Aperto da Carciofone, 26 Agosto 2014, 12:18:06
CitazioneNEW FEATURESFirmware 2.01 1. Brand new GUI design2. Dynamic Web Content Filtering (Subscription is required).3. Supporting DHCP ranges for all subnets. 4. VLAN on WAN for single VLAN ID. 5. Supporting web GUI access by a particular IP or VLAN. 6. SSLVPN authenication support external user DB. Firmware 1.09B32 1. L2TP client mode enhancements: support MPPE and demand dialing.2. User DB enhancements: support PPTP/L2TP tunnels external authentication though AD, LDAP and POP3.3. Support Selectable Outbound Interface for IGMP [HQ20121210000012]4. Proxy ARP: Allowing PPTP server range in range of LAN5. CLI enhancements: support the "space" character6. Web GUI enhancements: support auto parameters fill-out in the DHCP server configuration page7. 3G dongle supports: add Huawei E303, D-Link DWM-156 A7, D-Link DWM-157 B1, and D-Link DWM-158 D1.8. A new click button to quickly download Dbglogs. 9. A new checkbox to enable/disable auto config backup.10. A new checkbox to enable/disable config file encryption.11. Support a Windows-based config viewer for encrypted config files.12. Support L2TP VPN client mode. 13. Support 5 concurrent GRE tunnels.14. Lengthen IPSec Pre-shared key length to 64 characters.15. Simplify IGMP settings - allow all net to pass through DSR by default. 16. Add package manager with single selectable 3G driver support 17. Change IP address setting for inbound traffic management to configure LAN IP from server IP. PROBLEMS FIXEDFirmware 2.01 1. In SIP ALG disable state, User is able to establish multiple calls from WAN->LAN and LAN->WAN 2. IGMP proxy daemon is not running in the back-end with IGMP proxy enabled when WAN mode is in load-balancing 3. Attacker is able to reset legitimate TCP connections with the device leadingto denial of service. 4. Security Vulnerabilities Addressed: TCP/IP Sequence Prediction Blind Reset Spoofing DoS. CVE: CVE-2004-0230 5. Inbound http service (HFS http file server) is not working in ADSL PPPoE ISP 6. Unable to access internet or low throughput performance for WLAN clients while one of WLAN client is running HD video streaming.7. PPTP pass-through priority is highest than PPTP firewall service. 8. IPSEC pass-through priority is highest than IKE outbound firewall service. 9. WLAN PC can't play multicast stream 10. USB storage not working perfectly with windows XP. 11. SIP module is inserted failure after reboot 12. The Login Profiles in SSL VPN are not persisting after device firmware upgrade and Reboot. 13. When WAN Mode is configured for WAN1 dedicated, but WAN2's IP alias is able to run traffic for inbound rule added.14. "loggingd" process got killed in QA-Gateway with attached configuration. 15. IPSEC tunnel can't established after importing the exported file at the remote device until disable then enabling policy 16. Device is not updating time after every GUI change in "Timezone" page. 17 User can't establish IPV6 ipsec gw-gw/manual tunnel using both local & remote 18. Active vpn status is not displaying proper information when vpn policy is added with mode config in the device and DHCP over ipsec in client. 19. Observed lua error upon upgrading the device with customer configuration to 1.07B58_RU image using IE8 browser. 20. Http access from wireless clients to wan is taking long time from wireless client 21. Device showing "Authentication Failure" message only once for wrongcredentials. 22. Device is accepting the SMTP mails when Default Outbound Policy configured as "Block Always" without configuring the SMTP Rules (Approved Mail, Blocked Mail, and Subject List). 23. Device is not releasing IP configuration for WAN1 fail over to WAN2 when other device acting as DNS provider 24. Wireless clients can't ping after editing the wireless Access-point from one profile to another until disable then enable wireless AP again. 25. OpenVPN static IP doesn't work in 1.09B3226. Remove auto dial support from both PPTP and L2TP Client pages HQ20140801000005 27. Unable to see the External WAN IP in the HTTP server for the in-coming traffic from WAN but showing source IP as DMZ IP address HQ20140717000007 28. Unable to configure the subnet mask 255.255.255.128 from CLI while configuring traffic selector rule. HQ20140804000003 29. Support maximum external 2TB HD HQ20140110000009 30. Unable to ping between two windows wireless clients when security mode is configured as WPA/WPA2/WPA+WPA2 HQ20140828000012 31. Security Vulnerabilities Addressed: SSL/TLS MITM vulnerability (CVE-2014-0024)
Pagina creata in 0.125 secondi con 18 interrogazioni.