31,703
edits
Changes
no edit summary
| series = RUT36X
| series = RUT36X
<!-----------------------LATEST FW--------------------->
<!-----------------------LATEST FW--------------------->
| latest_fw = RUT30X_R_00.02.06
| latest_fw = RUT36X_R_00.07.00
| latest_date = 2020.12.31
| latest_date = 2021.07.16
| latest_md5 = 9f067d05265f45f60294694a20e785ce
| latest_md5 = b013936e58ac45c2a438876518d4b2b5
<!-----------------------FACTORY FW-------------------->
<!-----------------------FACTORY FW-------------------->
| factory_fw = RUT3_R_00.02.05.2
| factory_fw = RUT36X_R_00.02.06.1
| factory_date = 2020.11.19
| factory_date = 2021.02.10
| factory_md5 = c9e8ed0b1795b2c10009404cfc9f0a28
| factory_md5 = 2dbf55db5d35f00d19c39e5ccf7123ee
}}
}}
==Changelog==
==Changelog==
===<b>[[Media:RUT36X_R_00.02.06_WEBUI.bin|RUT36X_R_00.02.06]]</b> | 2020.12.31===
===<b>[[Media:RUT36X_R_00.07.00_WEBUI.bin|RUT36X_R_00.07.00]]</b> | 2021.07.16===
* New features:
* <b>New features</b>
** Operator Whitelist/Blacklist
** New WebUI based on Vue.js 2.6.12
** WPA3 WiFi encryption
** RutOS updated to OpenWrt 19.07.7 base
** DNP3 Master and DNP3 Oustation
** 'Restore to user's defaults' SMS Utilities rule
* Improvements:
* <b>Improvements</b>
** Updated base to OpenWrt 19.07.4
** Updated firewall to release 3
** Added Phone Groups as possible SMS recipients to SMS Post/Get
** Updated kernel to version 4.14.221
** Added PSK support for MQTT Broker/Publisher
** Updated uhttpd to version 2020-10-01
** Changed Output Scheduler structure
** Updated xtables-addons to release 9
** Removed limitation of one configuration per Input
** Updated mwan to version 2.8.14
** Added multiple modem support for TR-069
** Updated pcre to version 8.44
** Fixed parsing user uploaded custom OpenVPN configuration files containing carriage returns
** Updated curl to version 7.74
** Added iptables conntrack flush on WAN Failover if IPsec is enabled
** Updated sqlite to version 3.33
** Optimized package responsible for sending/receiving GRE Tunnel keepalive packets
** Updated ncurses to version 6.2
** Added extra error checking to Package Manager when downloading packages
** Updated OpenSSL to version 1.1.1k
** Added data usage info for both SIM cards to RMS
** Added full MODBUS register address expansion specifier for Data to Server
** Added logging to syslog when Ping/Wget Reboot "Action" is set to 'None'
** Added full MODBUS register address legend
** Improved display of configuration tables when a lot of information is shown
** Added Client ID option for the MQTT protocol in Data to Server
** Renamed MODBUS strings to uppercase
** Improved Data to Server sleeping accuracy
** Added redirect to configuration page after a new configuration is created with the 'Add' button
** Improved Data to Server username validation; now space is allowed
** Added option to create a Configuration Profile from current configuration
** Added firmware version OID to the SNMP service
** Added data validation to Profiles Scheduler fields
** Added IP address family option field to the SNMP page
** Replaced the Firewall 'Helpers' page with conntrack helper configuration for each firewall zone
** Added SNMPv6 section to the SNMP Communities page
** Increased dynamic list maximum amount of values to 50
** Renamed the 'System -> Users' page to 'System -> System Users'
** Added the possibility to save email accounts without entering email username and password
** Moved password changing option to the 'System -> System Users' page
** Unified device access password validations
** Switched to ar8216 driver
** Expanded DDNS validation for domain input to accept emails
** Added IPsec XAUTH support
** Added SMS Utilities rule to reset mobile data usage for specified interface
** Improved OpenVPN updown, init scripts to write info about instance in JSON
** Improved SMS Utilities VPN status rule to support custom configurations
** Added AES-256-GCM encryption support to OpenVPN
** Added SMS storage limit check after inserting a SIM card
** Added extra configuration parameters to DMVPN
** Changed modem name from primary to internal if device has only one built-in modem
** Added PSK conversion to DMVPN and single PSK types
** Improved SIM count check during init
** Improved Package Manager package installation, deletion and dependencies
** Added the possibility to ignore DFS channels when automatic channel selection is performed (for 5 GHz WiFi)
** Improved Package Manager download process over FOTA
** Removed unsecure WPA-PSK and WPA-EAP encryption support
** Added new Input/Output values manageable over RMS
** Improved Hotspot Landing page address validation to accept a trailing slash
** Added IPv6 traffic logging
** Made 'Network -> Failover' and 'Network -> Interfaces' page data draggable on multiple browsers
** Disable Wireless device & interface configurations when WiFi device is in 'pending' state
** Added Input/Output Post/Get URL parameter t_time changing delay and time to seconds or miliseconds
** Removed unused 'Expiration time' option in the Hotspot page
** Added message storage management by config value
** Improved QMI error handling and status tracking
** Turned on modem in preinit for correct power-on sequence
** Added Post/Get feature to turn mobile data on/off
** Added the possibility to use 2gonly/3gonly/4gonly arguments for cellular service command alongside current 2g/3g/lte arguments
** Added "Phone number" and "Message" fields for "Send SMS" option
** Added option to send SMS warning messages to Hotspot users authenticated with SMS OTP when specified amount of data is used up
** Added peer groups to BGP access list dropdown
** Added TCP MD5 authentication support for BGP
* Fixes:
* <b>Fixes</b>
** Fixed IPsec Passthrough subnet/ip value parsing to make it dynamic for leftsubnet
** Added glib2 patch to fix CVE-2019-13012 vulnerability
** Fixed occasions when error messages overlap buttons
** Added ntfs-3g patch to fix CVE-2019-9755 vulnerability
** Fixed I/O state saving after revert back to original state
** Added WolfSSL patch to fix CVE-2021-3336 vulnerability
** Fixed IPsec connection after reboot
** Added Busybox patch to fix CVE-2018-1000500 vulnerability
** Fixed bridged interface configuration for L2TPv3
** Added netifd, odhcp6c IPv6 routing loop on point-to-point links patches to fix CVE-2021-22161 vulnerability
** Removed trailing newlines in returned SNMP strings
** Fixed Android clients IPsec MTU/MSS size
** Fixed Events Reporting waiting to send email before rebooting
** Fixed wrong IPsec DPD value saving
** Fixed MQTT MODBUS Gateway not working when topics have special characters
** Changed IPsec PSK maximum length to 128 symbols
** Swapped pin3 and pin4 values in MQTT Publisher
** Fixed SSTP remaining up after package removal
** Added an 'IP4Table' option to advanced interface configuration
** Fixed DMVPN crypto_proposal write to config
** Fixed an issue where User Scripts were being deleted after device reboot
** Fixed I/O Juggler's SMS sending to correct group
** Fixed various WebUI validation bugs, typos, option hints & alignments
** Fixed I/O Scheduler's relay state issue
** Fixed a bug that caused an internal sever error after logging in with a username that contained special characters
** Added I/O direction check while changing IOs via I/O Post/Get
** Fixed crashes that occur after configuration files are not correctly generated
** Fixed float endianness mismatch on some devices MODBUS TCP Master, MODBUS Serial Master
** Fixed UPnP issue that caused config changes to apply only after service restart
** Fixed changing WebUI mode bug while current page is accessed with POST method
** Fixed WebUI files caching when upgrading firmware
** Fixed password allowed lengths and tooltips
** Fixed WebUI date display format
** Fixed mountpoint display
** Fixed MODBUS returning incomplete MAC address data
** Removed non-supported SMS Utilities rules
** Fixed depleting IPv6 RA timeout when the ISP doesn't send RA updates
** Fixed SMS sending to Phone Group on I/O event
** Added "Transaction timed out" error handling
** Changed device name in 'Status' message to configured name instead of the default one
** Fixed PPPOE connection loss when wrong session PADT packet arrives
** Added modem reinit after SIM card initialization failure
** Added gcont object tracking and info update if this service is restarted
** Fixed SMS Limit checking when messages exceed the set SMS limit
** Fixed default SMS storage
** Moved 2-8 PDP contexts to 9-16 the 2-8 are necessary for SIM card MIB APNs
** Fixed SMS warning sending after Mobile Data Limit change
** Changed mobile interface subnet to /32
** Fixed DHCP relaying over mobile networks
** Fixed modem SIM card checking
** Changed PIN code maximum length to 8 symbols
** Fixed multi SMS handling on SMS Limit
** Fixed 'I/O status' message to include correct Input/Output name based on info in ubus ioman objects
** Fixed Call Utilities multiple SMS sending per received call
** Fixed WiFi Hotspot's Walled Garden issues
** Fixed SMS storage limit check on device reboot
** Fixed WiFi Hotspot data logging issues
** Changed SNMP mSignal, mTemperature and numSatellities datatypes to correspond to devices' MIB files
** Fixed P2P group information processing vulnerability in wpa_supplicant
** Added validation to Walled Garden Address list field
===<b>[[Media:RUT3_R_00.02.05.2_WEBUI.bin|RUT3_R_00.02.05.2]]</b> | 2020.11.19===
===<b>[[Media:RUT36X_R_00.02.06.1_WEBUI.bin|RUT36X_R_00.02.06.1]]</b> | 2021.02.10===
* Fixes:
* <b>Fixes</b>
** Randomized the global rate limiter to mitigate "SAD DNS" attack
** Added dnsmasq patch CVE-2020-25681, CVE-2020-25682, CVE-2020-25683, CVE-2020-25684, CVE-2020-25685, CVE-2020-25686, CVE-2020-25687
** Fixed SSH reachable over SIM IP in early boot
** Fixed modem status after failed network scan
** Fixed mbncfg function and PIN check logic
** Fixed PPTP server interface naming
** Fixed correct client PPTP interface name selection for route creation
** Fixed adding helper to firewall's wan zone when enabling PPTP configuration
** Added package size checking when manually installing a package
** Fixed 'New Firmware Available' message display after firmware upgrade
===<b>[[Media:RUT3_R_00.02.05.1_WEBUI.bin|RUT3_R_00.02.05.1]]</b> | 2020.09.30 ===
===<b>[[Media:RUT36X_R_00.02.06_WEBUI.bin|RUT36X_R_00.02.06]]</b> | 2020.12.31===
* New features
* <b>New features</b>
** Initial RUT360 Firmware
** Initial RUT360 Firmware
