Unified Services Router Release Notes ============================================================== Firmware version: 1.09B32_RU New Features: 1. L2TP client mode enhancements: support MPPE and demand dialing. 2. User DB enhancements: support PPTP/L2TP tunnels external authentication though AD, LDAP and POP3. 3. PPTP VPN enhancements: allow PPTP severs to assign remote clients the same subnet as the local LAN. 4. Russia Dual Access enhancements: allow users to designate the outbound interface for IGMP control packets. 5. Web GUI enhancements: support auto parameters fill-out in the DHCP server configuration page. 6. CLI enhancements: support the "space" character. 7. More 3G dongle supports: add D-Link DWM-156 A7, D-Link DWM-157 B1, and D-Link DWM-158 D1, HUAWEI E303. 8. A new click button to quickly download Dbglogs. 9. A new checkbox to enable/disable auto config backup. 10. A new checkbox to enable/disable config file encryption. 11. Support a Windows-based config viewer for encrypted config files. 12. Support L2TP VPN client mode. 13. Support 5 concurrent GRE tunnels. 14. Lengthen IPSec Pre-shared key length to 64 characters. 15. Simplify IGMP settings allow all net to pass through DSR by default. 16. Add package manager with single selectable 3G driver support. Problems Fixed: 1. When WAN is configured using PPPoE, users can't download files from FTP servers using passive mode. Known Issues: 1. Not able to print documents through the network printers from Linux LAN hosts. ============================================================== Firmware version: 1.05B64_RU New Features: None Problems Fixed: 1. Security Vulnerabilities Addressed: devices respond clients some unnecessary information, and hence give hackers a chance to hack devices. Reference: CVE-2013-5945, CVE-2013-5946 Solution: Remove all unnecessary root user accounts. 2. Security Vulnerabilities Addressed: Persistent root access. Reference: http://packetstormsecurity.com/files/118355/D-Link-DSR-250N-Backdoor.html Solution: Removed CLI commands that could allow someone to overwrite the super user password and gain root access to the device. 3. Security Vulnerabilities Addressed: UPnP vulnerabilities identified in the audit of libUPnP code base. Reference: CVE-2012-5958, CVE-2012-5959, CVE-2012-5961, CVE-2012-5962, CVE-2012-5963, CVE-2012-5964, CVE-2012-5965 Solution: Patched Intel SDK libupnp v1.3.1 to add the following; 1) use 'snprintf' and 'strncpy' instead of 'sprintf' and 'strcpy', 2) While doing a 'strncpy', check if we are copying more bytes than the destination string size. 4. Devices don't respond ARP requests sent by a utility called ARPING 5. Wrong wordings for URL blocked keyword in the online help. 6. After rebooting devices, synchronization with NTP didn't works. 7. Multiport port forwarding doesn't work as our expecting behavior. 8. Unable to ping VLAN hosts from PPTP clients when VLAN PVID is configured with 2 digits or more. 9. The L2TP over IPSec tunnel may disconnect if user continuously ping, or download a file (>2GB) via http or ftp. 10. Bandwidth Limit is not functional when port name and interfaces are used in the traffic selector. Known Issues: 1. Not able to print documents through the network printers from Linux LAN hosts. ============================================================== Firmware version: 1.05B46_RU New Features: None Problems Fixed: 1. Compatibility issues between DSR-150(N) PPTP server and Android PPTP client if “PPTP encryption” is enabled. 2. PING and DNS WAN failure detection method is not following its configured parameters – Retry Interval and Numbers. 3. Fail to access files with a traditional file name in the USB drive. 4. Fail to forward IGMP control packets between LAN and WAN. 5. NetBIOS is not working for PPTP and L2TP clients. 6. If using Windows sharing to upload/download files, PPTP clients get disconnected. 7. All SSID will associate with the default VLAN when rebooting devices. 8. When L2TP server is configured using “FQDN”, L2TP tunnels may not get reconnected after rebooting devices. 9. Don't log SSL VPN disconnections and logout. Known Issues: None ============================================================== Firmware version: 1.05B35_RU New Features: None Problems Fixed: 1. STATUS->LAN Clients->List Clients shows nothing. 2. PPTP Client mode doesn’t support the 40bits MPPE encryption method. 3. It takes too long to respond to VLAN creation and edit. 4. DDNS are not functional on the rollover WAN, i.e. 3G connections. Known Issues: 1. None ============================================================== Firmware version: 1.05B29_RU New Features: 1. It's the first release. 2. DSR-150/150N had supported LED MIB. Problems Fixed: 1. It's the first release. Known Issues: 1. It's the first release.