[Email Management]
[Email Scanning]
● Fixed an issue where files could not be exported from the [Virus Email Quarantine Zone] in some cases.
[Spam Filtering]
● Fixed an issue where files could not be exported from [Basic Settings] > [Delete Zone] in some cases.
● Fixed an issue where the [Personal Blacklist/Whitelist] page displayed incorrectly in some cases.
[Email Log Query]
● Fixed an issue where the [Allow] function could not be executed correctly in some cases.
[Content Log]
[Web Log]
● Fixed an issue where the [Web Log Query/Web Virus Log Query] page loaded too slowly in some cases.
● Fixed an issue where the USB data was not displayed correctly when "Local + USB Data" was selected in [Web Log Query/Web Virus Log Query] > "Data Source".
● Fixed an issue where the [Export] function could not export data completely in some cases.
[VPN]
[IPSec Tunnel]
● Fixed an issue where the IP address was not displayed correctly when the WWAN interface was used for "Local IP Address". Issues with incorrect linkage during changes.
● Fixed an issue where status indicator lights were displayed incorrectly in some cases.
[SSLVPN Server]
● Added login failure blocking settings to [SSL VPN Connection Status].
● Adjusted [SSL VPN Settings] to optimize interface operation and prompts.
● Fixed an issue where "DNS Server/WINS Server" settings were invalid in some cases in [SSL VPN Settings].
● Fixed an issue where the "URL displayed upon successful connection" in [Client SSL VPN List] was incorrect when multiple groups existed for the same account.
● Fixed an issue where the "Last Connection Time" information in [SSL VPN Connection Status] was incorrect.
● Fixed an issue where AD users could not log in normally when two-step verification was enabled in some cases.
● Fixed an issue where having multiple identical accounts with different account sizes could cause some functions to malfunction.
[L2TP]
● Fixed an issue where the information displayed was incorrect after setting "Interface IP" using [Assistive Selection] in [Basic Settings].
[SD-WAN]
● Adjusted [Add/Edit] > "Group Name" - Blank characters are prohibited.
● Adjusted [Add/Edit] > "Action" setting to "Deny" to hide ineffective settings.
● Adjusted the display to include prompts and restrictions to prevent connection failures when multiple IPSec lines have different ike versions.
● Fixed an issue where incorrect execution of [Delete] settings caused SD-WAN service abnormalities.
● Fixed an issue where changing IPSec network segment settings caused functionality to fail.
● Fixed an issue where SD-WAN was unusable when using port 4500 for IPSec connections.
● Fixed an issue where packet transmission was not working properly in some cases, causing connection abnormalities.
[ZTA VPN]
[Client-to-Site]
● Added [Connection Status] - Added login failure blocking settings.
● Added [Client Connection Software] - Support for switching between multiple configuration profiles.
● Adjusted [Connection Records] - IP supports multiple comparison methods.
● Adjusted [Client Connection Software] Added credential download functionality.
● Adjusted [Client Connection Software]: When "Open Remote Internet Access" is set, the client download settings will default to "Use Remote Internet Access".
● Fixed an issue with the abnormal display of the [ZTA VPN Settings] > "Interface Used by This Machine".
● Fixed an issue where changing the IP address in [ZTA VPN Settings] > "Client Connection Settings" could cause connection failures.
● Fixed an issue where setting multiple entries in [ZTA VPN Settings] > "Push Route" could cause client connection software malfunctions.
● Fixed an issue with abnormal items appearing in the IPSec menu of [ZTA VPN Settings] > "Push Route".
● Fixed an issue where the original fixed IP address could not be used by other accounts after deleting a setting in [Client List] > "User Fixed IP Address".
● Fixed an issue where the error message was displayed incorrectly when credentials could not be downloaded in [Page Settings].
● Fixed an issue where a "Preview Items" function was added to [Page Settings] > "View Download Page".
● Fixed... [Connection Status] > "Last Connection Time" information is incorrect.
● Fixed an issue where the Client download page could not connect when the setting [System Settings > Administrator > Administrator's IP Address] was enabled.
● Fixed an issue where multiple identical accounts with different sizes could cause some functions to malfunction.
● Fixed an issue where connection detection was affected by regulatory settings in some cases.
[Network Tools]
[Connection Test]
● Fixed an issue where [Port Scan] results were not displayed correctly in some cases.
[Packet Capture]
● Adjusted the settings for PPPoE, VLAN, and IP tunnel interfaces in [Scheduled List][Add/Edit] "Network Interface".
[Logs]
[Operation Log]
● Fixed an issue where the function path was displayed incorrectly when changing the setting of "ZTA VPN Record Retention" in [System Settings > Administrator > Record Clearing].
● Fixed an issue where DNS filter settings were incorrect in some cases in [Regulations > Rules].
● Fixed [Network Services] [DNS Server > Interface Settings] Issue where VPN interface information was not included in the records.
● Fixed an issue where some data display fields and data were incorrect.
[System Status]
[Connection Status]
● Adjusted [Member List] names to include reference address table entries "IP/Mask" and "IP Address Range".
● Adjusted the display of IPs in non-interface ranges to red.
[Traffic Analysis]
● Fixed an issue where records were displayed incorrectly when [Traffic Ranking] > "Statistics Method" was set to "Based on Internet Authentication Statistics".
● Fixed a PHP error that occurred when viewing detailed information in [IPv6][Traffic Ranking].
● Fixed a PHP error that occurred in some cases when exporting [Traffic Ranking Query].
● Fixed an issue where information was displayed incorrectly in some cases in [IPv6][Traffic Ranking Query] > "Packet Records" > "Outbound Lines".
[Threat Intelligence Dashboard]
● Fixed [Home] > "Threat Intelligence" Issues with incorrect display of some detailed information.
● Fixed an issue where virus protection information was inaccurate in some cases under [Home] > "Threat Intelligence".
[Other]
[Management Interface]
● Added [ZTA VPN] > [Site-to-Site] setting to support VPN tunnel connections between devices.
● Adjusted the display color of [Home] "Data Space Usage" when the value exceeds 90%.
● Adjusted interface security by removing automatic attribute value filling in the password field.
● Adjusted some language layouts.
● Adjusted some interface function names and unified related display.
● Fixed an issue where the password field was incorrectly checked when using certain special characters during the first login to set up the administrator account.
● Fixed an issue where "Data Space Health Status" displayed abnormally in some cases under [Home].
● Fixed an issue where "Data Space Usage" information was incorrect in some cases under [Home].
● Fixed [Home] Issues with incorrect status information displayed when system access status is abnormal.
● Fixed an issue where the "Export" function failed to execute correctly when there was too much data in some interfaces.
● Fixed an issue where IP lookup failed to execute correctly in some interfaces.
● Fixed an issue where PHP error messages appeared on some pages.
● Fixed an issue where login interfaces had incorrect account length limits, causing login failures.
● Fixed an issue where entering the word "test" in some interfaces would trigger an error.
● Fixed an issue where using emojis in some field names caused display errors.
● Fixed an issue where excessively long information in some interface fields caused display errors.
● Fixed an issue where some text language was displayed incorrectly.
● Fixed an issue where some English language text was incorrectly or incompletely translated.
[System]
● Adjusted and optimized IPS service memory usage to reduce system resource load.
● Adjusted and updated the regional IP database.
● Adjusted SMTP support for email services. TLSv1.3.
● Fixed an issue where some interfaces did not properly filter input, potentially causing security problems.
● Fixed an issue where attachments were incomplete after processing via email service in some cases.
● Fixed an issue where application control suites could cause system crashes in some cases.
● Fixed an issue where web-related services experienced abnormal interruptions in some cases.
[Management Objectives]
[Address Table]
● Adjusted the [Address Table][Edit] setting to prompt whether to clear the list of resolved domain IPs when modifying settings.
● Fixed the issue where "Region" could not be queried using the region code in [Address Table Groups][Add/Edit].
● Fixed the issue where the prompt was not displayed correctly when changes could not be made due to other groups being applied in [Address Table][Edit].
● Fixed the issue where the page loading time was too long in some cases in [Address Table Groups].
● Fixed the issue where "Selected Other Groups" in [IPv6][Address Table Groups] was not displayed correctly in some cases.
[Schedule]
● Added a "Notify Before Expiry" function setting to [Add/Edit] > "Mode 2".
● Adjusted the interface settings display in [Add/Edit] > "Mode 3" and changed the color of the "Enable" time indicator.
● Fixed the issue where computer names were not correctly recognized in some cases in [Address Table], causing different names to be treated as the same.
● Fixed Issues with incorrect information displayed in some lists.
[Bandwidth Management]
● Adjusted the minimum value for [QoS List][Add/Edit] settings to 10 Kbps.
● Fixed the issue where [QoS List][Add/Edit] traffic settings exceeding interface settings did not restrict the setting.
[Application Control]
● Fixed the issue of abnormal page display after restoring settings in some cases.
[URL Management]
● Fixed the issue where the time of [Log] query settings did not match the actual displayed data.
● Fixed the issue where [IPv6] rules with IPv4 settings caused filtering errors in some cases.
[Firewall Protection]
● Added a [Firewall Protection] > "Detect DNS Attack Settings" function to filter DNS query actions.
● Fixed the issue where [Firewall Protection] > "IP Address Blocking/IP Address Exception" settings were not saved correctly when there were many entries.
● Fixed the issue where [Firewall Protection] did not correctly execute the blocking function in some cases.
● Fixed the [Firewall Protection Log] "Interface"... ● Fixed an issue where names were not fully displayed in some fields.
● Fixed an issue where [Firewall Protection Logs] data was not displayed according to search criteria in some cases.
[Internet Authentication]
● Added [LADP User] related function settings.
● Fixed an issue where [Local Users] could not change their passwords on the SSL VPN and ZTA VPN login pages when "Require users to change their password on next login" was enabled.
● Fixed an error when saving settings in [POP3, IMAP, RADIUS Users] [Edit] > "Member Settings".
● Fixed an issue where [POP3, IMAP, RADIUS Users] deletion was not disabled when "User/Group" was applied to other functions in some cases.
● Fixed an issue where [AD Users] > [AD Synchronize Lost Accounts] deletion of an account did not correctly synchronize associated function settings.
● Fixed an issue where data was displayed incorrectly when users selected AD-related options in [User Groups].
● Fixed an issue where "Server Port" was not displayed correctly in some cases in [No Password Verification]. Issues related to abnormal changes in settings.
● Fixed an issue where login was unsuccessful when the login account was an AD account in some cases [No Password Verification].
● Fixed an issue where authentication might fail when the same account was used in multiple groups.
● Fixed an issue where the internet authentication login page would not display correctly in some cases.
● Fixed an issue where AD users did not correctly perform login verification in some cases.
[Network Services]
[DHCP]
● Added sorting functionality to [DHCP Blacklist MAC Address/DHCP Fixed IP Address].
● Added color-coded indicators to [DHCP Blacklist MAC Address] data added by the system.
● Changed the "Computer Name" field in [DHCP Blacklist MAC Address] to display the name obtained from the DHCP lease.
● Fixed an issue where VLAN interface broadcast address settings were not being pushed correctly.
● Fixed an issue where the lease time setting differed from the actual operation in some cases.
● Fixed an issue where an error message would appear when there was no interface to configure for [DHCP Server].
● Fixed an issue where disabling DHCPv6 in some cases caused service abnormalities.
[DNS Server]
● Added DNSSEC signing settings to [Domain Settings][Edit].
● Fixed an issue where the page displayed incorrectly after saving in [Domain Settings][Edit].
● Fixed an issue where settings were not correctly updated after a brief network outage.
[Virus Engine]
● Adjusted [ClamAV Engine] to version 1.0.9.
● Adjusted [Kaspersky Engine] to version 8.10.1.
● Fixed an issue where the [Kaspersky Engine] caused increased CPU load in some cases.
● Fixed an issue where scheduled updates were not executed in some cases.
● Fixed an issue where the caching mechanism affected virus scan results.
[Sandstorm]
● Added [Sandstorm] > "AI Sandstorm" feature settings. (Authorization required)
● Fixed [Sandstorm Logs] Issues where records failed to display data after feature updates in some cases.
[WEB Service]
● Adjusted [HTTPS Connection Records] to include "Internet Authentication Account" information.
● Adjusted [HTTPS Connection Records] to display IPv4 and IPv6 on separate pages.
● Fixed an issue where some websites could not connect after the service was enabled.
[High Availability]
● Fixed an issue where the AutoVPN service in [VPN > IPSec Tunnel] was still running when the Backup device was in standby mode.
● Fixed an issue where the synchronization process did not run in some cases.
[Remote Recording Server]
● Adjusted and added the "Interface Address" setting, allowing you to specify the interface IP for data transmission.
[Advanced Protection]
[Switch Management]
● Added support for the following switch models:
Netgear: MS324TXUP (SNMP)
M4250-9G1F-PoE+ (Collaborative Defense)
Zyxel: GS2220-10HP (Collaborative Defense)
● Added [Network Status Graph] Supports LACP-related information display.
● Added [Scheduling Function] to select ports for scheduling management.
● Adjusted the [Switch Settings] [Add/Edit] > "Model" menu to be categorized by brand.
● Adjusted [Switch Settings] [Add/Edit] > "Administrator Port" to include an HTTPS option.
● Adjusted [Binding List] to optimize processing and reduce save settings execution time.
● Fixed an issue where SNMP Write connection testing was abnormal in some cases in [Switch Settings] [Add/Edit].
● Fixed an issue where [Switch Settings] > [Auto Search] did not execute correctly in some cases.
● Fixed an issue where the port order in some model icons in [Network Status Graph] was not arranged according to the actual device.
● Fixed an issue where the information clearing in [Network Status Graph] > Port Details > [IP Source Guard] was displayed incorrectly in some cases.
● Fixed an issue with some ports in the [Network Status Graph] status graph. Possible issue with images not displaying.
[Internal Network Protection]
● Fixed the issue where IPs set in [Protection Settings] > "Arp Packet Warning Value" > "Trusted IP Address" still appeared in the protection logs.
● Fixed the "Abnormal Packet Sending Volume" error log in some cases in [IP Conflict Logs].
[IPS]
[IPS Settings]
● Added "AI IPS" function settings. (Authorization required)
● Adjusted CVE-related rules to add "CISA KEV" prompts.
● Fixed the issue where some options in [IPS Filtering Settings] > "Advanced Mode" were not saved correctly.
[WAF]
[WAF Settings]
● Added "NTLM Support" function settings to [Website Management].
● Adjusted [Website Management] > "Certificate Information" so that expired credentials will be displayed in red text.
● Fixed the issue where [Blocking Pages] settings were not deleted synchronously when a website was deleted.
● Fixed the issue where some WAF settings were not updated. ● Fixed an issue where the connection would fail during service.
● Fixed an issue where the WAF service could not execute in some cases.
[WAF Logs]
● Fixed an issue where large amounts of data queried in some logs could cause system errors.
Applicable Version 9.0.3
[Notes]
● After the software update, the system will automatically restart (it will restart twice), taking approximately 3-5 minutes.
[Function Specifications]
● [System Status > Threat Intelligence] requires authorization to enable.
● [Sandstorm > AI Sandstorm] requires authorization to enable.
● [IPS > AI IPS] requires authorization to enable.
[Update Items]
==========
[System Settings]
[Basic Settings]
● Adjusted [General Settings] > "Homepage Network Interface Default Display > Custom" to individually display physical ports in switch mode.
● Adjusted [Management Interface Access Settings] > "Security" to disable TLSv1.1 by factory default.
● Fixed the issue where the page would not display correctly after logging in when "Threat Intelligence Dashboard" was selected in [General Settings] > "Homepage Settings".
● Fixed the issue where "Drop Session Log" was not generating records correctly when enabled in [General Settings].
● Fixed [Clear Records] Fixed an issue where data was not retained according to settings in some cases.
[Time Settings]
● Fixed an issue where selecting "Asia/Riyadh" for "Time Zone" would cause an error in [Backup and Restore > System Backup].
[Administrator]
● Adjusted [USB Log Backup] to support this function on all models.
● Adjusted [Clear Records] for models using hard drives, increasing the maximum retention period for "Traffic Analysis Log Retention/Internal Network Protection Log Retention" to 180 days.
● Adjusted [Clear Records] > "WEB Logs" data retention to include "HTTPS Connection Logs".
● Fixed an issue where a blank prompt appeared after editing settings in [Account Management].
● Fixed an issue where "USB Log Backup" could not mount backup data in some cases in [Clear Records].
● Fixed an issue where data was not backed up correctly using "USB Log Backup" in some cases in [Clear Records].
[System Upgrade]
● Adjusted [Resin Information] to include interface prompts and restrictions during updates to avoid repeated execution.
● Fixed In some environments, restrictions on connection protocols prevent firmware file downloads.
[Backup and Restore]
● Adjusted [Automatic Backup]: When [High Availability] is enabled, the name of the downloaded backup file will now include high availability role information.
● Fixed [System Backup and Restore]: In some cases, the [ZTA VPN] function settings were not restored correctly during system restore.
[Message Notifications]
● Added [Message Notifications]: Added a "Notification Subject" setting to uniformly add notification subject information.
● Added [Message Notifications]: "WAF Permanent Block" setting to send notifications for blocking events.
● Fixed [Message Notifications] > "DDNS Update Failed": In some cases, old records were incorrectly sent.
● Fixed [Message Notifications]: "ZTA VPN" login error notification content was incorrect.
● Fixed [Message Notifications] > "Virus Engine Anomaly Notification": Notification email content lacked a title.
● Fixed [Message Notifications] > "Virus Engine Anomaly Notification": Notification emails were missing titles.
● Fixed [Message Notifications]: Notification emails were not sent in some cases.
[Restart & Shutdown]
● Fixed [Automatic Restart] Fixed an issue where daily restarts were not performed correctly in some cases.
[AP Management]
● Added support for Zyxel models: WBE510D, WBE530, WBE630S, NWA110BE, NWA210BE.
● Added "Schedule" function settings for SSID in [AP Management].
● Added "Advanced Delivery" function settings to [AP Management], allowing for individual delivery settings for specific items.
● Adjusted [AP Management/MAC Filtering] to include prompts for unsupported models.
● Adjusted the [AP Management] [Add/Edit] > "Model" menu to be categorized by brand.
● Adjusted and removed AP model support: AP-300, Howard2000NI, NWA1100-NH.
[SSL Certificate Settings]
● Adjusted Let's Encrypt certificate txt verification to automatically retry when verification fails and cancel the application upon expiration.
● Fixed Issues with incorrect field formatting and incorrect message prompts.
[Network Settings]
[Regional Settings]
● Fixed an issue where the "Regional Status Map" was not displayed correctly in some cases under [Regional Settings].
● Fixed an issue where the "Speed and Duplex" record was not displayed correctly in the HA port under [Line Settings].
[Network Interface]
● Adjusted the function button for adding an IP address when selecting "STATIC" from the drop-down menu and not saving settings.
● Adjusted "Network Bonding" > Mode: "802.3ad (LACP)" to include "Status" information.
● Adjusted the prompt to link to the [VPN] service when changing an IP address and allows simultaneous settings changes.
● Fixed an issue where enabling the "ARP Reply" function in the Bridge interface was ineffective in some cases.
● Fixed an issue where an error message appeared when saving settings in the Bridge interface in some cases.
● Fixed an issue where the page froze when deleting an IP address in the Bridge interface.
● Fixed an issue where deleting an IP address in some cases... When switching to a PPPoE backup line, the following issues were addressed:
[Route Management]
● Fixed an issue where the interface information was displayed incorrectly when switching the backup line to PPPoE in [Egress Line].
● Fixed an issue where the backup line configuration for [Egress Line] did not work correctly in some cases.
● Fixed an issue where switching the backup line in [Egress Line] did not correctly switch back to the primary line in some cases.
● Fixed an issue where deleting rules in [Egress Line Group] did not execute correctly.
● Fixed an issue where in some cases, when changing the [Egress Line] settings in [IPv6][Egress Line Group], the settings were not updated accordingly, causing abnormalities.
● Fixed an issue where in some cases, [IPv6][Egress Line Group] connections could only be made to the same line.
● Fixed an issue where BGP routing information was displayed incorrectly in some cases in [IPv6][Dynamic Routing Table].
[IP Tunnel]
● Fixed an issue where [Add/Edit] connections could not be established correctly when using encrypted IPsec connections in some cases.
● Fixed multiple tunnels Setting the same segment for the "Channel Interface Address" will cause connection problems.
[Interruption Settings]
● Adjusted the [Software Interruption Settings] interface. When PPPoE is enabled, the software interrupt settings for that interface will be automatically enabled.
[Regulation Regulations]
[Regulation Rules]
● Adjusted the rule list to include a tip displaying the current IP address for the PPPoE interface.
● Adjusted the [Add/Edit] > "Source Network/Destination Network" search function; the search method is now case-insensitive.
● Adjusted [Add/Edit] > "Traffic Quota" to support "Hourly" settings.
● Fixed an issue where the "Search Regulations" > [Custom Search] search did not display data correctly in some cases.
● Fixed an issue where the interface displayed abnormally when multiple regulations were selected in [Mobility Regulations].
● Fixed an issue where the [Add/Edit] > "Source Network/Destination Network" search function did not retrieve data correctly in some cases.
● Fixed [Add/Edit] ● Fixed an issue where error messages were displayed when saving settings in some cases.
● Fixed an issue where the menu content for "Source Network/Destination Network" was displayed incorrectly in some cases under [Add/Edit] >.
● Fixed an issue where "IP Address Translation" could still be saved even if no IP address was set in [SYN Protection] > [Add/Edit] >.
● Fixed an issue where the configuration options were incorrect when there was redundancy for the outbound line in [IPv6] >.
● Fixed an issue where the connection did not switch lines in time when "Outbound Line Group" was applied and some lines were disconnected.
● Fixed an issue where the connection status or name of the VPN account displayed under "Source Network/Destination Network" in the rule list was incorrect in some cases.
● Fixed an issue where internal segment IPs in [IPv6] > [Outbound to Inbound] could not be correctly redirected to internal services.
● Fixed an issue where the "Server Load" setting in "IP Address Translation" in [IPv6] > [Outbound to Inbound] > [Add/Edit] > was not executing correctly.
● Fixed the "Firewall Protection Settings" in the [IPv6] rule list. Issues with incorrect tip information display.
● Fixed an issue where connection sending was not correctly configured according to the exit point in some cases under [IPv6][Inside to Outside].
● Fixed an issue where rule information was displayed blank in some cases under [IPv6].
● Fixed an issue where "Firewall Protection Settings" items disappeared in some cases under [IPv6][Edit].
● Fixed an issue where PPPoE interface information was displayed incorrectly in some cases under [IP/Port Mapping Overview].
● Fixed an issue where the [IPv6][IP/Port Mapping Overview] page could not be displayed correctly.
● Fixed an issue where some connections could not follow the changed settings when control rules were changed.
● Fixed an issue where applying URL rules caused interface display abnormalities in some cases.
[IPSec Control]
● Added "IPS" function settings to [Add/Edit] > "Advanced Settings".
L2TP 1. Fixed an issue where the actual expiration date of the "Account Expiration Date" in [Account List] > was reduced by one day from the set date. 2. Fixed an issue where the information displayed incorrectly after using the [Assisted Selection] setting in [Basic Settings] > "Interface IP". 3. Fixed an issue where encryption credentials were not correctly used to perform L2TP connections in some cases. SD-WAN 1. Fixed the issue that [Add/Edit] > "Group Name" could still be saved when "Group Name" was not set. 2. Fixed an SD-WAN service exception caused by incorrect execution of the [Delete] setting. 3. Fixed an issue where IPSec changed the network segment settings, causing the function to become invalid. 4. Fixed the issue that SD-WAN could not be used when IPSec connection used 4500 port. 5. Fixed the problem that packets could not be transmitted normally in some cases, causing abnormal connections.
※ Web tools Connectivity testing 1. Adjust [DNS Query] to add the "Interface Address" function setting. 2. Fixed an issue where [Ping] did not set the execution function according to the "Exit Line" in some cases. 3. Fixed the issue that [Port Scan] could not be connected due to routing errors in some cases. 4. Fixed the issue that the results of [Port Scan] were not displayed correctly in some cases. Packet capture 1. Adjust the [Scheduled List][Add/Edit] "Network Interface" to select the PPPoE, VLAN and IP tunnel interface settings options.
※ Log Operation log 1. Fixed an issue where the [Manage Target > Firewall Protection > Firewall Protection ] > "Permanent Block" setting did not generate logs. Log search1. Fixed an issue where the [Content History] feature item was missing.
※ System status Connection status 1. Fixed the issue that the data of the [Member List] invalid section IP could not be deleted. 2. Fixed the issue that the connection status of the [Member List] was incorrect in some cases. Traffic analysis 1. Adjust the [Traffic Ranking Query] > "Query Conditions" to add the "Source Port:" function setting. 2. Adjust the [Traffic Ranking Query] > "Application" to optimize the interface operation. 3. Fixed the issue where the "Statistics Method" of the [Traffic Ranking] > was set to "Statistics by Internet Authentication" records were displayed incorrectly. 4. Fixed the issue of php error in [IPv6][Traffic Ranking] viewing details. 5. Fixed the issue that some information in [IPv6], [Traffic Ranking Query], > "Packet Logs" > "Exit Lines" was displayed incorrectly. Threat profile 1. Fixed the issue that the application field information was incorrect in some cases of [Traffic Analysis]. 2. Fixed the issue that [Report] could not display Thai text.
[Other] Management interface 1. Added the [ZTA VPN][Client-to-Site] function item to provide VPN service application and control settings. (Supported Models: NGS 5H / 7H) 2. Adjust [Home] to add a prompt when the system volume is accessed abnormally. 3. Adjust [Home] "Data Space Usage" When the value exceeds 90%, the display color will be changed as a prompt. 4. Adjust the function names of some interfaces and unify the related display (Chinese language only) - [System Settings] > [Number of Items Disclosed] > "Control Regulations" > "Records" changed to "Packet Records" - [Manage Targets] > [Firewall Function] changed to [Firewall Protection] - [網路服務] > [DHCP] > "介面" : "802.1Q" 改為 "VLAN(802.1Q)" 5. Adjusted to improve interface security, remove password fields, and auto-fill attribute values. 6. Adjust the IP query-related interface to uniformly support wildcard and mask format queries. 7. Adjusted some recording interfaces to support the display switching function of source IP and computer name. - Manage Target > Application Governance > Application Governance Logs - Manage Target > URL Management > Records - [Manage Target > Firewall Protection > Firewall Logging - [IPS > IPS 記錄] 8. Fixed the issue that [Login] may be incorrectly logged out when multiple devices switch management interface operations. 9. Fixed the issue that when setting the WAN interface to PPPoE through the [Installation Wizard] process, the line detection service was abnormal in some cases. 10. Fixed the issue where some information in "Server System Resources" > "Data Space Usage" in [Home] > was displayed incorrectly. 11. Fixed the issue that there was no limit when switching pages with the wrong number of pages. 12. Fixed the issue that some interfaces were displayed abnormally due to too long field information. 13. Fixed an issue where some interfaces could not run properly due to excessive data when running the [Export] function. 14. Fixed an issue where some interfaces were displayed abnormally when using emoji icons on the setting name. 15. Fixes Fixed the issue that some interfaces did not correctly restrict the input format. 16. Fixed an issue where the dummy interface option appeared in some interface menus. 17. Fixed an issue where the password containing a backslash ('\') could not be successfully verified when the function required password verification. 18. Fixed some interfaces not being able to enter the "test" text for setting. Trigger an error issue. 19. Fixed the issue of some English language text errors or incomplete translations. Console1. Fixed an issue where an error message appeared when shutting down or restarting.2. system 1. Adjust the update Apple device Mac mapping database. 2. Adjust the update regional IP database. 3. Adjust and optimize the memory usage of IPS services to reduce system resource load. 4. Adjustments Strengthen system security, adjust data filtering and interface input restrictions for connection requests. 5. Adjusted the function of importing SSL certificates to support the use of EC (Elliptic Curve) type certificates. 6. Adjust Mail Service SMTP support for TLSv1.3. 7. Adjusted some interfaces to add prompt information during loading or execution to avoid repeated operations. 8. Fixed an issue where some interfaces had XSS vulnerabilities. 9. Fixed an issue where when WEB-related filtering services were enabled, the web service would be detected by weak scans. 10. Fixed the issue of abnormal interruption of WEB-related services in some cases. 11. Fixed the issue that the import of SSL certificate-related functions could not be imported normally in UTF-8 BOM format files. 12. Fixed the issue that the management interface could not be connected due to an abnormality when the service was restarted in some cases. 13. Fixed the problem that in some cases, packets were imported into the wrong network interface, causing abnormalities.
Schedule 1. Add [Add/Edit] > "Mode 2" to add the "Notify Before Expiration" function setting. 2. Adjust [Add/Edit] > "Mode 3" to optimize the display of interface settings, and change the markup color of the "Enable" time. 3. Fixed an issue where the rule setting information using "Mode 3" was not displayed correctly in some cases. 4. Fixed an issue where the connection was still affected when the setting was not applied. Bandwidth management 1. Adjust the [QoS List][Add/Edit] setting to change the minimum value to 10 Kbps. 2. Fixed an issue where the interface with bandwidth management enabled was not prompted when removed from [Network Settings > Locale Settings]. 3. Fixed the issue where the traffic setting in [QoS List] [Add/Edit] was greater than the interface setting value, and the setting was not restricted. Application Control 1. Added [Application Control] and added the [Whitelist] function setting, which can be set to exclude IPs from entering analysis and filtering. 2. Add [Application Control] to add the "Automatically check package version" feature item. 3. Adjusted [Application Control] to display "Application Version" information and prompt the interface to update the version information. 4. Adjust [Control Record] to remove the query item of "Action". 5. Fixed an issue where some prompts were not displayed correctly when using "Simplified Chinese" in [Application Control]. 6. Fixed the issue that the "Source/Destination IP" information in the [IPv6] [Control Record] section of the record was incorrect. 7. Fixed the issue that in some cases, an error message appeared on the interface of this function after performing a restore. URL management 1. Fixed the issue that the URL whitelist blocked the display information of the record in some cases of [History]. 2. Fixed the issue that the time set in [Record] query did not match the actual displayed data. 2. Fixed an issue where IPv6 would cause abnormal filtering judgment when IPv4 settings were present in some cases. Firewall protection 1. Added [Firewall Protection] > "Detect DNS Attack Settings" function settings to filter DNS query actions. 2. Fixed the issue that the blocking function was not correctly executed in some cases of [Firewall Protection]. 3. Fixed the issue that [Firewall Protection] permanently blocked the IP repeated display. 4. Fixed the issue that [IPv6] and [Firewall Protection] could not correctly block ICMP attacks. 5. Fixed the issue of [Firewall Protection Log] When the amount of data is large, the system load is too high and abnormal when the query is executed. 6. Fixed the issue of repeated generation of some situation records in [Firewall Protection Records]. Online authentication 1. Added [Local Account/POP3, IMAP, RADIUS User/AD User] to add passwordless authentication function setting. 2. Add [AD User] Add [AD Sync Lost Accounts] to set up accounts that cannot be synchronized. 3. Adjust [Page Settings] > "Upload logo" to increase the upload file limit by 5MB. 4. Adjust the length of [Local User] "Name" to 64 characters. 5. Adjusted [POP3, IMAP, RADIUS Users][edit] > "Server Member Settings" to add the function of sorting "Type/Group Name". 6. Fixed an issue where [POP3, IMAP, RADIUS users] groups with the applied regulations could still be deleted. 7. Fixed an issue where [POP3, IMAP, RADIUS users][edit] > "Member Settings" had an error when saving settings. 8. Fixed an issue where the SSLVPN account was not updated synchronously in some cases of [AD Users]. 9. Fixed the issue that AD users could not connect successfully when using SSL authentication in some cases. 10. Fixed the issue that the login page for online authentication could not be displayed normally in some cases.※ Internet services DHCP 1. Adjusted [DHCP Blacklist MAC Address/DHCP Fixed IP Address] to add sorting function. 2. Adjust the [DHCP Blacklist MAC Address] to determine the added data by the system and add a color hint. 3. Adjusted the "Computer Name" field of [DHCP Blacklist MAC Address] to display the name obtained by dhcp lease. 4. Fixed the issue that the [DHCP User List] could not be displayed properly when there was a lot of information in some cases. 5. Fixed an issue where the lease time setting was different from the actual operation in some cases. 6. Fixed the issue that the broadcast address of the VLAN interface was not pushed correctly. 7. Fixed an issue where [IPv6] disabled DHCPv6 in some cases, resulting in abnormal services. DDNS 1. Adjustments Optimize background update actions to increase update efficiency. Virus engine 1. Adjust the [ClamAV Engine] update to version 1.0.8. 2. Adjust the [Kaspersky Engine] after the license expires, the virus pattern database function will stop updating. 3. Fixed an issue where the CPU load increased in some cases of [Kaspersky engine]. 4. Fixed the issue that the scheduled update was not performed in some cases. 5. Fixed an issue where the temporary storage mechanism affected the test result. Sandstorm 1. Added a new feature setting: [Sandstorm] > "AI Sandstorm". (Authorization required) 2. Fixed an issue where the [Sandstorm Record] could not display data after the feature was updated. 3. Fixed the issue that the signature update continued to fail in some cases. WEB services 1. Add [WEB] > "Encrypted Connection Settings" > "Disable SSL Decryption" function settings. 2. Adjusted [HTTPS Connection History] to add the information in the "Online Authentication Account" field. 3. Adjust [HTTPS Connection History] IPv4 and IPv6 to be displayed on separate pages. 4. Fixed an issue where an error message would be generated when filling in special characters in [WEB] > [Regenerate Encryption] email information 5. Fixed the issue that the certificate installer could not be downloaded in some cases of [WEB] > "Certificate Installer Settings". 6. Fixed an issue in the non-Chinese language document of [WEB] > "Installation Help File". 7. Fixed the issue of [HTTPS connection history] taking too long to load when switching tabs in some cases. 8. Fixed the issue of incorrect IP field information in [IPv6][HTTPS connection history]. 9. Fixed the issue that the "Remote Download" function was abnormal when running the certificate installer in some cases. High availability 1. Fixed an issue where the DHCP interface of [Network Settings > Network Interface] still worked when the backup device was on standby. 2. Fixed an issue where the [VPN > IPSec Tunnel] AutoVPN service was still running when the Backup device was in standby mode.. 3. Fixed the issue that the system schedule was abnormal after the Backup device ran [System Settings > Backup and Restore > Factory Default]. 4. Fixed the issue that the color of the "Current Detection Status" > [Record] buttons was not displayed according to the data status. 5. Fixed the issue that "Recent Data Sync Time" > [Record] were displayed incorrectly in some cases. 6. Fixed the issue that the synchronization process did not work in some cases. Remote logging server 1. Add "Log Format" to add the "CEF" function setting, which can send CEF data format. 2. Adjusted the "Interface Address" function setting, which can specify the interface IP to send data. 3. Fixed the issue that the "Intranet Protection Log" data would be sent repeatedly.
※ Advanced protection Switch management 1. Added support for switch models Netgear: MS324TXUP. (SNMP) M4250-9G1F-PoE+. (Cooperative defense) TP-Link: SG2210P. (Cooperative defense) 2. Added [Network Status Graph] to support LACP-related information display. 3. Add [Scheduling Function] to select Port to apply the schedule management function. 4. Adjust [Switch Settings][Add/Edit] > "Model" Settings menu by manufacturer. 5. Adjust [Switch Settings][Add/Edit] > "Administrator Port" to add HTTPS function options. 6. Fixed an issue where some cases of [Switch Settings] > [Auto Search] did not run properly. 7. Fixed the issue that the member name in the TIP in some cases of [Network Status Chart] was not displayed. 8. Fixed the issue that some clear information in [Network Status Chart] > Port Details > [IP Source Guard] was displayed incorrectly. Intranet protection 1. Fixed an issue where the IP address set in [Protection Settings] > "ARP Packet Warning Value" > "Trusted IP Address" still appeared in the protection log. 2. Fixed the issue that the number of packets in [ARP Record] did not exceed the set value, but still appeared in the record. 3. Fixed the issue that the data in the "Interface" field of [ARP Record] was not displayed. 4. Fixed an issue where binding duplicate MACs in the address table would trigger the record in [Mac Conflict History]. 5. Fixed the issue where the information displayed in [IP Conflict History] was unclear.
※ IPS IPS settings 1. Add the [IPS Notification Items] function setting. 2. Add Rule Adds "Rule ID" and "CVE" field information, and provides CISA KEV rule marking. IPS records 1. Add "Rule ID" and "CVE" field information to the record list, and provide CISA KEV rule marking. 2. Fixed the issue that [IPv6] did not generate records.
※ Mail management Email log query 1. Fixed the issue that the "File Size" information was incorrect in some cases of [Detail] > "Attachment Files". 2. Fixed the issue that the sender information was not displayed correctly in some cases.
※ Content record WEB virus log 1. Correcting the problem that the records cannot be displayed normally in some cases [Today's WEB Virus Records]. 2. [WEB Virus Record Query] In some cases, the page loading problem is too slow. 3. Fixed the issue that the [Export] function could not fully export data in some cases. 4. Fixed an issue where the information in the "Online Verification Account" field was not displayed correctly.
※ VPN IPSec Tunnel 1. Adjusted "Multi-channel mode" to add status information for unconnected sections. 2. Fixed the issue that in some cases, when WWAN is selected as the backup line, the backup cannot be switched correctly. 3. Fixed the issue that the "Remote IP Address" was set to "Dynamic IP Address" in some cases, but could not be connected. 4. Fixed the issue that the setting status light was displayed incorrectly in some cases. PPTP Server 1. Fixed an issue where the actual expiration date of the "Account Expiration Date" in [PPTP Account List] > was reduced by one day from the set date. SSLVPN Server 1. Added [SSL VPN Connection Status] to add login failure block-related function settings: 2. Adjust [SSL VPN Settings] to optimize interface operation and prompt information. 3. Adjustments Optimize the certificate generation process to reduce the processing time of a large number of accounts. 4. Adjustment When a client certificate is generated, its certificate expiration date will be changed according to the server certificate expiration date. 5. Adjust When the Server certificate has expired, the generation of the Client certificate will be prohibited and a prompt will be displayed. 6. Adjust [Manage Target > Internet Credentials > Local Users] When setting the next login to update the password, the SSLVPN download page is also restricted from running. 7. Fixed an issue where the account credential settings could not be downloaded when the name of the online authentication group in [Client SSL VPN List] had a special symbol. 8. Fixed an error message when adding settings in some cases of [Client SSL VPN List]. 9. Fixed the issue that some cases of "URL to display message when connection is successful" in [Client SSL VPN List] > group settings >are abnormal. 10. Fixed the issue that the "Last Connection Time" information in the [SSL VPN Connection Status] > was incorrect. 11. Fixed the issue that the certificate was not prompted when the "POP3, IMAP, RADIUS user" account was re-joined. 12. Fixed an issue where the local account and AD account were duplicated, and the authentication could not be done normally. 13. Fixed an issue where account credential settings could not be generated in some cases. 14. Fixed the issue that some cases were displayed abnormally on the download page. 15. 修正 sslvpn-gui(PC client) 版本更新 3.0.0.2. Update information: 16. Fixed CVE-2024-1305, virtual network card driver update.
NotesAfter the software update, the system will automatically restart (it will be restarted twice), about 3 ~ 5 minutes.After the update, you must change the account and password when logging in to the admin account.
Functional specifications※ [System Status > Threat Intelligence] must be authorized to be activated※ [Sandstorm > AI Sandstorm] Authorization required to enable.
Updates※ System settings Basic settings 1. Adjust the [Admin Interface Access Settings] > "Admin Password Custom Rules/Admin Account 2-Step Verification Rules" function to move the path to [System Settings > Admin > Account Security Settings]. 2. Fixed an issue where "How often to unblock temporarily blocked IPs" in [General settings] > "Login failure blocking setting" might not be executed correctly when set to 0. [Time Setting] 3. Fixed an issue where selecting "Asia/Riyadh" for "Time Zone" would cause the [Backup & Restore> System Backup] to be abnormal. Administrator 1. Adjusted [Account Management][Add/Edit] > "Password" to allow character symbols such as ',' ':' '/' and spaces. 2. Fixed an issue where the interface was not displayed correctly after saving settings in some cases in [Account Management][edit]. 3. Fixed an issue where [Account Management][edit] logged out of the account after saving the settings without changing them. 4. Fixed an issue where the actual expiration date of the "Account Expiration Date" in [Manage Account] >was reduced by one day from the set date. Backup and restore 1. Adjust [System Backup & Restore] > "System Backup" to add the [System Settings > SSL Certificate Settings] certificate file. 2. Adjust [System Backup & Restore] When [High Availability] is enabled, the backup file name will increase the role information for high availability. 3. Fixed the issue that after "Restore Factory Defaults" was executed, some records of [IPS] were not cleared. 4. Fixed the issue that the backup file did not back up the settings related to [Network Settings > WWAN Dial-up] correctly. [Package Management] 5. Fixed [Package Management] switching the display text of package names according to language. [Message Notification] 6. Added [Message Notification] to add the "Notification Letter Subject" function setting, which can uniformly increase the subject information of the notification letter. 7. Added [Message Notification] > "Firewall Permanent Blocking" function settings. 8. Add [Message Notification] > "IPS Record" function settings. 10. Adjusted the notification setting of "Message Notification" > "Administrator Login Error Event with Account" to "Minutes". 11. Fixed the issue of [Message Notification] > "DDNS update failed" in some cases where old records were sent incorrectly. 12. Fixed the issue that "HA State Switching and Data Synchronization Abnormality" in [Message Notification] > was not notified in some cases. 13. Fixed the issue where the "Antivirus Engine Abnormal Notification" in [Message Notification] > was not notified in some cases. 14. Fixed an issue where the notification function did not work properly after performing a restore backup in some cases. Restart & Shut Down 1. Fixed the issue that [Auto Restart] did not perform daily reboot correctly in some cases.AP management 1. 新增支援 Zyxel 型號:WBE510D,WBE530,WBE630S,NWA110BE,NWA210BE. 2. Added [AP Management] SSID support for "Timetable" scheduling function setting. 3. Added [AP Management] to add the [Advanced Delivery] function setting, which allows you to set up delivery for a single detail. 4. Adjusted [AP Management/MAC Filtering] to add prompt model and function support information. 5. Fixed an issue where an error message may appear when "AP Settings (6GHz)" is deployed. 6. Fixed the issue that some APs had abnormal control functions after device firmware updates. Signature updates1. Fixed an issue where "Application Control Rule Update" could not be updated in some cases.2. SSL certificate settings1. Adjust the "Let's Encrypt Certificate" prompt when the application fails.2. ※ Network settings Locale 1. Fixed an issue where the prompt information was unclear when [Locale] removed the HA port and the high availability service was not disabled. 2. Fixed an issue where interfaces not set in [Line Settings] could not display MAC information. 3. Fixed the issue that the HA port in [Line Settings] could not display the "Speed and Duplex" record correctly. Network interface 1. Adjustments to [IPv6]: Removal of "Radvd & DHCPv6" related information.. 2. Adjusted the function button to hide the [Add] IP when the settings are not saved when the drop-down menu selects "STATIC". 3. Adjusted the prompt to link to the [VPN] service when changing the IP address and allowed the synchronization of the change settings. 4. Fixed an issue where the interface name was displayed incorrectly when it contained a space. 5. Fixed an issue where the lease expiration date information was incorrect when the interface was in DHCP mode. 6. Fixed an issue where the IP was not regained when the interface was set to DHCP and the network cable was reconnected. 7. Fixed the issue that when the interface is set to DHCP, the external to internal connection may be abnormal in some cases. 8. Fixed the issue that the page was stuck when the Bridge interface was deleted IP. 9 Fixed the issue that the prompt information was incorrect when deleting an IP address in some cases. Routing management 1. Fixed an issue where the [Exit Line Group] was not executed correctly when deleting a rule. 2. Fixed an issue where when [Exit Line Group], [Add/Edit] > "Load Balancing Mode" is set to "Interface Load Small Priority Selection" mode, the control rules applied in some cases will be abnormal. 3. Fixed an issue in [IPv6] where some cases of [Exit Line Group] were not adjusted in conjunction with the [Exit Line] setting, resulting in abnormalities. 4. Fixed the issue that [IPv6][Exit Line Group] could only connect to the same line in some cases. 5. Fixed the issue that the main line settings could not be restored after switching redundancy in some cases of [Default Gateway]. WWAN dial-up 1. Add support for Huawei E8372h network card. 2. Fixed the issue of incorrect USB access location information in some cases. IP tunnel 1. Fixed the issue of [NEW] when setting the 11th setting, the interface displayed abnormally. 2. Fixed the issue of [Add/Edit] failing to connect normally when using encrypted IPsec in some cases. 3. Fixed an issue where the connection could not be normally handled in some cases. 4. Fixed an issue where the prompt popped up in the settings, causing the setting field to display abnormally and could not be saved. 5. Fixed an issue where multiple tunnels set their "Tunnel Interface Address" in the same section, causing abnormal connections. 6. Fixed the issue that the point management interface could not be connected through the IP tunnel.
※ Control Ordinance Regulatory Rules 1. Added the [IP/Port Mapping Overview] function item to query the service information of DNAT settings. 2. Add "Maximum number of connections that can be used by each source IP" in the rule list to view the blocking history. 3. Add "Traffic Quota" in the rule list to view detailed records. 4. Adjust [Add/Edit] > "Traffic Quota" to add support for the "Metered by the hour" function setting. 5. Adjust the rule list to optimize the readability of TIP when displaying a large amount of information. 6. Adjusted the PPPoE interface in the rule list to add a tip to display the current IP. 7. Adjusted [IPv6][Add/Edit] to apply "URL Control" when the rule does not have IPv6-related settings, add a prompt message. 8. Fixed the issue that the [Add/Edit] > "Source/Destination Network" query function could not be queried correctly in some cases. 9. Fixed an issue where some situations were not controlled according to the time when [Add/Edit] > "Timetable" was set. 10. Fixed an issue where the "Maximum number of connections per source IP can be used" in the [Add/Edit] > was not limited by the source IP in some cases. 11. Fixed an issue where [Add/Edit] displayed an incorrect prompt message when saving settings in some cases. 12. Fixed the issue that "Firewall Protection Settings" in some cases of [Inside to Outside] [Add/Edit] was not displayed correctly. 13. Fixed an issue where the [IPv6], [Outside-to-In], [Add/Edit] > "IP Address Translation" setting "Server Load" was not executed correctly. 14. Fixed the issue where the "Statistics" value of [SYN Protection] > was negative. 15. Fixed the issue that some cases of [SYN Protection] did not work correctly. 16. Fixed the issue that [SYN Protection], [Add/Edit], > "IP Address Translation" could still be saved without setting the IP. 17. Fixed the issue of [Moving Regulations] the [Advanced] rule cannot be moved to [Inside to Outside] when the Regulation source is applied to the address table. 18. Fixed an issue where [Move Regulations] would cause an error when selecting more rules. 19. Fixed an issue where the connection status displayed by the "Source/Destination Network" VPN account in the list of regulations in some cases was incorrect. 20. Fixed an issue where the tip information in the "Firewall Protection Settings" in the [IPv6] regulations list was not displayed correctly. 21. Fixed an issue where when the "Address Table Group" setting was applied, the group was not executed correctly after changing the setting. 22. Fixed an issue where the regulation may cause abnormal crashes when applying "traffic quotas" and using the bridge interface. 23. Fixed the issue of incorrect statistics of "Traffic Quota". IPSec control 1. Add [Add/Edit] > "Advanced Settings" to add the "IPS" function setting. SD-WAN governance 1. Adjust [Add/Edit] > When "Action" is set to "Reject", some advanced settings will be automatically hidden. 2. Adjust [Add/Edit] > "SD-WAN" When selecting all lines, the rule list can list all line information.
※ Management Goals Address table 1. Adjust [Address List Group][Add/Edit] "Region" to add "Custom IP" filter option. 2. Adjust [Address Table Group][Add/Edit] to optimize the "All Members" query function, and add query methods such as "Assisted Selection" and "Custom IP". 3. Adjust [Address Table][edit] When modifying the settings, it will prompt whether to clear the list of resolved domain IPs. 4. Fixed an issue where the prompt was not displayed correctly when the [Address Table][edit] could not be changed due to the application of the regulations. 5. Fixed the problem that the computer name was not correctly determined in some cases of [Address Table], causing different names to be regarded as the same. 6. Fixed the issue that the filtering options were not displayed correctly in some cases of "IP address" in the [Address Table]. 7. Fixed the issue that the page loading time of [Address Table Group] took too long in some cases. 8. Fixed the issue that some of the "other selected groups" in [IPv6][Address Table Groups] > were not displayed correctly.
Applicable Version:
3.1.5.2 (1752823023)
Applicable Models:
All MDS / MDispersion models
Notes: The system will not automatically restart after the software update. Services are paused during the update.
Update Notes:
=========
[WebMail]
● Adjustments※ Removed invalid function paths and strengthened the format judgment of interface input data.
● Fixes※ Certain interface paths could access system file paths, causing an RCE vulnerability.
※ The input fields on the login page did not correctly judge the format, which may cause security problems.
Applicable Versions3.1.5.1 (1747016540/1749509317)
NotesAfter the software update, the system will automatically restart and resume any suspended services.
Updates
[Spam Management][Basic Settings]● Adjustments※ "AI Module" not working in some cases[WebMail][Mail]● Fixes※ Attachment download or preview errors in some cases※ Attachment name display errors in some cases※ Some emails do not display the content correctly due to formatting issues※ The sender field displays incorrect information in some cases※ Images do not display correctly in emails forwarded from [New Webmail][Newsletter]● Fixes※ Some tasks do not complete in some cases※ When using eml files in [Add/Edit] > [Upload File], garbled characters are sometimes generated[Other]● Fixes※ Some bulletin board content icons do not display correctly
[Other][System]● Fixes※ The login page of the management interface may lead to an unauthorized remote code execution vulnerability※ [WebMail/New WebMail] Some interfaces have injection vulnerability issues.※ High availability services do not properly validate information, potentially exposing injection vulnerability issues.
[Mail Management][Mail Filtering and Logs]● Fixed an issue where blocking would still occur even when the [SMTP Block IP] function was disabled.[Spam Filtering]● Fixed an issue where the language of the notification message in [Spam Notification] was incorrect.[Mail Log Query]● Fixed an issue where the [Allow] command did not work properly in some cases.● Fixed an issue where the "File Size" information in [Details] > "Attachment Files" was incorrect in some cases.● Fixed an issue where USB log data could not be retrieved in some cases.● Fixed an issue where sender information was not displayed correctly in some cases.[SMTP Log Query]● Fixed an issue where a blank page appeared in [Smtp Communication Log Query Results] > [Details].
[Content Logs][Web Logs]● Fixed an issue where the IP address in [Today's Web Virus Log/Web Virus Log Query] was incorrectly displayed in some cases.● Fixed an issue where the "Internet Authentication Account" field did not display correctly.
[VPN][IPSec Tunnel]● Adjustments "Multi-channel Mode" now displays status information for disconnected segments.● Fixed an issue where, in some cases, the backup switch would not switch correctly when WWAN was selected as the backup link.● Fixed an issue where, in some cases, the connection was established but packets were not transmitted properly.[PPTP Server]● Fixed an issue where the [PPTP Account List] account could be entered in Chinese, causing errors.● Fixed an issue where, in the [PPTP Account List] > "Account Expiration Date" field, the actual expiration date was one day less than the set date.[SSL VPN]● Adjusted [SSL VPN Settings] > "Modify Server Settings" to add relevant field prompts.● Adjusted [Client SSL VPN List] > "Re-obtain All Certificates" to add a prompt during execution to prevent repeated execution.● Adjusted: When the server certificate expires, client certificate generation will be disabled and a prompt will be displayed.● Adjusted: When generating client certificates, the expiration date will be adjusted according to the server certificate expiration date.● Fixed a PHP error that occurred in [SSL VPN Settings] > "Certificate Information" > "Regenerate Certificates." Fixed an error message issue.● Fixed an issue where account credential settings could not be downloaded when the Internet authentication group name in the [Client SSL VPN List] contained special characters.● Fixed an issue where a PHP error message would appear in some cases when using [SSL VPN Log] > [Export].● Fixed an issue where account credential settings could not be generated in some cases.● Fixed an issue where sslvpn-gui (PC client) version 3.0.0.2 was updated.Update Information:● Fixed the CVE-2024-1305 issue and updated the virtual network card driver.[L2TP]● Fixed an issue where the actual expiration date in [Account List] > "Account Expiration Date" was one day less than the set date.● Fixed an issue where encrypted authentication was not correctly used for L2TP connections in some cases.
[SD-WAN]● Fixed an issue where the [Delete] setting was not correctly executed, causing SD-WAN service anomalies.● Fixed an issue where packet transmission could not be performed properly in some cases, causing connection anomalies.
[Network Tools][Connection Test]● Adjusted [DNS Query] to add the "Interface Address" function setting.● Fixed an issue where [Ping] did not execute according to the "Interface Address" setting in some cases.● Fixed an issue where [Port Scan] failed to connect due to routing errors in some cases.
[Logs][Operation Logs]● Fixed an issue where [Management Target > Firewall Protection > Firewall Protection] > "Permanent Block" did not generate logs.● Fixed an issue where [Management Target > Internet Authentication > Web Settings] logs were missing "Page Default Language" information.● Fixed an issue where [Network Services > DHCP > DHCP Blacklist MAC Address] > "DHCP Flood Attack Protection" log information was incorrect.● Fixed an issue where [VPN > SSLVPN Server > Client SSL VPN List] > [Retrieve All Certificates] did not generate logs.
[System Status][Connection Status]● Fixed an issue where [Member List] displayed incorrect connection status in some cases.[Traffic Analysis]● Adjusted [Traffic Analysis Query] > "Query Conditions" to add the "Source Port:" feature.● Fixed an issue where, in some cases, an error message would appear when clicking "Details" in [Traffic Quota Query].● Fixed an issue where, in some cases, the "Application" field information would be inconsistent with the information displayed in the [Threat Intelligence Dashboard].[Threat Intelligence Dashboard]● Fixed an issue where, in some cases, data would not display correctly when switching dates in "Real-Time Information."● Fixed an issue where, in some cases, items in [Threat Intelligence] would display "null."● Fixed an issue where, in some cases, [Web Control] "Upload/Download File Extension Blacklist" displayed incorrect records.● Fixed an issue where, in some cases, [DNS Lookup] displayed incorrectly when a large amount of data was present.● Fixed an issue where, in [Report], the "CPU Load/Memory Load/System Load" report content did not contain any data.● Fixed an issue where, in [Report], Thai text would not display in the report.
[Others][Admin Interface]● Added the [ZTA VPN] [Client-to-Site] feature, providing VPN service application and control settings.● Adjusted [System Status > Connection Status] > [Wireless Member List] to [AP Management Member List].● Adjusted the names of some interface functions and unified the display (Chinese language adjustment only).- [Management Target] > [Firewall Function] changed to [Firewall Protection]- [System Status > Threat Intelligence Dashboard] > [WEB Control] changed to [WEB Control]● Adjusted the "Data Source" function item to not display when the "USB Log Backup" source does not exist on the log page.● Adjusted support for two-step verification codes for functions requiring password authentication.● Adjusted the login page style and HTTP headers to reduce search engine indexing issues.● Adjusted the IP query interface to support wildcard and mask format queries.● Fixed an issue where blocked IP addresses would still display login failure logs.● Fixed an issue where multiple devices could be logged out when switching between management interfaces.● Fixed an issue where traffic information was not displayed on the [Homepage] network interface in some cases.● Fixed an issue where the [Homepage] homepage displayed an expired authorization message when the app version had not been updated.● Fixed an issue where domain information could not be saved properly in some interfaces due to a formatting error.● Fixed an issue where a prompt was not displayed correctly when switching to a specified page and the maximum number of pages was exceeded.● Fixed an issue where some English text was incorrectly or incompletely translated.● Fixed an issue where password verification failed when a function required password verification and a password containing a backslash ('\').● Fixed an issue where the text "test" could not be entered for configuration in some interfaces, triggering an error.● Fixed an issue where some input fields could not be saved properly due to a space filtering error.[Console]● Fixed an issue where an error message would appear when shutting down or restarting the computer.[System]● Adjustments: Enhanced system security by adjusting connection request data filtering and interface input restrictions.● Adjustments: Updated regional IP addresses. Database.● Adjusted and updated the database for Apple devices compatible with Mac.● Adjusted the default certificate regional information changes.● Adjusted the import of SSL certificates to support EC (Elliptic Curve) certificates.● Fixed an issue where some internal services could not run properly or crash due to application package interference.● Fixed an issue where the USB offline update function did not properly check the integrity of uploaded files.● Fixed an issue where some handlers did not properly release resources, causing the program to stop unexpectedly.● Fixed an issue where some exceptions occurred during service restarts, causing the management interface to become disconnected.● Fixed an issue where blocking attack sources through policies did not reduce the load caused by the attack.● Fixed an issue where weak scans could detect open web services when enabling web-related filtering services.● Fixed an issue where line detection functions did not run correctly in some cases.● Fixed an issue where the import of SSL certificates could freeze due to an abnormal check process.● Fixed an issue where importing SSL certificates could freeze due to an exception in the check process. Certificate-related functions were unable to properly import files using the UTF-8 BOM format.● Fixed an issue where, in some cases, large packets could cause the system to shut down unexpectedly when processed by the IPS.● Fixed an issue where the upper limit for "AP Management/SSLVPN" settings was incorrect on some models.● Fixed an issue where, in some cases, the DNS Server-related service could cause abnormal CPU load.
[Management Target][Address Table]● Added a new [Address Table Group] with a new [Search] function.● Adjusted the "Address Table Group" [Add/Edit] "Region" to add a "Custom IP" filter option.● Adjusted the "Address Table Group" [Add/Edit] to optimize the "All Members" filter and add an "IP Address" > "Custom" option.● Fixed an issue in [Address Table] where the prompt was not displayed correctly when some settings could not be changed due to the application of regulations.● Fixed an issue in [Address Table] where the "External Link List" setting was not updated regularly in some cases.● Fixed an issue in [Address Table] where the domain set in "User Custom Domain/External Link List" was invalid in some cases.● Fixed an issue in [Address Table] where the MAC address setting "00:00:00:00:00:00" could not be saved.● Fixed an issue in [Address Table Group] where duplicate IP+MAC addresses were set .● Fixed an issue where the address table settings applied to [Control Rules] were invalid in some cases.● Fixed an issue where incomplete settings would occur after importing [IPv6] [Address Table] > [Address Table Import].[Schedule]● Fixed an issue where settings without applying rules would still affect connectivity.● Fixed an issue where settings would appear blank in some cases.[Bandwidth Management]● Fixed an issue where, in the [Network Settings > Zone Settings] interface, a notification was not displayed when removing enabled bandwidth management.[Application Control]● Added a [Whitelist] setting to [Application Control] to exclude IP addresses from analysis and filtering.● Added an "Automatically Check Package Version" feature to [Application Control].● Adjustments: Display "Application Version" information and provide a prompt to update the version information.● Adjustments: Optimize the [Add/Edit] interface settings.● Adjustments: [Add/Edit] > "Data Sharing and Storage: Google Driver" now requires a reminder to block settings in conjunction with other control items. (New version of the app)● Fixed an issue where services were not running correctly in some cases.● Fixed an issue where the "Source/Destination IP" information in some cases of [IPv6] logs was incorrect.[URL Management]● Fixed an issue where the URL whitelist blocking log in some cases of [Logs] displayed incorrect information.[DNS Filter]● Fixed an issue where [IPv6] logs were only retained for one day.[Firewall Protection]● Adjusted an issue where querying in [Firewall Protection Logs] caused excessive system load when processing large amounts of data.● Fixed an issue where IP addresses that triggered "Permanent Block" in some cases were not correctly blocked in [Firewall Protection].● Fixed an issue where "Block Ping of Death Attacks" in some cases was incorrectly blocked in [Firewall Protection] > "Other Items".● Fixed an issue where the local IP address of the firewall was blocked in some cases.[Internet Authentication]● Adjusted [Web Settings] > "Upload Logo" to increase the upload file limit 5MB.● Adjusted the "Name" setting in [Local Users] to 64 characters.● Adjusted the "Local Users" > "Import" setting to allow users to select "Replace" or "Ignore" when importing duplicate accounts.● Adjusted the "POP3, IMAP, RADIUS Users" > "Edit" > "Import" setting to allow users to select "Replace" or "Ignore" when importing duplicate accounts.● Adjusted the "POP3, IMAP, RADIUS Users" > "Edit" > "Server Member Settings" setting to add a "User Account" sorting function.● Adjusted the "AD Users" setting to add a "Missing AD Sync Accounts" function to view a list of unsynchronized accounts.● Fixed an issue where the "Local Users" > "Add/Edit" > "User Password" setting would not save when using symbols (',',).● Fixed an issue where the "Local Users/POP3, IMAP, RADIUS Users" setting would not save the settings. In some cases, account deletion was incorrectly detected, resulting in failure to execute or no prompt being displayed.● Fixed an issue where SSLVPN accounts were not updated synchronously in some cases under [AD Users].● Fixed an issue where connection failures occurred in some cases under [AD Users] when using SSL authentication.● Fixed an issue where an error warning would appear when editing a group name in [User Groups] that contained partial characters.● Fixed an issue where the certificate-related information window did not appear when adding an account to a group that already had [SSLVPN Group] applied.
[Network Services][DHCP]● Adjusted [DHCP Server] to allow specifying different IP addresses for the same interface in different zones when setting the "802.1Q" interface.● Adjusted [DHCP Server] > "Interface" to remove the option for external network interfaces.● Fixed an issue where the DHCP server information obtained on client devices in some cases was not the local IP address of the device.● Fixed [DHCP User List] Fixed an issue where an IP address set to "DHCP fixed IP address" was still assigned in some cases.[DDNS]● Adjusted and optimized background update behavior to increase update efficiency.[Virus Engine]● Adjusted the [ClamAV Engine] update to version 1.0.6.● Adjusted the [Kaspersky Engine] function to stop updating the virus pattern database after the license expires.● Fixed an issue where the management interface could not connect to the [Kaspersky Engine] service when the service was started in some cases.● Fixed an issue where web browsing could not function properly in some cases when the [Kaspersky Engine] was enabled.[Sandstorm]● Added support for offline updates, allowing you to import signatures from a file or upload them via USB.● Fixed an issue where [Sandstorm Logs] could not generate logs when the [DNS Filter] triggers a Sandstorm item and the IP address is IPv6.● Fixed an issue where signature updates could continue to fail in some cases.[WEB [Service]● Added "Encrypted Connection Settings" > "Disable SSL Decryption" setting.● Fixed an issue where changes to the "Redirection Port" setting in [WEB] > "Certificate Installer Settings" did not take effect.● Fixed an issue where the Certificate Installer could not be downloaded in some cases under [WEB] > "Certificate Installer Settings".● Fixed an issue where Chinese characters appeared in non-Chinese language documents under [WEB] > "Installation Help".● Fixed an issue where the "Remote Download" function did not work properly when running the Certificate Installer in some cases.[High Availability]● Fixed an issue where the DHCP interface in [Network Settings > Network Interface] continued to function while the Backup device was in standby.● Fixed an issue where "Mode 3" in the "Management Target > Schedule" rule did not work when the Backup device was in service.● Fixed an issue where the system schedule did not work properly after running [System Settings > Backup and Restore > Restore to Factory Defaults] on the Backup device.● Fixed an issue where the "Current Detection Status" > The [Log] button color did not match the data status.● Fixed an issue where enabling the "Assisted Detection Interface" sometimes caused system scheduling errors.● Fixed an issue where the "Last Data Synchronization Time" > [Log] display was incorrect in some cases.● Fixed an issue where the synchronization process did not run in some cases.[Remote Log Server]● Fixed an issue where "Intranet Protection Log" data was duplicated.
[Advanced Protection][Switch Management]● Added support for the Zyxel GS1900-24HP, Zyxel GS1915-24E, and Zyxel XGS1930-28 switch models (SNMP)● Added support for the PROSCEND 850X-28, PROSCEND 850G-12I, and VOLKTEK 8015-8GT-I switch models (Collaborative Defense)● Fixed [Switch Settings] > [Auto Search] Issues with some cases not working properly.● Fixed an issue where [Switch Settings] settings could not be deleted in some cases.● Fixed an issue where [Network Status Map] update failed in some cases.● Fixed an issue where [Network Status Map] incorrectly displayed link port and layer information in some cases.● Fixed an issue where [Network Status Map] did not display IP information in some cases.[Intranet Protection]● Adjusted the minimum setting for "Arp Packet Threshold" in [Protection Settings] to 10.● Fixed an issue where [Arp Log] records were logged even though the packet count did not exceed the set value.● Fixed an issue where [Arp Log] pages would display incorrectly in some cases.● Fixed an issue where [Mac Conflict Log] would trigger logging when binding duplicate MAC addresses in the address table.● Fixed an issue where [IP Conflict Log] displayed unclear information.
[IPS][IPS Settings]● Added the [IPS Notification Item] feature setting.● Added the rule addition display. "Rule ID" and "CVE" fields.[IPS Logs]● Added "Rule ID" and "CVE" fields to the log list.● Fixed an issue where some connections were blocked but no logs were generated.● Fixed an issue where IPv6 logs were not generated.
[WAF][WAF Settings]● Added a "WebSocket Support" feature setting to "Website Management."● Fixed an issue where some changes to the "Log/Block" settings for rules in "WAF Settings" did not take effect.● Fixed an issue where settings did not take effect after executing "Import" in "Website Management."● Fixed an issue where some WAF rules could not be properly connected after applying them.● Fixed an issue where the WAF service could not be started in some cases.[WAF Logs]● Fixed an issue where some WAF Logs did not generate logs after blocking.
HERHSIANG Information Co., Ltd. (Uniform number: 13167798)
88673494097 88673596785 service@herhsiang.com
3F, No.5, Dinghe St., Sanmin District, Kaohsiung City 807080
Taiwan (R.O.C.)
Business hours: Monday ~ Friday 8:30 ~ 12:00 / 13:30 ~ 1800
(Except holidays and national holidays)Copyright © 2002~2026
