Firmware Revision Log This log covers significant changes to the XOS firmware between versions. Minor bug fixes and basic feature updates may not be included. Version 4.x Build 180 (p) - added probe DNS checker - fixed issue with web filter and hourly database updates - XOS: fixed issue with outage detection, changed secondary testing to root servers - fixed issues with table fields (shaping_params, probes, SLA metrics) - updated probes ICMP setting only - updated CLI menu options - updated MSA web GUI buttons - removed metric_update script Build 179 (p) - added firmware reduction program for patch releases - added database size checking - fixed hardware clock sync issue in one-minute updates - updated outage testing algorithm - removed misc files taking flash space Build 178 - fixed issue with bridging and failover testing resetting too often - fixed issue with Site2Site password encryption - fixed issue with hardware clock, per minute updates and drive writing - fixed issue with proxy not starting with only one active WAN link - updated LDAP support - updated XML update API engine - updated web filtering options Build 177 - added MVP rebalancing algorithm - updated to Site2Site code changes, implementation of Stratified Tunnel Sequencing - updated real time reporting, issue with memory - fixed issue with DHCP server not always starting Build 176 - Major update to Site2Site code where the Virtual Address is now generated automatically Build 175 - added MSA active checking - added new Site2Site global param control - updated interface rate settings - updated MSA testing to confirm proper functionality - fixed probe test issue with link testing - fixed DHCP client issue for WAN links Build 174 - added bridge bypass capability for networks that are not to be intercepted - added DHCP and bridge networks to text configuration file - fixed issue with bridge setup and gw probing - fixed issue with vector maps when overlapping addresses conflict - fixed issue with ActiveDNS-Geo to make sure that DNS is not served incorrectly Build 173 - updated SNMP custom MIB settings - fixed issue with real-time custom Application reporting Build 172 - updated XFlow Bandwidth Usage Reporting formatting and URL display - fixed issue with MVP Reporting - fixed issue with custom Application reporting Build 171 - fixed issue with SNMP not starting from Build 170 - fixed issue with DNS reporting and WebFilter URL Reporting - fixed issue with XFlow not properly reporting - fixed start issue with XFlow under the new capture method from 170 Build 170 - added boot log formatting within the CLI - added new debug functionality for additional reporting - added secondary route reporting - added vWAN capability for MSA bonding - added help for various features - added time/date to web filtering - added usage based packet limiting - added time based session limiting - added text configuration capabilities - added pre-start loop and output screen dump block - added user-based URL lookup reporting - added XML Reporting option and security functionality - added directed SNMP table queries - added syslog archive for longer term storage and XML access - updated XML-based XGM update code - updated XML-based reporting via Excel - updated DNS record checking for A records - updated automated reset for sflow server - updated XFlow collector to grab data 10% of the time - fixed period reset issue with xflow information, using wrong match eq - fixed issue with realtime counts and bytes/bits issue - fixed issue with config file uploading and truncating - fixed issue with vector checking - fixed issue with SLA reporting (jitter, packet loss) - fixed routing table issue where default was not being properly added to table 10 - fixed potential PCI security issue in SSL negociation - removed old vector_algorithm Build 169 - added core API components - updated geo-DNS failover testing - updated DNS apply order - updated proxy ID characteristics - added firewall check for "XRoads" group Build 168 - added web filtering categories (file based blocking) - debug custom proxy error messages Build 166-167 - fixed problem with sessions table - fixed problem with custom web filter errors - added clear download firmware memory option - added error detail for DNS verify - added error when DHCP server/relay are enabled - added DHCP reset functionality - added vector mappings checker - added P2P filtering category and sites - updated QoS set to ON by default Build 163-165 - updated Reporting and AppRouting menus - added DBM Session Control - added custom web proxy errors - fixed problem with hourly runtime - fixed problem with tables on default Build 162 - added multiple WAN addresses in bridge mode - added new categories for web filtering (prep for Webroot database) Build 161 - added the ability to block all DNS - added the ability to control which WAN links can be used by MSA - added firmware update success/failure error messages - updated realtime memory added daily reset - updated CPU/Memory reporting to provide better feedback - updated DBM and Bandwidth Usage reporting to not display incorrect info - updated Vector Mappings to go after BPR - updated MSA starter to refresh memory daily - updated static routes in bridge mode - fixed firmware update issue without PCI compliance - fixed issue with xflow capture and invalid IP addresses - fixed issue with SLA reporting showing BPR when reporting disabled Build 160 - updated s2s with drop-down for failover connection selection to reduce - updated bridge capability to add multiple bridge addresses for WAN1 - updated syslog and critical logging to double log data storage - fixed issue with VLAN ID's 0 and 1 - fixed issue with DHCP range being set to 255 Build 159 - fixed failover issues with private tunnel bonding - fixed https access from the LAN when remote access disabled - fixed problem with category-based blocking Build 158 - updated MSA starter and test scripts (dynamic site acceleration) - updated filtering to utilize category-based blocking Build 157 - updated main menu tabs to reflect updated website - added additional custom probes for link testing - added additional database checks - added dhcp relay capabilities - fixed realtime reporting issues regarding SNMP value max - updated private tunnel bonding - fixed https admin access issues Build 156 - moved commit and save parameters to home page - updated several menu options to make navigation simpler Build 155 - fixed issue with policy reporting and large numbers - added mvp routing update options - fixed license check for hosts/firmconfig - snmp updates (org) - fixed everready checker - update to outage probe testing - added new probe features - fixed standby link display - added help files for probe new testing Build 154 - updated DNS checker - updated S2S accelerator - updated MVLSproxy - fixed issue with link overview display - added new licensing options for aXcel Build 153 - fixed multisession_server table - fixed xflow tables / direction - fixed issue with URL reporting and db max - updated MSA dynamic site checker - removed Netsweeper Build 152 - added global URL filter reporting - added global URL filter multi-rule updates - updated URL filter, disabled Netsweeper - updated firewall menu, removed SoureFire - updated web server restart PCI compliant - added PPTP restart reporting - added PPTP address specification - fixed PPTP restart on new user - added PPTP MTU size adjustment - updated email alerts help options - updated route secondary - updated QoS partition sizing - added additional DNS resources - updated DBM functionality - updated DBM reporting - added new URL reporting - added new URL capture technology - fixed VLAN routing issue in route secondary - updated bridge testing/failover checking Build 151 - added accelerated encryption option / only one type supported - fixed bridge mode routing in failover - fixed VNAT IP address change function - fixed issue with DHCP server restart - fixed DHCP lease time size - fixed VLAN support for DHCP - fixed realtime app updates Build 150 - added multi-network support for bridge mode - added single IP management in bridge mode Build 149 - updates to MSA acceleration tables - updates to shaping 500 > 5000 filter rules - added VoIP QoS classifications - added DBM debugging capabilities - fixed S2S routing issue where failover prevents single tunnel from routing - fixed firewall rules for http with proxy - fixed secondary routing issue causing outbound ICMP issues - fixed MSA restart issues - fixed broken help links - fixed Link Utilization graphs - fixed issue with SSL remote - fixed email alert test - fixed issue with usage-based shaping - fixed SNMP issue with int counters and EOF problems - fixed DHCP issue across multiple VLANs - fixed NAC issue across multiple VLANs Build 148 - fixed issue with DNS restart - updated HTTPS support w/port changing - disable X-Forward with webroot - fixed smart metrics routeopt - fixed ESP enable/disable issue in GUI - added dynamic home page status image - updates S2S tunnel messaging and control - updated ESP control for low weighting - updated S2S routes to remove old routes when updating Build 147 - added reliability to MSA restart - added usage shaping to policy-based shaping - fixed realtime memory updates - fixed Apply Policies button - updated CPU calc to x10 - updated tunnel routes - fixed xflow control reset - fixed xflow metric updates Build 146 - updated XFlow Top Usage reports - updated Firewall menu - updated Shaping menu - updated WAN naming - updated Link Utilization graphics - updated XFlow reporting engine - updated XFlow metrics - updated firelog - updated smart metrics - updated routeopt Build 145 - added memory bump to MSA - added WAN optimization per server to S2S - fixed shared/single shaping issues Build 144 - added new ftp proxy - added new sip proxy - added bridge ping test - added refresh to admins GUI - added highspeed congestion control - updated vector maps to support S2S tunnel routes - updated netbalancing menu - updated bridge reset times after downed link - fixed memory issue with realtime reporting - fixed realtime display mem/cpu - fixed VLAN address, cannot be "0" Build 143 - new GUI preparation for 4.5 release - added new https service - added new reporting for stats - added new reporting for application shaping - added new reporting for URL shaping - added support for DMZ interfaces 9,10 - fixed bug in site2site tunnel routes - fixed issue with WAN6 reports - fixed default values for DBM - fixed / PTR domain creation issue - updated exec summary report Build 142 - updated firewall menu "Cloud Enabled" - updated DBM params for manual stage entries - updated alerts for bad logins to include IP address - fixed home page byte count from 140 - fixed MSA in bridge mode - fixed firewall rule import via text file - added new email system for html messaging Build 141 - fixed web filter bug from build 133 - fixed VNAT ":" bug from 138 - fixed route flush bug from 139 Build 140 - Update to configuration upload process - Update to outage timing - Update to default menu selections Build 139 - Updated firewall menu - Updated shaping menu - Updated reporting menu - Updated real time link stats - Updated interface commit process and messages - Updated CLI menu (bandwidth testing, Link stat reset) - Updated shaping stats for CSV export - Updated bridging reset time and added session reset - Updates to DBM shaping / DBM reset and DBM tables - Updates to site2site tunnel configuration - Added solution for secondary external EdgeXOS appliance for public/private link bonding (two appliances required) - Fixed firewall bug from Build 138 - Fixed site2site bond designation bug from Build 135 - Fixed site2site route bug from Build 135 - Fixed shaping update "last to match" Build 138 - Updated real time statistic gathering - Updated DBM to include packet limiting - Added BACKUP checking to ESP - Added ":" to virtual nat service - Added MPLS private/private equalization - Added new link usage percentage tracking code - Added the ability to create outbound interface specific shaping Build 137 - Fixed bugs in various 136 code - Fixed URL filter bug - Fixed several NAT mapping bugs when BOTH TCP/UDP protocols are used Build 136 - Updated syslog table serial char - Added removal for cf_urls table - Added firelog test in everready - Added edgexos admin testing - Fixed issue with secondary proxy/bridge network configuration - Fixed issue with menu numbering - Fixed issue with MSA filter disabling and user-per filtering - Fixed issue with URLFIER redirection - Fixed issue with MSA checker - Removed cloud security acceleration Build 135 - Updated SNMP server/MIB - Updated multilink checker > DPI - Updated autosense info script - Updated PPTP to note primary active interface - Updated firewall menu, removed legacy services - Updated advanced web filtering > user-based - Updated user-based filter to use client port forwarding - Updated root filter restart - Updated CLI menu, removed beta code - Updated AUP to capture and update users IP addr - Updated multi-save of configuration file - Updated syswall server - Updated syslog server for global operation - Updated secondary proxy/bridge networks - Updated bridge down testing - Added url filter checker - Added tunnel acceleration option - Added testing for proxy/url filter - Added new web filter bypass rules - Added activedns-geo service - Fixed firewall log for both tcp/udp - Fixed portmap for both tcp/udp - Fixed issue with configuration file uploads - Fixed cf_urls issues dropped tables Build 134 - Updated secondary multilink testing - Updated SNMP query script - Updated DHCP lease reporting - Updated and improved db checker - Added custom policy routing functionality - Added equalized s2s routing via multiple Internet links - Added route_secondary updates every minute - Added autosense for GigE - Fixed realtime uptime stats - Fixed SNMP uptime reporting - Fixed enhanced session persistence for FTP Build 133 - Fixed DHCP lease issue - Fixed debug issue with XFlow control - Updated xos mib file - Added csv stats to policy table - Updated licensing on Policy Routing and DBM Build 132 - Fixed MSA bypass issues - Fixed MSA white/black list issues - Updated acceleration params Build 131 - Fixed issue with MSA extensions - Fixed issue with MSA bypass - Updates to S2S routes based on probe test - Updated SNMP server (bulkget) Build 130 - Updated Netsweeper default page testing - Updated web logs, fixed URL search - Updated DHCP server, fixed multi NIC issues - Updated max throttle, fixed loop issue - Updated s2s starter, fixed probe failover - Updated tunnel routes, added static update - Added PCIv2 updates Build 129 - Updated S2S probe failover - Updated R/W access PCI Comp - Updated PPTP control - Updated policy shaping ordering (group/policy) - Updated reverse policy shaping - Added xos_users for 5.0 GUI - Zero out site2site error log Build 128 - Updated RealTime Stats - Updated TCP Tuning - Updated HA server, added delay for lower utilization of route processor - Updated MVR GUI - Updated MSA DNS Settings - Updated Autoneg Settings - Forced Syslog server address - Forced SFlow server address - Added manual clock set - Added Spyware/MSA Bundle - Fixed dbm startup issue - Fixed MSA extension issue Build 127 - update to PCI compliance - update to SNMP MIB - update to MSA memory - update to BPR fixed routes / syslog reporting Build 126 - fixed issue with MSA configuration file overwrite - added additional SAVE command verification - updated SNMP MB with Sysobject and Host Resource Build 125 - update to BPR for fixed routes Build 124 - updated tunnel failover with probe test Build 123 - updated configuration file separators - updated configuration file to save custom apps - added S2S on_fail probe option Build 122 - fixed configuration upload process - changed CLI message to 4.0 - fixed Link Control nailed up settings Build 121 - added licensing module for different web filtering categories - fixed issue with low msa memory on E2W50 units - hold on storage size checking - hold PPTP on 4.0 kernel issue - added xos_users table for 5.0 authentication - updated SLA syslog - updated five minute jobs - fixed issue with one-to-one Vector Map additions - updated configuration file upload process - fixed issue with configuration file apply order rules Build 120 - added dhcp functionality - added spyware licensing updates - fixed major issue from Build 117 with WAN1 link resets Build 119 - fixed xflow reporting not starting properly - updated app_accel licensing for E2W - added BOTH option for O2M NAT - updated Bandwidth Testing - fixed multiple filtering options issue - fixed overlap in netbalancing feature updates Build 118 - fixed Add Firewall Rule issue - added BPR fixed route - fixed MSA table data - fixed webroot/netsweeper conflict - fixed custom proxy Build 117 - fixed snmp issues - added SLB control - fixed DBM starting issues - fixed Firewall menu - fixed Service Manager - fixed webroot startup - fixed access to bridge mode Build 116 - updated DNS for bridge mode - updated O2O and O2M src/reverse NAT - updated policy stats - updated five min run Build 115 - updated MSA engine - updated url checker - updated MSA control / checker - updates similar to 3.4/5 Build 239 Build 114 - updated bandwidth_eq - updated console refresh - updated Netsweeper Live reporting - updated number of MSA filter agents Build 113 - fixed squid count issue - MSA engine config file - fixed WAN graph updates - updated bandwidth_eq shaping - updated dbm level incrementation - console refresh update Build 112 - updated MSA engine - firewall menu update - added DBM functionality / updates - added new security partners - updated reporting menu - updated tools menu Build 111 (pre-kernel install) - sync with Build 231 - updates to Shaping / NetBalancing / Firewall menus - updates to ESP pass-through rules - added bridge shaping for both ethX and br0 (via eb) - fixed ActiveDNS in Build 4.0x Build 110 - sync with Build 230 Version 3.4 / 3.5 Build 243/244/245 - updated configuration NAT rule functionality Build 242 - updated remove script for old snmp - fixed issue with policy stats - fixed issue with secondary proxy during reboot - updated configuration file to include system name designation Build 241 - fixed ActiveDNS issue when in bridge mode - fixed NAT mapping issue with src redirect - fixed shaping stats / removed from five minute run Build 240 - updated DNS for brdige mode - updated O2O and O2M src/reverse NAT - updated policy stats - updated five min run Build 239 - updated xosurlcontrol - updated proxy checker - updated filter starter (reboot / reset) Build 238 - added xosurlcontrol - updated url filter counts Build 237 - added additional caching memory options - updated proxy configuration module - updated proxy engine b251 Build 236 - updated MSA engine (stable 8) - added flexible timeout for Netsweeper cache - update to Netsweeper sub-process count - update to Netsweeper starter - updated filter URL - remove cf_checker - updated cache Flushing / Bypass Build 235 - updated bandwidth_eq - updated console refresh - updated Netsweeper Live reporting - updated number of MSA filter agents - update MSA checker Build 234 - fixed squid count issue - MSA engine config file - fixed WAN graph updates - updated bandwidth_eq shaping - updated dbm level incrementation Build 233 - updated MSA engine Build 232 - updated XFlow reporting menu - update to XFlow ability to export logging - fixed issue with port mapping in BACKUP mode - fixed int issue with port mapping - updated P2P Blocking code - URL reporting moved to Netsweeper - bandwidth testing removed to updating - update to start loop - update to vector_mappings remove old tables - update to MAC designation CLI - MSA default enabled - updated MSA when using single interface - updated cf_gather - update to quicksetup Build 231 - updated xflow reporting separated from five minute run - updated MSA engine (fixed memory issues) - updated route checker (secondary network checking confirmation) - added bridging management ping test - removed Apply&Save while testing - updated S2S application routes (ahead of non-tunnel routes) - fixed problem with displaying email alerts Build 230 - changed Site2Site routing order for ESP - added notes to Site2Site in regards to Blowfish - updated balance mode default to live - Netsweeper disabled by default - updated secondary route checker (add LAN to all tables) - updated ESP routing to prevent re-routing for private space - fixed bug in MSA status checker (not restarting MSA engine) - fixed issue with secondary routes being reset - updated MSA bundle update and removal - updated S2S route updates to include all tables - removed dynamiknow upate - updated CLI menu to use new interface address lists - fixed MSA memory issue, added jpg extension Build 229 - updated default MSA extension listing - updated max memory parameter for MSA - updated MSA engine - fixed memory issue with oneminute runtime module - added tunnel policy/application routing feature Build 228 - update to root, build bug - added manual route via CLI Build 227 - added MSA checker, maintain uptime - added quicksetup user / menu - updated balancing options - updated default for enhanced session persistence (ESP) - updated ESP to include 443 Build 226 - updated MSA module with latest engine - updated adv session persistence - remove default white list for MSA Build 225 - updated SNMP MIB file - updated netmon - updated MSA beta3 - fixed BPR route updates post reboot - fixed interface update when tied to web acceleration - added log update files (xroads sec_log out) - added extended session persistence capabilities (strict persistence) Build 224 - update to Site2Site tunnel checking - fixed bridge mode configuration file issue - fixed issue with per minute deamon checking and nat updates Build 223 - fixed for web proxy restart issue - fixed route issue with probe failover - fixed syslog cpu/memory messaging errors Build 222 - patch to Netsweeper filter config Build 221 - updates to Netsweeper core build - updates to wen filtering modules Build 220 - fixed startup issue for EdgeXL - fixed several db setup issues firmconfig Build 219 - problem with syslog.server - update everready with http test - update everready with snmp test Build 218 - fixed problem with syslog checker - addition of proxy failover modes - updated secondary bridge networks - updated bridge routing - added serial number to CLI - updated Secondary IP's to allow WAN2+ - fixed issue with gui / save updates - added clear command for firewall logs - update home page bridge/proxy hold notice - added configured DNS resolution testing Build 217 - fix to minute daemon issues - updates to WAN reporting - update to system server - update to the default data file Build 216 - updated to bridge controls - remove of proxy modes Build 215 - fixed issue with probe route being removed - updated bridge management IP assignments - updated route for WAN1 to be removed when in bridge mode - updated holdtime to 10 sec or more - removed WANOpt in configuration file - fixed issue with adding addresses via CLI Build 214 - updated Interfaces so Bridge Mode is perferred WAN1 - fixed issue with one-to-many TCP & UDP rules - fixed wanopt_control - fixed everyready link issue - fixed oneminute / fiveminute run issues - fixed max connection name 40 chars - removed old compression matrix s2s - removed web proxy config update - updated interfaces module to allow for dual LAN addresses Build 213 - segmented GUI updates for root trigger - fixed exit issue with five min applications - fixed link issue with everready - removed daily graph save - added db checker, test first, if error copy saved - added test for memory and load to syslog if problem - added syslog if problem with storage - fxied issue with syslog time stamp - update config maker (firewall comments, bridge networks, apply order) - updated syslog server std message - updated shm size - updated interface WAN1 > LAN - removed the ability to allow secondary addresses when proxy is being used - removed the ability to allow bridging/proxy with one-to-one and one-to-many for WAN1 - removed the ability to to use virtualNAT for WAN1 when in bridging mode - fixed configuration file site2site support - fixed configuration file firewall colors and comments support - added configuration file bridge networks support Build 212 - bridging updates failover process, etc - updated multisession module bundle - BPR smart metrics update for timeout - added Dynamiknow support - bridge support with vector maps - bridge help added - fixed issue with activedns module update 1.0 - fixed netsweeper table update - updated bridge outage testing Build 211 - new bridging code added - fixed issue with secondary routes 'via' switch Build 210 - added mode to BPR - added source address to Application Routing - updated SNMP starter script - fixed shutdown bug in s2s client - updated default for multisession disabled - updated multisession libraries - added cache management for multisession - updated filter_starter to check for multi-session - updated Vector Maps to enable Quasi-NAT mode - fixed issue with Vector Maps and null (any) value for port mapping - add the ability to set any IP address on any port via CLI - consolidated all one/five minute execs - added DNS / WINS option to Site2Site tunnels - prevent Site2Site tunnels from being higher than 100. - update the DNS record config capabilities to transfer TTL settings - updated to firewall menu structure (user mgmt move) - updated firewall rule listing (always show rules) - updated DNS host field size to 250 Build 209 - added the ability to SAVE config via CLI - moved user control over to NAC Firewall - updated filter children count - updated lib2 compression - fixed issue with S2S compression levels - fixed BPR non-WAN selection bug Build 208 - fixed BPR non-ping code - changed BPR defualt to 500 Build 207 - added bypass for Site2Site tunnels when web filtering is enabled - swap disabled Build 206 - updated AUP fixed framing error - updated BPR does not change if route still the same Build 205 - added GUI functionality for bypass/DMZ ports Build 204 - fixed s2sclient LAN routes - fixed s2sclient password verifcation - fixed s2sclient firewall disabled pass-through - fixed firelog overrun, too many records - added memory for web filtering Build 203 - fixed probe address problem with MLO - removed probe select in Link Control, no longer needed - fixed email test problem - added email exec summary test Build 202 - fixed routing issue in vector mappings - fixed S2S restart issue Build 201 - fixed S2S routing issue Build 200 - fixed route issue with MLO Build 199 x - fixed interface issue removing addresses improperly x - fixed issue with MLO where packet loss value was missing x - updated nat to support single port reset x - removed support for ipsec module is not already in use Build 198 x - fixed MLO failure to start x - fixed wanopt deamon kill x - fixed nat update deamon kill x - added debug for probe update x - fixed icmp launch MLO kill Build 197 x - fixed issue with MLO DNS probe x - fixed issue with S2S client routing x - fixed issue with server key for S2S client x - fixed issue with Bandwidth Equalization not running x - added 80% utilzation to Bandwidth Equalization x - fixed AUP auth redirect to index.html x - removed aup.html from AUP x - added default firewall rules web interface x - added Port speed / duplex reset on reboot Build 196 x - added last time HA sync'd x - added Init Sync button to immedately sync the HA config x - HA primary to shutdown if secondary seen during boot x - autosense must hold the configuration change through reboots x - add the ability to view leases for DHCP Build 195 x - updated single port failure routing x - updates to multi level outage detection process x - added packet loss and latency testing to MLO x - added enhanced compression capabilities to Site2Site x - added compression levels to Site2Site x - fixed issue with O2O / O2M same as WAN address conflict x - fixed issue with probe address not setting correctly Build 194 x - added default gateway on/off for site2site client tunnels x - match secondary site2site auth ta.certs x - update Host Name in DNS to 63 length x - add '/' to Host Name for PTR records x - update Firewall rules to allow for SRC/DST up to 255.0.0.0 x - do not allow service to be deleted if firewall rule exists x - vector maps only allow for 7 digits, need xxxx:xxxx x - update to sync x - change DNS reset period hourly x - increase the cache-expire to handle large number of queries x - add the ability to assign DNS to the PPTP client x - add recursive dns lookups x - MAC Bindings moved to User/Device Management x - proxy rules help is missing x - misspelled word on the home page help x - fixed issue with internal/external ports on initial configuration one-to-many Build 193 x - added site2site client support x - updated AUP default pages x - added WAN Optimization algorithms Build 192 x - updated packet sniffer (real-time dump) x - add AUP no cache to default index page Build 191 x - snmp mib extended with WAN in/out x - fixed AUP reset timer x - fixed snmp server error x - modified xos_mib file x - updated snmp script file Build 190 x - add per range session setting x - removal of all p2p_throttling links x - add per range session setting x - AUP user authentication bug fixed x - AUP reponse page scrolling added Build 189 x - updated Session Limiting (session limit based on defined networks) x - updated initial rule/policy list screens for VNAT/O2O/O2M/VM x - new SNMP server added (3.5 only) x - new mib database created x - new mib responder script created x - AUP add the ability to authenticate against users in user/device manager x - AUP does not copy new files to flash backup for reboot x - AUP does not take into account if new firmware is loaded Build 188 x - AUP defaulted text for Default x - AUP upload aup.bk as aup.html x - AUP instead of Approval needed changed to Check to Accept is needed Build 187 x - VNAT issue where telnet shows up as port 22 x - include Site2Site Download Accelerator x - vlan update auto up x - added feature to allow HA failover under 60 seconds x - add nightly refresh of AUP x - change AUP css file upload to index.html file upload x - add default button to reset the AUP index.html file x - add AUP allow to table (IP address/subnet) x - add AUP allow from table (IP address/subnet) Build 186 x - updated AUP upload for aup and css pages x - bug fix AUP to handle web redirection upon authorization Build 185 x - fixed DHCP issue for WAN3/4 Build 184 x - update HA message to home page of second unit to display prior to sync'ing x - update to auth server, fixed startup issue Build 183 x - bug fix send xroadshabye when sync done Build 182 x - fix for user auth install x - configuration default updated with HA trigger x - Site2Site tunnel routes are getting removed and not coming back when dynamic client Build 181 x - added dhcp addressing for WAN3 Build 180 x - added AUP User Authorization Build 179 x - exiting p2p_throttling (this is causing significant CPU utilization) x - wanopt_update not closing DATA x - application route show blank after editing x - change Web to DNS testing under link control x - fix bug in network_gather set rxtotal and txtotal to '0' alter net_stats table x - show site2site in backup in listing when in backup mode x - vector_algorithm update weight default to '1' Build 178 x - update to vector_algorithm fixed several bugs x - update starter setup for force output null x - routeopt_update removed wan checking x - routeopt_update set bpr mode to default table Build 177 x - update vector_algorithm > 60 sec usage, events are backgrounded x - remove default table from vector_algorithm x - update to filter_starter fix bridging filtering x - select Interfaces > select Interface Options x - reset graph does not delete Site2Site graph x - Site2Site graphs, don't zero numbers Build 176 x - problem with Site2Site reporting update x - change password back to '35' characters x - issue when traffic shaping policy is selected, it does not fill in the IP address or correct subnet x - force clear of wan reset message after one minute x - force rac registration immediate x - problem with balance_mode web GUI Build 175 x - total_bytes must be an int value x - update firmconfig set balance_default = '1' from NULL x - reverse the default balancing method to use weighted balancing by "Live Balancing" vs "Accrued Balancing" x - note: content filtering must be enabled to view web usage reports x - site caching changed to site lookup & caching based on the Netsweeper x - site2site reporting not working x - vector algorithm issue not selecting correct wan link x - stop vector starter after reboot Build 174 x - probe address failure report to syslog or critical log x - bridge mode is destination to redirect x - add switch for load blancing, whether to use usage based balancing x - fix ROUTE_OPT x - need to provide secondary IP notice when VNAT rule is created Build 173 x - fix issue with content filtering no working due to bridge update x - allow other characters in BPR URL field x - force the password length Build 172 x - add brdige NAT redirect for content filtering in bridge mode x - change order of tables APP_ROUTE x - found issue with app routing, APP_ROUTE Build 171 x- add bridge to trigger exit if proxy for port_test x- problem with unique gateway / probe testing Build 170 x- daily system status report (text based) x- email system updates for daily reports, etc. Build 169 x- proxy_arp needs to be modified on Interfaces page (mode vs enabled), also need to segment proxy_arp selection 0,1,2 x- update SSH menu to 3.5+ x- remove lilo from standard build x- PROBE address can not be the same in multiple interfaces x- HA issue, failback primary by rebooting secondary x- do not allow port 8088 to be used on O2M or VNAT. x- move S2S tunnel delete button to the end x- don't allow xx:xx in virtualNAT creation Build 168 x - config default file updates x - update vector mappings (ALL protocol routing) x - net_stats need to be reset x - XGM rac2 update x - do not allow a save after the unit has HA syn'd Build 167 x - everyready xflow_net sizing x - cf logging max 20000 x - ospf / rip conf files included x - change url starter to 15 sec x - no HA secondary save notice x - vector mapping ---Select-- to ALL Build 166 x - vector map issue > remove NULL from port selection x - add network monitoring function which stops monitoring if gateway down x - s2s help file Build 165 x - change anti-virus engine to IDS Blocking x - issue with dns_resolve not working correctly > params x - make sure that DNS is updated on LAN Internface Apply x - make HA default to 5 minutes x - vector_map port IS NULL Build 164 x - imcp_port_test DNS echo x - webprobe update Build 163 x - firmconfig errors x - one-to-one don't allow the creation with an actual WAN address x - don't allow to add a VNAT rule with no name x - add memstor to CPU/Mem dump x - help for tunnel threshold tunbpr.html / add_tun_threshold.html x - help for tunnel route tunroutes.html x - help for NAT apply order x - HA issue when primary reset while secondary is running Build 162 x - NAT o2m issue, do not next if naddress is missing x - Feature 'Add Threshold' added to S2S tunnels Build 161 x - BPR SLA reporting (max 25) x - SLA reporting display proper reports x - S2S secondary tunnel weighting Build 160 x - rec'd update 1 of 2 from Netsweeper (added keyword categories) x - removed expired web filter tools x - added new filter rule updates Build 159 x - login statement x - UTC time date stamp corrected x - Netsweeper cat 254 new url x - NAT portfrd O2O issue (from 158) x - update to HA, stop testing after failover x - web filter not restarting after reboot x - web filtering example *.limeware.com x - clicking update for HA should automatically save the configuration Build 158 x - wanopt_tunnel route is getting removed, must check for route existenance x - netsweeper tables local is not added x - interface saving updated x - added APP_ROUTE module x - save_hold on home page x - access agreement updated x - DDoS update, removes potential rate-limit conflicts Build 157 x - BPR listing update x - reboot hold after save Build 156 x - vector starter reset update x - brp routeopt default desingation x - reboot save hold Build 155 x - proxy config used script_id 112 > 117 x - vector mappings stz error x - created new routing tables for vector routes Build 154 x - firmconfig changes link holdtime to 45 x - vector algorithm, set kill switch, script find and exit x - bridge filtering issue with ethernet types missing Build 153 x - portfrd bug for the secondary queries on both o2o and o2m x - packet shaping based on URL issues Build 152 x - issue with vector_map swap fire_data and vector_data x - restarter for vector algorithm, when rupdate issued x - changed default holdtime to 45 seconds Build 151 x - add vector map inteligence based on Apply method x - do not allow more than one vector map for the same address x - add (drop down for VoIP, VPN) specification for Vector Map x - enable the ability to disable source NATing for active backup links x - dns addresses need to be reset after each restart x - bandwidth test text may take several minutes Build 150 x - update vector_algorithm / rupdate x - add BPR latency 80, packet loss 10, jitter 20 (default) x - problems with policy reporting (updated csv file) Build 149 x - update vector algorithm to send to different routing tables x - update Best Path Routing use route tables and directed ping x - add proxy reset to the WAN1 interface page x - added lnk to XRoads Networks from banner logo x - individual IP ARP resets must be enabled under Tools > ARP x - statistic alerts x - upgrade to the latest version of ActiveDNS for DOS protection x - policy stats counter reset / timing x - startup statistic timing reset x - policy stats spreadsheet Build 148 x - Port Reset or Commit to interfaces message, home page x - disable old vector routing code Build 147 x - fix for vector routing algorithm x - fix for NAT updates (dir) Build 146 x - bug in routeopt update BPR x - add the ability to add secondary proxy networks via GUI x - updates to vector_algorithm, route_secondary x - HA will not failover automatically Build 145 x - add vector_algorithm x - problem with net_info gathering when VLAN is used x - confirm TTL issues with SOA and MX x - ping disable MUST work when firewall disabled x - application shaping, if nothing is set to Active (i.e. % only) x - policy shaping, user designation default should be none/null x - view all selected applications in the Application Shaping list x - add notice that tunnels should not be used in proxy mode x - add tunnel routes to the 101, 102 etc tables route_secondary x - rm -fR spool_clientmqueue rebuild with full privledges x - add delete every 15 minutes to spool_clientmqueue x - tcp_ecn fix Netsweeper issues x - place version number in CLI login x - help missing for URL shaping field x - change IDP to Anti-Virus enable/disable x - add system restart message x - change LAN/WAN Rate Limit settings to simply Link Rates x - user access password changed to some unknown character set x - missing add_tunnel_route / tunroutes help x - add bridging to code for 3.5 Build144 x - help missing for URL shaping x - change interface used by Netsweeper Build 143 x - URL based traffic shaping, add URL field and script to perform DNS lookup, x - site2site weight setting goes from 100 to 10 Build 142 x - add WINS server to DHCP settings > option netbios-name-servers x - remove default SSH rule in Application Routing x - storage issue in var_log of SLA files Build 141 x - web filter balancing not working vector_update needs to be changed x - need at add $dev to xroads_route_secondary.pl x - CLI remote enable not working, missing trigger x - virtualNAT support for ranges XX:XX x - virtualNAT don't allow blank entries Build 140 x - UDP problems, need to only allow when local IP is provided x - add the ability to direct web filter out WAN2, etc. or balanced x - allow ping to select secondary addresses x - allow each WAN link to be nailed up separately x - issue with VLAN routes not working after reboot Build 139 x - 23-Toggle Shaping Policies >>> Change Remote Access x - add the ability to name the unit (which appears on the home page) x - ping on WAN5 not working correctly x - disable p2p_throttle function x - change Netsweeper text "Enable Remote Lookup" x - firefox issue when adding email alerts x - cf_domains should be allowed to grow over 30000 entries x - only allow a single cf_domain update for Netsweeper x - enable UDP for Site2Site x - add multiplier to secondary weights (x2) Build 138 - added new application support request - fixed dhcpserver issue change {address} to {ip_address} Build 137 - add wildcard * to netsweeper - add "use websweeper" button - delete all cached sites when webfilter restarted - SLA reports show red buttons - PPTP Button Manage Users is link to Application Shaping - add the ability to update title via license update Build 136 - Added vlan save support Build 133/135 - web filter page pdates - moved rule updates to web filtering page Build 132 - if web filter fails, block all but allow rules - xflows_net tables not being saved so disappear on reboot - url requestor should die after responding and spawn sub-routine Build 131 - do not allow updates from 3.2.x or 3.3.x - add 30 sec default for A record TTL Build 130 - update db restart - update DDoS - remove zone transfer capability - dhcp issues WAN1 (wrong dhcpclient_update) - do not start icmp if address = 169.0.0.x - do not start wanopt session if address = 169.0.0.x Build 106 - ssl tunnel firewalling issue Build 105 - may need to adjust mine_table in squid.conf and add +view to swf mine.conf Build 104 - added proxy, ospfd, ripd - SourceFire 4000+ base rules Build 101 - new rules for SourceFire 3.4.3 Build 100 - allow secondary zone file downloads - simplify the stop/start of the IPSec tunnels - update using cpde provided - change IPSec button to enable / dsiable VPN and change Start / Stop to only - changed portfrd Version 3.4.2 Build 111 - Fixed probe update code - Fixed PPTP in multi-network mode Build 104 - Fixed LAN routing issues - Faster XGM Updates - Fixed issue with CSV file - Added RARP feature set Build 103 - Significant updates to the web GUI interface - Fixed problem with port forwarding on 1-to-1 NAT - Updated bandwidth testing module to auto-refresh - Fixed TXT SRV imports via the configuration file - Updated help files - Added new security functionality via Netsweeper - Added new security functionality via SourceFire - Added new security functionality via SANScan Version 3.3.9 (Current Build133) - Fixed PPTP issue in multiple network environments (133) - Geo Netmon updates (132) - Fixed bug in HA mode, defaulting after save - Fixed restart for IPSec VPN after failure - Added the ability to use TCP based zone transfers instead of UDP - Fixed PPTP termination on secondary WAN interfaces - Fixed configuration upload to allow for TXT/SRV record updates - Fixed classid allocation for improved scalability - Added shared/single bandwidth allocation - Fixed auto-failback for proxy does not reset - Fixed fast probe failures on Site2Site tunnels - Fixed One-to-Many NAT mapping to allow for various port translations - Added port based Vector Mapping control - Added NTP time protocol for logging system - Added TCP Parameter settings to allow for forced fragmentation - Changed default DHCP settings - Updated PPTP engine to allow for multiple PPTP tunnels - Updated content filtering engine (multiple enhancements) - Added Netsweeper support engine (not complete) - Added DDoS enhancements for DNS flooding - Fixed PTR record problem - Added enhanced tunnel weighting to SSL tunnels - Major improvements to SSL tunnels and Site2Site Optimization - Updated Application Acceleration engine - Improved SLA monitoring capabilities - Added Diffserv marking to shapng engine - Fixed large log file system locking problem - Updated IPSec tunneling to allow for support when gateway disabled - Updated firewall engine with Comments/Logging sections - Fix to allow full SRV/TXT support in ActiveDNS - Updated WAN/LAN reporting engine - Code base modification to handle firmware upgrades in memory Version 3.3.8 (from previous 3.3.x code) - Fixed default Link Control tools - Traffic shaping list order fixed - VPN updating fixed - WAN2 VirtualNAT failure fixed - SNMP read-only update added - CustomProxy rule writing updated - Email system updated - Proxy ARPing updated - Firmware upload test/check added - VPN Failover Single to multi-solution capability added - Internal DNS resolution updated - Several VPN issues with session_id mapping resolved - Updated WAN Testing probe module - Added Application Shaping - Added host based shaping module - Added Bandwidth Testing module - Added auto-proxy ARP reset on restart Version 3.2.x - Fixed critical bug with 3.2.25 SAVE function - HA Failover alert added - VPN hub testing updated - No Data graph added to traffic shaping reporting - Added bps and bytes to traffic shaping reporting - Fixed traffic shaping reporting bug - Fixed bug which deleted reporting data when configuration was saved - fixed VirtualNAT error when no data is entered - Fixed Application Routing bug to allow ANY specification - Fixed Traffic Shaping bug to properly delete reporting entries when deleted - Added new ActiveDNS controls - Added VirtualNAT application proxy - Added Application Redirection - Added Network Monitoring (server monitoring) - Added WAN Reporting (daily, weekly, monthly, yearly) - Added SLA Reporting via EdgeBPR - Added Best Path Routing enhancements - Added new licensing module for module upgrades - Added policy based shaping statistics Version 3.1.x - This log does not cover changes prior to 3.2.x