Thread Info
  • Locked Locked
  • Replies 18 replies
  • Subscribers 16 subscribers
  • Views 28027 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

UTM 9.402 Soft-Release

talex

Hi all,

UTM 9.402 has been Soft-Released today and can be found on the FTP server as usual (ftp://ftp.astaro.de/UTM/v9/up2date/u2d-sys-9.401011-402007.tgz.gpg).

Here is the changelog:

News

  • Maintenance Release

Remarks

  • System will be rebooted
  • Connected REDs will perform firmware upgrade
  • Connected Wifi APs will perform firmware upgrade

Bugfixes

  • NUTM-1955 [Access & Identity] 35658: VLAN Interface on top of a bridge disappears from Slave after Reboot
  • NUTM-1958 [Access & Identity] 34242: Communication error with Amazon AWS server
  • NUTM-2129 [Access & Identity] 36050: File Copy from network share over RED50 does not work in one direction
  • NUTM-2234 [Access & Identity] 35592: Backup from 220 to 230 caused eth3 to exist two times
  • NUTM-2449 [Access & Identity] 36228: RED Server sends more peers as peers are configured
  • NUTM-2706 [Access & Identity] Still coredumps from argos after installing the new fix from mantis 35353
  • NUTM-2842 [Access & Identity] 35423: irqd: Support more than 32 cpus
  • NUTM-2844 [Access & Identity] 36028: 82546GB Gigabit Ethernet Controller: Reset adapter / Detected Tx Unit Hang
  • NUTM-2950 [Access & Identity] RED15: fix dnsmasq for transparent/split
  • NUTM-3049 [Access & Identity] 36382: reds-interface does not get IP after re-activating RED device
  • NUTM-3083 [Access & Identity] IPv6 address in log line shortened
  • NUTM-3190 [Access & Identity] IPsec site-to-site: Limit of listening interfaces of 300
  • NUTM-3252 [Access & Identity] High disk I/O during pattern update on smaller UTM appliances
  • NUTM-3522 [Access & Identity] RED15 with static uplink and dns name as utm hostname doesn't work correctly
  • NUTM-3661 [Access & Identity] After deleting red15w mdw crashes
  • NUTM-1371 [Basesystem] 35523: adbs-maintenance.plx - ERROR: canceling autovacuum task - waits for ShareUpdateExclusiveLock/AccessExclusiveLock
  • NUTM-1798 [Basesystem] 35862: Confd doesn't check for valid local time which can lead to dashboard error
  • NUTM-2804 [Basesystem] 36226: Network Utillization on HW LCD doesn't match iftop and webadmin values
  • NUTM-3325 [Email] Bug on Malware scanning UI Text
  • NUTM-3558 [Email] Sandbox result shows up in messages
  • NUTM-3575 [Email] Detailed view defective for Sandstorm pending mails
  • NUTM-3582 [Email] smtpd sometimes gets stuck when creating a cluster
  • NUTM-3620 [Email] Add capabilities to Quarantine manager's spool tab to handle multiple items for the same massage
  • NUTM-2015 [HA/Cluster] Prevent users from changing postgres_secret
  • NUTM-2290 [HA/Cluster] Prevent backup import from changing postgres_secret
  • NUTM-2677 [HA/Cluster] 36293: The Slave node in HA doesn't show any resource usage
  • NUTM-1956 [Network] 35582: flow monitor invents traffic on wlan1 interface
  • NUTM-2236 [Network] 34828: don't start dhclient without interface
  • NUTM-3156 [Network] Slave interface IP where WAF is listen to get lost after a while
  • NUTM-3304 [Network] nic-naming: Provide a fix for delayed 210r2 software support
  • NUTM-3176 [Reporting] In web usage reporting some domains show up as only the suffix
  • NUTM-2779 [WAF] WAF - Slow HTTP error messages do not match the description
  • NUTM-3175 [WebAdmin] It is not possible to select a vlan interface for the "Ping Check"
  • NUTM-3177 [WebAdmin] Sort function in EPP manage computer didn't work correctly
  • NUTM-3184 [WebAdmin] Etc\Greenwich set as timezone causes error on dashboard
  • NUTM-3185 [WebAdmin] Issues while using the "Search Log Files" tab in the "View Log Files" part of webadmin
  • NUTM-3311 [WebAdmin] Remove Support for TLS v1.0 from Apache Configuration
  • NUTM-3109 [Web] Proxy stops working without segfault or hint in the logs
  • NUTM-3114 [Web] ADSSO join didn't work with special characters like \xF6
  • NUTM-3123 [Web] HTTP Log is flooded with "Server delivered only 0 of X bytes" messages
  • NUTM-3124 [Web] HTTP proxy intermittently stuck in 'recv: Input/output error'
  • NUTM-3577 [Web] High CPU Load after update to 9.4
  • NUTM-3076 [WiFi] Split network modes do not work with RED15w
  • NUTM-3418 [WiFi] RED15w forgets its wireless encryption key after reboot
  • NUTM-3188 [[Backend/Devel] Confd] Domain-Regex object deployed from SUM will be created more than once
  • NUTM-3189 [[Backend/Devel] Confd] Auto packetfilter rule is not updated if the destination service object of a NAT will be changed

Regards

/talex



This thread was automatically locked due to age.

  • Updated my home UTM. The AP took a long time to update. Looks like I lost my wide channel settings and will need to check that tomorrow night.

    Ian,

    home UTM 9.x running in ESXi 6 e3-1275v2

    AP55c and AP10 (courtesy Astaro)

    Three other UTMs, SUM and SFM in hibernation

    XG 15.x MR3 in hibernation

  • Hi,

    when i download the up2date file to the utm, it appears in the updates available section. After a few minutes it disapears.

    I have this behavior on several utms. Anyone else have this problem?

    cheers Andy 

    Cheers Andreas

     

    UTM SCE/SCA | Endpoint SCE

  • in reply to AndreasRieger

    I assme you have downloaded it manually to the UTM? Have you applied the up2date because if you don't it will disappear?

    Ian,

    home UTM 9.x running in ESXi 6 e3-1275v2

    AP55c and AP10 (courtesy Astaro)

    Three other UTMs, SUM and SFM in hibernation

    XG 15.x MR3 in hibernation

  • That looks promising.  Maybe I'll get to let my clients upgrade to 9.4 this month!

    Cheers - Bob

     
    Sophos UTM Community Moderator
    Sophos Certified Architect - UTM
    Sophos Certified Engineer - XG
    Gold Solution Partner since 2005
    MediaSoft, Inc. USA

  • Loaded and installed the u2d-sys-9.401011-402007.tgz.gpg Up2Date maintenance update yesterday night onto our SG230 without any problem. I was hoping that the update did fix the incorrectly displayed summary information on the Sophos Sanstorm Activity page. Although suspicous files are definitely being sent to the Sophos Labs for inspection it is still saying "Sent for analysis: 0".

    Cheers,

    Manfred

    SG230 with UTM 9.402-7

  • Installed this update last evening as I was having the issue referred to in bug NUTM-3577 with high CPU load as a result of Web Filtering on endpoints. Looks as though this update fixed that issue and CPU load remains normal so far. Also haven't noticed any other issues to date with the update to 9.402-7.

  • in reply to BAlfson

    BAlfson said:
    Maybe I'll get to let my clients upgrade to 9.4 this month!

    Keep us posted on how it goes. I have resisted the temptation to upgrade to version 9.4. Mainly because I think the footprint of the UTM is getting to be way out of control. Back in the day we started with 300 plus MB installers. In v9.3 we were upto 700 megs and with 9.4 we have moved over 800megabytes. Granted a lot has been added since the old days of astaro, but isn't this asking for a disaster? Understandably most of the code is open source so "hopefully" some people have their eyes on it but the amount of closed source code is also reaching high levels. Do we really need almost a Gigabyte for a firewall install?

    On a side note, there have been several releases of Open SSL bug fixes https://www.openssl.org/news/secadv/20160503.txt but I hardly ever see any mention of that in the UTM forums.

    Regards

  • Upgraded 2 appliances - all good so far. (Running 9.401 with 40 customers at the moment - only had NUTM-3109 showing...)

    Really hoping that Sophos Sandstorm subscription will be added to SUM MSP soon :-)

    -----

    Best regards
    Martin

    Sophos XGS 2100 @ Home | Sophos v20 Technician

  • Hi Talex,

    Suddenly NAT rules cannot be deleted anymore (after 402-7 upgrade ) :-(

    Do rules have to be disabled now, as a new feature? :-)

    -----

    Best regards
    Martin

    Sophos XGS 2100 @ Home | Sophos v20 Technician

Unfiltered HTML