[FireBrick-Announce] 1.48.000 Avarelli

Adrian Kennard a at k.gg
Sun Jun 3 08:26:15 BST 2018


I have issued beta release 1.48.000 Avarelli

We plan to make this a release later in the week if no issues found.

The main change is the new ACME stuff. Makes it very easy to have a
proper https certificate.

Release notes from Factory release 1.47.100 to Beta release 1.48.000

ACME

ACME for Let's Encrypt for testing (you need to load a CA first, e.g the
LE X3 intermediate)
Install root certificates for use with Let's Encrypt and ACME
Better error logging
BGP

Updates BGP refresh options including sending refresh request
Additional BGP shutdown subcodes added
Some additional debug for BGP
Config

Config top level attributes now include username and ip of last update
Config top level attributes now include serial number and version, but
normal edit screen no longer has xmlns and xsi
IP groups can now reference subnets by name (including DHCP client subnets)
Crypto

New key generation logic in place for ACME and related functions
Avoid crash soon after startup following auto key generation
https

Self signed certificates as fallback for initial set up via https
IPv6

Change some logic to reduce use of 2002:: 6over4 address usage as source
addresses where possible
Logging

Change to outgoing email timeout (spam scans and the like can take a
while) RFC5321 4.5.3.2
Colour on web log not always correct
RADIUS

RADIUS client allowing fixed source-ip, and for ad-hoc L2TP steering
uses L2TP source IP if set
RNG

Additional stats for entropy collection
UI monitoring

Fix incorrect display of negative temperature
VRRP

Config check for duplicate VRRP MAC in use on different interfaces
Web control pages

Change layout of rule-set
Changed logic for self signed certificates, and made more transient in
certificate store
Limit number of self signed certificates to reduce clutter, and avoid
possible "make millions of certificates" attacks

-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 833 bytes
Desc: OpenPGP digital signature
URL: <http://lists.firebrick.co.uk/archive/lists.firebrick.co.uk/firebrick-announce/attachments/20180603/c6662286/attachment.sig>


More information about the FireBrick-Announce mailing list