RUTC50 Firmware Downloads

From Teltonika Networks Wiki
Main Page > RUTC Routers > RUTC50 > RUTC50 Firmware Downloads

This page contains firmware files for RUTC50 devices. Look to the table below or the changelog to find download links.

To upgrade firmware using WebUI, follow the instructions in RUTC50 Firmware.

RUTC50

File Type Release date Size MD5 Changelog
RUTC_R_00.07.11.3_WEBUI.bin Latest FW 2024.12.17 22.5 MB 0fa880457a1c83cec4683ee7356c9267 Link
RUTC_R_00.07.10.2_WEBUI.bin Mass production FW 2024.11.04 21.88 MB 31665c1174820d9c803f2ee87392f0ee Link
RUTC_R_SDK_00.07.11.3.tar.gz SDK 2024.12.17 60.34 MB 5166725ac5436808b1980fca5dae39b2


Note: packages for Package Manager are independent from firmware and can be downloaded in the Package Downloads page.


FW checksums


Checksums for firmware files can be found here.

Changelog

RUTC_R_00.07.11.2 | 2024.12.09

  • Fix
    • Services
      • IPsec: fixed loading connections using AEAD algorithms
      • IPsec: fixed connection status display
      • IPsec: fixed Local source IP option
      • IPsec: fixed issue with multiple global secrets of same type
      • OpenVPN: fixed the certificate file selection issue in the server configuration

RUTC_R_00.07.11.1 | 2024.12.02

  • New
    • System
      • Update Firmware: added support for new image format
  • Fix
    • Services
      • Hotspot: fixed limits not working for "MAC authentication", "Single sign-on" and "SMS OTP" modes
      • Ledman: fixed issue when network type LEDs are blinking when data connection is established
      • Tailscale: fixed the segmentation fault that occurred after installing the package

RUTC_R_00.07.11 | 2024.11.25

  • New
    • Network
      • Firewall: added "IPsec software flow offload" feature
      • NAT64: added NAT64 WebUI configuration support
    • Services
      • Data to Server: added LUA format support
      • DLMS: added option to configure which COSEM class attributes to read from the meter
      • GPS: added NMEA to serial functionality
      • Impulse Counter: added feature
      • Wireguard: added QR code configuration generator
    • System
      • Administration: added capability of displaying a configurable banner before login
      • Password Policy: added ability to modify the password policy
      • System Users: added sensitive option toggle for user groups
  • Improvements
    • Network
      • Firewall: added TCPMSS action to traffic rules
      • Mobile: improved mobile connection checking according to serving cell connection
      • Mobile: improved manual operator selection logic to prevent unintended operator changes
      • Mobile: added 'telenor.smart' APN for 'Telenor' operator to APN database
      • Mobile: added 'telenor.fwa' APN for 'Telenor' operator to APN database
      • Mobile: removed 'internet.ventelo.no' APN for 'Telenor' operator from APN database
      • Mobile: removed 'telenor' APN for 'Telenor' operator from APN database
      • Mobile: standardized operator names on the APN database
      • Multi AP: improved switching time between APs
      • RelayD: added ability to configure multiple Relayd configurations
      • Topology: added sorting functionality for "IP address" and "MAC address" table columns
      • Wireless: changed radio status to show channel frequency in MHz instead of GHz
    • Services
      • Data to Server: added scheduler support
      • DLMS: added default values for table name columns
      • Hotspot: added MAC authentication option for SMS OTP authentication mode
      • Hotspot: added DOH and DOT addresses to default blocklist
      • IPsec: updated 'Custom option' field validation
      • IPsec: migrated to swanctl
      • Modbus Client: added phone group selection
      • Modbus Client: added email alarm action
      • OPC UA Client: changed validation, allowing to add certificates when channel encryption is not used
      • OpenVPN: improved WebUI page for creating and modifying instances
      • OpenVPN: added custom configuration file parsing
      • OpenVPN: added option to configure virtual addressing topology and support for TLS clients
      • OpenVPN: added 'adaptive' selection for the LZO parameter
      • OpenVPN: added support for multiple remote network values
      • OpenVPN: improved the selection of allowed data ciphers in the WebUI
      • OpenVPN: improved private key decryption
      • OpenVPN: removed dependency on the protocol value for configuring tunnel IPv6 addresses
      • OpenVPN: added the possibility to use multiple remote host/IP address values
      • OpenVPN: added support for exporting configuration
      • Mosquitto: updated version to 2.0.20
    • System
      • Access Control: added ability to bind HTTP and HTTPS to specific IPs and ports
      • Events Log: improved event log messages format
      • Logging: added a log ID to each log entry for easier tracking and identification
      • Security: enabled ASLR and PIE security hardening features for improved memory protection
      • Setup Wizard: added SIM card and modem statuses in Mobile page
      • WebUI: updated design of tables
      • Kernel: updated version to 5.15.167
      • libffi: updated version to 3.4.6
      • readline: updated version to 8.2
  • Fix
    • Network
      • Mobile: fixed duplicate of "wap66" APN for "SFR" operator in APN database
      • Mobile: fixed duplicate of "wap68" APN for "SFR" operator in APN database
      • Mobile: fixed duplicate of "internet" APN for "TDC" operator in APN database
      • Mobile: fixed duplicate of "orangeweb" APN for "Orange" operator in APN database
      • Mobile: fixed duplicate of "wap.digicelbvi.com" APN for "Digicel" operator in APN database
      • Mobile: fixed duplicate of "wap.digicelha.com" APN for "Digicel" operator in APN database
      • Mobile: fixed duplicate of "indosatgprs" APN for "Indostat" operator in APN database
      • Mobile: fixed duplicate of "3gprs" APN for "3" operator in APN database
      • Mobile: fixed duplicate of "VZWINTERNET" APN for "Verizon" operator in APN database
      • Mobile: fixed duplicate of "soracom.io" APN for "FL1" operator in APN database
      • Mobile: fixed the USSD message when the network is not responding
      • Mobile: fixed serving cell band and bandwidth information
      • Mobile: removed voice features for EC25-AFFD module
      • Network: fixed duplicate of "pps" APN for "Zain KW" operator in APN database
      • Network: fixed MTU get from API
      • Static Routes: fixed IPv6 route target validation to accept IPv6 subnet
      • Wireless: fixed emitting VHT160 capabilities if channel width is less than 160 MHz
      • Wireless: fixed wireless not being reloaded after its interface's physical device was changed
    • Services
      • Bluetooth: fixed service crash when trying to unpair devices
      • DLMS: fixed name validation when adding physical devices
      • GPS: fixed NMEA Sentences table search
      • Hotspot: fixed Hotspot themes installation without first installing Hotspot package
      • IPsec: fixed incorrect status display when multiple instances are configured
      • IPsec: fixed flushing of connection tracking table when compatibility mode is used
      • L2TP: fixed disappearing default route when using mobile interface as the default WAN
      • Ledman: fixed the LED animation during factory reset
      • Mobile Utilities: fixed password validation when enabling SMS rule
      • Modbus Client: fixed rpc crash when calling serial.test method
      • Modbus Server: fixed firewall rule creation
      • Python3: fixed out-of-tree package compilation issue with the SDK
      • SMS Gateway: fixed long HTTP URL formatting in SMS Forwarding to HTTP
      • SMS Utilities: fixed sending messages to short numbers
      • Zerotier: fixed saving configuration when LAN interface has no associated physical interface
    • System
      • Access Control: fixed unauthorized errors on interface endpoints
      • Access Control: fixed IP Block configuration when upgrading from previous firmware versions
      • Package Manager: fixed VXLAN package not having link to configuration page
      • Package Manager: fixed restoring packages after firmware upgrade
      • Troubleshoot: fixed scenarios where TCPdump field was not displayed
      • WebUI: fixed issue when sometimes hidden sections with created instances were not displayed
  • CVE Patches
    • CVE-2021-38291
    • CVE-2024-6232
    • CVE-2024-44070
    • CVE-2024-44997

RUTC_R_00.07.10.2 | 2024.11.04

  • New
    • Network
      • Mobile: added "kajeet.gw12.vzwentp" APN for "Verizon" operator to APN database
      • Mobile: added "V5GA01INTERNET" APN for "Verizon" operator to APN database
      • Mobile: added "kajeet.fw5g.vzwentp" APN for "Verizon" operator to APN database
      • Mobile: added "iot.kajeet" APN for "T-Mobile" operator to APN database
      • Mobile: added "iot.tmowholesale.static" APN for "T-Mobile" operator to APN database
      • Mobile: added "iot.tmowholesale" APN for "T-Mobile" operator to APN database
      • Mobile: added "sentinel01.com.attz" APN for "AT&T" operator to APN database
      • Mobile: added "sentinelent01.com.attz" APN for "AT&T" operator to APN database
      • Mobile: added "sentinelnb01.com.attz" APN for "AT&T" operator to APN database
      • Mobile: added "213x.sentinel01.com.attz" APN for "AT&T" operator to APN database
      • Mobile: added "213x.sentinelent01.com.attz" APN for "AT&T" operator to APN database
      • Mobile: added "sentinel-static.mcs" APN for "AT&T" operator to APN database
      • Mobile: added "uscc05016.enterprise3.usc-cdp" APN for "US Cellular" operator to APN database
      • Mobile: added "uscc07009.enterprise3.usc-cdp" APN for "US Cellular" operator to APN database
      • Mobile: added "sentinel.crs.bell.ca.ioe" APN for "Bell Mobility" operator to APN database
      • Mobile: added "kajeet.crs.bell.ca.ioe" APN for "Bell Mobility" operator to APN database
      • Mobile: added "sentinel.apn" APN for "Rogers" operator to APN database
      • Mobile: added "sentinel.vf" APN for "Vodafone" operator to APN database
      • Mobile: added "sentinel.lpwa.vf" APN for "LPWA" operator to APN database
  • Improvements
    • Network
      • Mobile: improved carrier aggregation signal value parsing
  • Fix
    • Network
      • Firewall: fixed bug in NAT rule migration script that would overwrite Port Forwarding rule options
      • Mobile: fixed eSIM profile loading from servers with unusual response

RUTC_R_00.07.10 | 2024.10.10

  • New
    • Network
      • Mobile: added ability to export modem debug and USSD responses to CSV file
      • Mobile: added "hologram" APN for "Hologram" operator
      • Mobile: added "wbdata" APN for "Granite" operator
      • Mobile: added "netw.vp" and "netw2.vp" APNs for "Networth" operator to APN database
      • NAT64: added "jool" package for NAT64 support
    • Services
      • AWS IoT Core: added service
      • BACnet: added ability to configure several BIP interfaces, to set network numbers and preconfigure BDT entries for BBMD
      • Console: added service status information display
      • DLMS: added service status information display
      • DNP3 Client: added service status information display
      • DNP3 Outstation: added service status information display
      • GPS: added service status information display
      • Modbus Client: added service status information display
      • Modbus Server: added service status information display
      • Modbus TCP over Serial Gateway: added service status information display
      • Modem Control: added service status information display
      • MQTT Modbus Gateway: added service status information display
      • NTRIP: added service status information display
      • OPC UA Client: added service status information display
      • OPC UA Server: added variable "rut_wan_type" which shows if WAN is on a wired or a mobile network
      • OPC UA Server: added service status information display
      • RMS: added SOCKS5 proxy support
    • System
      • Certificates: added SCEP certificate generation method
  • Improvements
    • Network
      • Curl: added unix socket support
      • Firewall: added most options to basic mode for all firewall pages
      • Firewall: added all firewall pages to basic mode
      • Interfaces: increased interface metric maximum value from 10000 to 4294967295
      • Mobile: added "flolive.net" APN for "Telecom Italia", "Telefonica O2" and "Telefonica Movistar" operators to APN database
      • Mobile: changed the default APN for IMS protocol from "VZWIMS" to "IMS" for "Verizon" operator
      • Mobile: fixed an issue where the ICCID was not returned correctly when the SIM card's ICCID ended with letters
      • Mobile: improved 5G NSA CA information display
      • Mobile: improved SIM and eSIM management via LPAC service
      • Multi WAN: added rules table to basic mode
      • Network: improved performance under stateless single-directional traffic (RFC2544)
      • Network: improved throughput stability of "Hardware flow offloading"
      • Static Routes: added page to basic mode
      • VRRP: added page to basic mode
      • Wireless: added interface status message when DFS CAC is in progress
      • Wireless: added most options to basic mode
      • Wireless: added SSID creation and deletion to basic mode
      • Wireless: moved Travelmate from Package Manager to base Firmware
    • Services
      • DLMS: added meter COSEM object scanning
      • DNP3 Client: made menu names more consistent
      • Hotspot: added "Coova-Chilli-SSID" (28) Vendor Specific Attribute for Radius
      • IPsec: improved 'Remote endpoint' validation to allow '%any', '%any4', '%any6' values and netmask
      • IPsec: added ability to use certificates from Certificate Manager
      • L2TPv3: added Tunnel ID and Session ID validation to avoid creating multiple tunnels with the same parameters
      • Modbus Client: updated Modbus Client menu position
      • Modbus Server: updated Modbus Server menu position
      • Python3: changed python3-light package libraries
      • SMS Utilities: added an option to enable or disable the return of status code message
      • Tailscale: improved status information by including health messages
      • Tinc: added options to set the tunnel's IP address
      • Tinc: added a port option to listen for incoming connections and the ability to specify a port for outgoing connections
      • Wireguard: added tunnel source mode selection
      • Kernel: updated version to 5.15.165
      • Python3: updated version to 3.11.7
      • Strongswan: updated version to 5.9.14
      • Tailscale: updated version to 1.70.0
    • System
      • Access Control: refactored 'General', 'Security' and 'PAM' Web pages
      • Auto Reboot: added support for multiple hosts/URLs in Ping/Wget Reboot
      • Backup: encrypting backup does not require 7zip package anymore
      • Certificates: split "Let's Encrypt" certificates into multiple files
      • Troubleshoot: added dynamic routes debugging information
      • WebUI: added ability to open new page in new tab without entering user credentials
      • WebUI: improved SDK example application
      • Glib2: updated version to 2.80.5
      • Ncurses: updated version to 6.5
  • Fix
    • Network
      • Firewall: fixed automatic priority option change
      • Mobile: fixed hang up of QMI WDS service
      • Mobile: fixed QMI errors when multi APN is configured
      • Mobile: fixed typo in "m2m.airinternet.eu" APN for "Airinternet" operator in APN database
      • Network: fixed MTU change of WAN interface
      • Network: fixed mobile Bridge/Passthrough mode not working after changing LAN interface settings
      • Wireless: fixed BSSID show for interface in Client mode
      • Wireless: fixed hostapd ubus call timeout after wireless configuration change
      • Wireless: fixed reporting disconnection from external AP when device in STA+AP mode
      • Wireless: fixed missing rx frame types needed for wifi scanner
    • Services
      • BACnet: fixed communication issues between the ports
      • BACnet: added all available default baud rates
      • BGP: fixed AS field to allow duplicate values
      • BGP: fixed Access list filters not applying fully
      • DLMS: added all available default baud rates
      • DMVPN: fixed DMVPN GRE instance disappearing when creating new IPsec instance
      • DNP3 Client: removed unnecessary max length display for test response field
      • DNP3 Client: renamed TCP Station to TCP Client in the API documentation
      • DNP3 Client: added all available default baud rates
      • DNP3 Outstation: added all available default baud rates
      • GPS: fixed NMEA collecting and cache file path validations
      • GPS: added validation for missing required AVL options
      • GPS: fixed an issue where a firmware update with keep settings would remove existing hosts
      • GPS: fixed HTTPS hostname validation
      • GRE: fixed interface not showing up in OSPF and RIP selections if it is off
      • Hotspot: fixed blocklist not working when no addresses are provided
      • Hotspot: fixed uploaded custom landing page file permissions
      • Hotspot: fixed certificates to be required to enable https redirect
      • IPsec: fixed IP rule not appearing after network restart
      • IPsec: fixed duplicate port values in IPsec firewall rules
      • Ledman: fixed issue when power LED turns off when rebooting device
      • Modbus Client: added all available default baud rates
      • Modbus Client: added missing API docs for Modbus test request
      • Modbus Server: added all available default baud rates
      • Modbus Server: fixed firewall rule staying enabled when app is disabled
      • Modbus Server: fixed firewall rule creation
      • Modem Control: added all available default baud rates
      • NTRIP: added all available default baud rates
      • OpenVPN: fixed the configuration after disabling the use of external services
      • OpenVPN: fixed OpenVPN restarting when mobile interface comes up
      • Over IP: added all available default baud rates
      • SNMP: fixed Hotspot OIDs' hssID and hssUsername display
      • Tinc: fixed adding routes to remote subnets
      • Tinc: fixed configuration generation issues when creating multiple network and host instances
      • Tinc: fixed issues with route creation when using IPv6 addresses in tunnel configuration
      • Tinc: fixed validation for uploading key files
    • System
      • Backup: fixed uploading backup with memory expansion enabled
      • CLI: fixed some private IPs being incorrectly determined as public
      • JSON-RPC: fixed login "Access Denied" error
      • Memory Expansion: fixed input element alignment issues
      • WebUI: added API required values validation when enabling BACnet, DLMS, DNP3, Modbus, MQTT, NTRIP services
      • WebUI: fixed 'Memory' status card progress bars visuals
      • WebUI: fixed search bar suggestions after removing packages
      • WebUI: fixed showing data in modals for users with only read permissions
      • WebUI: fixed custom SDK pages not loading correctly
  • CVE Patches
    • CVE-2021-3520
    • CVE-2021-44540
    • CVE-2021-44541
    • CVE-2024-4032
    • CVE-2024-6119
    • CVE-2024-6232
    • CVE-2024-6923
    • CVE-2024-7264
    • CVE-2024-42225

RUTC_R_00.07.09.4 | 2024.10.02

  • Improvements
    • Services
      • NTP Client: changed default NTP servers
  • Fix
    • Services
      • NTP Client: fixed NTP server usage to work with next in line server if current server does not respond

RUTC_R_00.07.09.3 | 2024.09.27

  • Fix
    • Network
      • Multi WAN: fixed ipsets not getting deleted correctly when Multi WAN gets restarted

RUTC_R_00.07.09.1 | 2024.09.13

  • Improvements
    • Services
      • Python3: updated version to 3.11.7
  • Fix
    • Network
      • Mobile: fixed eSIM profile config generation

RUTC_R_00.07.09 | 2024.09.03

  • New
    • Network
      • Devices: added VXLAN support
      • Firewall: added ability to configure NAT rule action
      • Firewall: added additional TTL target for firewall rules
      • Mobile: added "datamobile.ag" APN for "Datamobile.ag" operator to APN database
      • Mobile: added "m2m.ajrinternet.eu" APN for "Airinternet" operator to APN database
      • Mobile: added "wbdata" APN for "Webbing" operator to APN database
      • Mobile: added "inetd.vodafone.iot" APN for "Vodafone" operator to APN database
      • Mobile: added "asm" APN for "ASM" operator to APN database
      • Realtime Traffic: added historical traffic charts
      • Realtime Traffic: added overall quality measurement to wireless signal charts
      • Wireless: added option to enable 802.11w Management frame protection when using non-WPA3 encryption
    • Services
      • Docker: added Docker package support
      • Events Reporting: added new firmware version notification event
      • SNMP: added Multiwan data module
    • System
      • WebUI: added notifications menu
  • Improvements
    • Network
      • Mobile: improved network bring up after operator scan
      • Mobile: updated bands selection to include band number and frequency
      • Mobile: improved SIM card notifications to get removed when SIM card state or active SIM changes
      • Mobile: improved modem update notifications to show modem name
      • Mobile: removed the USSD feature from the data-only modems
      • Ports Settings: added more PoE state symbols, colored disabled port differently and improved port status hint
      • Realtime Traffic: improved chart styles
      • Wireless: increased EAP authentication logging
      • Wireless: added various validations for network that is being used by wireless interface
      • Wireless: added insecure configuration warnings when configuring SSIDs
      • Wireless: updated wireless cards to display each radio device's signal quality and band data
      • Wireless: reduced time required for Fast Transition in STA mode
    • Services
      • Call Utilities: added check if the number is blocked before doing action
      • Data to Server: added warning messages about insecure certificates for http_certfile and mqtt_certfile options in API and WebUI
      • DLMS: added SHA256 authentication
      • DLMS: improved COSEM group enable validation
      • GRE: reduced GRE keepalive packet buffer size
      • Hotspot: increased throughput performance
      • Hotspot: increased maximum length of 'Local users' username to 255 characters
      • Hotspot: added walled garden allowlist and blocklist
      • IPsec: added support for route based tunnel
      • L2TP: added field for custom options
      • SMPP: added timeout option
      • Web Filter: added hostname count message after successful file upload
    • System
      • Access Control: improved system user's access control rules logic
      • Access Control: added option to disable password auth for the root user
      • Administration: improved write/read access control options display to match meniu path style
      • Backup: improved backup page by splitting it into backup and reset settings page
      • Boot: added NAND image verification after firmware flash
      • Side Widget: added port status widget
      • Update Firmware: changed firmware update log to include firmware version
      • WebUI: updated firmware and backup verification pages design
      • WebUI: improved global alerts display
      • WebUI: added confirmation prompt for disabling service in side widget
      • Kernel: updated version to 5.15.162
  • Fix
    • Network
      • Devices: fixed configured VLAN 0 device cannot be selected in interface physical settings configuration
      • Mobile: fixed data limit widget to show used data for inactive interface
      • Mobile: fixed Bridge/Passthrough modes for routed networks
      • Mobile: fixed incorrect date values when setting SMS limit
      • Mobile: fixed SMS used data header counter
      • Mobile: fixed the issue where the PUK event was not displayed when the SIM PIN was blocked
      • Mobile: fixed uqmi start-network authentication issue
      • Mobile: fixed modem info not being filled on devices with more than one modem
      • Mobile: fixed mobile data limit to calculate correct used limits when using ipv4 and ipv6 simultaneously
      • Mobile: fixed USSD over IMS error handling
      • Mobile: fixed an issue where the interface could hang if the modem was busy
      • Network: fixed incorrect date values when setting data limit
      • RelayD: fixed relayd assigning wrong interface to zone
      • Wireless: fixed station mode connection issues for 2.4 GHz radio in STA+AP mode
      • Wireless: fixed wireless status API response to contain separate interface information for multiple radio configurations
    • Services
      • Azure IoT Hub: fixed the Azure IoT Hub deprecated endpoint to create Data to Server sections
      • Azure IoT Hub: fixed the Azure IoT Hub deprecated endpoint so that it does not create sections in GET request
      • Azure IoT Hub: fixed the deletion of Data to Server sections when an Azure IoT Hub section is deleted through the deprecated endpoint
      • DLMS: fixed OBIS code validation
      • GPS: fixed an issue where a firmware update with keep settings would remove existing hosts
      • GPS: fixed NMEA forwarding when RMC/GGA were not synchronized when using same interval
      • Hotspot: fixed 'Hotspot network' input validation to only allow network mask from 16 to 30
      • Input/Output: added I/O juggler reload when I/O pin direction is changed
      • OPC UA Client: fixed TCL file upload
      • OPC UA Server: fixed TCL file upload
      • OPC UA Server: fixed configuration migration
      • OpenVPN: fixed default firewall zone for tap interfaces
      • SNMP: fixed negative GPS latitude display
      • SNMP: fixed TELTONIKA-MIB wireless module crash
      • SNMP: fixed mobile network state display
      • SNMP: fixed default hssDwLimit, hssUpLimit, hssDwBandwidth and hssUpBandwidth values
    • System
      • API Core: fixed file deletion
      • Package Restore: fixed automatic package re-installation after firmware upgrade
      • Troubleshoot: fixed troubleshoot not including all the log files when log to flash is enabled
      • User Settings: fixed page to show groups and users if the user has been granted access
      • WebUI: fixed overview page to display active wireless (WLAN) clients
  • CVE Patches
    • CVE-2021-32292
    • CVE-2022-40617
    • CVE-2023-49441
    • CVE-2024-0397
    • CVE-2024-3596
    • CVE-2024-5535
    • CVE-2024-8088
    • CVE-2024-26669
    • CVE-2024-26739
    • CVE-2024-26740
    • CVE-2024-36901

RUTC_R_00.07.08.2 | 2024.08.12

  • Fix
    • System
      • Update Firmware: fixed inconsistent firmware download from FOTA

RUTC_R_00.07.08.1 | 2024.08.06

Note: This firmware version was removed due to an issue with FOTA firmware download.

  • Improvements
    • Network
      • Mobile: improved firmware downgrade validation for Quectel modules
    • Services
      • Zerotier: updated version to 1.14.0
  • Fix
    • Network
      • Mobile: fixed wrong bandwidth parsing on 5G devices
      • Mobile: fixed an issue where in some cases mobile network interfaces would not be brought down properly
      • Mobile: fixed memory fault while allowlist and denied data roaming enabled
      • Mobile: fixed illegal instruction fault on modem control services
      • Network: fixed default route not being added for PPPoE connections
    • Services
      • Modbus TCP over Serial Gateway: fixed serial connection not working after reboot
      • OPC UA Client: fixed connections not being closed after using testing functionality
    • System
      • WebUI: fixed SDK WebUI package compilation

RUTC_R_00.07.08 | 2024.07.18

Note: This firmware version was removed due to an issue with FOTA firmware download.

  • New
    • Network
      • 802.1X: added client support
      • DNS: added inherited server status to configuration page
      • HTTPS DNS Proxy: added new HTTPS DNS Proxy package to package manager
      • Mobile: added SIM card lock/unlock functionality in Mobile->Utilities page
      • Mobile: added SIM card PIN change functionality in Mobile->Utilities page
      • Mobile: added new Mobile->Limits page which shows information and allows to configure Data and SMS limits
      • Mobile: added DFOTA support for RG520N modems
      • Mobile: added nr-arfcn display to mobile status page
      • Mobile: added dfota support for devices with RG520N-EB modem
    • Services
      • Data to Server: added 'Lua script' data input
      • Hotspot: added Single Sign-on (OIDC) authentication mode
      • Hotspot: added Walled Garden blocklist functionality
      • Input/Output: added ability to configure gpio debounce timer and changed default gpio debounce timer value from 200 ms to 10 ms
      • IPsec: added initial XFRM support
      • MQTT Modbus Gateway: added JSON message type format
      • OpenVPN: added DCO support
    • System
      • API Core: added option to configure api session timeout
      • Certificates: added "Let's encrypt" certificate generation
      • PAM: added RADIUS external user support
      • UI Core: added data analytics support
      • Update Firmware: added warning message about device being temporarily unreachable on firmware update
  • Improvements
    • Network
      • Channel Analysis: added scan error message when a DFS channel and FCC country are selected
      • DNS: separated field "DNS forwardings" into two: one for simple server forwarding other for domain-specific
      • DNS: moved "DNS Forwardings", "Listen interfaces", "Exclude interfaces", "Local service only", options to advanced tab
      • Firewall: improved protocol field in all firewall pages by making that "All" value would be mutually exclusive with any other value
      • Mobile: improved IMS context initialization
      • Mobile: updated SMS memory management for multipart SMS
      • Mobile: added error message when attempting to enable the SIM switch without any criteria set
      • Mobile: added informative message in SIM switch page when Data/SMS limit criteria are enabled but the limits themselves are not set up
      • Mobile: moved operator list allowlist/blocklist selection to Network selection page
      • Mobile: refactored Scanned operators modal, added repeat scan button
      • Mobile: added ability to view previously scanned operators in Network selection and Operator lists pages
      • Mobile: added ability to edit operator list name and initiate scans for operators in Operator lists page
      • Mobile: updated operator code field list to include APNs from the APN database in Operator lists page
      • Mobile: split Mobile->General page into three pages: General, Connection and Utilities pages
      • Mobile: added mobile interface with highest priority APN configuration in Mobile->General page
      • Mobile: added icons with hints which show SIM card, operator, data connection statuses in Mobile->General page
      • Mobile: moved Mobile data limit section to a tab in WAN page
      • Mobile: added informative message in WAN page to indicate whether the connection will be made using APN from APN database, empty or custom APN
      • Mobile: improved logging of ping error messages
      • Mobile: added 5G SA/NSA mode selection
      • Mobile: improved modem updater to stop ping reboot service while update is in progress
      • Mobile: improved the handling of denied messages upon SIM switch
      • Mobile: added notification when a multi-IMSI SIM card is using Auto APN
      • Mobile: added validation to not allow passthrough and bridge mode when one already exists
      • Mobile: improved safeguards for modem services startup
      • Mobile: improved modem update status display
      • Mobile: added corrupted mobile statistics database restoration functionallity
      • Mobile: improved setting of IPv4 and IPv6 types inside the modules
      • Mobile: improved provider name parsing for SLM750 modem
      • Multi WAN: improved interface status representation when using load balancing
      • Network: added more options for "IPv6 assignment length" field
      • Wireless: added warning when user configures mesh on radio with automatic frequency channel
      • Wireless: added support for wireless MAC-filter MAC ranges
      • Wireless: changed Radius Accounting port is not required when configuring access point with enterprise encryption
      • Wireless: enabled ACS(automatic channel selection) for 5 GHz radios by default
      • Wireless: refactored radio configuration page layout
      • Wireless: refactored assignment of wireless interfaces MAC addresses, STA interface will always use fixed address
    • Services
      • Azure IoT Hub: added DPS symmetric key attestation support
      • Azure IoT Hub: added Direct Method support
      • Azure IoT Hub: added Plug and Play integration
      • Azure IoT Hub: added link to "Data to Server" page
      • Data to Server: added support for multiple filters
      • Data to Server: improved HTTP output hostname definition with automatic protocol specification in URL
      • Data to Server: improved MQTT input connection handling
      • DNP3 Client: added option to enable/disable service
      • GPS: added send empty feature, which sends zeroed location data after specified GNSS loss timeout
      • GRE: increased Inbound and Outbound key limit to 4294967295
      • Hotspot: adjusted hotspot user manager page to display active and inactive user sessions
      • Hotspot: changed local users to be stored with other types of users
      • Hotspot: added 'noc2c' option for enabling client isolation, option is enabled by default
      • Input/Output: added custom name support in I/O status page
      • IPsec: added certificate warning message
      • Mobile Utilities: added interface option to sms_utils cellular command
      • Mobile Utilities: improved error log message
      • Mobile Utilities: improved naming of I/O pins in initial I/O status rule
      • Mobile Utilities: sms utilities authentication brute force prevention
      • Modbus Server: added mobile last month and last week usage registers
      • Modem Control: disabled canonical mode by default for partial mode. Now full/partial mode input from serial port works the same way
      • Mosquitto: added large package size check for MQTT clients
      • MQTT Modbus Gateway: improved mosquitto reconnect time and service will try to recover few times before exiting
      • MQTT Publisher: improved MQTT connection handling
      • OPC UA Client: added security modes
      • OPC UA Server: added security modes
      • OPC UA Server: added service status display
      • OpenVPN: added support for decrypting private key when uploading a configuration file
      • OpenVPN: improved instance status state
      • OpenVPN: added options to specify an IP address pool for dynamic assignment to clients
      • Over IP: added label to show how many servers a client is connected to
      • Over IP: connect on data feature will not disconnect immediately after data transfer but wait for inactivity timeout
      • Over IP: increased TLS handshake timeout to 10 seconds
      • SMPP: added brute-force prevention
      • SMPP: added TLS/SSL support
      • SMS Utilities: added security warning in "Authorization method" configuration
      • SNMP: changed interface module OID structure
      • SNMP: improved User-based Security Model (USM) brute force attack prevention measures
      • Stunnel: improved global instance settings dependencies
      • emailrelay: updated version to 2.4.1
      • OpenVPN: updated version to 2.6.9
      • stunnel: updated version to 5.72
      • Tailscale: updated version to 1.68.1
    • System
      • Access Control: added certificate key length warnings
      • Access Control: adjusted access control when all pages are blocked
      • Access Control: added certificate file download for CLI to work on all browsers
      • API Core: implemented functionality to include warning messages for vulnerable certificates
      • Boot: improved modem startup reliability
      • Package Manager: added multi package actions
      • Package Manager: added status filter
      • Package Manager: moved package upload action to main page
      • Package Manager: added links to installed packages pages
      • Package Manager: refactored "Packages" page
      • Package Manager: updated opkg repository link to use https
      • RutOS: improved GPL example page to align with new software architecture
      • Troubleshoot: refactored Modem debug section to display responses in single field, added clear button to remove received responses
      • Troubleshoot: added support for multiple syslog servers
      • UI Core: added additional message with IP address to loading screen for scenarios when redirect to different IP address happens
      • UI Core: added toast message hiding when text is too long
      • Update Firmware: added 'Firmware version' data in screen after firmware upload
      • WebUI: added functionality to cancel loading screen if it takes 30 or more seconds
      • WebUI: removed all ubus method calls from webui
      • WebUI: improved language caching
      • WebUI: added password generator for first login modal
      • WebUI: added sticky position to side menu
      • WebUI: added default password hint to login error message
      • WebUI: added warning messages for low-security certificates
      • Kernel: updated version to 5.15.159
      • libexpat: updated version to 2.6.2
      • SSL/TLS: updated version to 3.0.14
      • vue: updated version to 3.4
  • Fix
    • Network
      • Channel Analysis: fixed network list not being updated if a single scan fails
      • Devices: fixed missing API devices status endpoint permission
      • DHCP: fixed "DHCP option" allow empty input value
      • DHCP: fixed IPv4 leases being not correctly shown when NTP synchronizes time
      • DHCP: fixed DHCP error that occurred after changing the subnet of the LAN IP address in the setup wizard
      • Dynamic routes: fixed duplicated external routes cards
      • Firewall: fixed firewall zone validation when adding interfaces
      • Mobile: fixed low signal reconnect being available on modems where it is not supported
      • Mobile: fixed gsmctl -E output to return only json values
      • Mobile: fixed Carrier Aggregation signal strength info
      • Mobile: fixed wrong mobile data limit used data format for sms messages
      • Mobile: fixed duplicate data connection event reporting
      • Mobile: fixed an issue where low signal notifications were displayed without a SIM card
      • Mobile: fixed modem serial number acquisition after modem reboot
      • Mobile: fixed an issue when 4G-only network type selection may have resulted in a slower connection to the operator
      • Mobile: fixed issue where USSD responses were returned in HEX format instead of text format for EC200A module
      • Mobile: fixed issue where DHCP filter was not set correctly for RG501Q
      • Mobile: fixed an issue where the wrong IP address was used after a DFOTA upgrade
      • Multi AP: fixed Multi AP not working with fast roaming
      • Multi AP: fixed switching to Multi AP mode fails due to encryption
      • Multi AP: fixed Multi AP configuration being deleted when switching mode on the same radio device
      • Network: fixed overriding MAC address for interfaces that are bridged
      • Realtime Traffic: fixed mobile usage by week day translation by device language
      • RelayD: fixed API error when "network" and "lan_mark" options are not present in a PUT request
      • SQM: fixed missing PPP mobile device selection in SQM configuration
      • Wireless: fixed wireless scan results sometimes not being returned
      • Wireless: fixed 5 GHz Wi-Fi scanning is prohibited when a DFS channel and ETSI regulatory domain is selected
      • Wireless: fixed Wi-Fi 5 GHz unsupported channel selection issue on specific widths
      • Wireless: fixed wireless status page not updating wireless SSID status after page is opened
      • Wireless: removed the ability to have different countries in radio configurations
      • Wireless: fixed interface delete when it's unassigned from the wireless interface in access point mode
      • Wireless: fixed backticks for WiFi SSID are not allowed in WebUI
    • Services
      • BACnet: fixed incorrect BACnet IP port used for sending responses
      • BGP: fixed route map sequence going out of range
      • BGP: fixed listen range field allowing multiple entries
      • Call Utilities: fixed table header switch to be disabled if no rules were created
      • DLMS: fixed DLMS test response format
      • DLMS: fixed COSEM group validation
      • DLMS: fixed API POST error for /dlms/devices/config endpoint
      • DLMS: fixed serial connection not working after reboot
      • DNP3 Client: fixed to allow reading objects past 255 index
      • DNP3 Client: fixed incorrect hints
      • DNP3 Outstation: fixed serial outstation starting issues
      • GPS: fixed GPS start constellations issue
      • GPS: fixed an issue where NMEA sentences were parsed incorrectly at midnight, resulting in a 24-hour time discrepancy
      • GPS: fixed gpsctl datetime parameter
      • GPS: fixed issue where DPO would not get disabled if GPS is started without DPO
      • GPS: fixed AVL TAVL rule signal value issue
      • GPS: fixed default AVL rule issue where I/O would be ignored by default
      • GPS: fixed BeiDou and QZSS seperation in PQGSV sentences
      • GPS: fixed NMEA sentences reading in NMEA collecting
      • Hotspot: fixed uploading more than one custom theme
      • Hotspot: fixed creating Hotspot to SSID that is disabled
      • Hotspot 2.0: fixed Venue name and Operator's name field validations
      • I/O Juggler: fixed improper dout action config handling
      • I/O Juggler: updated profile change action
      • Input/Output: allow unselecting all Post/Get access methods
      • IPsec: fixed connectivity issues when using WAN failover
      • IPsec: fixed the instance status when the local firewall option is disabled
      • Ledman: fixed issue when after some time network type LED starts blinking
      • Modbus Client: fixed test request option validation
      • Modbus Client: fixed alarm output action display values
      • Modbus Client: fixed incorrect period hint
      • Modbus Server: fixed APN register not clearing APN
      • Modbus Server: fixed 148 and 164 modbus registers
      • Modbus Server: fixed incorrect hints
      • Modem Control: fixed API POST request validation
      • NTRIP: fixed NTRIP NMEA generation timestamp and coordinates errors
      • NTRIP: fixed configuration reading with several instances added
      • OPC UA Server: fixed not starting while modem is down
      • OpenVPN: fixed displaying imported files from device
      • OpenVPN: fixed the private key decryption for cases when a password is used
      • OpenVPN: fixed data cipher migration
      • Over IP: fixed issue where serial device does not recover after modem reboot
      • Over IP: fixed connect on data initiating TCP connection after few data transfers
      • SMPP: fixed username bypass problem
      • SMPP: fixed password validation
      • SMS Gateway: fixed SMS to Email recipient formatting according to RFC5322
      • SNMP: fixed GSM mSignal OID value type
      • SNMP: fixed GSM module memory leaks
      • SSTP: fixed functionality when the default route option is not enabled
      • Web Filter: fixed whitelist not working for some hosts when using IPv6
    • System
      • Administration: fixed repeated validation on cleared inputs and added validation when new password matches the old one
      • API Core: fixed API method validation during upload action
      • API Core: fixed error messages for POST method
      • API Core: fixed option list validation
      • Boot: fixed factory settings restore (firstboot) not deleting hidden files
      • Events Log: fixed refresh button in event log table
      • IP Block: fixed adding MAC addresses back to whitelist when unblocking all of them
      • Memory Expansion: fixed enable validation
      • Recipients: made phone number field required
      • Setup Wizard: fixed lan ip step not changing ip address
      • Troubleshoot: fixed system log and kernel log buttons to be enabled with read only rights
      • Update Firmware: fixed misleading "Firmware version" status of "N/A" to "FOTA service is disabled" when FOTA is disabled
      • Update Firmware: fixed issue when infinite spinner appears after updating device firmware from server without having internet connection
  • CVE Patches
    • Patched CVE-2023-52425
    • Patched CVE-2023-52530
    • Patched CVE-2024-25629
    • Patched CVE-2024-28757

RUTC_R_00.07.07.3 | 2024.06.25

  • Fix
    • Network
      • WebUI: fixed port advertisement change
    • System
      • FOTA: fixed config when upgrading from older firmware with keep settings
  • CVE Patches
    • CVE-2024-31950
    • CVE-2024-31951

RUTC_R_00.07.07.1 | 2024.05.03

  • Initial firmware release