/rsyslog.d/*.conf
+
+#
+# Suppress duplicate messages and report "message repeated n times"
+#
+$RepeatedMsgReduction on
+
+###############
+#### RULES ####
+###############
\ No newline at end of file
diff --git a/dockers/docker-base-buster/Dockerfile.j2 b/dockers/docker-base-buster/Dockerfile.j2
index 3b76ef691718..30be76bc902d 100644
--- a/dockers/docker-base-buster/Dockerfile.j2
+++ b/dockers/docker-base-buster/Dockerfile.j2
@@ -117,10 +117,10 @@ RUN apt-get clean -y                     && \
     apt-get autoremove -y                && \
     rm -rf /var/lib/apt/lists/* /tmp/* ~/.cache/
 
+COPY ["etc/rsyslog.conf", "/etc/rsyslog.conf"]
 COPY ["etc/rsyslog.d/*", "/etc/rsyslog.d/"]
 COPY ["root/.vimrc", "/root/.vimrc"]
 
 RUN ln /usr/bin/vim.tiny /usr/bin/vim
 
 COPY ["etc/supervisor/supervisord.conf", "/etc/supervisor/"]
-COPY ["etc/supervisor/containercfgd.conf", "/etc/supervisor/conf.d/"]
diff --git a/dockers/docker-base-buster/etc/rsyslog.conf b/dockers/docker-base-buster/etc/rsyslog.conf
new file mode 100644
index 000000000000..7a6667d68a13
--- /dev/null
+++ b/dockers/docker-base-buster/etc/rsyslog.conf
@@ -0,0 +1,78 @@
+#
+#  /etc/rsyslog.conf    Configuration file for rsyslog.
+#
+#                       For more information see
+#                       /usr/share/doc/rsyslog-doc/html/rsyslog_conf.html
+
+
+#################
+#### MODULES ####
+#################
+
+$ModLoad imuxsock # provides support for local system logging
+
+#
+# Set a rate limit on messages from the container
+#
+$SystemLogRateLimitInterval 300
+$SystemLogRateLimitBurst 20000
+
+#$ModLoad imklog  # provides kernel logging support
+#$ModLoad immark  # provides --MARK-- message capability
+
+# provides UDP syslog reception
+#$ModLoad imudp
+#$UDPServerRun 514
+
+# provides TCP syslog reception
+#$ModLoad imtcp
+#$InputTCPServerRun 514
+
+
+###########################
+#### GLOBAL DIRECTIVES ####
+###########################
+
+set $.CONTAINER_NAME=getenv("CONTAINER_NAME");
+
+# Set remote syslog server
+template (name="ForwardFormatInContainer" type="string" string="<%PRI%>%TIMESTAMP:::date-rfc3339% %HOSTNAME% %$.CONTAINER_NAME%#%syslogtag%%msg:::sp-if-no-1st-sp%%msg%")
+*.* action(type="omfwd" target=`echo $SYSLOG_TARGET_IP` port="514" protocol="udp" Template="ForwardFormatInContainer")
+
+#
+# Use traditional timestamp format.
+# To enable high precision timestamps, comment out the following line.
+#
+#$ActionFileDefaultTemplate RSYSLOG_TraditionalFileFormat
+
+# Define a custom template
+$template SONiCFileFormat,"%TIMESTAMP%.%timestamp:::date-subseconds% %HOSTNAME% %syslogseverity-text:::uppercase% %$.CONTAINER_NAME%#%syslogtag%%msg:::sp-if-no-1st-sp%%msg:::drop-last-lf%\n"
+$ActionFileDefaultTemplate SONiCFileFormat
+
+#
+# Set the default permissions for all log files.
+#
+$FileOwner root
+$FileGroup adm
+$FileCreateMode 0640
+$DirCreateMode 0755
+$Umask 0022
+
+#
+# Where to place spool and state files
+#
+$WorkDirectory /var/spool/rsyslog
+
+#
+# Include all config files in /etc/rsyslog.d/
+#
+$IncludeConfig /etc/rsyslog.d/*.conf
+
+#
+# Suppress duplicate messages and report "message repeated n times"
+#
+$RepeatedMsgReduction on
+
+###############
+#### RULES ####
+###############
\ No newline at end of file
diff --git a/dockers/docker-base-buster/etc/supervisor/containercfgd.conf b/dockers/docker-base-buster/etc/supervisor/containercfgd.conf
deleted file mode 100644
index 704b5490c3fb..000000000000
--- a/dockers/docker-base-buster/etc/supervisor/containercfgd.conf
+++ /dev/null
@@ -1,9 +0,0 @@
-[program:containercfgd]
-command=python3 /usr/local/bin/containercfgd
-priority=99
-autostart=false
-autorestart=unexpected
-stdout_logfile=syslog
-stderr_logfile=syslog
-dependent_startup=true
-dependent_startup_wait_for=rsyslogd:running
diff --git a/dockers/docker-base-stretch/Dockerfile.j2 b/dockers/docker-base-stretch/Dockerfile.j2
index 5db96e37ba0b..dcdde00fb358 100644
--- a/dockers/docker-base-stretch/Dockerfile.j2
+++ b/dockers/docker-base-stretch/Dockerfile.j2
@@ -113,10 +113,10 @@ RUN apt-get clean -y                     && \
     apt-get autoremove -y                && \
     rm -rf /var/lib/apt/lists/* /tmp/*
 
+COPY ["etc/rsyslog.conf", "/etc/rsyslog.conf"]
 COPY ["etc/rsyslog.d/*", "/etc/rsyslog.d/"]
 COPY ["root/.vimrc", "/root/.vimrc"]
 
 RUN ln /usr/bin/vim.tiny /usr/bin/vim
 
 COPY ["etc/supervisor/supervisord.conf", "/etc/supervisor/"]
-COPY ["etc/supervisor/containercfgd.conf", "/etc/supervisor/conf.d/"]
diff --git a/dockers/docker-base-stretch/etc/rsyslog.conf b/dockers/docker-base-stretch/etc/rsyslog.conf
new file mode 100644
index 000000000000..7a6667d68a13
--- /dev/null
+++ b/dockers/docker-base-stretch/etc/rsyslog.conf
@@ -0,0 +1,78 @@
+#
+#  /etc/rsyslog.conf    Configuration file for rsyslog.
+#
+#                       For more information see
+#                       /usr/share/doc/rsyslog-doc/html/rsyslog_conf.html
+
+
+#################
+#### MODULES ####
+#################
+
+$ModLoad imuxsock # provides support for local system logging
+
+#
+# Set a rate limit on messages from the container
+#
+$SystemLogRateLimitInterval 300
+$SystemLogRateLimitBurst 20000
+
+#$ModLoad imklog  # provides kernel logging support
+#$ModLoad immark  # provides --MARK-- message capability
+
+# provides UDP syslog reception
+#$ModLoad imudp
+#$UDPServerRun 514
+
+# provides TCP syslog reception
+#$ModLoad imtcp
+#$InputTCPServerRun 514
+
+
+###########################
+#### GLOBAL DIRECTIVES ####
+###########################
+
+set $.CONTAINER_NAME=getenv("CONTAINER_NAME");
+
+# Set remote syslog server
+template (name="ForwardFormatInContainer" type="string" string="<%PRI%>%TIMESTAMP:::date-rfc3339% %HOSTNAME% %$.CONTAINER_NAME%#%syslogtag%%msg:::sp-if-no-1st-sp%%msg%")
+*.* action(type="omfwd" target=`echo $SYSLOG_TARGET_IP` port="514" protocol="udp" Template="ForwardFormatInContainer")
+
+#
+# Use traditional timestamp format.
+# To enable high precision timestamps, comment out the following line.
+#
+#$ActionFileDefaultTemplate RSYSLOG_TraditionalFileFormat
+
+# Define a custom template
+$template SONiCFileFormat,"%TIMESTAMP%.%timestamp:::date-subseconds% %HOSTNAME% %syslogseverity-text:::uppercase% %$.CONTAINER_NAME%#%syslogtag%%msg:::sp-if-no-1st-sp%%msg:::drop-last-lf%\n"
+$ActionFileDefaultTemplate SONiCFileFormat
+
+#
+# Set the default permissions for all log files.
+#
+$FileOwner root
+$FileGroup adm
+$FileCreateMode 0640
+$DirCreateMode 0755
+$Umask 0022
+
+#
+# Where to place spool and state files
+#
+$WorkDirectory /var/spool/rsyslog
+
+#
+# Include all config files in /etc/rsyslog.d/
+#
+$IncludeConfig /etc/rsyslog.d/*.conf
+
+#
+# Suppress duplicate messages and report "message repeated n times"
+#
+$RepeatedMsgReduction on
+
+###############
+#### RULES ####
+###############
\ No newline at end of file
diff --git a/dockers/docker-base-stretch/etc/supervisor/containercfgd.conf b/dockers/docker-base-stretch/etc/supervisor/containercfgd.conf
deleted file mode 100644
index 8d938e6f0ff3..000000000000
--- a/dockers/docker-base-stretch/etc/supervisor/containercfgd.conf
+++ /dev/null
@@ -1,9 +0,0 @@
-[program:containercfgd]
-command=python /usr/local/bin/containercfgd
-priority=99
-autostart=false
-autorestart=unexpected
-stdout_logfile=syslog
-stderr_logfile=syslog
-dependent_startup=true
-dependent_startup_wait_for=rsyslogd:running
diff --git a/dockers/docker-base/Dockerfile.j2 b/dockers/docker-base/Dockerfile.j2
index cd839e6075e0..7b812e28b13a 100644
--- a/dockers/docker-base/Dockerfile.j2
+++ b/dockers/docker-base/Dockerfile.j2
@@ -49,6 +49,7 @@ RUN apt-get -y install \
     rsyslog            \
     less
 
+COPY ["etc/rsyslog.conf", "/etc/rsyslog.conf"]
 COPY ["etc/rsyslog.d/*", "/etc/rsyslog.d/"]
 COPY ["root/.vimrc", "/root/.vimrc"]
 
@@ -67,7 +68,6 @@ RUN mkdir -p /etc/supervisor/conf.d
 RUN mkdir -p /var/log/supervisor
 
 COPY ["etc/supervisor/supervisord.conf", "/etc/supervisor/"]
-COPY ["etc/supervisor/containercfgd.conf", "/etc/supervisor/conf.d/"]
 
 RUN apt-get -y purge   \
     exim4              \
diff --git a/dockers/docker-base/etc/rsyslog.conf b/dockers/docker-base/etc/rsyslog.conf
new file mode 100644
index 000000000000..7a6667d68a13
--- /dev/null
+++ b/dockers/docker-base/etc/rsyslog.conf
@@ -0,0 +1,78 @@
+#
+#  /etc/rsyslog.conf    Configuration file for rsyslog.
+#
+#                       For more information see
+#                       /usr/share/doc/rsyslog-doc/html/rsyslog_conf.html
+
+
+#################
+#### MODULES ####
+#################
+
+$ModLoad imuxsock # provides support for local system logging
+
+#
+# Set a rate limit on messages from the container
+#
+$SystemLogRateLimitInterval 300
+$SystemLogRateLimitBurst 20000
+
+#$ModLoad imklog  # provides kernel logging support
+#$ModLoad immark  # provides --MARK-- message capability
+
+# provides UDP syslog reception
+#$ModLoad imudp
+#$UDPServerRun 514
+
+# provides TCP syslog reception
+#$ModLoad imtcp
+#$InputTCPServerRun 514
+
+
+###########################
+#### GLOBAL DIRECTIVES ####
+###########################
+
+set $.CONTAINER_NAME=getenv("CONTAINER_NAME");
+
+# Set remote syslog server
+template (name="ForwardFormatInContainer" type="string" string="<%PRI%>%TIMESTAMP:::date-rfc3339% %HOSTNAME% %$.CONTAINER_NAME%#%syslogtag%%msg:::sp-if-no-1st-sp%%msg%")
+*.* action(type="omfwd" target=`echo $SYSLOG_TARGET_IP` port="514" protocol="udp" Template="ForwardFormatInContainer")
+
+#
+# Use traditional timestamp format.
+# To enable high precision timestamps, comment out the following line.
+#
+#$ActionFileDefaultTemplate RSYSLOG_TraditionalFileFormat
+
+# Define a custom template
+$template SONiCFileFormat,"%TIMESTAMP%.%timestamp:::date-subseconds% %HOSTNAME% %syslogseverity-text:::uppercase% %$.CONTAINER_NAME%#%syslogtag%%msg:::sp-if-no-1st-sp%%msg:::drop-last-lf%\n"
+$ActionFileDefaultTemplate SONiCFileFormat
+
+#
+# Set the default permissions for all log files.
+#
+$FileOwner root
+$FileGroup adm
+$FileCreateMode 0640
+$DirCreateMode 0755
+$Umask 0022
+
+#
+# Where to place spool and state files
+#
+$WorkDirectory /var/spool/rsyslog
+
+#
+# Include all config files in /etc/rsyslog.d/
+#
+$IncludeConfig /etc/rsyslog.d/*.conf
+
+#
+# Suppress duplicate messages and report "message repeated n times"
+#
+$RepeatedMsgReduction on
+
+###############
+#### RULES ####
+###############
\ No newline at end of file
diff --git a/dockers/docker-base/etc/supervisor/containercfgd.conf b/dockers/docker-base/etc/supervisor/containercfgd.conf
deleted file mode 100644
index 8d938e6f0ff3..000000000000
--- a/dockers/docker-base/etc/supervisor/containercfgd.conf
+++ /dev/null
@@ -1,9 +0,0 @@
-[program:containercfgd]
-command=python /usr/local/bin/containercfgd
-priority=99
-autostart=false
-autorestart=unexpected
-stdout_logfile=syslog
-stderr_logfile=syslog
-dependent_startup=true
-dependent_startup_wait_for=rsyslogd:running
diff --git a/dockers/docker-database/docker-database-init.sh b/dockers/docker-database/docker-database-init.sh
index e2c3fcb727d2..53c16793046f 100755
--- a/dockers/docker-database/docker-database-init.sh
+++ b/dockers/docker-database/docker-database-init.sh
@@ -51,8 +51,9 @@ if [[ $DATABASE_TYPE == "chassisdb" ]]; then
     echo "Init docker-database-chassis..."
     update_chassisdb_config -j $db_cfg_file_tmp -k -p $chassis_db_port
     # generate all redis server supervisord configuration file
-    sonic-cfggen -j $db_cfg_file_tmp -t /usr/share/sonic/templates/supervisord.conf.j2 > /etc/supervisor/conf.d/supervisord.conf
-    sonic-cfggen -j $db_cfg_file_tmp -t /usr/share/sonic/templates/critical_processes.j2 > /etc/supervisor/critical_processes
+    sonic-cfggen -j $db_cfg_file_tmp \
+    -t /usr/share/sonic/templates/supervisord.conf.j2,/etc/supervisor/conf.d/supervisord.conf \
+    -t /usr/share/sonic/templates/critical_processes.j2,/etc/supervisor/critical_processes
     rm $db_cfg_file_tmp
     exec /usr/local/bin/supervisord
     exit 0
@@ -69,8 +70,9 @@ then
 fi
 # delete chassisdb config to generate supervisord config
 update_chassisdb_config -j $db_cfg_file_tmp -d
-sonic-cfggen -j $db_cfg_file_tmp -t /usr/share/sonic/templates/supervisord.conf.j2 > /etc/supervisor/conf.d/supervisord.conf
-sonic-cfggen -j $db_cfg_file_tmp -t /usr/share/sonic/templates/critical_processes.j2 > /etc/supervisor/critical_processes
+sonic-cfggen -j $db_cfg_file_tmp \
+-t /usr/share/sonic/templates/supervisord.conf.j2,/etc/supervisor/conf.d/supervisord.conf \
+-t /usr/share/sonic/templates/critical_processes.j2,/etc/supervisor/critical_processes
 
 if [[ "$start_chassis_db" != "1" ]] && [[ -z "$chassis_db_address" ]]; then
      cp $db_cfg_file_tmp $db_cfg_file
diff --git a/dockers/docker-database/supervisord.conf.j2 b/dockers/docker-database/supervisord.conf.j2
index c73c6e783e81..37af0220bb1e 100644
--- a/dockers/docker-database/supervisord.conf.j2
+++ b/dockers/docker-database/supervisord.conf.j2
@@ -38,12 +38,10 @@ dependent_startup=true
 {%- endif -%}
 command=/bin/bash -c "{ [[ -s /var/lib/{{ redis_inst }}/dump.rdb ]] || rm -f /var/lib/{{ redis_inst }}/dump.rdb; } && mkdir -p /var/lib/{{ redis_inst }} && exec /usr/bin/redis-server /etc/redis/redis.conf --bind {{ LOOPBACK_IP }} {{ redis_items['hostname'] }} --port {{ redis_items['port'] }} --unixsocket {{ redis_items['unix_socket_path'] }} --pidfile /var/run/redis/{{ redis_inst }}.pid --dir /var/lib/{{ redis_inst }}"
 priority=2
-autostart=false
+autostart=true
 autorestart=false
 stdout_logfile=syslog
 stderr_logfile=syslog
-dependent_startup=true
-dependent_startup_wait_for=rsyslogd:running
 {%     endfor %}
 {% endif %}
 
diff --git a/dockers/docker-fpm-frr/TS b/dockers/docker-fpm-frr/TS
index 75472d8c6958..888b2c20b847 100755
--- a/dockers/docker-fpm-frr/TS
+++ b/dockers/docker-fpm-frr/TS
@@ -16,7 +16,9 @@ function check_not_installed()
     is_internal_route_map $route_map_name && continue
     echo "$config" | egrep -q "^route-map $route_map_name permit 20$"
     c=$((c+$?))
-    echo "$config" | egrep -q "^route-map $route_map_name deny 30$"
+    echo "$config" | egrep -q "^route-map $route_map_name permit 30$"
+    c=$((c+$?))
+    echo "$config" | egrep -q "^route-map $route_map_name deny 40$"
     c=$((c+$?))
   done
   return $c
@@ -33,7 +35,10 @@ function check_installed()
     echo "$config" | egrep -q "^route-map $route_map_name permit 20$"
     c=$((c+$?))
     e=$((e+1))
-    echo "$config" | egrep -q "^route-map $route_map_name deny 30$"
+    echo "$config" | egrep -q "^route-map $route_map_name permit 30$"
+    c=$((c+$?))
+    e=$((e+1))
+    echo "$config" | egrep -q "^route-map $route_map_name deny 40$"
     c=$((c+$?))
     e=$((e+1))
   done
diff --git a/dockers/docker-fpm-frr/frr/bgpd/bgpd.main.conf.j2 b/dockers/docker-fpm-frr/frr/bgpd/bgpd.main.conf.j2
index 793ab055c215..f13c11f91e48 100644
--- a/dockers/docker-fpm-frr/frr/bgpd/bgpd.main.conf.j2
+++ b/dockers/docker-fpm-frr/frr/bgpd/bgpd.main.conf.j2
@@ -66,7 +66,6 @@ router bgp {{ DEVICE_METADATA['localhost']['bgp_asn'] }}
 !
 {% block bgp_init %}
   bgp log-neighbor-changes
-  bgp suppress-fib-pending
   no bgp default ipv4-unicast
   no bgp ebgp-requires-policy
 {% if (DEVICE_METADATA is defined) and ('localhost' in DEVICE_METADATA) and ('subtype' in DEVICE_METADATA['localhost']) and (DEVICE_METADATA['localhost']['subtype'].lower() == 'dualtor') %}
diff --git a/dockers/docker-fpm-frr/frr/bgpd/templates/internal/policies.conf.j2 b/dockers/docker-fpm-frr/frr/bgpd/templates/internal/policies.conf.j2
index 855a68635653..5f9c8a83e29a 100644
--- a/dockers/docker-fpm-frr/frr/bgpd/templates/internal/policies.conf.j2
+++ b/dockers/docker-fpm-frr/frr/bgpd/templates/internal/policies.conf.j2
@@ -4,26 +4,56 @@
 !
 {% from "common/functions.conf.j2" import get_ipv4_loopback_address %}
 !
-route-map FROM_BGP_INTERNAL_PEER_V4 permit 100
+{% if CONFIG_DB__DEVICE_METADATA['localhost']['sub_role'] == 'BackEnd' %}
+route-map FROM_BGP_INTERNAL_PEER_V4 permit 1
+ set originator-id {{ get_ipv4_loopback_address(CONFIG_DB__LOOPBACK_INTERFACE, "Loopback4096") | ip }}
 !
-route-map TO_BGP_INTERNAL_PEER_V4 permit 100
+route-map FROM_BGP_INTERNAL_PEER_V6 permit 1
+ set ipv6 next-hop prefer-global
+ on-match next
 !
+route-map FROM_BGP_INTERNAL_PEER_V6 permit 2
+ set originator-id {{ get_ipv4_loopback_address(CONFIG_DB__LOOPBACK_INTERFACE, "Loopback4096") | ip }}
+{% elif CONFIG_DB__DEVICE_METADATA['localhost']['switch_type'] == 'chassis-packet' %}
+bgp community-list standard DEVICE_INTERNAL_COMMUNITY permit {{ constants.bgp.internal_community }}
+!
+route-map FROM_BGP_INTERNAL_PEER_V4 permit 1
+  match community DEVICE_INTERNAL_COMMUNITY
+  set comm-list DEVICE_INTERNAL_COMMUNITY delete
+  set tag {{ constants.bgp.internal_community_match_tag }}
 !
 route-map FROM_BGP_INTERNAL_PEER_V6 permit 1
  set ipv6 next-hop prefer-global
  on-match next
 !
-route-map FROM_BGP_INTERNAL_PEER_V6 permit 100
+route-map FROM_BGP_INTERNAL_PEER_V6 permit 2
+  match community DEVICE_INTERNAL_COMMUNITY
+  set comm-list DEVICE_INTERNAL_COMMUNITY delete
+  set tag {{ constants.bgp.internal_community_match_tag }}
 !
-route-map TO_BGP_INTERNAL_PEER_V6 permit 100
+route-map TO_BGP_INTERNAL_PEER_V4 permit 1
+  match ip address prefix-list PL_LoopbackV4
+  set community {{ constants.bgp.internal_community }}
 !
-{% if CONFIG_DB__DEVICE_METADATA['localhost']['sub_role'] == 'BackEnd' %}
-route-map FROM_BGP_INTERNAL_PEER_V4 permit 2
- set originator-id {{ get_ipv4_loopback_address(CONFIG_DB__LOOPBACK_INTERFACE, "Loopback4096") | ip }}
+route-map TO_BGP_INTERNAL_PEER_V6 permit 2
+  match ipv6 address prefix-list PL_LoopbackV6
+  set community {{ constants.bgp.internal_community }}
+!
+{% else %}
+route-map FROM_BGP_INTERNAL_PEER_V6 permit 1
+ set ipv6 next-hop prefer-global
+ on-match next
 !
-route-map FROM_BGP_INTERNAL_PEER_V6 permit 2
- set originator-id {{ get_ipv4_loopback_address(CONFIG_DB__LOOPBACK_INTERFACE, "Loopback4096") | ip }}
 {% endif %}
 !
+route-map FROM_BGP_INTERNAL_PEER_V4 permit 100
+!
+route-map FROM_BGP_INTERNAL_PEER_V6 permit 100
+!
+route-map TO_BGP_INTERNAL_PEER_V4 permit 100
+!
+route-map TO_BGP_INTERNAL_PEER_V6 permit 100
+!
+!
 ! end of template: bgpd/templates/internal/policies.conf.j2
 !
diff --git a/dockers/docker-fpm-frr/frr/bgpd/templates/voq_chassis/policies.conf.j2 b/dockers/docker-fpm-frr/frr/bgpd/templates/voq_chassis/policies.conf.j2
index c26db7bde241..9ffe00d14a26 100644
--- a/dockers/docker-fpm-frr/frr/bgpd/templates/voq_chassis/policies.conf.j2
+++ b/dockers/docker-fpm-frr/frr/bgpd/templates/voq_chassis/policies.conf.j2
@@ -1,8 +1,19 @@
 !
 ! template: bgpd/templates/voq_chassis/policies.conf.j2
 !
+bgp community-list standard DEVICE_INTERNAL_COMMUNITY permit {{ constants.bgp.internal_community }}
+!
+route-map FROM_VOQ_CHASSIS_V4_PEER permit 1
+  match community DEVICE_INTERNAL_COMMUNITY
+  set comm-list DEVICE_INTERNAL_COMMUNITY delete
+  set tag {{ constants.bgp.internal_community_match_tag }}
+!
 route-map FROM_VOQ_CHASSIS_V4_PEER permit 100
 !
+route-map TO_VOQ_CHASSIS_V4_PEER permit 1
+  match ip address prefix-list PL_LoopbackV4
+  set community {{ constants.bgp.internal_community }}
+!
 route-map TO_VOQ_CHASSIS_V4_PEER permit 100
 !
 !
@@ -10,8 +21,17 @@ route-map FROM_VOQ_CHASSIS_V6_PEER permit 1
  set ipv6 next-hop prefer-global
  on-match next
 !
+route-map FROM_VOQ_CHASSIS_V6_PEER permit 2
+  match community DEVICE_INTERNAL_COMMUNITY
+  set comm-list DEVICE_INTERNAL_COMMUNITY delete
+  set tag {{ constants.bgp.internal_community_match_tag }}
+!
 route-map FROM_VOQ_CHASSIS_V6_PEER permit 100
 !
+route-map TO_VOQ_CHASSIS_V6_PEER permit 1
+  match ipv6 address prefix-list PL_LoopbackV6
+  set community {{ constants.bgp.internal_community }}
+!
 route-map TO_VOQ_CHASSIS_V6_PEER permit 100
 !
 ! end of template: bgpd/templates/voq_chassis/policies.conf.j2
diff --git a/dockers/docker-fpm-frr/frr/bgpd/tsa/bgpd.tsa.isolate.conf.j2 b/dockers/docker-fpm-frr/frr/bgpd/tsa/bgpd.tsa.isolate.conf.j2
index 1256d1cd4f96..2321643f8d04 100644
--- a/dockers/docker-fpm-frr/frr/bgpd/tsa/bgpd.tsa.isolate.conf.j2
+++ b/dockers/docker-fpm-frr/frr/bgpd/tsa/bgpd.tsa.isolate.conf.j2
@@ -1,5 +1,8 @@
 route-map {{ route_map_name }} permit 20
   match {{ ip_protocol }} address prefix-list PL_Loopback{{ ip_version }}
   set community {{ constants.bgp.traffic_shift_community }}
-route-map {{ route_map_name }} deny 30
+route-map {{ route_map_name }} permit 30
+  match tag {{ constants.bgp.internal_community_match_tag }}
+  set community {{ constants.bgp.traffic_shift_community }}
+route-map {{ route_map_name }} deny 40
 !
diff --git a/dockers/docker-fpm-frr/frr/bgpd/tsa/bgpd.tsa.unisolate.conf.j2 b/dockers/docker-fpm-frr/frr/bgpd/tsa/bgpd.tsa.unisolate.conf.j2
index 649f6d8e9db8..7ba4c1bd6f32 100644
--- a/dockers/docker-fpm-frr/frr/bgpd/tsa/bgpd.tsa.unisolate.conf.j2
+++ b/dockers/docker-fpm-frr/frr/bgpd/tsa/bgpd.tsa.unisolate.conf.j2
@@ -1,3 +1,4 @@
 no route-map {{ route_map_name }} permit 20
-no route-map {{ route_map_name }} deny 30
+no route-map {{ route_map_name }} permit 30
+no route-map {{ route_map_name }} deny 40
 !
diff --git a/dockers/docker-fpm-frr/frr/supervisord/supervisord.conf.j2 b/dockers/docker-fpm-frr/frr/supervisord/supervisord.conf.j2
index f6edc17a5529..2c99eb66f7c5 100644
--- a/dockers/docker-fpm-frr/frr/supervisord/supervisord.conf.j2
+++ b/dockers/docker-fpm-frr/frr/supervisord/supervisord.conf.j2
@@ -30,7 +30,7 @@ stderr_logfile=syslog
 dependent_startup=true
 
 [program:zebra]
-command=/usr/lib/frr/zebra -A 127.0.0.1 -s 90000000 -M dplane_fpm_nl -M snmp --asic-offload=notify_on_offload
+command=/usr/lib/frr/zebra -A 127.0.0.1 -s 90000000 -M fpm -M snmp
 priority=4
 autostart=false
 autorestart=false
diff --git a/dockers/docker-orchagent/docker-init.j2 b/dockers/docker-orchagent/docker-init.j2
index bea9befc0b6f..399f6997b062 100755
--- a/dockers/docker-orchagent/docker-init.j2
+++ b/dockers/docker-orchagent/docker-init.j2
@@ -23,8 +23,8 @@ CFGGEN_PARAMS=" \
     -t /usr/share/sonic/templates/wait_for_link.sh.j2,/usr/bin/wait_for_link.sh \
 "
 VLAN=$(sonic-cfggen $CFGGEN_PARAMS)
-SUBTYPE=$(sonic-cfggen -d -v "DEVICE_METADATA['localhost']['subtype']")
-SWITCH_TYPE=${SWITCH_TYPE:-`sonic-cfggen -d -v "DEVICE_METADATA['localhost']['switch_type']"`}
+SUBTYPE=$(sonic-db-cli -s CONFIG_DB HGET 'DEVICE_METADATA|localhost' 'subtype')
+SWITCH_TYPE=${SWITCH_TYPE:-`sonic-db-cli -s CONFIG_DB HGET 'DEVICE_METADATA|localhost' 'switch_type'`}
 chmod +x /usr/bin/wait_for_link.sh
 
 # Executed platform specific initialization tasks.
diff --git a/dockers/docker-platform-monitor/Dockerfile.j2 b/dockers/docker-platform-monitor/Dockerfile.j2
index 1c6b484814c7..446c145a6df6 100755
--- a/dockers/docker-platform-monitor/Dockerfile.j2
+++ b/dockers/docker-platform-monitor/Dockerfile.j2
@@ -88,6 +88,7 @@ COPY ["docker-pmon.supervisord.conf.j2", "docker_init.j2", "/usr/share/sonic/tem
 COPY ["ssd_tools/*", "/usr/bin/"]
 COPY ["files/supervisor-proc-exit-listener", "/usr/bin"]
 COPY ["critical_processes", "/etc/supervisor"]
+COPY ["etc/rsyslog.conf", "/etc/rsyslog.conf"]
 
 RUN sonic-cfggen -a "{\"CONFIGURED_PLATFORM\":\"{{CONFIGURED_PLATFORM}}\"}" -t /usr/share/sonic/templates/docker_init.j2 > /usr/bin/docker_init.sh
 RUN rm -f /usr/share/sonic/templates/docker_init.j2
diff --git a/dockers/docker-platform-monitor/etc/rsyslog.conf b/dockers/docker-platform-monitor/etc/rsyslog.conf
new file mode 100644
index 000000000000..977c29a5d99d
--- /dev/null
+++ b/dockers/docker-platform-monitor/etc/rsyslog.conf
@@ -0,0 +1,89 @@
+#
+#  /etc/rsyslog.conf    Configuration file for rsyslog.
+#
+#                       For more information see
+#                       /usr/share/doc/rsyslog-doc/html/rsyslog_conf.html
+
+
+#################
+#### MODULES ####
+#################
+
+$ModLoad imuxsock # provides support for local system logging
+
+#
+# Set a rate limit on messages from the container
+#
+$SystemLogRateLimitInterval 300
+$SystemLogRateLimitBurst 20000
+
+#$ModLoad imklog  # provides kernel logging support
+#$ModLoad immark  # provides --MARK-- message capability
+
+# provides UDP syslog reception
+#$ModLoad imudp
+#$UDPServerRun 514
+
+# provides TCP syslog reception
+#$ModLoad imtcp
+#$InputTCPServerRun 514
+
+
+###########################
+#### GLOBAL DIRECTIVES ####
+###########################
+
+set $.PLATFORM=getenv("PLATFORM");
+set $.CONTAINER_NAME=getenv("CONTAINER_NAME");
+
+if ($.PLATFORM == "x86_64-mlnx_msn2700-r0" or $.PLATFORM == "x86_64-mlnx_msn2700a1-r0" or $.PLATFORM == "x86_64-mlnx_msn2410-r0") then {
+
+# This rsyslog configuration is intended to resolve the following error message that only appears on the MSN2700 and MSN2410 platforms:
+# "ERR pmon#sensord: Error getting sensor data: dps460/#10: Can't read"
+# This error is because of firmware issue with some type of PSU, we are not able to upgrade the FW online.
+# Since there is no functional impact, this error log can be ignored safely.
+if $programname contains "sensord" and $msg contains "Error getting sensor data: dps460/#" then stop
+
+}
+
+# Set remote syslog server
+template (name="ForwardFormatInContainer" type="string" string="<%PRI%>%TIMESTAMP:::date-rfc3339% %HOSTNAME% %$.CONTAINER_NAME%#%syslogtag%%msg:::sp-if-no-1st-sp%%msg%")
+*.* action(type="omfwd" target=`echo $SYSLOG_TARGET_IP` port="514" protocol="udp" Template="ForwardFormatInContainer")
+
+#
+# Use traditional timestamp format.
+# To enable high precision timestamps, comment out the following line.
+#
+#$ActionFileDefaultTemplate RSYSLOG_TraditionalFileFormat
+
+# Define a custom template
+$template SONiCFileFormat,"%TIMESTAMP%.%timestamp:::date-subseconds% %HOSTNAME% %syslogseverity-text:::uppercase% %$.CONTAINER_NAME%#%syslogtag%%msg:::sp-if-no-1st-sp%%msg:::drop-last-lf%\n"
+$ActionFileDefaultTemplate SONiCFileFormat
+
+#
+# Set the default permissions for all log files.
+#
+$FileOwner root
+$FileGroup adm
+$FileCreateMode 0640
+$DirCreateMode 0755
+$Umask 0022
+
+#
+# Where to place spool and state files
+#
+$WorkDirectory /var/spool/rsyslog
+
+#
+# Include all config files in /etc/rsyslog.d/
+#
+$IncludeConfig /etc/rsyslog.d/*.conf
+
+#
+# Suppress duplicate messages and report "message repeated n times"
+#
+$RepeatedMsgReduction on
+
+###############
+#### RULES ####
+###############
\ No newline at end of file
diff --git a/files/build_templates/docker_image_ctl.j2 b/files/build_templates/docker_image_ctl.j2
index 8eabcf08d824..4d3b9a6715a9 100644
--- a/files/build_templates/docker_image_ctl.j2
+++ b/files/build_templates/docker_image_ctl.j2
@@ -34,27 +34,16 @@ function updateSyslogConf()
     # Also update the container name
     if [[ ($NUM_ASIC -gt 1) ]]; then
         TARGET_IP=$(docker network inspect bridge --format={{ "'{{(index .IPAM.Config 0).Gateway}}'" }})
-    else
-        if [ "$CONTAINER_EXISTS" = "yes" ]; then
-            # database configuration has been synced to /etc/rsyslog.conf
-            # no need generate it to save boot time
-            return
-        fi
-        TARGET_IP="127.0.0.1"
-    fi
-    CONTAINER_NAME="$DOCKERNAME"
-    TMP_FILE="/tmp/rsyslog.$CONTAINER_NAME.conf"
-    {%- if docker_container_name == "database" %}
-    python -c "import jinja2, os; paths=['/usr/share/sonic/templates']; loader = jinja2.FileSystemLoader(paths); env = jinja2.Environment(loader=loader, trim_blocks=True); template_file='/usr/share/sonic/templates/rsyslog-container.conf.j2'; template = env.get_template(os.path.basename(template_file)); data=template.render({\"target_ip\":\"$TARGET_IP\",\"container_name\":\"$CONTAINER_NAME\"}); print(data)" > $TMP_FILE
-    {%- else %}
-    sonic-cfggen -d -t /usr/share/sonic/templates/rsyslog-container.conf.j2 -a "{\"target_ip\": \"$TARGET_IP\", \"container_name\": \"$CONTAINER_NAME\", \"platform\": \"$PLATFORM\" }"  > $TMP_FILE
-    if [ $? -ne 0 ]; then
-      echo "Error: Execute sonic-cfggen -d failed. Execute without '-d'."
-      sonic-cfggen -t /usr/share/sonic/templates/rsyslog-container.conf.j2 -a "{\"target_ip\": \"$TARGET_IP\", \"container_name\": \"$CONTAINER_NAME\", \"platform\": \"$PLATFORM\" }"  > $TMP_FILE
+        CONTAINER_NAME="$DOCKERNAME"
+        TMP_FILE="/tmp/rsyslog.$CONTAINER_NAME.conf"
+        {%- if docker_container_name == "database" %}
+        python -c "import jinja2, os; paths=['/usr/share/sonic/templates']; loader = jinja2.FileSystemLoader(paths); env = jinja2.Environment(loader=loader, trim_blocks=True); template_file='/usr/share/sonic/templates/rsyslog-container.conf.j2'; template = env.get_template(os.path.basename(template_file)); data=template.render({\"target_ip\":\"$TARGET_IP\",\"container_name\":\"$CONTAINER_NAME\"}); print(data)" > $TMP_FILE
+        {%- else %}
+        sonic-cfggen -t /usr/share/sonic/templates/rsyslog-container.conf.j2 -a "{\"target_ip\": \"$TARGET_IP\", \"container_name\": \"$CONTAINER_NAME\" }"  > $TMP_FILE
+        {%- endif %}
+        docker cp $TMP_FILE ${DOCKERNAME}:/etc/rsyslog.conf
+        rm -rf $TMP_FILE
     fi
-    {%- endif %}
-    docker cp $TMP_FILE ${DOCKERNAME}:/etc/rsyslog.conf
-    rm -rf $TMP_FILE
 }
 function ebtables_config()
 {
@@ -294,6 +283,12 @@ function postStartAction()
     fi
     chgrp -f redis $REDIS_SOCK && chmod -f 0760 $REDIS_SOCK
 {%- elif docker_container_name == "swss" %}
+    # Wait until swss container state is Running
+    until [[ ($(docker inspect -f {{"'{{.State.Running}}'"}} swss$DEV) == "true") ]]; do
+        sleep 0.1
+    done
+    echo "swss container is up and running"
+
     docker exec swss$DEV rm -f /ready   # remove cruft
     if [[ "$BOOT_TYPE" == "fast" ]] && [[ -d /host/fast-reboot ]]; then
         test -e /host/fast-reboot/fdb.json && docker cp /host/fast-reboot/fdb.json swss$DEV:/
@@ -303,6 +298,9 @@ function postStartAction()
         rm -fr /host/fast-reboot
     fi
     docker exec swss$DEV touch /ready # signal swssconfig.sh to go
+    # Re-confirm that file is indeed created and log an error if not
+    docker exec swss$DEV test -f /ready && echo "File swss:/ready created" || echo "Error: File swss:/ready doesn't exist"
+
 {%- elif docker_container_name == "pmon" %}
 
     DEVPATH="/usr/share/sonic/device"
@@ -326,13 +324,18 @@ start() {
     # Obtain our platform as we will mount directories with these names in each docker
     PLATFORM=${PLATFORM:-`$SONIC_CFGGEN -H -v DEVICE_METADATA.localhost.platform`}
 
-
     # Parse the device specific asic conf file, if it exists
     ASIC_CONF=/usr/share/sonic/device/$PLATFORM/asic.conf
     if [ -f "$ASIC_CONF" ]; then
         source $ASIC_CONF
     fi
 
+    # Default rsyslog target IP for single ASIC platform
+    SYSLOG_TARGET_IP=127.0.0.1
+    if [[ ($NUM_ASIC -gt 1) ]]; then
+        SYSLOG_TARGET_IP=$(docker network inspect bridge --format={{ "'{{(index .IPAM.Config 0).Gateway}}'" }})
+    fi
+
     PLATFORM_ENV_CONF=/usr/share/sonic/device/$PLATFORM/platform_env.conf
     if [ -f "$PLATFORM_ENV_CONF" ]; then
         source $PLATFORM_ENV_CONF
@@ -632,6 +635,8 @@ start() {
         --env "NAMESPACE_PREFIX"="$NAMESPACE_PREFIX" \
         --env "NAMESPACE_COUNT"=$NUM_ASIC \
         --env "CONTAINER_NAME"=$DOCKERNAME \
+        --env "SYSLOG_TARGET_IP"=$SYSLOG_TARGET_IP \
+        --env "PLATFORM"=$PLATFORM \
         --name=$DOCKERNAME \
 {%- if docker_container_name == "gbsyncd" %}
         -v /var/run/docker-syncd$DEV:/var/run/sswsyncd \
diff --git a/files/build_templates/init_cfg.json.j2 b/files/build_templates/init_cfg.json.j2
index b93b565adc80..fd153b253694 100644
--- a/files/build_templates/init_cfg.json.j2
+++ b/files/build_templates/init_cfg.json.j2
@@ -50,7 +50,11 @@
 {%- if include_mux == "y" %}{% do features.append(("mux", "{% if 'subtype' in DEVICE_METADATA['localhost'] and DEVICE_METADATA['localhost']['subtype'] == 'DualToR' %}enabled{% else %}always_disabled{% endif %}", false, "enabled")) %}{% endif %}
 {%- if include_nat == "y" %}{% do features.append(("nat", "disabled", false, "enabled")) %}{% endif %}
 {%- if include_p4rt == "y" %}{% do features.append(("p4rt", "disabled", false, "enabled")) %}{% endif %}
-{%- if include_restapi == "y" %}{% do features.append(("restapi", "enabled", false, "enabled")) %}{% endif %}
+{%- if include_restapi == "y" and BUILD_REDUCE_IMAGE_SIZE == "y" and sonic_asic_platform == "broadcom" %}
+    {% do features.append(("restapi", "{% if (DEVICE_METADATA is defined and DEVICE_METADATA['localhost'] is defined and DEVICE_METADATA['localhost']['type'] is defined and DEVICE_METADATA['localhost']['type'] is not in ['LeafRouter', 'BackEndLeafRouter']) %}enabled{% else %}disabled{% endif %}", false, "enabled")) %}
+{%- elif include_restapi == "y" %}
+    {% do features.append(("restapi", "enabled", false, "enabled")) %}
+{%- endif %}
 {%- if include_sflow == "y" %}{% do features.append(("sflow", "disabled", true, "enabled")) %}{% endif %}
 {%- if include_macsec == "y" %}{% do features.append(("macsec", "{% if 'type' in DEVICE_METADATA['localhost'] and DEVICE_METADATA['localhost']['type'] == 'SpineRouter' and DEVICE_RUNTIME_METADATA['MACSEC_SUPPORTED'] %}enabled{% else %}disabled{% endif %}", false, "enabled")) %}{% endif %}
 {%- if include_system_telemetry == "y" %}{% do features.append(("telemetry", "enabled", true, "enabled")) %}{% endif %}
diff --git a/files/build_templates/per_namespace/swss.service.j2 b/files/build_templates/per_namespace/swss.service.j2
index 765bee8a7ac0..58bca6a219a6 100644
--- a/files/build_templates/per_namespace/swss.service.j2
+++ b/files/build_templates/per_namespace/swss.service.j2
@@ -11,7 +11,6 @@ Requires=opennsl-modules.service
 {% endif %}
 Requires=updategraph.service
 After=updategraph.service
-After=interfaces-config.service
 BindsTo=sonic.target
 After=sonic.target
 Before=ntp-config.service
diff --git a/files/build_templates/per_namespace/syncd.service.j2 b/files/build_templates/per_namespace/syncd.service.j2
index 66861efca473..1fb803390a80 100644
--- a/files/build_templates/per_namespace/syncd.service.j2
+++ b/files/build_templates/per_namespace/syncd.service.j2
@@ -16,7 +16,6 @@ After=nps-modules.service
 {% endif %}
 Requires=updategraph.service
 After=updategraph.service
-After=interfaces-config.service
 BindsTo=sonic.target
 After=sonic.target
 Before=ntp-config.service
diff --git a/files/build_templates/sonic_debian_extension.j2 b/files/build_templates/sonic_debian_extension.j2
index 748a1bf9e65e..3b4b1f28c7bc 100644
--- a/files/build_templates/sonic_debian_extension.j2
+++ b/files/build_templates/sonic_debian_extension.j2
@@ -391,6 +391,9 @@ sudo cp $IMAGE_CONFIGS/rsyslog/rsyslog-container.conf.j2 $FILESYSTEM_ROOT_USR_SH
 sudo cp $IMAGE_CONFIGS/rsyslog/rsyslog.d/* $FILESYSTEM_ROOT/etc/rsyslog.d/
 echo "rsyslog-config.service" | sudo tee -a $GENERATED_SERVICE_FILE
 
+# Copy containercfgd configuration files
+sudo cp $IMAGE_CONFIGS/containercfgd/containercfgd.conf $FILESYSTEM_ROOT_USR_SHARE_SONIC_TEMPLATES/
+
 # Copy syslog override files
 sudo mkdir -p $FILESYSTEM_ROOT/etc/systemd/system/syslog.socket.d
 sudo cp $IMAGE_CONFIGS/syslog/override.conf $FILESYSTEM_ROOT/etc/systemd/system/syslog.socket.d/override.conf
diff --git a/files/build_templates/sonic_version.yml.j2 b/files/build_templates/sonic_version.yml.j2
index 8b829feeed00..510b3d3c6044 100644
--- a/files/build_templates/sonic_version.yml.j2
+++ b/files/build_templates/sonic_version.yml.j2
@@ -30,3 +30,8 @@ built_by: {{ built_by }}
 asan: 'yes'
 {% endif -%}
 sonic_os_version: {{ sonic_os_version }}
+{% if SECURE_UPGRADE_MODE == "dev" or SECURE_UPGRADE_MODE == "prod" -%}
+secure_boot_image: 'yes'
+{% else -%}
+secure_boot_image: 'no'
+{% endif -%}
diff --git a/files/image_config/backend_acl/backend_acl.py b/files/image_config/backend_acl/backend_acl.py
index bb22a60880ab..113e1d1ac118 100755
--- a/files/image_config/backend_acl/backend_acl.py
+++ b/files/image_config/backend_acl/backend_acl.py
@@ -78,7 +78,7 @@ def load_backend_acl(device_type):
         if os.path.isfile(BACKEND_ACL_TEMPLATE_FILE):
             run_command(['sudo', SONIC_CFGGEN_PATH, '-d', '-t', '{},{}'.format(BACKEND_ACL_TEMPLATE_FILE, BACKEND_ACL_FILE)])
         if os.path.isfile(BACKEND_ACL_FILE):
-            run_command(['acl-loader', 'update', 'incremental', BACKEND_ACL_FILE])
+            run_command(['acl-loader', 'update', 'full', BACKEND_ACL_FILE, '--table_name', 'DATAACL'])
     else:
         log_info("Skipping backend acl load - conditions not met")
 
diff --git a/files/image_config/constants/constants.yml b/files/image_config/constants/constants.yml
index 94f3d0e9706c..413d93551335 100644
--- a/files/image_config/constants/constants.yml
+++ b/files/image_config/constants/constants.yml
@@ -4,6 +4,8 @@ constants:
     "2" : 65433
   bgp:
     traffic_shift_community: 12345:12345
+    internal_community: 11111:11111
+    internal_community_match_tag: 1002
     families:
       - ipv4
       - ipv6
diff --git a/dockers/docker-base-bullseye/etc/supervisor/containercfgd.conf b/files/image_config/containercfgd/containercfgd.conf
similarity index 100%
rename from dockers/docker-base-bullseye/etc/supervisor/containercfgd.conf
rename to files/image_config/containercfgd/containercfgd.conf
diff --git a/files/image_config/copp/copp_cfg.j2 b/files/image_config/copp/copp_cfg.j2
index f3550677d760..dcae06fc0bbc 100755
--- a/files/image_config/copp/copp_cfg.j2
+++ b/files/image_config/copp/copp_cfg.j2
@@ -34,8 +34,13 @@
 		    "queue": "4",
 		    "meter_type":"packets",
 		    "mode":"sr_tcm",
+{% if DEVICE_METADATA is defined and DEVICE_METADATA['localhost'] is defined and DEVICE_METADATA['localhost']['type'] is defined and 'Mgmt' in DEVICE_METADATA['localhost']['type'] %}
+		    "cir":"300",
+		    "cbs":"300",
+{% else %}
 		    "cir":"100",
 		    "cbs":"100",
+{% endif %}
 		    "red_action":"drop"
 	    },
 	    "queue1_group1": {
diff --git a/files/image_config/interfaces/interfaces.j2 b/files/image_config/interfaces/interfaces.j2
index b39331f459b7..3702eb1f6798 100644
--- a/files/image_config/interfaces/interfaces.j2
+++ b/files/image_config/interfaces/interfaces.j2
@@ -79,21 +79,29 @@ iface {{ name }} {{ 'inet' if prefix | ipv4 else 'inet6' }} static
 {%     set vrf_table = '5000' %}
     vrf mgmt
 {% endif %}
+{% set force_mgmt_route_priority = 32764 %}
     ########## management network policy routing rules
     # management port up rules
     up ip {{ '-4' if prefix | ipv4 else '-6' }} route add default via {{ MGMT_INTERFACE[(name, prefix)]['gwaddr'] }} dev {{ name }} table {{ vrf_table }} metric 201
     up ip {{ '-4' if prefix | ipv4 else '-6' }} route add {{ prefix | network }}/{{ prefix | prefixlen }} dev {{ name }} table {{ vrf_table }}
-    up ip {{ '-4' if prefix | ipv4 else '-6' }} rule add pref 32765 from {{ prefix | ip }}/{{ '32' if prefix | ipv4 else '128' }} table {{ vrf_table }}
+    up ip {{ '-4' if prefix | ipv4 else '-6' }} rule add pref {{ force_mgmt_route_priority + 1 }} from {{ prefix | ip }}/{{ '32' if prefix | ipv4 else '128' }} table {{ vrf_table }}
 {% for route in MGMT_INTERFACE[(name, prefix)]['forced_mgmt_routes'] %}
-    up ip rule add pref 32764 to {{ route }} table {{ vrf_table }}
+    up ip rule add pref {{ force_mgmt_route_priority }} to {{ route }} table {{ vrf_table }}
 {% endfor %}
+{% if prefix | ipv6 and vrf_table == 'default'%}
+    # IPV6 default table not add to lookup by default, management server need this to access IPV6 address when BGP shutdown
+    up ip -6 rule add pref {{ force_mgmt_route_priority + 3 }} lookup {{ vrf_table }}
+{% endif %}
     # management port down rules
     pre-down ip {{ '-4' if prefix | ipv4 else '-6' }} route delete default via {{ MGMT_INTERFACE[(name, prefix)]['gwaddr'] }} dev {{ name }} table {{ vrf_table }}
     pre-down ip {{ '-4' if prefix | ipv4 else '-6' }} route delete {{ prefix | network }}/{{ prefix | prefixlen }} dev {{ name }} table {{ vrf_table }}
-    pre-down ip {{ '-4' if prefix | ipv4 else '-6' }} rule delete pref 32765 from {{ prefix | ip }}/{{ '32' if prefix | ipv4 else '128' }} table {{ vrf_table }}
+    pre-down ip {{ '-4' if prefix | ipv4 else '-6' }} rule delete pref {{ force_mgmt_route_priority + 1 }} from {{ prefix | ip }}/{{ '32' if prefix | ipv4 else '128' }} table {{ vrf_table }}
 {% for route in MGMT_INTERFACE[(name, prefix)]['forced_mgmt_routes'] %}
-    pre-down ip rule delete pref 32764 to {{ route }} table {{ vrf_table }}
+    pre-down ip rule delete pref {{ force_mgmt_route_priority }} to {{ route }} table {{ vrf_table }}
 {% endfor %}
+{% if prefix | ipv6 and vrf_table == 'default'%}
+    pre-down ip -6 rule delete pref {{ force_mgmt_route_priority + 3 }} lookup {{ vrf_table }}
+{% endif %}
 {# TODO: COPP policy type rules #}
 {% endfor %}
 {% else %}
diff --git a/files/image_config/rsyslog/rsyslog-container.conf.j2 b/files/image_config/rsyslog/rsyslog-container.conf.j2
index bb786eacd4ec..04dc3f8a17ec 100644
--- a/files/image_config/rsyslog/rsyslog-container.conf.j2
+++ b/files/image_config/rsyslog/rsyslog-container.conf.j2
@@ -52,21 +52,26 @@ $SystemLogRateLimitBurst 20000
 ###########################
 #### GLOBAL DIRECTIVES ####
 ###########################
+
+set $.PLATFORM=getenv("PLATFORM");
+set $.CONTAINER_NAME=getenv("CONTAINER_NAME");
+
 {% if container_name == 'pmon' %}
-{% if platform == 'x86_64-mlnx_msn2700-r0' or platform == 'x86_64-mlnx_msn2700a1-r0' %}
 
 # This rsyslog configuration is intended to resolve the following error message that only appears on the MSN2700 platform:
 # "ERR pmon#sensord: Error getting sensor data: dps460/#10: Can't read"
 # This error is because of firmware issue with some type of PSU, we are not able to upgrade the FW online.
 # Since there is no functional impact, this error log can be ignored safely.
 
-if $programname contains "sensord" and $msg contains "Error getting sensor data: dps460/#" then stop
+if ($.PLATFORM == "x86_64-mlnx_msn2700-r0" or $.PLATFORM == "x86_64-mlnx_msn2700a1-r0" or $.PLATFORM == "x86_64-mlnx_msn2410-r0") then {
+    if $programname contains "sensord" and $msg contains "Error getting sensor data: dps460/#" then stop
+}
 
 {% endif %}
-{% endif %}
+
 # Set remote syslog server
-template (name="ForwardFormatInContainer" type="string" string="<%PRI%>%TIMESTAMP:::date-rfc3339% %HOSTNAME% {{container_name}}#%syslogtag%%msg:::sp-if-no-1st-sp%%msg%")
-*.* action(type="omfwd" target="{{target_ip}}" port="514" protocol="udp" Template="ForwardFormatInContainer")
+template (name="ForwardFormatInContainer" type="string" string="<%PRI%>%TIMESTAMP:::date-rfc3339% %HOSTNAME% %$.CONTAINER_NAME%#%syslogtag%%msg:::sp-if-no-1st-sp%%msg%")
+*.* action(type="omfwd" target=`echo $SYSLOG_TARGET_IP` port="514" protocol="udp" Template="ForwardFormatInContainer")
 
 #
 # Use traditional timestamp format.
@@ -75,7 +80,7 @@ template (name="ForwardFormatInContainer" type="string" string="<%PRI%>%TIMESTAM
 #$ActionFileDefaultTemplate RSYSLOG_TraditionalFileFormat
 
 # Define a custom template
-$template SONiCFileFormat,"%TIMESTAMP%.%timestamp:::date-subseconds% %HOSTNAME% %syslogseverity-text:::uppercase% {{container_name}}#%syslogtag%%msg:::sp-if-no-1st-sp%%msg:::drop-last-lf%\n"
+$template SONiCFileFormat,"%TIMESTAMP%.%timestamp:::date-subseconds% %HOSTNAME% %syslogseverity-text:::uppercase% %$.CONTAINER_NAME%#%syslogtag%%msg:::sp-if-no-1st-sp%%msg:::drop-last-lf%\n"
 $ActionFileDefaultTemplate SONiCFileFormat
 
 #
diff --git a/files/scripts/arp_update b/files/scripts/arp_update
index 14a82ebe4da3..7fd5667bca83 100755
--- a/files/scripts/arp_update
+++ b/files/scripts/arp_update
@@ -9,6 +9,11 @@
 
 ARP_UPDATE_VARS_FILE="/usr/share/sonic/templates/arp_update_vars.j2"
 
+# Overload `logger` command to include arp_update tag
+logger () {
+    command logger -t "arp_update" "$@"
+}
+
 while /bin/true; do
   # find L3 interfaces which are UP, send ipv6 multicast pings
   ARP_UPDATE_VARS=$(sonic-cfggen -d -t ${ARP_UPDATE_VARS_FILE})
@@ -19,7 +24,7 @@ while /bin/true; do
       STATIC_ROUTE_IFNAMES=($(echo $ARP_UPDATE_VARS | jq -r '.static_route_ifnames'))
       # on supervisor/rp exit the script gracefully
       if [[ -z "$STATIC_ROUTE_NEXTHOPS" ]] || [[ -z "$STATIC_ROUTE_IFNAMES" ]]; then
-          logger "arp_update: exiting as no static route in packet based chassis"
+          logger "exiting as no static route in packet based chassis"
           exit 0
       fi
       for i in ${!STATIC_ROUTE_NEXTHOPS[@]}; do
@@ -38,7 +43,7 @@ while /bin/true; do
               interface="${STATIC_ROUTE_IFNAMES[i]}"
               if [[ -z "$interface" ]]; then
                   # should never be here, handling just in case
-                  logger "ERR: arp_update: missing interface entry for static route $nexthop"
+                  logger -p error "missing interface entry for static route $nexthop"
                   continue
               fi
               intf_up=$(ip link show $interface | grep "state UP")
@@ -47,7 +52,7 @@ while /bin/true; do
                   eval $pingcmd
                   # STALE entries may appear more often, not logging to prevent periodic syslogs
                   if [[ -z $(echo ${neigh_state} | grep 'STALE') ]]; then
-                      logger "arp_update: static route nexthop not resolved ($neigh_state), pinging $nexthop on $interface"
+                      logger "static route nexthop not resolved ($neigh_state), pinging $nexthop on $interface"
                   fi
               fi
           fi
@@ -63,13 +68,37 @@ while /bin/true; do
 
   ALL_INTERFACE="$INTERFACE $PC_INTERFACE $VLAN_SUB_INTERFACE"
   for intf in $ALL_INTERFACE; do
-      ping6cmd="ping6 -I $intf -n -q -i 0 -c 1 -W 0 ff02::1 >/dev/null"
+      ping6cmd="timeout 0.2 ping6 -I $intf -n -q -i 0 -c 1 -W 0 ff02::1 >/dev/null"
       intf_up=$(ip link show $intf | grep "state UP")
       if [[ -n "$intf_up" ]]; then
           eval $ping6cmd
       fi
   done
 
+  # find neighbor entries with aged MAC and flush/relearn them
+  STALE_NEIGHS=$(ip neigh show | grep -v "fe80" | grep "STALE" | awk '{print $1 "," $5}' | tr [:lower:] [:upper:])
+  for neigh in $STALE_NEIGHS; do
+        ip="$( cut -d ',' -f 1 <<< "$neigh" )"
+        mac="$( cut -d ',' -f 2 <<< "$neigh" )"
+        if [[ -z $(sonic-db-cli ASIC_DB keys "ASIC_STATE:SAI_OBJECT_TYPE_FDB_ENTRY*${mac}*") ]]; then
+            timeout 0.2 ping -c1 -w1 $ip > /dev/null
+        fi
+  done
+
+  # Flush neighbor entries with MAC mismatch between kernel and APPL_DB
+  KERNEL_NEIGH=$(ip neigh show | grep -v "fe80" | grep -v "FAILED\|INCOMPLETE" | cut -d ' ' -f 1,3,5 --output-delimiter=',' | tr -d ' ')
+  for neigh in $KERNEL_NEIGH; do
+        ip="$( cut -d ',' -f 1 <<< "$neigh" )"
+        intf="$( cut -d ',' -f 2 <<< "$neigh" )"
+        kernel_mac="$( cut -d ',' -f 3 <<< "$neigh" )"
+        appl_db_mac="$(sonic-db-cli APPL_DB hget NEIGH_TABLE:$intf:$ip neigh)"
+        if [[ $kernel_mac != $appl_db_mac ]]; then
+            logger -p warning "MAC mismatch for ${ip} on ${intf} - kernel: ${kernel_mac}, APPL_DB: ${appl_db_mac}"
+            ip neigh flush $ip
+            timeout 0.2 ping -c1 -w1 $ip > /dev/null
+        fi
+  done
+
   VLAN=$(echo $ARP_UPDATE_VARS | jq -r '.vlan')
   SUBTYPE=$(sonic-db-cli CONFIG_DB hget 'DEVICE_METADATA|localhost' 'subtype' | tr '[:upper:]' '[:lower:]')
   for vlan in $VLAN; do
@@ -158,11 +187,11 @@ while /bin/true; do
           if [[ $ip == *"."* ]] && [[ ! $KERNEIGH4 =~ "${ip},${intf}" ]]; then
               pingcmd="timeout 0.2 ping -I $intf -n -q -i 0 -c 1 -W 1 $ip >/dev/null"
               eval $pingcmd
-              logger "arp_update: mismatch arp entry, pinging ${ip} on ${intf}"
+              logger "mismatch arp entry, pinging ${ip} on ${intf}"
           elif [[ $ip == *":"* ]] && [[ ! $KERNEIGH6 =~ "${ip},${intf}" ]]; then
               ping6cmd="timeout 0.2 ping6 -I $intf -n -q -i 0 -c 1 -W 1 $ip >/dev/null"
               eval $ping6cmd
-              logger "arp_update: mismatch v6 nbr entry, pinging ${ip} on ${intf}"
+              logger "mismatch v6 nbr entry, pinging ${ip} on ${intf}"
           fi
       fi
   done
diff --git a/platform/broadcom/sai.mk b/platform/broadcom/sai.mk
index f5fc791e3806..341cfc866249 100644
--- a/platform/broadcom/sai.mk
+++ b/platform/broadcom/sai.mk
@@ -1,4 +1,4 @@
-LIBSAIBCM_XGS_VERSION = 8.4.35.0
+LIBSAIBCM_XGS_VERSION = 8.4.39.2
 LIBSAIBCM_DNX_VERSION = 9.2.12.1
 LIBSAIBCM_XGS_BRANCH_NAME = SAI_8.4.0_GA
 LIBSAIBCM_DNX_BRANCH_NAME = SAI_9.2.0.3
diff --git a/platform/broadcom/sonic-platform-modules-nokia b/platform/broadcom/sonic-platform-modules-nokia
index 6b07af449c4b..e82caa40d4ee 160000
--- a/platform/broadcom/sonic-platform-modules-nokia
+++ b/platform/broadcom/sonic-platform-modules-nokia
@@ -1 +1 @@
-Subproject commit 6b07af449c4b40e2a80e3154347ca0308817ebd5
+Subproject commit e82caa40d4eec59e574bd4acffb0e92fd7187da4
diff --git a/platform/mellanox/mlnx-platform-api/sonic_platform/watchdog.py b/platform/mellanox/mlnx-platform-api/sonic_platform/watchdog.py
index 630163c12e18..9e16b6d69cf8 100644
--- a/platform/mellanox/mlnx-platform-api/sonic_platform/watchdog.py
+++ b/platform/mellanox/mlnx-platform-api/sonic_platform/watchdog.py
@@ -283,7 +283,8 @@ def get_watchdog():
     """
     Return WatchdogType1 or WatchdogType2 based on system
     """
-
+    
+    utils.wait_until(lambda: os.path.exists('/run/hw-management/watchdog/main/state'), timeout=10, interval=1)
     watchdog_main_device_name = None
 
     for device in os.listdir("/dev/"):
diff --git a/platform/mellanox/mlnx-platform-api/tests/test_watchdog.py b/platform/mellanox/mlnx-platform-api/tests/test_watchdog.py
index 68d29d38a654..6e925d594708 100644
--- a/platform/mellanox/mlnx-platform-api/tests/test_watchdog.py
+++ b/platform/mellanox/mlnx-platform-api/tests/test_watchdog.py
@@ -36,6 +36,7 @@
 
 
 class TestWatchdog:
+    @mock.patch('sonic_platform.utils.wait_until', mock.MagicMock())
     @mock.patch('sonic_platform.watchdog.is_mlnx_wd_main')
     @mock.patch('sonic_platform.watchdog.os.listdir')
     def test_get_watchdog_no_device(self, mock_listdir, mock_is_main):
@@ -50,6 +51,7 @@ def test_get_watchdog_no_device(self, mock_listdir, mock_is_main):
         mock_is_main.return_value = False
         assert get_watchdog() is None
 
+    @mock.patch('sonic_platform.utils.wait_until', mock.MagicMock())
     @mock.patch('sonic_platform.watchdog.is_mlnx_wd_main')
     @mock.patch('sonic_platform.watchdog.is_wd_type2')
     @mock.patch('sonic_platform.watchdog.os.listdir', mock.MagicMock(return_value=['watchdog1', 'watchdog2']))
diff --git a/platform/vs/docker-sonic-vs/supervisord.conf.j2 b/platform/vs/docker-sonic-vs/supervisord.conf.j2
index a55e57ba6b3a..ba63d2b77dda 100644
--- a/platform/vs/docker-sonic-vs/supervisord.conf.j2
+++ b/platform/vs/docker-sonic-vs/supervisord.conf.j2
@@ -164,7 +164,7 @@ environment=ASAN_OPTIONS="log_path=/var/log/asan/teammgrd-asan.log{{ asan_extra_
 {% endif %}
 
 [program:zebra]
-command=/usr/lib/frr/zebra -A 127.0.0.1 -s 90000000 -M dplane_fpm_nl --asic-offload=notify_on_offload
+command=/usr/lib/frr/zebra -A 127.0.0.1 -s 90000000 -M fpm
 priority=13
 autostart=false
 autorestart=false
diff --git a/scripts/docker_version_control.sh b/scripts/docker_version_control.sh
index e94370d0e2d9..7af5173decae 100755
--- a/scripts/docker_version_control.sh
+++ b/scripts/docker_version_control.sh
@@ -1,7 +1,8 @@
+#!/bin/bash
+
 # This script is for reproducible build.
 # Reproducible build for docker enabled: Before build docker image, this script will change image:tag to image:sha256 in DOCKERFILE.
 # And record image sha256 to a target file.
-#!/bin/bash
 
 IMAGENAME=$1
 DOCKERFILE=$2
diff --git a/slave.mk b/slave.mk
index 2f42b080cb81..602b8926f4b5 100644
--- a/slave.mk
+++ b/slave.mk
@@ -431,6 +431,7 @@ $(info "ENABLE_BOOTCHART                 : "$(ENABLE_BOOTCHART)")
 $(info "ENABLE_FIPS_FEATURE"             : "$(ENABLE_FIPS_FEATURE)")
 $(info "ENABLE_TRANSLIB_WRITE"           : "$(ENABLE_TRANSLIB_WRITE)")
 $(info "ENABLE_NATIVE_WRITE"             : "$(ENABLE_NATIVE_WRITE)")
+$(info "ENABLE_DIALOUT"                  : "$(ENABLE_DIALOUT)")
 $(info "ENABLE_AUTO_TECH_SUPPORT"        : "$(ENABLE_AUTO_TECH_SUPPORT)")
 $(info "PDDF_SUPPORT"                    : "$(PDDF_SUPPORT)")
 $(info "MULTIARCH_QEMU_ENVIRON"          : "$(MULTIARCH_QEMU_ENVIRON)")
diff --git a/sonic-slave-bullseye/Dockerfile.j2 b/sonic-slave-bullseye/Dockerfile.j2
index 9b01bc8cedeb..b2d1531b51a6 100644
--- a/sonic-slave-bullseye/Dockerfile.j2
+++ b/sonic-slave-bullseye/Dockerfile.j2
@@ -80,6 +80,13 @@ RUN PATH=/python_virtualenv/env3/bin/:$PATH python3 -m pip uninstall -y enum34
 RUN PATH=/python_virtualenv/env3/bin/:$PATH pip3 install --force-reinstall --no-cache-dir coverage
 {%- endif %}
 
+{%- if CONFIGURED_ARCH == "arm64" and MULTIARCH_QEMU_ENVIRON == "y" %}
+# multiarch/debian-debootstrap:arm64-bullseye is too old. It needs to install keys
+RUN apt-get update || apt-get install -y gnupg
+RUN apt-key adv --keyserver keyserver.ubuntu.com --recv-keys 0E98404D386FA1D9
+RUN apt-key adv --keyserver keyserver.ubuntu.com --recv-keys 6ED0E7B82643E131
+{%- endif %}
+
 RUN apt-get update && apt-get install -y \
         apt-utils \
         default-jre-headless \
diff --git a/src/isc-dhcp/patch/0016-Don-t-look-up-the-ifindex-for-fallback.patch b/src/isc-dhcp/patch/0016-Don-t-look-up-the-ifindex-for-fallback.patch
new file mode 100644
index 000000000000..55fde475ff61
--- /dev/null
+++ b/src/isc-dhcp/patch/0016-Don-t-look-up-the-ifindex-for-fallback.patch
@@ -0,0 +1,34 @@
+From 079ff1bb570dae96c4ca513e210c9856e9cc75b0 Mon Sep 17 00:00:00 2001
+From: Saikrishna Arcot <sarcot@microsoft.com>
+Date: Wed, 10 Jan 2024 23:30:17 -0800
+Subject: [PATCH] Don't look up the ifindex for fallback
+
+If sending a packet on the "fallback" interface, then don't try to get the
+ifindex for that interface. There will never be an actual interface named
+"fallback" in SONiC (at least, not one that we will want to use).
+
+This might save 0.009-0.012 seconds per upstream server, and when there
+are as many as 48 upstream servers, it can save about 0.4-0.5 seconds of
+time. This then allows dhcrelay to process more packets.
+
+Signed-off-by: Saikrishna Arcot <sarcot@microsoft.com>
+
+diff --git a/common/socket.c b/common/socket.c
+index da9f501..e707a7f 100644
+--- a/common/socket.c
++++ b/common/socket.c
+@@ -767,7 +767,10 @@ ssize_t send_packet (interface, packet, raw, len, from, to, hto)
+ 	memcpy(&dst, to, sizeof(dst));
+ 	m.msg_name = &dst;
+ 	m.msg_namelen = sizeof(dst);
+-	ifindex = if_nametoindex(interface->name);
++	if (strcmp(interface->name, "fallback") != 0)
++		ifindex = if_nametoindex(interface->name);
++	else
++		ifindex = 0;
+ 
+ 	/*
+ 	 * Set the data buffer we're sending. (Using this wacky
+-- 
+2.34.1
+
diff --git a/src/isc-dhcp/patch/series b/src/isc-dhcp/patch/series
index b9efee0192f5..b11c21f79c64 100644
--- a/src/isc-dhcp/patch/series
+++ b/src/isc-dhcp/patch/series
@@ -12,3 +12,4 @@
 0011-dhcp-relay-Prevent-Buffer-Overrun.patch
 0012-add-option-si-to-support-using-src-intf-ip-in-relay.patch
 0013-Fix-dhcrelay-agent-option-buffer-pointer-logic.patch
+0016-Don-t-look-up-the-ifindex-for-fallback.patch
diff --git a/src/linkmgrd b/src/linkmgrd
index 2cf510b09f13..f5e9b54b147e 160000
--- a/src/linkmgrd
+++ b/src/linkmgrd
@@ -1 +1 @@
-Subproject commit 2cf510b09f13396e4e1f72e2983120860b68adcd
+Subproject commit f5e9b54b147e9cf24de1ed03f59170a5c20bf556
diff --git a/src/sonic-bgpcfgd/bgpcfgd/managers_bgp.py b/src/sonic-bgpcfgd/bgpcfgd/managers_bgp.py
index e88dc60b8c55..b15f841f6166 100644
--- a/src/sonic-bgpcfgd/bgpcfgd/managers_bgp.py
+++ b/src/sonic-bgpcfgd/bgpcfgd/managers_bgp.py
@@ -304,11 +304,10 @@ def apply_op(self, cmd, vrf):
         :return: True if no errors, False if there are errors
         """
         bgp_asn = self.directory.get_slot("CONFIG_DB", swsscommon.CFG_DEVICE_METADATA_TABLE_NAME)["localhost"]["bgp_asn"]
-        enable_bgp_suppress_fib_pending_cmd = 'bgp suppress-fib-pending'
         if vrf == 'default':
-            cmd = ('router bgp %s\n %s\n' % (bgp_asn, enable_bgp_suppress_fib_pending_cmd)) + cmd
+            cmd = ('router bgp %s\n' % bgp_asn) + cmd
         else:
-            cmd = ('router bgp %s vrf %s\n %s\n' % (bgp_asn, vrf, enable_bgp_suppress_fib_pending_cmd)) + cmd
+            cmd = ('router bgp %s vrf %s\n' % (bgp_asn, vrf)) + cmd
         self.cfg_mgr.push(cmd)
         return True
 
diff --git a/src/sonic-bgpcfgd/staticroutebfd/vars.py b/src/sonic-bgpcfgd/staticroutebfd/vars.py
index e880844687f6..30a0baa236c1 100644
--- a/src/sonic-bgpcfgd/staticroutebfd/vars.py
+++ b/src/sonic-bgpcfgd/staticroutebfd/vars.py
@@ -1,5 +1,5 @@
 g_debug = True
-bfd_multihop = "true" 
+bfd_multihop = "false" 
 bfd_rx_interval = "50"
 bfd_tx_interval = "50"
 bfd_multiplier = "3"
diff --git a/src/sonic-bgpcfgd/tests/data/general/peer-group.conf/result_all_isolate.conf b/src/sonic-bgpcfgd/tests/data/general/peer-group.conf/result_all_isolate.conf
index a078dadd6f04..bf3abfc0464e 100644
--- a/src/sonic-bgpcfgd/tests/data/general/peer-group.conf/result_all_isolate.conf
+++ b/src/sonic-bgpcfgd/tests/data/general/peer-group.conf/result_all_isolate.conf
@@ -23,11 +23,17 @@
 route-map TO_BGP_PEER_V4 permit 20
   match ip address prefix-list PL_LoopbackV4
   set community 12345:12345
-route-map TO_BGP_PEER_V4 deny 30
+route-map TO_BGP_PEER_V4 permit 30
+  match tag 1001
+  set community 12345:12345
+route-map TO_BGP_PEER_V4 deny 40
 !
 route-map TO_BGP_PEER_V6 permit 20
   match ipv6 address prefix-list PL_LoopbackV6
   set community 12345:12345
-route-map TO_BGP_PEER_V6 deny 30
+route-map TO_BGP_PEER_V6 permit 30
+  match tag 1001
+  set community 12345:12345
+route-map TO_BGP_PEER_V6 deny 40
 !
 
diff --git a/src/sonic-bgpcfgd/tests/data/general/peer-group.conf/result_all_unisolate.conf b/src/sonic-bgpcfgd/tests/data/general/peer-group.conf/result_all_unisolate.conf
index 1cd4442f4f3d..fa56d296e4d3 100644
--- a/src/sonic-bgpcfgd/tests/data/general/peer-group.conf/result_all_unisolate.conf
+++ b/src/sonic-bgpcfgd/tests/data/general/peer-group.conf/result_all_unisolate.conf
@@ -21,9 +21,11 @@
 
 
 no route-map TO_BGP_PEER_V4 permit 20
-no route-map TO_BGP_PEER_V4 deny 30
+no route-map TO_BGP_PEER_V4 permit 30
+no route-map TO_BGP_PEER_V4 deny 40
 !
 no route-map TO_BGP_PEER_V6 permit 20
-no route-map TO_BGP_PEER_V6 deny 30
+no route-map TO_BGP_PEER_V6 permit 30
+no route-map TO_BGP_PEER_V6 deny 40
 !
 
diff --git a/src/sonic-bgpcfgd/tests/data/general/peer-group.conf/result_isolate.conf b/src/sonic-bgpcfgd/tests/data/general/peer-group.conf/result_isolate.conf
index 902b8cfcdab9..88017bf2f30a 100644
--- a/src/sonic-bgpcfgd/tests/data/general/peer-group.conf/result_isolate.conf
+++ b/src/sonic-bgpcfgd/tests/data/general/peer-group.conf/result_isolate.conf
@@ -2,10 +2,16 @@
 route-map TO_BGP_PEER_V4 permit 20
   match ip address prefix-list PL_LoopbackV4
   set community 12345:12345
-route-map TO_BGP_PEER_V4 deny 30
+route-map TO_BGP_PEER_V4 permit 30
+  match tag 1001
+  set community 12345:12345
+route-map TO_BGP_PEER_V4 deny 40
 !
 route-map TO_BGP_PEER_V6 permit 20
   match ipv6 address prefix-list PL_LoopbackV6
   set community 12345:12345
-route-map TO_BGP_PEER_V6 deny 30
+route-map TO_BGP_PEER_V6 permit 30
+  match tag 1001
+  set community 12345:12345
+route-map TO_BGP_PEER_V6 deny 40
 !
diff --git a/src/sonic-bgpcfgd/tests/data/general/peer-group.conf/result_unisolate.conf b/src/sonic-bgpcfgd/tests/data/general/peer-group.conf/result_unisolate.conf
index 8fd9fde7f759..8bfcdee993d4 100644
--- a/src/sonic-bgpcfgd/tests/data/general/peer-group.conf/result_unisolate.conf
+++ b/src/sonic-bgpcfgd/tests/data/general/peer-group.conf/result_unisolate.conf
@@ -1,7 +1,9 @@
 
 no route-map TO_BGP_PEER_V4 permit 20
-no route-map TO_BGP_PEER_V4 deny 30
+no route-map TO_BGP_PEER_V4 permit 30
+no route-map TO_BGP_PEER_V4 deny 40
 !
 no route-map TO_BGP_PEER_V6 permit 20
-no route-map TO_BGP_PEER_V6 deny 30
+no route-map TO_BGP_PEER_V6 permit 30
+no route-map TO_BGP_PEER_V6 deny 40
 !
diff --git a/src/sonic-bgpcfgd/tests/data/internal/policies.conf/param_back.json b/src/sonic-bgpcfgd/tests/data/internal/policies.conf/param_back.json
index 37e54d785e27..d39721ae0c87 100644
--- a/src/sonic-bgpcfgd/tests/data/internal/policies.conf/param_back.json
+++ b/src/sonic-bgpcfgd/tests/data/internal/policies.conf/param_back.json
@@ -6,5 +6,11 @@
     },
     "CONFIG_DB__LOOPBACK_INTERFACE": {
         "Loopback4096|10.10.10.10/32": {}
+    },
+    "constants": {
+        "bgp": {
+            "internal_community": "12345:556",
+	    "internal_community_match_tag": "101"
+        }
     }
 }
diff --git a/src/sonic-bgpcfgd/tests/data/internal/policies.conf/param_chasiss_packet.json b/src/sonic-bgpcfgd/tests/data/internal/policies.conf/param_chasiss_packet.json
new file mode 100644
index 000000000000..1e600cc9d72b
--- /dev/null
+++ b/src/sonic-bgpcfgd/tests/data/internal/policies.conf/param_chasiss_packet.json
@@ -0,0 +1,16 @@
+{
+    "CONFIG_DB__DEVICE_METADATA": {
+        "localhost": {
+            "type": "SpineRouter",
+	    "sub_role": "FrontEnd",
+            "switch_type": "chassis-packet"
+        }
+    },
+    "constants": {
+        "bgp": {
+            "internal_community": "12345:556",
+	    "internal_community_match_tag": "101"
+        }
+    },
+    "loopback0_ipv4": "10.10.10.10/32"
+}
diff --git a/src/sonic-bgpcfgd/tests/data/internal/policies.conf/param_front.json b/src/sonic-bgpcfgd/tests/data/internal/policies.conf/param_front.json
index 68c27766d257..f18513d815c8 100644
--- a/src/sonic-bgpcfgd/tests/data/internal/policies.conf/param_front.json
+++ b/src/sonic-bgpcfgd/tests/data/internal/policies.conf/param_front.json
@@ -1,7 +1,13 @@
 {
     "CONFIG_DB__DEVICE_METADATA": {
         "localhost": {
-            "sub_role": "FrontkEnd"
+            "sub_role": "FrontEnd"
+        }
+    },
+    "constants": {
+        "bgp": {
+            "internal_community": "12345:556",
+	    "internal_community_match_tag": "101"
         }
     },
     "loopback0_ipv4": "10.10.10.10/32"
diff --git a/src/sonic-bgpcfgd/tests/data/internal/policies.conf/result_back.conf b/src/sonic-bgpcfgd/tests/data/internal/policies.conf/result_back.conf
index 81b5aab193c6..5ee9967d85ea 100644
--- a/src/sonic-bgpcfgd/tests/data/internal/policies.conf/result_back.conf
+++ b/src/sonic-bgpcfgd/tests/data/internal/policies.conf/result_back.conf
@@ -1,23 +1,23 @@
 !
 ! template: bgpd/templates/internal/policies.conf.j2
 !
-route-map FROM_BGP_INTERNAL_PEER_V4 permit 100
-!
-route-map TO_BGP_INTERNAL_PEER_V4 permit 100
+route-map FROM_BGP_INTERNAL_PEER_V4 permit 1
+ set originator-id 10.10.10.10
 !
 route-map FROM_BGP_INTERNAL_PEER_V6 permit 1
  set ipv6 next-hop prefer-global
  on-match next
 !
-route-map FROM_BGP_INTERNAL_PEER_V6 permit 100
+route-map FROM_BGP_INTERNAL_PEER_V6 permit 2
+ set originator-id 10.10.10.10
 !
-route-map TO_BGP_INTERNAL_PEER_V6 permit 100
+route-map FROM_BGP_INTERNAL_PEER_V4 permit 100
 !
-route-map FROM_BGP_INTERNAL_PEER_V4 permit 2
- set originator-id 10.10.10.10
+route-map FROM_BGP_INTERNAL_PEER_V6 permit 100
 !
-route-map FROM_BGP_INTERNAL_PEER_V6 permit 2
- set originator-id 10.10.10.10
+route-map TO_BGP_INTERNAL_PEER_V4 permit 100
+!
+route-map TO_BGP_INTERNAL_PEER_V6 permit 100
 !
 ! end of template: bgpd/templates/internal/policies.conf.j2
 !
diff --git a/src/sonic-bgpcfgd/tests/data/internal/policies.conf/result_chasiss_packet.conf b/src/sonic-bgpcfgd/tests/data/internal/policies.conf/result_chasiss_packet.conf
new file mode 100644
index 000000000000..e3a4e2e071c8
--- /dev/null
+++ b/src/sonic-bgpcfgd/tests/data/internal/policies.conf/result_chasiss_packet.conf
@@ -0,0 +1,37 @@
+!
+! template: bgpd/templates/internal/policies.conf.j2
+!
+bgp community-list standard DEVICE_INTERNAL_COMMUNITY permit 12345:556
+!
+route-map FROM_BGP_INTERNAL_PEER_V4 permit 1
+  match community DEVICE_INTERNAL_COMMUNITY
+  set comm-list DEVICE_INTERNAL_COMMUNITY delete
+  set tag 101
+!
+route-map FROM_BGP_INTERNAL_PEER_V6 permit 1
+ set ipv6 next-hop prefer-global
+ on-match next
+!
+route-map FROM_BGP_INTERNAL_PEER_V6 permit 2
+  match community DEVICE_INTERNAL_COMMUNITY
+  set comm-list DEVICE_INTERNAL_COMMUNITY delete
+  set tag 101
+!
+route-map TO_BGP_INTERNAL_PEER_V4 permit 1
+  match ip address prefix-list PL_LoopbackV4
+  set community 12345:556
+!
+route-map TO_BGP_INTERNAL_PEER_V6 permit 2
+  match ipv6 address prefix-list PL_LoopbackV6
+  set community 12345:556
+!
+route-map FROM_BGP_INTERNAL_PEER_V4 permit 100
+!
+route-map FROM_BGP_INTERNAL_PEER_V6 permit 100
+!
+route-map TO_BGP_INTERNAL_PEER_V4 permit 100
+!
+route-map TO_BGP_INTERNAL_PEER_V6 permit 100
+!
+! end of template: bgpd/templates/internal/policies.conf.j2
+!
diff --git a/src/sonic-bgpcfgd/tests/data/internal/policies.conf/result_front.conf b/src/sonic-bgpcfgd/tests/data/internal/policies.conf/result_front.conf
index 880530a2797e..0c6405321f17 100644
--- a/src/sonic-bgpcfgd/tests/data/internal/policies.conf/result_front.conf
+++ b/src/sonic-bgpcfgd/tests/data/internal/policies.conf/result_front.conf
@@ -1,16 +1,16 @@
 !
 ! template: bgpd/templates/internal/policies.conf.j2
 !
-route-map FROM_BGP_INTERNAL_PEER_V4 permit 100
-!
-route-map TO_BGP_INTERNAL_PEER_V4 permit 100
-!
 route-map FROM_BGP_INTERNAL_PEER_V6 permit 1
  set ipv6 next-hop prefer-global
  on-match next
 !
+route-map FROM_BGP_INTERNAL_PEER_V4 permit 100
+!
 route-map FROM_BGP_INTERNAL_PEER_V6 permit 100
 !
+route-map TO_BGP_INTERNAL_PEER_V4 permit 100
+!
 route-map TO_BGP_INTERNAL_PEER_V6 permit 100
 !
 ! end of template: bgpd/templates/internal/policies.conf.j2
diff --git a/src/sonic-bgpcfgd/tests/data/sonic-cfggen/bgpd.conf.j2/all.conf b/src/sonic-bgpcfgd/tests/data/sonic-cfggen/bgpd.conf.j2/all.conf
index a7f34245873a..c39115706d79 100644
--- a/src/sonic-bgpcfgd/tests/data/sonic-cfggen/bgpd.conf.j2/all.conf
+++ b/src/sonic-bgpcfgd/tests/data/sonic-cfggen/bgpd.conf.j2/all.conf
@@ -55,7 +55,6 @@ route-map HIDE_INTERNAL permit 20
 router bgp 55555
 !
   bgp log-neighbor-changes
-  bgp suppress-fib-pending
   no bgp default ipv4-unicast
   no bgp ebgp-requires-policy
 !
diff --git a/src/sonic-bgpcfgd/tests/data/sonic-cfggen/bgpd.main.conf.j2/all.conf b/src/sonic-bgpcfgd/tests/data/sonic-cfggen/bgpd.main.conf.j2/all.conf
index d2dc9e40e892..c5ba79d34392 100644
--- a/src/sonic-bgpcfgd/tests/data/sonic-cfggen/bgpd.main.conf.j2/all.conf
+++ b/src/sonic-bgpcfgd/tests/data/sonic-cfggen/bgpd.main.conf.j2/all.conf
@@ -34,7 +34,6 @@ route-map HIDE_INTERNAL permit 10
 router bgp 55555
 !
   bgp log-neighbor-changes
-  bgp suppress-fib-pending
   no bgp default ipv4-unicast
   no bgp ebgp-requires-policy
 !
diff --git a/src/sonic-bgpcfgd/tests/data/sonic-cfggen/bgpd.main.conf.j2/base.conf b/src/sonic-bgpcfgd/tests/data/sonic-cfggen/bgpd.main.conf.j2/base.conf
index 27d04b953a3e..77cc9d6fffd8 100644
--- a/src/sonic-bgpcfgd/tests/data/sonic-cfggen/bgpd.main.conf.j2/base.conf
+++ b/src/sonic-bgpcfgd/tests/data/sonic-cfggen/bgpd.main.conf.j2/base.conf
@@ -12,7 +12,6 @@ ip prefix-list PL_LoopbackV4 permit 55.55.55.55/32
 router bgp 55555
 !
   bgp log-neighbor-changes
-  bgp suppress-fib-pending
   no bgp default ipv4-unicast
   no bgp ebgp-requires-policy
 !
diff --git a/src/sonic-bgpcfgd/tests/data/sonic-cfggen/bgpd.main.conf.j2/defaults.conf b/src/sonic-bgpcfgd/tests/data/sonic-cfggen/bgpd.main.conf.j2/defaults.conf
index b85dd67a5ca0..00b09bd40d9a 100644
--- a/src/sonic-bgpcfgd/tests/data/sonic-cfggen/bgpd.main.conf.j2/defaults.conf
+++ b/src/sonic-bgpcfgd/tests/data/sonic-cfggen/bgpd.main.conf.j2/defaults.conf
@@ -34,7 +34,6 @@ route-map HIDE_INTERNAL permit 10
 router bgp 55555
 !
   bgp log-neighbor-changes
-  bgp suppress-fib-pending
   no bgp default ipv4-unicast
   no bgp ebgp-requires-policy
 !
diff --git a/src/sonic-bgpcfgd/tests/data/sonic-cfggen/bgpd.main.conf.j2/ipv6_lo.conf b/src/sonic-bgpcfgd/tests/data/sonic-cfggen/bgpd.main.conf.j2/ipv6_lo.conf
index 5ee5ce5443aa..50414a89a389 100644
--- a/src/sonic-bgpcfgd/tests/data/sonic-cfggen/bgpd.main.conf.j2/ipv6_lo.conf
+++ b/src/sonic-bgpcfgd/tests/data/sonic-cfggen/bgpd.main.conf.j2/ipv6_lo.conf
@@ -14,7 +14,6 @@ ipv6 prefix-list PL_LoopbackV6 permit fc00::1/128
 router bgp 55555
 !
   bgp log-neighbor-changes
-  bgp suppress-fib-pending
   no bgp default ipv4-unicast
   no bgp ebgp-requires-policy
 !
diff --git a/src/sonic-bgpcfgd/tests/data/sonic-cfggen/bgpd.main.conf.j2/packet_chassis.conf b/src/sonic-bgpcfgd/tests/data/sonic-cfggen/bgpd.main.conf.j2/packet_chassis.conf
index 6b2e1f257948..a949ce6e4512 100644
--- a/src/sonic-bgpcfgd/tests/data/sonic-cfggen/bgpd.main.conf.j2/packet_chassis.conf
+++ b/src/sonic-bgpcfgd/tests/data/sonic-cfggen/bgpd.main.conf.j2/packet_chassis.conf
@@ -34,7 +34,6 @@ route-map HIDE_INTERNAL permit 10
 router bgp 55555
 !
   bgp log-neighbor-changes
-  bgp suppress-fib-pending
   no bgp default ipv4-unicast
   no bgp ebgp-requires-policy
 !
diff --git a/src/sonic-bgpcfgd/tests/data/sonic-cfggen/bgpd.main.conf.j2/voq_chassis.conf b/src/sonic-bgpcfgd/tests/data/sonic-cfggen/bgpd.main.conf.j2/voq_chassis.conf
index efd45eda1ea9..0d9eeebe9e8e 100644
--- a/src/sonic-bgpcfgd/tests/data/sonic-cfggen/bgpd.main.conf.j2/voq_chassis.conf
+++ b/src/sonic-bgpcfgd/tests/data/sonic-cfggen/bgpd.main.conf.j2/voq_chassis.conf
@@ -34,7 +34,6 @@ route-map HIDE_INTERNAL permit 10
 router bgp 55555
 !
   bgp log-neighbor-changes
-  bgp suppress-fib-pending
   no bgp default ipv4-unicast
   no bgp ebgp-requires-policy
 !
diff --git a/src/sonic-bgpcfgd/tests/data/sonic-cfggen/frr.conf.j2/all.conf b/src/sonic-bgpcfgd/tests/data/sonic-cfggen/frr.conf.j2/all.conf
index 8856e58db686..af2e974ee9b7 100644
--- a/src/sonic-bgpcfgd/tests/data/sonic-cfggen/frr.conf.j2/all.conf
+++ b/src/sonic-bgpcfgd/tests/data/sonic-cfggen/frr.conf.j2/all.conf
@@ -71,7 +71,6 @@ route-map HIDE_INTERNAL permit 10
 router bgp 55555
 !
   bgp log-neighbor-changes
-  bgp suppress-fib-pending
   no bgp default ipv4-unicast
   no bgp ebgp-requires-policy
 !
diff --git a/src/sonic-bgpcfgd/tests/data/sonic-cfggen/tsa/isolate.conf b/src/sonic-bgpcfgd/tests/data/sonic-cfggen/tsa/isolate.conf
index 2ea4111dfc26..e775b6d0acb5 100644
--- a/src/sonic-bgpcfgd/tests/data/sonic-cfggen/tsa/isolate.conf
+++ b/src/sonic-bgpcfgd/tests/data/sonic-cfggen/tsa/isolate.conf
@@ -1,5 +1,8 @@
 route-map test_rm_name permit 20
   match ip address prefix-list PL_LoopbackV4
   set community 12345:555
-route-map test_rm_name deny 30
+route-map test_rm_name permit 30
+  match tag 1002
+  set community 12345:555
+route-map test_rm_name deny 40
 !
diff --git a/src/sonic-bgpcfgd/tests/data/sonic-cfggen/tsa/isolate.json b/src/sonic-bgpcfgd/tests/data/sonic-cfggen/tsa/isolate.json
index 807dfe7e1a0c..68ffe27c46a3 100644
--- a/src/sonic-bgpcfgd/tests/data/sonic-cfggen/tsa/isolate.json
+++ b/src/sonic-bgpcfgd/tests/data/sonic-cfggen/tsa/isolate.json
@@ -1,10 +1,11 @@
 {
     "constants": {
         "bgp": {
-            "traffic_shift_community": "12345:555"
+            "traffic_shift_community": "12345:555",
+            "internal_community_match_tag": "1002"
         }
     },
     "route_map_name": "test_rm_name",
     "ip_version": "V4",
     "ip_protocol": "ip"
-}
\ No newline at end of file
+}
diff --git a/src/sonic-bgpcfgd/tests/data/sonic-cfggen/tsa/unisolate.conf b/src/sonic-bgpcfgd/tests/data/sonic-cfggen/tsa/unisolate.conf
index 2adeac6e0ef7..31553e3a9844 100644
--- a/src/sonic-bgpcfgd/tests/data/sonic-cfggen/tsa/unisolate.conf
+++ b/src/sonic-bgpcfgd/tests/data/sonic-cfggen/tsa/unisolate.conf
@@ -1,3 +1,4 @@
 no route-map test_rm permit 20
-no route-map test_rm deny 30
+no route-map test_rm permit 30
+no route-map test_rm deny 40
 !
diff --git a/src/sonic-bgpcfgd/tests/data/voq_chassis/policies.conf/param_base.json b/src/sonic-bgpcfgd/tests/data/voq_chassis/policies.conf/param_base.json
index 7ef21c181d7e..483cc938c59d 100644
--- a/src/sonic-bgpcfgd/tests/data/voq_chassis/policies.conf/param_base.json
+++ b/src/sonic-bgpcfgd/tests/data/voq_chassis/policies.conf/param_base.json
@@ -1,5 +1,11 @@
 {
     "CONFIG_DB__DEVICE_METADATA": {
         "localhost": {}
+    },
+    "constants": {
+        "bgp": {
+            "internal_community": "12345:556",
+	    "internal_community_match_tag": "101"
+        }
     }
 }
diff --git a/src/sonic-bgpcfgd/tests/data/voq_chassis/policies.conf/result_base.conf b/src/sonic-bgpcfgd/tests/data/voq_chassis/policies.conf/result_base.conf
index c26db7bde241..4dc2f9cec96c 100644
--- a/src/sonic-bgpcfgd/tests/data/voq_chassis/policies.conf/result_base.conf
+++ b/src/sonic-bgpcfgd/tests/data/voq_chassis/policies.conf/result_base.conf
@@ -1,17 +1,36 @@
 !
 ! template: bgpd/templates/voq_chassis/policies.conf.j2
 !
+bgp community-list standard DEVICE_INTERNAL_COMMUNITY permit 12345:556
+!
+route-map FROM_VOQ_CHASSIS_V4_PEER permit 1
+  match community DEVICE_INTERNAL_COMMUNITY
+  set comm-list DEVICE_INTERNAL_COMMUNITY delete
+  set tag 101
+!
 route-map FROM_VOQ_CHASSIS_V4_PEER permit 100
 !
-route-map TO_VOQ_CHASSIS_V4_PEER permit 100
+route-map TO_VOQ_CHASSIS_V4_PEER permit 1
+  match ip address prefix-list PL_LoopbackV4
+  set community 12345:556
 !
+route-map TO_VOQ_CHASSIS_V4_PEER permit 100
 !
 route-map FROM_VOQ_CHASSIS_V6_PEER permit 1
  set ipv6 next-hop prefer-global
  on-match next
 !
+route-map FROM_VOQ_CHASSIS_V6_PEER permit 2
+  match community DEVICE_INTERNAL_COMMUNITY
+  set comm-list DEVICE_INTERNAL_COMMUNITY delete
+  set tag 101
+!
 route-map FROM_VOQ_CHASSIS_V6_PEER permit 100
 !
+route-map TO_VOQ_CHASSIS_V6_PEER permit 1
+  match ipv6 address prefix-list PL_LoopbackV6
+  set community 12345:556
+!
 route-map TO_VOQ_CHASSIS_V6_PEER permit 100
 !
 ! end of template: bgpd/templates/voq_chassis/policies.conf.j2
diff --git a/src/sonic-bgpcfgd/tests/test_device_global.py b/src/sonic-bgpcfgd/tests/test_device_global.py
index 2a912c3d05a6..049bcbeec058 100644
--- a/src/sonic-bgpcfgd/tests/test_device_global.py
+++ b/src/sonic-bgpcfgd/tests/test_device_global.py
@@ -13,7 +13,8 @@
 BASE_PATH = os.path.abspath('../sonic-bgpcfgd/tests/data/general/peer-group.conf/')
 global_constants = {
     "bgp":  {
-        "traffic_shift_community" :"12345:12345"
+        "traffic_shift_community" :"12345:12345",
+        "internal_community_match_tag" : "1001"
     }
 }
 
diff --git a/src/sonic-bgpcfgd/tests/test_static_rt_bfd.py b/src/sonic-bgpcfgd/tests/test_static_rt_bfd.py
index 0e4d62475988..11009aae0289 100644
--- a/src/sonic-bgpcfgd/tests/test_static_rt_bfd.py
+++ b/src/sonic-bgpcfgd/tests/test_static_rt_bfd.py
@@ -108,9 +108,9 @@ def test_set_del():
             "ifname": "if1, if2, if3",
         }),
         { 
-            "set_default:default:192.168.1.2" : {'multihop': 'true', 'rx_interval': '50', 'tx_interval': '50', 'multiplier': '3', 'local_addr': '192.168.1.1'},
-            "set_default:default:192.168.2.2" : {'multihop': 'true', 'rx_interval': '50', 'tx_interval': '50', 'multiplier': '3', 'local_addr': '192.168.2.1'},
-            "set_default:default:192.168.3.2" : {'multihop': 'true', 'rx_interval': '50', 'tx_interval': '50', 'multiplier': '3', 'local_addr': '192.168.3.1'}
+            "set_default:default:192.168.1.2" : {'multihop': 'false', 'rx_interval': '50', 'tx_interval': '50', 'multiplier': '3', 'local_addr': '192.168.1.1'},
+            "set_default:default:192.168.2.2" : {'multihop': 'false', 'rx_interval': '50', 'tx_interval': '50', 'multiplier': '3', 'local_addr': '192.168.2.1'},
+            "set_default:default:192.168.3.2" : {'multihop': 'false', 'rx_interval': '50', 'tx_interval': '50', 'multiplier': '3', 'local_addr': '192.168.3.1'}
         },
         {}
     )
@@ -201,9 +201,9 @@ def test_set_del_vrf():
             "nexthop-vrf": "testvrf1, , default",
         }),
         { 
-            "set_testvrf1:default:192.168.1.2" : {'multihop': 'true', 'rx_interval': '50', 'tx_interval': '50', 'multiplier': '3', 'local_addr': '192.168.1.1'},
-            "set_vrfred:default:192.168.2.2" : {'multihop': 'true', 'rx_interval': '50', 'tx_interval': '50', 'multiplier': '3', 'local_addr': '192.168.2.1'},
-            "set_default:default:192.168.3.2" : {'multihop': 'true', 'rx_interval': '50', 'tx_interval': '50', 'multiplier': '3', 'local_addr': '192.168.3.1'}
+            "set_testvrf1:default:192.168.1.2" : {'multihop': 'false', 'rx_interval': '50', 'tx_interval': '50', 'multiplier': '3', 'local_addr': '192.168.1.1'},
+            "set_vrfred:default:192.168.2.2" : {'multihop': 'false', 'rx_interval': '50', 'tx_interval': '50', 'multiplier': '3', 'local_addr': '192.168.2.1'},
+            "set_default:default:192.168.3.2" : {'multihop': 'false', 'rx_interval': '50', 'tx_interval': '50', 'multiplier': '3', 'local_addr': '192.168.3.1'}
         },
         {}
     )
@@ -269,9 +269,9 @@ def test_bfd_del():
             "ifname": "if1, if2, if3",
         }),
         { 
-            "set_default:default:192.168.1.2" : {'multihop': 'true', 'rx_interval': '50', 'tx_interval': '50', 'multiplier': '3', 'local_addr': '192.168.1.1'},
-            "set_default:default:192.168.2.2" : {'multihop': 'true', 'rx_interval': '50', 'tx_interval': '50', 'multiplier': '3', 'local_addr': '192.168.2.1'},
-            "set_default:default:192.168.3.2" : {'multihop': 'true', 'rx_interval': '50', 'tx_interval': '50', 'multiplier': '3', 'local_addr': '192.168.3.1'}
+            "set_default:default:192.168.1.2" : {'multihop': 'false', 'rx_interval': '50', 'tx_interval': '50', 'multiplier': '3', 'local_addr': '192.168.1.1'},
+            "set_default:default:192.168.2.2" : {'multihop': 'false', 'rx_interval': '50', 'tx_interval': '50', 'multiplier': '3', 'local_addr': '192.168.2.1'},
+            "set_default:default:192.168.3.2" : {'multihop': 'false', 'rx_interval': '50', 'tx_interval': '50', 'multiplier': '3', 'local_addr': '192.168.3.1'}
         },
         {}
     )
@@ -322,9 +322,9 @@ def test_set_2routes():
             "ifname": "if1, if2, if3",
         }),
         { 
-            "set_default:default:192.168.1.2" : {'multihop': 'true', 'rx_interval': '50', 'tx_interval': '50', 'multiplier': '3', 'local_addr': '192.168.1.1'},
-            "set_default:default:192.168.2.2" : {'multihop': 'true', 'rx_interval': '50', 'tx_interval': '50', 'multiplier': '3', 'local_addr': '192.168.2.1'},
-            "set_default:default:192.168.3.2" : {'multihop': 'true', 'rx_interval': '50', 'tx_interval': '50', 'multiplier': '3', 'local_addr': '192.168.3.1'}
+            "set_default:default:192.168.1.2" : {'multihop': 'false', 'rx_interval': '50', 'tx_interval': '50', 'multiplier': '3', 'local_addr': '192.168.1.1'},
+            "set_default:default:192.168.2.2" : {'multihop': 'false', 'rx_interval': '50', 'tx_interval': '50', 'multiplier': '3', 'local_addr': '192.168.2.1'},
+            "set_default:default:192.168.3.2" : {'multihop': 'false', 'rx_interval': '50', 'tx_interval': '50', 'multiplier': '3', 'local_addr': '192.168.3.1'}
         },
         {}
     )
@@ -399,9 +399,9 @@ def test_set_bfd_change_hold():
             "ifname": "if1, if2, if3",
         }),
         { 
-            "set_default:default:192.168.1.2" : {'multihop': 'true', 'rx_interval': '50', 'tx_interval': '50', 'multiplier': '3', 'local_addr': '192.168.1.1'},
-            "set_default:default:192.168.2.2" : {'multihop': 'true', 'rx_interval': '50', 'tx_interval': '50', 'multiplier': '3', 'local_addr': '192.168.2.1'},
-            "set_default:default:192.168.3.2" : {'multihop': 'true', 'rx_interval': '50', 'tx_interval': '50', 'multiplier': '3', 'local_addr': '192.168.3.1'}
+            "set_default:default:192.168.1.2" : {'multihop': 'false', 'rx_interval': '50', 'tx_interval': '50', 'multiplier': '3', 'local_addr': '192.168.1.1'},
+            "set_default:default:192.168.2.2" : {'multihop': 'false', 'rx_interval': '50', 'tx_interval': '50', 'multiplier': '3', 'local_addr': '192.168.2.1'},
+            "set_default:default:192.168.3.2" : {'multihop': 'false', 'rx_interval': '50', 'tx_interval': '50', 'multiplier': '3', 'local_addr': '192.168.3.1'}
         },
         {}
     )
@@ -458,9 +458,9 @@ def test_set_bfd_change_hold():
             "ifname": "if1, if2, if3",
         }),
         { 
-            "set_default:default:192.168.1.2" : {'multihop': 'true', 'rx_interval': '50', 'tx_interval': '50', 'multiplier': '3', 'local_addr': '192.168.1.1'},
-            "set_default:default:192.168.2.2" : {'multihop': 'true', 'rx_interval': '50', 'tx_interval': '50', 'multiplier': '3', 'local_addr': '192.168.2.1'},
-            "set_default:default:192.168.3.2" : {'multihop': 'true', 'rx_interval': '50', 'tx_interval': '50', 'multiplier': '3', 'local_addr': '192.168.3.1'}
+            "set_default:default:192.168.1.2" : {'multihop': 'false', 'rx_interval': '50', 'tx_interval': '50', 'multiplier': '3', 'local_addr': '192.168.1.1'},
+            "set_default:default:192.168.2.2" : {'multihop': 'false', 'rx_interval': '50', 'tx_interval': '50', 'multiplier': '3', 'local_addr': '192.168.2.1'},
+            "set_default:default:192.168.3.2" : {'multihop': 'false', 'rx_interval': '50', 'tx_interval': '50', 'multiplier': '3', 'local_addr': '192.168.3.1'}
         },
         {'set_default:2.2.2.0/24': {'bfd':'false', 'nexthop': '192.168.2.2,192.168.1.2,192.168.3.2 ', 'ifname': 'if2,if1,if3', 'expiry': 'false'}}
     )
@@ -504,9 +504,9 @@ def test_set_bfd_change_no_hold():
             "ifname": "if1, if2, if3",
         }),
         { 
-            "set_default:default:192.168.1.2" : {'multihop': 'true', 'rx_interval': '50', 'tx_interval': '50', 'multiplier': '3', 'local_addr': '192.168.1.1'},
-            "set_default:default:192.168.2.2" : {'multihop': 'true', 'rx_interval': '50', 'tx_interval': '50', 'multiplier': '3', 'local_addr': '192.168.2.1'},
-            "set_default:default:192.168.3.2" : {'multihop': 'true', 'rx_interval': '50', 'tx_interval': '50', 'multiplier': '3', 'local_addr': '192.168.3.1'}
+            "set_default:default:192.168.1.2" : {'multihop': 'false', 'rx_interval': '50', 'tx_interval': '50', 'multiplier': '3', 'local_addr': '192.168.1.1'},
+            "set_default:default:192.168.2.2" : {'multihop': 'false', 'rx_interval': '50', 'tx_interval': '50', 'multiplier': '3', 'local_addr': '192.168.2.1'},
+            "set_default:default:192.168.3.2" : {'multihop': 'false', 'rx_interval': '50', 'tx_interval': '50', 'multiplier': '3', 'local_addr': '192.168.3.1'}
         },
         {}
     )
@@ -570,8 +570,8 @@ def test_set_bfd_change_no_hold():
             "ifname": "if1, if2, if3",
         }),
         { 
-            "set_default:default:192.168.1.2" : {'multihop': 'true', 'rx_interval': '50', 'tx_interval': '50', 'multiplier': '3', 'local_addr': '192.168.1.1'},
-            "set_default:default:192.168.3.2" : {'multihop': 'true', 'rx_interval': '50', 'tx_interval': '50', 'multiplier': '3', 'local_addr': '192.168.3.1'}
+            "set_default:default:192.168.1.2" : {'multihop': 'false', 'rx_interval': '50', 'tx_interval': '50', 'multiplier': '3', 'local_addr': '192.168.1.1'},
+            "set_default:default:192.168.3.2" : {'multihop': 'false', 'rx_interval': '50', 'tx_interval': '50', 'multiplier': '3', 'local_addr': '192.168.3.1'}
         },
         {'set_default:2.2.2.0/24': {'nexthop': '192.168.2.2', 'ifname': 'if2', 'nexthop-vrf': 'default', 'expiry': 'false'}}
     )
diff --git a/src/sonic-config-engine/minigraph.py b/src/sonic-config-engine/minigraph.py
index 4975a45b1900..ea89373dff04 100644
--- a/src/sonic-config-engine/minigraph.py
+++ b/src/sonic-config-engine/minigraph.py
@@ -607,7 +607,7 @@ def parse_dpg(dpg, hname):
                         else:
                             prefix = prefix + "/32"
                     static_routes[prefix] = {'nexthop': ",".join(nexthop), 'ifname': ",".join(ifname), 'advertise': advertise}
-                    
+
             if port_nhipv4_map and port_nhipv6_map:
                 subnet_check_ip = list(port_nhipv4_map.values())[0]
                 for subnet_range in ip_intfs_map:
@@ -1986,6 +1986,10 @@ def parse_xml(filename, platform=None, port_config_file=None, asic_name=None, hw
             port['mux_cable'] = "true"
 
     if static_routes:
+        # Enable static Route BFD by default for static route in chassis-packet
+        if switch_type == "chassis-packet":
+            for pfx, data in static_routes.items():
+                data.update({"bfd":"true"})
         results['STATIC_ROUTE'] = static_routes
 
     for nghbr in list(neighbors.keys()):
@@ -2077,10 +2081,6 @@ def parse_xml(filename, platform=None, port_config_file=None, asic_name=None, hw
     if current_device and current_device['type'] in mgmt_device_types:
         results["FLEX_COUNTER_TABLE"] = {counter: {"FLEX_COUNTER_STATUS": "disable"} for counter in mgmt_disabled_counters}
 
-    # Enable bgp-suppress-fib by default for leafrouter
-    if current_device and current_device['type'] in leafrouter_device_types:
-        results['DEVICE_METADATA']['localhost']['suppress-fib-pending'] = 'enabled'
-
     return results
 
 def get_tunnel_entries(tunnel_intfs, tunnel_intfs_qos_remap_config, lo_intfs, tunnel_qos_remap, mux_tunnel_name, peer_switch_ip):
diff --git a/src/sonic-config-engine/tests/sample_output/py2/bgpd_frr.conf b/src/sonic-config-engine/tests/sample_output/py2/bgpd_frr.conf
index 3828af13fd71..2c146698a960 100644
--- a/src/sonic-config-engine/tests/sample_output/py2/bgpd_frr.conf
+++ b/src/sonic-config-engine/tests/sample_output/py2/bgpd_frr.conf
@@ -42,7 +42,6 @@ ip prefix-list LOCAL_VLAN_IPV4_PREFIX seq 10 permit 192.168.0.0/27
 router bgp 65100
 !
   bgp log-neighbor-changes
-  bgp suppress-fib-pending
   no bgp default ipv4-unicast
   no bgp ebgp-requires-policy
 !
diff --git a/src/sonic-config-engine/tests/sample_output/py2/bgpd_frr_backend_asic.conf b/src/sonic-config-engine/tests/sample_output/py2/bgpd_frr_backend_asic.conf
index 45cd03a540a8..d793dfa39a98 100644
--- a/src/sonic-config-engine/tests/sample_output/py2/bgpd_frr_backend_asic.conf
+++ b/src/sonic-config-engine/tests/sample_output/py2/bgpd_frr_backend_asic.conf
@@ -53,7 +53,6 @@ route-map HIDE_INTERNAL permit 10
 router bgp 65100
 !
   bgp log-neighbor-changes
-  bgp suppress-fib-pending
   no bgp default ipv4-unicast
   no bgp ebgp-requires-policy
 !
diff --git a/src/sonic-config-engine/tests/sample_output/py2/bgpd_frr_dualtor.conf b/src/sonic-config-engine/tests/sample_output/py2/bgpd_frr_dualtor.conf
index eda11ab9f285..364a2c34bcaa 100644
--- a/src/sonic-config-engine/tests/sample_output/py2/bgpd_frr_dualtor.conf
+++ b/src/sonic-config-engine/tests/sample_output/py2/bgpd_frr_dualtor.conf
@@ -42,7 +42,6 @@ ip prefix-list LOCAL_VLAN_IPV4_PREFIX seq 10 permit 192.168.0.0/27
 router bgp 65100
 !
   bgp log-neighbor-changes
-  bgp suppress-fib-pending
   no bgp default ipv4-unicast
   no bgp ebgp-requires-policy
   coalesce-time 10000
diff --git a/src/sonic-config-engine/tests/sample_output/py2/bgpd_frr_frontend_asic.conf b/src/sonic-config-engine/tests/sample_output/py2/bgpd_frr_frontend_asic.conf
index 8daeff2a61e9..94bd37e3b90f 100644
--- a/src/sonic-config-engine/tests/sample_output/py2/bgpd_frr_frontend_asic.conf
+++ b/src/sonic-config-engine/tests/sample_output/py2/bgpd_frr_frontend_asic.conf
@@ -53,7 +53,6 @@ route-map HIDE_INTERNAL permit 10
 router bgp 65100
 !
   bgp log-neighbor-changes
-  bgp suppress-fib-pending
   no bgp default ipv4-unicast
   no bgp ebgp-requires-policy
 !
diff --git a/src/sonic-config-engine/tests/sample_output/py2/frr.conf b/src/sonic-config-engine/tests/sample_output/py2/frr.conf
index 032adb8c5106..2653f8fc0893 100644
--- a/src/sonic-config-engine/tests/sample_output/py2/frr.conf
+++ b/src/sonic-config-engine/tests/sample_output/py2/frr.conf
@@ -62,7 +62,6 @@ ip prefix-list LOCAL_VLAN_IPV4_PREFIX seq 10 permit 192.168.0.0/27
 router bgp 65100
 !
   bgp log-neighbor-changes
-  bgp suppress-fib-pending
   no bgp default ipv4-unicast
   no bgp ebgp-requires-policy
 !
diff --git a/src/sonic-config-engine/tests/sample_output/py2/interfaces b/src/sonic-config-engine/tests/sample_output/py2/interfaces
index 90aadce5f44e..15d5f8426247 100644
--- a/src/sonic-config-engine/tests/sample_output/py2/interfaces
+++ b/src/sonic-config-engine/tests/sample_output/py2/interfaces
@@ -38,10 +38,13 @@ iface eth0 inet6 static
     up ip -6 route add default via 2603:10e2:0:2902::1 dev eth0 table default metric 201
     up ip -6 route add 2603:10e2:0:2902::/64 dev eth0 table default
     up ip -6 rule add pref 32765 from 2603:10e2:0:2902::8/128 table default
+    # IPV6 default table not add to lookup by default, management server need this to access IPV6 address when BGP shutdown
+    up ip -6 rule add pref 32767 lookup default
     # management port down rules
     pre-down ip -6 route delete default via 2603:10e2:0:2902::1 dev eth0 table default
     pre-down ip -6 route delete 2603:10e2:0:2902::/64 dev eth0 table default
     pre-down ip -6 rule delete pref 32765 from 2603:10e2:0:2902::8/128 table default
+    pre-down ip -6 rule delete pref 32767 lookup default
 #
 source /etc/network/interfaces.d/*
 #
diff --git a/src/sonic-config-engine/tests/sample_output/py2/t2-chassis-fe-bgpd.conf b/src/sonic-config-engine/tests/sample_output/py2/t2-chassis-fe-bgpd.conf
index 32a9abf88bac..20744efaa40f 100644
--- a/src/sonic-config-engine/tests/sample_output/py2/t2-chassis-fe-bgpd.conf
+++ b/src/sonic-config-engine/tests/sample_output/py2/t2-chassis-fe-bgpd.conf
@@ -58,7 +58,6 @@ ip prefix-list PL_LoopbackV4 permit 4.0.0.0/32
 router bgp 4000
 !
   bgp log-neighbor-changes
-  bgp suppress-fib-pending
   no bgp default ipv4-unicast
   no bgp ebgp-requires-policy
 !
diff --git a/src/sonic-config-engine/tests/sample_output/py2/two_mgmt_interfaces b/src/sonic-config-engine/tests/sample_output/py2/two_mgmt_interfaces
index 319f25c4e91a..1b46be4bc380 100644
--- a/src/sonic-config-engine/tests/sample_output/py2/two_mgmt_interfaces
+++ b/src/sonic-config-engine/tests/sample_output/py2/two_mgmt_interfaces
@@ -53,10 +53,13 @@ iface eth1 inet6 static
     up ip -6 route add default via 2603:10e2:0:abcd::1 dev eth1 table default metric 201
     up ip -6 route add 2603:10e2:0:abcd::/64 dev eth1 table default
     up ip -6 rule add pref 32765 from 2603:10e2:0:abcd::8/128 table default
+    # IPV6 default table not add to lookup by default, management server need this to access IPV6 address when BGP shutdown
+    up ip -6 rule add pref 32767 lookup default
     # management port down rules
     pre-down ip -6 route delete default via 2603:10e2:0:abcd::1 dev eth1 table default
     pre-down ip -6 route delete 2603:10e2:0:abcd::/64 dev eth1 table default
     pre-down ip -6 rule delete pref 32765 from 2603:10e2:0:abcd::8/128 table default
+    pre-down ip -6 rule delete pref 32767 lookup default
 iface eth0 inet6 static
     address 2603:10e2:0:2902::8
     netmask 64
@@ -67,10 +70,13 @@ iface eth0 inet6 static
     up ip -6 route add default via 2603:10e2:0:2902::1 dev eth0 table default metric 201
     up ip -6 route add 2603:10e2:0:2902::/64 dev eth0 table default
     up ip -6 rule add pref 32765 from 2603:10e2:0:2902::8/128 table default
+    # IPV6 default table not add to lookup by default, management server need this to access IPV6 address when BGP shutdown
+    up ip -6 rule add pref 32767 lookup default
     # management port down rules
     pre-down ip -6 route delete default via 2603:10e2:0:2902::1 dev eth0 table default
     pre-down ip -6 route delete 2603:10e2:0:2902::/64 dev eth0 table default
     pre-down ip -6 rule delete pref 32765 from 2603:10e2:0:2902::8/128 table default
+    pre-down ip -6 rule delete pref 32767 lookup default
 #
 source /etc/network/interfaces.d/*
 #
diff --git a/src/sonic-config-engine/tests/sample_output/py3/bgpd_frr.conf b/src/sonic-config-engine/tests/sample_output/py3/bgpd_frr.conf
index e5ad8964454a..e7534d4b9781 100644
--- a/src/sonic-config-engine/tests/sample_output/py3/bgpd_frr.conf
+++ b/src/sonic-config-engine/tests/sample_output/py3/bgpd_frr.conf
@@ -42,7 +42,6 @@ ip prefix-list LOCAL_VLAN_IPV4_PREFIX seq 10 permit 192.168.200.0/27
 router bgp 65100
 !
   bgp log-neighbor-changes
-  bgp suppress-fib-pending
   no bgp default ipv4-unicast
   no bgp ebgp-requires-policy
 !
diff --git a/src/sonic-config-engine/tests/sample_output/py3/bgpd_frr_backend_asic.conf b/src/sonic-config-engine/tests/sample_output/py3/bgpd_frr_backend_asic.conf
index 45cd03a540a8..d793dfa39a98 100644
--- a/src/sonic-config-engine/tests/sample_output/py3/bgpd_frr_backend_asic.conf
+++ b/src/sonic-config-engine/tests/sample_output/py3/bgpd_frr_backend_asic.conf
@@ -53,7 +53,6 @@ route-map HIDE_INTERNAL permit 10
 router bgp 65100
 !
   bgp log-neighbor-changes
-  bgp suppress-fib-pending
   no bgp default ipv4-unicast
   no bgp ebgp-requires-policy
 !
diff --git a/src/sonic-config-engine/tests/sample_output/py3/bgpd_frr_dualtor.conf b/src/sonic-config-engine/tests/sample_output/py3/bgpd_frr_dualtor.conf
index 0ada9a4f8d60..4f606b80838c 100644
--- a/src/sonic-config-engine/tests/sample_output/py3/bgpd_frr_dualtor.conf
+++ b/src/sonic-config-engine/tests/sample_output/py3/bgpd_frr_dualtor.conf
@@ -42,7 +42,6 @@ ip prefix-list LOCAL_VLAN_IPV4_PREFIX seq 10 permit 192.168.200.0/27
 router bgp 65100
 !
   bgp log-neighbor-changes
-  bgp suppress-fib-pending
   no bgp default ipv4-unicast
   no bgp ebgp-requires-policy
   coalesce-time 10000
diff --git a/src/sonic-config-engine/tests/sample_output/py3/bgpd_frr_frontend_asic.conf b/src/sonic-config-engine/tests/sample_output/py3/bgpd_frr_frontend_asic.conf
index 8daeff2a61e9..94bd37e3b90f 100644
--- a/src/sonic-config-engine/tests/sample_output/py3/bgpd_frr_frontend_asic.conf
+++ b/src/sonic-config-engine/tests/sample_output/py3/bgpd_frr_frontend_asic.conf
@@ -53,7 +53,6 @@ route-map HIDE_INTERNAL permit 10
 router bgp 65100
 !
   bgp log-neighbor-changes
-  bgp suppress-fib-pending
   no bgp default ipv4-unicast
   no bgp ebgp-requires-policy
 !
diff --git a/src/sonic-config-engine/tests/sample_output/py3/frr.conf b/src/sonic-config-engine/tests/sample_output/py3/frr.conf
index d0821f1b11ca..5b7eacefe8ba 100644
--- a/src/sonic-config-engine/tests/sample_output/py3/frr.conf
+++ b/src/sonic-config-engine/tests/sample_output/py3/frr.conf
@@ -62,7 +62,6 @@ ip prefix-list LOCAL_VLAN_IPV4_PREFIX seq 10 permit 192.168.200.0/27
 router bgp 65100
 !
   bgp log-neighbor-changes
-  bgp suppress-fib-pending
   no bgp default ipv4-unicast
   no bgp ebgp-requires-policy
 !
diff --git a/src/sonic-config-engine/tests/sample_output/py3/interfaces b/src/sonic-config-engine/tests/sample_output/py3/interfaces
index 90aadce5f44e..15d5f8426247 100644
--- a/src/sonic-config-engine/tests/sample_output/py3/interfaces
+++ b/src/sonic-config-engine/tests/sample_output/py3/interfaces
@@ -38,10 +38,13 @@ iface eth0 inet6 static
     up ip -6 route add default via 2603:10e2:0:2902::1 dev eth0 table default metric 201
     up ip -6 route add 2603:10e2:0:2902::/64 dev eth0 table default
     up ip -6 rule add pref 32765 from 2603:10e2:0:2902::8/128 table default
+    # IPV6 default table not add to lookup by default, management server need this to access IPV6 address when BGP shutdown
+    up ip -6 rule add pref 32767 lookup default
     # management port down rules
     pre-down ip -6 route delete default via 2603:10e2:0:2902::1 dev eth0 table default
     pre-down ip -6 route delete 2603:10e2:0:2902::/64 dev eth0 table default
     pre-down ip -6 rule delete pref 32765 from 2603:10e2:0:2902::8/128 table default
+    pre-down ip -6 rule delete pref 32767 lookup default
 #
 source /etc/network/interfaces.d/*
 #
diff --git a/src/sonic-config-engine/tests/sample_output/py3/t2-chassis-fe-bgpd.conf b/src/sonic-config-engine/tests/sample_output/py3/t2-chassis-fe-bgpd.conf
index 32a9abf88bac..20744efaa40f 100644
--- a/src/sonic-config-engine/tests/sample_output/py3/t2-chassis-fe-bgpd.conf
+++ b/src/sonic-config-engine/tests/sample_output/py3/t2-chassis-fe-bgpd.conf
@@ -58,7 +58,6 @@ ip prefix-list PL_LoopbackV4 permit 4.0.0.0/32
 router bgp 4000
 !
   bgp log-neighbor-changes
-  bgp suppress-fib-pending
   no bgp default ipv4-unicast
   no bgp ebgp-requires-policy
 !
diff --git a/src/sonic-config-engine/tests/sample_output/py3/two_mgmt_interfaces b/src/sonic-config-engine/tests/sample_output/py3/two_mgmt_interfaces
index 490a27366fd3..4be6dcd5d801 100644
--- a/src/sonic-config-engine/tests/sample_output/py3/two_mgmt_interfaces
+++ b/src/sonic-config-engine/tests/sample_output/py3/two_mgmt_interfaces
@@ -39,10 +39,13 @@ iface eth0 inet6 static
     up ip -6 route add default via 2603:10e2:0:2902::1 dev eth0 table default metric 201
     up ip -6 route add 2603:10e2:0:2902::/64 dev eth0 table default
     up ip -6 rule add pref 32765 from 2603:10e2:0:2902::8/128 table default
+    # IPV6 default table not add to lookup by default, management server need this to access IPV6 address when BGP shutdown
+    up ip -6 rule add pref 32767 lookup default
     # management port down rules
     pre-down ip -6 route delete default via 2603:10e2:0:2902::1 dev eth0 table default
     pre-down ip -6 route delete 2603:10e2:0:2902::/64 dev eth0 table default
     pre-down ip -6 rule delete pref 32765 from 2603:10e2:0:2902::8/128 table default
+    pre-down ip -6 rule delete pref 32767 lookup default
 iface eth1 inet static
     address 10.0.10.100
     netmask 255.255.255.0
@@ -67,10 +70,13 @@ iface eth1 inet6 static
     up ip -6 route add default via 2603:10e2:0:abcd::1 dev eth1 table default metric 201
     up ip -6 route add 2603:10e2:0:abcd::/64 dev eth1 table default
     up ip -6 rule add pref 32765 from 2603:10e2:0:abcd::8/128 table default
+    # IPV6 default table not add to lookup by default, management server need this to access IPV6 address when BGP shutdown
+    up ip -6 rule add pref 32767 lookup default
     # management port down rules
     pre-down ip -6 route delete default via 2603:10e2:0:abcd::1 dev eth1 table default
     pre-down ip -6 route delete 2603:10e2:0:abcd::/64 dev eth1 table default
     pre-down ip -6 rule delete pref 32765 from 2603:10e2:0:abcd::8/128 table default
+    pre-down ip -6 rule delete pref 32767 lookup default
 #
 source /etc/network/interfaces.d/*
 #
diff --git a/src/sonic-config-engine/tests/test_cfggen.py b/src/sonic-config-engine/tests/test_cfggen.py
index 9a96dd552916..69261966dfec 100644
--- a/src/sonic-config-engine/tests/test_cfggen.py
+++ b/src/sonic-config-engine/tests/test_cfggen.py
@@ -1029,14 +1029,14 @@ def test_minigraph_bgp_packet_chassis_static_route(self):
         output = self.run_script(argument)
         self.assertEqual(
             utils.to_dict(output.strip()),
-            utils.to_dict("{'8.0.0.1/32': {'nexthop': '192.168.1.2,192.168.2.2', 'ifname': 'PortChannel40,PortChannel50', 'advertise':'false'}}")
+            utils.to_dict("{'8.0.0.1/32': {'nexthop': '192.168.1.2,192.168.2.2', 'ifname': 'PortChannel40,PortChannel50', 'advertise':'false', 'bfd':'true'}}")
         )
 
         argument = ['-m', self.packet_chassis_graph, '-p', self.packet_chassis_port_ini, '-n', "asic1", '-v', "STATIC_ROUTE"]
         output = self.run_script(argument)
         self.assertEqual(
             utils.to_dict(output.strip()),
-            utils.to_dict("{'8.0.0.1/32': {'nexthop': '192.168.1.2,192.168.2.2', 'ifname': 'PortChannel40,PortChannel50', 'advertise':'false'}}")
+            utils.to_dict("{'8.0.0.1/32': {'nexthop': '192.168.1.2,192.168.2.2', 'ifname': 'PortChannel40,PortChannel50', 'advertise':'false', 'bfd':'true'}}")
         )
 
     def test_minigraph_bgp_packet_chassis_vlan_subintf(self):
diff --git a/src/sonic-containercfgd/containercfgd/containercfgd.py b/src/sonic-containercfgd/containercfgd/containercfgd.py
index 4eda8a6d8b40..f604034fc3d7 100644
--- a/src/sonic-containercfgd/containercfgd/containercfgd.py
+++ b/src/sonic-containercfgd/containercfgd/containercfgd.py
@@ -1,3 +1,6 @@
+from swsscommon.swsscommon import RestartWaiter
+RestartWaiter.waitAdvancedBootDone()
+
 import os
 import re
 import signal
@@ -5,7 +8,7 @@
 import sys
 
 from sonic_py_common import daemon_base, logger
-from swsscommon.swsscommon import ConfigDBConnector, RestartWaiter
+from swsscommon.swsscommon import ConfigDBConnector
 
 SYSLOG_IDENTIFIER = "containercfgd"
 logger = logger.Logger(SYSLOG_IDENTIFIER)
@@ -101,10 +104,9 @@ class SyslogHandler:
     # Regular expressions to extract value from rsyslog.conf
     INTERVAL_PATTERN = '.*SystemLogRateLimitInterval\s+(\d+).*'
     BURST_PATTERN = '.*SystemLogRateLimitBurst\s+(\d+).*'
-    TARGET_IP_PATTERN = '.*target="(.*?)".*'
 
     def __init__(self):
-        self.current_interval, self.current_burst, self.target_ip = self.parse_syslog_conf()
+        self.current_interval, self.current_burst = self.parse_syslog_conf()
 
     def handle_config(self, table, key, data):
         """Handle CONFIG DB change. Callback by ConfigDBConnector.
@@ -149,7 +151,7 @@ def update_syslog_config(self, data):
         if os.path.exists(self.TMP_SYSLOG_CONF_PATH):
             os.remove(self.TMP_SYSLOG_CONF_PATH)
         with open(self.TMP_SYSLOG_CONF_PATH, 'w+') as f:
-            json_args = f'{{"target_ip": "{self.target_ip}", "container_name": "{container_name}" }}'
+            json_args = f'{{"container_name": "{container_name}" }}'
             output = run_command(['sonic-cfggen', '-d', '-t', '/usr/share/sonic/templates/rsyslog-container.conf.j2', '-a', json_args])
             f.write(output)
         run_command(['cp', self.TMP_SYSLOG_CONF_PATH, self.SYSLOG_CONF_PATH])
@@ -161,11 +163,10 @@ def parse_syslog_conf(self):
         """Passe existing syslog conf and extract config values
 
         Returns:
-            tuple: interval,burst,target_ip
+            tuple: interval,burst
         """
         interval = '0'
         burst = '0'
-        target_ip = None
 
         with open(self.SYSLOG_CONF_PATH, 'r') as f:
             content = f.read()
@@ -179,15 +180,10 @@ def parse_syslog_conf(self):
                 burst = match.group(1)
                 break
 
-            pattern = re.compile(self.TARGET_IP_PATTERN)
-            for match in pattern.finditer(content):
-                target_ip = match.group(1)
-                break
-        return interval, burst, target_ip
+        return interval, burst
 
 
 def main():
-    RestartWaiter.waitAdvancedBootDone()
     global container_name
     container_name = os.environ['CONTAINER_NAME']
     daemon = ContainerConfigDaemon()
diff --git a/src/sonic-containercfgd/tests/test_config_daemon.py b/src/sonic-containercfgd/tests/test_config_daemon.py
index 3604a32ab2d8..05014d397306 100644
--- a/src/sonic-containercfgd/tests/test_config_daemon.py
+++ b/src/sonic-containercfgd/tests/test_config_daemon.py
@@ -2,6 +2,9 @@
 import sys
 from unittest import mock
 
+from swsscommon import swsscommon
+swsscommon.RestartWaiter = mock.MagicMock()
+
 test_path = os.path.dirname(os.path.abspath(__file__))
 modules_path = os.path.dirname(test_path)
 sys.path.insert(0, modules_path)
diff --git a/src/sonic-containercfgd/tests/test_syslog_config.py b/src/sonic-containercfgd/tests/test_syslog_config.py
index 23e5887b9d26..a823d9f9aea6 100644
--- a/src/sonic-containercfgd/tests/test_syslog_config.py
+++ b/src/sonic-containercfgd/tests/test_syslog_config.py
@@ -2,6 +2,9 @@
 import sys
 from unittest import mock
 
+from swsscommon import swsscommon
+swsscommon.RestartWaiter = mock.MagicMock()
+
 test_path = os.path.dirname(os.path.abspath(__file__))
 modules_path = os.path.dirname(test_path)
 sys.path.insert(0, modules_path)
@@ -49,7 +52,7 @@ def test_handle_init_data():
 
 
 @mock.patch('containercfgd.containercfgd.run_command')
-@mock.patch('containercfgd.containercfgd.SyslogHandler.parse_syslog_conf', mock.MagicMock(return_value=('100', '200', '127.0.0.1')))
+@mock.patch('containercfgd.containercfgd.SyslogHandler.parse_syslog_conf', mock.MagicMock(return_value=('100', '200')))
 def test_update_syslog_config(mock_run_cmd):
     mock_run_cmd.return_value = ""
     handler = containercfgd.SyslogHandler()
@@ -69,13 +72,11 @@ def test_update_syslog_config(mock_run_cmd):
 def test_parse_syslog_conf():
     handler = containercfgd.SyslogHandler()
     handler.SYSLOG_CONF_PATH = os.path.join(test_path, 'mock_rsyslog.conf')
-    interval, burst, target_ip = handler.parse_syslog_conf()
+    interval, burst = handler.parse_syslog_conf()
     assert interval == '50'
     assert burst == '10002'
-    assert target_ip == '127.0.0.1'
 
     handler.SYSLOG_CONF_PATH = os.path.join(test_path, 'mock_empty_rsyslog.conf')
-    interval, burst, target_ip = handler.parse_syslog_conf()
+    interval, burst = handler.parse_syslog_conf()
     assert interval == '0'
     assert burst == '0'
-    assert target_ip is None
diff --git a/src/sonic-device-data/tests/permitted_list b/src/sonic-device-data/tests/permitted_list
index b3acbdfec1cc..253dfe27c3d9 100644
--- a/src/sonic-device-data/tests/permitted_list
+++ b/src/sonic-device-data/tests/permitted_list
@@ -326,6 +326,7 @@ phy_pcs_repeater
 l3_alpm_hit_skip
 sai_verify_incoming_chksum
 phy_an_lt_msft
+phy_unlos_msft
 system_ref_core_clock_khz
 xflow_macsec_secure_chan_to_num_secure_assoc_encrypt
 xflow_macsec_secure_chan_to_num_secure_assoc_decrypt
diff --git a/src/sonic-frr/patch/0005-Add-support-of-bgp-l3vni-evpn.patch b/src/sonic-frr/patch/0005-Add-support-of-bgp-l3vni-evpn.patch
deleted file mode 100644
index fe2636c2e289..000000000000
--- a/src/sonic-frr/patch/0005-Add-support-of-bgp-l3vni-evpn.patch
+++ /dev/null
@@ -1,121 +0,0 @@
-From f5f0018266c98ad96cdbe69ae60d501de21e5600 Mon Sep 17 00:00:00 2001
-From: Stepan Blyschak <stepanb@nvidia.com>
-Date: Thu, 20 Oct 2022 13:19:31 +0000
-Subject: [PATCH] From 369bbb4d62aa47d5a6d5157ca6ea819c4cb80f15 Mon Sep 17
- 00:00:00 2001 Subject: [PATCH 07/13] Added support of L3VNI EVPN
-
-This is temp patch till Prefix to ARP indirection is add in neighorch
-
-Signed-off-by: Kishore Kunal <kishore.kunal@broadcom.com>
-Signed-off-by: Stepan Blyschak <stepanb@nvidia.com>
-
-diff --git a/lib/nexthop.c b/lib/nexthop.c
-index 7ebc4fefb..2f7bb0e7b 100644
---- a/lib/nexthop.c
-+++ b/lib/nexthop.c
-@@ -813,6 +813,7 @@ void nexthop_copy_no_recurse(struct nexthop *copy,
- 	memcpy(&copy->src, &nexthop->src, sizeof(nexthop->src));
- 	memcpy(&copy->rmap_src, &nexthop->rmap_src, sizeof(nexthop->rmap_src));
- 	copy->rparent = rparent;
-+	memcpy(&copy->nh_encap.encap_data.rmac, &nexthop->nh_encap.encap_data.rmac, ETH_ALEN);
- 	if (nexthop->nh_label)
- 		nexthop_add_labels(copy, nexthop->nh_label_type,
- 				   nexthop->nh_label->num_labels,
-diff --git a/lib/nexthop.h b/lib/nexthop.h
-index f1309aa52..7b4bbbafd 100644
---- a/lib/nexthop.h
-+++ b/lib/nexthop.h
-@@ -66,6 +66,11 @@ enum nh_encap_type {
- /* Backup index value is limited */
- #define NEXTHOP_BACKUP_IDX_MAX 255
- 
-+struct vxlan_nh_encap {
-+	vni_t vni;
-+	struct ethaddr rmac;
-+};
-+
- /* Nexthop structure. */
- struct nexthop {
- 	struct nexthop *next;
-@@ -137,7 +142,7 @@ struct nexthop {
- 	/* Encapsulation information. */
- 	enum nh_encap_type nh_encap_type;
- 	union {
--		vni_t vni;
-+		struct vxlan_nh_encap encap_data;
- 	} nh_encap;
- 
- 	/* SR-TE color used for matching SR-TE policies */
-diff --git a/zebra/rt_netlink.c b/zebra/rt_netlink.c
-index 79d79d74b..325199eff 100644
---- a/zebra/rt_netlink.c
-+++ b/zebra/rt_netlink.c
-@@ -1969,6 +1969,7 @@ static int netlink_route_nexthop_encap(struct nlmsghdr *n, size_t nlen,
- 				       struct nexthop *nh)
- {
- 	struct rtattr *nest;
-+	struct vxlan_nh_encap* encap_data;
- 
- 	switch (nh->nh_encap_type) {
- 	case NET_VXLAN:
-@@ -1979,9 +1980,21 @@ static int netlink_route_nexthop_encap(struct nlmsghdr *n, size_t nlen,
- 		if (!nest)
- 			return false;
- 
-+		encap_data = &nh->nh_encap.encap_data;
-+
- 		if (!nl_attr_put32(n, nlen, 0 /* VXLAN_VNI */,
--				   nh->nh_encap.vni))
-+				   encap_data->vni))
-+			return false;
-+
-+		if (ZEBRA_DEBUG_KERNEL)
-+			zlog_debug(
-+				"%s: VNI:%d RMAC:%pEA", __func__, encap_data->vni,
-+				&encap_data->rmac);
-+
-+		if (!nl_attr_put(n, nlen, 1 /* VXLAN_RMAC */,
-+					&encap_data->rmac, sizeof(encap_data->rmac)))
- 			return false;
-+
- 		nl_attr_nest_end(n, nest);
- 		break;
- 	}
-diff --git a/zebra/zapi_msg.c b/zebra/zapi_msg.c
-index c0945eae2..157c33ced 100644
---- a/zebra/zapi_msg.c
-+++ b/zebra/zapi_msg.c
-@@ -1605,6 +1605,8 @@ static struct nexthop *nexthop_from_zapi(const struct zapi_nexthop *api_nh,
- 			vtep_ip.ipa_type = IPADDR_V4;
- 			memcpy(&(vtep_ip.ipaddr_v4), &(api_nh->gate.ipv4),
- 			       sizeof(struct in_addr));
-+			memcpy(&(nexthop->nh_encap.encap_data.rmac),
-+				   &api_nh->rmac, ETH_ALEN);
- 			zebra_rib_queue_evpn_route_add(
- 				api_nh->vrf_id, &api_nh->rmac, &vtep_ip, p);
- 			SET_FLAG(nexthop->flags, NEXTHOP_FLAG_EVPN);
-@@ -1639,6 +1641,8 @@ static struct nexthop *nexthop_from_zapi(const struct zapi_nexthop *api_nh,
- 			vtep_ip.ipa_type = IPADDR_V6;
- 			memcpy(&vtep_ip.ipaddr_v6, &(api_nh->gate.ipv6),
- 			       sizeof(struct in6_addr));
-+			memcpy(&(nexthop->nh_encap.encap_data.rmac),
-+				   &api_nh->rmac, ETH_ALEN);
- 			zebra_rib_queue_evpn_route_add(
- 				api_nh->vrf_id, &api_nh->rmac, &vtep_ip, p);
- 			SET_FLAG(nexthop->flags, NEXTHOP_FLAG_EVPN);
-diff --git a/zebra/zebra_dplane.c b/zebra/zebra_dplane.c
-index f6f436f39..c8511bd28 100644
---- a/zebra/zebra_dplane.c
-+++ b/zebra/zebra_dplane.c
-@@ -2917,7 +2917,7 @@ int dplane_ctx_route_init(struct zebra_dplane_ctx *ctx, enum dplane_op_e op,
- 		zl3vni = zl3vni_from_vrf(nexthop->vrf_id);
- 		if (zl3vni && is_l3vni_oper_up(zl3vni)) {
- 			nexthop->nh_encap_type = NET_VXLAN;
--			nexthop->nh_encap.vni = zl3vni->vni;
-+			nexthop->nh_encap.encap_data.vni = zl3vni->vni;
- 		}
- 	}
- 
--- 
-2.17.1
-
diff --git a/src/sonic-frr/patch/0007-ignore-route-from-default-table.patch b/src/sonic-frr/patch/0007-ignore-route-from-default-table.patch
deleted file mode 100644
index 52167d765287..000000000000
--- a/src/sonic-frr/patch/0007-ignore-route-from-default-table.patch
+++ /dev/null
@@ -1,31 +0,0 @@
-From 1a639f2dcd400997345dab424a2adbc091752661 Mon Sep 17 00:00:00 2001
-From: Stepan Blyschak <stepanb@nvidia.com>
-Date: Thu, 20 Oct 2022 13:07:18 +0000
-Subject: [PATCH] From ca66350aecf7db3354019480d11754fabae3a97c Mon Sep 17
- 00:00:00 2001 Subject: [PATCH 09/13] ignore route from default table
-
-Signed-off-by: Stepan Blyschak <stepanb@nvidia.com>
-
-diff --git a/zebra/dplane_fpm_nl.c b/zebra/dplane_fpm_nl.c
-index 0a9fecc9d..b18a96353 100644
---- a/zebra/dplane_fpm_nl.c
-+++ b/zebra/dplane_fpm_nl.c
-@@ -814,6 +814,15 @@ static int fpm_nl_enqueue(struct fpm_nl_ctx *fnc, struct zebra_dplane_ctx *ctx)
- 		|| op == DPLANE_OP_NH_UPDATE))
- 		return 0;
- 
-+	/*
-+	 * Ignore route from default table, because when mgmt port goes down,
-+	 * zebra will remove the default route and causing ASIC to blackhole IO.
-+	 */
-+	if (dplane_ctx_get_table(ctx) == RT_TABLE_DEFAULT) {
-+		zlog_debug("%s: discard default table route", __func__);
-+		return 0;
-+	}
-+
- 	nl_buf_len = 0;
- 
- 	frr_mutex_lock_autounlock(&fnc->obuf_mutex);
--- 
-2.17.1
-
diff --git a/src/sonic-frr/patch/0008-Use-vrf_id-for-vrf-not-tabled_id.patch b/src/sonic-frr/patch/0008-Use-vrf_id-for-vrf-not-tabled_id.patch
deleted file mode 100644
index ae8b05f06bd0..000000000000
--- a/src/sonic-frr/patch/0008-Use-vrf_id-for-vrf-not-tabled_id.patch
+++ /dev/null
@@ -1,111 +0,0 @@
-From 44f3736ee601e06e43e978fa075402c3da4823bd Mon Sep 17 00:00:00 2001
-From: Stepan Blyschak <stepanb@nvidia.com>
-Date: Mon, 16 Jan 2023 11:45:19 +0000
-Subject: [PATCH] From 349e3f758860be0077b69919c39764d3486ec44a Mon Sep 17
- 00:00:00 2001 Subject: [PATCH] use vrf id instead of table id
-
-Signed-off-by: Stepan Blyschak <stepanb@nvidia.com>
-
-diff --git a/zebra/rt_netlink.c b/zebra/rt_netlink.c
-index 325199eff..587045eac 100644
---- a/zebra/rt_netlink.c
-+++ b/zebra/rt_netlink.c
-@@ -406,6 +406,30 @@ vrf_id_t vrf_lookup_by_table(uint32_t table_id, ns_id_t ns_id)
- 	return VRF_DEFAULT;
- }
- 
-+static uint32_t table_lookup_by_vrf(vrf_id_t vrf_id, ns_id_t ns_id)
-+{
-+	struct vrf *vrf;
-+	struct zebra_vrf *zvrf;
-+
-+	RB_FOREACH (vrf, vrf_id_head, &vrfs_by_id) {
-+		zvrf = vrf->info;
-+		if (zvrf == NULL)
-+			continue;
-+		/* case vrf with netns : match the netnsid */
-+		if (vrf_is_backend_netns()) {
-+			if (ns_id == zvrf_id(zvrf))
-+                return zvrf->table_id;
-+		} else {
-+			/* VRF is VRF_BACKEND_VRF_LITE */
-+			if (zvrf_id(zvrf) != vrf_id)
-+				continue;
-+            return zvrf->table_id;
-+		}
-+	}
-+
-+	return RT_TABLE_UNSPEC;
-+}
-+
- /**
-  * @parse_encap_mpls() - Parses encapsulated mpls attributes
-  * @tb:         Pointer to rtattr to look for nested items in.
-@@ -782,14 +806,26 @@ int netlink_route_change_read_unicast_internal(struct nlmsghdr *h,
- 	if (rtm->rtm_family == AF_MPLS)
- 		return 0;
- 
--	/* Table corresponding to route. */
--	if (tb[RTA_TABLE])
--		table = *(int *)RTA_DATA(tb[RTA_TABLE]);
--	else
--		table = rtm->rtm_table;
-+	if (!ctx) {
-+		/* Table corresponding to route. */
-+		if (tb[RTA_TABLE])
-+			table = *(int *)RTA_DATA(tb[RTA_TABLE]);
-+		else
-+			table = rtm->rtm_table;
-+
-+		/* Map to VRF */
-+		vrf_id = vrf_lookup_by_table(table, ns_id);
-+	} else {
-+		/* With FPM, rtm_table contains vrf id, see netlink_route_multipath_msg_encode */
-+		if (tb[RTA_TABLE])
-+			vrf_id = *(int *)RTA_DATA(tb[RTA_TABLE]);
-+		else
-+			vrf_id = rtm->rtm_table;
-+
-+		/* Map to table */
-+		table = table_lookup_by_vrf(vrf_id, ns_id);
-+	}
- 
--	/* Map to VRF */
--	vrf_id = vrf_lookup_by_table(table, ns_id);
- 	if (vrf_id == VRF_DEFAULT) {
- 		if (!is_zebra_valid_kernel_table(table)
- 		    && !is_zebra_main_routing_table(table))
-@@ -2102,12 +2138,24 @@ ssize_t netlink_route_multipath_msg_encode(int cmd,
- 
- 	/* Table corresponding to this route. */
- 	table_id = dplane_ctx_get_table(ctx);
--	if (table_id < 256)
--		req->r.rtm_table = table_id;
--	else {
--		req->r.rtm_table = RT_TABLE_UNSPEC;
--		if (!nl_attr_put32(&req->n, datalen, RTA_TABLE, table_id))
--			return 0;
-+	if (!fpm) {
-+		if (table_id < 256)
-+			req->r.rtm_table = table_id;
-+		else {
-+			req->r.rtm_table = RT_TABLE_UNSPEC;
-+			if (!nl_attr_put32(&req->n, datalen, RTA_TABLE, table_id))
-+				return 0;
-+		}
-+	} else {
-+		/* Put vrf if_index instead of table id */
-+		vrf_id_t vrf = dplane_ctx_get_vrf(ctx);
-+		if (vrf < 256)
-+			req->r.rtm_table = vrf;
-+		else {
-+			req->r.rtm_table = RT_TABLE_UNSPEC;
-+			if (!nl_attr_put32(&req->n, datalen, RTA_TABLE, vrf))
-+				return 0;
-+		}
- 	}
- 
- 	if (IS_ZEBRA_DEBUG_KERNEL)
--- 
-2.17.1
-
diff --git a/src/sonic-frr/patch/0012-zebra-Rename-vrf_lookup_by_tableid-to-zebra_vrf_look.patch b/src/sonic-frr/patch/0012-zebra-Rename-vrf_lookup_by_tableid-to-zebra_vrf_look.patch
index ca6517fbf655..01f8d04c2b78 100644
--- a/src/sonic-frr/patch/0012-zebra-Rename-vrf_lookup_by_tableid-to-zebra_vrf_look.patch
+++ b/src/sonic-frr/patch/0012-zebra-Rename-vrf_lookup_by_tableid-to-zebra_vrf_look.patch
@@ -1,4 +1,4 @@
-From 2b9c7592a9857ddccc77b9d3f178e0c5bd5f19ed Mon Sep 17 00:00:00 2001
+From 6a3ae11c9b1480966b22d4f9b67a40b76d96aa15 Mon Sep 17 00:00:00 2001
 From: Donald Sharp <sharpd@nvidia.com>
 Date: Wed, 26 Apr 2023 23:25:27 -0400
 Subject: [PATCH] zebra: Rename vrf_lookup_by_tableid to zebra_vrf_lookup..
@@ -9,12 +9,19 @@ we need zebra specific data to find this vrf_id and as such
 it does not belong in vrf.c
 
 Signed-off-by: Donald Sharp <sharpd@nvidia.com>
+---
+ zebra/if_netlink.c |  3 ++-
+ zebra/rt_netlink.c | 31 ++-----------------------------
+ zebra/rt_netlink.h |  1 -
+ zebra/zebra_vrf.c  | 27 +++++++++++++++++++++++++++
+ zebra/zebra_vrf.h  |  1 +
+ 5 files changed, 32 insertions(+), 31 deletions(-)
 
 diff --git a/zebra/if_netlink.c b/zebra/if_netlink.c
-index 81347b550a..4599121261 100644
+index cd200d821d7a..cea47b4c30af 100644
 --- a/zebra/if_netlink.c
 +++ b/zebra/if_netlink.c
-@@ -342,7 +342,8 @@ static void netlink_vrf_change(struct nlmsghdr *h, struct rtattr *tb,
+@@ -325,7 +325,8 @@ static void netlink_vrf_change(struct nlmsghdr *h, struct rtattr *tb,
  		if (!vrf_lookup_by_id((vrf_id_t)ifi->ifi_index)) {
  			vrf_id_t exist_id;
  
@@ -25,10 +32,10 @@ index 81347b550a..4599121261 100644
  				vrf = vrf_lookup_by_id(exist_id);
  
 diff --git a/zebra/rt_netlink.c b/zebra/rt_netlink.c
-index 587045eac2..6b9b047858 100644
+index de01ced411ef..0f542ab80756 100644
 --- a/zebra/rt_netlink.c
 +++ b/zebra/rt_netlink.c
-@@ -379,33 +379,6 @@ static inline int proto2zebra(int proto, int family, bool is_nexthop)
+@@ -380,33 +380,6 @@ static inline int proto2zebra(int proto, int family, bool is_nexthop)
  	return proto;
  }
  
@@ -59,19 +66,19 @@ index 587045eac2..6b9b047858 100644
 -	return VRF_DEFAULT;
 -}
 -
- static uint32_t table_lookup_by_vrf(vrf_id_t vrf_id, ns_id_t ns_id)
- {
- 	struct vrf *vrf;
-@@ -814,7 +787,7 @@ int netlink_route_change_read_unicast_internal(struct nlmsghdr *h,
- 			table = rtm->rtm_table;
+ /**
+  * @parse_encap_mpls() - Parses encapsulated mpls attributes
+  * @tb:         Pointer to rtattr to look for nested items in.
+@@ -790,7 +763,7 @@ int netlink_route_change_read_unicast_internal(struct nlmsghdr *h,
+ 		table = rtm->rtm_table;
  
- 		/* Map to VRF */
--		vrf_id = vrf_lookup_by_table(table, ns_id);
-+		vrf_id = zebra_vrf_lookup_by_table(table, ns_id);
- 	} else {
- 		/* With FPM, rtm_table contains vrf id, see netlink_route_multipath_msg_encode */
- 		if (tb[RTA_TABLE])
-@@ -1114,7 +1087,7 @@ static int netlink_route_change_read_multicast(struct nlmsghdr *h,
+ 	/* Map to VRF */
+-	vrf_id = vrf_lookup_by_table(table, ns_id);
++	vrf_id = zebra_vrf_lookup_by_table(table, ns_id);
+ 	if (vrf_id == VRF_DEFAULT) {
+ 		if (!is_zebra_valid_kernel_table(table)
+ 		    && !is_zebra_main_routing_table(table))
+@@ -1079,7 +1052,7 @@ static int netlink_route_change_read_multicast(struct nlmsghdr *h,
  	else
  		table = rtm->rtm_table;
  
@@ -81,10 +88,10 @@ index 587045eac2..6b9b047858 100644
  	if (tb[RTA_IIF])
  		iif = *(int *)RTA_DATA(tb[RTA_IIF]);
 diff --git a/zebra/rt_netlink.h b/zebra/rt_netlink.h
-index 8506367ae4..364aac0f6b 100644
+index 3ca59ce676f3..d9d0ee76249a 100644
 --- a/zebra/rt_netlink.h
 +++ b/zebra/rt_netlink.h
-@@ -102,7 +102,6 @@ extern int netlink_macfdb_read_specific_mac(struct zebra_ns *zns,
+@@ -90,7 +90,6 @@ extern int netlink_macfdb_read_specific_mac(struct zebra_ns *zns,
  					    uint16_t vid);
  extern int netlink_neigh_read_specific_ip(const struct ipaddr *ip,
  					  struct interface *vlan_if);
@@ -93,10 +100,10 @@ index 8506367ae4..364aac0f6b 100644
  struct nl_batch;
  extern enum netlink_msg_status
 diff --git a/zebra/zebra_vrf.c b/zebra/zebra_vrf.c
-index be5e91495f..c59cb7c0a7 100644
+index 3365cdcdbaa8..74b9d106cdc3 100644
 --- a/zebra/zebra_vrf.c
 +++ b/zebra/zebra_vrf.c
-@@ -389,6 +389,33 @@ struct zebra_vrf *zebra_vrf_alloc(struct vrf *vrf)
+@@ -376,6 +376,33 @@ struct zebra_vrf *zebra_vrf_alloc(struct vrf *vrf)
  	return zvrf;
  }
  
@@ -131,10 +138,10 @@ index be5e91495f..c59cb7c0a7 100644
  struct zebra_vrf *zebra_vrf_lookup_by_id(vrf_id_t vrf_id)
  {
 diff --git a/zebra/zebra_vrf.h b/zebra/zebra_vrf.h
-index 02e3c197c9..937e7fb144 100644
+index b23b7282610b..aef83cd8f172 100644
 --- a/zebra/zebra_vrf.h
 +++ b/zebra/zebra_vrf.h
-@@ -252,6 +252,7 @@ extern struct route_table *zebra_vrf_get_table_with_table_id(afi_t afi,
+@@ -237,6 +237,7 @@ extern struct route_table *zebra_vrf_get_table_with_table_id(afi_t afi,
  extern void zebra_vrf_update_all(struct zserv *client);
  extern struct zebra_vrf *zebra_vrf_lookup_by_id(vrf_id_t vrf_id);
  extern struct zebra_vrf *zebra_vrf_lookup_by_name(const char *);
@@ -142,6 +149,3 @@ index 02e3c197c9..937e7fb144 100644
  extern struct zebra_vrf *zebra_vrf_alloc(struct vrf *vrf);
  extern struct route_table *zebra_vrf_table(afi_t, safi_t, vrf_id_t);
  
--- 
-2.17.1
-
diff --git a/src/sonic-frr/patch/0034-fpm-Use-vrf_id-for-vrf-not-tabled_id.patch b/src/sonic-frr/patch/0034-fpm-Use-vrf_id-for-vrf-not-tabled_id.patch
new file mode 100644
index 000000000000..f815cf38455e
--- /dev/null
+++ b/src/sonic-frr/patch/0034-fpm-Use-vrf_id-for-vrf-not-tabled_id.patch
@@ -0,0 +1,25 @@
+From 39bb40dc4bad4462e4ae9c98580d75fa2c92e032 Mon Sep 17 00:00:00 2001
+From: Pavel Shirshov <pavelsh@microsoft.com>
+Date: Mon, 16 Nov 2020 18:29:46 -0800
+Subject: [PATCH 3/8] Use vrf_id for vrf, not tabled_id
+
+---
+ zebra/zebra_fpm_netlink.c | 2 +-
+ 1 file changed, 1 insertion(+), 1 deletion(-)
+
+diff --git a/zebra/zebra_fpm_netlink.c b/zebra/zebra_fpm_netlink.c
+index ec22c5dd4..aad0156b3 100644
+--- a/zebra/zebra_fpm_netlink.c
++++ b/zebra/zebra_fpm_netlink.c
+@@ -287,7 +287,7 @@ static int netlink_route_info_fill(struct netlink_route_info *ri, int cmd,
+ 		ri->nlmsg_pid = zvrf->zns->netlink_dplane_out.snl.nl_pid;
+ 
+ 	ri->nlmsg_type = cmd;
+-	ri->rtm_table = table_info->table_id;
++	ri->rtm_table = zvrf_id(rib_dest_vrf(dest));
+ 	ri->rtm_protocol = RTPROT_UNSPEC;
+ 
+ 	/*
+-- 
+2.12.2
+
diff --git a/src/sonic-frr/patch/0035-fpm-ignore-route-from-default-table.patch b/src/sonic-frr/patch/0035-fpm-ignore-route-from-default-table.patch
new file mode 100644
index 000000000000..e925b9908fb6
--- /dev/null
+++ b/src/sonic-frr/patch/0035-fpm-ignore-route-from-default-table.patch
@@ -0,0 +1,29 @@
+From bb3b003840959adf5b5be52e91bc798007c9857a Mon Sep 17 00:00:00 2001
+From: Ying Xie <ying.xie@microsoft.com>
+Date: Thu, 8 Sep 2022 04:20:36 +0000
+Subject: [PATCH] From 776a29e8ab32c1364ee601a8730aabb773b0c86b Mon Sep 17
+ 00:00:00 2001 Subject: [PATCH] ignore route from default table
+
+Signed-off-by: Ying Xie <ying.xie@microsoft.com>
+---
+ zebra/zebra_fpm_netlink.c | 5 +++++
+ 1 file changed, 5 insertions(+)
+
+diff --git a/zebra/zebra_fpm_netlink.c b/zebra/zebra_fpm_netlink.c
+index 34be9fb39..d6c875a7e 100644
+--- a/zebra/zebra_fpm_netlink.c
++++ b/zebra/zebra_fpm_netlink.c
+@@ -283,6 +283,11 @@ static int netlink_route_info_fill(struct netlink_route_info *ri, int cmd,
+ 		rib_table_info(rib_dest_table(dest));
+ 	struct zebra_vrf *zvrf = table_info->zvrf;
+ 
++    if (table_info->table_id == RT_TABLE_DEFAULT) {
++        zfpm_debug("%s: Discard default table route", __func__);
++        return 0;
++    }
++
+ 	memset(ri, 0, sizeof(*ri));
+ 
+ 	ri->prefix = rib_dest_prefix(dest);
+-- 
+2.17.1
diff --git a/src/sonic-frr/patch/0036-Add-support-of-bgp-l3vni-evpn.patch b/src/sonic-frr/patch/0036-Add-support-of-bgp-l3vni-evpn.patch
new file mode 100644
index 000000000000..01d4df820739
--- /dev/null
+++ b/src/sonic-frr/patch/0036-Add-support-of-bgp-l3vni-evpn.patch
@@ -0,0 +1,164 @@
+From b1b2e40cf43a9d206e2d867bdec4f0f7b740c8b9 Mon Sep 17 00:00:00 2001
+From: stepanb <stepanb@contoso.com>
+Date: Tue, 19 Dec 2023 11:27:37 +0000
+Subject: [PATCH] Add support of bgp l3vni evpn
+
+---
+ lib/nexthop.c             |  2 ++
+ lib/nexthop.h             |  6 ++++++
+ zebra/rt_netlink.c        |  2 +-
+ zebra/zapi_msg.c          |  4 ++++
+ zebra/zebra_dplane.c      |  1 +
+ zebra/zebra_fpm_netlink.c | 20 ++++++++++++++++++++
+ 6 files changed, 34 insertions(+), 1 deletion(-)
+
+diff --git a/lib/nexthop.c b/lib/nexthop.c
+index 7ebc4fefb..fe42b9f86 100644
+--- a/lib/nexthop.c
++++ b/lib/nexthop.c
+@@ -813,6 +813,8 @@ void nexthop_copy_no_recurse(struct nexthop *copy,
+ 	memcpy(&copy->src, &nexthop->src, sizeof(nexthop->src));
+ 	memcpy(&copy->rmap_src, &nexthop->rmap_src, sizeof(nexthop->rmap_src));
+ 	copy->rparent = rparent;
++	memcpy(&copy->nh_encap.encap_data.rmac, &nexthop->nh_encap.encap_data.rmac, ETH_ALEN);
++
+ 	if (nexthop->nh_label)
+ 		nexthop_add_labels(copy, nexthop->nh_label_type,
+ 				   nexthop->nh_label->num_labels,
+diff --git a/lib/nexthop.h b/lib/nexthop.h
+index f1309aa52..7026ce1c2 100644
+--- a/lib/nexthop.h
++++ b/lib/nexthop.h
+@@ -66,6 +66,11 @@ enum nh_encap_type {
+ /* Backup index value is limited */
+ #define NEXTHOP_BACKUP_IDX_MAX 255
+ 
++struct vxlan_nh_encap {
++	vni_t vni;
++	struct ethaddr rmac;
++};
++
+ /* Nexthop structure. */
+ struct nexthop {
+ 	struct nexthop *next;
+@@ -138,6 +143,7 @@ struct nexthop {
+ 	enum nh_encap_type nh_encap_type;
+ 	union {
+ 		vni_t vni;
++		struct vxlan_nh_encap encap_data;
+ 	} nh_encap;
+ 
+ 	/* SR-TE color used for matching SR-TE policies */
+diff --git a/zebra/rt_netlink.c b/zebra/rt_netlink.c
+index d31732a55..581255158 100644
+--- a/zebra/rt_netlink.c
++++ b/zebra/rt_netlink.c
+@@ -1991,7 +1991,7 @@ static int netlink_route_nexthop_encap(struct nlmsghdr *n, size_t nlen,
+ 			return false;
+ 
+ 		if (!nl_attr_put32(n, nlen, 0 /* VXLAN_VNI */,
+-				   nh->nh_encap.vni))
++				   nh->nh_encap.encap_data.vni))
+ 			return false;
+ 		nl_attr_nest_end(n, nest);
+ 		break;
+diff --git a/zebra/zapi_msg.c b/zebra/zapi_msg.c
+index c0945eae2..157c33ced 100644
+--- a/zebra/zapi_msg.c
++++ b/zebra/zapi_msg.c
+@@ -1605,6 +1605,8 @@ static struct nexthop *nexthop_from_zapi(const struct zapi_nexthop *api_nh,
+ 			vtep_ip.ipa_type = IPADDR_V4;
+ 			memcpy(&(vtep_ip.ipaddr_v4), &(api_nh->gate.ipv4),
+ 			       sizeof(struct in_addr));
++			memcpy(&(nexthop->nh_encap.encap_data.rmac),
++				   &api_nh->rmac, ETH_ALEN);
+ 			zebra_rib_queue_evpn_route_add(
+ 				api_nh->vrf_id, &api_nh->rmac, &vtep_ip, p);
+ 			SET_FLAG(nexthop->flags, NEXTHOP_FLAG_EVPN);
+@@ -1639,6 +1641,8 @@ static struct nexthop *nexthop_from_zapi(const struct zapi_nexthop *api_nh,
+ 			vtep_ip.ipa_type = IPADDR_V6;
+ 			memcpy(&vtep_ip.ipaddr_v6, &(api_nh->gate.ipv6),
+ 			       sizeof(struct in6_addr));
++			memcpy(&(nexthop->nh_encap.encap_data.rmac),
++				   &api_nh->rmac, ETH_ALEN);
+ 			zebra_rib_queue_evpn_route_add(
+ 				api_nh->vrf_id, &api_nh->rmac, &vtep_ip, p);
+ 			SET_FLAG(nexthop->flags, NEXTHOP_FLAG_EVPN);
+diff --git a/zebra/zebra_dplane.c b/zebra/zebra_dplane.c
+index 34d30484a..260a7b497 100644
+--- a/zebra/zebra_dplane.c
++++ b/zebra/zebra_dplane.c
+@@ -3394,6 +3394,7 @@ int dplane_ctx_route_init(struct zebra_dplane_ctx *ctx, enum dplane_op_e op,
+ 		if (zl3vni && is_l3vni_oper_up(zl3vni)) {
+ 			nexthop->nh_encap_type = NET_VXLAN;
+ 			nexthop->nh_encap.vni = zl3vni->vni;
++			nexthop->nh_encap.encap_data.vni = zl3vni->vni;
+ 		}
+ 	}
+ 
+diff --git a/zebra/zebra_fpm_netlink.c b/zebra/zebra_fpm_netlink.c
+index ec6090da9..22650eedc 100644
+--- a/zebra/zebra_fpm_netlink.c
++++ b/zebra/zebra_fpm_netlink.c
+@@ -95,10 +95,12 @@ static const char *fpm_nh_encap_type_to_str(enum fpm_nh_encap_type_t encap_type)
+ 
+ struct vxlan_encap_info_t {
+ 	vni_t vni;
++	struct ethaddr rmac;
+ };
+ 
+ enum vxlan_encap_info_type_t {
+ 	VXLAN_VNI = 0,
++	VXLAN_RMAC = 1,
+ };
+ 
+ struct fpm_nh_encap_info_t {
+@@ -234,6 +236,9 @@ static int netlink_route_info_add_nh(struct netlink_route_info *ri,
+ 		}
+ 
+ 		nhi.encap_info.vxlan_encap.vni = vni;
++		memcpy(&nhi.encap_info.vxlan_encap.rmac,
++				&(nexthop->nh_encap.encap_data.rmac),
++				ETH_ALEN);
+ 	}
+ 
+ 	/*
+@@ -456,9 +461,16 @@ static int netlink_route_info_encode(struct netlink_route_info *ri,
+ 			nl_attr_put16(&req->n, in_buf_len, RTA_ENCAP_TYPE,
+ 				      encap);
+ 			vxlan = &nhi->encap_info.vxlan_encap;
++			char buf[ETHER_ADDR_STRLEN];
++
++			zfpm_debug(
++				"%s: VNI:%d RMAC:%s", __func__, vxlan->vni,
++				prefix_mac2str(&vxlan->rmac, buf, sizeof(buf)));
+ 			nest = nl_attr_nest(&req->n, in_buf_len, RTA_ENCAP);
+ 			nl_attr_put32(&req->n, in_buf_len, VXLAN_VNI,
+ 				      vxlan->vni);
++			nl_attr_put(&req->n, in_buf_len, VXLAN_RMAC,
++				    &vxlan->rmac, sizeof(vxlan->rmac));
+ 			nl_attr_nest_end(&req->n, nest);
+ 			break;
+ 		}
+@@ -494,10 +506,18 @@ static int netlink_route_info_encode(struct netlink_route_info *ri,
+ 			nl_attr_put16(&req->n, in_buf_len, RTA_ENCAP_TYPE,
+ 				      encap);
+ 			vxlan = &nhi->encap_info.vxlan_encap;
++			char rmac_buf[ETHER_ADDR_STRLEN];
++
++			zfpm_debug("%s: Multi VNI:%d RMAC:%s", __func__,
++				   vxlan->vni,
++				   prefix_mac2str(&vxlan->rmac, rmac_buf,
++						  sizeof(rmac_buf)));
+ 			inner_nest =
+ 				nl_attr_nest(&req->n, in_buf_len, RTA_ENCAP);
+ 			nl_attr_put32(&req->n, in_buf_len, VXLAN_VNI,
+ 				      vxlan->vni);
++			nl_attr_put(&req->n, in_buf_len, VXLAN_RMAC,
++				    &vxlan->rmac, sizeof(vxlan->rmac));
+ 			nl_attr_nest_end(&req->n, inner_nest);
+ 			break;
+ 		}
+-- 
+2.30.2
+
diff --git a/src/sonic-frr/patch/series b/src/sonic-frr/patch/series
index bcb29008824f..3c9c6e6acf25 100644
--- a/src/sonic-frr/patch/series
+++ b/src/sonic-frr/patch/series
@@ -2,12 +2,9 @@
 0002-Allow-BGP-attr-NEXT_HOP-to-be-0.0.0.0-due-to-allevia.patch
 0003-nexthops-compare-vrf-only-if-ip-type.patch
 0004-frr-remove-frr-log-outchannel-to-var-log-frr.log.patch
-0005-Add-support-of-bgp-l3vni-evpn.patch
 0006-Link-local-scope-was-not-set-while-binding-socket-for-bgp-ipv6-link-local-neighbors.patch
 Disable-ipv6-src-address-test-in-pceplib.patch
 cross-compile-changes.patch
-0007-ignore-route-from-default-table.patch
-0008-Use-vrf_id-for-vrf-not-tabled_id.patch
 0009-bgpd-Ensure-suppress-fib-pending-works-with-network-.patch
 0010-bgpd-Change-log-level-for-graceful-restart-events.patch
 0011-zebra-Static-routes-async-notification-do-not-need-t.patch
@@ -33,3 +30,6 @@ cross-compile-changes.patch
 0031-bgpd-Ignore-handling-NLRIs-if-we-received-MP_UNREACH.patch
 0032-zebra-Fix-fpm-multipath-encap-addition.patch
 0033-zebra-The-dplane_fpm_nl-return-path-leaks-memory.patch
+0034-fpm-Use-vrf_id-for-vrf-not-tabled_id.patch
+0035-fpm-ignore-route-from-default-table.patch
+0036-Add-support-of-bgp-l3vni-evpn.patch
diff --git a/src/sonic-gnmi b/src/sonic-gnmi
index a49ca5614163..7848cfbc5ea9 160000
--- a/src/sonic-gnmi
+++ b/src/sonic-gnmi
@@ -1 +1 @@
-Subproject commit a49ca5614163a210c95dadb2116d5e487133de32
+Subproject commit 7848cfbc5ea995834ba45b46738b543aa63c6a05
diff --git a/src/sonic-host-services-data/debian/sonic-host-services-data.sonic-hostservice.service b/src/sonic-host-services-data/debian/sonic-host-services-data.sonic-hostservice.service
index 799f3511e784..98f1058c0388 100644
--- a/src/sonic-host-services-data/debian/sonic-host-services-data.sonic-hostservice.service
+++ b/src/sonic-host-services-data/debian/sonic-host-services-data.sonic-hostservice.service
@@ -12,5 +12,5 @@ RestartSec=10
 TimeoutStopSec=3
 
 [Install]
-WantedBy=mgmt-framework.service telemetry.service
+WantedBy=mgmt-framework.service telemetry.service gnmi.service
 
diff --git a/src/sonic-platform-daemons b/src/sonic-platform-daemons
index 55cb62be0300..824c20a2f745 160000
--- a/src/sonic-platform-daemons
+++ b/src/sonic-platform-daemons
@@ -1 +1 @@
-Subproject commit 55cb62be0300f89d329bbe1bea17b5a4d22ce219
+Subproject commit 824c20a2f745556823e3624ecce8ee1327e577e3
diff --git a/src/sonic-sairedis b/src/sonic-sairedis
index 7efc49d11d80..412d56aa4741 160000
--- a/src/sonic-sairedis
+++ b/src/sonic-sairedis
@@ -1 +1 @@
-Subproject commit 7efc49d11d80d100b64d1aec529b35822103e43a
+Subproject commit 412d56aa47415d107f085a3d8ad2094341c3bf3d
diff --git a/src/sonic-snmpagent b/src/sonic-snmpagent
index f9849f057ea8..6f59d2997579 160000
--- a/src/sonic-snmpagent
+++ b/src/sonic-snmpagent
@@ -1 +1 @@
-Subproject commit f9849f057ea8a10ec10bb8258db0ca364f282858
+Subproject commit 6f59d29975794e697ad6d76aabc542f9a449e59c
diff --git a/src/sonic-swss b/src/sonic-swss
index 5643db9aa55b..ac94f0b7cf79 160000
--- a/src/sonic-swss
+++ b/src/sonic-swss
@@ -1 +1 @@
-Subproject commit 5643db9aa55b64535d1e9b5e5555088d0fa5122a
+Subproject commit ac94f0b7cf79bfa5e6f0bdc5b61178b530a7d2b7
diff --git a/src/sonic-utilities b/src/sonic-utilities
index fc4b3334c54d..83a548decee2 160000
--- a/src/sonic-utilities
+++ b/src/sonic-utilities
@@ -1 +1 @@
-Subproject commit fc4b3334c54d0f51883f6685279df5fac040e2bd
+Subproject commit 83a548decee29f843b9d3178824f6393af9b73e6
diff --git a/src/sonic-yang-models/doc/Configuration.md b/src/sonic-yang-models/doc/Configuration.md
index 1a8cc49b31bf..a93505a05449 100644
--- a/src/sonic-yang-models/doc/Configuration.md
+++ b/src/sonic-yang-models/doc/Configuration.md
@@ -7,9 +7,12 @@ Table of Contents
    * [Introduction](#introduction)
    * [Configuration](#configuration)
    * [<strong>Config Load and Save</strong>](#config-load-and-save)
+
          * [Incremental Configuration](#incremental-configuration)
    * [<strong>Redis and Json Schema</strong>](#redis-and-json-schema)
+
          * [ACL and Mirroring](#acl-and-mirroring)
+         * [BGP BBR](#bgp-bbr)
          * [BGP Device Global](#bgp-device-global)
          * [BGP Sessions](#bgp-sessions)
          * [BUFFER_PG](#buffer_pg)
@@ -69,6 +72,7 @@ Table of Contents
          * [TC to Priority group map](#tc-to-priority-group-map)
          * [TC to Queue map](#tc-to-queue-map)
          * [Telemetry](#telemetry)
+         * [Telemetry client](#telemetry-client)
          * [Tunnel](#tunnel)
          * [Versions](#versions)
          * [VLAN](#vlan)
@@ -364,6 +368,18 @@ and migration plan
     }
 }
 ```
+### BGP BBR
+
+The **BGP_BBR** table contains device-level BBR state.
+```
+{
+        "BGP_BBR": {
+            "all": {
+                "status": "enabled"/"disabled"
+            }
+        }
+}
+```
 ### BGP Device Global
 
 The **BGP_DEVICE_GLOBAL** table contains device-level BGP global state.
@@ -2048,6 +2064,31 @@ and is listed in this table.
 }
 ```
 
+### Telemetry client
+
+```
+{
+    "TELEMETRY_CLIENT": {
+        "Global": {
+            "encoding": "JSON_IETF",
+            "retry_interval": "30",
+            "src_ip": "30.57.185.38",
+            "unidirectional": "true"
+        },
+        "DestinationGroup|HS": {
+            "dst_addr": "30.57.186.214:8081,30.57.185.39:8081"
+        },
+        "Subscription|HS_RDMA": {
+            "dst_group": "HS",
+            "path_target": "COUNTERS_DB",
+            "paths": "COUNTERS/Ethernet*,COUNTERS_PORT_NAME_MAP",
+            "report_interval": "5000",
+            "report_type": "periodic"
+        }
+    }
+}
+```
+
 ### Tunnel
 
 This table configures the MUX tunnel for Dual-ToR setup
diff --git a/src/sonic-yang-models/setup.py b/src/sonic-yang-models/setup.py
index d94b7a33d331..550576a3d693 100644
--- a/src/sonic-yang-models/setup.py
+++ b/src/sonic-yang-models/setup.py
@@ -79,6 +79,7 @@ def run(self):
     data_files=[
         ('yang-models', ['./yang-models/sonic-acl.yang',
                          './yang-models/sonic-auto_techsupport.yang',
+                         './yang-models/sonic-bgp-bbr.yang',
                          './yang-models/sonic-bgp-common.yang',
                          './yang-models/sonic-bgp-device-global.yang',
                          './yang-models/sonic-bgp-global.yang',
diff --git a/src/sonic-yang-models/tests/files/sample_config_db.json b/src/sonic-yang-models/tests/files/sample_config_db.json
index ed5dcec88d91..0228eb3a930e 100644
--- a/src/sonic-yang-models/tests/files/sample_config_db.json
+++ b/src/sonic-yang-models/tests/files/sample_config_db.json
@@ -1211,10 +1211,10 @@
                 "src_ip": "30.57.185.38",
                 "unidirectional": "true"
             },
-            "DestinationGroup_HS": {
+            "DestinationGroup|HS": {
                 "dst_addr": "30.57.186.214:8081,30.57.185.39:8081"
             },
-            "Subscription_HS_RDMA": {
+            "Subscription|HS_RDMA": {
                 "dst_group": "HS",
                 "path_target": "COUNTERS_DB",
                 "paths": "COUNTERS/Ethernet*,COUNTERS_PORT_NAME_MAP",
@@ -1573,6 +1573,11 @@
                 "local_ip": "12.12.0.2"
             }
         },
+        "BGP_BBR": {
+            "all": {
+                "status": "enabled"
+            }
+        },
         "BGP_GLOBALS": {
             "default": {
                 "router_id": "5.5.5.5",
diff --git a/src/sonic-yang-models/tests/yang_model_tests/tests/bgp_bbr.json b/src/sonic-yang-models/tests/yang_model_tests/tests/bgp_bbr.json
new file mode 100644
index 000000000000..50d1c40b119a
--- /dev/null
+++ b/src/sonic-yang-models/tests/yang_model_tests/tests/bgp_bbr.json
@@ -0,0 +1,9 @@
+{
+    "BGP_BBR_TABLE": {
+        "desc": "BGP BBR Table"
+    },
+    "BGP_BBR_INVALID_STATUS": {
+        "desc": "Configure status key with invalid value",
+        "eStrKey": "InvalidValue"
+    }
+}
\ No newline at end of file
diff --git a/src/sonic-yang-models/tests/yang_model_tests/tests/device_metadata.json b/src/sonic-yang-models/tests/yang_model_tests/tests/device_metadata.json
index 141d8b5c8230..65288b8b2db8 100644
--- a/src/sonic-yang-models/tests/yang_model_tests/tests/device_metadata.json
+++ b/src/sonic-yang-models/tests/yang_model_tests/tests/device_metadata.json
@@ -126,16 +126,6 @@
     "DEVICE_METADATA_ADVERTISE_LO_PREFIX_AS_128": {
         "desc": "Verifying advertising lo prefix as /128."
     },
-    "DEVICE_METADATA_SUPPRESS_PENDING_FIB_ENABLED": {
-        "desc": "Enable bgp-suppress-fib-pending"
-    },
-    "DEVICE_METADATA_SUPPRESS_PENDING_FIB_DISABLED": {
-        "desc": "Disable bgp-suppress-fib-pending"
-    },
-    "DEVICE_METADATA_SUPPRESS_PENDING_FIB_ENABLED_SYNCHRONOUS_MODE_DISABLED": {
-        "desc": "Enable bgp-suppress-fib-pending when synchronous mode is disabled",
-        "eStr": ["ASIC synchronous mode must be enabled in order to enable suppress FIB pending feature"]
-    },
     "DEVICE_METADATA_VALID_RACK_MGMT_MAP": {
         "desc": "Verifying rack_mgmt_map configuration."
     },
diff --git a/src/sonic-yang-models/tests/yang_model_tests/tests_config/bgp_bbr.json b/src/sonic-yang-models/tests/yang_model_tests/tests_config/bgp_bbr.json
new file mode 100644
index 000000000000..f5379a4091f9
--- /dev/null
+++ b/src/sonic-yang-models/tests/yang_model_tests/tests_config/bgp_bbr.json
@@ -0,0 +1,22 @@
+{
+    "BGP_BBR_TABLE": {
+        "sonic-bgp-bbr:sonic-bgp-bbr": {
+            "sonic-bgp-bbr:BGP_BBR": {
+                "all":
+                {
+                    "status": "enabled"
+                }
+            }
+        }
+    },
+    "BGP_BBR_INVALID_STATUS": {
+        "sonic-bgp-bbr:sonic-bgp-bbr": {
+            "sonic-bgp-bbr:BGP_BBR": {
+                "all":
+                {
+                    "status": "true"
+                }
+            }
+        }
+    }
+}
\ No newline at end of file
diff --git a/src/sonic-yang-models/tests/yang_model_tests/tests_config/device_metadata.json b/src/sonic-yang-models/tests/yang_model_tests/tests_config/device_metadata.json
index 941077205df6..b8053aa6ac66 100644
--- a/src/sonic-yang-models/tests/yang_model_tests/tests_config/device_metadata.json
+++ b/src/sonic-yang-models/tests/yang_model_tests/tests_config/device_metadata.json
@@ -333,36 +333,6 @@
             }
         }
     },
-    "DEVICE_METADATA_SUPPRESS_PENDING_FIB_ENABLED": {
-        "sonic-device_metadata:sonic-device_metadata": {
-            "sonic-device_metadata:DEVICE_METADATA": {
-                "sonic-device_metadata:localhost": {
-                    "synchronous_mode": "enable",
-                    "suppress-fib-pending": "enabled"
-                }
-            }
-        }
-    },
-    "DEVICE_METADATA_SUPPRESS_PENDING_FIB_DISABLED": {
-        "sonic-device_metadata:sonic-device_metadata": {
-            "sonic-device_metadata:DEVICE_METADATA": {
-                "sonic-device_metadata:localhost": {
-                    "synchronous_mode": "disable",
-                    "suppress-fib-pending": "disabled"
-                }
-            }
-        }
-    },
-    "DEVICE_METADATA_SUPPRESS_PENDING_FIB_ENABLED_SYNCHRONOUS_MODE_DISABLED": {
-        "sonic-device_metadata:sonic-device_metadata": {
-            "sonic-device_metadata:DEVICE_METADATA": {
-                "sonic-device_metadata:localhost": {
-                    "synchronous_mode": "disable",
-                    "suppress-fib-pending": "enabled"
-                }
-            }
-        }
-    },
     "DEVICE_METADATA_VALID_RACK_MGMT_MAP": {
         "sonic-device_metadata:sonic-device_metadata": {
             "sonic-device_metadata:DEVICE_METADATA": {
diff --git a/src/sonic-yang-models/tests/yang_model_tests/tests_config/telemetry_client.json b/src/sonic-yang-models/tests/yang_model_tests/tests_config/telemetry_client.json
index 5286bcba8b93..91de532c8c95 100644
--- a/src/sonic-yang-models/tests/yang_model_tests/tests_config/telemetry_client.json
+++ b/src/sonic-yang-models/tests/yang_model_tests/tests_config/telemetry_client.json
@@ -8,15 +8,15 @@
           "src_ip": "30.57.185.38",
           "unidirectional": "true"
         },
-        "TELEMETRY_CLIENT_DS_LIST": [
+        "TELEMETRY_CLIENT_LIST": [
           {
-            "prefix": "DestinationGroup_HS",
+            "prefix": "DestinationGroup",
+            "name": "HS",
             "dst_addr": "30.57.186.214:8081,30.57.185.39:8081"
-          }
-        ],
-        "TELEMETRY_CLIENT_SUB_LIST": [
+          },
           {
-            "prefix": "Subscription_HS_RDMA",
+            "prefix": "Subscription",
+            "name": "HS_RDMA",
             "dst_group": "HS",
             "path_target": "COUNTERS_DB",
             "paths": "COUNTERS/Ethernet*,COUNTERS_PORT_NAME_MAP",
@@ -36,15 +36,15 @@
           "src_ip": "30.57.185.38",
           "unidirectional": "true"
         },
-        "TELEMETRY_CLIENT_DS_LIST": [
+        "TELEMETRY_CLIENT_LIST": [
           {
-            "prefix": "DestinationGroup_HS",
+            "prefix": "DestinationGroup",
+            "name": "HS",
             "dst_addr": "30.57.186.214:8081,30.57.185.39:8081"
-          }
-        ],
-        "TELEMETRY_CLIENT_SUB_LIST": [
+          },
           {
-            "prefix": "Subscription_HS_RDMA",
+            "prefix": "Subscription",
+            "name": "HS_RDMA",
             "dst_group": "FS",
             "path_target": "COUNTERS_DB",
             "paths": "COUNTERS/Ethernet*,COUNTERS_PORT_NAME_MAP",
@@ -64,15 +64,15 @@
           "src_ip": "30.57.185.388",
           "unidirectional": "true"
         },
-        "TELEMETRY_CLIENT_DS_LIST": [
+        "TELEMETRY_CLIENT_LIST": [
           {
-            "prefix": "DestinationGroup_HS",
+            "prefix": "DestinationGroup",
+            "name": "HS",
             "dst_addr": "30.57.186.214:8081,30.57.185.39:8081"
-          }
-        ],
-        "TELEMETRY_CLIENT_SUB_LIST": [
+          },
           {
-            "prefix": "Subscription_HS_RDMA",
+            "prefix": "Subscription",
+            "name": "HS_RDMA",
             "dst_group": "HS",
             "path_target": "COUNTERS_DB",
             "paths": "COUNTERS/Ethernet*,COUNTERS_PORT_NAME_MAP",
@@ -92,15 +92,15 @@
           "src_ip": "30.57.185.38",
           "unidirectional": "true"
         },
-        "TELEMETRY_CLIENT_DS_LIST": [
+        "TELEMETRY_CLIENT_LIST": [
           {
-            "prefix": "DestinationGroup_HS",
+            "prefix": "DestinationGroup",
+            "name": "HS",
             "dst_addr": "30.57.186.214:8081,30.57.185.39:8081"
-          }
-        ],
-        "TELEMETRY_CLIENT_SUB_LIST": [
+          },
           {
-            "prefix": "Subscription_HS_RDMA",
+            "prefix": "Subscription",
+            "name": "HS_RDMA",
             "dst_group": "HS",
             "path_target": "COUNTERS_DB",
             "paths": "COUNTERS/Ethernet*,COUNTERS_PORT_NAME_MAP",
@@ -120,15 +120,15 @@
           "src_ip": "30.57.185.38",
           "unidirectional": "true"
         },
-        "TELEMETRY_CLIENT_DS_LIST": [
+        "TELEMETRY_CLIENT_LIST": [
           {
-            "prefix": "DestinationGroup_HS",
+            "prefix": "DestinationGroup",
+            "name": "HS",
             "dst_addr": "30.57.186.214:80819,30.57.185.39:8081"
-          }
-        ],
-        "TELEMETRY_CLIENT_SUB_LIST": [
+          },
           {
-            "prefix": "Subscription_HS_RDMA",
+            "prefix": "Subscription",
+            "name": "HS_RDMA",
             "dst_group": "HS",
             "path_target": "COUNTERS_DB",
             "paths": "COUNTERS/Ethernet*,COUNTERS_PORT_NAME_MAP",
@@ -139,4 +139,4 @@
       }
     }
   }
-}
\ No newline at end of file
+}
diff --git a/src/sonic-yang-models/yang-models/sonic-bgp-bbr.yang b/src/sonic-yang-models/yang-models/sonic-bgp-bbr.yang
new file mode 100644
index 000000000000..58cc8823d391
--- /dev/null
+++ b/src/sonic-yang-models/yang-models/sonic-bgp-bbr.yang
@@ -0,0 +1,41 @@
+module sonic-bgp-bbr {
+    namespace "http://github.com/sonic-net/sonic-bgp-bbr";
+    prefix bgpbbr;
+    yang-version 1.1;
+
+    import sonic-types {
+        prefix stypes;
+    }
+
+    organization
+        "SONiC";
+
+    contact
+        "SONiC";
+
+    description
+        "SONIC BGP BBR";
+
+    revision 2023-12-25 {
+        description
+            "Initial revision.";
+    }
+
+    container sonic-bgp-bbr {
+        container BGP_BBR {
+
+            description "BGP_BBR table part of config_db.json";
+
+            container all {
+                leaf status {
+                    type stypes:admin_mode;
+                    default enabled;
+                    description "bgp bbr status";
+                }
+            }
+            /* end of container all */
+        }
+        /* end of container BGP_BBR */
+    }
+    /* end of container sonic-bgp-bbr */
+}
\ No newline at end of file
diff --git a/src/sonic-yang-models/yang-models/sonic-device_metadata.yang b/src/sonic-yang-models/yang-models/sonic-device_metadata.yang
index 26e20d196a88..392bbf941f6f 100644
--- a/src/sonic-yang-models/yang-models/sonic-device_metadata.yang
+++ b/src/sonic-yang-models/yang-models/sonic-device_metadata.yang
@@ -205,18 +205,6 @@ module sonic-device_metadata {
                                  By default SONiC advertises /128 subnet prefix in Loopback0 as /64 subnet route";
                 }
 
-                leaf suppress-fib-pending {
-                    description "Enable BGP suppress FIB pending feature. BGP will wait for route FIB installation before announcing routes";
-                    type enumeration {
-                        enum enabled;
-                        enum disabled;
-                    }
-                    default disabled;
-
-                    must "((current() = 'disabled') or (current() = 'enabled' and ../synchronous_mode = 'enable'))" {
-                        error-message "ASIC synchronous mode must be enabled in order to enable suppress FIB pending feature";
-                    }
-                }
                 leaf rack_mgmt_map {
                     type string {
                         length 0..128 {
diff --git a/src/sonic-yang-models/yang-models/sonic-passwh.yang b/src/sonic-yang-models/yang-models/sonic-passwh.yang
index 347a740180db..5047b40c573d 100755
--- a/src/sonic-yang-models/yang-models/sonic-passwh.yang
+++ b/src/sonic-yang-models/yang-models/sonic-passwh.yang
@@ -28,14 +28,14 @@ module sonic-passwh {
                 }
                 leaf expiration {
                     description "expiration time (days unit)";
-                    type uint16 {
-                        range 1..365;
+                    type int16 {
+                        range -1..365;
                     }
                 }
                 leaf expiration_warning {
                     description "expiration warning time (days unit)";
-                    type uint8 {
-                        range 1..30;
+                    type int8 {
+                        range -1..30;
                     }
                 }
                 leaf history_cnt {
diff --git a/src/sonic-yang-models/yang-models/sonic-static-route.yang b/src/sonic-yang-models/yang-models/sonic-static-route.yang
index 019825b78881..0134d5fe6cd5 100644
--- a/src/sonic-yang-models/yang-models/sonic-static-route.yang
+++ b/src/sonic-yang-models/yang-models/sonic-static-route.yang
@@ -54,6 +54,12 @@ module sonic-static-route {
           }
           default "false";
         }
+        leaf bfd {
+          type string {
+            pattern "((true|false),)*(true|false)";
+          }
+          default "false";
+        }
       }
       list STATIC_ROUTE_LIST {
         key "vrf_name prefix";
diff --git a/src/sonic-yang-models/yang-models/sonic-telemetry_client.yang b/src/sonic-yang-models/yang-models/sonic-telemetry_client.yang
index 7b6b231031c5..7c4b7b37b8e6 100644
--- a/src/sonic-yang-models/yang-models/sonic-telemetry_client.yang
+++ b/src/sonic-yang-models/yang-models/sonic-telemetry_client.yang
@@ -86,33 +86,26 @@ module sonic-telemetry_client {
                 }
             }
 
-            list TELEMETRY_CLIENT_DS_LIST {
+            list TELEMETRY_CLIENT_LIST {
                 ordered-by user;
-                key "prefix";
+                key "prefix name";
 
                 leaf prefix {
                     type string {
-                        pattern "DestinationGroup_" + ".*";
+                        pattern 'Subscription|DestinationGroup';
                     }
                 }
 
-                leaf dst_addr {
-                    type ipv4-port;
+                leaf name {
+                    type string;
                 }
-            }
-
-            list TELEMETRY_CLIENT_SUB_LIST {
-                ordered-by user;
-                key "prefix";
 
-                leaf prefix {
-                    type string {
-                        pattern "Subscription_" + ".*";
-                    }
+                leaf dst_addr {
+                    type ipv4-port;
                 }
 
                 leaf dst_group {
-                    must "(contains(../../TELEMETRY_CLIENT_DS_LIST/prefix, current()))";
+                    must "(contains(../../TELEMETRY_CLIENT_LIST/name, current()))";
                     type string;
                 }
 
diff --git a/src/system-health/health_checker/hardware_checker.py b/src/system-health/health_checker/hardware_checker.py
index 8f7a11f55c2e..113fd88663a9 100644
--- a/src/system-health/health_checker/hardware_checker.py
+++ b/src/system-health/health_checker/hardware_checker.py
@@ -102,37 +102,39 @@ def _check_fan_status(self, config):
             if not self._ignore_check(config.ignore_devices, 'fan', name, 'speed'):
                 speed = data_dict.get('speed', None)
                 speed_target = data_dict.get('speed_target', None)
-                speed_tolerance = data_dict.get('speed_tolerance', None)
+                is_under_speed = data_dict.get('is_under_speed', None)
+                is_over_speed = data_dict.get('is_over_speed', None)
                 if not speed:
                     self.set_object_not_ok('Fan', name, 'Failed to get actual speed data for {}'.format(name))
                     continue
                 elif not speed_target:
                     self.set_object_not_ok('Fan', name, 'Failed to get target speed date for {}'.format(name))
                     continue
-                elif not speed_tolerance:
-                    self.set_object_not_ok('Fan', name, 'Failed to get speed tolerance for {}'.format(name))
+                elif is_under_speed is None:
+                    self.set_object_not_ok('Fan', name, 'Failed to get under speed threshold check for {}'.format(name))
+                    continue
+                elif is_over_speed is None:
+                    self.set_object_not_ok('Fan', name, 'Failed to get over speed threshold check for {}'.format(name))
                     continue
                 else:
                     try:
                         speed = float(speed)
                         speed_target = float(speed_target)
-                        speed_tolerance = float(speed_tolerance)
-                        speed_min_th = speed_target * (1 - float(speed_tolerance) / 100)
-                        speed_max_th = speed_target * (1 + float(speed_tolerance) / 100)
-                        if speed < speed_min_th or speed > speed_max_th:
+                        if 'true' in (is_under_speed.lower(), is_over_speed.lower()):
                             self.set_object_not_ok('Fan', name,
-                                                   '{} speed is out of range, speed={}, range=[{},{}]'.format(name,
-                                                                                                              speed,
-                                                                                                              speed_min_th,
-                                                                                                              speed_max_th))
+                                                   '{} speed is out of range, speed={}, target={}'.format(
+                                                       name,
+                                                       speed,
+                                                       speed_target))
                             continue
                     except ValueError:
                         self.set_object_not_ok('Fan', name,
-                                               'Invalid fan speed data for {}, speed={}, target={}, tolerance={}'.format(
+                                               'Invalid fan speed data for {}, speed={}, target={}, is_under_speed={}, is_over_speed={}'.format(
                                                    name,
                                                    speed,
                                                    speed_target,
-                                                   speed_tolerance))
+                                                   is_under_speed,
+                                                   is_over_speed))
                         continue
 
             if not self._ignore_check(config.ignore_devices, 'fan', name, 'direction'):
diff --git a/src/system-health/tests/test_system_health.py b/src/system-health/tests/test_system_health.py
index 2d46140e2ff6..34a2bfbcd7d5 100644
--- a/src/system-health/tests/test_system_health.py
+++ b/src/system-health/tests/test_system_health.py
@@ -298,7 +298,8 @@ def test_hardware_checker():
             'status': 'True',
             'speed': '60',
             'speed_target': '60',
-            'speed_tolerance': '20',
+            'is_under_speed': 'False',
+            'is_over_speed': 'False',
             'direction': 'intake'
         },
         'FAN_INFO|fan2': {
@@ -306,28 +307,40 @@ def test_hardware_checker():
             'status': 'True',
             'speed': '60',
             'speed_target': '60',
-            'speed_tolerance': '20'
+            'is_under_speed': 'False',
+            'is_over_speed': 'False',
         },
         'FAN_INFO|fan3': {
             'presence': 'True',
             'status': 'False',
             'speed': '60',
             'speed_target': '60',
-            'speed_tolerance': '20'
+            'is_under_speed': 'False',
+            'is_over_speed': 'False',
         },
         'FAN_INFO|fan4': {
             'presence': 'True',
             'status': 'True',
             'speed': '20',
             'speed_target': '60',
-            'speed_tolerance': '20'
+            'is_under_speed': 'True',
+            'is_over_speed': 'False',
         },
         'FAN_INFO|fan5': {
+            'presence': 'True',
+            'status': 'True',
+            'speed': '90',
+            'speed_target': '60',
+            'is_under_speed': 'False',
+            'is_over_speed': 'True',
+        },
+        'FAN_INFO|fan6': {
             'presence': 'True',
             'status': 'True',
             'speed': '60',
             'speed_target': '60',
-            'speed_tolerance': '20',
+            'is_under_speed': 'False',
+            'is_over_speed': 'False',
             'direction': 'exhaust'
         }
     })
@@ -426,7 +439,10 @@ def test_hardware_checker():
 
     assert 'fan5' in checker._info
     assert checker._info['fan5'][HealthChecker.INFO_FIELD_OBJECT_STATUS] == HealthChecker.STATUS_NOT_OK
-    assert checker._info['fan5'][HealthChecker.INFO_FIELD_OBJECT_MSG] == 'fan5 direction exhaust is not aligned with fan1 direction intake'
+
+    assert 'fan6' in checker._info
+    assert checker._info['fan6'][HealthChecker.INFO_FIELD_OBJECT_STATUS] == HealthChecker.STATUS_NOT_OK
+    assert checker._info['fan6'][HealthChecker.INFO_FIELD_OBJECT_MSG] == 'fan6 direction exhaust is not aligned with fan1 direction intake'
 
     assert 'PSU 1' in checker._info
     assert checker._info['PSU 1'][HealthChecker.INFO_FIELD_OBJECT_STATUS] == HealthChecker.STATUS_OK