Skip to main content

Version: v24.9.26

hiCLOUDS SDWAN Platform Release Notes

Release Date: 11th Oct 2024

Deployment Locations

New Firmware Version: 22.03.5-b64 for CE/PE

Firmware-Version-Update

CE/PE Firmware 22.03.5-b64: To update to the latest firmware version, please contact technical support to receive the update package.

New Features

  • Multilevel Email Notification Configuration:
    This feature enables configuration of email notifications at multiple levels: CE/PE, organization and global. It gives greater flexibility in setting up tailored alerts, ensuring that notifications are sent to relevant stakeholders at the appropriate level. This reduces alert fatigue and enhances communication on the platform.

    Documentation for Multilevel Email Notifications

  • SSLVPN Cipher Support:
    Support for configuring SSLVPN encryption has been enhanced, allowing users to disable encryption when high bandwidth is required. The default behavior ensures that a secure cipher is used if no or invalid options are specified, providing a balance between security and performance. This feature is especially useful for optimizing VPN traffic for large-scale deployments.
    Documentation now covers default cipher behavior. If no cipher or an invalid value is provided, the system defaults to a secure option.

    Documentation for SSLVPN Encryption

  • Backup Support:
    The new backup functionality allows administrators to easily configure, store and restore backups for both CE and PE devices. This feature ensures that system configurations can be safely saved and recovered in the event of a failure or update, providing reliability and reducing downtime.

    Documentation for Backup Configuration

  • Allowed and Blocked IP Subnets Configuration in CGW:
    Added ability to manage allowed and blocked IP subnets in CGW, improving control over network traffic. This feature increases security by allowing administrators to define specific subnets that can access or restrict access from the network, which supports better network segmentation.
    Documentation for this configuration can be found in the updated CGW settings guide.

    Documentation for Allowed and Blocked IP Configuration

  • NAT Helper Support:
    NAT helper support has been extended to include FTP and PPTP connections, improving network address translation for certain protocols. This update is offering better compatibility and connectivity for FTP and PPTP based services across NAT environments.

  • New ARM Hardware Support:
    xspeed-nm11p introduced compatibility for ARM hardware platforms, expanding device support. This allows for more versatile deployments, especially in environments requiring ARM-based architectures, providing better performance and flexibility in hardware choices.

Improvements

  • VPN Traffic Policy Moved to Interface Level:
    VPN traffic policy configuration has been moved to the interface level, streamlining policy management and allowing more granular control over individual VPN interfaces.

  • New Traffic Policy Options Including "NONE" for Unlimited Bandwidth:
    Introduced a new traffic policy option called NONE allowing for unlimited bandwidth allocation on a dedicated VPN tunnel. This provides more flexibility for high-demand scenarios.

  • Updated Default Traffic Policy to 2Mbps for CGW-Based VPN Tunnels:
    The default traffic policy for Cloud Gateway (CGW) VPN tunnels has been updated to 2Mbps, ensuring a more consistent baseline for bandwidth management.

  • Migration to New DNS Server IP Addresses:
    Updated the system to use new migrated DNS server IP addresses, increasing the reliability and stability of DNS resolution for all connected devices.

  • Upgrade to Angular Framework v16:
    Upgraded the Angular framework to version 16, contributing to a more responsive user experience, enhanced performance, security improvements, and support for new web technologies.

  • Improved Handling of Multiple IP Addresses on Bridge Interfaces:
    Increased the system's ability to handle multiple IP addresses on bridge interfaces within OpenWRT-based CE/PE devices, improving network scalability and management.

  • Enhanced CE ID Tracking Using Keepalived:
    Better tracking of CE IDs with the Keepalived service, ensuring accurate monitoring of master and backup status in high-availability setups.

  • Restricted Default Policy Setting to Selective Mode in CGW:
    Restricted setting of default policies in selective mode in Cloud Gateway, improved traffic control and security measures for CGW deployments.

  • VPN Traffic Policy Moved to Interface Level:
    VPN traffic policy configuration has been moved to the interface level, streamlining policy management and allowing more granular control over individual VPN interfaces.

  • New Traffic Policy Options Including "NONE" for Unlimited Bandwidth:
    Introduced a new traffic policy option called NONE allowing for unlimited bandwidth allocation on a dedicated VPN tunnel. This provides more flexibility for high-demand scenarios.

  • Updated Default Traffic Policy to 2Mbps for CGW-Based VPN Tunnels:
    The default traffic policy for Cloud Gateway (CGW) VPN tunnels has been updated to 2Mbps, ensuring a more consistent baseline for bandwidth management.

  • Migration to New DNS Server IP Addresses:
    Updated the system to use new migrated DNS server IP addresses, increasing the reliability and stability of DNS resolution for all connected devices.

  • Upgrade to Angular Framework v16:
    Upgraded the Angular framework to version 16, contributing to a more responsive user experience, enhanced performance, security improvements, and support for new web technologies.

  • Improved Handling of Multiple IP Addresses on Bridge Interfaces:
    Increased the system's ability to handle multiple IP addresses on bridge interfaces within OpenWRT-based CE/PE devices, improving network scalability and management.

  • Enhanced CE ID Tracking Using Keepalived:
    Better tracking of CE IDs with the Keepalived service, ensuring accurate monitoring of master and backup status in high-availability setups.

  • Restricted Default Policy Setting to Selective Mode in CGW:
    Restricted setting of default policies in selective mode in Cloud Gateway, improved traffic control and security measures for CGW deployments.

Bug Fixes

  • Incorrect Start and Resolve Times in Email Notifications:
    Fixed an issue where email notifications displayed incorrect start and resolution times. This correction ensures accurate reporting and troubleshooting for system administrators.

  • Repeated Sequence ID in PE:
    Resolved an issue in PE environments where duplicate sequence IDs caused synchronization issues, ensuring smooth operation and data integrity.

  • IPSEC Tunnel Listing Issue:
    Fixed an issue in the IPSEC grid where spokes were not displayed correctly, improving the accuracy and visibility of tunnel configurations.

  • Organization Device Listing Issue:
    Addressed a bug where some devices were not showing up in the organization's device list, ensuring that all devices are properly displayed and manageable.

  • API Calls for Organization Data:
    Resolved an issue where organization data was not being updated or deleted correctly after API calls, improved data consistency and synchronization across the system.

  • Bing Map Language Default Issue:
    Changed the default language for Bing Maps to English, fixing dropdown issues that prevented region creation and updates, especially for non-English locales.

  • Duplicate Dropdown Entries (Bootstrap-Select):
    Patch the bootstrap-select library to resolve an issue with duplicate entries appearing in dropdown menus, improving the user experience during configuration tasks.

  • PE MAC Address Registration Issue:
    Fixed a bug where platform edge MAC addresses were not being registered correctly during setup, ensuring seamless device registration in PE deployments.

  • Memory Optimization (Disabled Netifyd):
    Disabled the Netified service to optimize memory usage on the system, improving overall system performance and resource management.

  • DNS Settings for VPN Clients:
    Implemented changes to push DNS settings to VPN clients, ensuring proper resolution and functionality for Cloud Gateway (CGW) setups.

  • Conntrack Flush on Multi-WAN Failover:
    Improve failover and failback handling by flushing contracts on the primary interface during multi-WAN events, ensuring smooth network transitions.

  • Reset CE ConfigType After VPN Deletion:
    After the VPN interface is deleted, ensure that CE configType is reset to its default state, preserving the integrity of the configuration.

  • Improved CE/PE Navigation in VPN Interface Tab:
    Fixed navigation issues in the VPN interface tab, allowing seamless access between CE and PE configurations.

  • Resolved Remote Value Display Issue in CE VPN Grid:
    Addressed an issue where unknown remote values ​​appeared in the CE VPN grid, ensuring accurate data representation.

  • PE MAC Address Registration Issue for Firmware v22.03.5:
    Fixed a MAC address registration issue specific to PE devices running firmware version v22.03.5, ensuring smooth device integration.

Need Help or Have Questions?

For further assistance, please contact our support team via any of the following channels:

Our team is always ready to help with any issues or questions regarding this release.