From UntangleWiki

Contents 1 Network Implementation 1.1 Benefits 2 Active Directory 3 Ubuntu & Debian Support 4 Kaspersky Virus Blocker 5 New Hardware Support 6 Policy Management 7 SNMP & MSSP tool integration 8 Other Improvements 9 Contributors 10 Known issues for the 5.1 Beta I 11 Known issues for the 5.1 Beta II 11.1 Known fixes for the 5.1 Beta II 12 Known issues for the 5.1 RC1 12.1 Known fixes for the 5.1 RC1 13 Known issues for the 5.1 RC2 13.1 Known fixes for the 5.1 RC2 14 Notes for Final Release of the Upgrade Release

Network Implementation

• The network settings implementation has changed extensively
• The "Router" virtual appliance is now gone - it has been replaced by built-in settings in Config->Networking
• Config->Networking has a Web UI (not a part of the java swing client)

Benefits

• PPTP should now be NAT'd correctly
• IPSec should now be NAT'd correctly
• ICMP implementation is cleaner (tracert works correctly also)
• Traffic can be selectively bypassed by the untangle-vm (like VOIP)
• The configuration of complex network setups is much simpler
• 1:1 NAT and more complicated policies are now supported
• Port forwards (and packet filter rules) are now implemented as rule-builders
• Remapping of interfaces is now supported in the UI in basic and advance mode
• Up to 7 physical interfaces now supported
• Allows for cleanly running independent apps on the Untangle Server without the untangle-vm interfering with their traffic.

Active Directory

• The AD integration in the Professional Package implementation has been totally replaced
• The ADLS (Active Directory Lookup Server) has been deprecated
• Policies and Reports now integrate much more reliably with AD
• Configuration of AD is now more flexible
• More Active Directory configurations are supported

Ubuntu & Debian Support

THIS IS UPCOMING. We are still in alpha testing with this.

• Install from packages is now supported on Debian Etch
• Install from packages is now supported on Ubuntu Gutsy

Kaspersky Virus Blocker

• Kaspersky Virus Blocker is now being offered through the online library
• Kaspersky Virus Blocker is identical to Virus Blocker, but uses the Kaspersky Antivirus Engine
• Dual Virus Blocker has been deprecated

New Hardware Support

• A new kernel is supported (2.6.22) so hardware support is much better
• Hardware RAID should be supported
• SATA & disk controller support is much improved
• Video driver support is improved
• Chipset support is improved

Policy Management

• Racks have been simplified to be single-direction
• A default policy has been created to map outbound TCP port 25 to "No Rack"

SNMP & MSSP tool integration

• Untangle now integrates with Kaseya and Level Platforms
• SNMP information has been greatly extended

Other Improvements

• Spam scanning has improved. (New signature sets added)
• A untangle-vm command line configuration tool has been added, called nucli
• Many new dynamic DNS providers have been added
• Enabling Remote Support no longer enables SSH
• SSH is now installed by default but disabled, to enable SSH on your server run "update-rc.d ssh defaults"
• More signature sources have been added to Phish Blocker
• Attack Blocker now has an "unlimited" setting

Contributors

• Thanks to Juan Machado for his great improvements and testing around spam and phishing efficiency
• Thanks to many users and forum members for their feedback, bug submissions, and community participation.
• Thanks to the participants in the Closed Beta I and II

Known issues for the 5.1 Beta I

The Beta has the following issues

• 5.1 must be a clean install (not an upgrade)
• Co-existence with other protocols, for example VoIP, has not been tested yet
• OpenVPN is untested and may not work
• Ping does not work
• POP e-mail does not work
• Backup/restore does not work
• Report PDFs do not work, however the HTML reports do work
• You cannot manually configure the Half/Full Duplex and 10 /100 settings. It's automatic and cannot be turned off.
• Currently PPPoE does not support Use Peer DNS, DNS servers must be manually specified.

If you have used 5.0 a major difference is that in 5.1 Router is gone from the rack. Functionality is now under the Config tab -> networking page.

This Beta release does not include the Level Platforms or Kaseya connectors. They are coming soon.

Known issues for the 5.1 Beta II

1. You can upgrade your 5.1 Beta I to 5.1 Beta II
2. 5.1 Beta II can be a clean install

1. Report do not work, if you have Kaspersky installed
2. PPPoE does not work
3. Network Configuration Tool may hang during saves
4. Spam Assassin and Clam-av restarting too much

Known fixes for the 5.1 Beta II

Highlights of the bugs that have been fixed or new stuff added since previous Beta

1. OpenVPN works
2. Ping works
3. Memory leak fixed
4. POP e-mail scanning Spam/Virus
5. Backup/restore works
6. You can manually configure the Half/Full Duplex and 10 /100 settings.
7. Port forwarding Examples added and Port Forwarding works (minus the above caveat that Network Configuration tool can hang)
8. Mostly finished New and Improve Networking Configuration Tool UI
9. Able to order interfaces in Basic mode
10. Nat Policy now works
11. Able to renew lease on DHCP for external addresses
12. Event Log scrolling corrected (Firewall, Protocol)
13. External Alias grid correctly displays
14. Fixed default "no rack" policy time is changed to 2:00 1:59 when creating a new no rack

Plus 76 bugs fixed

Known issues for the 5.1 RC1

1. 5.1 RC1 is only available as an ISO
2. If you participated in the 5.1 closed Beta, you can upgrade your 5.1 Beta II to 5.1 RC1
3. Unable to launch Setup Wizard if system only has eth0, eth2 without eth1
4. PPPoE does not work for configurations that want to bridge the external

Known fixes for the 5.1 RC1

Highlights of some of the bugs that have been fixed or new stuff added since Beta II

1. Reports now work, including if you turn off daily.
2. PPPoE works for most configurations - see above for bug
3. Network Configuration Tool does not hang on save
4. Spam Assassin and Clam-av only restarting when truly stuck now
5. Spam Assassin passing spam through
6. GPG validation failure fixed
7. IE 6 Support for Remote Admin Client

Plus 46 other bugs fixed

Known issues for the 5.1 RC2

1. 5.1 RC1 is only available as an ISO
2. If you participated in the 5.1 closed Beta, you can upgrade your 5.1 Beta II to 5.1 RC1
3. Unable to launch Setup Wizard if system only has eth0, eth2 without eth1
4. Port Forwarding issues have been reported but we have yet to identify an underlying cause or reproducible bug in house
5. Check boxes on the SWING client becoming unchecked after restarting of box (unable to reproduce in house)
6. Passthrough for XBOX 360 Call of Duty 4 is not working
7. FF on Windows Clients, the tables may wrap for the Networking Configuration; Port Forwarding, Active DHCP, ARP, Packet Filtering
8. Button for Active Directory Logon Script is still called Active Directory Lookup Script
9. Networking Config; Duplex only reports up to 100mpbs even if you're using 1/10gig

Known fixes for the 5.1 RC2

• Navigating into ARP errors
• Help buttons for Kaspersky, Networking Configuration upon initial access, Remote Active Directory (AD Server) all point to the correct pages now
• PPPoE able to use use peer dns
• untangle-spamassassin-update* has a typo in script
• IE 6.0 Networking Configuration UI improvements
• snmpd.conf file fixed
• Remove of Source Port from Port Forwarding due to confusion
• Re-order Source Protocols to help usability
• SIGSEGV on a specific ICMP fixed (Previously crashed UVM)

28 bugs fixed between RC1 and RC2

Notes for Final Release of the Upgrade Release

• KAV upgrade will cause Hauri events to be ignored when virus scan reports are generated: only KAV events will be reported once the upgrade occurs.

Developer Notes

• Building from source is by far the easiest if you start with a box that is a fresh install of 5.1 or has already been upgraded to 5.1. Either way after upgrading the untangle-vm source to 5.1, untangle-net-alpaca needs to be installed and running for 5.1 untangle-vm to work.