UTM Up2Date 9.705 Released

Today we've released UTM 9.705. The release will be rolled out in phases.

  • In phase 1 you can download the update package from our download server
  • In phase 2 we will make it available via our Up2Date servers to all installations

Up2Date Information

News

  • Maintenance Release

Remarks

  • System will be rebooted

Issues Resolved

  • Works with me: Came from 9.703, updated to 9.704 and then directly to 9.705.

  • Lets encrypt appears broken, complains of invalid challenge

    2020:09:19-04:41:03 fw letsencrypt[32053]: I Renew certificate: running command: /var/storage/chroot-reverseproxy/usr/dehydrated/bin/dehydrated -x -f /var/storage/chroot-reverseproxy/usr/dehydrated/conf/config -c --accept-terms --domain xxx.xxxxxxx.xxx
    2020:09:19-04:41:28 fw letsencrypt[32053]: I Renew certificate: command completed with exit code 256
    2020:09:19-04:41:28 fw letsencrypt[32053]: E Renew certificate: COMMAND_FAILED: ERROR: Challenge is invalid! (returned: invalid) (result: {
    2020:09:19-04:41:28 fw letsencrypt[32053]: E Renew certificate: COMMAND_FAILED:   "type": "http-01",
    2020:09:19-04:41:28 fw letsencrypt[32053]: E Renew certificate: COMMAND_FAILED:   "status": "invalid",
    2020:09:19-04:41:28 fw letsencrypt[32053]: E Renew certificate: COMMAND_FAILED:   "error": {
    2020:09:19-04:41:28 fw letsencrypt[32053]: E Renew certificate: COMMAND_FAILED:     "type": "urn:ietf:params:acme:error:unauthorized",
  • 9.705 release is critical for us as we have nearly 400 UTM managed with SUM

    Updating all those UTM manually would be a real pain

    Can you roll out to phase 2 asap please

  • I have a lot of troubles since upgrading. Came from 9.703, updated to 9.704 and then directly to 9.705.

    Lots of core dumps now from anemd, confd and postgresd.

    Antivirus behaves strangely and keeps mails in the spooler (retry works however) and WAF also blocks legit requests with avscan errors.

    I switched for testing to single-scan engine Avira and download only testing, for now it seems to be working.

  • I would recommend to disable the automatic search for pattern and firmware updates before uploading an update manually to the firewall. Otherwise the next automatic update search will purge your uploaded firmware-update.

    After the firewall is updated do not forget to enable the automatic search for pattern and firmware updates again.