31,703
edits
Changes
no edit summary
| series = TRB2
| series = TRB2
<!-----------------------LATEST FW--------------------->
<!-----------------------LATEST FW--------------------->
| latest_fw = TRB2_R_00.07.01.4
| latest_fw = TRB2_R_00.07.02
| latest_date = 2022.02.25
| latest_date = 2022.05.10
| latest_md5 = 2fb6275489bb04833dcf02bc2c996d10
| latest_md5 = e327b33531e7586156f02c2d8c54d77c
<!-----------------------FACTORY FW-------------------->
<!-----------------------FACTORY FW-------------------->
| factory_fw = TRB2_R_00.07.01.2
| factory_fw = TRB2_R_00.07.01.2
==Changelog==
==Changelog==
===<b>[[Media:TRB2_R_00.07.02_WEBUI.bin|TRB2_R_00.07.02]]</b> | 2022.05.10===
* <b>New features</b>
** Overview side widget
** IGMP Proxy
** Privileged Access Management (PAM)
** AWS Greengrass support
** HTTPS certificate and key upload feature
** SSH public keys edit box
** License page
** WAN Failover
** DNP3 data for Data to Server
* <b>Improvements</b>
** Updated busybox to version: 1.34.1
** Updated curl to version 7.79.1
** Added iptables filter package for string filtering
** Added CHAP authentication for L2TP VPN
** Added IPv6 support for L2TPv3 VPN
** Added EAP-MSCHAPV2 authentication method for IPsec VPN
** Added IPv6 support to Auto Reboot
** Added 'Save to flash' and 'Test configuration' button to DNP3 configuration page
** Updated SNMP version 5.9.1
** Added OpenSSL authentication options to SNMPv3
** Added support for OSPF redistribution options and OSPF neighbors
** Added password field to BGP Peers page
** Extended BGP "AS" field validation to accept integers up to 4294967295
** Added "DHE+RSA" to OpenVPN cipher selections
** Increased OpenVPN max password length from 128 bytes to 512 bytes
** Made HMAC key direction initial value dependent on the role of the instance (client or server)
** Made HMAC key and HMAC authentication key upload fields required
** Added DES to IPsec encryption algorithms selections
** Added special character support for CHAP secrets
** Added validation requirements for PPTP user list username field
** Added option to manually enter Public key in Wireguard configuration
** Made generating Wireguard keys possible only while in auto mode
** Added Events Log database to troubleshoot archive
** Added RFC1918 filter field
** Added the possibility to unblock multiple blocked devices at once
** Added 'Port' column to blocked login attempts table
** Added Speedtest server refresh
** Updated Speedtest server list
** Added asterisk option to Site Blocking
** Added MD5 and SHA256 checksums to package validation page
** Changed certificate requirements to only require client key file if client certificate is used
** Added pagination and data retention between table pages
** Added pagination functionality to tables when there are more than 10 records
** Improved table sorting by saving user provided sort settings in the browser
** Improved drag and drop functionality
** Added the possibility to drag and drop files onto upload components
** Moved 'Root CA' from the 'Access Control' page to the 'Certificates' page
** Added 'Strict-Transport-Security' response header for HTTPS
** Added 'breadcrumbs' to modal windows
** Improved initial WebUI loading after login
** Added mobile bytes sent and bytes received SNMP OIDs
** Added mobile LED turn off feature ('System -> Administration' page)
** Added 'iot.1nce.net', 'internet', 'VZWINTERNET' and Truphone APNs to APN database
** Updated mobile usage data point calculation logic
** Added the possibility to manually enter operator number
** Improved obtain mobile cell ID process
** Added modem restart if SIM card is removed during APN database fetching process
** Added unauthorized call logging
** Added space character support in SMS commands
** Disabled SMS modem storage configuration form when SIM is not inserted
** Changed SMS '%wi' parameter value to return IP address of any currently used WAN interface (not only wired)
** Added external modem SMS limit Overview card and widget
** Made in-use APNs visible next to mobile interface configurations (before clicking the 'Edit' button)
** Added duplicate value check for list configuration options
** Changed mobile card instance design
** Fixed 'Mobile Data usage reset' SMS rule
** Fixed the default state parameter of SMS list POST/GET command
** Added AVL "Static Navigation" flag
** Added GSV parsing for NMEA collecting
** Added newline and GPS location actions to I/O Juggler
** Added I/O SNMP trap
** Added ISO 8601 time format to I/O Juggler's '%ts' parameter
** Added device name parameter '%pc' to I/O Juggler
** Added ACL or ADC SNMP trap notification on enter/exit/both
** Added ACL MQTT topic
** Added PPPoE VLAN priority support
** Made VRRP ping section dependent on main instance
** Added CRC verification support to MODBUS and RS232/RS485
* <b>Fixes</b>
** Fixed CVE-2021-20322, CVE-2021-4197, CVE-2022-1011, CVE-2022-0847 kernel vulnerabilities
** Fixed CVE-2022-28391 busybox vulnerability
** Fixed CVE-2018-16789 shellinabox vulnerability
** Fixed CVE-2021-44543, CVE-2021-44542 privoxy vulnerabilities
** Fixed CVE-2021-43618 GNU Multiple Precision Arithmetic Library vulnerability
** Fixed zlib backport security issue
** Fixed Wireguard firewall zone assignment
** Fixed queued packages disappearing from list after FW upgrade with keep settings
** Fixed error message display for multiple input validation rules
** Fixed incorrect DHCP validation range for start and limit fields
** Removed 'Bring up on boot' option from network interface configuration pages
** Fixed coma-separated DHCP options disappearing after save
** Fixed exclude and listen interfaces
** Fixed 'Use broadcast flag' option saving
** Fixed firewall zone assignment when creating new interfaces
** Fixed OpenVPN 'Netmask' and 'IP address' field validations
** Fixed OpenVPN TAP configuration saving issue
** Fixed OpenVPN switching to TUN mode when uploading a configuration from file
** Fixed dynamic BGP route state display
** Fixed BGP peer enable in edit page
** Fixed issue when no L2TP client instance could be bound to IPsec
** Fixed firewall rule and zone behavior related to config section creation
** Added default value for L2TPv3 netmask, which is now written to config after save
** Fixed passthrough option saving to IPsec file
** Fixed DMVPN issue where instance configuration could not be saved
** Fixed Wireguard peer could not be saved issue
** Fixed NTP client time synchronization after factory reset
** Fixed device time display with selected time zone
** Fixed MODBUS TCP indexation missing bracket issue
** Fixed initial MODBUS TCP request count validation
** Fixed PIN 3/4 direction switching over MODBUS TCP
** Fixed MODBUS data to MQTT socket closing issue when connection fails
** Fixed MODBUS alarm configuration deletion
** Fixed DNP3 master not working after FW upgrade with 'keep settings'
** Fixed DNP outstation not returning error messages
** Added missing SNMP objects: mobile IP, data sent/received today
** Fixed MQTT Publisher 'Remote address' field validation
** Fixed long interface name support for Azure IoT Hub
** Increased maximum Azure IoT Hub 'Connection String' length to 4096 characters
** Fixed missing sent/received data issue
** Fixed URL input field length validation
** Fixed admin login issue after upload of backup from a device with older firmware versions
** Fixed MAC address formatting in Events reporting messages
** Fixed Events reporting DHCP lease message spam, when no new lease is added
** Fixed logging crashing after downloading Troubleshoot file
** Made Wake on LAN visible only on devices with Ethernet ports
** Fixed Traffic log file transfer to FTP server
** Fixed Web Filter service reloading after a host list file is uploaded
** Fixed access denied messages when sending JSON-RPC requests from root user
** Fixed error message display about duplicated intervals in Profile scheduler
** Fixed FW upgrade with 'keep settings' migration issue for Access Control's 'Fail count' and 'Device port' fields
** Corrected OSPF Routing card values, value positions and names
** Fixed global secret instances not being removed when there are no IPsec instances
** Fixed uploaded file remove icon not staying in position on hover
** Fixed Overview card collapse issue that made it unresponsive after too many clicks
** Removed WAN6 interface from the Overview page
** Fixed mobile IPv6 display in Events Reporting status messages
** Fixed Bridge mode when DNS2 is not available
** Fixed PAP/CHAP username and password fields not saving in interface edit window
** Fixed sending email without secure connection for providers that support such an option
** Fixed 'N/A' parameter showing up in SMS Utilities monitoring status message
** Fixed Call Utilities Events Log message for reboot rule
** Fixed SMS command validation for no-authorization option
** Fixed MODBUS SMS alarms 'Enable' option saving
** Fixed running RMS with no SIM card inserted issue
** Fixed firmware available on server version checking issue
** Fixed CVE-2020-15078 openvpn vulnerability
** Fixed storage calculation for packages
** Fixed firmware deletion after leaving the page
** Fixed setup wizard redirect after LAN IP change
** Fixed various validation bugs, typos, option hints & alignments
** Fixed multiple IPv6 configuration field validations
** Fixed unnecessary SIM switch issue when Multi-APN is configured
** Fixed MODBUS TCP slave modem not starting after switching SIM cards
** Fixed restoring GPS HTTPS options after FW upgrade with 'keep settings'
** Fixed missing NMEA sentences
** Fixed NMEA cache sentence calculation
** Fixed 'outside/inside range' condition for AVL I/O Analog input trigger
** Fixed relay output value display in I/O Juggler condition page
** Fixed I/O Juggler's WiFi rule not enabling or disabling WiFi interfaces
** Fixed I/O Juggler's double delete issue on I/O Juggler action and condition instances
** Fixed I/O Juggler's incorrect I/O status messages
** Fixed automatic port open after RS232/RS485 Over IP server & bidirect configuration changes
** Fixed 'iostatus' SMS rule
** Added multiwan support for Wireguard default route
===<b>[[Media:TRB2_R_00.07.01.4_WEBUI.bin|TRB2_R_00.07.01.4]]</b> | 2022.02.25===
===<b>[[Media:TRB2_R_00.07.01.4_WEBUI.bin|TRB2_R_00.07.01.4]]</b> | 2022.02.25===
