DIR-330 Rev. Ax Release Notes ========================================================================== ========================================================================== Released Date: 2011/9/13 F/W Internal Version: 1.23B20 F/W External Version: 1.23 Checksum: 0xF7BBAABD Fixed: o Fix DUT don't saves IPSec settings of DH group and IKE proposal list on Main Mode. ========================================================================== Released Date: 2011/7/22 F/W Internal Version: 1.23B19 Checksum: 0x82E26224 Fixed: o WAN to LAN throughput lower than 10 Mbps ========================================================================== Released Date: 2011/7/4 F/W Internal Version: 1.23B18 Checksum: 0x37D20F5D Fixed: o Firewall settings cannot save ========================================================================== Released Date: 2011/5/3 F/W Internal Version: 1.23B17 Checksum: 0xE0C174BB Fixed: o After pushing disconnect button for pppoe mode, the DUT can't send ppp terminated packet ========================================================================== Released Date: 2011/4/29 F/W Internal Version: 1.23B16 Checksum: 0x99877FC9 Feature: o D-Link Spec: PPPoE/L2TP/PPTP dualup protocol in Always On or On Demand Mode, if user click 'disconnect' in status page then ppp disconnect until user click 'connect'. ========================================================================== Released Date: 2011/4/21 F/W Internal Version: 1.23B15 Checksum: 0xEC7CA790 Fixed: o D-Track HQ20110411000007: System check fail. o D-Track-HQ20110201000005 Multicast problem: - DUT don't pass-through LAN IGMP join packet(239.0.0.1) to WAN. - DUT don't reply IGMP join report when WAN received IGMP group query. - DUT shouldn't pass-through IGMP leave packet when this group still used for other LAN PC. ========================================================================== Released Date: 2010/12/3 F/W Internal Version: 1.23B14 Checksum: 0x6C4ACC34 Fixed: o Two DIR-330 both in their NAT, and site-to-site tunnel established. The tunnel established over 540 seconds, the tunnel was die. ========================================================================== Released Date: 2010/12/2 F/W Internal Version: 1.23B13 Checksum: 0x950B6B3B Fixed: o Two DIR-330 both in their NAT, and site-to-site tunnel established. The tunnel established over 540 seconds, the tunnel was die. ========================================================================== Released Date: 2010/11/26 F/W Internal Version: 1.23B12 Checksum: 0x568DCB2E Fixed: o firmware v1.22 upgrade to v1.23b11 cannot login o Description: When IKE lifetime is ended, then routers did not renew IPSec tunnel. - Environment: Two DIR-330 both in their NAT, and NAT-T option is enabled both in their IPSec settings. o Description: DIR-330's LAN clients can not use real IP to connect server on the LAN side. - Environment: 1. We have two LAN clients A and B 2. DUT set port forwarding WAN 23 port to LAN B 23 port 3. LAN A connect to WAN IP 23 port, it's should be forward to LAN B 23 port ========================================================================== Released Date: 2010/10/28 F/W Internal Version: 1.23B11 Checksum: 0x2DA6FDC4 Fixed: o The SMTP cannot send email through Hinet o Public port number conflic in port forwarding page o IPSec XAUTH client mode + DPD. Connect over 5 minutes don't have any traffic, and then the tunnel was lose. Step 1: Establish the ipsec tunnel using site to site xauth srv/cli mode 2: Don't send any traffic by tunnel over 5 minutes. 3. XAUTH CLI LAN ping XAUTH SRV LAN acrossing the tunnel. 4. XAUTH CLI LAN still send ESP but XAUTH SRV do not response. o DNS proxy cannot relay 4096 bytes incoming UDP packet to LAN. o UPnP receive ForceTerminate but no receive ReConnectionRequest, wan0_proto will force to 'disabled', it cause router crash. o DNS info was gone at status page ========================================================================== Released Date: 2010/07/28 F/W Internal Version: 1.23B10 Checksum: 0xEFF4DE97 Fixed: o PIN code across to WAN MAC o Ignore the port forwarding name duplication check. ========================================================================== Released Date: 2010/06/14 F/W Internal Version: 1.23B09 Checksum: 0xC5E131F7 Fixed: o One group has 25 users, and then add this group into login group. Router will reboot continually. o In IPSec site-to-site environment, SIP client cannot register into remote network SIP server. ========================================================================== Released Date: 2010/05/31 F/W Internal Version: 1.23B08 Checksum: 0xE1365134 Fixed: o PPTP and L2TP VPN server cannot work if DMZ enable concurrently. ========================================================================== Released Date: 2010/05/24 F/W Internal Version: 1.23B07 Checksum: 0x19FFC820 New Feature: o IPSec pre-shared Key accept !@#$%^&*() Fixed: o Disable wireless settings and reboot, wireless LED still working. o Mail log cannot work with some mail servers, etc: hinet and pchome. o Backup mode LAN mac and firmware LAN mac are unequal address. Verify: o Please help us to verfiy firmware upgrade, because of the code architecture has massive changes. ========================================================================== Released Date: 2010/05/21 F/W Internal Version: 1.23B06 Checksum: 0x18E0B2E5 New Feature: o IPSec pre-shared Key accept !@#$%^&*() Fixed: o Disable wireless settings and reboot, wireless LED still working. o Mail log cannot work with some mail servers, etc: hinet and pchome. o Backup mode LAN mac and firmware LAN mac are unequal address. Verify: o Please help us to verfiy firmware upgrade, because of the code architecture has massive changes. ========================================================================== Released Date: 2010/03/29 F/W Version: 1.23B05 Checksum: 0xE2DDC04B Fixed: o Static Routing rules are not correspond to Status Routing info in Russia mode. Example: A rule in static routing has WAN_Physical interface choosen, but in status routing info is "WAN" displayed. It should be "WAN_Physical". ========================================================================== Released Date: 2010/03/26 F/W Version: 1.23B04 Checksum: 0x68621069 Fixed: o If add more routing rules than 25, device start reboot continually without any reason. o If PPPoE in connecting state and LAN user send a UPnP action called 'RequestConnection', then WAN type will be changed to 'dhcpc'. ========================================================================== Released Date: 2010/03/12 F/W Version: 1.23B03 Checksum: 0x602CC161 Fixed: o VPN wizard no check IPSec pre-shared key validation. o Bandwidth control cannot work if Web filter enable concurrently. o In bandwidth control help description, 'kilobits' instead of 'kilobytes'. o After VPN wizard save settings, the UI description should be 'The setting is saved', not 'The setting is save'. o If user del one of IPSec rule, all the others IPSec rule will recover NAT-Traversal option to disable. This is incorrect behavior. o Remove all mac address prefix(00:...) checking function at clone mac, DHCP reservation, and mac filter page. ========================================================================== Released Date: 2010/02/04 F/W Version: 1.23B02 Checksum: 0x551459EB Feature: o Disabled IPSec function from UI. /www/DIR_330/support_internet.asp /www/DIR_330/wizard_vpn1.asp o Disabled all VPN(IPSec, SSLVPN, L2TP, PPTP) functions ========================================================================== Released Date: 2010/02/02 F/W Version: 1.23B01 Checksum: 0x30FCCF78 Feature: o Disabled IPSec function from UI. ========================================================================== Released Date: 2010/01/25 F/W Version: 1.22B11 Checksum: 0x704B7107 Fixed: o IPSec support DES IKE o URL filter support upto 50 rules. ========================================================================== Released Date: 2009/12/28 F/W Version: 1.22B10 Checksum: 0x88963AF3 Fixed: o webfilter can not upload by POST command, eg: upload file from hotmail... o ipsec site to site with pppoe + ddns can not resolve dns dynamically. o IPSec - support remote site-to-site in full tunnel by remote subnet="0.0.0.0/0" from GUI. - support dynamic(from any remote ip) site to site by "0.0.0.0" from GUI. - fix l2tp-over-ipsec remote behind NAT-D. o GUI - IPSec accept multi local or remote net/mask eg: "1.2.3.0/24,1,2.3.4.0/24" o MP get wireless domwin code 0x30 for FCC in chklst.txt ========================================================================== Released Date: 2009/9/30 F/W Version: 1.22B09 Checksum: 0xA6CB35D9 Fixed: o UI: - After input username and password in login page, cannot press 'Enter' key to login WEBUI (on IE6 and IE7). - In DHCP reservation page, the 26th setting has alignment issue. - No check username be empty in PPPoE/Ru-PPPoE page. - No check WAN physical static IP is valid or not in Ru-PPPoE page. - In Ru-PPPoE page, the maximum MTU is 1492, not 1500. - In DHCP reservation page, the number does not reflect the corrent amount of DHCP reservations remaining. The firewall settings and routing page has the same issue. - Bandwidth control change the input format units and description text from KBytes to Kbits. - VPN Setup Wizard issue: 1. Default IPSec Remote Access setting for profile requires NAT-T enabled. 2. Default PPTP settings for profile requires MPPE 128-bit. 3. align model text from DIR-730 to DIR-130 4. VPN wizard for pptp, l2tp, ipsec should add annotate for user. o PPPoE/Ru-PPPoE, PPTP/Ru-PPTP, and L2TP manual mode still have idle waiting time. o Static IP will also shows on client list page. In original D-Link spec, only DHCP IP can displayed on this page. Related Utility: o VCA Utility: VCAUtility_101B03.exe o Java Applet: SSLApplet_101B04.jar o Firmware Upgrade Utility: DIR330_FirmwareUpgrade_102B10.exe ========================================================================== Released Date: 2009/7/13 F/W Version: 1.22B08 Checksum: 0xFE2F2C88 Fixed: o GUI issue A. When incorrect graphical authentication code is entered or incorrect user user credentials are entered, change message to Authentication Failed. B. Login Box is not aligned properly with other boxes. C. Provide examples for the input format so user will understand how to enter an IP range, IP address, multiple IP address that are not in consistent range, or an IP subnet. D. DNS/DDNS is no longer accepted in IPSec site to site Remote IP configuration. E. Align Login Page. Test: o Test max 16384 session. In current RD test max sessions of one Client to one Server is 3900 sessions(TCP). RD expects max sessions of the DUT is 16384. Please pre-test help to test what max sessions of the DUT is. Related Utility: o VCA Utility: VCAUtility_101B02.exe o Java Applet: SSLApplet_101B04.jar o Firmware Upgrade Utility: DIR330_FirmwareUpgrade_102B08.exe ========================================================================== Released Date: 2009/7/8 F/W Version: 1.22B07 Checksum: 0x437B84D0 Fixed: o IPSec site to site issue: Remote Local Net/Mask field should not be Router's LAN Net/Mask. o IPSec site to site issue: Remote Local Net/Mask must different with Local Net/Mask. o IPSec VPN issue : Pop wrong message when all settings without mask.. o Bandwidth control page(adv_bandwidth.asp) can accept a network. ex LAN IP: 192.168.0.0, ex Net Mask: 24. o Schedule issue: (1) add schedule, ex FRI, STA 11:55/pm - 12:5/am, then show wrong day range, and function can't work when apply this schedule.(Schedule rule to follow DIR-655). o Upgrade utility : Modify the detection and login behavior, and test upgrade from firmware v1.0, 1.10, 1.12, 1.20, 1.21, and 1.22. Test: o BT Test with Certificate tools by default. The Default setting is three client and one server. Related Utility: o VCA Utility: VCAUtility_101B02.exe o Java Applet: SSLApplet_101B04.jar o Firmware Upgrade Utility: DIR330_FirmwareUpgrade_102B07.exe ========================================================================== Released Date: 2009/7/1 F/W Version: 1.22B06 Checksum: 0xBA40912F New Feature: o IGMP Snopping function closed temporary o SSL port cannot be changed by user in SSLVPN page(vpn_ssl.asp), it only can changed in remote ssl settings. o Retemo SSL management and SSLVPN can allow multiple IP login. The field of IP address can accept wildcard, single IP address, IP range, and multiple IP using comma or semicolon charactor. Example: 192.168.50.100;172.21.32.0/20,10.0.0.10-10.0.0.20 Fixed: o If user connect to remote web but remote web url in web filter deny list or not in allow list, browser will be redirect to reject.html. But reject.html need to authenticate now. It should not be authenticated. o In IPSec settings page, An error shown when remote or local LAN without netmask. o UI pop wrong message when (1) add SSLVPN rule without add user group then push 'Save' -> pop right message, (2) follow step 1 then add user group, push 'Save' then cannot save it. o Bandwidth control page(adv_bandwidth.asp) can accept a network. ex LAN IP: 192.168.0.0, ex Net Mask: 24 o Schedule issue: (1) add schedule, ex FRI, STA 11:55/pm - 12:5/am, then show wrong day range, and function can't work when apply this schedule. Hint: o The firmware upgrade utility be able to work if DUT firmware is 1.21 or older version. Related Utility: o VCA Utility: VCAUtility_101B02.exe o Java Applet: SSLApplet_101B04.jar o Firmware Upgrade Utility: DIR330_FirmwareUpgrade_102B06.exe ========================================================================== Released Date: 2009/6/24 F/W Version: 1.22B05 Checksum: 0x457A95CB New Feature: o Schedule rule can support over night or over week. Fixed: o IP range support in web filter cannot work. o When router's lan ip is 128.0.0.1 then pptp wan mode fail. o In L2TP over IPSec VPN settings page(vpn_pptp.asp). UI always check the Pre-shared Key field even if user choice X.509 certificate option. o User can save settings in sslvpn page even if user group is empty. o When user save IPSec vpn, he will not set Lan or Remore Local Net/Mask value. The DUT should check the value. o Changed admin password via WIZARD then user can't login anymore. o IGMP Snoopying can't be disabled after enabled unless repower.(dhcp) Hint: o The firmware upgrade utility be able to work if DUT firmware is 1.21 or older version. Related Utility: o VCA Utility: VCAUtility_101B02.exe o Java Applet: SSLApplet_101B04.jar o Firmware Upgrade Utility: DIR330_FirmwareUpgrade_102B05.exe ========================================================================== Released Date: 2009/6/16 F/W : 1.22B04 Checksum: 0xAC2A76A3 Fixed: o After fill in 32 chars in SSID with security WPA-PSK. In wireless status and SSID field will be attached "WPA-PSK". o IP range support in web filter cannot work. ex: tw.yahoo.com,172.21.1.1 or 172.21.32.1-172.21.32.100 o Fix issue: DHCP server is not working if there's a client A configured with static IP of 192.168.0.100 and another client B configured with dynamic IP. When client B boradcast discovering packet, DIR-130/330 cannot response anything. o Trivial chars attached in SSL remote management title. o PPPoE cannot auto reconnect in always-on if PPPoE server send terminating request to PPPoE client or PPPoE server restart. o Fix issue: To set over 20 DHCP reservation, DIR-130 will reboot continuously. o PPTP/L2TP cannot connect to each other. ========================================================================== Released Date: 2009/6/9 F/W Version: 1.22B03 Checksum: 0xF0928B4C New Feature: o Graphical authentication disabled in default settings o IGMP snooping. User can enable or disable IGMP snooping by UI checkbox(ADVANCED -> Advanced Network). o Web URL Filter: User could input IP, Domain, or IP-range. In current, it's support only one rule is IP/Domain or IP-range in one item. ex:tw.yahoo.com, 123.456.789.100 or 140.135.64.0-140.135.64.255 Fixed: o MAC filter issue: LAN can get IP when in block list or not in allow list o SSLVPN fail o Enable SSLVPN and disable remote management SSL. User sill can use remote management SSL to login web. ========================================================================== Released Date: 2009/6/2 F/W Version: 1.22B02 Checksum: 0x1DE057E6 New Feature: o SSLVPN users are authenticated by HTTPS only, HTTP can't. Fixed: o Fix issue: if set only 'upstream' or 'downstream', it will affect another side throughput. o PPPoE cannot work o Retry: MAC filter deny policy cannot work o Retry: Ru-PPTP with MPPE fail o Retry: MTU function cannot work in Ru-PPPoE o Remote SSL login cannot save log to local o Click 'Regenerate' button will show an error in login page. o Bandwidth control cannot work corrent if user apply new rate range, it will work according old rate range. ========================================================================== Released Date: 2009/5/21 F/W Version: 1.22B01 Checksum: 0xE3FB28BE Feature: o Graphical Authentication Fixed: o IPSec settings cannot specify FQDN including (-) dash charactor in remote address(ex: ipsec-dns.dyndns.org). o Fix issue: VPN rules can be set more than 25 profiles. But as the WEB UI display, we only support 25 profiles. ========================================================================== Released Date: 2009/4/20 F/W Version: 1.21B10 Checksum: 0x5E53F72F Fixed: o Fix issue: In PPPoE WAN mode, DUT don't response PADR (and goto next stage). Since our PADI packet including empty service name field. But PPPoE server reply PADO packet had their service name. o Fix issue: In russia-PPTP, the IGMP packet had source IP is DIR-130/330 tunnel IP. The source IP of IGMP packet should be WAN physical IP. ========================================================================== Released Date: 2009/4/16 F/W Version: 1.21B09 Checksum: 0x84921BAD Fixed: o Fix issue: In PPPoE WAN mode, DUT only send out two times PADI packets after device power-on. If ATU-R power-on after DUT send out two times PADI, PPPoE cannot connect. o Fix issue: In PPTP/Ru-PPTP WAN mode, DUT cannot send Call-Disconnect-Notify packet before reboot. o Fix issue: The upload bandwidth is not functioning for PPPoE/PPTP/L2TP. o Fix issue: In PPPoE WAN mode, DUT don't response PADR (and goto next stage). Since our PADI packet including empty service name field. But PPPoE server reply PADO packet had their service name. o Fix issue: remote PC can't access to DIR-130/330 LAN site after the PPTP tunnel established and wait more than 15 minutes. The remote PC and DUT WAN both are PPPoE mode. ========================================================================== Released Date: 2009/4/7 F/W Version: 1.21B08 Checksum: 0xB048BC75 Fixed: o Fix issue: Ru-PPTP cannot auto reconnect if user plug-out the PPTP server physical link over 200 seconds. o Fix issue: SSDP packet appear from WAN/WAN physical interface. SSDP packet should appear from LAN port only. Related Utility: o VCA Utility: VCAUtility_101B02.exe o Java Applet: SSLApplet_101B04.jar ========================================================================== Released Date: 2009/3/18 F/W Version: 1.21B07 Checksum: 0xB2D7CEC4 Fixed: o add SMTP server port field into log setting page o hidden page changed according to D-Link spec. o hide the ssl only checkbox in vpnssl page (vpn_ssl.asp). o Enable DMZ, but https remote and SSL VPN cannot work. o Page st_route.asp cannot display any static routing information. o "Computer Name" does not be displayed automatically after the DUT has been had some configures. o In the network setting page (lan.asp) DHCP reservations list, IP address field width so short that the field be cuted. o DHCP client Release/Renew behavior modified. step1. goto page st_device.asp. step2. click 'DHCP Release', page reload and IP/mask/gw information be 0.0.0.0 step3. click 'DHCP Renew', page reload and Release/Renew button both are disabled. step4. wait 15 seconds, the page will auto reload. Now, Release/Renew button both are enabled and IP information displayed on UI. o if DMZ enabled, SSLVPN cannot work o In routing status page (st_route.asp), web frame is too wider after add rules. o Enter routing status page is too slow. o if https remote disabled, SSLVPN user cannot login to auth.asp o delete all sslvpn rules, https remote cannot login o cannot connect to tp.corbina.ru using L2TP client. o Stable VCA utility version is 1.01BXX, not 1.02BXX. o Cannot connect to tp.corbina.ru use domain name. o Fix issue: L2TP tunnel establish fail with tp.corbina.ru o Fix issue: PPTP/Ru-PPTP cannot auto reconnect ========================================================================== Released Date: 2009/1/7 F/W Version: 1.21B06 Checksum: 0xCAA113E5 Fixed: o Fix issue, unable to establish L2TP over IPSec VPN client connections from MAC OS v10.4.11. o PSK always check validation regardless VPN type is L2TP or L2TP over IPSec. ========================================================================== Released Date: 2008/12/16 F/W Version: 1.21B05 Checksum: 0x13F201DE Fixed: o oray DDNS cannot working ========================================================================== Released Date: 2008/12/08 F/W Version: 1.21B04 Checksum: 0x87AA8775 Feature: o SSL port options: user can modify https login port in tools_admin.asp and ssl_vpn.asp (default is 443 port). o SSL Only options: if SSL Only is checked, sslvpn tunnel only working at SSL mode. The VCA also ignore IPSec negotiation and starting at SSL negotiation. o add oray DDNS option in tools_ddns.asp Fixed: o IPSec pre-shared key length must be 8-64 charactors or 16-128 hex. o IPSec remote user sometimes fail in russia pptp (buffer not clear). o L2TP over IPSec remote user sometimes fail (empty dns field). o DDNS cannot working ========================================================================== Released Date: 2008/11/27 F/W Version: 1.21B03 Checksum: 0x7AF2BB5A Feature: o VPN IPSec pre-shared key length must be 8 - 64 charactors. Fixed: o Fix Routing issue on manual mode and dial-on demand mode. ========================================================================== Released Date: 2008/11/20 F/W Version: 1.21B02 Checksum: 0x2213AD7E Fixed: o Fix firewall issue: Here are two firewall rules, one allow and one deny, allow first and deny secondly: 1. Allow one IP of LAN to WAN, all protocol, ex: 192.168.0.100 2. Deny all IP of LAN to WAN, all protocol. The IP 192.168.0.100 still denied by router, but we want the firewall rules sequence according to UI shows. So, The IP 192.168.0.100 should be allowed. o Fix Routing issue. The WAN type is russia pptp + static ip, router cannot find pptp server if pptp server IP is different network with WAN IP. ========================================================================== Released Date: 2008/10/29 F/W Version: 1.21B01 Checksum: 0x541D986C Fixed: o Fix firewall issue. - Here are two firewall rules, one allow and one deny, allow first and deny secondly: 1. Allow one IP of LAN to WAN, all protocol, ex: 192.168.0.100 2. Deny all IP of LAN to WAN, all protocol. The IP 192.168.0.100 still denied by router, but we want the firewall rules sequence according to UI shows. So, The IP 192.168.0.100 should be allowed. ========================================================================== Released Date: 2008/12/12 F/W Version: 1.20B44 Checksum: 0x6D91C068 Fixed: o DMZ fail if port forwarding enable o Bandwidth control page lose header description ========================================================================== Released Date: 2008/11/19 F/W Version: 1.20B43 Checksum: 0x82C73034 Fixed: o redirect page fail in remote_decision.asp ========================================================================== Released Date: 2008/11/18 F/W Version: 1.20B42 Checksum: 0x32F25DAA Fixed: o URL filter bugs: deny page need username/password ========================================================================== Released Date: 2008/10/14 F/W Internal Version: 1.20B41 Checksum: 0xDF758904 Fixed: o cannot connect to the remote pptp server (different network with WAN physical). o in pptp/rupptp, pppoe/rupppoe, l2tp pages, if AlwaysOn or Manual checked, the idle time should be disable. ========================================================================== Released Date: 2008/10/9 F/W Version: 1.20B40 Checksum: 0x7779F974 Fixed: o In russia pptp mode, PC cannot establish tunnel to WAN physical IP which PC is the same network with WAN physical IP. ========================================================================== Released Date: 2008/10/9 F/W Version: 1.20B39 Checksum: 0xED1B880F Fixed: o In russia pptp page(wan_rupptp.asp), if Always-On is selected, Idle time field should be disabled, otherwise is enabled. o In russia pptp mode, PC cannot establish tunnel to WAN physical IP which PC is the same network with WAN physical IP. ========================================================================== Released Date: 2008/10/2 F/W Version: 1.20B38 Checksum: 0x5485B79C Fixed: o in russia mode, rc always restart at 30 seconds interval time, because WAN dhcpc get a new IP which lease time is 60 seconds. o if dhcpc dns(WAN gets) is not in the same network with WAN IP, these dns IPs add in routing table. o allow russia-pptp server name be a FQDN or IP address. o extends russia-pptp server name field to 64 charactors. Related Utility: o VCA Utility: VCAUtility_100B05.exe o Java Applet: SSLApplet_100B14.jar o Firmware Upgrade Utility: DIR330_FirmwareUpgrade_100B19.exe ========================================================================== Released Date: 2008/9/23 F/W Version: 1.20B37 Checksum: 0x7FF729DC Feature: o Update check list(chklst.txt and version.txt) for Wireless Domain item. Fixed: o IPSec site to site tunnel establishing fail, when pppoe or pptp disconnect in russia mode. o If two routers both use pppoe or pptp to establishing site to site tunnel, tunnel was fail. ex: pptp(pppoe) <-> pptp(pppoe) ========================================================================== Released Date: 2008/9/12 F/W Version: 1.20B36 Checksum: 0x3091B1B7 Fixed: o In dual access mode, ipsec site to site tunnel establishing fail. o After change LAN ip, wireless client still get old ip. ========================================================================== Released Date: 2008/9/3 F/W Version: 1.20B35 Checksum: 0x6F00C442 Feature: o In ssl applet page, if OS and browser both equal to 'Vista' and 'Firefox' simultaneously, then ssl applet page will denied running and pop-up warning message. ========================================================================== Released Date: 2008/8/25 F/W Version: 1.20B34 Feature: o drop SSDP from wan in russia mode ========================================================================== Released Date: 2008/8/20 F/W Version: 1.20B33 Checksum: 0xE3FFFED0 Feature: o The welcome message displayed on http/https login dialog. ex: "Welcome to the [device_name]". o Device name can set in lan.asp o User connect to the router can using the following URL: http://[device_name]. ========================================================================== Released Date: 2008/8/8 F/W Version: 1.20B32 Checksum: 0x660B24A6 Fixed: o utility URL error in checklist(chklst.txt/version.txt). ========================================================================== Released Date: 2008/8/6 F/W Version: 1.20B31 Checksum: 0xBC8E1CAB Feature: o If openvpn tunnel disconnect under abnormal situation, VCA utility will connection retry 45 seconds. When 45 seconds passed, VCA utility will terminate (fred). ========================================================================== Released Date: 2008/6/25 F/W Version: 1.20B29 Checksum: 0x8B59586F Confirm: o Please confirm firmware upgrade utility is stable under original F/W version is 1.00. ========================================================================== Released Date: 2008/6/23 F/W Version: 1.20B28 Checksum: 0x4CC06172 Confirm: o Please confirm firmware upgrade utility is stable under original F/W version is 1.00. ========================================================================== Released Date: 2008/6/17 F/W Version: 1.20B27 Checksum: 0x91604C4D Fixed: o 'file_exist' cgi buffer not enough, it may causes applet parsing error(fred). o verify password in log setting will be empty after save setting(geoffrey) Feature: o Java Applet UI adjustment, user can select '*.exe' installation file(fred). ========================================================================== Released Date: 2008/6/12 F/WVersion: 1.20B26 Checksum: 0x825FAE97 Feature: o User can select how to install ssl utility by ssl java applet. Download from one of area or install from specify 'setup.exe' file(Fred). ========================================================================== Released Date: 2008/5/30 F/WVersion: 1.20B23 Checksum: 0xC54CD007 Feature: o DHCP client list from GUI will detect alive of client host. Fixed: o When L2TP is enabled and work, if we delete the other disabled rules, the L2TP will can't work. o L2TP works only when a 'l2tp over ipsec' rule on router, and remote user will get wrong IP range. o After device reboot, DHCPD can not keep records of clients list status. o DHCPC LAN client PC switch to static IP, DHCP client list can not update. Confirm: o If original firmware version is 1.00, router can't auto reboot after firmware upgrade to newly version by utility. So, F/W upgrade utility display hint message about reboot after upgrade successful by user itself. o 'l2tp' rule and 'l2tp over ipsec' rule are both exist. After delete 'l2tp over ipsec' rule, Client PC enable to connect to the router using l2tp tunnel, and the l2tp client must get correct IP range from 'l2tp' rule. ========================================================================== Released Date: 2008/5/22 F/W Version: 1.20B22 Checksum: 0x3A88B982 Feature: o Firmware upgrade need not to restore default. So far, Those known functions in this issue are: o PPTP, L2TP server auth with group. o IPSec format from v1.00 to v1.20. o Admin password. o Port Forwarding should be applied to not only from WAN to WAN, also LAN to WAN. Fixed: o Rename USB printer sharing from Lexmark to "DIR-330 printer sharing" o IPSec L2TP can not work - service does not activiate o VPN server (pptp/l2tpoipsec) and IPsec fail o Russia-PPTP and Russia-PPPoE DHCP segment cannot be accessed after PPP link up o set none to default for pptpd mppe o L2TP works only when a l2tp over ipsec rule on router, and remote user will get wrong IP range o delete l2tp over ipsec rule will disable L2TP rule confirm: o Over all traffic to IPSec tunnel, including DNS service. o Russia-pppe manual mode ,idle time will work ========================================================================== Released Date: 2008/5/17 F/WVersion: 1.20B21 Checksum: 0x31F6407D Feature: o Firmware upgrade need not to restore default. So far, Those known functions are: o PPTP, L2TP server auth with group. o IPSec format from v1.00 to v1.20. Fixed: o Remote admin "page not found" access error from WAN. o Wirless list can not display and without hostname. o IGMP PROXY by Russia mode VLC can not work!. o IPSec L2TP can not work - service does not activiate. ========================================================================== Released Date: 2008/5/15 F/W Version: 1.20B20 Checksum: 0x31AAE80B Feature: Fixed: o in auth.asp, 'Stop installation' and normal status message exchange with each other at first install utility. o in ipsec page (vpn_ipsec.asp) and l2tp over ipsec page (vpn_pptp.asp). if udp:500 or any:500 is used in port forwarding, these pages will pop-up warning message. o udhcpd can not display hostname of dhcp client. o after select Auto Channel Scan, the wireless channel can't Auto Scan. o dhcp renew fail in russia pppoe. ========================================================================== Released Date: 2008/5/5 F/W Version: 1.20B19 Checksum: 0x5F731EBB Feature: o adjust applet width and height in cgi 'file_exist'. o modify applet status message in auth.asp, according to d-link request. o modify auth.asp to disable scroll bar displayed on browsers. Fixed: o avoid 'l2tp overipsec' connection without establishing ipsec tunnel. o avoid password blank in usergroup page. o dhcp renew fail in russia pppoe. o after select Auto Channel Scan, the wireless channel can't Auto Scan. o when in PPPoE, should pop-up message between 200 - 1500. o when in PPTP and L2TP, should pop-up message between 200 - 1400. ========================================================================== Released Date: 2008/4/18 F/W Version: 1.20B17 Checksum: 0xD1BBE2B7 Feature: o add the description about account accessible on ADMINISTRATOR SETTINGS. o restore to default settings when first reboot after firmware upgrade success, regardless which firmware version from. o if account in sslvpn group and not in remote admin group, page will redir to remote admin page. if account in remote admin group and not in sslvpn group, page will redir to ssl page. if account both in remote admin group and sslvpn group, page will redir to remote admin page. o sslvpn account cannot access remote admin page, and remote admin account cannot access sslvpn page. Fixed: o in VPN-IPSEC page, group account can't remove from rule when account has in SSL of remote manage. o remove the User Login Name and User Password description in ACMIN of HELP. o Modify help hints for bandwidth control format is different with others. ========================================================================== Released Date: 2008/4/16 F/W Version: 1.20B16 Checksum: 0xA942A2C Feature: o if account both in remote manager group and sslvpn group, redirect to the ssl page. Fixed: o when user add another group, the original account will disappear. o router crash when save settings in tools_admin.asp page. When a) add a group to right side, b) add 2 group with 'ctrl', the save. o in admin setup page, right side account dispear when push '<<' directly. o in admin setup page, right side account no 'ctrl' or 'shift' function. o in admin setup page, pop wrong message after delete ('>>') top account from right side. o in VPN-IPSEC page, WEB pop wrong when user try to add IPSEC rule. o router crash when use virtual server/ftp. o CA is empty, so user can't save without enable ssl remote manager. ========================================================================== Released Date: 2008/4/10 F/W Version: 1.20B15 Checksum: 0x70E80F76 Feature: o add del function for user group in vpn_ssl.asp and tools_admin.asp Fixed: o in 'check now' function, firmware check miss maybe occur, because of string comparing problem. o if disable remote ssl login or ssl vpn login, https will not terminate. ========================================================================== Released Date: 2008/4/3 F/W: 1.20B14 Feature: o add multi-group selection in remote admin and VPN settings page. o add ESMTP support in log settings page. o https support for remote admin. o remote account can login into remote admin page, and ssl account can login into ssl page (auth.asp). o create a newly check list file, called 'version.txt'. Fixed: o In auth.asp page. If applet jar url is incorrect or jar file not exist in wrpd.dlink.com.tw specific folder, auth.asp page will show error messages. o Adjust firmware check now page. After click 'check now' button, newest firmware information will display at another table on page. o deny all of non-Windows operating system login into ssl page. ========================================================================== Released Date: 2008/3/14 F/W: 1.20B13 Feature: o add menu of firmware check now function for user to check out firmware o add firmware checksum and svn tag into chklst.txt Fixed: o system check issue o time zone issue o in remote management page, DUT webUI dosen't avoid user to save port setting with alpha characters o if we try to change certificate's name, this item will lose after save settings o pppoe, pptp and l2tp's dns function are fail o when WPS is enabled, we can't save wireless security mode(WPA/WPA2) o after wereboot DUT, DUT can't save WPS enabled status o the UPnP function is only work when DUT WAN got ip o when we input "_" character inLocal Domain Name field, DUT webUI still shows alert window o the wan physical DHCP renew of Russian PPPoe is fail o we suggest that the ping test result shows user input's domain name, not domain name resolve result o the dns ip addresses of wan physical will be removed by Russia dual access(pptp/ppppoe) when the auto-reconnect mode is manual o when we click "DHCP Release" button, DUT doesn't send out the DHCP release packet o DUT webUI should avoid that user can input reserved IP address in LAN IP/ WAN IPfields ========================================================================== Released Date: 2008/3/5 MODULE: DIR-330 F/W: 1.20B11 Feature: o add tftpd for firmware upgrade o remove bigpond from UI o add firmware update utility ========================================================================== Released Date: 2008/2/22 F/W: 1.20B10 Fixed: o Fix vpn firewall parse token problem o DIR-130 and DIR-330 use different utility from this firmware ========================================================================== Released Date: 2008/2/4 F/W: 1.12B9 Fixed: o Fix the HTML about download JVM ========================================================================== Released Date: 2008/2/1 F/W: 1.12B8 Fixed: o Fix the HTML about download JVM o Update the URL about query SSLApplet_100.jar and SSLUtility_100.exe ========================================================================== Released Date: 2008/1/29 F/W: 1.12B6 Fixed: o Let ssl vpn utility workable on firefox ========================================================================== Released Date: 2008/1/16 F/W: 1.12B5 Fixed: o Auto dowanlod ActiveX from wrpd Feature: o 802.1q and 802.1p ========================================================================== Released Date: 2007/12/26 F/W: 1.12B4 Fixed: o a error pop when do ssl link o httpd, https user.password could not update from UI ========================================================================== Released Date: 2007/12/19 F/W: 1.12B3 Fixed: o replace dnsd with dnsmasq o httpd, https user:password could not update from UI o Fixed SSLVPN, IPSec could not deleted from UI. Feature: o Auto execute SSLVPN. ========================================================================== Released Date: 2007/12/10 F/W: 1.10 Fixed: o HTTPS for SSLVPN, in setup->SSLVPN support SSL tunnel via tcp port 443 o DNS relay function unstable. ========================================================================== Released Date: 2007/11/30 F/W: 1.10 New features: o HTTPS for SSLVPN, in setup->SSLVPN support SSL tunnel via tcp port 443 Fixed: o firmware upgrade, waiting time upto 400 sec, and restore default on success ========================================================================== Released Date: 2007/10/22 F/W: 1.10 New features: o HTTPS for SSLVPN. in setup->SSLVPN Fixed: o add MPPE Require option for PPTP and Russian PPTP o fix bug of russia pptp server ip is in the same subnet with gateway or not, if true-->gateway = pptp server ip ; fail-->gateway = default gateway o fix Advanced/Bandwidth Control NetMask input range to 1~32 o add "reboot" command o DHCP server can not work o HTTP apply o Log page bug o DDNS update too many time.(For Now, we expect only WAN ip changed will update) ========================================================================== Released Date: 2007/10/16 F/W: 1.10 New features: o HTTPS for SSLVPN. in setup->SSLVPN Fixed: o add "reboot" command o DHCP server can not work. o HTTP apply o Log page bug o DDNS update too many time.(For Now, we expect only WAN ip changed will update) ========================================================================== Released Date: 2007/10/2 F/W: 1.10 New features: o 802.1PQ VLAN tags, H/W QoS o Traffic shaping Updates: o Busbox-1.6.1 o Changed thttpd to busybox o Changed DHCP client/server to busybox o Changed gawk to busybox o DNS relay use iptables instead of dnsmasq ========================================================================== Released Date: 2007/08/28 F/W: 1.10 Fixed: o add wep 128 key setting page in wireless wizard. o add wps key for wireless wizard o disabled wps when security mode set to wep in the wireless wizard. o update cgi for wireless wizard modify o remove wl0_radio key. o transfer log file to temp file form by size change to by file change record (stat()) o fix bug for modify Pockets to Packets ========================================================================== Released Date: 2007/08/16 F/W: 1.10 Fixed: o Log pages. o status-> DNS display garbage code in RU PPTP o Firmware update system crash. ========================================================================== Released Date: 2007/08/14 F/W: 1.10 Fixed: o System crash while firmware upgrading: Stop WPS while firmware upgrading. o status-> DNS display garbage code in RU PPTP ========================================================================== Released Date: 2007/08/11 F/W: 1.10 Fixed: o WPS follow Dlink SPEC issue. o User group invailid format case crash o User group inused checking while deleting profile o DNS status display in RU dail-up. ========================================================================== Released Date: 2007/08/08 F/W: 1.10 FIX TSD bugs o Fixed a invalid config file be restored: return a failure message o Pop confirm message which "Restore factory default" and "Reboot device" and "Firmware upgrade" o Fixed UI messages stream buffer size of responsed ping: "ali" to "alive" o Fixed blank of DATE TIME MANUAL. o UPnP display of "Model Number": "DIR-130/330" as "DIR-130", and Description. o WPS text description o Firewall block LAN to LAN, WAN to WAN. o STATUS->VPN type: "l2tpd" to "L2TP", "pptpd" to "PPTP" o VPN select list of UserGroup(s) will list not-empty only. o "Daylight saving" activity only while NTP enabled. o DHCPD server still reserves older records when LAN IP is modified. o LOG page enable with NTP, DDNS enable will pending system. o WPS unconfig mode will allow configed via client with 2 min: upto forever ========================================================================== Released Date: 2007/07/31 F/W: 1.10 Fixed o L2TP could not save to NVRAM from UI. o IPSec, L2TP UI Issues o Log page with NTP enable will failure ========================================================================= Released Date: 2007/07/30 F/W: 1.10 Fixed bugs o WPS function o X509 size limitation 2048 bytes. o X509 deleted protection while profile inused by IPSec profile. o Resize connection session up to 8192 o Profile name of IPSec, prot forwarding, application, mac filter, url, firewall, certificate, and user group pages, which should not apply when name field are existed already previously. o Fixed device name for WPS vista test. o DHCP reservation should be limited by DHCP server assgined ranges. ============================================================================== MODULE: DIR-330 F/W: 1.10 For Pretest TSD Main features of DIR-330 Updated: o DDNS UI status. o Certificates validity check. o WPS o Save log file. o UPNP bug fixed. o Virtual server UI bug. o Fixed bug: Update firmware from 1.00 to 1.10 GUI login & password become to blank. o Application server protocol tcp & udp bug. Bug fixed: NO.3683__vpn,Router crash when assign different CA to different vpn rules FAIL (this is router limitation in 4 CA but no pop when user try add the fifth CA.) NO.3687__Application rule,Application rule fail when user sets rule by manual N/A , application function fail