RUT300 Firmware Downloads

From Teltonika Networks Wiki
Main Page > RUT Routers > RUT300 > RUT300 Firmware Downloads

This page contains firmware files for RUT300 devices. Look to the table below or the changelog to find download links.

Release Download link Release date Link to changelog entry MD5
Latest RUT30X_R_00.07.02.5 2022.08.12 click here 1575e90bb4be9f239d74f0ea1c6843a8
Mass production RUT30X_R_00.07.02.4 2022.07.20 click here 875978b37b17309210a09aa7d6c2f53a


Note: packages for Package Manager are independent from firmware and can be downloaded in the Package Downloads page.

FW checksums


Checksums for firmware files can be found here.

Changelog

RUT30X_R_00.07.02.5 | 2022.08.12

  • Improvements:
    • Updated curl to version 7.83.1
    • Updated firmware validation error messages
    • Added multiple source IP address support to the Port Forwards page
  • Fixes:
    • Fixed CVE-2022-32205, CVE-2022-32206, CVE-2022-32207, CVE-2022-32208 curl vulnerabilities
    • Fixed CVE-2022-30065 busybox vulnerability
    • Fixed file upload path traversal
    • Removed Data to Server limit to proccess less than 10 instances
    • Fixed Data to Server 'out of memory' crashes when database is full or has a large amount of data
    • Fixed OpenVPN dev setting logic
    • Fixed OpenVPN updating from legacy issue that caused IPv6 not to work

RUT30X_R_00.07.02.4 | 2022.07.20

  • Improvements:
    • Added default password change warning message before firmware downgrade
  • Fixes:
    • Fixed CVE-2022-2068 vulnerability
    • Fixed Hotspot login via landing page issue

RUT30X_R_00.07.02.2 | 2022.06.27

  • Improvements:
    • Updated FSTools package to version 2022-05-03
    • Added security headers to web requests
  • Fixes:
    • Fixed CVE-2019-12900 libbz2 vulnerability
    • Fixed CVE-2022-23303 hostapd vulnerability
    • Fixed CVE-2022-29581 Linux kernel vulnerability
    • Fixed CVE-2022-29458 ncurses vulnerability
    • Fixed CVE-2022-1292 c_rehash script command injection vulnerability
    • Fixed race condition for wireless configuration initialization

RUT30X_R_00.07.02.1 | 2022.06.06

  • Fixes:
    • Fixed IGMP Proxy menu item not appearing after package installation
    • Fixed MODBUS write requests

RUT30X_R_00.07.02 | 2022.05.23

  • New features
    • Overview side widget
    • IGMP Proxy
    • Privileged Access Management (PAM)
    • AWS Greengrass support
    • HTTPS certificate and key upload feature
    • SSH public keys edit box
    • License page
    • DNP3 data for Data to Server
  • Improvements
    • Updated busybox to version: 1.34.1
    • Updated curl to version 7.79.1
    • Added iptables filter package for string filtering
    • Added CHAP authentication for L2TP VPN
    • Added IPv6 support for L2TPv3 VPN
    • Added EAP-MSCHAPV2 authentication method for IPsec VPN
    • Added IPv6 support to Auto Reboot
    • Added 'Save to flash' and 'Test configuration' button to DNP3 configuration page
    • Updated SNMP version 5.9.1
    • Added OpenSSL authentication options to SNMPv3
    • Added support for OSPF redistribution options and OSPF neighbors
    • Added password field to BGP Peers page
    • Extended BGP "AS" field validation to accept integers up to 4294967295
    • Added "DHE+RSA" to OpenVPN cipher selections
    • Increased OpenVPN max password length from 128 bytes to 512 bytes
    • Made HMAC key direction initial value dependent on the role of the instance (client or server)
    • Made HMAC key and HMAC authentication key upload fields required
    • Added DES to IPsec encryption algorithms selections
    • Added special character support for CHAP secrets
    • Added validation requirements for PPTP user list username field
    • Added option to manually enter Public key in Wireguard configuration
    • Made generating Wireguard keys possible only while in auto mode
    • Added Events Log database to troubleshoot archive
    • Added RFC1918 filter field
    • Added the possibility to unblock multiple blocked devices at once
    • Added 'Port' column to blocked login attempts table
    • Added Speedtest server refresh
    • Updated Speedtest server list
    • Added asterisk option to Site Blocking
    • Added MD5 and SHA256 checksums to package validation page
    • Changed certificate requirements to only require client key file if client certificate is used
    • Added pagination and data retention between table pages
    • Added pagination functionality to tables when there are more than 10 records
    • Improved table sorting by saving user provided sort settings in the browser
    • Improved drag and drop functionality
    • Added the possibility to drag and drop files onto upload components
    • Moved 'Root CA' from the 'Access Control' page to the 'Certificates' page
    • Added 'Strict-Transport-Security' response header for HTTPS
    • Added 'breadcrumbs' to modal windows
    • Improved initial WebUI loading after login
    • Added error code 5 for reserved SAMBA user names
    • Added Mobile data and SMS limit features for external modem
    • Added I/O SNMP trap
    • Added ISO 8601 time format to I/O Juggler's '%ts' parameter
    • Added device name parameter '%pc' to I/O Juggler
    • Added PPPoE VLAN priority support
    • Made VRRP ping section dependent on main instance
    • Added 'WAN to LAN' switch
  • Fixes
    • Fixed CVE-2021-20322, CVE-2021-4197, CVE-2022-1011, CVE-2022-0847 kernel vulnerabilities
    • Fixed CVE-2022-28391 busybox vulnerability
    • Fixed CVE-2018-16789 shellinabox vulnerability
    • Fixed CVE-2021-44543, CVE-2021-44542 privoxy vulnerabilities
    • Fixed CVE-2021-43618 GNU Multiple Precision Arithmetic Library vulnerability
    • Fixed zlib backport security issue
    • Fixed Wireguard firewall zone assignment
    • Fixed queued packages disappearing from list after FW upgrade with keep settings
    • Fixed error message display for multiple input validation rules
    • Fixed incorrect DHCP validation range for start and limit fields
    • Removed 'Bring up on boot' option from network interface configuration pages
    • Fixed coma-separated DHCP options disappearing after save
    • Fixed exclude and listen interfaces
    • Fixed 'Use broadcast flag' option saving
    • Fixed firewall zone assignment when creating new interfaces
    • Fixed OpenVPN 'Netmask' and 'IP address' field validations
    • Fixed OpenVPN TAP configuration saving issue** Added multiwan support for Wireguard default route
    • Fixed OpenVPN switching to TUN mode when uploading a configuration from file
    • Fixed dynamic BGP route state display
    • Fixed BGP peer enable in edit page
    • Fixed issue when no L2TP client instance could be bound to IPsec
    • Fixed firewall rule and zone behavior related to config section creation
    • Added default value for L2TPv3 netmask, which is now written to config after save
    • Fixed passthrough option saving to IPsec file
    • Fixed DMVPN issue where instance configuration could not be saved
    • Fixed Wireguard peer could not be saved issue
    • Fixed NTP client time synchronization after factory reset
    • Fixed device time display with selected time zone
    • Fixed MODBUS TCP indexation missing bracket issue
    • Fixed initial MODBUS TCP request count validation
    • Fixed PIN 3/4 direction switching over MODBUS TCP
    • Fixed MODBUS data to MQTT socket closing issue when connection fails
    • Fixed MODBUS alarm configuration deletion
    • Fixed DNP3 master not working after FW upgrade with 'keep settings'
    • Fixed DNP outstation not returning error messages
    • Added missing SNMP objects: mobile IP, data sent/received today
    • Fixed MQTT Publisher 'Remote address' field validation
    • Fixed long interface name support for Azure IoT Hub
    • Increased maximum Azure IoT Hub 'Connection String' length to 4096 characters
    • Fixed missing sent/received data issue
    • Fixed URL input field length validation
    • Fixed admin login issue after upload of backup from a device with older firmware versions
    • Fixed MAC address formatting in Events reporting messages
    • Fixed Events reporting DHCP lease message spam, when no new lease is added
    • Fixed logging crashing after downloading Troubleshoot file
    • Made Wake on LAN visible only on devices with Ethernet ports
    • Fixed Traffic log file transfer to FTP server
    • Fixed Web Filter service reloading after a host list file is uploaded
    • Fixed access denied messages when sending JSON-RPC requests from root user
    • Fixed error message display about duplicated intervals in Profile scheduler
    • Fixed FW upgrade with 'keep settings' migration issue for Access Control's 'Fail count' and 'Device port' fields
    • Corrected OSPF Routing card values, value positions and names
    • Fixed global secret instances not being removed when there are no IPsec instances
    • Fixed uploaded file remove icon not staying in position on hover
    • Fixed Overview card collapse issue that made it unresponsive after too many clicks
    • Removed WAN6 interface from the Overview page
    • Fixed Cumulocity connection issue
    • Hidden phone groups menu
    • Fixed I/O Juggler external modem recognition
    • Fixed flash driver reformatting after memory shrink
    • Fixed DLNA package installation issue
    • Changed Media Directories field to be required
    • Fixed SAMBA fields value display
    • Fixed relay output value display in I/O Juggler condition page
    • Fixed I/O Juggler's WiFi rule not enabling or disabling WiFi interfaces
    • Fixed I/O Juggler's double delete issue on I/O Juggler action and condition instances
    • Fixed I/O Juggler's incorrect I/O status messages
    • Fixed Wake On LAN issue

RUT30X_R_00.07.01.4 | 2022.02.25

  • Fixes
    • Fixed OpenVPN server configuration with password authentication
    • Fixed NTP interval length validation
    • Fixed network interface enable after Drag & Drop
    • Updated NTP client interval to 24h

RUT30X_R_00.07.01.3 | 2022.02.15

  • Improvements
    • DFOTA modem upgrade system for Quectel modems
  • Fixes
    • Fixed IPSec crashing issue using mobile
    • Fixed FW flashing when chip is in unknown state
    • Fixed CPU usage percentage display in the Overview page
    • Fixed FOTA timeout issue when server does not respond
    • Fixed installation of backup packages

RUT30X_R_00.07.01.2 | 2022.01.04

  • Improvements
    • DFOTA modem upgrade system for Quectel modems
  • Fixes
    • Fixed IPSec crashing issue using mobile
    • Fixed FW flashing when chip is in unknown state
    • Fixed CPU usage percentage display in the Overview page
    • Fixed FOTA timeout issue when server does not respond
    • Fixed installation of backup packages

RUT30X_R_00.07.01 | 2021.11.18

Note: Firmware version RUT30X_R_00.07.01 released on 2021.11.18 was removed due to an issue with IPsec tunnel while using mobile connection.


  • New features
    • Load Balancing Rules
    • Tinc VPN
    • German language support
  • Improvements
    • Improved WebUI functionality when multiple browser tabs are open
    • Updated base to OpenWrt version 21.02
    • Updated kernel to version 5.4.141
    • Updated mtd-utils to version 2.1.2
    • Updated busybox to version 1.33.1
    • Updated ubus to version 2021-06-3
    • Updated ubox to version 2020-10-25
    • Updated rpcd to version 2021-03-11
    • Updated opkg to version 2021-06-13
    • Updated fstools to version 2021-01-04
    • Updated wwan to version 2019-04-29
    • Updated ethtool to version 5.10
    • Updated uhttpd to version 2021-03-21
    • Updated ppp to version 2020-10-03
    • Updated odhcpd to version 2021-07-18
    • Updated hostapd to version 2020-06-08
    • Updated dropbear to version 2020.81
    • Updated dnsmasq to version 2.85
    • Updated netifd to version 2021-07-26
    • Updated firewall3 to version 2021-03-23
    • Updated libjson-c to version 0.15
    • Updated libevent2 to version 2.1.12
    • Updated mac80211 to version 5.10.42-1
    • Updated wireless-regdb to version 2021.04.21
    • Updated binutils to version 2.35.1
    • Updated gdb to version 10.1
    • Updated strace to version 5.10
    • Updated trace-cmd to version 2.9.1
    • Updated valgrind to version 3.16.1
    • Updated ath10k-ct-firmware to version 2020-11-08
    • Updated procd to version 2021-02-23
    • Updated iw to version 5.9.8
    • Updated iproute2 to version 5.11.0
    • Updated iptables to version 1.8.7
    • Updated nettle to version 3.6
    • Updated libpcap to version 1.9.1 rel3
    • Updated elfutils to version 0.180
    • Updated cryptodev-linux to version 1.11
    • Updated linux-firmware to version 20201118
    • Updated util-linux to version 2.36.1
    • Updated openwrt-keyring to version 2021-02-20
    • Updated mtd to version rel26
    • Updated fwtool to version 2019-11-12
    • Updated ca-certificates to version 20210119
    • Updated wireguard-tools to version 1.0.20210223
    • Updated iwinfo to version 2021-04-30
    • Updated ipset to version 7.6
    • Updated gre to version rel12
    • Updated wolfssl to version 4.7.0
    • Updated ustream-ssl to version 2020-12-10
    • Updated uclient to version 2021-05-14
    • Updated readline to version 8.1
    • Updated mbedtls to version 2.16.11
    • Updated libusb to version 1.0.24
    • Updated libunwind to version 1.5.0
    • Updated libubox to version 2021-05-16
    • Updated libnl-tiny to version 2020-08-05
    • Updated libnftnl to version 1.1.8
    • Updated libiconf-full to version 1.16
    • Updated libbsd to version 0.10.0
    • Updated gmp to version 6.2.1
    • Updated ulogd to version rel6
    • Updated sqm-scripts to version 1.5.0
    • Updated ntpclient to version rel14
    • Updated nmap to version 7.80
    • Updated curl to version 7.77.0
    • Updated zerotier to version 1.6.5
    • Updated xtables-addons to version 3.13
    • Updated xl2tpd to version 1.3.16
    • Updated stunnel to version 5.59
    • Updated strongswan to version 1.0.13
    • Updated sstp-client to version 1.0.13
    • Updated pptpd to version rel5
    • Updated openvpn to version 2.5.3 rel2
    • Updated ntpd to version rel3
    • Updated net-snmp to version rel2
    • Updated mosquitto to version 2.0.11
    • Updated miniupnpd to version 2.2.1 rel 3
    • Updated etherwake to version rel5
    • Updated libzip to version 1.7.3
    • Updated libgpg-error to version 1.39
    • Updated glib2 to version 2.66.4
    • Updated libnetfilter-conntrack to version 1.0.8
    • Updated libnetfilter-log to version rel3
    • Updated lzo to version rel4
    • Updated nghttp2 to version 1.43.0
    • Updated openvpn-easy-rsa to version 3.0.8 rel3
    • Updated iperf to version rel2
    • Updated iperf3 to version 3.10.1
    • Updated e2fsprogs to version 1.45.6
    • Updated fuse to version 2.9.9
    • Updated udprelay to version 2020-02-26
    • Updated qmicli to version 1.28.2
    • Updated pcre to version 8.45
    • Updated libsmpp34 to version 1.14.1
    • Updated libiwinfo to version 2.1
    • Added netifd library for additional information related to network interfaces
    • Updated openssl to version 1.1.1l
    • Updated privoxy to version 3.0.32
    • Added ACL reload method for sessions
    • Added 'Advertisement interval' field to the VRRP configuration window
    • Added a PPTP-to-WAN Zone Forwarding rule when default route is enabled on PPTP client
    • Added email user group validation for sendind test emails with Events reporting
    • Added an event logging feature for Ping Reboot events
    • Improved file/section deletion logic: now files are also deleted after deleting a related config section
    • Improved package deletion logic
    • Added the possibility to configure multiple reboot times in one Reboot Scheduler configuration instance
    • Updated 'External system log server' field validation to accept IPv6 addresses
    • Added redirect to Overview page after login
    • Added WebUI session timeout after user inactivity
    • Added placeholder text to dropdown menus
    • Improved multi-select design and functionality
    • Added Unix timestamp, local ISO time, UTC time to Modbus
    • Added info message when selected file cannot be uploaded
    • Improved IPsec throughtput
    • Added IPSec "Compatibility mode" configuration support
    • Made SNMP 'Community name' option editable
    • Added new configuration options to the Failover feature
    • Changed Failover page availability from Advanced only both advanced and basic
    • Made Failover Interfaces table rows draggable when in 'Load Balancing' mode
    • Changed Failover page 'Ratio' fields to a smaller size
    • Added external modem support for the 'Mobile Usage' graph
    • Added I/O support to SNMP
    • Removed ubus list method due to security reasons
    • Added MODBUS "%I, %T, %S, %r, %n" support to MODBUS Data Sender
    • Removed search engine site crawling
    • Improved IPSec "Local/Remote source" validation
    • Added Firewall "all" and "custom" protocol options
    • Added Backup file size limit of 2 MB
    • Improved basic/advanced mode changing
    • Improved Wireguard "IP Addresses" field validation
    • Added language download support from language selection section
    • Added PPTP "Client to client" configuration support
    • Made DDNS "username", "password", "host" fields optional
    • Added SSTP "Default route" configuration support
    • Added I/O action support MODBUS Alarms
    • Added "Topology state" support to Events Reporting
  • Fixes
    • Made RMS 'Connect' button disabled when a connection attempt is already in progress
    • Added validation for TLS Clients 'Private network' option
    • Fixed the validation range for MTU fields
    • Fixed removing firmware image file after leaving the fimware upgrade page
    • Fixed network selection list for Traffic Logging - added all available LAN networks
    • Fixed DHCP Options validation
    • Fixed configuration profile date display
    • Fixed blank page after invalid URL in login page
    • Fixed TR-069 related firewall rule loading
    • Fixed remote subnet netmask validation issues for the GRE Tunnel configuration
    • Fixed WebUI section toggle
    • Fixed package installation modal layout
    • Fixed current page values showing up in login page username field
    • Fixed the possibility to create section with a name that is already in use in the same config file
    • Fixed OpenVPN username and password deletion when deleting configuration instance
    • Fixed session closing issue for the user whose password was just changed
    • Updated MODBUS credential validation
    • Updated MQTT credential validation
    • Fixed DNS 'Rebind protection' setting when switch is disabled
    • Updated libgcrypt to version 1.9.3 to fix CVE-2021-33560
    • Fixed CVE-2021-33624, CVE-2021-29648 vulnerabilities
    • Fixed DHCP 'Lease time' and 'Unit' option saving over the Setup Wizard LAN page
    • Fixed Reboot Scheduler not removing crontab file after disabling the rule
    • Fixed OpenVPN 'Extra options' field validation to allow a space character
    • Added table drag and drop functionality to the Firewall's Traffic Rules page
    • Fixed DNP3 Outstation crash caused by non-void function returning no value
    • Fixed RMS 'Copy' button functionality
    • Fixed incorrect loading after saving Failover configuration
    • Fixed I/O Juggler hour condition interval issue
    • Patched CVE-2021-40528 vulnerability
    • Patched CVE-2021-40490 vulnerability
    • Patched CVE-2020-16120 vulnerability
    • Fixed VLAN section creation
    • Returned Interfaces "Port priority" option
    • Fixed missing Content-Type header to initial WebUI response
    • Fixed RIP information parsing in status page
    • Fixed OpenVPN IPv6 netmask validation
    • Fixed SNMP Trap Settings Host/IP field validation
    • Fixed Cumulocity authentication reset
    • Fixed Events Reporting rule saving

RUT30X_R_00.07.00 | 2021.07.16

  • New features
    • New WebUI based on Vue.js 2.6.12
    • RutOS updated to OpenWrt 19.07.7 base
    • DNP3 Master and DNP3 Oustation
  • Improvements
    • Updated firewall to release 3
    • Updated kernel to version 4.14.221
    • Updated uhttpd to version 2020-10-01
    • Updated xtables-addons to release 9
    • Updated mwan to version 2.8.14
    • Updated pcre to version 8.44
    • Updated curl to version 7.74
    • Updated sqlite to version 3.33
    • Updated ncurses to version 6.2
    • Updated OpenSSL to version 1.1.1k
    • Added full MODBUS register address expansion specifier for Data to Server
    • Added full MODBUS register address legend
    • Added Client ID option for the MQTT protocol in Data to Server
    • Improved Data to Server sleeping accuracy
    • Improved Data to Server username validation; now space is allowed
    • Added firmware version OID to the SNMP service
    • Added IP address family option field to the SNMP page
    • Added SNMPv6 section to the SNMP Communities page
    • Renamed the 'System -> Users' page to 'System -> System Users'
    • Moved password changing option to the 'System -> System Users' page
    • Switched to ar8216 driver
    • Added IPsec XAUTH support
    • Improved OpenVPN updown, init scripts to write info about instance in JSON
    • Added AES-256-GCM encryption support to OpenVPN
    • Added extra configuration parameters to DMVPN
    • Added PSK conversion to DMVPN and single PSK types
    • Improved Package Manager package installation, deletion and dependencies
    • Improved Package Manager download process over FOTA
    • Added new Input/Output values manageable over RMS
    • Added IPv6 traffic logging
    • Made 'Network -> Failover' and 'Network -> Interfaces' page data draggable on multiple browsers
    • Added Input/Output Post/Get URL parameter t_time changing delay and time to seconds or miliseconds
    • Added support for multiple USB to Serial adapters
    • Added peer groups to BGP access list dropdown
    • Added TCP MD5 authentication support for BGP
  • Fixes
    • Added glib2 patch to fix CVE-2019-13012 vulnerability
    • Added ntfs-3g patch to fix CVE-2019-9755 vulnerability
    • Added WolfSSL patch to fix CVE-2021-3336 vulnerability
    • Added Busybox patch to fix CVE-2018-1000500 vulnerability
    • Added netifd, odhcp6c IPv6 routing loop on point-to-point links patches to fix CVE-2021-22161 vulnerability
    • Fixed Android clients IPsec MTU/MSS size
    • Fixed wrong IPsec DPD value saving
    • Changed IPsec PSK maximum length to 128 symbols
    • Fixed SSTP remaining up after package removal
    • Fixed DMVPN crypto_proposal write to config
    • Fixed I/O Juggler's SMS sending to correct group
    • Fixed I/O Scheduler's relay state issue
    • Added I/O direction check while changing IOs via I/O Post/Get
    • Fixed float endianness mismatch on some devices MODBUS TCP Master, MODBUS Serial Master
    • Fixed UPnP issue that caused config changes to apply only after service restart
    • Fixed WebUI files caching when upgrading firmware
    • Fixed WebUI date display format
    • Fixed MODBUS returning incomplete MAC address data
    • Fixed 'Over IP' serial type's UDP issue in client mode
    • Fixed DLNA connections count total in statistics page

RUT30X_R_00.02.06.1 | 2021.02.10

  • Fixes
    • Added dnsmasq patch CVE-2020-25681, CVE-2020-25682, CVE-2020-25683, CVE-2020-25684, CVE-2020-25685, CVE-2020-25686, CVE-2020-25687
    • Fixed PPTP server interface naming
    • Fixed correct client PPTP interface name selection for route creation
    • Fixed adding helper to firewall's wan zone when enabling PPTP configuration
    • Added package size checking when manually installing a package
    • Fixed 'New Firmware Available' message display after firmware upgrade

RUT30X_R_00.02.06 | 2020.12.31

  • New features
    • Initial RUT300 Firmware