Jump to content
  • EN

RUTX10 Firmware Downloads: Difference between revisions

RUTX10 Firmware Downloads (view source)

Revision as of 14:00, 18 July 2024

46,749 bytes added ,  18 July
no edit summary
VisualWikitext
No edit summary
No edit summary
(25 intermediate revisions by 2 users not shown)
Line 6: Line 6:


==Changelog==
==Changelog==
<!--NEW_FW-->
===<b><span class="plainlinks">[https://firmware.teltonika-networks.com/7.8/RUTX/RUTX_R_00.07.08_WEBUI.bin RUTX_R_00.07.08]</span></b> | 2024.07.18===
* <b>New</b>
** <b>Network</b>
*** 802.1X: added client support
*** DNS: added inherited server status to configuration page
*** HTTPS DNS Proxy: added new HTTPS DNS Proxy package to package manager
** <b>Services</b>
*** Data to Server: added 'Lua script' data input
*** Hotspot: added Single Sign-on (OIDC) authentication mode
*** Hotspot: added Walled Garden blocklist functionality
*** Input/Output: added ability to configure gpio debounce timer and changed default gpio debounce timer value from 200 ms to 10 ms
*** IPsec: added initial XFRM support
*** MQTT Modbus Gateway: added JSON message type format
*** OpenVPN: added DCO support
** <b>System</b>
*** API Core: added option to configure api session timeout
*** Certificates: added "Let's encrypt" certificate generation
*** PAM: added RADIUS external user support
*** UI Core: added data analytics support
*** Update Firmware: added warning message about device being temporarily unreachable on firmware update
* <b>Improvements</b>
** <b>Network</b>
*** Channel Analysis: added scan error message when a DFS channel and FCC country are selected
*** DNS: separated field "DNS forwardings" into two: one for simple server forwarding other for domain-specific
*** DNS: moved "DNS Forwardings", "Listen interfaces", "Exclude interfaces", "Local service only", options to advanced tab
*** Firewall: improved protocol field in all firewall pages by making that "All" value would be mutually exclusive with any other value
*** Multi WAN: improved interface status representation when using load balancing
*** Network: added more options for "IPv6 assignment length" field
*** Wireless: added warning when user configures mesh on radio with automatic frequency channel
*** Wireless: added support for wireless MAC-filter MAC ranges
*** Wireless: updated wireless firmware
*** Wireless: changed Radius Accounting port is not required when configuring access point with enterprise encryption
*** Wireless: enabled ACS(automatic channel selection) for 5 GHz radios by default
*** Wireless: refactored radio configuration page layout
*** Wireless: refactored assignment of wireless interfaces MAC addresses, STA interface will always use fixed address
** <b>Services</b>
*** Azure IoT Hub: added DPS symmetric key attestation support
*** Azure IoT Hub: added Direct Method support
*** Azure IoT Hub: added Plug and Play integration
*** Azure IoT Hub: added link to "Data to Server" page
*** Data to Server: added support for multiple filters
*** Data to Server: improved HTTP output hostname definition with automatic protocol specification in URL
*** Data to Server: improved MQTT input connection handling
*** DNP3 Client: added option to enable/disable service
*** GRE: increased Inbound and Outbound key limit to 4294967295
*** Hotspot: adjusted hotspot user manager page to display active and inactive user sessions
*** Hotspot: changed local users to be stored with other types of users
*** Hotspot: added 'noc2c' option for enabling client isolation, option is enabled by default
*** Input/Output: added custom name support in I/O status page
*** IPsec: added certificate warning message
*** Modbus Server: added mobile last month and last week usage registers
*** Mosquitto: added large package size check for MQTT clients
*** MQTT Modbus Gateway: improved mosquitto reconnect time and service will try to recover few times before exiting
*** MQTT Publisher: improved MQTT connection handling
*** OPC UA Client: added security modes
*** OPC UA Server: added security modes
*** OPC UA Server: added service status display
*** OpenVPN: added support for decrypting private key when uploading a configuration file
*** OpenVPN: improved instance status state
*** OpenVPN: added options to specify an IP address pool for dynamic assignment to clients
*** Over IP: added label to show how many servers a client is connected to
*** Over IP: connect on data feature will not disconnect immediately after data transfer but wait for inactivity timeout
*** Over IP: increased TLS handshake timeout to 10 seconds
*** SMPP: added brute-force prevention
*** SMPP: added TLS/SSL support
*** SNMP: changed interface module OID structure
*** SNMP: improved User-based Security Model (USM) brute force attack prevention measures
*** Stunnel: improved global instance settings dependencies
*** emailrelay: updated version to 2.4.1
*** OpenVPN: updated version to 2.6.9
*** stunnel: updated version to 5.72
*** Tailscale: updated version to 1.68.1
** <b>System</b>
*** Access Control: added certificate key length warnings
*** Access Control: adjusted access control when all pages are blocked
*** Access Control: added certificate file download for CLI to work on all browsers
*** API Core: implemented functionality to include warning messages for vulnerable certificates
*** Package Manager: added multi package actions
*** Package Manager: added status filter
*** Package Manager: moved package upload action to main page
*** Package Manager: added links to installed packages pages
*** Package Manager: refactored "Packages" page
*** Package Manager: updated opkg repository link to use https
*** RutOS: improved GPL example page to align with new software architecture
*** Troubleshoot: added support for multiple syslog servers
*** UI Core: added additional message with IP address to loading screen for scenarios when redirect to different IP address happens
*** UI Core: added toast message hiding when text is too long
*** Update Firmware: added 'Firmware version' data in screen after firmware upload
*** WebUI: added functionality to cancel loading screen if it takes 30 or more seconds
*** WebUI: removed all ubus method calls from webui
*** WebUI: improved language caching
*** WebUI: added password generator for first login modal
*** WebUI: added sticky position to side menu
*** WebUI: added default password hint to login error message
*** WebUI: added warning messages for low-security certificates
*** Kernel: updated version to 5.10.217
*** libexpat: updated version to 2.6.2
*** SSL/TLS: updated version to 3.0.14
*** vue: updated version to 3.4
* <b>Fix</b>
** <b>Network</b>
*** Channel Analysis: fixed network list not being updated if a single scan fails
*** Devices: fixed missing API devices status endpoint permission
*** DHCP: fixed "DHCP option" allow empty input value
*** DHCP: fixed IPv4 leases being not correctly shown when NTP synchronizes time
*** DHCP: fixed DHCP error that occurred after changing the subnet of the LAN IP address in the setup wizard
*** Dynamic routes: fixed duplicated external routes cards
*** Firewall: fixed firewall zone validation when adding interfaces
*** Multi AP: fixed Multi AP not working with fast roaming
*** Multi AP: fixed switching to Multi AP mode fails due to encryption
*** Multi AP: fixed Multi AP configuration being deleted when switching mode on the same radio device
*** Network: fixed overriding MAC address for interfaces that are bridged
*** Network: fixed instances of device dropping packets when configured with masquerading disabled and 'Hardware flow offload' enabled
*** RelayD: fixed API error when "network" and "lan_mark" options are not present in a PUT request
*** Wireless: fixed wireless scan results sometimes not being returned
*** Wireless: fixed 5 GHz Wi-Fi scanning is prohibited when a DFS channel and ETSI regulatory domain is selected
*** Wireless: fixed Wi-Fi 5 GHz unsupported channel selection issue on specific widths
*** Wireless: fixed wireless status page not updating wireless SSID status after page is opened
*** Wireless: removed the ability to have different countries in radio configurations
*** Wireless: fixed interface delete when it's unassigned from the wireless interface in access point mode
*** Wireless: fixed backticks for WiFi SSID are not allowed in WebUI
** <b>Services</b>
*** BACnet: fixed incorrect BACnet IP port used for sending responses
*** BGP: fixed route map sequence going out of range
*** BGP: fixed listen range field allowing multiple entries
*** DLMS: fixed DLMS test response format
*** DLMS: fixed COSEM group validation
*** DLMS: fixed API POST error for /dlms/devices/config endpoint
*** DLMS: fixed serial connection not working after reboot
*** DNP3 Client: fixed to allow reading objects past 255 index
*** DNP3 Client: fixed incorrect hints
*** DNP3 Outstation: fixed serial outstation starting issues
*** Hotspot: fixed uploading more than one custom theme
*** Hotspot: fixed creating Hotspot to SSID that is disabled
*** Hotspot 2.0: fixed Venue name and Operator's name field validations
*** I/O Juggler: fixed improper dout action config handling
*** I/O Juggler: updated profile change action
*** Input/Output: allow unselecting all Post/Get access methods
*** IPsec: fixed connectivity issues when using WAN failover
*** IPsec: fixed the instance status when the local firewall option is disabled
*** Modbus Client: fixed test request option validation
*** Modbus Client: fixed alarm output action display values
*** Modbus Client: fixed incorrect period hint
*** Modbus Server: fixed APN register not clearing APN
*** Modbus Server: fixed 148 and 164 modbus registers
*** Modbus Server: fixed incorrect hints
*** NTRIP: fixed NTRIP NMEA generation timestamp and coordinates errors
*** NTRIP: fixed configuration reading with several instances added
*** OPC UA Server: fixed not starting while modem is down
*** OpenVPN: fixed displaying imported files from device
*** OpenVPN: fixed the private key decryption for cases when a password is used
*** OpenVPN: fixed data cipher migration
*** Over IP: fixed connect on data initiating TCP connection after few data transfers
*** SMPP: fixed username bypass problem
*** SMPP: fixed password validation
*** SNMP: fixed GSM mSignal OID value type
*** SNMP: fixed GSM module memory leaks
*** SSTP: fixed functionality when the default route option is not enabled
*** Web Filter: fixed whitelist not working for some hosts when using IPv6
** <b>System</b>
*** Administration: fixed repeated validation on cleared inputs and added validation when new password matches the old one
*** API Core: fixed API method validation during upload action
*** API Core: fixed error messages for POST method
*** API Core: fixed option list validation
*** Boot: fixed factory settings restore (firstboot) not deleting hidden files
*** Events Log: fixed refresh button in event log table
*** IP Block: fixed adding MAC addresses back to whitelist when unblocking all of them
*** Memory Expansion: fixed enable validation
*** Recipients: made phone number field required
*** Setup Wizard: fixed lan ip step not changing ip address
*** Troubleshoot: fixed system log and kernel log buttons to be enabled with read only rights
*** Update Firmware: fixed misleading "Firmware version" status of "N/A" to "FOTA service is disabled" when FOTA is disabled
*** Update Firmware: fixed issue when infinite spinner appears after updating device firmware from server without having internet connection
* <b>CVE Patches</b>
** Patched CVE-2023-52425
** Patched CVE-2023-52530
** Patched CVE-2024-25629
** Patched CVE-2024-28757
----
===<b><span class="plainlinks">[https://firmware.teltonika-networks.com/7.7.3/RUTX/RUTX_R_00.07.07.3_WEBUI.bin RUTX_R_00.07.07.3]</span></b> | 2024.06.25===
* <b>Fix</b>
** <b>Network</b>
*** WebUI: fixed port advertisement change
** <b>System</b>
*** FOTA: fixed config when upgrading from older firmware with keep settings
* <b>CVE Patches</b>
** CVE-2024-31950
** CVE-2024-31951
----
===<b><span class="plainlinks">[https://firmware.teltonika-networks.com/7.7.2/RUTX/RUTX_R_00.07.07.2_WEBUI.bin RUTX_R_00.07.07.2]</span></b> | 2024.06.12===
* <b>Improvements</b>
** <b>Network</b>
*** Zerotier: added backup WAN interface blacklisting if WAN failover is enabled
** <b>Services</b>
*** SNMP: added bruteforce attack prevention when using SNMP v3 user
*** L2TP: improved reconnect attempt logic
*** Wireless: removed unnecessary information from system logs
** <b>System</b>
*** SSH: removed weak SSH algorithms
*** Telnet: moved to Package Manager
* <b>Fix</b>
** <b>Network</b>
*** BGP: fixed instance migration issues
*** HNAT: fixed cases of unintended forwarding when LAN and WAN subnets overlap
*** HNAT: fixed instances of device misrouting packets to wired LAN when 'Hardware Flow Offloading' was enabled
*** Wireless: fixed connection issues after disabling encryption
** <b>Services</b>
*** DMVPN: fixed duplicate NHRP map entries creation
*** OpenVPN: added fixes for the insecure tls-cert-profile option usage
** <b>System</b>
*** IP Block: fixed blocking of UDP traffic
*** Ledman: fixed WiFi LED indication when WiFi configuration is changed
* <b>CVE Patches</b>
** CVE-2024-31948
----
===<b><span class="plainlinks">[https://firmware.teltonika-networks.com/7.7.1/RUTX/RUTX_R_00.07.07.1_WEBUI.bin RUTX_R_00.07.07.1]</span></b> | 2024.05.03===
----
* <b>New</b>
** <b>Network</b>
*** WebUI: added internet status tracking configuration and overview widget
*** LAN: added a new IPv6 LAN status page
*** Static Leases: added a new IPv6 Static Leases page
*** WebUI: added custom domain name resolve option in “DNS” configuration page
*** Failover: added additional connection flush options
*** Wireless: added auto-reconnect disable functionality
*** Wireless: added ability to use PKCS#12 certificates for EAP-TLS authentication
*** VRF: added initial Virtual Routing and Forwarding support
** <b>Services</b>
*** Post/Get: added I/O invert support
*** DLMS Client: added persistent TCP connections
*** Events Reporting: added unexpected shutdown event
*** Modbus Client: added 64bit data types
*** IPerf3: added iPerf3 to Package Manager
*** DNP3 Outstation: added I/O objects
*** Hotspot: added domain and subdomain options for external landing page
*** Over IP: added option 'Keep alive enable'
** <b>System</b>
*** WebUI: added the ability to generate random passwords for password input fields
*** WebUI: added reset to “Factory defaults” option
*** System: changed firmware certificate verification tool
*** IP Block: added time-based login attempt blocking
*** WebUI: added firmware update notification support
*** PAM: added the ability to set port for TACACS+
*** Logging: added multiple remote syslog servers support
* <b>Improvements</b>
** <b>Network</b>
*** Static Leases: added possibility to use MAC with wildcard
*** Topology: changed network devices scanning application
*** WebUI: improved design of Status - LAN page
*** DHCP: simplified DHCP configurations in other pages and moved full DHCP configuration to a separate page
*** DHCP: removed default disabled server configuration for WAN interface
*** WebUI: simplified data entry of DNS forwardings by separating hostname and IP address fields
*** BGP: added Virtual Routing and Forwarding (VRF) support
*** BGP: added multiple BGP instance support
*** WebUI: adjusted responsive design breakpoints
*** HNAT: improved WAN->LAN packet offloading
*** WebUI: added an information icon and disabled delete button for wireless instance when it is associated with a hotspot interface
*** Wireless: improved hidden AP handling when showing scan results
*** Wireless: added a range of channels to 5 Ghz radio to use as fallback if it drops after radar detection when using DFS channel
*** Dnsmasq: updated dnsmasq to version 2.89
** <b>Services</b>
*** Wireguard: added option to bind tunnel to a specific interface
*** OPC UA Client: added limits (10 servers, 20 groups, 50 nodes per server, 50 values per group)
*** DLMS Client: increased maximum count of connection sections to 30
*** DLMS Client: added short name referencing
*** SNMP: set strict default community access when IPv6 address is used
*** SNMP: improved sysName OID to set device's hostname
*** Network Shares: moved to Package Manager
*** Hotspot: moved MAC blocking option from Access Control to Hotspot page
*** WebUI: added MAC authentication support when using RADIUS authentication mode
*** WebUI: moved licenses to footer
*** OpenVPN: added the bridge option for selecting the network device to be bridged with
*** OpenVPN: added possibility to create more than one TAP client
*** SSTP: updated package version to 1.0.19
*** Mosquitto: updated package version to 2.0.17
*** Tailscale: updated package version to 1.62.1
** <b>System</b>
*** WebUI: added more strict password requirements for restoring backup
*** SMTP: added option to either not verify SMTP server or upload SMTP server's CA file to verify authenticity
*** WebUI: Added the ability to choose the ROOT CA when using certificates from the device
*** WebUI: unified time format to ISO8601 across the entire WebUI
*** WebUI: added ability to choose imported certificate and key as 'Server certificate' and 'Server key' in 'Access Control'
*** WebUI: added 'Hosts' and 'IP Addresses' options for 'Simple' certificate generation and certificate signing
*** WebUI: changed firmware update option to server as a default option
*** WebUI: improved first login password change logic
*** Certificates: updated Root CA certificates
*** GPL: added offline package preparation command for GPL builds
*** Speedtest: added multiple connections support to improve accuracy
*** Libcap: updated package version to 2.69
* <b>Fix</b>
** <b>Network</b>
*** Topology: fixed showing interfaces with assigned VLAN
*** WebUI: fixed static routing creation for GRE instance
*** Network: fixed DHCPv4 relay mode enabling
*** Failover: fixed Failover missing active rules when using multiple source and destination IP addresses
*** WebUI: fixed network and failover interface metric sorting synchronization issue
*** WebUI: fixed failover rule policy save issue with newly added WAN interface
*** Interfaces: fixed failover value for new WAN being taken from WAN that was just deleted
*** Wireless: fixed Wifi Scanner not saving scanned WiFi SSIDs
*** Wireless: fixed missing CCMP-256 and GCMP-256 cipher types in scan results
*** Wireless: fixed missing GCMP-256 cipher when using WPA3-EAP encryption in Client mode
*** Wireless: fixed skipped MAC address value for interface in Client mode
*** Wireless: fixed setup issue when client or mesh interfaces are configured on both radios
*** Wireless: fixed changing regulatory domain configuration
*** WebUI: fixed mesh nodes not being shown in Status->Wireless->Interfaces page
*** WebUI: fixed proposed configuration settings when connecting to a mesh point network
*** MultiAP: fixed client not switching to another AP if incorrect password was provided
*** HNAT: fixed multicast packet leakage when 'Hardware flow offloading' is enabled
** <b>Services</b>
*** Modbus Client: allow using negative floating point values in requests
*** Azure IoT Hub: fixed Data to Server minor WebUI dependency bugs
*** Data to Server: fixed DLMS data formating
*** Data to Server: fixed Network link state data display
*** DLMS Client: fixed segfault while reading profile generic COSEM object
*** DLMS Client: fixed profile generic entries reading
*** DLMS Client: fixed application memory allocation issues
*** SSTP: fixed route adding when default route is enabled
*** SNMP: fixed VLAN OID naming
*** OpenVPN: added fixes for instance status tracking functionality
*** OpenVPN: resolved uptime counting issues
*** PPTP: fixed PPTP instance deletion problem
*** Azure IoT Hub: fixed 'contentType' telemetry message parameter
*** Hotspot: fixed password validation for locally created users and signed-up users
*** Hotspot: fixed session invalidation after deleting registered user
*** Hotspot: fixed firewall rule creation
*** PPTP: fixed problem related with routes when failover is enabled
*** USB Tools: fixed to not display a non-existent MSD
*** Modbus TCP Over Serial Gateway: fixed gateway returning corrupted data with larger baud rates
*** WebUI: fixed data loading error in Input/Output > Post/Get page
*** UPnP: updated package version to 2.3.4
** <b>System</b>
*** Package Manager: fixed spinner message when restarting network after package upload or download
*** Package Manager: fixed supported devices check when installing a package from server
*** WebUI: fixed language install from uploaded package after upgrade with keep settings
*** WebUI: fixed an issue when a user was not logged out after changing profiles
*** Telnet: fixed segmentation fault during concurrent connections
*** CLI: fixed enter key issue on mobile chromium based browsers
*** System Users: fixed SSH session close after deleting user or disabling SSH access
*** Profiles: fixed profile migration with installed packages
*** PAM: updated libpam to version 1.6.0
*** JavaVM: fixed package installation
*** WebUI: fixed Hotspot log page table search functionality
*** Speedtest: fix missing download speed on some servers
* <b>CVE Patches</b>
** CVE-2022-4603
** CVE-2022-23308
** CVE 2022-45061
** CVE-2023-0466
** CVE-2023-6129
** CVE-2023-7042
** CVE 2023-24329
** CVE 2023-27043
** CVE-2023-42366
** CVE-2023-46218
** CVE-2023-46219
** CVE-2023-46752
** CVE-2023-46753
** CVE-2023-48795
** CVE-2024-2397
** CVE-2024-25062
** CVE-2024-27913
** CVE-2024-22365
===<b><span class="plainlinks">[https://firmware.teltonika-networks.com/7.6.10/RUTX/RUTX_R_00.07.06.10_WEBUI.bin RUTX_R_00.07.06.10]</span></b> | 2024.04.04===
----
* <b>Fix</b>
** <b>System</b>
*** Ledman: fixed memory leak
===<b>RUTX_R_00.07.06.8</b> | 2024.03.25===
* Firmware <b>R_00.07.06.8</b> was removed due to an issue with inefficient memory allocation for LED control.
----
* <b>Improvements</b>
** <b>Services</b>
*** IPSec: disabled libgmp in favor of openssl
*** IPSec: updated Strongswan to 5.9.6
* <b>Fix</b>
** <b>Services</b>
*** IPSec: increased charon load timeout
*** IPSec: fixed loading of large private keys
===<b><span class="plainlinks">[https://firmware.teltonika-networks.com/7.6.6/RUTX/RUTX_R_00.07.06.6_WEBUI.bin RUTX_R_00.07.06.6]</span></b> | 2024.03.04===
----
* <b>New</b>
** <b>Services</b>
*** Added domain and subdomain options for external landing page in Hotspot
* <b>Improvements</b>
** <b>System</b>
*** Minified *.svg WebUI files to save space on the device
*** Removed unused easy-rsa package to increase free space
* <b>Fix</b>
** <b>Network</b>
*** Fixed the issue with Wireless bgscan functionality not operating correctly
** <b>Services</b>
*** Fixed OverIP serial utility issue where after some time server mode can't accept incoming connections anymore
===<b><span class="plainlinks">[https://firmware.teltonika-networks.com/7.6.5/RUTX/RUTX_R_00.07.06.5_WEBUI.bin RUTX_R_00.07.06.5]</span></b> | 2024.02.21===
----
* <b>Improvements</b>
** <b>Network</b>
*** Improved DMZ to use its source zone on port forwards creation
** <b>System</b>
*** Updated netifd version to 2024-01-04
*** Updated PPP package version to 2.4.9
*** Updated E2fsprogs package version to 1.47.0
*** Updated Musl package version to 1.2.4
* <b>Fix</b>
** <b>Network</b>
*** Fixed an issue where DNS resolution failed for wireless clients connected to an access point configured on a specific VLAN
** <b>Services</b>
*** Fixed Modbus TCP Over Serial Gateway crash occurring at start up in some edge cases
*** Fixed tailscale VPN firewall zone creation issue
** <b>WebUI</b>
*** Fixed action descriptions in the traffic rules table
** <b>System</b>
*** Fixed WiFi LED indication when access point is turned off
*** Fixed year 2038 problem with time counter overflow
===<b><span class="plainlinks">[https://firmware.teltonika-networks.com/7.6.3/RUTX/RUTX_R_00.07.06.3_WEBUI.bin RUTX_R_00.07.06.3]</span></b> | 2024.01.17===
----
* <b>Improvements</b>
** <b>Services</b>
*** Increased DLMS Client connection timeout for TCP sockets
* <b>Fix</b>
** <b>Services</b>
*** Fixed DLMS Client memory leak with profile generic COSEM class
*** Fixed function 5 not working with high register numbers in MQTT Modbus Gateway service
** <b>WebUI</b>
*** Fixed Events Log sorting and search features
** <b>System</b>
*** Patched CVE-2024-0193 vulnerability
*** Patched CVE-2023-51779 vulnerability
*** Updated OpenSSH to 9.6p1 version, fixed CVE-2023-51385 and CVE-2023-51384
*** Fixed profile migrations, added error handling when trying to change profile while it is still applying
===<b><span class="plainlinks">[https://firmware.teltonika-networks.com/7.6.1/RUTX/RUTX_R_00.07.06.1_WEBUI.bin RUTX_R_00.07.06.1]</span></b> | 2024.01.04===
* <b>Fix</b>
** <b>Services</b>
*** Fixed issue with NTPclient zombie processes
===<b><span class="plainlinks">[https://firmware.teltonika-networks.com/7.6/RUTX/RUTX_R_00.07.06_WEBUI.bin RUTX_R_00.07.06]</span></b> | 2023.12.20===
* <b>New</b>
** <b>Network</b>
*** Added 802.11v BSS Transition Management and 802.11k Radio Resource Measurement
** <b>Services</b>
*** Added OPC UA Server
*** Added the ability to set port for TACACS+ in PAM service
*** Added switch to enable using root certificate authority for MQTT alarms in Modbus Client services
*** Added new alarm action "Ubus event" in Modbus Client services
*** Added new input "Modbus alarms" in Data to Server service
*** Added wget ping subtype support in Events Reporting service
*** Added new I/O SNMP OID that returns numeric I/O state
*** Added TLS support for OverIP serial functionality
** <b>WebUI</b>
*** Added Tailscale VPN support
*** Renewed user interface design
*** Added network interface name change functionality
*** Added last resort configuration option for multiwan policy rules
** <b>System</b>
*** Added ability to enable/disable SSH access for specific users in System Users
*** API support
* <b>Improvements</b>
** <b>Network</b>
*** Added two radio support on one SSID in Wireless
** <b>Services</b>
*** Expanded GRE VPN keep alive functionality to disable routes from unreachable tunnel
*** Added PKCS#12 certificate container authentication method in IPsec VPN
*** Added TLV message_payload support for SNMP service
*** Added Purple.ai configuration profile
*** Replaced option "No leading zeros" with "Remove all zeros" in Over IP serial functionality
*** Added reboot on storage device disappearance and re-appearance
** <b>WebUI</b>
*** Improved Events Log page loading by adding asynchronous pagination
*** Removed requirement for Diffie-Hellman parameters in OpenVPN service
*** Added improvements for creating OpenVPN IPv6 configurations
*** Added auto redirect after changing router's IP address or port
*** Added "Interface" dropdown for interfaces selection in Wake on LAN service
*** Increased Data to Server service MQTT topic length limit to 65535 characters
*** Added OSPF external routes section to Status page
*** Moved device menu entry “Reboot” to header menu
*** Moved WiFi scanner page to Services section
** <b>System</b>
*** Added Mosquitto CVE patch 2023-28366
*** Added Mosquitto CVE patch 2023-3592
*** Updated hostapd version to 2023-09-08
*** Updated cURL version to 8.4.0
*** Updated kernel version to 5.10.199
*** Updated Mac80211 version to 6.1.24
*** Added RMS data display to generated troubleshoot
*** Added downloaded Package Manager packages list to generated troubleshoot
*** Added process activity load list to generated troubleshoot
*** Changed default OPKG feed to use Teltonika's URL
* <b>Fix</b>
** <b>Network</b>
*** Fixed DMVPN firewall rule creation issues
*** Fixed RUTX VLAN keep settings issue when WAN port configuration are overwritten with 1st vlan
*** Fixed Failover missing active rules when using multiple source and destination IP addresses
*** Fixed unstable Wireless mesh connection
*** Fixed low Wireless mesh throughput
*** Fixed concurrent Wireless STA and AP functionality on 5 GHz band
** <b>Services</b>
*** Fixed SSH module enable in PAM service
*** Added minimum free space check when saving logs to flash in Logging service
*** Fixed "Set multiple coils" function sending too many bytes in Modbus Client services
*** Fixed multiple Events Reporting messages being sent when Firewall configuration is changed
*** Fixed VRRP instances advertising wrong virtual IPs
*** Added Hotspot information in SNMP MIB file
*** Fixed registered Hotspot Local Users showing random username
*** Fixed selection of MAC Auth for LAN interfaces in Hotspot service
*** Fixed inconsistent Hotspot login behaviour when using MAC Auth with Password
*** fixed instance shutdown after last local user deletion
*** Fixed RMS Hotspot data display for devices without WiFi support
*** Fixed serial timeout not working in Over IP serial functionality
*** Removed "Echo" option in Modbus TCP over Serial functionality
*** Fixed CRC verification failing when CRC is correct in Modbus TCP over Serial functionality
*** Fixed crash when getting unexpected messages from RTU in Modbus TCP over Serial functionality
** <b>WebUI</b>
*** Fixed side menu style issues when Japanese language is used
*** Fixed displaying of vendor names in Topology page
*** Fixed language packs being selectable when still in Package Manager queue
*** Added ability to configure IPv6 BGP peer
*** Fixed RelayD configuration issues after keep settings
*** Fixed realtime graphs responsive design issues
*** Fixed Network Shares users deletion
*** Fixed not all LAN interfaces shown in dropdown in Hotspot service page
*** Fixed wireless realtime data to show signal as unavailable with no connected clients
*** Fixed WiFi scanner disconnecting AP users
*** Fixed setup wizard errors in Wireless configuration page
** <b>System</b>
*** Patched FRR CVE-2023-38406
*** Patched FRR CVE-2023-38407
*** Patched FRR CVE-2023-41358
*** Patched FRR CVE-2023-41360
*** Patched FRR CVE-2023-41909
*** Patched FRR CVE-2023-47234
*** Patched FRR CVE-2023-47235
*** Patched OpenSSL CVE-2023-3446
*** Patched OpenSSL CVE-2023-3817
*** Patched LibXML2 CVE-2023-39615
*** Patched LibXML2 CVE-2023-45322
*** Patched FFMPEG CVE-2021-28429
*** Patched FFMPEG CVE-2022-48434
*** Patched dnsmasq CVE-2023-28450
*** Fixed running out of space when SSHFS is mounted in /tmp while generating troubleshoot
*** Fixed WebUI access after upgrading from legacy RutOS version
===<b><span class="plainlinks">[https://firmware.teltonika-networks.com/7.5.4/RUTX/RUTX_R_00.07.05.4_WEBUI.bin RUTX_R_00.07.05.4]</span></b> | 2023.11.09===
* <b>Improvements</b>
** <b>WebUI</b>
*** Improved asynchronous pagination in events log pages
*** Optimized Overview page load
*** Added resource loading cancellation after switching to different page
===<b><span class="plainlinks">[https://firmware.teltonika-networks.com/7.5.3/RUTX/RUTX_R_00.07.05.3_WEBUI.bin RUTX_R_00.07.05.3]</span></b> | 2023.10.30===
* <b>New</b>
** <b>System</b>
*** Added support for GD5F2GM7 and GD5F2GQ5 GigaDevice NAND flashes
===<b><span class="plainlinks">[https://firmware.teltonika-networks.com/7.5/RUTX/RUTX_R_00.07.05_WEBUI.bin RUTX_R_00.07.05]</span></b> | 2023.10.19===
* <b>New</b>
** <b>Network</b>
*** Added "shared.m2m.ch" APN for Swisscom IoT operator to APN database
*** Added "gamma" APN to auto-APN database
*** Added "soracom.io" APN for Soracom operator to APN database
*** Added "simbase" APN to auto-APN database
*** Added "pnd" APN for Pond IoT to auto-APN database
*** Added "spitfire1" APN for Spitfire operator to APN database
*** WDS support for wireless bridging
** <b>Services</b>
*** DLMS Client package
*** 7zip package
*** TincVPN package
*** Added router uptime and mobile connection uptime data parameters to SNMP
*** Custom MQTT publisher/subscriber topics definition support
*** Alternative configuration file upload support for MQTT Broker service
*** Device Provisioning Service support for Azure IoT Hub service
** <b>WebUI</b>
*** Firewall status page
*** Page search feature
*** Network Topology page
*** "Allow insecure connection" option for MQTT TLS protocol in Data to Server service
*** Package Restore feature Enable/Disable option
*** Hotspot client connection/disconnection trap option for SNMP service
*** Added Events log trap option for SNMP service
*** Confirm dialog when cancelling a verified package in Package Manager
*** "Bridge ALPN" option for Bridge configuration in MQTT Broker service
*** New subtypes of events that specify a specific port on "Events Reporting" and "SNMP Trap rules" pages
*** Specific firmware packages repository link in Package Manager page
*** Ability to enter decryption passphrase for encrypted private keys
*** "Reconnect" button in RMS page
*** New event "Device startup completed" in Events Reporting service
*** Port status and configuration page
*** IP6 table configuration option for DHCPv6 protocol in Network -> WAN page
*** Wireless interface QR code generator
*** Channel analysis page Status -> Wireless -> Channel Analysis
*** Disabled direct network interface deletion when it is associated with a wireless interface
*** Limited to a single section configuration and added IP address field for Relayd service
*** "Fast roaming" configuration for Wireless service in Client mode
*** Updated Status->Network->Wireless page to display interfaces as cards and added ability to filter connected clients by selected interface
** <b>System</b>
*** Mechanism to rebrand WebUI using GPL
*** Possiblity to create web applications with closed-source GPL
* <b>Improvements</b>
** <b>Network</b>
*** Moved FRR VTYSH package to package manager
*** Made newly created Firewall Traffic, NAT rules and Port Forwards disabled by default
*** Improved Interfaces to enable IPv6 DHCP server when mobile v6 or v4v6 PDP type is set
*** Improved IPSec performance throughput
*** Added automatic reconfiguration when switching between wireless interface modes
*** Added automatically generated name option for new network
** <b>Services</b>
*** New reworked Data to Server
*** UPNP moved to package manager
*** Added IPv6 support for Modbus TCP Server/Client services
*** Refactored Azure IoT Hub service
*** Improved resiliency to timeouts in Modbus Client service
*** Added PDU data type to Modbus read requests
*** Added new formatters for MQTT alarms in Modbus Client service
*** Added main section to make test functions independent in Modbus Client service
*** Improved WAN IP register reading time in Modbus service
*** Sped up default profile and profile template generation for Profiles functionality
*** Optimized profile change time for Profiles functionality
*** Added IPv6 support for Stunnel VPN
*** Added MAC blocking for client connections after set amount of failed login attempts in Hotspot service
*** Improved TCPdump by allowing to capture packets from any interface
*** Added OSPF support for DMVPN
*** Updated Hotspot password hashing to sha512
*** Added I/O pin name to trap notification message
** <b>WebUI</b>
*** Reorganized menu
*** Updated header design
*** Split Interfaces configuration in Advanced mode into two pages: WAN and LAN, identically as in Basic WebUI mode
*** Moved Interfaces IPv6 configuration into seperate tab
*** Added client/server status information in OpenVPN instance overview page
*** Added more IPv6 information to interface status in Interfaces page
*** Removed "Custom delegated IPv6-prefix" field from DHCPv6 configuration in Interfaces page
*** Disabled DHCPv6 interface editing while in basic mode
*** Refactored custom DHCP options into seperate modal
*** Added automatic start and end IP allocation for DHCP server configuration in Interfaces
*** Added client/server status information in L2TP VPN page
*** Added "MTU" field to L2TP client configuration page
*** Added CHAP, PAP and MSCHAP-v2 authentication fields to L2TP instance configuration
*** Added more detailed IPsec VPN status information
*** Encryption AES-256-CBC added as default in OpenVPN
*** Added "Authentication algorithm" support to OpenVPN configuration with static key mode
*** Added GRE (DMVPN) VPN tunnel source support to any instead of specific interface
*** Improved Hotspot landing page theme package removal
*** Added upload and download theme functionality to Hotspot Landing page
*** Improved ZeroTier VPN bridge configuration
*** Added ability to adjust order of rules in Firewall page
*** Added IPv6 RAW table to be displayed in Status -> Firewall
*** Improved file upload component's visual appearance
*** Change "Allow anonymous" option default value to 0 in MQTT Broker
*** Added option to specify "Client ID" in MQTT Publisher
*** Added functionality to select specific interface in Web Filter service
*** Allowed to select  FTP server subfolder in Traffic Logging service
*** Renamed various service master/slave naming convention in config files, package names and webUI to client/server
*** Added "Create static" button in Status -> Network -> LAN which bind DHCP lease for device
*** Removed redundant "Action" option in Periodic Reboot
*** Added DFS channel marking in Network -> Wireless
*** Show wireless MAC address even when interface is inactive in Status -> System page
*** Merged Multi AP configuration to wireless interface edit modal
*** Added automatic network switch to bridge if selected in Wireless configuration
*** Added default encryption for newly created wireless interfaces
*** Simplified "802.11r Fast Transition" configuration options in Wireless interface configuration
** <b>System</b>
*** Updated kernel version to 5.10.188
*** Updated UCI version to 2021-10-22
*** Updated SSHFS version to 3.7.1
*** Updated FRR suite to 8.4.2
*** Updated cURL version to 8.2.0
*** Updated TCPdump version to 4.99.4
*** Updated C-ares version to 1.19.1
*** Updated iproute2 version to 5.19.0
*** Updated libubox package version to 2021-08-19
*** Added CVE patch CVE-2023-2650
*** Added additional firmware information in CLI prompt banner
*** Connection mode LED now blinks on data transfer
*** Changed "routername" to "devicename" in system config file
*** Made all clients get disconnected out once dropbear service is disabled
*** Improved firmware downgrade restrictions for certain regions
*** Device name is now displayed in browser tab when in WebUI login page
*** Added NF conntrack information in generated troubleshoot archive
* <b>Fix</b>
** <b>Network</b>
*** Fixed UDP Broadcast Relay service crashing on start without physical network device
*** Fixed wrong or empty WAN state info
*** Fixed connection tracking for main interface in Failover
*** Fixed Wireless AP and STA functionality for 5GHz band
*** Fixed Wireless scanning issue with certain configuration
*** Fixed Wireless transmit power changing without user input after saving different country code
*** Fixed clients isolation functionality in Wireless
*** Fixed Wireless STA authentification failure in case of channel change
*** Fixed Multi AP startup when changing Multi AP configuration in Wireless
*** Fixed client connection to EAP Wireless network
** <b>Services</b>
*** Fixed reconnecting to inactive connections for Modbus Server service
*** Fixed Modbus Client response after reboot write request
*** Fixed Modbus Server to show error when trying to get operator name without SIM
*** Updated Modbus Client to handle large numbers of schedule rules, when frequency is set to schedule (Daini
*** Fixed “Input” rule displaying incorrect and missing ports in Network -> Firewall -> Traffic Rules
*** Fixed WireGuard VPN endpoint resolving problem
*** Peer cache is no longer deleted when ZeroTier service is restarted
*** Fixed RMS data collection about the list of devices connected to WiFi
*** Fixed showing incorrect Internet state in RMS
*** Fixed WiFi client info display in RMS
*** Implemented error handling when device is blocked or unrecognized by RMS
*** Fixed L2TP client sometimes not adding routes on successful connection
*** Fixed NTP time sync with browser functionality in some edge cases
*** Fixed reinstalled packages" verification when device name is changed
*** Fixed an issue where signal query would return invalid value instead of error in case of no signal in MQTT Publisher service
*** Fixed OpenVPN firewall rule creation for both IPv4 and IPv6
*** Fixed OpenVPN server crash loop after changing authentification from TLS to Static Key
*** Fixed IPsec VPN connection problem with small lifetime values
*** Fixed IPsec "Default Route" not working when Flow Offloading is enabled
*** Fixed an issue where system directory could be used as a mount point in SSHFS service
*** Fixed IP block feature to unblock an OpenVPN IP address on successful authentification
*** Fixed package installation process bug when packages have different architecture names
*** Added "bearer token" authentication functionality in Dynamic DNS
*** Fixed MQTT Broker "local_port" option keep settings migration
*** Remove public keys when key-based authentication is disabled in Access Control
*** Fixed "Parity" field "Mark" and "Space" options being ignored in DNP3 Serial services
*** Corrected SNMP MIB file syntax according to standards
*** Fixed returned port count in SNMP
*** Fixed disabled CLI remote access taking up a session slot
*** Fixed user deletion in Network Shares service
*** Fixed router reboot inconsistencies after Storage Memory Expansion
** <b>WebUI</b>
*** Fixed empty events cards in Overview page when no content is available
*** Fixed modal form inputs not clearing upon closing after nested modal is saved
*** Fixed select menu closing when selecting custom option
*** Fixed multi select expanding table row when adding new values
*** Fixed global section caching after deleting a section in a table
*** Fixed unpredictable search logic in tables
*** Fixed interfaces reordering by metrics in Failover page
*** Removed ability to select ports on ICMP and ESP protocol in Failover page
*** Fixed wrong status when interface is disabled in Failover page
*** Fixed firewall zone and rule creation/deletion on VPN configuration creation/deletion
*** Fixed STP enabling issue in Interfaces
*** Fixed EIGRP status info in Dynamic Routes
*** Fixed issue with custom DHCP options where you could not have multiple values per rule
*** Fixed Routing/NAT Offloading section display in Network -> Firewall -> General Settings when device is not supported
*** Fixed SSH/HTTP/HTTPS/ICMP setting in Network -> Firewall -> Attack Prevention page
*** Fixed failing Firewall rules with united protocol formats
*** Fixed zone select component not closing options menu when selecting an option in Firewall pages
*** Fixed memory leak when cancelling file uploads on Chromium-based browser
*** Fixed group settings saving by removing deprecated ":section" routes in Administration -> User Settings -> System Users
*** Fixed allowing IDs above 247 in Modbus Client service
*** Fixed selecting SIM in Modbus Client service Alarms
*** Fixed Modbus Alarm telephone number limit
*** Fixed to show available options for test requests on error in Modbus Client service
*** Fixed Modbus Alarm I/O pin display values
*** Fixed issue when creating instance named "gre" does not show in GRE VPN
*** Remote endpoint field now allows underscore character in IPsec VPN
*** Fixed ZeroTier wrong service status display in Status -> Services
*** Fixed problems with L2TP/PPTP VPN firewall rules automatic creation
*** Fixed problem related to the enable/disable toggle in OpenVPN instance overview page
*** Added fixes for key-direction missing problem when uploading OpenVPN config file
*** Fixed login page read-only inputs after custom user logout
*** Fixed issue when double clicking firmware upgrade cancel button returned error
*** Fixed Package Manager prompt message to appear when package requires network restart
*** Fixed showing in queue packages when they contained special symbols in the Package Manager page
*** Fixed various visual Side Widget bugs
*** Fixed Data to Server DNP3 filter from flash display
*** Fixed incorrect source data displayed in Realtime Data -> Connections table
*** Fixed memory expansion confirmation prompt title
*** Fixed incorrect configuration saving in Hotspot 2.0 service
*** Disabled password hashing for new user creation in Hotspot service
*** Fixed Hotspot landing page themes saving bug
*** Fixed test email sending to more than one recipient in Events Reporting page
*** Fixed VLAN OID values in SNMP service
*** Output proper error message in case of hardware not being supported in Firmware Upgrade
*** Fixed being able to open side widget when user does not have read access
*** Fixed profile creation when current configuration is not present
*** Fixed wrong protocol data display in "Access control" page
*** Fixed LAN interfaces not showing up before WAN interfaces in Status -> Realtime Data -> Traffic
*** Fixed incorrect Bluetooth details modal size
*** Updated to display "MAC address" on device details page
*** Fixed disabling DLNA service when USB drive is removed
*** Fixed error when user has no write permissions in Speed Test page
*** Updated Network -> Wireless interface add and delete button visibility in basic mode
*** Fixed Wireless Multi AP incorrect SSID list after removal of an instance
*** Fixed MAC address filtering in Network -> Wireless page to list only connected WiFi devices
** <b>System</b>
*** Patched CVE-2023-0386 vulnerability
*** Patched CVE-2023-0464 vulnerability
*** Patched CVE-2023-0465 vulnerability
*** Patched CVE-2023-2602 vulnerability
*** Patched CVE-2023-3772 vulnerability
*** Patched CVE-2023-3773 vulnerability
*** Patched CVE-2023-4128 vulnerability
*** Patched CVE-2023-33476 vulnerability
*** Patched CVE-2023-28484 vulnerability
*** Patched CVE-2023-29469 vulnerability
*** Patched CVE-2023-31490 vulnerability
*** Patched CVE-2021-36369 vulnerability
*** Patched CVE-2023-40283 vulnerability
*** Patched CVE-2023-48174 vulnerability
*** Delayed Custom Scripts execution on boot, after storage devices are mounted
*** Fixed Custom Scripts permissions after save
*** Changed certificate expiry calculation mechanism to fix Y2K38 bug
*** Fixed downloading of certificates that have a space in their name in Administration -> Certificates -> Certificates Manager
*** Fixed Events Log database rotation to prevent log partition space exhaustion
*** Fixed duplication and sorting of all events IDs in Events Log
*** Fixed FOTA crash when current hours is with leading 0
*** Fixed crontab job removal after disabling FOTA
*** Changed Mosquitto build options to not include cJSON library
*** Fixed device name resetting to default upon refresh in Administration
*** Fixed backup upload validation with memory expansion
===<b>[[Media:RUTX_R_00.07.04.5_WEBUI.bin|RUTX_R_00.07.04.5]]</b> | 2023.07.24===
* <b>Improvements</b>
** <b>Network</b>
*** Added metric field support in BGP Route-maps page


===<b>[[Media:RUTX_R_00.07.04.4_WEBUI.bin|RUTX_R_00.07.04.4]]</b> | 2023.06.26===
===<b>[[Media:RUTX_R_00.07.04.4_WEBUI.bin|RUTX_R_00.07.04.4]]</b> | 2023.06.26===
Line 11: Line 830:
* <b>New</b>
* <b>New</b>
** <b>Network</b>
** <b>Network</b>
*** Travelmate package
*** Travelmate package for captive portal redirection


* <b>Improvements</b>
* <b>Improvements</b>
Retrieved from "https://wiki.teltonika-networks.com/view/Special:MobileDiff/108292...128925"