Jump to content
  • EN

RUT360 Firmware Downloads: Difference between revisions

← Older edit
VisualWikitext
m Text replacement - "*** Mobile: fixed PIN code set after modem restart *** Mobile: fixed cases where 5G NSA network type was shown incorrectly *** Mobile: fixed an issue where using SIM change command on one SIM slot modems would reset connection" to "*** Mobile: fixed PIN code set after modem restart *** Mobile: fixed an issue where using SIM change command on one SIM slot modems would reset connection"
m Text replacement - "to a critical issue" to "to an issue"
 
(39 intermediate revisions by 2 users not shown)
Line 7: Line 7:
==Changelog==
==Changelog==
<!--NEW_FW-->
<!--NEW_FW-->
===<b><span class="plainlinks">[https://firmware.teltonika-networks.com/7.14.4/RUT36X/RUT36X_R_00.07.14.4_WEBUI.bin RUT36X_R_00.07.14.4]</span></b> | 2025.09.17===
* <b>Fix</b>
** <b>System</b>
*** Profiles: fixed keep-settings execution for older profiles
----
===<b><span class="plainlinks">[https://firmware.teltonika-networks.com/7.14.3/RUT36X/RUT36X_R_00.07.14.3_WEBUI.bin RUT36X_R_00.07.14.3]</span></b> | 2025.05.26===
* <b>Fix</b>
** <b>Services</b>
*** L2TP: fixed a connection problem when using an L2TP over IPsec configuration
** <b>System</b>
*** Custom Scripts: fixed execution of custom scripts after upgrade
----
===<b><span class="plainlinks">[https://firmware.teltonika-networks.com/7.14.2/RUT36X/RUT36X_R_00.07.14.2_WEBUI.bin RUT36X_R_00.07.14.2]</span></b> | 2025.05.09===
<b>Note:</b> If a system upgrade with keep settings is performed from <b>R_00.07.14</b> or <b>R_00.07.14.1</b> to this version, follow the instructions described under those firmware versions below to resolve Data Limit and traffic monitoring issues.
----
* <b>Fix</b>
** <b>Network</b>
*** Firewall: fixed HTTP and HTTPS ports migration for DMZ port forwards rules
*** Firewall: fixed DMZ port forward rule for mobile DHCP lease renew
*** Network: fixed data limit database save when upgrading with keep settings
----
===<b>RUT36X_R_00.07.14.1</b> | 2025.05.06===
<b>Note:</b> This firmware version has been withdrawn due to an issue affecting the Data Limit, traffic monitoring functionalities.
<b>Note:</b> If a system upgrade with keep settings was already performed from <b>R_00.07.14</b> to this version, previous Data Limit tracking and traffic monitoring information cannot be restored. However, to keep current traffic monitoring history after next update, the command found in the <b>Note</b> below must be executed in CLI.
<b>Note:</b> If a system upgrade with keep settings is performed from this firmware version to newer and <b>R_00.07.14</b> was never used, following command must be executed in CLI <b>before</b> upgrade to resolve Data Limit and traffic monitoring issues.
<pre>mkdir -p /usr/local/lib/upgrade/keep.d && echo /usr/local/usr/lib/mdcollectd/mdcollectd.db_new.gz > /usr/local/lib/upgrade/keep.d/mdcollect</pre>
----
* <b>Fix</b>
** <b>System</b>
*** RutOS: fixed curl compilation in SDK
* <b>CVE Patches</b>
** CVE-2025-2704
----
===<b>RUT36X_R_00.07.14</b> | 2025.04.24===
<b>Note:</b> This firmware version has been withdrawn due to an issue affecting the Data Limit, traffic monitoring functionalities.
<b>Note:</b> If a system upgrade with keep settings is performed from this firmware version to newer, following command must be executed in CLI <b>before</b> upgrade to resolve Data Limit and traffic monitoring issues.
<pre>mkdir -p /usr/local/lib/upgrade/keep.d && echo /usr/local/usr/lib/mdcollectd/mdcollectd.db_new.gz > /usr/local/lib/upgrade/keep.d/mdcollect</pre>
----
* <b>New</b>
** <b>Network</b>
*** Mobile: added SIM switch rule "On SIM not inserted"
** <b>Services</b>
*** AWS IoT Core: added Device Provisioning
*** L2TP: added L2TP over IPv6 support
*** MQTT Broker Bridge: added v5.0 bridge protocol support
** <b>System</b>
*** RutOS: enabled a read-only root filesystem to ensure system integrity and security
*** WebUI: added Ukrainian language support
* <b>Improvements</b>
** <b>Network</b>
*** DHCP: added title for action column in custom DHCP option table
*** DHCP: added a warning message when multiple interfaces share the same device and have DHCPv4 enabled
*** DNS: updated the "Custom Redirect" option to support domain wildcard (*) pattern matching
*** DNS: made the "DNS Server" field optional for the "Custom Redirect" option
*** Firewall: improved "intra" zone column names for clarity
*** Mobile: added UCS2 conversion for service provider name
*** Mobile: improved non default SIM card unlock procedure after PIN/PUK is entered
*** SSHFS: updated mount point location
*** SSHFS: added connection and mount point status
*** Topology: removed Mobile WAN interfaces from topology scan
*** Topology: improved network scanning
*** Topology: added port number to topology scan results
*** Topology: added IPv6 support
*** VRF: added section name generation and changing ability
*** Wireless: added warning to a radio channel option when client is configured on same radio indicating that this option can be ignored
*** Wireless: added WiFi standard used by the connected client
*** Curl: updated version to 8.12.0
*** wireless-regdb: updated version to 2024.10.07
** <b>Services</b>
*** Call Utilities: added the ability to update authorization settings for multiple rules via the "Actions" drop-down in the "Call rules" table
*** Call Utilities: moved multiple rule enabling to the "Actions" drop-down in the "Call rules" table
*** Call Utilities: added filtering option for "Action name" column in the "Call rules" table
*** Data to Server: changed new instance to be turned off by default
*** Dynamic DNS: made WebUI show IP updates earlier than the configured DDNS service check interval
*** EoIP: added improvements to avoid packet loops
*** Events juggler: removed Reboot after Input/Output option
*** Events juggler: changed new instance to be turned off by default
*** Events juggler: removed Custom HTTP headers space validation
*** Input/Output: moved I/O Scheduler to Package Manager
*** IPsec: enabled dead peer detection by default
*** Post/Get - I/O: removed package
*** Post/Get - Mobile: removed package
*** PPTP: added options for 'MPPE' configuration to WebUI
*** PPTP: added 'Custom options' field to configure custom pppd options
*** SMS Utilities: added rule description hints on "Action" table column values
*** SMS Utilities: added the ability to update authorization settings for multiple rules via the "Actions" drop-down in the "SMS rules" table
*** SMS Utilities: moved multiple rule enabling to the "Actions" drop-down in the "SMS rules" table
*** SMS Utilities: added filtering options for "Action name" and "Authorization method" columns, and sorting for "SMS text" column in the "SMS rules" table
*** SMS Utilities: added default rule response messages
** <b>System</b>
*** Events Log: added events log file export
*** Profiles: improved table data UI
*** Recipients: changed email maximum password length to 128 characters
*** Recipients: improved "phone groups" page to support unlimited phone numbers additions
*** Setup Wizard: removed host, port options and proxy settings section from RMS setup wizard
*** WebUI: added measurement units for "data limit" cards in overview page
*** WebUI: removed default password icons on "Internet Explorer" and "Microsoft Edge" browsers
*** Kernel: updated version to 5.4.290
*** Time Zone Database: updated version to 2025a
* <b>Fix</b>
** <b>Network</b>
*** Dynamic routes: fixed OSPF issues of not displaying instances of 'area' and 'networks' sections
*** Firewall: fixed certain "Attack prevention" limits making device unreachable
*** Firewall: fixed attack prevention page with missing traffic rules
*** Mobile: fixed mobile disconnections when DMZ is enabled
*** Mobile: fixed APN selecting from a database with IPv4v6 PDP data type
*** Multi WAN: fixed incorrect WAN state being displayed when using failover
*** Static Routes: fixed API incorrectly returning mobile interfaces
*** VXLAN: fixed package installation not starting service properly
*** Wireless: fixed hover hint always being shown on delete button
** <b>Services</b>
*** Data to Server: fixed GSM IP and IPV6 retrieval when used SIM slot is changed
*** Data to Server: disallowed enabling Azure plugin without required options
*** Data to Server: fixed editing Azure plugin configuration when "Device Provisioning Service" option is selected
*** DNP3 Client: fixed an issue where application would terminate on startup
*** Dynamic DNS: fixed updating DNS entries
*** Email Relay: fixed service crash when server tls certificate is used
*** Events juggler: fixed broken port link speed reporting
*** Events juggler: fixed Mobile data limit event type validation
*** Events juggler: fixed condition bug on some plugins
*** Events juggler: fixed LUA condition script support to correctly handle return values
*** Messages: fixed "Date" row displayed values on smaller screens
*** Mobile Utilities: fixed Manage OpenVPN rule
*** RMS: fixed serial code copy button not being displayed
*** SMS Gateway: fixed the duplicate SMS issue in "Email to SMS"
*** SMS Utilities: fixed "SMS text" option validation when enabling rules in "SMS rules" table
*** SSTP: fixed the issue of the instance starting after upgrading the firmware
*** Wireguard: fixed connection issues when peer is on the same network
** <b>System</b>
*** API Core: fixed file upload issue which sometimes made WebUI unresponsive
*** NTP: fixed time servers limit validation
*** Package Manager: fixed displaying multiple same functionality buttons when package update fails
*** Password Policy: fixed special characters validation
*** Profiles: fixed loading screen reappearing after profile change fails
*** Recipients: fixed email address validation
*** Side Widget: fixed port icons overlapping on mobile in port status card
*** WebUI: fixed enabled button being removed in some cards on medium sized screens
* <b>CVE Patches</b>
** CVE-2022-42721
** CVE-2023-7104
** CVE-2023-31489
** CVE-2024-9143
** CVE-2024-13176
** CVE-2025-0167
** CVE-2025-0665
** CVE-2025-0725
----
===<b><span class="plainlinks">[https://firmware.teltonika-networks.com/7.13.4/RUT36X/RUT36X_R_00.07.13.4_WEBUI.bin RUT36X_R_00.07.13.4]</span></b> | 2025.04.04===
* <b>Improvements</b>
** <b>System</b>
*** RutOS: updated libubox
* <b>Fix</b>
** <b>Network</b>
*** Mobile: fixed handling of 18 character long ICCID for eSIM
** <b>System</b>
*** RutOS: fixed occasional ubus page fault after package install
*** RutOS: fixed user group duplicate entries after applying backup
----
===<b><span class="plainlinks">[https://firmware.teltonika-networks.com/7.13.3/RUT36X/RUT36X_R_00.07.13.3_WEBUI.bin RUT36X_R_00.07.13.3]</span></b> | 2025.03.21===
* <b>Fix</b>
** <b>Network</b>
*** Multi WAN: fixed internet not being reachable from device when main WAN is down
** <b>Services</b>
*** RMS: fixed connection retry interval count
----
===<b><span class="plainlinks">[https://firmware.teltonika-networks.com/7.13.2/RUT36X/RUT36X_R_00.07.13.2_WEBUI.bin RUT36X_R_00.07.13.2]</span></b> | 2025.03.18===
* <b>Fix</b>
** <b>Network</b>
*** Multi WAN: fixed occasional IPsec startup issue after reboot with Multi WAN enabled
----
===<b><span class="plainlinks">[https://firmware.teltonika-networks.com/7.12.3/RUT36X/RUT36X_R_00.07.12.3_WEBUI.bin RUT36X_R_00.07.12.3]</span></b> | 2025.02.14===
* <b>New</b>
** <b>Services</b>
*** Modbus Client: added an endpoint that returns status for a single Modbus request
* <b>Fix</b>
** <b>Network</b>
*** Mobile: fixed provider name parsing from SPN file
** <b>Services</b>
*** OpenVPN: fixed an issue with config file parsing when carriage return characters were present
*** OpenVPN: fixed parsing of the 'Protocol','Port' and 'LZO' options from the config file
----
===<b><span class="plainlinks">[https://firmware.teltonika-networks.com/7.12/RUT36X/RUT36X_R_00.07.12_WEBUI.bin RUT36X_R_00.07.12]</span></b> | 2025.01.20===
* <b>New</b>
** <b>Network</b>
*** Mobile: added "global" APN for "Jersey Telecom" operator to APN database
*** Mobile: added "datasim.com" APN for "BT" operator to APN database
*** Mobile: added "datasim.com" APN for "Vodafone" operator to APN database
*** Mobile: added "datasim.com" APN for "Vodafone" operator to APN database
*** Mobile: added "datasim.global" APN for "Telefonica" operator to APN database
*** Mobile: added "soracom.io" APN for "Soracom" carrier to APN database
*** VXLAN: moved VXLAN package to PM
** <b>Services</b>
*** Dynamic DNS: added IPv6 support
* <b>Improvements</b>
** <b>Network</b>
*** DHCP: added leased IP status in DHCP server page
*** DNS: added DNS strict order option
*** Firewall: moved target field to the bottom of NAT rule edit and renamed it to "Action" to match traffic rules
*** Firewall: moved all traffic rule fields related to action to be below action field
*** Firewall: removed ability for any firewall rules to have port selection if protocol is set to "all"
*** Firewall: separated zone and global firewall settings into different pages
*** Firewall: improved "Conntrack helpers" field in zone edit by making it disabled with explanation instead of hiding it
*** Mobile: improved deny data roaming to prevent connection issues after re-enabling roaming
*** Mobile: improved error messages for eSIM profile downloads
*** Mobile: improved active SIM display in tabs and status pages
*** Mobile: improved modem signal value filtering
*** Mobile: improved DNS checking across different interface PDP types
*** Network: fixed configuration viewing in the WAN page when user has only read permission
*** UDP Relay: moved service menu item from Network > Other > UDP Relay to Network > UDP Relay
*** VRF: added additional validations to address used device cases
*** VXLAN: separated edit form options into general and advanced tabs
*** Wireless: sorted scan results by signal strength by default
*** Wireless: renamed password field in join modal to be called same as in edit modal
*** Wireless: improved wireless join action performance
*** Curl: updated version to 8.11.0
** <b>Services</b>
*** DLMS: added ability to view COSEM objects for each scanned physical device in overview page
*** NTP Client: updated 'Count of failed NTP requests' option to permanently synchronize with mobile operator when NTP servers fail
*** Overview: added IP type status to network interface cards
*** Post/Get - I/O: moved to Package Manager
*** Post/Get - Mobile: moved to Package Manager
*** SMS Utilities: changed format of ADC and ACL status
*** azure-iot-sdk-c: updated version to LTS_08_2024
** <b>System</b>
*** API Core: added query parameter for configuration GET endpoints to receive all options, even if unset
*** Certificates: moved "Let's Encrypt" functionality to Package Manager
*** Package Manager: removed "Installed Version" and "Available Version" columns from the package table
*** Kernel: updated version to 5.4.285
* <b>Fix</b>
** <b>Network</b>
*** Dynamic routes: fixed dynamic routes not starting after installation on rare occasions
*** Firewall: deprecated invalid dest_local option in traffic rules API
*** Firewall: fixed zone placement in NAT rule description
*** Mobile: fixed cell ID parsing on 2G networks
*** Mobile: fixed modem information collection after firmware installation
*** Mobile: fixed repetitive mobile band configuration on startup
*** Mobile: improved operator name parsing when information is unavailable on the SIM card
*** Mobile: fixed SMS limit displaying incorrect reset date
*** Mobile: fixed an issue where duplicate APN could be configured
*** Mobile: fixed LAC/TAC display in mobile status page
*** Mobile: fixed an issue where incorrect SIM was selected
*** Mobile: fixed an issue where SIM card pin code would be stored as "N/A"
*** Network: fixed missing PPPoE username and password validations
*** QOS: fixed source and destination host field validation to allow subnet in CIDR notation
*** QOS: fixed starting SQM after reboot when QoS package is installed
*** Static Routes: fixed interface select not showing SSTP instances
*** VRF: fixed an issue that prevented saving the configuration when an inactive VLAN was selected
*** Wireless: fixed displayed client status when WPA supplicant does not have status
*** Wireless: fixed transmit power getting adjusted incorrectly when changing regulatory country
*** Wireless: fixed required password validation in join modal
*** Wireless: fixed API "htmode" option format validation
*** Wireless: fixed API allowing empty "country" value
** <b>Services</b>
*** DLMS: fixed parameters table not always refreshing when selecting devices
*** DLMS: fixed mismatched name validations between API and WebUI
*** DLMS: fixed an issue where uptime becomes incorrect when system time changes
*** DNP3 Client: fixed API error when non existent parent id is provided in requests endpoint URL
*** DNP3 Client: fixed an issue where uptime becomes incorrect when system time changes
*** DNP3 Outstation: fixed an issue where uptime becomes incorrect when system time changes
*** IPsec: increased maximum length of local / remote identifiers and selector ID to 255 characters
*** IPsec: fixed deleting global secrets when more than one ipsec instances are configured
*** IPsec: fixed IPsec not reloading after DMVPN uninstall
*** IPsec: fixed showing empty error messages after instance deletion
*** IPsec: fixed excessive logging
*** IPsec: fixed firewall rules migration and identifier setting when certificate authentication is used
*** Modbus Client: fixed configuration files not being removed after package removal
*** Modbus Client: fixed an issue where uptime becomes incorrect when system time changes
*** Modbus Server: fixed configuration files not being removed after package removal
*** Modbus Server: fixed an issue where uptime becomes incorrect when system time changes
*** MQTT Modbus Gateway: fixed configuration files not being removed after package removal
*** MQTT Modbus Gateway: fixed an issue where uptime becomes incorrect when system time changes
*** NTP Client: fixed Count of time synchronizations that was not working properly
*** OPC UA Client: fixed URL validation
*** OPC UA Client: fixed configuration files not being removed after package removal
*** OPC UA Client: fixed API security mode option require validation
*** OPC UA Client: fixed an issue where uptime becomes incorrect when system time changes
*** OPC UA Client: fixed validation for prefix, midfix, postfix options
*** OPC UA Server: fixed configuration files not being removed after package removal
*** OPC UA Server: fixed API encryption option require validation
*** OPC UA Server: fixed an issue where uptime becomes incorrect when system time changes
*** OpenVPN: fixed the problem related to the 'netlink reports object not found' warning when using the DCO configuration
*** SNMP: fixed mwan3Ip to display 'N/A' if no IPs are present
*** TR-069: fixed ConnectionRequestURL node to return VPN IP address if VPN is used
*** Web Filter: fixed site blocking rules affecting router itself when selecting specific network interface
*** Web Filter: added exception to FOTA server blocking
*** Web Filter: fixed site blocking not working with Hotspot
*** Web Filter: fixed whitelist not working with domains that have forwards to other domains
*** Wifi Scanner: fixed service not working when initially Wireless radio is disabled
** <b>System</b>
*** Certificates: fixed issue where the API allowed the deletion of root certificate
*** Certificates: fixed uploading of certificates that are 4096 bits or longer
*** Package Manager: added link for "TravelMate" package where it can be configured
*** Package Manager: added protection against zip bombs when uploading a package
*** PAM: fixed creating new instance
*** WebUI: fixed SDK example app validation mismatch between UI and API
*** WebUI: fixed default value display on instances for multiple services
* <b>CVE Patches</b>
** CVE-2024-5594
** CVE-2024-9681
** CVE-2024-29195
----
===<b><span class="plainlinks">[https://firmware.teltonika-networks.com/7.11.3/RUT36X/RUT36X_R_00.07.11.3_WEBUI.bin RUT36X_R_00.07.11.3]</span></b> | 2024.12.17===
* <b>Fix</b>
** <b>Services</b>
*** Input/Output: fixed issues causing fault messages on service close
*** Wireguard: fixed field validation after firmware upgrade
*** OpenVPN: fixed the certificate file selection issue in the server configuration
----
===<b><span class="plainlinks">[https://firmware.teltonika-networks.com/7.11.2/RUT36X/RUT36X_R_00.07.11.2_WEBUI.bin RUT36X_R_00.07.11.2]</span></b> | 2024.12.09===
* <b>Fix</b>
** <b>Services</b>
*** IPsec: fixed loading connections using AEAD algorithms
*** IPsec: fixed connection status display
*** IPsec: fixed Local source IP option
*** IPsec: fixed issue with multiple global secrets of same type
----
===<b><span class="plainlinks">[https://firmware.teltonika-networks.com/7.11.1/RUT36X/RUT36X_R_00.07.11.1_WEBUI.bin RUT36X_R_00.07.11.1]</span></b> | 2024.12.02===
* <b>Fix</b>
** <b>Services</b>
*** Hotspot: fixed limits not working for "MAC authentication", "Single sign-on" and "SMS OTP" modes
*** Ledman: fixed issue when network type LEDs are blinking when data connection is established
----
===<b><span class="plainlinks">[https://firmware.teltonika-networks.com/7.11/RUT36X/RUT36X_R_00.07.11_WEBUI.bin RUT36X_R_00.07.11]</span></b> | 2024.11.25===
* <b>New</b>
** <b>Services</b>
*** Data to Server: added LUA format support
*** DLMS: added option to configure which COSEM class attributes to read from the meter
*** Impulse Counter: added feature
*** Wireguard: added QR code configuration generator
** <b>System</b>
*** Administration: added capability of displaying a configurable banner before login
*** Password Policy: added ability to modify the password policy
*** System Users: added sensitive option toggle for user groups
* <b>Improvements</b>
** <b>Network</b>
*** Firewall: added TCPMSS action to traffic rules
*** Mobile: improved mobile connection checking according to serving cell connection
*** Mobile: improved manual operator selection logic to prevent unintended operator changes
*** Mobile: added 'telenor.smart' APN for 'Telenor' operator to APN database
*** Mobile: added 'telenor.fwa' APN for 'Telenor' operator to APN database
*** Mobile: removed 'internet.ventelo.no' APN for 'Telenor' operator from APN database
*** Mobile: removed 'telenor' APN for 'Telenor' operator from APN database
*** Mobile: standardized operator names on the APN database
*** Multi AP: improved switching time between APs
*** RelayD: added ability to configure multiple Relayd configurations
*** Topology: added sorting functionality for "IP address" and "MAC address" table columns
*** Wireless: changed radio status to show channel frequency in MHz instead of GHz
** <b>Services</b>
*** Data to Server: added scheduler support
*** DLMS: added default values for table name columns
*** Hotspot: added MAC authentication option for SMS OTP authentication mode
*** Hotspot: added DOH and DOT addresses to default blocklist
*** IPsec: updated 'Custom option' field validation
*** IPsec: migrated to swanctl
*** Modbus Client: added phone group selection
*** Modbus Client: added email alarm action
*** OPC UA Client: changed validation, allowing to add certificates when channel encryption is not used
*** OpenVPN: improved WebUI page for creating and modifying instances
*** OpenVPN: added custom configuration file parsing
*** OpenVPN: added option to configure virtual addressing topology and support for TLS clients
*** OpenVPN: added 'adaptive' selection for the LZO parameter
*** OpenVPN: added support for multiple remote network values
*** OpenVPN: improved the selection of allowed data ciphers in the WebUI
*** OpenVPN: improved private key decryption
*** OpenVPN: removed dependency on the protocol value for configuring tunnel IPv6 addresses
*** OpenVPN: added the possibility to use multiple remote host/IP address values
*** OpenVPN: added support for exporting configuration
*** Mosquitto: updated version to 2.0.20
** <b>System</b>
*** Access Control: added ability to bind HTTP and HTTPS to specific IPs and ports
*** Events Log: improved event log messages format
*** Logging: added a log ID to each log entry for easier tracking and identification
*** Setup Wizard: added SIM card and modem statuses in Mobile page
*** WebUI: updated design of tables
*** Kernel: updated version to 5.4.284
*** libffi: updated version to 3.4.6
*** readline: updated version to 8.2
* <b>Fix</b>
** <b>Network</b>
*** Mobile: fixed duplicate of "wap66" APN for "SFR" operator in APN database
*** Mobile: fixed duplicate of "wap68" APN for "SFR" operator in APN database
*** Mobile: fixed duplicate of "internet" APN for "TDC" operator in APN database
*** Mobile: fixed duplicate of "orangeweb" APN for "Orange" operator in APN database
*** Mobile: fixed duplicate of "wap.digicelbvi.com" APN for "Digicel" operator in APN database
*** Mobile: fixed duplicate of "wap.digicelha.com" APN for "Digicel" operator in APN database
*** Mobile: fixed duplicate of "indosatgprs" APN for "Indostat" operator in APN database
*** Mobile: fixed duplicate of "3gprs" APN for "3" operator in APN database
*** Mobile: fixed duplicate of "VZWINTERNET" APN for "Verizon" operator in APN database
*** Mobile: fixed duplicate of "soracom.io" APN for "FL1" operator in APN database
*** Mobile: fixed the USSD message when the network is not responding
*** Mobile: removed voice features for EC25-AFFD module
*** Network: fixed duplicate of "pps" APN for "Zain KW" operator in APN database
*** Network: fixed MTU get from API
*** Static Routes: fixed IPv6 route target validation to accept IPv6 subnet
*** Wireless: fixed wireless not being reloaded after its interface's physical device was changed
** <b>Services</b>
*** Bluetooth: fixed service crash when trying to unpair devices
*** DLMS: fixed name validation when adding physical devices
*** Hotspot: fixed Hotspot themes installation without first installing Hotspot package
*** IPsec: fixed incorrect status display when multiple instances are configured
*** IPsec: fixed flushing of connection tracking table when compatibility mode is used
*** L2TP: fixed disappearing default route when using mobile interface as the default WAN
*** Mobile Utilities: fixed password validation when enabling SMS rule
*** Modbus Client: fixed rpc crash when calling serial.test method
*** Modbus Server: fixed firewall rule creation
*** SMS Gateway: fixed long HTTP URL formatting in SMS Forwarding to HTTP
*** SMS Utilities: fixed sending messages to short numbers
*** Zerotier: fixed saving configuration when LAN interface has no associated physical interface
** <b>System</b>
*** Access Control: fixed unauthorized errors on interface endpoints
*** Access Control: fixed IP Block configuration when upgrading from previous firmware versions
*** Package Manager: fixed VXLAN package not having link to configuration page
*** Package Manager: fixed restoring packages after firmware upgrade
*** Troubleshoot: fixed scenarios where TCPdump field was not displayed
*** WebUI: fixed issue when sometimes hidden sections with created instances were not displayed
* <b>CVE Patches</b>
** CVE-2021-38291
** CVE-2024-6232
** CVE-2024-44070
----
===<b><span class="plainlinks">[https://firmware.teltonika-networks.com/7.10.2/RUT36X/RUT36X_R_00.07.10.2_WEBUI.bin RUT36X_R_00.07.10.2]</span></b> | 2024.11.04===
* <b>New</b>
** <b>Network</b>
*** Mobile: added "kajeet.gw12.vzwentp" APN for "Verizon" operator to APN database
*** Mobile: added "V5GA01INTERNET" APN for "Verizon" operator to APN database
*** Mobile: added "kajeet.fw5g.vzwentp" APN for "Verizon" operator to APN database
*** Mobile: added "iot.kajeet" APN for "T-Mobile" operator to APN database
*** Mobile: added "iot.tmowholesale.static" APN for "T-Mobile" operator to APN database
*** Mobile: added "iot.tmowholesale" APN for "T-Mobile" operator to APN database
*** Mobile: added "sentinel01.com.attz" APN for "AT&T" operator to APN database
*** Mobile: added "sentinelent01.com.attz" APN for "AT&T" operator to APN database
*** Mobile: added "sentinelnb01.com.attz" APN for "AT&T" operator to APN database
*** Mobile: added "213x.sentinel01.com.attz" APN for "AT&T" operator to APN database
*** Mobile: added "213x.sentinelent01.com.attz" APN for "AT&T" operator to APN database
*** Mobile: added "sentinel-static.mcs" APN for "AT&T" operator to APN database
*** Mobile: added "uscc05016.enterprise3.usc-cdp" APN for "US Cellular" operator to APN database
*** Mobile: added "uscc07009.enterprise3.usc-cdp" APN for "US Cellular" operator to APN database
*** Mobile: added "sentinel.crs.bell.ca.ioe" APN for "Bell Mobility" operator to APN database
*** Mobile: added "kajeet.crs.bell.ca.ioe" APN for "Bell Mobility" operator to APN database
*** Mobile: added "sentinel.apn" APN for "Rogers" operator to APN database
*** Mobile: added "sentinel.vf" APN for "Vodafone" operator to APN database
*** Mobile: added "sentinel.lpwa.vf" APN for "LPWA" operator to APN database
* <b>Improvements</b>
** <b>Network</b>
*** Mobile: improved carrier aggregation signal value parsing
* <b>Fix</b>
** <b>Network</b>
*** Firewall: fixed bug in NAT rule migration script that would overwrite Port Forwarding rule options
*** Mobile: fixed eSIM profile loading from servers with unusual response
----
===<b><span class="plainlinks">[https://firmware.teltonika-networks.com/7.10/RUT36X/RUT36X_R_00.07.10_WEBUI.bin RUT36X_R_00.07.10]</span></b> | 2024.10.10===
* <b>New</b>
** <b>Network</b>
*** Mobile: added ability to export modem debug and USSD responses to CSV file
*** Mobile: added "hologram" APN for "Hologram" operator
*** Mobile: added "wbdata" APN for "Granite" operator
*** Mobile: added "netw.vp" and "netw2.vp" APNs for "Networth" operator to APN database
** <b>Services</b>
*** AWS IoT Core: added service
*** BACnet: added ability to configure several BIP interfaces, to set network numbers and preconfigure BDT entries for BBMD
*** Console: added service status information display
*** DLMS: added service status information display
*** DNP3 Client: added service status information display
*** DNP3 Outstation: added service status information display
*** Modbus Client: added service status information display
*** Modbus Server: added service status information display
*** Modbus TCP over Serial Gateway: added service status information display
*** MQTT Modbus Gateway: added service status information display
*** OPC UA Client: added service status information display
*** OPC UA Server: added variable "rut_wan_type" which shows if WAN is on a wired or a mobile network
*** OPC UA Server: added service status information display
*** RMS: added SOCKS5 proxy support
** <b>System</b>
*** Certificates: added SCEP certificate generation method
* <b>Improvements</b>
** <b>Network</b>
*** Curl: added unix socket support
*** Firewall: added most options to basic mode for all firewall pages
*** Firewall: added all firewall pages to basic mode
*** Interfaces: increased interface metric maximum value from 10000 to 4294967295
*** Mobile: added network reject cause messages
*** Mobile: added "flolive.net" APN for "Telecom Italia", "Telefonica O2" and "Telefonica Movistar" operators to APN database
*** Mobile: changed the default APN for IMS protocol from "VZWIMS" to "IMS" for "Verizon" operator
*** Mobile: fixed an issue where the ICCID was not returned correctly when the SIM card's ICCID ended with letters
*** Mobile: improved 5G NSA CA information display
*** Mobile: improved SIM and eSIM management via LPAC service
*** Multi WAN: added rules table to basic mode
*** Static Routes: added page to basic mode
*** VRRP: added page to basic mode
*** Wireless: added interface status message when DFS CAC is in progress
*** Wireless: added most options to basic mode
*** Wireless: added SSID creation and deletion to basic mode
** <b>Services</b>
*** DLMS: added meter COSEM object scanning
*** DNP3 Client: made menu names more consistent
*** Hotspot: added "Coova-Chilli-SSID" (28) Vendor Specific Attribute for Radius
*** IPsec: improved 'Remote endpoint' validation to allow '%any', '%any4', '%any6' values and netmask
*** IPsec: added ability to use certificates from Certificate Manager
*** L2TPv3: added Tunnel ID and Session ID validation to avoid creating multiple tunnels with the same parameters
*** Modbus Client: updated Modbus Client menu position
*** Modbus Server: updated Modbus Server menu position
*** Python3: changed python3-light package libraries
*** SMS Utilities: added an option to enable or disable the return of status code message
*** Tinc: added options to set the tunnel's IP address
*** Tinc: added a port option to listen for incoming connections and the ability to specify a port for outgoing connections
*** Wireguard: added tunnel source mode selection
*** Python3: updated version to 3.11.7
*** Strongswan: updated version to 5.9.14
** <b>System</b>
*** Access Control: refactored 'General', 'Security' and 'PAM' Web pages
*** Auto Reboot: added support for multiple hosts/URLs in Ping/Wget Reboot
*** Backup: encrypting backup does not require 7zip package anymore
*** Certificates: split "Let's Encrypt" certificates into multiple files
*** Troubleshoot: added dynamic routes debugging information
*** WebUI: added ability to open new page in new tab without entering user credentials
*** WebUI: improved SDK example application
*** Glib2: updated version to 2.80.5
*** Kernel: updated version to 5.4.282
*** Ncurses: updated version to 6.5
* <b>Fix</b>
** <b>Network</b>
*** Firewall: fixed automatic priority option change
*** Mobile: fixed hang up of QMI WDS service
*** Mobile: fixed QMI errors when multi APN is configured
*** Mobile: fixed typo in "m2m.airinternet.eu" APN for "Airinternet" operator in APN database
*** Network: fixed mobile Bridge/Passthrough mode not working after changing LAN interface settings
*** Wireless: fixed BSSID show for interface in Client mode
*** Wireless: fixed hostapd ubus call timeout after wireless configuration change
*** Wireless: fixed reporting disconnection from external AP when device in STA+AP mode
*** Wireless: fixed missing rx frame types needed for wifi scanner
** <b>Services</b>
*** BACnet: fixed communication issues between the ports
*** BACnet: added all available default baud rates
*** BGP: fixed AS field to allow duplicate values
*** BGP: fixed Access list filters not applying fully
*** DLMS: added all available default baud rates
*** DMVPN: fixed DMVPN GRE instance disappearing when creating new IPsec instance
*** DNP3 Client: removed unnecessary max length display for test response field
*** DNP3 Client: renamed TCP Station to TCP Client in the API documentation
*** DNP3 Client: added all available default baud rates
*** DNP3 Outstation: added all available default baud rates
*** GRE: fixed interface not showing up in OSPF and RIP selections if it is off
*** Hotspot: fixed blocklist not working when no addresses are provided
*** Hotspot: fixed uploaded custom landing page file permissions
*** Hotspot: fixed certificates to be required to enable https redirect
*** IPsec: fixed IP rule not appearing after network restart
*** IPsec: fixed duplicate port values in IPsec firewall rules
*** Ledman: fixed issue when power LED turns off when rebooting device
*** Modbus Client: added all available default baud rates
*** Modbus Client: added missing API docs for Modbus test request
*** Modbus Server: added all available default baud rates
*** Modbus Server: fixed firewall rule staying enabled when app is disabled
*** Modbus Server: fixed firewall rule creation
*** OpenVPN: fixed the configuration after disabling the use of external services
*** OpenVPN: fixed OpenVPN restarting when mobile interface comes up
*** SNMP: fixed Hotspot OIDs' hssID and hssUsername display
*** Tinc: fixed adding routes to remote subnets
*** Tinc: fixed configuration generation issues when creating multiple network and host instances
*** Tinc: fixed issues with route creation when using IPv6 addresses in tunnel configuration
*** Tinc: fixed validation for uploading key files
** <b>System</b>
*** Backup: fixed uploading backup with memory expansion enabled
*** CLI: fixed some private IPs being incorrectly determined as public
*** JSON-RPC: fixed login "Access Denied" error
*** WebUI: added API required values validation when enabling BACnet, DLMS, DNP3, Modbus, MQTT, NTRIP services
*** WebUI: fixed 'Memory' status card progress bars visuals
*** WebUI: fixed search bar suggestions after removing packages
*** WebUI: fixed showing data in modals for users with only read permissions
*** WebUI: fixed custom SDK pages not loading correctly
* <b>CVE Patches</b>
** CVE-2021-3520
** CVE-2021-44540
** CVE-2021-44541
** CVE-2024-4032
** CVE-2024-6119
** CVE-2024-6232
** CVE-2024-6923
** CVE-2024-7264
----
===<b><span class="plainlinks">[https://firmware.teltonika-networks.com/7.9.4/RUT36X/RUT36X_R_00.07.09.4_WEBUI.bin RUT36X_R_00.07.09.4]</span></b> | 2024.10.02===
* <b>Improvements</b>
** <b>Services</b>
*** NTP Client: changed default NTP servers
* <b>Fix</b>
** <b>Services</b>
*** NTP Client: fixed NTP server usage to work with next in line server if current server does not respond
----
===<b><span class="plainlinks">[https://firmware.teltonika-networks.com/7.9.3/RUT36X/RUT36X_R_00.07.09.3_WEBUI.bin RUT36X_R_00.07.09.3]</span></b> | 2024.09.27===
* <b>Fix</b>
** <b>Network</b>
*** Multi WAN: fixed ipsets not getting deleted correctly when Multi WAN gets restarted
----
===<b><span class="plainlinks">[https://firmware.teltonika-networks.com/7.9.1/RUT36X/RUT36X_R_00.07.09.1_WEBUI.bin RUT36X_R_00.07.09.1]</span></b> | 2024.09.13===
* <b>Improvements</b>
** <b>Services</b>
*** Python3: updated version to 3.11.7
* <b>Fix</b>
** <b>Network</b>
*** Mobile: fixed eSIM profile config generation
----
===<b><span class="plainlinks">[https://firmware.teltonika-networks.com/7.9/RUT36X/RUT36X_R_00.07.09_WEBUI.bin RUT36X_R_00.07.09]</span></b> | 2024.09.03===
* <b>New</b>
** <b>Network</b>
*** Firewall: added ability to configure NAT rule action
*** Firewall: added additional TTL target for firewall rules
*** Mobile: added "datamobile.ag" APN for "Datamobile.ag" operator to APN database
*** Mobile: added "m2m.ajrinternet.eu" APN for "Airinternet" operator to APN database
*** Mobile: added "wbdata" APN for "Webbing" operator to APN database
*** Mobile: added "inetd.vodafone.iot" APN for "Vodafone" operator to APN database
*** Mobile: added "asm" APN for "ASM" operator to APN database
*** Realtime Traffic: added historical traffic charts
*** Realtime Traffic: added overall quality measurement to wireless signal charts
*** Wireless: added option to enable 802.11w Management frame protection when using non-WPA3 encryption
** <b>Services</b>
*** Events Reporting: added new firmware version notification event
*** SNMP: added Multiwan data module
** <b>System</b>
*** WebUI: added notifications menu
* <b>Improvements</b>
** <b>Network</b>
*** Mobile: improved network bring up after operator scan
*** Mobile: updated bands selection to include band number and frequency
*** Mobile: improved SIM card notifications to get removed when SIM card state or active SIM changes
*** Mobile: improved modem update notifications to show modem name
*** Mobile: removed the USSD feature from the data-only modems
*** Realtime Traffic: improved chart styles
*** Wireless: increased EAP authentication logging
*** Wireless: added various validations for network that is being used by wireless interface
*** Wireless: added insecure configuration warnings when configuring SSIDs
*** Wireless: updated wireless cards to display each radio device's signal quality and band data
*** Wireless: reduced time required for Fast Transition in STA mode
** <b>Services</b>
*** Call Utilities: added check if the number is blocked before doing action
*** Data to Server: added warning messages about insecure certificates for http_certfile and mqtt_certfile options in API and WebUI
*** DLMS: added SHA256 authentication
*** DLMS: improved COSEM group enable validation
*** GRE: reduced GRE keepalive packet buffer size
*** Hotspot: increased throughput performance
*** Hotspot: increased maximum length of 'Local users' username to 255 characters
*** Hotspot: added walled garden allowlist and blocklist
*** IPsec: added support for route based tunnel
*** L2TP: added field for custom options
*** SMPP: added timeout option
*** Web Filter: added hostname count message after successful file upload
** <b>System</b>
*** Access Control: improved system user's access control rules logic
*** Access Control: added option to disable password auth for the root user
*** Administration: improved write/read access control options display to match meniu path style
*** Backup: improved backup page by splitting it into backup and reset settings page
*** Update Firmware: changed firmware update log to include firmware version
*** WebUI: updated firmware and backup verification pages design
*** WebUI: improved global alerts display
*** WebUI: added confirmation prompt for disabling service in side widget
*** Kernel: updated version to 5.4.279
* <b>Fix</b>
** <b>Network</b>
*** Devices: fixed configured VLAN 0 device cannot be selected in interface physical settings configuration
*** Mobile: fixed data limit widget to show used data for inactive interface
*** Mobile: fixed Bridge/Passthrough modes for routed networks
*** Mobile: fixed incorrect date values when setting SMS limit
*** Mobile: fixed SMS used data header counter
*** Mobile: fixed the issue where the PUK event was not displayed when the SIM PIN was blocked
*** Mobile: fixed uqmi start-network authentication issue
*** Mobile: fixed modem info not being filled on devices with more than one modem
*** Mobile: fixed mobile data limit to calculate correct used limits when using ipv4 and ipv6 simultaneously
*** Mobile: fixed USSD over IMS error handling
*** Mobile: fixed an issue where the interface could hang if the modem was busy
*** Network: fixed incorrect date values when setting data limit
*** RelayD: fixed relayd assigning wrong interface to zone
*** Wireless: fixed station mode connection issues for 2.4 GHz radio in STA+AP mode
*** Wireless: fixed wireless status API response to contain separate interface information for multiple radio configurations
** <b>Services</b>
*** Azure IoT Hub: fixed the Azure IoT Hub deprecated endpoint to create Data to Server sections
*** Azure IoT Hub: fixed the Azure IoT Hub deprecated endpoint so that it does not create sections in GET request
*** Azure IoT Hub: fixed the deletion of Data to Server sections when an Azure IoT Hub section is deleted through the deprecated endpoint
*** DLMS: fixed OBIS code validation
*** Hotspot: fixed 'Hotspot network' input validation to only allow network mask from 16 to 30
*** Input/Output: added I/O juggler reload when I/O pin direction is changed
*** OPC UA Client: fixed TCL file upload
*** OPC UA Server: fixed TCL file upload
*** OPC UA Server: fixed configuration migration
*** OpenVPN: fixed default firewall zone for tap interfaces
*** SNMP: fixed TELTONIKA-MIB wireless module crash
*** SNMP: fixed mobile network state display
*** SNMP: fixed default hssDwLimit, hssUpLimit, hssDwBandwidth and hssUpBandwidth values
** <b>System</b>
*** API Core: fixed file deletion
*** Boot: fixed Teltonika logo in httpd recovery page when using Firefox
*** Package Restore: fixed automatic package re-installation after firmware upgrade
*** Troubleshoot: fixed troubleshoot not including all the log files when log to flash is enabled
*** User Settings: fixed page to show groups and users if the user has been granted access
*** WebUI: fixed overview page to display active wireless (WLAN) clients
* <b>CVE Patches</b>
** CVE-2021-32292
** CVE-2022-40617
** CVE-2023-49441
** CVE-2024-0397
** CVE-2024-3596
** CVE-2024-5535
** CVE-2024-8088
** CVE-2024-26669
** CVE-2024-26739
** CVE-2024-36901
----
===<b><span class="plainlinks">[https://firmware.teltonika-networks.com/7.8.2/RUT36X/RUT36X_R_00.07.08.2_WEBUI.bin RUT36X_R_00.07.08.2]</span></b> | 2024.08.12===
* <b>Fix</b>
** <b>System</b>
*** Update Firmware: fixed inconsistent firmware download from FOTA
----
===<b>RUT36X_R_00.07.08.1</b> | 2024.08.06===
<b>Note:</b> This firmware version was removed due to an issue with FOTA firmware download.
* <b>Improvements</b>
** <b>Network</b>
*** Mobile: improved firmware downgrade validation for Quectel modules
** <b>Services</b>
*** Zerotier: updated version to 1.14.0
* <b>Fix</b>
** <b>Network</b>
*** Mobile: fixed an issue where in some cases mobile network interfaces would not be brought down properly
*** Mobile: fixed memory fault while allowlist and denied data roaming enabled
*** Network: fixed default route not being added for PPPoE connections
** <b>Services</b>
*** OPC UA Client: fixed connections not being closed after using testing functionality
** <b>System</b>
*** WebUI: fixed SDK WebUI package compilation
----
===<b>RUT36X_R_00.07.08</b> | 2024.07.18===
<b>Note:</b> This firmware version was removed due to an issue with FOTA firmware download.
* <b>New</b>
** <b>Network</b>
*** DNS: added inherited server status to configuration page
*** HTTPS DNS Proxy: added new HTTPS DNS Proxy package to package manager
*** Mobile: added SIM card lock/unlock functionality in Mobile->Utilities page
*** Mobile: added SIM card PIN change functionality in Mobile->Utilities page
*** Mobile: added new Mobile->Limits page which shows information and allows to configure Data and SMS limits
*** Mobile: added DFOTA support for RG520N modems
*** Mobile: added nr-arfcn display to mobile status page
*** Mobile: added dfota support for devices with RG520N-EB modem
** <b>Services</b>
*** Data to Server: added 'Lua script' data input
*** Hotspot: added Single Sign-on (OIDC) authentication mode
*** Hotspot: added Walled Garden blocklist functionality
*** Input/Output: added ability to configure gpio debounce timer and changed default gpio debounce timer value from 200 ms to 10 ms
*** IPsec: added initial XFRM support
*** MQTT Modbus Gateway: added JSON message type format
*** OpenVPN: added DCO support
** <b>System</b>
*** API Core: added option to configure api session timeout
*** Certificates: added "Let's encrypt" certificate generation
*** PAM: added RADIUS external user support
*** UI Core: added data analytics support
*** Update Firmware: added warning message about device being temporarily unreachable on firmware update
* <b>Improvements</b>
** <b>Network</b>
*** DNS: separated field "DNS forwardings" into two: one for simple server forwarding other for domain-specific
*** DNS: moved "DNS Forwardings", "Listen interfaces", "Exclude interfaces", "Local service only", options to advanced tab
*** Firewall: improved protocol field in all firewall pages by making that "All" value would be mutually exclusive with any other value
*** Mobile: improved IMS context initialization
*** Mobile: updated SMS memory management for multipart SMS
*** Mobile: added error message when attempting to enable the SIM switch without any criteria set
*** Mobile: added informative message in SIM switch page when Data/SMS limit criteria are enabled but the limits themselves are not set up
*** Mobile: moved operator list allowlist/blocklist selection to Network selection page
*** Mobile: refactored Scanned operators modal, added repeat scan button
*** Mobile: added ability to view previously scanned operators in Network selection and Operator lists pages
*** Mobile: added ability to edit operator list name and initiate scans for operators in Operator lists page
*** Mobile: updated operator code field list to include APNs from the APN database in Operator lists page
*** Mobile: split Mobile->General page into three pages: General, Connection and Utilities pages
*** Mobile: added mobile interface with highest priority APN configuration in Mobile->General page
*** Mobile: added icons with hints which show SIM card, operator, data connection statuses in Mobile->General page
*** Mobile: moved Mobile data limit section to a tab in WAN page
*** Mobile: added informative message in WAN page to indicate whether the connection will be made using APN from APN database, empty or custom APN
*** Mobile: improved logging of ping error messages
*** Mobile: added 5G SA/NSA mode selection
*** Mobile: improved modem updater to stop ping reboot service while update is in progress
*** Mobile: improved the handling of denied messages upon SIM switch
*** Mobile: added notification when a multi-IMSI SIM card is using Auto APN
*** Mobile: added validation to not allow passthrough and bridge mode when one already exists
*** Mobile: improved safeguards for modem services startup
*** Mobile: improved modem update status display
*** Mobile: added corrupted mobile statistics database restoration functionallity
*** Mobile: improved setting of IPv4 and IPv6 types inside the modules
*** Mobile: improved provider name parsing for SLM750 modem
*** Multi WAN: improved interface status representation when using load balancing
*** Network: added more options for "IPv6 assignment length" field
*** Wireless: added warning when user configures mesh on radio with automatic frequency channel
*** Wireless: added support for wireless MAC-filter MAC ranges
*** Wireless: changed Radius Accounting port is not required when configuring access point with enterprise encryption
*** Wireless: refactored radio configuration page layout
*** Wireless: refactored assignment of wireless interfaces MAC addresses, STA interface will always use fixed address
** <b>Services</b>
*** Azure IoT Hub: added DPS symmetric key attestation support
*** Azure IoT Hub: added Direct Method support
*** Azure IoT Hub: added Plug and Play integration
*** Azure IoT Hub: added link to "Data to Server" page
*** Data to Server: added support for multiple filters
*** Data to Server: improved HTTP output hostname definition with automatic protocol specification in URL
*** Data to Server: improved MQTT input connection handling
*** DNP3 Client: added option to enable/disable service
*** Dynamic DNS: added Lookup hostnames support
*** GRE: increased Inbound and Outbound key limit to 4294967295
*** Hotspot: adjusted hotspot user manager page to display active and inactive user sessions
*** Hotspot: changed local users to be stored with other types of users
*** Hotspot: added 'noc2c' option for enabling client isolation, option is enabled by default
*** Input/Output: added custom name support in I/O status page
*** IPsec: added certificate warning message
*** Mobile Utilities: added interface option to sms_utils cellular command
*** Mobile Utilities: improved error log message
*** Mobile Utilities: improved naming of I/O pins in initial I/O status rule
*** Mobile Utilities: sms utilities authentication brute force prevention
*** Modbus Server: added mobile last month and last week usage registers
*** Mosquitto: added large package size check for MQTT clients
*** MQTT Modbus Gateway: improved mosquitto reconnect time and service will try to recover few times before exiting
*** MQTT Publisher: improved MQTT connection handling
*** OPC UA Client: added security modes
*** OPC UA Server: added security modes
*** OPC UA Server: added service status display
*** OpenVPN: added support for decrypting private key when uploading a configuration file
*** OpenVPN: improved instance status state
*** OpenVPN: added options to specify an IP address pool for dynamic assignment to clients
*** SMPP: added brute-force prevention
*** SMPP: added TLS/SSL support
*** SMS Utilities: added security warning in "Authorization method" configuration
*** SNMP: changed interface module OID structure
*** SNMP: improved User-based Security Model (USM) brute force attack prevention measures
*** Stunnel: improved global instance settings dependencies
*** emailrelay: updated version to 2.4.1
*** OpenVPN: updated version to 2.6.9
*** stunnel: updated version to 5.72
** <b>System</b>
*** Access Control: added certificate key length warnings
*** Access Control: adjusted access control when all pages are blocked
*** Access Control: added certificate file download for CLI to work on all browsers
*** API Core: implemented functionality to include warning messages for vulnerable certificates
*** Boot: improved modem startup reliability
*** Package Manager: added multi package actions
*** Package Manager: added status filter
*** Package Manager: moved package upload action to main page
*** Package Manager: added links to installed packages pages
*** Package Manager: refactored "Packages" page
*** Package Manager: updated opkg repository link to use https
*** RutOS: improved GPL example page to align with new software architecture
*** Troubleshoot: refactored Modem debug section to display responses in single field, added clear button to remove received responses
*** Troubleshoot: added support for multiple syslog servers
*** UI Core: added additional message with IP address to loading screen for scenarios when redirect to different IP address happens
*** UI Core: added toast message hiding when text is too long
*** Update Firmware: added 'Firmware version' data in screen after firmware upload
*** WebUI: added functionality to cancel loading screen if it takes 30 or more seconds
*** WebUI: removed all ubus method calls from webui
*** WebUI: improved language caching
*** WebUI: added password generator for first login modal
*** WebUI: added sticky position to side menu
*** WebUI: added default password hint to login error message
*** WebUI: added warning messages for low-security certificates
*** Kernel: updated version to 5.4.276
*** libexpat: updated version to 2.6.2
*** SSL/TLS: updated version to 3.0.14
*** vue: updated version to 3.4
* <b>Fix</b>
** <b>Network</b>
*** Channel Analysis: fixed network list not being updated if a single scan fails
*** Devices: fixed missing API devices status endpoint permission
*** DHCP: fixed "DHCP option" allow empty input value
*** DHCP: fixed IPv4 leases being not correctly shown when NTP synchronizes time
*** DHCP: fixed DHCP error that occurred after changing the subnet of the LAN IP address in the setup wizard
*** Dynamic routes: fixed duplicated external routes cards
*** Firewall: fixed firewall zone validation when adding interfaces
*** Mobile: fixed low signal reconnect being available on modems where it is not supported
*** Mobile: fixed gsmctl -E output to return only json values
*** Mobile: fixed Carrier Aggregation signal strength info
*** Mobile: fixed wrong mobile data limit used data format for sms messages
*** Mobile: fixed duplicate data connection event reporting
*** Mobile: fixed an issue where low signal notifications were displayed without a SIM card
*** Mobile: fixed modem serial number acquisition after modem reboot
*** Mobile: fixed an issue when 4G-only network type selection may have resulted in a slower connection to the operator
*** Mobile: fixed issue where USSD responses were returned in HEX format instead of text format for EC200A module
*** Mobile: fixed issue where DHCP filter was not set correctly for RG501Q
*** Mobile: fixed an issue where the wrong IP address was used after a DFOTA upgrade
*** Multi AP: fixed Multi AP not working with fast roaming
*** Multi AP: fixed switching to Multi AP mode fails due to encryption
*** Multi AP: fixed Multi AP configuration being deleted when switching mode on the same radio device
*** Network: fixed overriding MAC address for interfaces that are bridged
*** Realtime Traffic: fixed mobile usage by week day translation by device language
*** RelayD: fixed API error when "network" and "lan_mark" options are not present in a PUT request
*** SQM: fixed missing PPP mobile device selection in SQM configuration
*** Wireless: fixed wireless scan results sometimes not being returned
*** Wireless: fixed wireless status page not updating wireless SSID status after page is opened
*** Wireless: removed the ability to have different countries in radio configurations
*** Wireless: fixed interface delete when it's unassigned from the wireless interface in access point mode
*** Wireless: fixed backticks for WiFi SSID are not allowed in WebUI
** <b>Services</b>
*** BACnet: fixed incorrect BACnet IP port used for sending responses
*** BGP: fixed route map sequence going out of range
*** BGP: fixed listen range field allowing multiple entries
*** Call Utilities: fixed table header switch to be disabled if no rules were created
*** DLMS: fixed DLMS test response format
*** DLMS: fixed COSEM group validation
*** DLMS: fixed API POST error for /dlms/devices/config endpoint
*** DLMS: fixed serial connection not working after reboot
*** DNP3 Client: fixed to allow reading objects past 255 index
*** DNP3 Client: fixed incorrect hints
*** DNP3 Outstation: fixed serial outstation starting issues
*** Hotspot: fixed uploading more than one custom theme
*** Hotspot: fixed creating Hotspot to SSID that is disabled
*** Hotspot 2.0: fixed Venue name and Operator's name field validations
*** I/O Juggler: fixed improper dout action config handling
*** I/O Juggler: updated profile change action
*** Input/Output: allow unselecting all Post/Get access methods
*** IPsec: fixed connectivity issues when using WAN failover
*** IPsec: fixed the instance status when the local firewall option is disabled
*** Ledman: fixed issue when after some time network type LED starts blinking
*** Modbus Client: fixed test request option validation
*** Modbus Client: fixed alarm output action display values
*** Modbus Client: fixed incorrect period hint
*** Modbus Server: fixed APN register not clearing APN
*** Modbus Server: fixed 148 and 164 modbus registers
*** Modbus Server: fixed incorrect hints
*** OPC UA Server: fixed not starting while modem is down
*** OpenVPN: fixed displaying imported files from device
*** OpenVPN: fixed the private key decryption for cases when a password is used
*** OpenVPN: fixed data cipher migration
*** SMPP: fixed username bypass problem
*** SMPP: fixed password validation
*** SMS Gateway: fixed SMS to Email recipient formatting according to RFC5322
*** SNMP: fixed GSM mSignal OID value type
*** SNMP: fixed GSM module memory leaks
*** SSTP: fixed functionality when the default route option is not enabled
*** Web Filter: fixed whitelist not working for some hosts when using IPv6
** <b>System</b>
*** Administration: fixed repeated validation on cleared inputs and added validation when new password matches the old one
*** API Core: fixed API method validation during upload action
*** API Core: fixed error messages for POST method
*** API Core: fixed option list validation
*** Boot: fixed factory settings restore (firstboot) not deleting hidden files
*** Events Log: fixed refresh button in event log table
*** IP Block: fixed adding MAC addresses back to whitelist when unblocking all of them
*** Recipients: made phone number field required
*** Setup Wizard: fixed lan ip step not changing ip address
*** Troubleshoot: fixed system log and kernel log buttons to be enabled with read only rights
*** Update Firmware: fixed misleading "Firmware version" status of "N/A" to "FOTA service is disabled" when FOTA is disabled
*** Update Firmware: fixed issue when infinite spinner appears after updating device firmware from server without having internet connection
* <b>CVE Patches</b>
** Patched CVE-2023-52425
** Patched CVE-2023-52530
** Patched CVE-2024-25629
** Patched CVE-2024-28757
----
===<b><span class="plainlinks">[https://firmware.teltonika-networks.com/7.7.3/RUT36X/RUT36X_R_00.07.07.3_WEBUI.bin RUT36X_R_00.07.07.3]</span></b> | 2024.06.25===
* <b>Fix</b>
** <b>Network</b>
*** WebUI: fixed port advertisement change
** <b>System</b>
*** FOTA: fixed config when upgrading from older firmware with keep settings
* <b>CVE Patches</b>
** CVE-2024-31950
** CVE-2024-31951
----
===<b><span class="plainlinks">[https://firmware.teltonika-networks.com/7.7.2/RUT36X/RUT30X_R_00.07.07.2_WEBUI.bin RUT36X_R_00.07.07.2]</span></b> | 2024.06.12===
* <b>Improvements</b>
** <b>Network</b>
*** Zerotier: added backup WAN interface blacklisting if WAN failover is enabled
*** Mobile: improved communication stability with eSIM
** <b>Services</b>
*** SNMP: added bruteforce attack prevention when using SNMP v3 user
*** L2TP: improved reconnect attempt logic
*** Wireless: removed unnecessary information from system logs
** <b>System</b>
*** SSH: removed weak SSH algorithms
*** Telnet: moved to Package Manager
* <b>Fix</b>
** <b>Network</b>
*** BGP: fixed instance migration issues
*** Mobile: fixed forced APN configuration
** <b>Services</b>
*** DMVPN: fixed duplicate NHRP map entries creation
*** OpenVPN: added fixes for the insecure tls-cert-profile option usage
** <b>System</b>
*** IP Block: fixed blocking of UDP traffic
*** Ledman: fixed WiFi LED indication when WiFi configuration is changed
*** Uboot: fixed firmware recovery update via uboot on Windows
* <b>CVE Patches</b>
** CVE-2024-31948
----
===<b><span class="plainlinks">[https://firmware.teltonika-networks.com/7.7.1/RUT36X/RUT36X_R_00.07.07.1_WEBUI.bin RUT36X_R_00.07.07.1]</span></b> | 2024.05.03===
===<b><span class="plainlinks">[https://firmware.teltonika-networks.com/7.7.1/RUT36X/RUT36X_R_00.07.07.1_WEBUI.bin RUT36X_R_00.07.07.1]</span></b> | 2024.05.03===
----
* <b>New</b>
* <b>New</b>
** <b>Network</b>
** <b>Network</b>
Line 172: Line 1,158:
** CVE-2024-27913
** CVE-2024-27913
** CVE-2024-22365
** CVE-2024-22365
----
===<b><span class="plainlinks">[https://firmware.teltonika-networks.com/7.6.10/RUT36X/RUT36X_R_00.07.06.10_WEBUI.bin RUT36X_R_00.07.06.10]</span></b> | 2024.04.04===
===<b><span class="plainlinks">[https://firmware.teltonika-networks.com/7.6.10/RUT36X/RUT36X_R_00.07.06.10_WEBUI.bin RUT36X_R_00.07.06.10]</span></b> | 2024.04.04===
* <b>Fix</b>
** <b>System</b>
*** Ledman: fixed memory leak
----
----
* Global changelog for <b>R_00.07.06.10</b> - [[Global RUTOS changelog#R_00.07.06.10|LINK]]
===<b>RUT36X_R_00.07.06.8</b> | 2024.03.25===
===<b>RUT36X_R_00.07.06.8</b> | 2024.03.25===
<b>Note:</b> Firmware <b>R_00.07.06.8</b> was removed due to an issue with inefficient memory allocation for LED control.
* <b>Improvements</b>
** <b>Services</b>
*** IPSec: disabled libgmp in favor of openssl
*** IPSec: updated Strongswan to 5.9.6
* <b>Fix</b>
** <b>Services</b>
*** IPSec: increased charon load timeout
*** IPSec: fixed loading of large private keys
----
----
* Firmware <b>R_00.07.06.8</b> was removed due to an issue with inefficient memory allocation for LED control.
===<b><span class="plainlinks">[https://firmware.teltonika-networks.com/7.6.6/RUT36X/RUT36X_R_00.07.06.6_WEBUI.bin RUT36X_R_00.07.06.6]</span></b> | 2024.03.04===
===<b><span class="plainlinks">[https://firmware.teltonika-networks.com/7.6.6/RUT36X/RUT36X_R_00.07.06.6_WEBUI.bin RUT36X_R_00.07.06.6]</span></b> | 2024.03.04===
* <b>New</b>
** <b>Services</b>
*** Added domain and subdomain options for external landing page in Hotspot
* <b>Improvements</b>
** <b>System</b>
*** Minified *.svg WebUI files to save space on the device
*** Removed unused easy-rsa package to increase free space
* <b>Fix</b>
** <b>Network</b>
*** Fixed mobile daily data usage representation
*** Fixed the issue with Wireless bgscan functionality not operating correctly
----
----
* Global changelog for <b>R_00.07.06.6</b> - [[Global RUTOS changelog#R_00.07.06.6|LINK]]
===<b><span class="plainlinks">[https://firmware.teltonika-networks.com/7.6.5/RUT36X/RUT36X_R_00.07.06.5_WEBUI.bin RUT36X_R_00.07.06.5]</span></b> | 2024.02.21===
===<b><span class="plainlinks">[https://firmware.teltonika-networks.com/7.6.5/RUT36X/RUT36X_R_00.07.06.5_WEBUI.bin RUT36X_R_00.07.06.5]</span></b> | 2024.02.21===
* <b>New</b>
** <b>Network</b>
*** Added support for multi line USSD
* <b>Improvements</b>
** <b>Network</b>
*** Improved DMZ to use its source zone on port forwards creation
** <b>System</b>
*** Updated netifd version to 2024-01-04
*** Updated PPP package version to 2.4.9
*** Updated E2fsprogs package version to 1.47.0
*** Updated Musl package version to 1.2.4
* <b>Fix</b>
** <b>Network</b>
*** Fixed an issue where DNS resolution failed for wireless clients connected to an access point configured on a specific VLAN
** <b>WebUI</b>
*** Fixed action descriptions in the traffic rules table
** <b>System</b>
*** Fixed WiFi LED indication when access point is turned off
*** Fixed year 2038 problem with time counter overflow
----
----
* Global changelog for <b>R_00.07.06.5</b> - [[Global RUTOS changelog#R_00.07.06.5|LINK]]
===<b><span class="plainlinks">[https://firmware.teltonika-networks.com/7.6.3/RUT36X/RUT36X_R_00.07.06.3_WEBUI.bin RUT36X_R_00.07.06.3]</span></b> | 2024.01.17===
===<b><span class="plainlinks">[https://firmware.teltonika-networks.com/7.6.3/RUT36X/RUT36X_R_00.07.06.3_WEBUI.bin RUT36X_R_00.07.06.3]</span></b> | 2024.01.17===
* <b>Improvements</b>
** <b>Services</b>
*** Increased DLMS Client connection timeout for TCP sockets
* <b>Fix</b>
** <b>Services</b>
*** Fixed DLMS Client memory leak with profile generic COSEM class
** <b>WebUI</b>
*** Fixed Events Log sorting and search features
** <b>System</b>
*** Patched CVE-2024-0193 vulnerability
*** Patched CVE-2023-51779 vulnerability
*** Updated OpenSSH to 9.6p1 version, fixed CVE-2023-51385 and CVE-2023-51384
*** Fixed profile migrations, added error handling when trying to change profile while it is still applying
----
----
* Global changelog for <b>R_00.07.06.3</b> - [[Global RUTOS changelog#R_00.07.06.3|LINK]]
===<b><span class="plainlinks">[https://firmware.teltonika-networks.com/7.6.1/RUT36X/RUT36X_R_00.07.06.1_WEBUI.bin RUT36X_R_00.07.06.1]</span></b> | 2024.01.04===
===<b><span class="plainlinks">[https://firmware.teltonika-networks.com/7.6.1/RUT36X/RUT36X_R_00.07.06.1_WEBUI.bin RUT36X_R_00.07.06.1]</span></b> | 2024.01.04===
   
   
Line 609: Line 1,647:
*** Patched CVE-2023-29469 vulnerability
*** Patched CVE-2023-29469 vulnerability
*** Patched CVE-2023-31490 vulnerability
*** Patched CVE-2023-31490 vulnerability
*** Patched CVE-2023-36369 vulnerability
*** Patched CVE-2021-36369 vulnerability
*** Patched CVE-2023-48174 vulnerability
*** Patched CVE-2023-48174 vulnerability
*** Delayed Custom Scripts execution on boot, after storage devices are mounted
*** Delayed Custom Scripts execution on boot, after storage devices are mounted
Retrieved from "https://wiki.teltonika-networks.com/view/RUT360_Firmware_Downloads"