|
|
(74 intermediate revisions by 4 users not shown) |
Line 3: |
Line 3: |
| | name = RUTX10 | | | name = RUTX10 |
| | series = RUTX | | | series = RUTX |
| + | <!-----------------------LATEST FW---------------------> |
| + | | latest_fw = RUTX_R_00.07.01 |
| + | | latest_date = 2021.11.18 |
| + | | latest_md5 = 6b1991a1bed2713d01fdf681a7490245 |
| + | <!-----------------------FACTORY FW--------------------> |
| + | | factory_fw = RUTX_R_00.07.00 |
| + | | factory_date = 2021.07.16 |
| + | | factory_md5 = 57aef24b60a5718ca2d9657d05249c71 |
| }} | | }} |
| + | |
| | | |
| ==Changelog== | | ==Changelog== |
− | <!--NEW_FW-->
| + | ===<b>[[Media:RUTX_R_00.07.01_WEBUI.bin|RUTX_R_00.07.01]]</b> | 2021.11.18=== |
− | ===<b><span class="plainlinks">[https://firmware.teltonika-networks.com/7.10/RUTX/RUTX_R_00.07.10_WEBUI.bin RUTX_R_00.07.10]</span></b> | 2024.10.10===
| |
− | * <b>New</b>
| |
− | ** <b>Network</b>
| |
− | *** NAT64: added "jool" package for NAT64 support
| |
− | ** <b>Services</b>
| |
− | *** AWS IoT Core: added service
| |
− | *** BACnet: added ability to configure several BIP interfaces, to set network numbers and preconfigure BDT entries for BBMD
| |
− | *** Console: added service status information display
| |
− | *** DLMS: added service status information display
| |
− | *** DNP3 Client: added service status information display
| |
− | *** DNP3 Outstation: added service status information display
| |
− | *** Modbus Client: added service status information display
| |
− | *** Modbus Server: added service status information display
| |
− | *** Modbus TCP over Serial Gateway: added service status information display
| |
− | *** MQTT Modbus Gateway: added service status information display
| |
− | *** NTRIP: added service status information display
| |
− | *** OPC UA Client: added service status information display
| |
− | *** OPC UA Server: added variable "rut_wan_type" which shows if WAN is on a wired or a mobile network
| |
− | *** OPC UA Server: added service status information display
| |
− | *** RMS: added SOCKS5 proxy support
| |
− | ** <b>System</b>
| |
− | *** Certificates: added SCEP certificate generation method
| |
− | * <b>Improvements</b>
| |
− | ** <b>Network</b>
| |
− | *** Curl: added unix socket support
| |
− | *** Firewall: added most options to basic mode for all firewall pages
| |
− | *** Firewall: added all firewall pages to basic mode
| |
− | *** Interfaces: increased interface metric maximum value from 10000 to 4294967295
| |
− | *** Multi WAN: added rules table to basic mode
| |
− | *** Network: improved performance under stateless single-directional traffic (RFC2544)
| |
− | *** Network: improved throughput stability of "Hardware flow offloading"
| |
− | *** Static Routes: added page to basic mode
| |
− | *** VRRP: added page to basic mode
| |
− | *** Wireless: added interface status message when DFS CAC is in progress
| |
− | *** Wireless: added most options to basic mode
| |
− | *** Wireless: added SSID creation and deletion to basic mode
| |
− | *** Wireless: moved Travelmate from Package Manager to base Firmware
| |
− | ** <b>Services</b>
| |
− | *** DLMS: added meter COSEM object scanning
| |
− | *** DNP3 Client: made menu names more consistent
| |
− | *** Hotspot: added "Coova-Chilli-SSID" (28) Vendor Specific Attribute for Radius
| |
− | *** IPsec: improved 'Remote endpoint' validation to allow '%any', '%any4', '%any6' values and netmask
| |
− | *** IPsec: added ability to use certificates from Certificate Manager
| |
− | *** L2TPv3: added Tunnel ID and Session ID validation to avoid creating multiple tunnels with the same parameters
| |
− | *** Modbus Client: updated Modbus Client menu position
| |
− | *** Modbus Server: updated Modbus Server menu position
| |
− | *** Python3: changed python3-light package libraries
| |
− | *** Tailscale: improved status information by including health messages
| |
− | *** Tinc: added options to set the tunnel's IP address
| |
− | *** Tinc: added a port option to listen for incoming connections and the ability to specify a port for outgoing connections
| |
− | *** Wireguard: added tunnel source mode selection
| |
− | *** Python3: updated version to 3.11.7
| |
− | *** Strongswan: updated version to 5.9.14
| |
− | *** Tailscale: updated version to 1.70.0
| |
− | ** <b>System</b>
| |
− | *** Access Control: refactored 'General', 'Security' and 'PAM' Web pages
| |
− | *** Auto Reboot: added support for multiple hosts/URLs in Ping/Wget Reboot
| |
− | *** Backup: encrypting backup does not require 7zip package anymore
| |
− | *** Certificates: split "Let's Encrypt" certificates into multiple files
| |
− | *** Troubleshoot: added dynamic routes debugging information
| |
− | *** WebUI: added ability to open new page in new tab without entering user credentials
| |
− | *** WebUI: improved SDK example application
| |
− | *** Glib2: updated version to 2.80.5
| |
− | *** Kernel: updated version to 5.10.224
| |
− | *** Ncurses: updated version to 6.5
| |
− | * <b>Fix</b>
| |
− | ** <b>Network</b>
| |
− | *** Firewall: fixed automatic priority option change
| |
− | *** Wireless: fixed BSSID show for interface in Client mode
| |
− | *** Wireless: fixed hostapd ubus call timeout after wireless configuration change
| |
− | *** Wireless: fixed reporting disconnection from external AP when device in STA+AP mode
| |
− | *** Wireless: fixed missing rx frame types needed for wifi scanner
| |
− | ** <b>Services</b>
| |
− | *** BACnet: fixed communication issues between the ports
| |
− | *** BACnet: added all available default baud rates
| |
− | *** BGP: fixed AS field to allow duplicate values
| |
− | *** BGP: fixed Access list filters not applying fully
| |
− | *** DLMS: added all available default baud rates
| |
− | *** DMVPN: fixed DMVPN GRE instance disappearing when creating new IPsec instance
| |
− | *** DNP3 Client: removed unnecessary max length display for test response field
| |
− | *** DNP3 Client: renamed TCP Station to TCP Client in the API documentation
| |
− | *** DNP3 Client: added all available default baud rates
| |
− | *** DNP3 Outstation: added all available default baud rates
| |
− | *** GRE: fixed interface not showing up in OSPF and RIP selections if it is off
| |
− | *** Hotspot: fixed blocklist not working when no addresses are provided
| |
− | *** Hotspot: fixed uploaded custom landing page file permissions
| |
− | *** Hotspot: fixed certificates to be required to enable https redirect
| |
− | *** IPsec: fixed IP rule not appearing after network restart
| |
− | *** IPsec: fixed duplicate port values in IPsec firewall rules
| |
− | *** Ledman: fixed issue when power LED turns off when rebooting device
| |
− | *** Modbus Client: added all available default baud rates
| |
− | *** Modbus Client: added missing API docs for Modbus test request
| |
− | *** Modbus Server: added all available default baud rates
| |
− | *** Modbus Server: fixed firewall rule staying enabled when app is disabled
| |
− | *** Modbus Server: fixed firewall rule creation
| |
− | *** NTRIP: added all available default baud rates
| |
− | *** OpenVPN: fixed the configuration after disabling the use of external services
| |
− | *** Over IP: added all available default baud rates
| |
− | *** SNMP: fixed Hotspot OIDs' hssID and hssUsername display
| |
− | *** Tinc: fixed adding routes to remote subnets
| |
− | *** Tinc: fixed configuration generation issues when creating multiple network and host instances
| |
− | *** Tinc: fixed issues with route creation when using IPv6 addresses in tunnel configuration
| |
− | *** Tinc: fixed validation for uploading key files
| |
− | ** <b>System</b>
| |
− | *** Backup: fixed uploading backup with memory expansion enabled
| |
− | *** CLI: fixed some private IPs being incorrectly determined as public
| |
− | *** JSON-RPC: fixed login "Access Denied" error
| |
− | *** Memory Expansion: fixed input element alignment issues
| |
− | *** WebUI: added API required values validation when enabling BACnet, DLMS, DNP3, Modbus, MQTT, NTRIP services
| |
− | *** WebUI: fixed 'Memory' status card progress bars visuals
| |
− | *** WebUI: fixed search bar suggestions after removing packages
| |
− | *** WebUI: fixed showing data in modals for users with only read permissions
| |
− | *** WebUI: fixed custom SDK pages not loading correctly
| |
− | * <b>CVE Patches</b>
| |
− | ** CVE-2021-3520
| |
− | ** CVE-2021-44540
| |
− | ** CVE-2021-44541
| |
− | ** CVE-2024-4032
| |
− | ** CVE-2024-6119
| |
− | ** CVE-2024-6232
| |
− | ** CVE-2024-6923
| |
− | ** CVE-2024-7264
| |
− | ----
| |
− | ===<b><span class="plainlinks">[https://firmware.teltonika-networks.com/7.9.4/RUTX/RUTX_R_00.07.09.4_WEBUI.bin RUTX_R_00.07.09.4]</span></b> | 2024.10.02=== | |
− | * <b>Improvements</b>
| |
− | ** <b>Services</b>
| |
− | *** NTP Client: changed default NTP servers
| |
− | * <b>Fix</b>
| |
− | ** <b>Services</b>
| |
− | *** NTP Client: fixed NTP server usage to work with next in line server if current server does not respond
| |
− | ----
| |
− | ===<b><span class="plainlinks">[https://firmware.teltonika-networks.com/7.9.3/RUTX/RUTX_R_00.07.09.3_WEBUI.bin RUTX_R_00.07.09.3]</span></b> | 2024.09.27===
| |
− | * <b>Fix</b>
| |
− | ** <b>Network</b>
| |
− | *** Multi WAN: fixed ipsets not getting deleted correctly when Multi WAN gets restarted
| |
− | ----
| |
− | ===<b><span class="plainlinks">[https://firmware.teltonika-networks.com/7.9.1/RUTX/RUTX_R_00.07.09.1_WEBUI.bin RUTX_R_00.07.09.1]</span></b> | 2024.09.13===
| |
− | * <b>Improvements</b>
| |
− | ** <b>Services</b>
| |
− | *** Python3: updated version to 3.11.7
| |
− | ----
| |
− | ===<b><span class="plainlinks">[https://firmware.teltonika-networks.com/7.9/RUTX/RUTX_R_00.07.09_WEBUI.bin RUTX_R_00.07.09]</span></b> | 2024.09.03===
| |
− | * <b>New</b>
| |
− | ** <b>Network</b>
| |
− | *** Devices: added VXLAN support
| |
− | *** Firewall: added ability to configure NAT rule action
| |
− | *** Firewall: added additional TTL target for firewall rules
| |
− | *** Realtime Traffic: added historical traffic charts
| |
− | *** Realtime Traffic: added overall quality measurement to wireless signal charts
| |
− | *** Wireless: added option to enable 802.11w Management frame protection when using non-WPA3 encryption
| |
− | ** <b>Services</b>
| |
− | *** Events Reporting: added new firmware version notification event
| |
− | *** SNMP: added Multiwan data module
| |
− | ** <b>System</b>
| |
− | *** WebUI: added notifications menu
| |
− | * <b>Improvements</b>
| |
− | ** <b>Network</b>
| |
− | *** Ports Settings: added more PoE state symbols, colored disabled port differently and improved port status hint
| |
− | *** Realtime Traffic: improved chart styles
| |
− | *** Wireless: increased EAP authentication logging
| |
− | *** Wireless: added various validations for network that is being used by wireless interface
| |
− | *** Wireless: added insecure configuration warnings when configuring SSIDs
| |
− | *** Wireless: updated wireless cards to display each radio device's signal quality and band data
| |
− | *** Wireless: reduced time required for Fast Transition in STA mode
| |
− | ** <b>Services</b>
| |
− | *** Data to Server: added warning messages about insecure certificates for http_certfile and mqtt_certfile options in API and WebUI
| |
− | *** DLMS: added SHA256 authentication
| |
− | *** DLMS: improved COSEM group enable validation
| |
− | *** GRE: reduced GRE keepalive packet buffer size
| |
− | *** Hotspot: increased throughput performance
| |
− | *** Hotspot: increased maximum length of 'Local users' username to 255 characters
| |
− | *** Hotspot: added walled garden allowlist and blocklist
| |
− | *** IPsec: added support for route based tunnel
| |
− | *** L2TP: added field for custom options
| |
− | *** SMPP: added timeout option
| |
− | *** Web Filter: added hostname count message after successful file upload
| |
− | ** <b>System</b>
| |
− | *** Access Control: improved system user's access control rules logic
| |
− | *** Access Control: added option to disable password auth for the root user
| |
− | *** Administration: improved write/read access control options display to match meniu path style
| |
− | *** Backup: improved backup page by splitting it into backup and reset settings page
| |
− | *** Side Widget: added port status widget
| |
− | *** Update Firmware: changed firmware update log to include firmware version
| |
− | *** WebUI: updated firmware and backup verification pages design
| |
− | *** WebUI: improved global alerts display
| |
− | *** WebUI: added confirmation prompt for disabling service in side widget
| |
− | *** Kernel: updated version to 5.10.221
| |
− | * <b>Fix</b>
| |
− | ** <b>Network</b>
| |
− | *** Devices: fixed configured VLAN 0 device cannot be selected in interface physical settings configuration
| |
− | *** Network: fixed switch hardware MTU being set incorrectly when changing MTU on any network interface
| |
− | *** RelayD: fixed relayd assigning wrong interface to zone
| |
− | *** Wireless: fixed station mode connection issues for 2.4 GHz radio in STA+AP mode
| |
− | *** Wireless: fixed wireless status API response to contain separate interface information for multiple radio configurations
| |
− | *** Wireless: fixed excessive log spam during 5 GHz ACS
| |
− | ** <b>Services</b>
| |
− | *** Azure IoT Hub: fixed the Azure IoT Hub deprecated endpoint to create Data to Server sections
| |
− | *** Azure IoT Hub: fixed the Azure IoT Hub deprecated endpoint so that it does not create sections in GET request
| |
− | *** Azure IoT Hub: fixed the deletion of Data to Server sections when an Azure IoT Hub section is deleted through the deprecated endpoint
| |
− | *** DLMS: fixed OBIS code validation
| |
− | *** Hotspot: fixed 'Hotspot network' input validation to only allow network mask from 16 to 30
| |
− | *** Input/Output: added I/O juggler reload when I/O pin direction is changed
| |
− | *** OPC UA Client: fixed TCL file upload
| |
− | *** OPC UA Server: fixed TCL file upload
| |
− | *** OPC UA Server: fixed configuration migration
| |
− | *** OpenVPN: fixed default firewall zone for tap interfaces
| |
− | *** SNMP: fixed TELTONIKA-MIB wireless module crash
| |
− | *** SNMP: fixed mobile network state display
| |
− | *** SNMP: fixed default hssDwLimit, hssUpLimit, hssDwBandwidth and hssUpBandwidth values
| |
− | ** <b>System</b>
| |
− | *** API Core: fixed file deletion
| |
− | *** Package Restore: fixed automatic package re-installation after firmware upgrade
| |
− | *** Troubleshoot: fixed troubleshoot not including all the log files when log to flash is enabled
| |
− | *** User Settings: fixed page to show groups and users if the user has been granted access
| |
− | *** WebUI: fixed overview page to display active wireless (WLAN) clients
| |
− | * <b>CVE Patches</b>
| |
− | ** CVE-2021-32292
| |
− | ** CVE-2022-40617
| |
− | ** CVE-2023-49441
| |
− | ** CVE-2024-0397
| |
− | ** CVE-2024-3596
| |
− | ** CVE-2024-5535
| |
− | ** CVE-2024-8088
| |
− | ** CVE-2024-26669
| |
− | ** CVE-2024-26739
| |
− | ** CVE-2024-26740
| |
− | ** CVE-2024-36901
| |
− | ----
| |
− | ===<b><span class="plainlinks">[https://firmware.teltonika-networks.com/7.8.3/RUTX/RUTX_R_00.07.08.3_WEBUI.bin RUTX_R_00.07.08.3]</span></b> | 2024.08.23===
| |
− | * Changes only affect other RUTX devices
| |
− | ----
| |
− | ===<b><span class="plainlinks">[https://firmware.teltonika-networks.com/7.8.2/RUTX/RUTX_R_00.07.08.2_WEBUI.bin RUTX_R_00.07.08.2]</span></b> | 2024.08.12===
| |
− | * <b>Fix</b>
| |
− | ** <b>System</b>
| |
− | *** Update Firmware: fixed inconsistent firmware download from FOTA
| |
− | ----
| |
− | ===<b>RUTX_R_00.07.08.1</b> | 2024.08.06===
| |
− | <b>Note:</b> This firmware version was removed due to an issue with FOTA firmware download.
| |
− | * <b>Improvements</b>
| |
− | ** <b>Services</b>
| |
− | *** Zerotier: updated version to 1.14.0
| |
− | * <b>Fix</b>
| |
− | ** <b>Network</b>
| |
− | *** Network: fixed default route not being added for PPPoE connections
| |
− | ** <b>Services</b>
| |
− | *** Modbus TCP over Serial Gateway: fixed serial connection not working after reboot
| |
− | *** OPC UA Client: fixed connections not being closed after using testing functionality
| |
− | ** <b>System</b>
| |
− | *** WebUI: fixed SDK WebUI package compilation
| |
− | ----
| |
− | ===<b>RUTX_R_00.07.08</b> | 2024.07.18===
| |
− | <b>Note:</b> This firmware version was removed due to an issue with FOTA firmware download.
| |
− | * <b>New</b>
| |
− | ** <b>Network</b>
| |
− | *** 802.1X: added client support
| |
− | *** DNS: added inherited server status to configuration page
| |
− | *** HTTPS DNS Proxy: added new HTTPS DNS Proxy package to package manager
| |
− | ** <b>Services</b>
| |
− | *** Data to Server: added 'Lua script' data input
| |
− | *** Hotspot: added Single Sign-on (OIDC) authentication mode
| |
− | *** Hotspot: added Walled Garden blocklist functionality
| |
− | *** Input/Output: added ability to configure gpio debounce timer and changed default gpio debounce timer value from 200 ms to 10 ms
| |
− | *** IPsec: added initial XFRM support
| |
− | *** MQTT Modbus Gateway: added JSON message type format
| |
− | *** OpenVPN: added DCO support
| |
− | ** <b>System</b>
| |
− | *** API Core: added option to configure api session timeout
| |
− | *** Certificates: added "Let's encrypt" certificate generation
| |
− | *** PAM: added RADIUS external user support
| |
− | *** UI Core: added data analytics support
| |
− | *** Update Firmware: added warning message about device being temporarily unreachable on firmware update
| |
− | * <b>Improvements</b>
| |
− | ** <b>Network</b>
| |
− | *** Channel Analysis: added scan error message when a DFS channel and FCC country are selected
| |
− | *** DNS: separated field "DNS forwardings" into two: one for simple server forwarding other for domain-specific
| |
− | *** DNS: moved "DNS Forwardings", "Listen interfaces", "Exclude interfaces", "Local service only", options to advanced tab
| |
− | *** Firewall: improved protocol field in all firewall pages by making that "All" value would be mutually exclusive with any other value
| |
− | *** Multi WAN: improved interface status representation when using load balancing
| |
− | *** Network: added more options for "IPv6 assignment length" field
| |
− | *** Wireless: added warning when user configures mesh on radio with automatic frequency channel
| |
− | *** Wireless: added support for wireless MAC-filter MAC ranges
| |
− | *** Wireless: updated wireless firmware
| |
− | *** Wireless: changed Radius Accounting port is not required when configuring access point with enterprise encryption
| |
− | *** Wireless: enabled ACS(automatic channel selection) for 5 GHz radios by default
| |
− | *** Wireless: refactored radio configuration page layout
| |
− | *** Wireless: refactored assignment of wireless interfaces MAC addresses, STA interface will always use fixed address
| |
− | ** <b>Services</b>
| |
− | *** Azure IoT Hub: added DPS symmetric key attestation support
| |
− | *** Azure IoT Hub: added Direct Method support
| |
− | *** Azure IoT Hub: added Plug and Play integration
| |
− | *** Azure IoT Hub: added link to "Data to Server" page
| |
− | *** Data to Server: added support for multiple filters
| |
− | *** Data to Server: improved HTTP output hostname definition with automatic protocol specification in URL
| |
− | *** Data to Server: improved MQTT input connection handling
| |
− | *** DNP3 Client: added option to enable/disable service
| |
− | *** GRE: increased Inbound and Outbound key limit to 4294967295
| |
− | *** Hotspot: adjusted hotspot user manager page to display active and inactive user sessions
| |
− | *** Hotspot: changed local users to be stored with other types of users
| |
− | *** Hotspot: added 'noc2c' option for enabling client isolation, option is enabled by default
| |
− | *** Input/Output: added custom name support in I/O status page
| |
− | *** IPsec: added certificate warning message
| |
− | *** Modbus Server: added mobile last month and last week usage registers
| |
− | *** Mosquitto: added large package size check for MQTT clients
| |
− | *** MQTT Modbus Gateway: improved mosquitto reconnect time and service will try to recover few times before exiting
| |
− | *** MQTT Publisher: improved MQTT connection handling
| |
− | *** OPC UA Client: added security modes
| |
− | *** OPC UA Server: added security modes
| |
− | *** OPC UA Server: added service status display
| |
− | *** OpenVPN: added support for decrypting private key when uploading a configuration file
| |
− | *** OpenVPN: improved instance status state
| |
− | *** OpenVPN: added options to specify an IP address pool for dynamic assignment to clients
| |
− | *** Over IP: added label to show how many servers a client is connected to
| |
− | *** Over IP: connect on data feature will not disconnect immediately after data transfer but wait for inactivity timeout
| |
− | *** Over IP: increased TLS handshake timeout to 10 seconds
| |
− | *** SMPP: added brute-force prevention
| |
− | *** SMPP: added TLS/SSL support
| |
− | *** SNMP: changed interface module OID structure
| |
− | *** SNMP: improved User-based Security Model (USM) brute force attack prevention measures
| |
− | *** Stunnel: improved global instance settings dependencies
| |
− | *** emailrelay: updated version to 2.4.1
| |
− | *** OpenVPN: updated version to 2.6.9
| |
− | *** stunnel: updated version to 5.72
| |
− | *** Tailscale: updated version to 1.68.1
| |
− | ** <b>System</b>
| |
− | *** Access Control: added certificate key length warnings
| |
− | *** Access Control: adjusted access control when all pages are blocked
| |
− | *** Access Control: added certificate file download for CLI to work on all browsers
| |
− | *** API Core: implemented functionality to include warning messages for vulnerable certificates
| |
− | *** Package Manager: added multi package actions
| |
− | *** Package Manager: added status filter
| |
− | *** Package Manager: moved package upload action to main page
| |
− | *** Package Manager: added links to installed packages pages
| |
− | *** Package Manager: refactored "Packages" page
| |
− | *** Package Manager: updated opkg repository link to use https
| |
− | *** RutOS: improved GPL example page to align with new software architecture
| |
− | *** Troubleshoot: added support for multiple syslog servers
| |
− | *** UI Core: added additional message with IP address to loading screen for scenarios when redirect to different IP address happens
| |
− | *** UI Core: added toast message hiding when text is too long
| |
− | *** Update Firmware: added 'Firmware version' data in screen after firmware upload
| |
− | *** WebUI: added functionality to cancel loading screen if it takes 30 or more seconds
| |
− | *** WebUI: removed all ubus method calls from webui
| |
− | *** WebUI: improved language caching
| |
− | *** WebUI: added password generator for first login modal
| |
− | *** WebUI: added sticky position to side menu
| |
− | *** WebUI: added default password hint to login error message
| |
− | *** WebUI: added warning messages for low-security certificates
| |
− | *** Kernel: updated version to 5.10.217
| |
− | *** libexpat: updated version to 2.6.2
| |
− | *** SSL/TLS: updated version to 3.0.14
| |
− | *** vue: updated version to 3.4
| |
− | * <b>Fix</b>
| |
− | ** <b>Network</b>
| |
− | *** Channel Analysis: fixed network list not being updated if a single scan fails
| |
− | *** Devices: fixed missing API devices status endpoint permission
| |
− | *** DHCP: fixed "DHCP option" allow empty input value
| |
− | *** DHCP: fixed IPv4 leases being not correctly shown when NTP synchronizes time
| |
− | *** DHCP: fixed DHCP error that occurred after changing the subnet of the LAN IP address in the setup wizard
| |
− | *** Dynamic routes: fixed duplicated external routes cards
| |
− | *** Firewall: fixed firewall zone validation when adding interfaces
| |
− | *** Multi AP: fixed Multi AP not working with fast roaming
| |
− | *** Multi AP: fixed switching to Multi AP mode fails due to encryption
| |
− | *** Multi AP: fixed Multi AP configuration being deleted when switching mode on the same radio device
| |
− | *** Network: fixed overriding MAC address for interfaces that are bridged
| |
− | *** Network: fixed instances of device dropping packets when configured with masquerading disabled and 'Hardware flow offload' enabled
| |
− | *** RelayD: fixed API error when "network" and "lan_mark" options are not present in a PUT request
| |
− | *** Wireless: fixed wireless scan results sometimes not being returned
| |
− | *** Wireless: fixed 5 GHz Wi-Fi scanning is prohibited when a DFS channel and ETSI regulatory domain is selected
| |
− | *** Wireless: fixed Wi-Fi 5 GHz unsupported channel selection issue on specific widths
| |
− | *** Wireless: fixed wireless status page not updating wireless SSID status after page is opened
| |
− | *** Wireless: removed the ability to have different countries in radio configurations
| |
− | *** Wireless: fixed interface delete when it's unassigned from the wireless interface in access point mode
| |
− | *** Wireless: fixed backticks for WiFi SSID are not allowed in WebUI
| |
− | ** <b>Services</b>
| |
− | *** BACnet: fixed incorrect BACnet IP port used for sending responses
| |
− | *** BGP: fixed route map sequence going out of range
| |
− | *** BGP: fixed listen range field allowing multiple entries
| |
− | *** DLMS: fixed DLMS test response format
| |
− | *** DLMS: fixed COSEM group validation
| |
− | *** DLMS: fixed API POST error for /dlms/devices/config endpoint
| |
− | *** DLMS: fixed serial connection not working after reboot
| |
− | *** DNP3 Client: fixed to allow reading objects past 255 index
| |
− | *** DNP3 Client: fixed incorrect hints
| |
− | *** DNP3 Outstation: fixed serial outstation starting issues
| |
− | *** Hotspot: fixed uploading more than one custom theme
| |
− | *** Hotspot: fixed creating Hotspot to SSID that is disabled
| |
− | *** Hotspot 2.0: fixed Venue name and Operator's name field validations
| |
− | *** I/O Juggler: fixed improper dout action config handling
| |
− | *** I/O Juggler: updated profile change action
| |
− | *** Input/Output: allow unselecting all Post/Get access methods
| |
− | *** IPsec: fixed connectivity issues when using WAN failover
| |
− | *** IPsec: fixed the instance status when the local firewall option is disabled
| |
− | *** Modbus Client: fixed test request option validation
| |
− | *** Modbus Client: fixed alarm output action display values
| |
− | *** Modbus Client: fixed incorrect period hint
| |
− | *** Modbus Server: fixed APN register not clearing APN
| |
− | *** Modbus Server: fixed 148 and 164 modbus registers
| |
− | *** Modbus Server: fixed incorrect hints
| |
− | *** NTRIP: fixed NTRIP NMEA generation timestamp and coordinates errors
| |
− | *** NTRIP: fixed configuration reading with several instances added
| |
− | *** OPC UA Server: fixed not starting while modem is down
| |
− | *** OpenVPN: fixed displaying imported files from device
| |
− | *** OpenVPN: fixed the private key decryption for cases when a password is used
| |
− | *** OpenVPN: fixed data cipher migration
| |
− | *** Over IP: fixed connect on data initiating TCP connection after few data transfers
| |
− | *** SMPP: fixed username bypass problem
| |
− | *** SMPP: fixed password validation
| |
− | *** SNMP: fixed GSM mSignal OID value type
| |
− | *** SNMP: fixed GSM module memory leaks
| |
− | *** SSTP: fixed functionality when the default route option is not enabled
| |
− | *** Web Filter: fixed whitelist not working for some hosts when using IPv6
| |
− | ** <b>System</b>
| |
− | *** Administration: fixed repeated validation on cleared inputs and added validation when new password matches the old one
| |
− | *** API Core: fixed API method validation during upload action
| |
− | *** API Core: fixed error messages for POST method
| |
− | *** API Core: fixed option list validation
| |
− | *** Boot: fixed factory settings restore (firstboot) not deleting hidden files
| |
− | *** Events Log: fixed refresh button in event log table
| |
− | *** IP Block: fixed adding MAC addresses back to whitelist when unblocking all of them
| |
− | *** Memory Expansion: fixed enable validation
| |
− | *** Recipients: made phone number field required
| |
− | *** Setup Wizard: fixed lan ip step not changing ip address
| |
− | *** Troubleshoot: fixed system log and kernel log buttons to be enabled with read only rights
| |
− | *** Update Firmware: fixed misleading "Firmware version" status of "N/A" to "FOTA service is disabled" when FOTA is disabled
| |
− | *** Update Firmware: fixed issue when infinite spinner appears after updating device firmware from server without having internet connection
| |
− | * <b>CVE Patches</b>
| |
− | ** Patched CVE-2023-52425
| |
− | ** Patched CVE-2023-52530
| |
− | ** Patched CVE-2024-25629
| |
− | ** Patched CVE-2024-28757
| |
− | ----
| |
− | ===<b><span class="plainlinks">[https://firmware.teltonika-networks.com/7.7.3/RUTX/RUTX_R_00.07.07.3_WEBUI.bin RUTX_R_00.07.07.3]</span></b> | 2024.06.25===
| |
− | * <b>Fix</b>
| |
− | ** <b>Network</b>
| |
− | *** WebUI: fixed port advertisement change
| |
− | ** <b>System</b>
| |
− | *** FOTA: fixed config when upgrading from older firmware with keep settings
| |
− | * <b>CVE Patches</b>
| |
− | ** CVE-2024-31950
| |
− | ** CVE-2024-31951
| |
− | ----
| |
− | ===<b><span class="plainlinks">[https://firmware.teltonika-networks.com/7.7.2/RUTX/RUTX_R_00.07.07.2_WEBUI.bin RUTX_R_00.07.07.2]</span></b> | 2024.06.12===
| |
− | * <b>Improvements</b>
| |
− | ** <b>Network</b>
| |
− | *** Zerotier: added backup WAN interface blacklisting if WAN failover is enabled
| |
− | ** <b>Services</b>
| |
− | *** SNMP: added bruteforce attack prevention when using SNMP v3 user
| |
− | *** L2TP: improved reconnect attempt logic
| |
− | *** Wireless: removed unnecessary information from system logs
| |
− | ** <b>System</b>
| |
− | *** SSH: removed weak SSH algorithms
| |
− | *** Telnet: moved to Package Manager
| |
− | * <b>Fix</b>
| |
− | ** <b>Network</b>
| |
− | *** BGP: fixed instance migration issues
| |
− | *** HNAT: fixed cases of unintended forwarding when LAN and WAN subnets overlap
| |
− | *** HNAT: fixed instances of device misrouting packets to wired LAN when 'Hardware Flow Offloading' was enabled
| |
− | *** Wireless: fixed connection issues after disabling encryption
| |
− | ** <b>Services</b>
| |
− | *** DMVPN: fixed duplicate NHRP map entries creation
| |
− | *** OpenVPN: added fixes for the insecure tls-cert-profile option usage
| |
− | ** <b>System</b>
| |
− | *** IP Block: fixed blocking of UDP traffic
| |
− | *** Ledman: fixed WiFi LED indication when WiFi configuration is changed
| |
− | * <b>CVE Patches</b>
| |
− | ** CVE-2024-31948
| |
− | ----
| |
− | ===<b><span class="plainlinks">[https://firmware.teltonika-networks.com/7.7.1/RUTX/RUTX_R_00.07.07.1_WEBUI.bin RUTX_R_00.07.07.1]</span></b> | 2024.05.03===
| |
− | ----
| |
− | * <b>New</b>
| |
− | ** <b>Network</b>
| |
− | *** WebUI: added internet status tracking configuration and overview widget
| |
− | *** LAN: added a new IPv6 LAN status page
| |
− | *** Static Leases: added a new IPv6 Static Leases page
| |
− | *** WebUI: added custom domain name resolve option in “DNS” configuration page
| |
− | *** Failover: added additional connection flush options
| |
− | *** Wireless: added auto-reconnect disable functionality
| |
− | *** Wireless: added ability to use PKCS#12 certificates for EAP-TLS authentication
| |
− | *** VRF: added initial Virtual Routing and Forwarding support
| |
− | ** <b>Services</b>
| |
− | *** Post/Get: added I/O invert support
| |
− | *** DLMS Client: added persistent TCP connections
| |
− | *** Events Reporting: added unexpected shutdown event
| |
− | *** Modbus Client: added 64bit data types
| |
− | *** IPerf3: added iPerf3 to Package Manager
| |
− | *** DNP3 Outstation: added I/O objects
| |
− | *** Hotspot: added domain and subdomain options for external landing page
| |
− | *** Over IP: added option 'Keep alive enable'
| |
− | ** <b>System</b>
| |
− | *** WebUI: added the ability to generate random passwords for password input fields
| |
− | *** WebUI: added reset to “Factory defaults” option
| |
− | *** System: changed firmware certificate verification tool
| |
− | *** IP Block: added time-based login attempt blocking
| |
− | *** WebUI: added firmware update notification support
| |
− | *** PAM: added the ability to set port for TACACS+
| |
− | *** Logging: added multiple remote syslog servers support
| |
− | * <b>Improvements</b>
| |
− | ** <b>Network</b>
| |
− | *** Static Leases: added possibility to use MAC with wildcard
| |
− | *** Topology: changed network devices scanning application
| |
− | *** WebUI: improved design of Status - LAN page
| |
− | *** DHCP: simplified DHCP configurations in other pages and moved full DHCP configuration to a separate page
| |
− | *** DHCP: removed default disabled server configuration for WAN interface
| |
− | *** WebUI: simplified data entry of DNS forwardings by separating hostname and IP address fields
| |
− | *** BGP: added Virtual Routing and Forwarding (VRF) support
| |
− | *** BGP: added multiple BGP instance support
| |
− | *** WebUI: adjusted responsive design breakpoints
| |
− | *** HNAT: improved WAN->LAN packet offloading
| |
− | *** WebUI: added an information icon and disabled delete button for wireless instance when it is associated with a hotspot interface
| |
− | *** Wireless: improved hidden AP handling when showing scan results
| |
− | *** Wireless: added a range of channels to 5 Ghz radio to use as fallback if it drops after radar detection when using DFS channel
| |
− | *** Dnsmasq: updated dnsmasq to version 2.89
| |
− | ** <b>Services</b>
| |
− | *** Wireguard: added option to bind tunnel to a specific interface
| |
− | *** OPC UA Client: added limits (10 servers, 20 groups, 50 nodes per server, 50 values per group)
| |
− | *** DLMS Client: increased maximum count of connection sections to 30
| |
− | *** DLMS Client: added short name referencing
| |
− | *** SNMP: set strict default community access when IPv6 address is used
| |
− | *** SNMP: improved sysName OID to set device's hostname
| |
− | *** Network Shares: moved to Package Manager
| |
− | *** Hotspot: moved MAC blocking option from Access Control to Hotspot page
| |
− | *** WebUI: added MAC authentication support when using RADIUS authentication mode
| |
− | *** WebUI: moved licenses to footer
| |
− | *** OpenVPN: added the bridge option for selecting the network device to be bridged with
| |
− | *** OpenVPN: added possibility to create more than one TAP client
| |
− | *** SSTP: updated package version to 1.0.19
| |
− | *** Mosquitto: updated package version to 2.0.17
| |
− | *** Tailscale: updated package version to 1.62.1
| |
− | ** <b>System</b>
| |
− | *** WebUI: added more strict password requirements for restoring backup
| |
− | *** SMTP: added option to either not verify SMTP server or upload SMTP server's CA file to verify authenticity
| |
− | *** WebUI: Added the ability to choose the ROOT CA when using certificates from the device
| |
− | *** WebUI: unified time format to ISO8601 across the entire WebUI
| |
− | *** WebUI: added ability to choose imported certificate and key as 'Server certificate' and 'Server key' in 'Access Control'
| |
− | *** WebUI: added 'Hosts' and 'IP Addresses' options for 'Simple' certificate generation and certificate signing
| |
− | *** WebUI: changed firmware update option to server as a default option
| |
− | *** WebUI: improved first login password change logic
| |
− | *** Certificates: updated Root CA certificates
| |
− | *** GPL: added offline package preparation command for GPL builds
| |
− | *** Speedtest: added multiple connections support to improve accuracy
| |
− | *** Libcap: updated package version to 2.69
| |
− | * <b>Fix</b>
| |
− | ** <b>Network</b>
| |
− | *** Topology: fixed showing interfaces with assigned VLAN
| |
− | *** WebUI: fixed static routing creation for GRE instance
| |
− | *** Network: fixed DHCPv4 relay mode enabling
| |
− | *** Failover: fixed Failover missing active rules when using multiple source and destination IP addresses
| |
− | *** WebUI: fixed network and failover interface metric sorting synchronization issue
| |
− | *** WebUI: fixed failover rule policy save issue with newly added WAN interface
| |
− | *** Interfaces: fixed failover value for new WAN being taken from WAN that was just deleted
| |
− | *** Wireless: fixed Wifi Scanner not saving scanned WiFi SSIDs
| |
− | *** Wireless: fixed missing CCMP-256 and GCMP-256 cipher types in scan results
| |
− | *** Wireless: fixed missing GCMP-256 cipher when using WPA3-EAP encryption in Client mode
| |
− | *** Wireless: fixed skipped MAC address value for interface in Client mode
| |
− | *** Wireless: fixed setup issue when client or mesh interfaces are configured on both radios
| |
− | *** Wireless: fixed changing regulatory domain configuration
| |
− | *** WebUI: fixed mesh nodes not being shown in Status->Wireless->Interfaces page
| |
− | *** WebUI: fixed proposed configuration settings when connecting to a mesh point network
| |
− | *** MultiAP: fixed client not switching to another AP if incorrect password was provided
| |
− | *** HNAT: fixed multicast packet leakage when 'Hardware flow offloading' is enabled
| |
− | ** <b>Services</b>
| |
− | *** Modbus Client: allow using negative floating point values in requests
| |
− | *** Azure IoT Hub: fixed Data to Server minor WebUI dependency bugs
| |
− | *** Data to Server: fixed DLMS data formating
| |
− | *** Data to Server: fixed Network link state data display
| |
− | *** DLMS Client: fixed segfault while reading profile generic COSEM object
| |
− | *** DLMS Client: fixed profile generic entries reading
| |
− | *** DLMS Client: fixed application memory allocation issues
| |
− | *** SSTP: fixed route adding when default route is enabled
| |
− | *** SNMP: fixed VLAN OID naming
| |
− | *** OpenVPN: added fixes for instance status tracking functionality
| |
− | *** OpenVPN: resolved uptime counting issues
| |
− | *** PPTP: fixed PPTP instance deletion problem
| |
− | *** Azure IoT Hub: fixed 'contentType' telemetry message parameter
| |
− | *** Hotspot: fixed password validation for locally created users and signed-up users
| |
− | *** Hotspot: fixed session invalidation after deleting registered user
| |
− | *** Hotspot: fixed firewall rule creation
| |
− | *** PPTP: fixed problem related with routes when failover is enabled
| |
− | *** USB Tools: fixed to not display a non-existent MSD
| |
− | *** Modbus TCP Over Serial Gateway: fixed gateway returning corrupted data with larger baud rates
| |
− | *** WebUI: fixed data loading error in Input/Output > Post/Get page
| |
− | *** UPnP: updated package version to 2.3.4
| |
− | ** <b>System</b>
| |
− | *** Package Manager: fixed spinner message when restarting network after package upload or download
| |
− | *** Package Manager: fixed supported devices check when installing a package from server
| |
− | *** WebUI: fixed language install from uploaded package after upgrade with keep settings
| |
− | *** WebUI: fixed an issue when a user was not logged out after changing profiles
| |
− | *** Telnet: fixed segmentation fault during concurrent connections
| |
− | *** CLI: fixed enter key issue on mobile chromium based browsers
| |
− | *** System Users: fixed SSH session close after deleting user or disabling SSH access
| |
− | *** Profiles: fixed profile migration with installed packages
| |
− | *** PAM: updated libpam to version 1.6.0
| |
− | *** JavaVM: fixed package installation
| |
− | *** WebUI: fixed Hotspot log page table search functionality
| |
− | *** Speedtest: fix missing download speed on some servers
| |
− | * <b>CVE Patches</b>
| |
− | ** CVE-2022-4603
| |
− | ** CVE-2022-23308
| |
− | ** CVE 2022-45061
| |
− | ** CVE-2023-0466
| |
− | ** CVE-2023-6129
| |
− | ** CVE-2023-7042
| |
− | ** CVE 2023-24329
| |
− | ** CVE 2023-27043
| |
− | ** CVE-2023-42366
| |
− | ** CVE-2023-46218
| |
− | ** CVE-2023-46219
| |
− | ** CVE-2023-46752
| |
− | ** CVE-2023-46753
| |
− | ** CVE-2023-48795
| |
− | ** CVE-2024-2397
| |
− | ** CVE-2024-25062
| |
− | ** CVE-2024-27913
| |
− | ** CVE-2024-22365
| |
− | ===<b><span class="plainlinks">[https://firmware.teltonika-networks.com/7.6.10/RUTX/RUTX_R_00.07.06.10_WEBUI.bin RUTX_R_00.07.06.10]</span></b> | 2024.04.04===
| |
− | ----
| |
− | * <b>Fix</b>
| |
− | ** <b>System</b>
| |
− | *** Ledman: fixed memory leak
| |
− | ===<b>RUTX_R_00.07.06.8</b> | 2024.03.25===
| |
− | * Firmware <b>R_00.07.06.8</b> was removed due to an issue with inefficient memory allocation for LED control.
| |
− | ----
| |
− | * <b>Improvements</b>
| |
− | ** <b>Services</b>
| |
− | *** IPSec: disabled libgmp in favor of openssl
| |
− | *** IPSec: updated Strongswan to 5.9.6
| |
− | * <b>Fix</b>
| |
− | ** <b>Services</b>
| |
− | *** IPSec: increased charon load timeout
| |
− | *** IPSec: fixed loading of large private keys
| |
− | ===<b><span class="plainlinks">[https://firmware.teltonika-networks.com/7.6.6/RUTX/RUTX_R_00.07.06.6_WEBUI.bin RUTX_R_00.07.06.6]</span></b> | 2024.03.04===
| |
− | ----
| |
− | * <b>New</b>
| |
− | ** <b>Services</b>
| |
− | *** Added domain and subdomain options for external landing page in Hotspot
| |
− | * <b>Improvements</b>
| |
− | ** <b>System</b>
| |
− | *** Minified *.svg WebUI files to save space on the device
| |
− | *** Removed unused easy-rsa package to increase free space
| |
− | * <b>Fix</b>
| |
− | ** <b>Network</b>
| |
− | *** Fixed the issue with Wireless bgscan functionality not operating correctly
| |
− | ** <b>Services</b>
| |
− | *** Fixed OverIP serial utility issue where after some time server mode can't accept incoming connections anymore
| |
− | ===<b><span class="plainlinks">[https://firmware.teltonika-networks.com/7.6.5/RUTX/RUTX_R_00.07.06.5_WEBUI.bin RUTX_R_00.07.06.5]</span></b> | 2024.02.21===
| |
− | ----
| |
− | * <b>Improvements</b>
| |
− | ** <b>Network</b>
| |
− | *** Improved DMZ to use its source zone on port forwards creation
| |
− | ** <b>System</b>
| |
− | *** Updated netifd version to 2024-01-04
| |
− | *** Updated PPP package version to 2.4.9
| |
− | *** Updated E2fsprogs package version to 1.47.0
| |
− | *** Updated Musl package version to 1.2.4
| |
− | * <b>Fix</b>
| |
− | ** <b>Network</b>
| |
− | *** Fixed an issue where DNS resolution failed for wireless clients connected to an access point configured on a specific VLAN
| |
− | ** <b>Services</b>
| |
− | *** Fixed Modbus TCP Over Serial Gateway crash occurring at start up in some edge cases
| |
− | *** Fixed tailscale VPN firewall zone creation issue
| |
− | ** <b>WebUI</b>
| |
− | *** Fixed action descriptions in the traffic rules table
| |
− | ** <b>System</b>
| |
− | *** Fixed WiFi LED indication when access point is turned off
| |
− | *** Fixed year 2038 problem with time counter overflow
| |
− | ===<b><span class="plainlinks">[https://firmware.teltonika-networks.com/7.6.3/RUTX/RUTX_R_00.07.06.3_WEBUI.bin RUTX_R_00.07.06.3]</span></b> | 2024.01.17===
| |
− | ----
| |
− | * <b>Improvements</b>
| |
− | ** <b>Services</b>
| |
− | *** Increased DLMS Client connection timeout for TCP sockets
| |
− | * <b>Fix</b>
| |
− | ** <b>Services</b>
| |
− | *** Fixed DLMS Client memory leak with profile generic COSEM class
| |
− | *** Fixed function 5 not working with high register numbers in MQTT Modbus Gateway service
| |
− | ** <b>WebUI</b>
| |
− | *** Fixed Events Log sorting and search features
| |
− | ** <b>System</b>
| |
− | *** Patched CVE-2024-0193 vulnerability
| |
− | *** Patched CVE-2023-51779 vulnerability
| |
− | *** Updated OpenSSH to 9.6p1 version, fixed CVE-2023-51385 and CVE-2023-51384
| |
− | *** Fixed profile migrations, added error handling when trying to change profile while it is still applying
| |
− | ===<b><span class="plainlinks">[https://firmware.teltonika-networks.com/7.6.1/RUTX/RUTX_R_00.07.06.1_WEBUI.bin RUTX_R_00.07.06.1]</span></b> | 2024.01.04===
| |
− |
| |
− | * <b>Fix</b>
| |
− | ** <b>Services</b>
| |
− | *** Fixed issue with NTPclient zombie processes
| |
− | | |
− | ===<b><span class="plainlinks">[https://firmware.teltonika-networks.com/7.6/RUTX/RUTX_R_00.07.06_WEBUI.bin RUTX_R_00.07.06]</span></b> | 2023.12.20===
| |
− |
| |
− | * <b>New</b>
| |
− | ** <b>Network</b>
| |
− | *** Added 802.11v BSS Transition Management and 802.11k Radio Resource Measurement
| |
− | ** <b>Services</b>
| |
− | *** Added OPC UA Server
| |
− | *** Added the ability to set port for TACACS+ in PAM service
| |
− | *** Added switch to enable using root certificate authority for MQTT alarms in Modbus Client services
| |
− | *** Added new alarm action "Ubus event" in Modbus Client services
| |
− | *** Added new input "Modbus alarms" in Data to Server service
| |
− | *** Added wget ping subtype support in Events Reporting service
| |
− | *** Added new I/O SNMP OID that returns numeric I/O state
| |
− | *** Added TLS support for OverIP serial functionality
| |
− | ** <b>WebUI</b>
| |
− | *** Added Tailscale VPN support
| |
− | *** Renewed user interface design
| |
− | *** Added network interface name change functionality
| |
− | *** Added last resort configuration option for multiwan policy rules
| |
− | ** <b>System</b>
| |
− | *** Added ability to enable/disable SSH access for specific users in System Users
| |
− | *** API support
| |
− | | |
− | * <b>Improvements</b>
| |
− | ** <b>Network</b>
| |
− | *** Added two radio support on one SSID in Wireless
| |
− | ** <b>Services</b>
| |
− | *** Expanded GRE VPN keep alive functionality to disable routes from unreachable tunnel
| |
− | *** Added PKCS#12 certificate container authentication method in IPsec VPN
| |
− | *** Added TLV message_payload support for SNMP service
| |
− | *** Added Purple.ai configuration profile
| |
− | *** Replaced option "No leading zeros" with "Remove all zeros" in Over IP serial functionality
| |
− | *** Added reboot on storage device disappearance and re-appearance
| |
− | ** <b>WebUI</b>
| |
− | *** Improved Events Log page loading by adding asynchronous pagination
| |
− | *** Removed requirement for Diffie-Hellman parameters in OpenVPN service
| |
− | *** Added improvements for creating OpenVPN IPv6 configurations
| |
− | *** Added auto redirect after changing router's IP address or port
| |
− | *** Added "Interface" dropdown for interfaces selection in Wake on LAN service
| |
− | *** Increased Data to Server service MQTT topic length limit to 65535 characters
| |
− | *** Added OSPF external routes section to Status page
| |
− | *** Moved device menu entry “Reboot” to header menu
| |
− | *** Moved WiFi scanner page to Services section
| |
− | ** <b>System</b>
| |
− | *** Added Mosquitto CVE patch 2023-28366
| |
− | *** Added Mosquitto CVE patch 2023-3592
| |
− | *** Updated hostapd version to 2023-09-08
| |
− | *** Updated cURL version to 8.4.0
| |
− | *** Updated kernel version to 5.10.199
| |
− | *** Updated Mac80211 version to 6.1.24
| |
− | *** Added RMS data display to generated troubleshoot
| |
− | *** Added downloaded Package Manager packages list to generated troubleshoot
| |
− | *** Added process activity load list to generated troubleshoot
| |
− | *** Changed default OPKG feed to use Teltonika's URL
| |
− | | |
− | * <b>Fix</b>
| |
− | ** <b>Network</b>
| |
− | *** Fixed DMVPN firewall rule creation issues
| |
− | *** Fixed RUTX VLAN keep settings issue when WAN port configuration are overwritten with 1st vlan
| |
− | *** Fixed Failover missing active rules when using multiple source and destination IP addresses
| |
− | *** Fixed unstable Wireless mesh connection
| |
− | *** Fixed low Wireless mesh throughput
| |
− | *** Fixed concurrent Wireless STA and AP functionality on 5 GHz band
| |
− | ** <b>Services</b>
| |
− | *** Fixed SSH module enable in PAM service
| |
− | *** Added minimum free space check when saving logs to flash in Logging service
| |
− | *** Fixed "Set multiple coils" function sending too many bytes in Modbus Client services
| |
− | *** Fixed multiple Events Reporting messages being sent when Firewall configuration is changed
| |
− | *** Fixed VRRP instances advertising wrong virtual IPs
| |
− | *** Added Hotspot information in SNMP MIB file
| |
− | *** Fixed registered Hotspot Local Users showing random username
| |
− | *** Fixed selection of MAC Auth for LAN interfaces in Hotspot service
| |
− | *** Fixed inconsistent Hotspot login behaviour when using MAC Auth with Password
| |
− | *** fixed instance shutdown after last local user deletion
| |
− | *** Fixed RMS Hotspot data display for devices without WiFi support
| |
− | *** Fixed serial timeout not working in Over IP serial functionality
| |
− | *** Removed "Echo" option in Modbus TCP over Serial functionality
| |
− | *** Fixed CRC verification failing when CRC is correct in Modbus TCP over Serial functionality
| |
− | *** Fixed crash when getting unexpected messages from RTU in Modbus TCP over Serial functionality
| |
− | ** <b>WebUI</b>
| |
− | *** Fixed side menu style issues when Japanese language is used
| |
− | *** Fixed displaying of vendor names in Topology page
| |
− | *** Fixed language packs being selectable when still in Package Manager queue
| |
− | *** Added ability to configure IPv6 BGP peer
| |
− | *** Fixed RelayD configuration issues after keep settings
| |
− | *** Fixed realtime graphs responsive design issues
| |
− | *** Fixed Network Shares users deletion
| |
− | *** Fixed not all LAN interfaces shown in dropdown in Hotspot service page
| |
− | *** Fixed wireless realtime data to show signal as unavailable with no connected clients
| |
− | *** Fixed WiFi scanner disconnecting AP users
| |
− | *** Fixed setup wizard errors in Wireless configuration page
| |
− | ** <b>System</b>
| |
− | *** Patched FRR CVE-2023-38406
| |
− | *** Patched FRR CVE-2023-38407
| |
− | *** Patched FRR CVE-2023-41358
| |
− | *** Patched FRR CVE-2023-41360
| |
− | *** Patched FRR CVE-2023-41909
| |
− | *** Patched FRR CVE-2023-47234
| |
− | *** Patched FRR CVE-2023-47235
| |
− | *** Patched OpenSSL CVE-2023-3446
| |
− | *** Patched OpenSSL CVE-2023-3817
| |
− | *** Patched LibXML2 CVE-2023-39615
| |
− | *** Patched LibXML2 CVE-2023-45322
| |
− | *** Patched FFMPEG CVE-2021-28429
| |
− | *** Patched FFMPEG CVE-2022-48434
| |
− | *** Patched dnsmasq CVE-2023-28450
| |
− | *** Fixed running out of space when SSHFS is mounted in /tmp while generating troubleshoot
| |
− | *** Fixed WebUI access after upgrading from legacy RutOS version
| |
− | | |
− | ===<b><span class="plainlinks">[https://firmware.teltonika-networks.com/7.5.4/RUTX/RUTX_R_00.07.05.4_WEBUI.bin RUTX_R_00.07.05.4]</span></b> | 2023.11.09===
| |
− |
| |
− | * <b>Improvements</b>
| |
− | ** <b>WebUI</b>
| |
− | *** Improved asynchronous pagination in events log pages
| |
− | *** Optimized Overview page load
| |
− | *** Added resource loading cancellation after switching to different page
| |
− | | |
− | ===<b><span class="plainlinks">[https://firmware.teltonika-networks.com/7.5.3/RUTX/RUTX_R_00.07.05.3_WEBUI.bin RUTX_R_00.07.05.3]</span></b> | 2023.10.30===
| |
− |
| |
− | * <b>New</b>
| |
− | ** <b>System</b>
| |
− | *** Added support for GD5F2GM7 and GD5F2GQ5 GigaDevice NAND flashes
| |
− | | |
− | ===<b><span class="plainlinks">[https://firmware.teltonika-networks.com/7.5/RUTX/RUTX_R_00.07.05_WEBUI.bin RUTX_R_00.07.05]</span></b> | 2023.10.19===
| |
− |
| |
− | * <b>New</b>
| |
− | ** <b>Network</b>
| |
− | *** Added "shared.m2m.ch" APN for Swisscom IoT operator to APN database
| |
− | *** Added "gamma" APN to auto-APN database
| |
− | *** Added "soracom.io" APN for Soracom operator to APN database
| |
− | *** Added "simbase" APN to auto-APN database
| |
− | *** Added "pnd" APN for Pond IoT to auto-APN database
| |
− | *** Added "spitfire1" APN for Spitfire operator to APN database
| |
− | *** WDS support for wireless bridging
| |
− | ** <b>Services</b>
| |
− | *** DLMS Client package
| |
− | *** 7zip package
| |
− | *** TincVPN package
| |
− | *** Added router uptime and mobile connection uptime data parameters to SNMP
| |
− | *** Custom MQTT publisher/subscriber topics definition support
| |
− | *** Alternative configuration file upload support for MQTT Broker service
| |
− | *** Device Provisioning Service support for Azure IoT Hub service
| |
− | ** <b>WebUI</b>
| |
− | *** Firewall status page
| |
− | *** Page search feature
| |
− | *** Network Topology page
| |
− | *** "Allow insecure connection" option for MQTT TLS protocol in Data to Server service
| |
− | *** Package Restore feature Enable/Disable option
| |
− | *** Hotspot client connection/disconnection trap option for SNMP service
| |
− | *** Added Events log trap option for SNMP service
| |
− | *** Confirm dialog when cancelling a verified package in Package Manager
| |
− | *** "Bridge ALPN" option for Bridge configuration in MQTT Broker service
| |
− | *** New subtypes of events that specify a specific port on "Events Reporting" and "SNMP Trap rules" pages
| |
− | *** Specific firmware packages repository link in Package Manager page
| |
− | *** Ability to enter decryption passphrase for encrypted private keys
| |
− | *** "Reconnect" button in RMS page
| |
− | *** New event "Device startup completed" in Events Reporting service
| |
− | *** Port status and configuration page
| |
− | *** IP6 table configuration option for DHCPv6 protocol in Network -> WAN page
| |
− | *** Wireless interface QR code generator
| |
− | *** Channel analysis page Status -> Wireless -> Channel Analysis
| |
− | *** Disabled direct network interface deletion when it is associated with a wireless interface
| |
− | *** Limited to a single section configuration and added IP address field for Relayd service
| |
− | *** "Fast roaming" configuration for Wireless service in Client mode
| |
− | *** Updated Status->Network->Wireless page to display interfaces as cards and added ability to filter connected clients by selected interface
| |
− | ** <b>System</b>
| |
− | *** Mechanism to rebrand WebUI using GPL
| |
− | *** Possiblity to create web applications with closed-source GPL
| |
− |
| |
− | * <b>Improvements</b>
| |
− | ** <b>Network</b>
| |
− | *** Moved FRR VTYSH package to package manager
| |
− | *** Made newly created Firewall Traffic, NAT rules and Port Forwards disabled by default
| |
− | *** Improved Interfaces to enable IPv6 DHCP server when mobile v6 or v4v6 PDP type is set
| |
− | *** Improved IPSec performance throughput
| |
− | *** Added automatic reconfiguration when switching between wireless interface modes
| |
− | *** Added automatically generated name option for new network
| |
− | ** <b>Services</b>
| |
− | *** New reworked Data to Server
| |
− | *** UPNP moved to package manager
| |
− | *** Added IPv6 support for Modbus TCP Server/Client services
| |
− | *** Refactored Azure IoT Hub service
| |
− | *** Improved resiliency to timeouts in Modbus Client service
| |
− | *** Added PDU data type to Modbus read requests
| |
− | *** Added new formatters for MQTT alarms in Modbus Client service
| |
− | *** Added main section to make test functions independent in Modbus Client service
| |
− | *** Improved WAN IP register reading time in Modbus service
| |
− | *** Sped up default profile and profile template generation for Profiles functionality
| |
− | *** Optimized profile change time for Profiles functionality
| |
− | *** Added IPv6 support for Stunnel VPN
| |
− | *** Added MAC blocking for client connections after set amount of failed login attempts in Hotspot service
| |
− | *** Improved TCPdump by allowing to capture packets from any interface
| |
− | *** Added OSPF support for DMVPN
| |
− | *** Updated Hotspot password hashing to sha512
| |
− | *** Added I/O pin name to trap notification message
| |
− | ** <b>WebUI</b>
| |
− | *** Reorganized menu
| |
− | *** Updated header design
| |
− | *** Split Interfaces configuration in Advanced mode into two pages: WAN and LAN, identically as in Basic WebUI mode
| |
− | *** Moved Interfaces IPv6 configuration into seperate tab
| |
− | *** Added client/server status information in OpenVPN instance overview page
| |
− | *** Added more IPv6 information to interface status in Interfaces page
| |
− | *** Removed "Custom delegated IPv6-prefix" field from DHCPv6 configuration in Interfaces page
| |
− | *** Disabled DHCPv6 interface editing while in basic mode
| |
− | *** Refactored custom DHCP options into seperate modal
| |
− | *** Added automatic start and end IP allocation for DHCP server configuration in Interfaces
| |
− | *** Added client/server status information in L2TP VPN page
| |
− | *** Added "MTU" field to L2TP client configuration page
| |
− | *** Added CHAP, PAP and MSCHAP-v2 authentication fields to L2TP instance configuration
| |
− | *** Added more detailed IPsec VPN status information
| |
− | *** Encryption AES-256-CBC added as default in OpenVPN
| |
− | *** Added "Authentication algorithm" support to OpenVPN configuration with static key mode
| |
− | *** Added GRE (DMVPN) VPN tunnel source support to any instead of specific interface
| |
− | *** Improved Hotspot landing page theme package removal
| |
− | *** Added upload and download theme functionality to Hotspot Landing page
| |
− | *** Improved ZeroTier VPN bridge configuration
| |
− | *** Added ability to adjust order of rules in Firewall page
| |
− | *** Added IPv6 RAW table to be displayed in Status -> Firewall
| |
− | *** Improved file upload component's visual appearance
| |
− | *** Change "Allow anonymous" option default value to 0 in MQTT Broker
| |
− | *** Added option to specify "Client ID" in MQTT Publisher
| |
− | *** Added functionality to select specific interface in Web Filter service
| |
− | *** Allowed to select FTP server subfolder in Traffic Logging service
| |
− | *** Renamed various service master/slave naming convention in config files, package names and webUI to client/server
| |
− | *** Added "Create static" button in Status -> Network -> LAN which bind DHCP lease for device
| |
− | *** Removed redundant "Action" option in Periodic Reboot
| |
− | *** Added DFS channel marking in Network -> Wireless
| |
− | *** Show wireless MAC address even when interface is inactive in Status -> System page
| |
− | *** Merged Multi AP configuration to wireless interface edit modal
| |
− | *** Added automatic network switch to bridge if selected in Wireless configuration
| |
− | *** Added default encryption for newly created wireless interfaces
| |
− | *** Simplified "802.11r Fast Transition" configuration options in Wireless interface configuration
| |
− | ** <b>System</b>
| |
− | *** Updated kernel version to 5.10.188
| |
− | *** Updated UCI version to 2021-10-22
| |
− | *** Updated SSHFS version to 3.7.1
| |
− | *** Updated FRR suite to 8.4.2
| |
− | *** Updated cURL version to 8.2.0
| |
− | *** Updated TCPdump version to 4.99.4
| |
− | *** Updated C-ares version to 1.19.1
| |
− | *** Updated iproute2 version to 5.19.0
| |
− | *** Updated libubox package version to 2021-08-19
| |
− | *** Added CVE patch CVE-2023-2650
| |
− | *** Added additional firmware information in CLI prompt banner
| |
− | *** Connection mode LED now blinks on data transfer
| |
− | *** Changed "routername" to "devicename" in system config file
| |
− | *** Made all clients get disconnected out once dropbear service is disabled
| |
− | *** Improved firmware downgrade restrictions for certain regions
| |
− | *** Device name is now displayed in browser tab when in WebUI login page
| |
− | *** Added NF conntrack information in generated troubleshoot archive
| |
− | | |
− | * <b>Fix</b>
| |
− | ** <b>Network</b>
| |
− | *** Fixed UDP Broadcast Relay service crashing on start without physical network device
| |
− | *** Fixed wrong or empty WAN state info
| |
− | *** Fixed connection tracking for main interface in Failover
| |
− | *** Fixed Wireless AP and STA functionality for 5GHz band
| |
− | *** Fixed Wireless scanning issue with certain configuration
| |
− | *** Fixed Wireless transmit power changing without user input after saving different country code
| |
− | *** Fixed clients isolation functionality in Wireless
| |
− | *** Fixed Wireless STA authentification failure in case of channel change
| |
− | *** Fixed Multi AP startup when changing Multi AP configuration in Wireless
| |
− | *** Fixed client connection to EAP Wireless network
| |
− | ** <b>Services</b>
| |
− | *** Fixed reconnecting to inactive connections for Modbus Server service
| |
− | *** Fixed Modbus Client response after reboot write request
| |
− | *** Fixed Modbus Server to show error when trying to get operator name without SIM
| |
− | *** Updated Modbus Client to handle large numbers of schedule rules, when frequency is set to schedule (Daini
| |
− | *** Fixed “Input” rule displaying incorrect and missing ports in Network -> Firewall -> Traffic Rules
| |
− | *** Fixed WireGuard VPN endpoint resolving problem
| |
− | *** Peer cache is no longer deleted when ZeroTier service is restarted
| |
− | *** Fixed RMS data collection about the list of devices connected to WiFi
| |
− | *** Fixed showing incorrect Internet state in RMS
| |
− | *** Fixed WiFi client info display in RMS
| |
− | *** Implemented error handling when device is blocked or unrecognized by RMS
| |
− | *** Fixed L2TP client sometimes not adding routes on successful connection
| |
− | *** Fixed NTP time sync with browser functionality in some edge cases
| |
− | *** Fixed reinstalled packages" verification when device name is changed
| |
− | *** Fixed an issue where signal query would return invalid value instead of error in case of no signal in MQTT Publisher service
| |
− | *** Fixed OpenVPN firewall rule creation for both IPv4 and IPv6
| |
− | *** Fixed OpenVPN server crash loop after changing authentification from TLS to Static Key
| |
− | *** Fixed IPsec VPN connection problem with small lifetime values
| |
− | *** Fixed IPsec "Default Route" not working when Flow Offloading is enabled
| |
− | *** Fixed an issue where system directory could be used as a mount point in SSHFS service
| |
− | *** Fixed IP block feature to unblock an OpenVPN IP address on successful authentification
| |
− | *** Fixed package installation process bug when packages have different architecture names
| |
− | *** Added "bearer token" authentication functionality in Dynamic DNS
| |
− | *** Fixed MQTT Broker "local_port" option keep settings migration
| |
− | *** Remove public keys when key-based authentication is disabled in Access Control
| |
− | *** Fixed "Parity" field "Mark" and "Space" options being ignored in DNP3 Serial services
| |
− | *** Corrected SNMP MIB file syntax according to standards
| |
− | *** Fixed returned port count in SNMP
| |
− | *** Fixed disabled CLI remote access taking up a session slot
| |
− | *** Fixed user deletion in Network Shares service
| |
− | *** Fixed router reboot inconsistencies after Storage Memory Expansion
| |
− | ** <b>WebUI</b>
| |
− | *** Fixed empty events cards in Overview page when no content is available
| |
− | *** Fixed modal form inputs not clearing upon closing after nested modal is saved
| |
− | *** Fixed select menu closing when selecting custom option
| |
− | *** Fixed multi select expanding table row when adding new values
| |
− | *** Fixed global section caching after deleting a section in a table
| |
− | *** Fixed unpredictable search logic in tables
| |
− | *** Fixed interfaces reordering by metrics in Failover page
| |
− | *** Removed ability to select ports on ICMP and ESP protocol in Failover page
| |
− | *** Fixed wrong status when interface is disabled in Failover page
| |
− | *** Fixed firewall zone and rule creation/deletion on VPN configuration creation/deletion
| |
− | *** Fixed STP enabling issue in Interfaces
| |
− | *** Fixed EIGRP status info in Dynamic Routes
| |
− | *** Fixed issue with custom DHCP options where you could not have multiple values per rule
| |
− | *** Fixed Routing/NAT Offloading section display in Network -> Firewall -> General Settings when device is not supported
| |
− | *** Fixed SSH/HTTP/HTTPS/ICMP setting in Network -> Firewall -> Attack Prevention page
| |
− | *** Fixed failing Firewall rules with united protocol formats
| |
− | *** Fixed zone select component not closing options menu when selecting an option in Firewall pages
| |
− | *** Fixed memory leak when cancelling file uploads on Chromium-based browser
| |
− | *** Fixed group settings saving by removing deprecated ":section" routes in Administration -> User Settings -> System Users
| |
− | *** Fixed allowing IDs above 247 in Modbus Client service
| |
− | *** Fixed selecting SIM in Modbus Client service Alarms
| |
− | *** Fixed Modbus Alarm telephone number limit
| |
− | *** Fixed to show available options for test requests on error in Modbus Client service
| |
− | *** Fixed Modbus Alarm I/O pin display values
| |
− | *** Fixed issue when creating instance named "gre" does not show in GRE VPN
| |
− | *** Remote endpoint field now allows underscore character in IPsec VPN
| |
− | *** Fixed ZeroTier wrong service status display in Status -> Services
| |
− | *** Fixed problems with L2TP/PPTP VPN firewall rules automatic creation
| |
− | *** Fixed problem related to the enable/disable toggle in OpenVPN instance overview page
| |
− | *** Added fixes for key-direction missing problem when uploading OpenVPN config file
| |
− | *** Fixed login page read-only inputs after custom user logout
| |
− | *** Fixed issue when double clicking firmware upgrade cancel button returned error
| |
− | *** Fixed Package Manager prompt message to appear when package requires network restart
| |
− | *** Fixed showing in queue packages when they contained special symbols in the Package Manager page
| |
− | *** Fixed various visual Side Widget bugs
| |
− | *** Fixed Data to Server DNP3 filter from flash display
| |
− | *** Fixed incorrect source data displayed in Realtime Data -> Connections table
| |
− | *** Fixed memory expansion confirmation prompt title
| |
− | *** Fixed incorrect configuration saving in Hotspot 2.0 service
| |
− | *** Disabled password hashing for new user creation in Hotspot service
| |
− | *** Fixed Hotspot landing page themes saving bug
| |
− | *** Fixed test email sending to more than one recipient in Events Reporting page
| |
− | *** Fixed VLAN OID values in SNMP service
| |
− | *** Output proper error message in case of hardware not being supported in Firmware Upgrade
| |
− | *** Fixed being able to open side widget when user does not have read access
| |
− | *** Fixed profile creation when current configuration is not present
| |
− | *** Fixed wrong protocol data display in "Access control" page
| |
− | *** Fixed LAN interfaces not showing up before WAN interfaces in Status -> Realtime Data -> Traffic
| |
− | *** Fixed incorrect Bluetooth details modal size
| |
− | *** Updated to display "MAC address" on device details page
| |
− | *** Fixed disabling DLNA service when USB drive is removed
| |
− | *** Fixed error when user has no write permissions in Speed Test page
| |
− | *** Updated Network -> Wireless interface add and delete button visibility in basic mode
| |
− | *** Fixed Wireless Multi AP incorrect SSID list after removal of an instance
| |
− | *** Fixed MAC address filtering in Network -> Wireless page to list only connected WiFi devices
| |
− | ** <b>System</b>
| |
− | *** Patched CVE-2023-0386 vulnerability
| |
− | *** Patched CVE-2023-0464 vulnerability
| |
− | *** Patched CVE-2023-0465 vulnerability
| |
− | *** Patched CVE-2023-2602 vulnerability
| |
− | *** Patched CVE-2023-3772 vulnerability
| |
− | *** Patched CVE-2023-3773 vulnerability
| |
− | *** Patched CVE-2023-4128 vulnerability
| |
− | *** Patched CVE-2023-33476 vulnerability
| |
− | *** Patched CVE-2023-28484 vulnerability
| |
− | *** Patched CVE-2023-29469 vulnerability
| |
− | *** Patched CVE-2023-31490 vulnerability
| |
− | *** Patched CVE-2021-36369 vulnerability
| |
− | *** Patched CVE-2023-40283 vulnerability
| |
− | *** Patched CVE-2023-48174 vulnerability
| |
− | *** Delayed Custom Scripts execution on boot, after storage devices are mounted
| |
− | *** Fixed Custom Scripts permissions after save
| |
− | *** Changed certificate expiry calculation mechanism to fix Y2K38 bug
| |
− | *** Fixed downloading of certificates that have a space in their name in Administration -> Certificates -> Certificates Manager
| |
− | *** Fixed Events Log database rotation to prevent log partition space exhaustion
| |
− | *** Fixed duplication and sorting of all events IDs in Events Log
| |
− | *** Fixed FOTA crash when current hours is with leading 0
| |
− | *** Fixed crontab job removal after disabling FOTA
| |
− | *** Changed Mosquitto build options to not include cJSON library
| |
− | *** Fixed device name resetting to default upon refresh in Administration
| |
− | *** Fixed backup upload validation with memory expansion
| |
− | | |
− | ===<b>[[Media:RUTX_R_00.07.04.5_WEBUI.bin|RUTX_R_00.07.04.5]]</b> | 2023.07.24===
| |
− | | |
− | * <b>Improvements</b>
| |
− | ** <b>Network</b>
| |
− | *** Added metric field support in BGP Route-maps page
| |
− | | |
− | ===<b>[[Media:RUTX_R_00.07.04.4_WEBUI.bin|RUTX_R_00.07.04.4]]</b> | 2023.06.26===
| |
− | | |
− | * <b>New</b>
| |
− | ** <b>Network</b>
| |
− | *** Travelmate package for captive portal redirection
| |
− | | |
− | * <b>Improvements</b>
| |
− | ** <b>Services</b>
| |
− | *** Improved UPNP lease file validation
| |
− | *** Improved DLNA 'Database directory' field validation to not allow ', ` and spaces
| |
− | ** <b>System</b>
| |
− | *** Device name is now displayed in browser tab when in login page
| |
− | | |
− | * <b>Fix</b>
| |
− | ** <b>Network</b>
| |
− | *** Patched CVE-2023-32233 vulnerability
| |
− | *** Fixed an issue with Multi AP service remaining enabled when disabling
| |
− | *** Fixed default networks in WAN firewall zone and possibility to add a network that is not yet created
| |
− | | |
− | ** <b>Services</b>
| |
− | *** Fixed connection establishment for RMS MQTT service
| |
− | *** Implemented partial restart when connection with RMS server fails
| |
− | *** Fixed device name resetting to default upon WebUI page refresh
| |
− | *** Fixed being able to set device name without passing validations
| |
− | *** Fixed WireGuard port change in firewall traffic rule when modifying instance port
| |
− | | |
− | ===<b>[[Media:RUTX_R_00.07.04.3_WEBUI.bin|RUTX_R_00.07.04.3]]</b> | 2023.05.11===
| |
− | | |
− | * <b>Improvement</b>
| |
− | ** <b>System</b>
| |
− | *** Removed SSH RSA key generation
| |
− | *** Added SSH ECDSA key generation
| |
− | | |
− | * <b>Fix</b>
| |
− | ** <b>Network</b>
| |
− | *** Fixed clients being unable to connect to wireless AP when multi AP configuration is empty
| |
− | ** <b>System</b>
| |
− | *** Fixed an issue on bootloader web recovery hanging with certain firmware sizes
| |
− | | |
− | ===<b>[[Media:RUTX_R_00.07.04.2_WEBUI.bin|RUTX_R_00.07.04.2]]</b> | 2023.04.18===
| |
− | | |
− | * <b>New</b>
| |
− | ** nftables support
| |
− | | |
− | * <b>Improvement</b>
| |
− | ** <b>WebUI</b>
| |
− | *** Improved Overview page performance
| |
− | ** <b>System</b>
| |
− | *** Changed hostname to router name
| |
− | *** Updated OpenSSL to version 1.1.1t
| |
− | *** Updated CA certificates to version 20211016
| |
− | *** Updated libiwinfo to version 2022-08-19
| |
− | | |
− | * <b>Fix</b>
| |
− | ** <b>Network</b>
| |
− | *** Fixed Port-based VLAN ID calculation issue
| |
− | *** Fixed Ethernet interfaces showing incorrect transferred data values
| |
− | *** Fixed EEE disable issue that caused reduction in data transfer speed
| |
− | ** <b>Services</b>
| |
− | *** Fixed event text for configurable inputs/outputs on I/O Juggler
| |
− | *** Fixed I/O PIN3 value not changing via MODBUS TCP
| |
− | *** Added I/O status request error handling in various WebUI pages when the I/O service is booting up
| |
− | *** Fixed OpenVPN enabling/disabling when using Password or TLS/Password authentication modes
| |
− | *** Fixed OpenVPN keep alive setting migration issue
| |
− | *** Fixed PPTP server name setting migration issue
| |
− | *** Fixed missing WebUI issue caused by Email Relay installation
| |
− | *** Fixed NTP's Operator Station Synchronization memory leak issue
| |
− | *** Fixed test email validation
| |
− | ** <b>System</b>
| |
− | *** Fixed libcares vulnerability CVE-2022-4904
| |
− | *** Fixed frr vulnerability CVE-2022-37035
| |
− | *** Removed ability for non root users to edit scripts that get executed as root
| |
− | | |
− | ===<b>[[Media:RUTX_R_00.07.04.1_WEBUI.bin|RUTX_R_00.07.04.1]]</b> | 2023.03.24===
| |
− | | |
− | * <b>Fix</b>
| |
− | ** <b>Network</b>
| |
− | *** Fixed Data Limit issue
| |
− | | |
− | ===RUTX_R_00.07.04 | 2023.03.07===
| |
− | | |
− | <b>Note:</b> Firmware version <b>RUTX_R_00.07.04</b> was removed from downloads list due to issues with Mobile Data Limit functionality not working correctly when Software offloading is enabled.
| |
− | | |
− | * <b>Improvements</b>
| |
− | ** <b>WebUI</b>
| |
− | *** Improved data persistence between page refreshes
| |
− | *** Improved page navigation behavior
| |
− | *** Improved redirect logic to open configuration edit modals
| |
− | ** <b>Network</b>
| |
− | *** Made Software Flow Offloading Enabled by default
| |
− | *** Changed default WiFi AP cipher to CCMP (AES)
| |
− | *** Added the logging of MAC addresses rejected by a WiFi AP
| |
− | ** <b>Services</b>
| |
− | *** Added MQTT support to I/O Juggler
| |
− | *** Added a frequency option 'schedule' Modbus Master
| |
− | *** Added pagination to Events Reporting overview
| |
− | *** Added limit to Events Reporting rule list
| |
− | *** Added email logging for Events reporting
| |
− | *** 'Sync with browser' button in the NTP page now also synchronizes the time zone
| |
− | *** Added a limit of 30 for NTP instances
| |
− | *** Made Networks selections in the 'Traffic Logging' page to display interface choices dynamically
| |
− | *** Added "make before break" option to IPsec configuration
| |
− | *** Added MODBUS TCP connection handling layer to MQTT-MODBUS Gateway
| |
− | *** Improved MODBUS Master connection handling to reduce connection count
| |
− | *** Updated modbus request error messages
| |
− | *** Added OpenVPN server ip block support
| |
− | *** Added MQTT support for MODBUS Master alarms
| |
− | *** Added the possibility to get the device's Ethernet port data via SNMP
| |
− | *** Improved error messages in the Serial Utilities page
| |
− | ** <b>System</b>
| |
− | *** Updated bash to version 5.1.16
| |
− | *** Added detailed FW update failure error message to Events Log
| |
− | *** Improved firmware upload/validation error messages
| |
− | *** Updated Turkish language support
| |
− | *** Added protocol column to IP block page
| |
− | *** Added "vpns.log" file to the Troubleshoot package
| |
− | *** Added Wireguard tunnel information to the Troubleshoot package
| |
− | *** Updated default admin group access rights
| |
− | | |
− | * <b>Fix</b>
| |
− | ** <b>WebUI</b>
| |
− | *** Fixed Services page not displaying data after Thingworx package is installed
| |
− | *** Added DNP3 to the 'Status > Services' page
| |
− | ** <b>Network</b>
| |
− | *** Fixed interface priority change issue
| |
− | *** Fixed a Custom Firewall Rule editing issue
| |
− | *** Fixed DMZ configuration saving while it is disabled
| |
− | *** Fixed Port Scan script execution failure
| |
− | *** Fixed Firewall zone duplication issue
| |
− | *** Fixed disabled WiFi interface after factory reset
| |
− | *** Fixed WiFi interface creation with SAE mixed encryption
| |
− | ** <b>Services</b>
| |
− | *** Fixed the listing of slow USB devices such as HDDs
| |
− | *** Fixed DNP3 serial master not working when Stop bits are set to 2
| |
− | *** Fixed DNP3 requests not deleting along with instance
| |
− | *** Fixed DNP3 memory leak occurring after spamming the test request button
| |
− | *** Fixed Serial Over IP related Firewall rule setting
| |
− | *** Fixed I/O Scheduler overlapping instances issue
| |
− | *** Fixed Input/Output image pin colors
| |
− | *** Fixed issue that causes ADC subscribers to receive notifications for when ACL is active
| |
− | *** Fixed WiFi Hotspot landing page uploaded theme image display
| |
− | *** Fixed WiFi Hotspot trial user deletion issue
| |
− | *** Fixed WiFi Hotspot service crash when associated WiFi interface is not up
| |
− | *** Fixed WiFi Hotspot password request by SMS
| |
− | *** Fixed WiFi Scanner starting process when the WiFi interface is disabled
| |
− | *** Fixed Data To Server JSON format %n, %N and %s flag issues
| |
− | *** Fixed Events Reporting email data clean
| |
− | *** Fixed Events Reporting missing config selections
| |
− | *** Fixed GRE Tunnel's 'Tunnel source' field validation when the source is custom
| |
− | *** Fixed IPsec instance deletion after removing DMVPN package
| |
− | *** Fixed IPSec migration via Backup file when DMVPN is configured
| |
− | *** Fixed IPsec naming issue when the includes an equals sign
| |
− | *** Fixed L2TP client to use correct interface on failover events
| |
− | *** Fixed L2TP over IPsec connection dropping issue when connecting from a Windows client
| |
− | *** Fixed MODBUS database size limiting issue
| |
− | *** Fixed MODBUS MQTT Gateway client ID input
| |
− | *** Fixed MODBUS TCP Slave RSSI value
| |
− | *** Fixed MODBUS test button returning errors when several non-connected devices are configured
| |
− | *** Fixed NTP Etc/GMT+1 and Etc/GMT-1 time zones
| |
− | *** Fixed OpenVPN password validation when no CA certificate is uploaded or 'custom' template is selected
| |
− | *** Fixed OpenVPN Static Key configuration saving by making Static key upload required
| |
− | *** Fixed OpenVPN TLS client creation issue while LAN is down
| |
− | *** Fixed Package Manager displaying non-existent packages
| |
− | *** Fixed Package Manager errors showing up after successful installations
| |
− | *** Fixed Periodic Reboot entry duplication after a power cycle
| |
− | *** Fixed PPTP 'Client to client' option not being applied after save
| |
− | *** Fixed receiving excessive device state emails after a reboot is initialized over RMS
| |
− | *** Fixed WebUI unavailability after unsuccessful package install
| |
− | ** <b>System</b>
| |
− | *** Fixed vulnerabilities CVE-2022-3524, CVE-2022-3566, CVE-2022-3567, CVE-2022-39188, CVE-2022-45934, CVE-2022-47929
| |
− | *** Fixed bash vulnerability CVE-2022-3715
| |
− | *** Fixed CGI-IO file download vulnerability CVE-2022-38333
| |
− | *** Fixed libxml2 vulnerability CVE-2022-40304
| |
− | *** Fixed libcurl vulnerabilities CVE-2022-43551 and CVE-2022-43552
| |
− | *** Improved file upload logic
| |
− | *** Fixed GPL firmware compilation with selected Tinc package
| |
− | *** Fixed OpenVPN Static Key migration via keep settings issue
| |
− | *** Fixed NTP time zone name setting migration when the name contains whitespaces
| |
− | *** Fixed language setting issue
| |
− | *** Fixed integer validation on industrial services
| |
− | *** Fixed LAN port LEDs staying on after being disabled
| |
− | | |
− | ===<b>[[Media:RUTX_R_00.07.03.4_WEBUI.bin|RUTX_R_00.07.03.4]]</b> | 2023.02.09===
| |
− | | |
− | * <b>Fix</b>
| |
− | ** <b>Services</b>
| |
− | *** Sanitized tcpdump storage location
| |
− | ** <b>Network</b>
| |
− | *** Fixed CVE-2023-32349 vulnerability
| |
− | | |
− | ===<b>[[Media:RUTX_R_00.07.03.3_WEBUI.bin|RUTX_R_00.07.03.3]]</b> | 2023.01.25===
| |
− | * <b>Fix</b>
| |
− | ** <b>Network</b>
| |
− | *** Updated init sequence
| |
− | | |
− | ===<b>[[Media:RUTX_R_00.07.03.2_WEBUI.bin|RUTX_R_00.07.03.2]]</b> | 2023.01.13===
| |
− | | |
− | * <b>New</b>
| |
− | ** <b>System</b>
| |
− | *** Japanese language
| |
− | | |
− | * <b>Fix</b>
| |
− | ** <b>Network</b>
| |
− | *** Fixed VLAN option setting when changing VLAN ID
| |
− | | |
− | ===<b>[[Media:RUTX_R_00.07.03.1_WEBUI.bin|RUTX_R_00.07.03.1]]</b> | 2023.01.03===
| |
− | | |
− | * <b>Improvements</b>
| |
− | ** <b>System</b>
| |
− | *** Remove front-end certificate validation
| |
− | | |
− | * <b>Fix</b>
| |
− | ** <b>Services</b>
| |
− | *** Fixed libxml2 vulnerability CVE-2022-40303
| |
− | *** Fixed an IPsec Phase one & two setting migration issue
| |
− | *** Returned missing udp_client_count option to Over IP mode
| |
− | ** <b>System</b>
| |
− | *** Fixed JSON key parsing; keys can now be any printable character sequence
| |
− | *** Fixed memory leak in 'session' module
| |
− | ** <b>WebUI</b>
| |
− | *** Fixed file pretty name parsing
| |
− | | |
− | ===<b>[[Media:RUTX_R_00.07.03_WEBUI.bin|RUTX_R_00.07.03]]</b> | 2022.12.16===
| |
− | | |
− | * <b>New</b>
| |
− | ** <b>Network</b>
| |
− | *** Firewall DMZ page
| |
− | ** <b>Services</b>
| |
− | *** Java package
| |
− | *** SFTP server support
| |
− | *** OPC UA client
| |
− | *** Hotspot registered users management page
| |
− | ** <b>System</b>
| |
− | *** Portuguese language
| |
− | *** Spanish language
| |
− | *** Turkish language
| |
− | *** Email Relay package
| |
− | ** <b>WebUI</b>
| |
− | *** New Web menu design
| |
− | | |
− | * <b>Improvements</b>
| |
− | ** <b>Network</b>
| |
− | *** Updated modem handling, attachment, tracking and connection establishment processes
| |
− | *** Added the possibility to select multiple ports in all firewall port fields
| |
− | *** Added 'Match' traffic by type option to firewall traffic rules
| |
− | *** Added DNS servers and routing table fields to the Wireguard page
| |
− | *** Improved generating network topology
| |
− | *** Moved Relayd, UDP Relay & Static Leases to the Interfaces menu section
| |
− | *** Update Firewall Traffic Rules page with DSCP and MARK options
| |
− | *** Added keepalive, holdtime and connect timers to BGP configuration
| |
− | *** Added 'Use gateway metric' to network protocols web interface
| |
− | *** Added more DHCPv6 client events to system log
| |
− | *** Moved IP Filter rules from Modbus TCP Gateway and Over IP services to Firewall page
| |
− | *** Added individual WiFi toggle support
| |
− | *** Added error message when DFS channel is selected during scanning
| |
− | *** Added wget tracking method to WAN Failover
| |
− | *** Added interface checks to remove inaccurate Failover events from the Event Log
| |
− | ** <b>Services</b>
| |
− | *** Added OpenVPN IPv6 Web support
| |
− | *** Added format button for each USB device in USB Tools General page
| |
− | *** Reduced waiting time during storage device setup for Memory Expansion
| |
− | *** Optimized Storage Memory Expansion package size
| |
− | *** Replaced ntfs-3g with kernel-mode driver
| |
− | *** Added USB to Serial support for Modbus, MQTT Modbus Gateway, NTRIP, DNP3
| |
− | *** Added CSP headers to Hotspot Landing Page
| |
− | *** Added hotspot user script validation
| |
− | *** Improved logging of disconnecting client devices
| |
− | *** Implemented Hotspot 'forget' method, which removes user from DB by MAC
| |
− | *** Updated Zerotier web interface
| |
− | *** Added IPsec Flush connection option on tunnel initialization
| |
− | *** Added MODBUS slave regfile validation
| |
− | *** Added delay, number of timeouts, always reconnect options to MODBUS Master service
| |
− | *** Added DMVPN Phase 2 and Phase 3 support
| |
− | *** Added synchronization counting to NTP client
| |
− | *** Expanded the data that is sent to the Cumulocity cloud with device log, mobile data usage nd GPS data
| |
− | *** Added 'Unregister' button to RMS page
| |
− | *** Added new data monitoring options to SNMP: configuration state of wireless, smart queues & VLANs
| |
− | *** Updated Zerotier package to version 1.10.1
| |
− | *** Added automatic package removal upon failed installation in Package Manager
| |
− | *** Added option to describe custom routing table and MTU auto counting to Wireguard VPN
| |
− | *** Added IP blocking to MQTT Bridge for failed login attempts to prevent bruteforce attacks
| |
− | *** Updated sqm-scripts to version 1.5.1
| |
− | *** Improved MODBUS Master service: added multiple datatypes, added multiple register reading for alarms
| |
− | *** Added monthly reboot option to periodic reboot function
| |
− | *** Added support for multiple custom option selection to SSTP configuration
| |
− | *** Added PKCS12 certificate chain support to OpenVPN
| |
− | *** Improved MQTT to support multiple port listening, multiple bridge connections, notification settings and added support for custom configuration file
| |
− | *** Added QoS selection to MQTT Modbus Gateway
| |
− | *** Improved RAM usage during upload and installation of packages via Package Manager
| |
− | *** Updated curl to version 7.86.0
| |
− | *** Added brute-force prevention measures to Post/Get
| |
− | *** Added automatic private and public key generation to Wireguard VPN
| |
− | *** Added multiple Remote source IP support to IPsec
| |
− | *** Added the possibility to configure multiple IPsec phase 1 and phase 2 proposals
| |
− | *** Added functionality to rotate log file when log is saved to Flash memory
| |
− | *** Improved performance while fetching packages on repeat visits to the Package Manager page
| |
− | *** Updated Dbus to version 1.13.18
| |
− | ** <b>System</b>
| |
− | *** Added a 'test mail' button to the Administration -> Recipients page
| |
− | *** Added option to clear blocked IPs in the Access Control page after reboot
| |
− | *** Updated Web Request-Response core logic
| |
− | *** Added certificate validation to all services that support certificate upload
| |
− | *** Updated URL protocol validations
| |
− | *** Removed profile update requests during Save & apply
| |
− | *** Optimized profile switching logic
| |
− | ** <b>WebUI</b>
| |
− | *** Added bootloader version to the Device section in the System page
| |
− | *** Added configuration page shortcuts to Overview page widgets
| |
− | *** Added tooltip in Overview that show free, used and total RAM/Flash values on mouse cursor hover
| |
− | *** Updated network interfaces protocols web interface
| |
− | *** Updated 404 page to include navigation menu
| |
− | | |
− | * <b>Fix</b>
| |
− | ** <b>Network</b>
| |
− | *** Fixed CVE-2023-32350 vulnerability
| |
− | *** Fixed jumbo frames MTU issue
| |
− | *** Added the 'Any' choice to source & destination IP address field in NAT rule edit
| |
− | *** Fixed NHRP web interface issues
| |
− | *** Fixed WAN interface configuration interfering with LAN
| |
− | *** Fixed mac80211 vulnerabilities CVE-2022-41674, CVE-2022-42719, CVE-2022-42720, CVE-2022-42721, CVE-2022-42722
| |
− | *** Fixed wireless interfaces connections not reestablishing after disabling & enabling again
| |
− | *** Updated DFS radar detection patterns for Japan
| |
− | *** Fixed Wired WAN connectivity issue when Failover interfaces are disabled
| |
− | *** Fixed Failover fallback issue
| |
− | ** <b>Services</b>
| |
− | *** Fixed Printer service starting issue
| |
− | *** Fixed Printer service boot issues
| |
− | *** Fixed DLNA service reload issues on USB drive insert/remove
| |
− | *** Fixed relay state switching
| |
− | *** Fixed Save & Apply issue with ADC/ACL type condition on I/O Juggler
| |
− | *** Added I/O restart on configuration profile change
| |
− | *** Fixed I/O voltage range display for power socket pins
| |
− | *** Fixed SMNP OID for I/O state
| |
− | *** Fixed Hotspot connected user list maximum upload/download value limits
| |
− | *** Fixed incorrect connected Hotspot user information in RMS JSON
| |
− | *** Removed unnecessary field from the Port Mirroring page
| |
− | *** Fixed Hotspot issues related to specific connected phones
| |
− | *** Fixed Wireless AP enabled by MODBUS TCP Master not showing in Wireless clients
| |
− | *** Fixed WiFi Scanner hostname validation issues
| |
− | *** Fixed dbus vulnerability CVE-2020-35512
| |
− | *** Fixed dnsmasq vulnerability CVE-2022-0934
| |
− | *** Fixed ext4 vulnerability CVE-2021-3428
| |
− | *** Fixed kernel vulnerabilities CVE-2021-3669, CVE-2021-4203, CVE-2022-1353, CVE-2022-3435, CVE-2022-20008, CVE-2022-30594
| |
− | *** Fixed libxm12 vulnerability CVE-2022-29824
| |
− | *** Fixed Linux vulnerabilities CVE-2021-4148, CVE-2022-0480, CVE-2022-1055, CVE-2022-0886, CVE-2022-2663, CVE-2022-36879 for v5.4
| |
− | *** Fixed MQTT DoS vulnerability CVE-2021-41039
| |
− | *** Fixed privoxy vulnerability CVE-2021-44542
| |
− | *** Fixed python3 vulnerability CVE-2022-42919
| |
− | *** Fixed strongswan vulnerabilities CVE-2021-41991, CVE-2021-45079
| |
− | *** Fixed uboot vulnerabilities CVE-2022-30552, CVE-2022-30790
| |
− | *** Fixed switching between RMS connection types while the device is unregistered
| |
− | *** Fixed reload issues in website blocking feature
| |
− | *** Fixed IPsec PSK secret required field validation
| |
− | *** Fixed bandwidth limiting after QoS is enabled for the first time
| |
− | *** Fixed Dropbear issues when logging in over IPv6
| |
− | *** Fixed Modbus status in Status -> Services page
| |
− | *** Fixed Azure IoT Hub application issues when sending large volumes of data
| |
− | *** Fixed Azure IoT Hub MQTT password validation
| |
− | *** Fixed DMVPN configuration migration issue
| |
− | *** Fixed DMVPN duplicate select options, added suffix to mobile interfaces to use IPv4
| |
− | *** Fixed DMVPN IPsec connection issue
| |
− | *** Fixed DMVPN mobile interface 'Keep settings' migration issue
| |
− | *** Fixed Dynamic DNS long hostname text display issue
| |
− | *** Fixed Events Reporting memory leak issue
| |
− | *** Fixed Events Reporting not triggering after flipping an I/O slider
| |
− | *** Fixed FOTA cron job not starting after factory reset
| |
− | *** Fixed IPsec local firewall option parsing
| |
− | *** Fixed IPsec tunnel creation issue when compatibility mode is used and the tunnel name contains an underscore
| |
− | *** Fixed L2TP, PPTP, SSTP state display in the Status -> Services page
| |
− | *** Fixed NTP pool hostname validation
| |
− | *** Fixed OpenVPN certificate remove with Static key and TLS authentication methods
| |
− | *** Fixed OpenVPN configuration saving issue when using HMAC key authentication
| |
− | *** Fixed OpenVPN custom dev name transformation to correct format
| |
− | *** Fixed OpenVPN device name setting logic when uploading config from file
| |
− | *** Fixed OpenVPN instance status display
| |
− | *** Fixed OpenVPN TAP (bridged) configuration detection
| |
− | *** Fixed Qos configuration saving issue occurring after instance deletion
| |
− | *** Fixed RMS JSON incorrect WAN state and IP information
| |
− | *** Fixed RMS step access issue in the Setup Wizard page
| |
− | *** Fixed SNMP issues after reboot while using a Hotspot
| |
− | *** Fixed SNMP generating MIB files for devices in accordance with to their hardware
| |
− | *** Fixed SNMP traps not working after SNMP is installed from server
| |
− | *** Fixed SSTP client route creation issue
| |
− | *** Fixed UPNP secure mode not turning off issue
| |
− | *** Fixed Wireguard route to endpoint issue
| |
− | *** Fixed manual package installation for queued packages
| |
− | *** Fixed NAT Rules dependency from IPsec web instance
| |
− | *** Returned usleep utility
| |
− | *** Updated Australian and South African NordVPN server IP addresses
| |
− | *** Fixed paired bluetooth devices appearing nameless
| |
− | ** <b>System</b>
| |
− | *** Fixed LED operation while device is in bootloader state
| |
− | *** Fixed certificate signing issues
| |
− | *** Fixed Telnet, CLI access blocking after max invalid tries
| |
− | *** Fixed FW upgrade with 'Keep settings' while low free space is available
| |
− | *** Fixed backup file duplication issue
| |
− | *** Fixed network device handling in system
| |
− | ** <b>WebUI</b>
| |
− | *** Fixed Hotspot interface display
| |
− | *** Fixed side widget accessibility during first login
| |
− | *** Fixed file upload issues
| |
− | *** Fixed drag and drop issue in the Traffic Rules page
| |
− | *** Fixed protocol display in the overview of the Interfaces page
| |
− | *** Fixed blocked IP settings migration during a FW upgrade with the 'Keep settings'
| |
− | *** Fixed login errors after browser tab restoration
| |
− | *** Fixed redirect to newly set IP address after Interface configuration
| |
− | *** Fixed firmware upgrade verify spinner not closing
| |
− | *** Fixed an issue with file upload via drag and drop
| |
− | | |
− | ===<b>[[Media:RUTX_R_00.07.02.7_WEBUI.bin|RUTX_R_00.07.02.7]]</b> | 2022.09.12===
| |
− | | |
− | * <b>Fixes</b>
| |
− | ** Fixed CVE-2022-1012 memory leak vulnerability
| |
− | ** Fixed CVE-2022-37434 kernel vulnerability
| |
− | ** Fixed interface option reset after VLAN ID change
| |
− | ** Removed memory leak on port events
| |
− | ** Fixed WiFi Scanner out of range crash when iterating collected data
| |
− | | |
− | ===<b>[[Media:RUTX_R_00.07.02.6_WEBUI.bin|RUTX_R_00.07.02.6]]</b> | 2022.08.24===
| |
− | | |
− | * <b>Fixes:</b>
| |
− | ** Fixed Serial-symlink dmesg messages
| |
− | ** Fixed OpenVPN tls-auth and tls-crypt option names
| |
− | | |
− | ===<b>[[Media:RUTX_R_00.07.02.5_WEBUI.bin|RUTX_R_00.07.02.5]]</b> | 2022.08.12===
| |
− | | |
− | * Improvements:
| |
− | ** Updated curl to version 7.83.1
| |
− | ** Updated firmware validation error messages
| |
− | ** Added multiple source IP address support to the Port Forwards page
| |
− | ** Added CSP headers Hotspot WebUI landing page
| |
− | ** Optimized CORE distribution for packet handling
| |
− | | |
− | * Fixes:
| |
− | ** Lixed EEE link advertisment
| |
− | ** Fixed CVE-2022-32205, CVE-2022-32206, CVE-2022-32207, CVE-2022-32208 curl vulnerabilities
| |
− | ** Fixed CVE-2022-30065 busybox vulnerability
| |
− | ** Fixed file upload path traversal
| |
− | ** Removed Data to Server limit to proccess less than 10 instances
| |
− | ** Fixed Data to Server 'out of memory' crashes when database is full or has a large amount of data
| |
− | ** Fixed OpenVPN dev setting logic
| |
− | ** Fixed OpenVPN updating from legacy issue that caused IPv6 not to work
| |
− | ** Fixed modal tabs navigation when editing wireless interface with non-english languages
| |
− | | |
− | ===<b>[[Media:RUTX_R_00.07.02.4_WEBUI.bin|RUTX_R_00.07.02.4]]</b> | 2022.07.20===
| |
− | | |
− | * Improvements:
| |
− | ** Added default password change warning message before firmware downgrade
| |
− | | |
− | * Fixes:
| |
− | ** Fixed CVE-2022-2068 vulnerability
| |
− | ** Fixed Hotspot login via landing page issue
| |
− | ** Fixed possible I2C bus lock-up issue when upgrading firmware from 02.xx versions
| |
− | | |
− | ===<b>[[Media:RUTX_R_00.07.02.2_WEBUI.bin|RUTX_R_00.07.02.2]]</b> | 2022.06.27===
| |
− | | |
− | * Improvements:
| |
− | ** Updated FSTools package to version 2022-05-03
| |
− | ** Added security headers to web requests
| |
− | | |
− | * Fixes:
| |
− | ** Fixed CVE-2019-12900 libbz2 vulnerability
| |
− | ** Fixed CVE-2022-23303 hostapd vulnerability
| |
− | ** Fixed CVE-2022-29581 Linux kernel vulnerability
| |
− | ** Fixed CVE-2022-29458 ncurses vulnerability
| |
− | ** Fixed CVE-2022-1292 c_rehash script command injection vulnerability
| |
− | ** Fixed race condition for wireless configuration initialization
| |
− | | |
− | ===<b>[[Media:RUTX_R_00.07.02.1_WEBUI.bin|RUTX_R_00.07.02.1]]</b> | 2022.06.06===
| |
− | | |
− | * Fixes:
| |
− | ** Fixed IGMP Proxy menu item not appearing after package installation
| |
− | ** Fixed MODBUS write requests
| |
− | | |
− | ===<b>[[Media:RUTX_R_00.07.02_WEBUI.bin|RUTX_R_00.07.02]]</b> | 2022.05.23===
| |
− | | |
− | * <b>New features</b>
| |
− | ** Overview side widget
| |
− | ** IGMP Proxy
| |
− | ** Privileged Access Management (PAM)
| |
− | ** AWS Greengrass support
| |
− | ** HTTPS certificate and key upload feature
| |
− | ** SSH public keys edit box
| |
− | ** License page
| |
− | ** Bluetooth EYE sensors support
| |
− | ** DNP3 data for Data to Server
| |
− | | |
− | * <b>Improvements</b>
| |
− | ** Updated busybox to version: 1.34.1
| |
− | ** Updated curl to version 7.79.1
| |
− | ** Added iptables filter package for string filtering
| |
− | ** Added CHAP authentication for L2TP VPN
| |
− | ** Added IPv6 support for L2TPv3 VPN
| |
− | ** Added EAP-MSCHAPV2 authentication method for IPsec VPN
| |
− | ** Added IPv6 support to Auto Reboot
| |
− | ** Added 'Save to flash' and 'Test configuration' button to DNP3 configuration page
| |
− | ** Updated SNMP version 5.9.1
| |
− | ** Added OpenSSL authentication options to SNMPv3
| |
− | ** Added support for OSPF redistribution options and OSPF neighbors
| |
− | ** Added password field to BGP Peers page
| |
− | ** Extended BGP "AS" field validation to accept integers up to 4294967295
| |
− | ** Added "DHE+RSA" to OpenVPN cipher selections
| |
− | ** Increased OpenVPN max password length from 128 bytes to 512 bytes
| |
− | ** Made HMAC key direction initial value dependent on the role of the instance (client or server)
| |
− | ** Made HMAC key and HMAC authentication key upload fields required
| |
− | ** Added DES to IPsec encryption algorithms selections
| |
− | ** Added special character support for CHAP secrets
| |
− | ** Added validation requirements for PPTP user list username field
| |
− | ** Added option to manually enter Public key in Wireguard configuration
| |
− | ** Made generating Wireguard keys possible only while in auto mode
| |
− | ** Added Events Log database to troubleshoot archive
| |
− | ** Added RFC1918 filter field
| |
− | ** Added the possibility to unblock multiple blocked devices at once
| |
− | ** Added 'Port' column to blocked login attempts table
| |
− | ** Added Speedtest server refresh
| |
− | ** Updated Speedtest server list
| |
− | ** Added asterisk option to Site Blocking
| |
− | ** Added MD5 and SHA256 checksums to package validation page
| |
− | ** Changed certificate requirements to only require client key file if client certificate is used
| |
− | ** Added pagination and data retention between table pages
| |
− | ** Added pagination functionality to tables when there are more than 10 records
| |
− | ** Improved table sorting by saving user provided sort settings in the browser
| |
− | ** Improved drag and drop functionality
| |
− | ** Added the possibility to drag and drop files onto upload components
| |
− | ** Moved 'Root CA' from the 'Access Control' page to the 'Certificates' page
| |
− | ** Added 'Strict-Transport-Security' response header for HTTPS
| |
− | ** Added 'breadcrumbs' to modal windows
| |
− | ** Improved initial WebUI loading after login
| |
− | ** Added Hotspot configuration profiles
| |
− | ** Added local Hotspot user password hashing
| |
− | ** Added Hotspot password encoding option
| |
− | ** Improved Hotspot related firewall rule setting
| |
− | ** Improved WiFi Scanner enable switch to toggle 2 and 5 GHz instances separately
| |
− | ** Removed CHAP authentication protocol for WiFi Hotspots due to incompatibility with hashed passwords
| |
− | ** Added ubus support to Hotspot
| |
− | ** Changed default port name of WiFi devices for 'Topology state' Events Reporting rule
| |
− | ** Added error code 5 for reserved SAMBA user names
| |
− | ** Added Mobile data and SMS limit features for external modem
| |
− | ** Added I/O SNMP trap
| |
− | ** Added ISO 8601 time format to I/O Juggler's '%ts' parameter
| |
− | ** Added device name parameter '%pc' to I/O Juggler
| |
− | ** Added PPPoE VLAN priority support
| |
− | ** Made VRRP ping section dependent on main instance
| |
− | ** Added 'WAN to LAN' switch
| |
− | | |
− | * <b>Fixes</b>
| |
− | ** Fixed CVE-2021-20322, CVE-2021-4197, CVE-2022-1011, CVE-2022-0847 kernel vulnerabilities
| |
− | ** Fixed CVE-2022-28391 busybox vulnerability
| |
− | ** Fixed CVE-2018-16789 shellinabox vulnerability
| |
− | ** Fixed CVE-2021-44543, CVE-2021-44542 privoxy vulnerabilities
| |
− | ** Fixed CVE-2021-43618 GNU Multiple Precision Arithmetic Library vulnerability
| |
− | ** Fixed zlib backport security issue
| |
− | ** Fixed Wireguard firewall zone assignment
| |
− | ** Fixed queued packages disappearing from list after FW upgrade with keep settings
| |
− | ** Fixed error message display for multiple input validation rules
| |
− | ** Fixed incorrect DHCP validation range for start and limit fields
| |
− | ** Removed 'Bring up on boot' option from network interface configuration pages
| |
− | ** Fixed coma-separated DHCP options disappearing after save
| |
− | ** Fixed exclude and listen interfaces
| |
− | ** Fixed 'Use broadcast flag' option saving
| |
− | ** Fixed firewall zone assignment when creating new interfaces
| |
− | ** Fixed OpenVPN 'Netmask' and 'IP address' field validations
| |
− | ** Fixed OpenVPN TAP configuration saving issue
| |
− | ** Fixed OpenVPN switching to TUN mode when uploading a configuration from file
| |
− | ** Fixed dynamic BGP route state display
| |
− | ** Fixed BGP peer enable in edit page
| |
− | ** Fixed issue when no L2TP client instance could be bound to IPsec
| |
− | ** Fixed firewall rule and zone behavior related to config section creation
| |
− | ** Added default value for L2TPv3 netmask, which is now written to config after save
| |
− | ** Fixed passthrough option saving to IPsec file
| |
− | ** Fixed DMVPN issue where instance configuration could not be saved
| |
− | ** Fixed Wireguard peer could not be saved issue
| |
− | ** Fixed NTP client time synchronization after factory reset
| |
− | ** Fixed device time display with selected time zone
| |
− | ** Fixed MODBUS TCP indexation missing bracket issue
| |
− | ** Fixed initial MODBUS TCP request count validation
| |
− | ** Fixed PIN 3/4 direction switching over MODBUS TCP
| |
− | ** Fixed MODBUS data to MQTT socket closing issue when connection fails
| |
− | ** Fixed MODBUS alarm configuration deletion
| |
− | ** Fixed DNP3 master not working after FW upgrade with 'keep settings'
| |
− | ** Fixed DNP outstation not returning error messages
| |
− | ** Added missing SNMP objects: mobile IP, data sent/received today
| |
− | ** Fixed MQTT Publisher 'Remote address' field validation
| |
− | ** Fixed long interface name support for Azure IoT Hub
| |
− | ** Increased maximum Azure IoT Hub 'Connection String' length to 4096 characters
| |
− | ** Fixed missing sent/received data issue
| |
− | ** Fixed URL input field length validation
| |
− | ** Fixed admin login issue after upload of backup from a device with older firmware versions
| |
− | ** Fixed MAC address formatting in Events reporting messages
| |
− | ** Fixed Events reporting DHCP lease message spam, when no new lease is added
| |
− | ** Fixed logging crashing after downloading Troubleshoot file
| |
− | ** Made Wake on LAN visible only on devices with Ethernet ports
| |
− | ** Fixed Traffic log file transfer to FTP server
| |
− | ** Fixed Web Filter service reloading after a host list file is uploaded
| |
− | ** Fixed access denied messages when sending JSON-RPC requests from root user
| |
− | ** Fixed error message display about duplicated intervals in Profile scheduler
| |
− | ** Fixed FW upgrade with 'keep settings' migration issue for Access Control's 'Fail count' and 'Device port' fields
| |
− | ** Corrected OSPF Routing card values, value positions and names
| |
− | ** Fixed global secret instances not being removed when there are no IPsec instances
| |
− | ** Fixed uploaded file remove icon not staying in position on hover
| |
− | ** Fixed Overview card collapse issue that made it unresponsive after too many clicks
| |
− | ** Removed WAN6 interface from the Overview page
| |
− | ** Fixed Cumulocity connection issue
| |
− | ** Hidden phone groups menu
| |
− | ** Added multiwan support for Wireguard default route
| |
− | ** Fixed wireless signal strength display when no clients are connected
| |
− | ** Fixed loss of connectivity for clients when router is in STA+AP mode
| |
− | ** Added validation that prevents automatic connection to first unencrypted WiFi AP when using MULTI AP
| |
− | ** Fixed Wifi Scanner data not being stored in certain scenarios
| |
− | ** Fixed WiFi scanner not turning on after FW upgrade with 'keep settings'
| |
− | ** Fixed Hotspot user group limit not resetting on specified time
| |
− | ** Removed an RMS error message when no Hotspot users were created
| |
− | ** Fixed Hotspot landing page image upload issue
| |
− | ** Fixed I/O Juggler external modem recognition
| |
− | ** Fixed flash driver reformatting after memory shrink
| |
− | ** Fixed DLNA package installation issue
| |
− | ** Changed Media Directories field to be required
| |
− | ** Fixed SAMBA fields value display
| |
− | ** Fixed relay output value display in I/O Juggler condition page
| |
− | ** Fixed I/O Juggler's WiFi rule not enabling or disabling WiFi interfaces
| |
− | ** Fixed I/O Juggler's double delete issue on I/O Juggler action and condition instances
| |
− | ** Fixed I/O Juggler's incorrect I/O status messages
| |
− | ** Fixed paired Bluetooth device RSSI display after reboot
| |
− | | |
− | ===<b>[[Media:RUTX_R_00.07.01.4_WEBUI.bin|RUTX_R_00.07.01.4]]</b> | 2022.02.25===
| |
− | | |
− | * <b>Improvements</b>
| |
− | ** Increased Port Forwards rule max name length
| |
− | ** Added a new '%it' parameter for UTC time in ISO 8601 format to I/O Juggler
| |
− | | |
− | * <b>Fixes</b>
| |
− | ** Added missing bracket to the end of MODBUS messages
| |
− | ** Fixed preserving the contents of /etc/luci-uploads/ after FW upgrade with the 'Keep all settings' option
| |
− | ** Fixed IPv4-Gateway column showing empty values in the Status -> Routes page
| |
− | ** Fixed firewall extra option validation
| |
− | ** Fixed Hotspot enable button validation
| |
− | ** Fixed usage of custom headers in I/O Juggler HTTP action
| |
− | ** Fixed 'verify' option parsing for I/O Juggler
| |
− | ** Fixed OpenVPN server configuration with password authentication
| |
− | ** Fixed NTP interval length validation
| |
− | ** Fixed network interface enable after Drag & Drop
| |
− | ** Updated NTP client interval to 24h
| |
− | | |
− | ===<b>[[Media:RUTX_R_00.07.01.2_WEBUI.bin|RUTX_R_00.07.01.2]]</b> | 2022.01.04=== | |
− | | |
− | * <b>Improvements</b>
| |
− | ** Removed L2TP section title prefixes
| |
− | | |
− | * <b>Fixes</b>
| |
− | ** Fixed IPSec crashing issue using mobile
| |
− | ** Fixed FW flashing when chip is in unknown state
| |
− | ** Fixed CPU usage percentage display in the Overview page
| |
− | ** Fixed FOTA timeout issue when server does not respond
| |
− | ** Fixed installation of backup packages
| |
| | | |
− | ===<b>RUTX_R_00.07.01</b> | 2021.11.18===
| |
− | <b>Note:</b> Firmware version RUTX_R_00.07.01 released on 2021.11.18 was removed due to an issue with IPsec tunnel while using mobile connection.
| |
− | ----
| |
| * <b>New features</b> | | * <b>New features</b> |
| ** Load Balancing Rules | | ** Load Balancing Rules |
− | ** 802.11s based wireless mesh network support | + | ** Wireless mesh network support |
| ** Multiple Wireless AP feature | | ** Multiple Wireless AP feature |
| ** RUTX series support without STM32 | | ** RUTX series support without STM32 |