| Version | Changes |
|---|---|
| 8-4-1 | Bugfixes
[NERO-465] - Firewall protocol setting "all" does not involve ICMP [NERO-481] - MAC to IP bindings for WAN interface are not displayed correctly [NERO-483] - Multiple instances of NTPD can run simultaneously and lead to error in system log [NERO-484] - Opening the log analyzer can freeze browser and devices webserver [NERO-494] - Deactivating compression for OpenVPN connections does not work for servers with option "allow-compression no" [NERO-498] - File upload on webfrontend does not work and freeze browser [NERO-501] - Wifi connection cannot be established if setup was done in RSP |
| 8-4-0 | NEW MAJOR FUNCTIONALITIES
802.1x Authentication on WiFi The 802.1x authentication method is available for the WiFi interface of the device to identify itself towards a Radius Server in a secure network architecture. Features [NERO-362] - Implement 802.1x authentication for the WiFi interface [NERO-464] - Prepare firmware to support login on webfrontend via OTP service PIN Improvements [NERO-472] - Apply configuration file on USB drive automatically after firmware update [NERO-423] - Make OpenVPN digest algorithm adjustable [NERO-424] - Add functionality to import RSP configuration files directly via webfrontend Bugfixes [NERO-380] - Status API: Some variables are missing if WAN link is down [NERO-394] - tec.boost license creates LAN interfaces B - D on older devices [NERO-395] - SFTP access (IoT) does not work after factory reset [NERO-398] - Acces to device webfrontend sometimes not possible [NERO-400] - Connection LED of mbNET.rokey is off even though the device is connected [NERO-411] - Incorrectly displayed information on webfrontend if user is connected [NERO-413] - After entering tec.boost license mbNET.rokey does not connect to RSP anymore [NERO-414] - CA check for MQTT bridge can not be enabled [NERO-438] - Disabled LAN segments are not removed from devices routing table [NERO-444] - Data24 stops working after alarm condition for datapoint was triggered [NERO-446] - Regression: Authentication to GSM provider via CHAP or PAP is not possible any more [NERO-453] - LAN routes are created after configuration changes in RSP [NERO-454] - MAC to IP Bindings are not transferred to the device |
| 8-3-3 | Bugfixes
[NERO-391] - SNMP is running and shows error message on webfrontend even if it is not enabled [NERO-415] - Frequent network changes lead to incorrect behaviour of mbNET and can interrupt services [NERO-429] - IPSec connection does not establish reliably with aggressive mode |
| 8-3-2 | Improvements
[NERO-405] - Harden config encryption key management against intermittent failures Bugfixes [NERO-401] - Data exchange for data points (Data24) between RSP and mbNET sometimes fails [NERO-402] - OpenVPN connection to RSP is not established anymore after firmware update |
| 8-3-1 | Improvements
[NERO-396] - Improve config encryption key management Bugfixes [NERO-386] - VPN connection is either not established or does not reconnect reliably [NERO-392] - IPSec connection is not established anymore after firmware update |
| 8-3-0 | Bugfixes
[NERO-358] - Fix potential memory leak in logging service [NERO-364] - MQTT Bridge crashes if no user/password is entered [NERO-365] - Fix NTP server and client misconfiguration [NERO-367] - SFTP connection with Filezilla fails since firmware version 8.2.0 [NERO-368] - Rework and fix of SNMP menu in webfrontend [NERO-366][NERO-378] - Security Fix SIM#2024-04 |
| 8-2-0 | This Firmware was made for Hardware version HW:02 and following device generations. Functionalities for HW:06 devices are marked separately.
NEW MAJOR FUNCTIONALITIES 802.1x Authentication The 802.1x authentication method is available for the WAN interface of the device to identify itself towards a Radius Server in a secure network architecture. SNMP The device is now able to provide device states, so called MIBs, via the SNMP v3 protocol that is standard in IT environments, e.g., in Managed Ethernet Switches. This empowers the IT-Administration to integrate our remote access router to be part of their surveillance system (ports on/off, VPN state, firewall drop counts etc.) MQTT Bridge This feature empowers the device to bridge the local MQTT Broker to a desired and defined external MQTT Broker. It is a new and easy way to provide local sourced machine data to an external MQTT Broker. Note: This feature requires a license activation. LAN segmentation This new feature empowers the device to provide a configuration up to four port-based VLANs on the LAN Switch of the device. There can be up to four separate local networks and a pure Layer-3 Routing in-between the LAN Segments can be configured through firewall rules. Now separated local machine network segments, shopfloor Link etc. can be defined to meet the security needs for restricted access to a machine or facility. Note: This feature requires a license activation and is only available for hardware version HW:06 devices. Features [RA70-115] - SNMP: Read status information from device via SNMPv3 protocol [RA70-131] - Separated Networks : Dividing the four LAN ports into different, independent subnets [RA70-326] - MQTT Bridge : Make the local broker's data available on an external broker [RA70-336] - Radius: Implement 802.1x authentication for the WAN interface Improvements [RA70-61] - Rework of available time zones on router [RA70-62] - Add every active VPN connection to web GUI and syslog of router [RA70-263] - Extend the API for RSP-Device-Communication with the possibility to check and activate device license [RA70-277] - Extend Data24 to use certificate for communication with RSP [RA70-278] - Disable the port check on a standalone device [RA70-320] - USB drives (e.g. mbMEM) can be formatted via web GUI [RA70-323] - Add possibility to create firewall rules between LAN segments Bugfixes [RA70-67] - Correct Quickstart view if no WAN cable is plugged [RA70-106] - SMS Commands "OUT ON/OFF" fails [RA70-145] - The SSH daemon is not sufficiently protected [RA70-257] - Initiating a VPN connection by sending the SMS code "INET START" does not work [RA70-271] - Service to monitor network participants can't be enabled [RA70-286] - NTP can't be activated via web GUI [RA70-303] - SearchOverIP does not work with firmware 8.x.x [RA70-316] - Polish GPS Feature (web GUI and minor issues) [RA70-318] - Data24 does not trigger alarms for singe Modbus bits [RA70-319] - Information about installed edge version is only shown for active services |
| 8-1-3 | Bug
[RA70-324] - WWAN/LTE modem connection failed in specific cases |
| 8-1-2 | Bug
[RA70-265] - Fix SFTP permission problem on HW6 devices |
| 8-1-1 | Bug
[RA70-247] - Statusapi doesn't work anymore [RA70-248] - GPS daemon is always started on GSM devices [RA70-249] - Data24 configuration is only applied after a device restart [RA70-252] - User defined firewall rules are not applied and firewall table is empty [RA70-254] - OEM-specific configurations are not adopted |
| 8-1-0 | Bug
[RA70-159] - Modem controller script is not robust against unexpected responses [RA70-169] - Diagnosis tool TCPDUMP can't be executed [RA70-170] - OpenVPN connection can't be established if static key is used [RA70-171] - Replacing the senders ip address of the client with the LAN ip address with OpenVPN connection doesn't work [RA70-174] - Multiple OpenVPN ciphers aren't supported any more [RA70-175] - Frontend-Modal to enter backup key for mbEDGE is not displayed [RA70-230] - MPI service can't be started any more after factory reset [RA70-233] - If VPN port is determined automatically, port 1194 is always closed Improvement [RA70-160] - Enable GPS localization of RA70 devices with Telit GSM modules [RA70-172] - Provide GPS information in DATA24 [RA70-166] - Port legacy gpio interface to descriptor based interface for MPI driver |
| 8-0-2 | Bug
[RA70-164] - Web-GUI does not show all device-specific changes for HW6 [RA70-165] - Restoring device configuration on Web-GUI does not work in any case |
| 8-0-1 | Bug
[RA70-161] - SimplyConnect service does not start on devices with firmware 8.0.0 [RA70-162] - Remove option that is not supported anymore when starting system daemons |
| 8-0-0 | Bug
[RA70-60] - With OpenVPN connections setup with interface option "TUN", the wrong OpenVPN interface appears in IP tables rule list [RA70-99] - Buffer overflow in inputs management binary [RA70-111] - NTP time update and server function does not always work reliably [RA70-103] - IPsec does not work with aggressive mode [RA70-147] - Port forwarding rules that address the interface "ALL" doesn't work correctly [RA70-148] - Synchronising the system clock and the hardware clock does not work [RA70-152] - The status of WIFI isn't shown on Web-GUI anymore [RA70-143] - Pressing Dial-Out/FNC button for restoring factory settings does not work reliably Improvement [RA70-10] - Update firmware build system to new version [RA70-11] - Response if a file is too large to upload via Web-GUI [RA70-29] - Implement edge version for eMMC chip in new hardware generation HW6 [RA70-77] - Prepair data24 runtime to be part of firmware [RA70-146] - Add license validation for new HW6 edge implementation on eMMC chip |
| 7-4-0 | Bug
[RA70-5] - Automatic firmware update does not work [RA70-6] - Fix SMS reading and improve SMS handling [RA70-8] - NTP update always throws error message in device log [RA70-9] - MQTT connection on Web-GUI does not work after activating MQTT API [RA70-22] - Device comes online with on-demand connection, although respective input is not active Improvement [RA70-2] - Control of the internet connection via key switch, not only VPN connection [RA70-3] - Establish compatibility with Verizon USA [RA70-7] - Conveniently set time through Web-GUI |
| 7-3-2 | Bug
[NERO-320] - Security fix [NERO-321] - MQTT broker stops working under certain circumstances [NERO-325] - MQTT returns an unexpected error Improvement [NERO-324] - NTP: Offset correction optimized |
| 7-3-1 | Bug
[NERO-314] - Components connected to the LAN ports weren´t able to connect to the internet anymore |
| 7-3-0 | Bug
[NERO-302] - mbconnect24.mbn/.mbnx file is not renamed after configuration download from USB device [NERO-313] - Problem with USBoverIP if USB device uses device driver of mbNET Improvement [NERO-301] - Add IPSec IKEv2 support [NERO-305] - OEM-Router: Firmware channels updated [NERO-308] - Add access to device Status-API [NERO-312] - Startup of mbEDGE optimized |
| 7-2-3 | Bug
[NERO-304] - Firmware update not possible on certain hardware due to invalid hardware-compatibility-check |
| 7-2-2 | Bug
[NERO-300] - Docker Hub API updated from V1 to V2 [NERO-303] - SIM card initialization process optimized after soft reboot |
| 7-2-1 | Bug
[NERO-298] - [Bug: MB-1022] Set hostname permanent even after a reboot [NERO-299] - [Bug: MB-1023] Failure during Modem start if there is an empty SIM Tray inserted in the primary SIM Socket |
| 7-2-0 | Bug
[NERO-271] - [Bug: MB-881] It is no longer necessary to restart the device after adding a host entry. [NERO-289] - [Bug: MB-995] On demand VPN connection to portal is disconnected if local device time is changed while connecting [NERO-290] - [Bug: MB-978] If time synchronisation fails, the local time of the router is adjusted [NERO-293] - An unconfigured device cannot open the CC-Online Help [NERO-297] - Device does not start after firmware update Improvements [NERO-255] - Do not restart modem when switching SIM socket [NERO-273] - Hardening firmware update and configuration import [NERO-278] - [Verbesserung: MB-763] Some serial settings were not displayed correctly when reopened [NERO-280] - [Verbesserung: MB-948] A mbNET should only use IPv4 for OpenVPN communication [NERO-281] - [Verbesserung: MB-984] Some useful information has been added to the web interface [NERO-294] - [Verbesserung: MB-1006] Adaptation of channels for OEM devices Feature [NERO-115] - [Feature] FIMA-198 - Migration API for V1 portal was improved [NERO-268] - [Feature: MB-888] Display MNC/MCC number of SIM card [NERO-284] - [Feature: MB-513] Store device diagnose information locally on USB stick [NERO-286] - [Feature: MB-556] Log analyzer added on the status page of the device [NERO-287] - [Feature: MB-886] Preparation for a backup server address in the OpenVPN configuration [NERO-288] - [Feature: MB-983] Integrate Wake-on-LAN into mbNET [NERO-292] - [Feature: MB-1003] Display the uptime of the device on the web interface [NERO-295] - Add OpenVPN HMAC as option |
| 7-1-5 | Bug
[NERO-291] - [Bug: MB-998] FTP Traffic masquerade through VPN connection (necessary for active FTP server) |
| 7-1-4 | Bug
[NERO-275] - [Bug: MB-959] API raise 500 Internal Server Error |
| 7-1-3 | Bugs
[NERO-269] - [Bug: MB-895] [EXTERNE MAIL] Sporadic loss of PROFIBUS connection [NERO-270] - [Bug: MB-922] IPsec routing between networks not possible [NERO-272] - [Bug: MB-573] Make the action "SMS" in alarmmanagement not selectable for devices without modem [NERO-274] - [Bug: MB-951] sending an SMS with a space in the number can cause the modem to crash Improvements [NERO-182] - [Support] BUGS-344 - WiFi Quickstart page shows green tick without active WiFi connection |
| 7-1-2 | Bug
[NERO-266] - Slow Data SIM cards led to network problems |
| 7-1-1 | Bug
[NERO-263] - [Bug: MB-902] Change quickstart permission flag to be compatible with V1 portal [NERO-264] - [Bug: MB-903] Update OEM Favicon |
| 7-1-0 | Bugs
[NERO-125] - [BUGS-262] - mbNET does not terminate VPN connection after preset time [NERO-226] - Timeout for VPN connections has to be ignored in any case on mbNET.rokey devices [NERO-227] - Applying device configuration via mbDIALUP over network ends in an error [NERO-221] - [Verbesserung: MB-759] - No output for TCPDUMP on Status/Diagnose page on web interface [NERO-217] - Mosquitto service must be restarted if device API settings have been changed [NERO-218] - Stop SIMPLY.connect service if USB drive with firmware or configuration is plugged in [NERO-236] - Broken error message when creating new user with non-matching passwords [NERO-243] - Changing a user name on device does not work [NERO-250] - Config partition can be overfilled with backups, which can lead to problems on device [NERO-251] - Fix upload of own HTTPS certificate for webserver [NERO-257] - CTM cannot be switched between active and inactive reliably on web interface Features [NERO-134] - Mount USB flash drive into NodeRed Container [NERO-210] - [Feature: MB-519] - Separated user management on device for access on Flows and Dashboards [NERO-127] - Recreate docker images for NodeRed and Portainer on device WebUI [NERO-8] - Implement automatic forwarding after changing the LAN IP address of device Improvements [NERO-256] - Revise WebUI appearance for improved usability: Consolidated colors, style and design [NERO-223] - [Verbesserung: MB-826] - Adapt server list for first start process on device [NERO-228] - [Verbesserung: MB-822] - The specification of multiple ports in forwarding rules does not work correctly [NERO-232] - Improve behavior of diagnose actions on web interface and fix timeout problem [NERO-253] - [Verbesserung: MB-851] - The admin user on a mbNET device must not be able to be deleted [NERO-229] - Ignore port settings for ICMP firewall rules on web interface [NERO-233] - Session handling refactoring for improved security [NERO-234] - Update JQuery to version 3.6.0 [NERO-237] - Redirect to Quickstart form /login if user is already logged in [NERO-238] - Force reload of js/css for every new firmware release [NERO-244] - Remove NodeRed HTTP option for improved security [NERO-247] - Fix tab scrolling on web interface [NERO-252] - Update OpenVPN version [NERO-254] - Avoid mosquitto password generation when starting or stopping Data24 |
| 7-0-4 | Improvements
[NERO-258] - Add HW5 compatibility |
| 7-0-3 | Bug
[NERO-245] - [Bug: MB-843] Increase Timeout for SIM communication (Drillisch) |
| 7-0-2 | Bug
[NERO-220] - [Verbesserung: MB-760] OpenVPN setting "Remote maintenance active at: Digital input X (High)" is hidden Improvements [NERO-215] - [Verbesserung: MB-807] Portainer.io fix sporadic starting problems |
| 7-0-0 | Bug
[NERO-171] - [BUGS-321] - Sporadically failing online connection when plc is connected via USB [NERO-197] - [MB-757] - Send iSMS triggered from inputs [NERO-192] - OpenVPN Web-GUI changes regarding key switch [NERO-193] - Send extra initialization commands to Modem from web-GUI [NERO-196] - [MB-616] - Write syslog to SD Card fixed Feature [NERO_168] - [Feature] FIMA-161 - Automatically choose VPN Port between 1194,443,80 if configured [NERO-177] - [BUGS-338] - Add timezone for Sakhalin (UTC+11) Improvements [NERO-191] - Update Linux Kernel version of firmware to Version 5.4 LTS [NERO-202] - Revision of the update process for future firmware versions [NERO-205] - Update dnsmasq to version 2.83 |
| 6-2-5 | Bug
[NERO-126] - [Support] BUGS-234 - fix sporadic modem interrupts [NERO-163] - [Support] BUGS-296 - Tags for I/O-Manager cannot be deleted on the device interface [NERO-166] - [Support] BUGS-320 - Cyclic error message for crond in device log: "no such file or directory" [NERO-167] - [Support] BUGS-298 - Created tags for I/O Manager are not displayed on diagnose site [NERO-172] - [Support] BUGS-332 - In case of failover (WAN -> modem) the router does not reconnect via WAN, even if Internet via WAN is available again [NERO-176] - [Support] BUGS-333 - Online e-Mail not readable [NERO-187] - Rework IoT Firewall rules [NERO-188] - Set back "connected Users" if OpenVPN connection breaks [NERO-174] - Adapt timings for modem start-up Feature [NERO-137] - [Feature] FIMA-164 - Allow special characters (UNICODE) in SMS sent by device |
| 6-2-4 | Bug
[NERO-76] - mbEDGE rework Backup-Key functionality [NERO-81] - [Support] BUGS-155 - LUA script started even if it was disabled [NERO-83] - TCPDUMP on the diagnosis page in the quick start had no result [NERO-111] - "Local set time" on web interface was not taken over to device [NERO-112] - [Support] BUGS-228 - Updating firmware via TFTP menu on the web page didn´t work propely [NERO-116] - USB-over-IP: Connection to USB devices couldn´t be established sporadically [NERO-124] - [Support] BUGS-260 - Hide WAN menu in the quickstart at devices without WAN [NERO-133] - pppd service optimized in the case of an error [NERO-140] - [Support] BUGS-284 - Component on LAN couldn´t connect to internet in some cases [NERO-143] - [Support] BUGS-309 - mbNET.rokey do not display 'on demand' in internet settings [NERO-145] - Situation with Failover if WAN plugged but there is no internet connection optimized [NERO-147] - After synchronization, modem devices sporadically stayed offline if an additional WAN cable with DHCP is connected [NERO-161] - IoT firewall rules reworked Feature [NERO-95] - Make the subject line of alarm emails customizable [NERO-146] - Protect portainer with mbNET-Login screen [NERO-148] - [Feature] FIMA-230 - Connect WIFI to hidden networks |
| 6-2-3 | Bug
[NERO-128] - RKH235: the serial MPI/PROFIBUS menu was hidden on local Web-GUI [NERO-130] - Fix pppd Vulnerability CVE-2020-8597 [NERO-131] - CTM takes longer because of dockermanagement firewall settings |