Datto Networking Appliance (DNA): Software Release Notes

Follow

Topic

This article contains all software release notes for the Datto Networking Appliance. The latest updates are listed first.

For Datto Continuity release notes, see Datto IRIS Software Release Notes.

Environment

  • Datto Networking Appliance (DNA)

Description

Releases

2019-08-12

Bug fixes (firmware version 1.19.3 required)

  • Resolved an issue which could cause all in-progress TCP/UDP streams to stop functioning on firewall reload due to an erroneous signal from an inactive interface

2019-07-30

Improvements (firmware version 1.19.2 required)

  • The UI now indicates if the modem cannot find cellular service
  • Added functionality to DNA diagnostics tools to run ifconfig commands
  • Added functionality to DNA diagnostics tools to run dig commands
  • Disabled TCP SACK due to vulnerability
  • Added multiple improvements to cellular failover handling
  • Improved navigation within the partner shell

Bug fixes

  • Fixed an issue where Ublox-based DNAs are not connecting to the LTE network.
  • Fixed an issue where DHCP would not start if another DHCP server is on the network.
  • Fixed an issue where UDP traffic does not adhere properly to Failover Policy Control.

2019-07-10

Bug fixes

  • Fixed an issue where making changes to the WAN card configuration failed with the error message, "Sorry, applying your changes did not go as expected. Please contact support."

2019-07-09

Improvements

2019-07-01

Bug Fixes (firmware version 1.18.4 required)

  • Resolved an issue where the Site to Site VPN service would restart every 5 seconds, rendering site to site VPNs nonfunctional. 

2019-06-17

Improvements (firmware version 1.18.3 required)

  • Updated the mechanism for Datto Technical Support to gather logs on the DNA.

2019-06-10

Improvements (firmware version 1.18.2 required)

  • Improvements to intrusion detection and prevention.

2019-06-06

Improvements

  • Partners can now configure /17, /19, /25, /26, /27, /28, and /29 subnet sizes through the subnet drop-down menu.

2019-04-29

Improvements (firmware version 1.18.1 required)

Bug Fixes

  • Resolved an issue preventing partners from creating IKEv1/v2 site-to-site VPNs with multiple subnets on each end.
  • Resolved an issue that caused VPN connections to a DNA with multiple subnets to break after the device reboots.
  • Fixed a problem where the DNA sends false alerts and emails indicating that primary connectivity is nonfunctional.

2019-04-25

Bug Fixes

  • Fixed an issue where the Search Domain setting did not work when using OpenVPN for Client VPN with the WAN configured for static IP.

2019-04-02

Bug Fixes

  • Resolved an issue in which clicking the Create New LAN button could cause a screen refresh, deleting all changes on the screen.

2019-03-21

Improvements (firmware version 1.17.3 required)

  • The DHCP server will start, even if it detects another DHCP server on the network.

Bug fixes

  • Resolved an issue where LANs disabled under the Allow Access To interface were still accessible via ClientVPN.
  • Fixed an issue in which newly-enabled siteVPNs generate an email stating the tunnel is down, then create a second email stating the tunnel is up.

2019-03-13

Improvements

  • Added a Fleet Management tab to the device UI, allowing admins to copy a DNA device's configuration and assign it to other devices.
  • Added functionality to use custom VPN profiles with Cisco ASA, Google Cloud Platform, and some Azure configurations.

Bug fixes

  • Resolved an issue where automatic firmware updates were not installing.
  • Resolved an issue in which adding 10 or more traffic policy rules breaks rule ordering.

2019-02-04

Improvements (firmware version 1.16.2 required)

  • Added functionality to the Connected Devices card that displays approximately when a device was last seen on a network.
  • Added functionality that only triggers the device offline alert for service-linked DNA devices.
  • Added functionality that consolidates custom DNS search domain settings for WAN ports & LTE into one setting in the new Global DNS card, simplifying the process for an operator.
  • Added functionality that allows an operator to select Atlantic Standard Time (AST) as a time zone for a DNA.
  • Added functionality that improves DNA alert processing time from 10 minutes to less than 1 minute.

Bug fixes

  • Resolved an issue where a DNA could not check-in over LTE.
  • Resolved an issue where triggered alerts displayed a timestamp five hours ahead of the local time of a DNA.

2019-01-11

Improvements (firmware update not required)

  • Improved the readability and presentation of IDP logging.
    • While this functionality does not require a firmware upgrade, we've also added minor code enhancements to improve device functionality as part of 1.16.1. We recommend upgrading to the latest firmware release.

Bug Fixes

    • Resolved an issue that caused false positive LTE failover alerts.

2018-11-28

Improvements (firmware update not required)

  • Email recipients and alerting options configured for Alerts Configuration now clear during a factory reset.

Bug Fixes

  • Resolved an issue that prevented the same email address from using different alerting options across multiple DNAs

2018-11-09

New Features (firmware version 1.15.6 required)

  • Custom Traffic Policies: Operators can set and configure custom traffic policies that allow or block traffic by port number, IP addresses, and more. For more information, read our DNA: Traffic Policy article.

Improvements

  • Operators can now allow or disallow subdomains as part of blacklisting or whitelisting in the Web Filters feature.

Bug Fixes

  • Resolved an issue where the DNA could not connect to legacy VPN sites
  • Resolved an issue where DNS traffic always redirected to the LAN gateway after disabling the Web Filters feature
  • Fixed an issue where the DNA falsely reported that a site-to-site VPN tunnel went down

2018-10-02

New Features (firmware version 1.15.5 required)

  • Alerts and Notifications: The DNA can now send out alerts to email recipients for events such as the appliance switching to LTE failover mode, unscheduled reboots, setting modifications, as more. For more information, read the DNA: Alerts Configuration article.
  • Advanced DHCP Options: Operators can set advanced DHCP options on a per LAN basis.

Improvements

  • The Web Filters feature now allows unclassified traffic by default.

2018-09-12

Bug Fixes (firmware version 1.15.4 required)

  • Resolved an issue where IPsec tunnel initiations would not establish on a responder DNA with client VPN enabled
  • Resolved an issue that prevented the login page from displaying after a device GUI session had expired
  • Fixed an issue that could cause LTE connectivity failures on some DNA-EA5-KZ1 units

2018-08-28

Improvements (firmware update not required)

  • Added functionality that improves management for distinct site-to-site VPN topologies
  • Added functionality that allows operators to remove configuration backups

2018-08-16

Improvements (firmware update not needed)

  • Added functionality that allows operators to enable or disable the transmission of unclassified traffic through the DNA web filtering feature

2018-08-15

New Features (firmware version 1.15.3 required)

  • Network Objects - DMZ Host: Operators can now specify a network object when creating or modifying a DMZ Host.
  • Site-to-Site VPN IPsec policies: Operators now have full control of the IPSec policies used between the DNA and non-DNA peers.

Improvements

  • Added timezones for all regions with DNA availability.
  • Added a graphical representation of network utilization per client.
  • Added functionality that allows operators to adjust the MTU of the WAN interface.

Bug Fixes:

  • Resolved an issue where a WiFi network failed to add to a LAN lacking DHCP configuration
  • Resolved an issue that intercepted outbound traffic to recently modified subnets in static routes
  • Fixed an issue where IPsec connections timed out after 20 minutes for MacOS clients
  • Fixed an issue that logged false "tunnel up" events
  • Resolved an issue where OpenVPN user authentication failures were not sent to clients
  • Resolved an issue where VPN certificates failed to generate
  • Resolved an issue where system logs under recent events failed to load

2018-07-31

Improvements (firmware update not required)

  • Added functionality that allows operators to select or remove all web filtering categories at once.

2018-07-26

New Features (firmware version 1.15.1 required)

TitanHQ Web Filter: The DNA now uses TitanHQ for an improved web filtering experience. Read the DNA: Web Filters article for more information.

2018-06-25

Bug Fixes (firmware version 1.14.4 required):

  • Resolved an issue which could cause the Datto Networking Appliance's UI to stop accepting changes in certain situations.

2018-06-05

New Features (firmware version 1.14.3 required):

  • Diagnostics: Added a new page with networking diagnostic tools to the DNA GUI. For a full list of tools, see our Datto Networking Appliance: Getting Started article.
  • MAC Address Override: WAN interfaces assigned to the DNA can now be manually specified.
  • Network Objects: Operators can now limit access to port forwarding rules by Network Objects (IP ranges, subnets, etc.).

Improvements:

  • Added functionality that will allow the DNA to auto-negotiate reconnection to a VPN peer device when failing over.
  • Operators can now specify what LAN subnets are accessible in a site-to-site VPN setup.

Bug Fixes:

  • Resolved an issue where connecting to OpenVPN using the same credentials as another active session will cause that user to disconnect.

2018-05-17

New Features (no firmware update required):

  • Customizable Description Field: From the DNA Settings card, operators can label their DNA with a description separate from its hostname to assist with fleet management.

Bug Fixes:

  • Resolved an issue where removing a spoke site in a multi-VPN setup would cause the hub DNA to lose all its configuration.

2018-05-02

Improvements (firmware version 1.13.2 required):

  • For DNA-NA5-US units only, changed the default APN for the LTE connection to improve performance.

Bug Fixes:

  • Resolved an issue which caused undesirable modification of SIP packets under certain circumstances.

2018-04-18

New Features (firmware version 1.13.0 required):

  • WAN Load Balancing: Allows an operator to configure the DNA to use multiple WAN connections for increased throughput, per-WAN load percentages to allow optimal performance in deployments with asymmetric link capacity, and local subnets to prefer either the ISP 1 or ISP 2 interface.
  • Ethernet Settings: Adds a configuration card which allows an operator to adjust link speed and duplex settings for the appliance's physical ports.
  • Failover Policy Control: This feature allows an operator to interrupt existing sessions for LAN clients during transitions to and from 4G LTE failover, and to specify how the DNA interrupts the sessions.

Improvements:

  • Renamed the "Static Host Mapping" card to "DNS Static Host Records" for clarity.

Bug Fixes:

  • Resolved an issue which could cause the Datto appliance's LTE modem to take a long time to initiate after a hard device reboot.
  • Resolved an issue that could cause upgrades to time out and fail as a result of a slow WAN connection.
  • Resolved an issue that could cause intermittent connectivity problems with device LTE modems.

2018-03-22

Bug Fixes:

  • Resolved an issue which could cause certain recent events activity to not display on the Recent Events card.

2018-03-15

Bug Fixes:

  • Resolved an issue which could cause the DNA to become flooded with jobs, preventing operators from managing the device.

2018-03-14

Improvements (no firmware update required):

  • Custom DNS for LTE Failover: Added functionality to allow device operators to apply existing custom DNS settings to the LTE interface.
  • Reorganized Device UI: The Datto Networking Appliance's user interface has been reorganized to enhance navigation and promote ease of configuration. You can learn more about the new user experience by watching our UI tour video. For a full list of features, see our Datto Networking Appliance: Getting Started article.

Bug Fixes:

  • Fixed an issue which could prevent the appliance's secondary WAN IP address from being displayed in the Network Overview panel.
  • Resolved an issue that prevented appliances from saving WAN configurations where the SSID contained an emoji.

2018-03-08

Improvements (firmware version 1.12.0.74147 required):

  • Operators are now able to configure WiFi frequencies on devices authorized for service in Australia and New Zealand.

Bug Fixes:

  • Resolved an issue where LTE did not work out-of-box for certain models, which required operators to register the DNA through a wired LAN connection as a workaround.
  • Resolved an issue that could cause DHCP relay and static DHCP leases to interfere with the display of IP address for connected clients.

2018-02-27

New Features (firmware version 1.11.2.66162 required):

  • Port Aggregation Status: Allows an operator to see the status of aggregated ports to verify that they are working as expected and to troubleshoot issues.

Bug Fixes:

  • Global WiFi Settings Toggle: Changed wording on the Global WiFi Settings card's on/off toggle to clarify its meaning.
  • Fixed an issue that could prevent the description field on a configured WiFi card from being edited if an operator entered a blank value.
  • Fixed an issue that prevented DHCP leases from being removed on the deletion of a VLAN.
  • Fixed an issue that could cause an operator to be repeatedly prompted for credentials when connecting to an IKEv2 client VPN.

2018-02-13

Improvements (firmware version 1.11 required):

  • The DNA now supports a subnet mask for /30, which is typically configured for LANs connecting to a point-to-point subnet.
  • IPsec Profiles: Allows an operator to apply policy and encryption optimizations to a Site-to-Site VPN connection which are appropriate to the profile of the IPsec endpoint in the connecting environment.
  • VPN Re-Key Improvements: The DNA will now create a new VPN tunnel before tearing down the existing one during the Automatic Tunnel Restart process, delivering a more seamless experience and ensuring connection continuity for devices connected through Site-to-Site VPN.

2018-01-24

New Features (firmware version 1.9.0.40368 required except where noted):

  • Inter-Network Accessibility: Allows an operator to specify firewall rules between VLANs configured on the DNA, providing greater control over which VLANs can communicate with other VLANs.
  • Static Host Mapping: Allows an operator to specify an IP address to resolve for a given hostname when queried by an internal client on the LAN.
  • Port Forwarding: Allows an operator to specify a source IP when directing incoming network traffic to specific destinations within the LAN (firmware update not required).
  • Port Aggregation: Allows an operator to combine two or more NICs to act as a single logical link (LACP interface), enabling improved connection performance and redundancy for inter-network traffic passing through the DNA.
Port Aggregation requires firmware 1.6.0 or above. Datto recommends firmware version 1.9.0.40368 for best results.

Bug Fixes:

  • Fixed an issue that could cause the DNA to show an update banner when an update was not available.
  • Fixed an issue that could cause the Test Failover button to time out prematurely.
  • Fixed an issue that could cause large subnets assigned to a LAN to report duplicate device connections.
  • Fixed an issue that could cause IDP (Snort) to fill logs with ping reports for 8.8.8.8 and 8.8.8.4.

2018-01-10

New Features (firmware version 1.8.1.38278 required):

  • Outbound NAT Support: Allows an operator to configure firewall rules which route traffic through alternate source IP addresses in the private subnets. This feature requires more than one static IP and permits you to specify which external IP address to use for a given host (one IP) or subnet.
  • PPPoE Support: Allows an operator to configure either WAN connection to pass a username and password to an ISP connection, so that the connected router can authenticate to the modem.
  • Seamless Site-to-Site VPN Failback: Preserves existing Site-to-Site VPN connections during a network transition.

Bug Fixes:

  • Fixed an issue that could cause the DNA to bring down an incorrect VPN tunnel when more than one connection is defined.

2017-11-21

New Features (firmware version 1.6.0 required):

  • DHCP Relay: Allows an operator to configure a DHCP server external to the DNA for more centralized management of client IP addresses.
  • Automatic VPN Tunnel Restart: lets operators specify a timeframe for re-keying site-to-site VPN tunnels after they are created.
  • Automatic VPN Failback: When using a failover connection, site-to-site VPN will now automatically fail back to the primary WAN when it healths is restored.

Bug Fixes:

  • Fixed an issue that could cause the DNA to incorrectly prompt for a subnet mask when configuring LANs.

2017-11-09

Improvements (firmware version 1.5.3.99 required):

  • Client VPN: Added enforcement of server certificate verification. The OpenVPN server must now present a compatible certificate before the client trusts the connection. After installing this firmware update, you will need to download new VPN Gateway Certificates and OpenVPN Config Files from the Client VPN card. Old certificates will no longer work.

Bug Fixes:

  • Fixed an issue that could cause the LTE connection to appear as unavailable when in actuality the modem for LTE was becoming unresponsive. This fix will allow the DNA to recognize the modem state and re-establish communication.
  • Fixed an issue that could prevent the DNA from going into LTE failover mode when an upstream device, such as an ISP modem, was disconnected.

2017-10-23

Improvements (firmware version 1.4.4.93 required):

  • Updates to the Datto Networking Appliance, providing enhanced time zone support.

Bug Fixes:

      • Fixed an issue that could cause IPSec traffic to stop when specific interfaces were detached and reattached to the system by an operator.

2017-10-20

Terms of Service Updates

  • All device operators will be prompted to acknowledge the updated Terms of Service at the next device login. Once acknowledged, the Terms of Service prompt will not reappear.

2017-10-16

Improvements (firmware version 1.4.0 required):

  • Updates to the Datto Networking Appliance providing additional modem and SIM support.

2017-10-09

New Features (firmware version 1.3.4 required):

  • Added functionality to allow the appliance to notify an operator of WAN / LAN conflicts from the Status page.
  • Added a conditional DNS forwarding feature which allows the DNA to use a custom target IP address to resolve requests for specific URLs.

Improvement:

  • Added functionality to allow an operator to configure /16 subnets (subnets with a theoretical maximum of 65,536 addresses).
  • Added functionality to allow VPN clients access hosts behind a site-to-site connected remote DNA.

Bug Fixes:

  • Fixed an issue that blocked some IP address from passing through the firewall of the DNA and prevented OpenVPN from working.
  • Fixed an issue that could cause site-to-site VPN tunnels to drop unexpectedly and fail to self-heal.

2017-09-19

New Features (firmware version 1.2.2.82 required):

  • Added functionality to allow an operator to view the status of a Site-to-Site VPN connection.
  • Added functionality to allow an operator to view the local subnets required to configure non-DNA clients.

Improvement:

  • Added the ability for the DNA to fall back to static DNS information if local DNS information is unavailable.

Bug Fixes:

  • Fixed bandwidth data reporting of IP addresses for statically-addressed WiFi clients.
  • Fixed an issue that could prevent the LTE modem from coming back up on device reboot.
  • Fixed an issue that could cause prevent device check-in under specific conditions.
  • Fixed an issue that could prevent ping requests from passing over lte0.
  • Fixed an issue that could prevent IKEv2 users from being shown in the device UI.
  • Fixed an issue that could cause unsupported device features to appear in the device UI on older DNA platforms.
  • Fixed an issue that could cause LAN information not to report connected devices.
  • Fixed an issue that prevented the More Info button for connected devices from displaying device information.
  • Fixed an issue that could prevent DHCP leases from being retained by the DNA when the Cancel button was clicked during a LAN card edit.

2017-09-07

New Feature:

  • Added functionality to allow the assignment of multiple networks to a single LAN port through VLAN tagging.

Bug Fixes:

  • Fixed an issue that could prevent the DNA's LTE connection from resuming after a device reboot.
  • Fixed an issue that prevented the device from displaying IKEv2 users in the GUI.
  • Fixed an issue that could cause user IDs to fail to update after Partner Portal log out.
  • Fixed an issue which required users to double-click the Cancel button to cancel an edit on the VLAN card.

2017-08-28

New Feature:

  • IKEv2 Support for Mac: Adds IKEv2 support for Mac devices connecting via VPN.

Bug Fixes:

  • Fixed an issue that could cause internal clients to be unable to reach port forwarded services using NAT reflection.
  • Fixed an issue that caused intermittent timeouts when accessing the Top Applications pie chart.
  • Fixed an issue that could prevent IKEv2 traffic from reaching the DNA.

2017-08-23

Bug Fixes:

  • Fixed an issue which could cause latency in the DNA portal and intermittent red banners to appear in the GUI.

2017-08-21

New Feature:

  • Configuration Restore: Allows an operator to restore the appliance to a previously saved configuration. The device will now back up its current settings when a user makes a configuration change.

Improvements:

  • Site-to-Site VPN:
  • Restored the 'Reset Connection' connection button to the Site-to-Site VPN configuration card.
  • Added functionality to lock the UI if the DNA is configured as a spoke.
  • Improved UI badging to more clearly indicate the role of each connection in a static configuration.

Bug Fixes:

  • Fixed an issue that could cause subdomain name length validation to be skipped on check-in.
  • Fixed an issue that could cause multi-site-to-site migration to fail for very old siteVPN configurations.
  • Fixed an issue that could prevent an operator from editing only the router address when configuring a subnet.

2017-08-07

Note: Requires firmware update 1.0.5.75.

Improvement:

  • Improves algorithm to determine LTE signal strength based on actual connectivity and ping.

2017-08-03

Note: Requires firmware update 1.0.4.74.

New Feature:

  • Top Applications Reporting (Layer 7 DPI):  Partners can view data usage on a per-application basis from the Network Usage card. Requires firmware version 1.0.4 or higher.
  • Added update to OS that enables application data reporting through the UI.

Improvement:

  • Improved signal strength reporting through the UI.

2017-07-24

Features:

  • 1:Many NAT. Partners can now configure a 1:Many NAT environment through the GUI of the DNA appliance.

2017-07-12

Note: Requires firmware update 0.9.1.65.

Bug Fixes:

  • Fixed an issue with LTE failover which could cause the DNA to stop checking in.
  • Fixed an issue which caused the Network Overview pane not to display OpenVPN connection details.
  • Fixed an issue which could cause the DNA to display an incorrect network gateway in the WAN Details pane.

2017-07-10

Features:

  • 1:1 NAT. Partners can now configure a 1:1 NAT environment through the GUI of the DNA appliance.

2017-06-27

Bug Fixes:

  • Fixed an issue that could cause the DNA to stop checking in after saving DHCP static reservations.
  • Fixed an issue that could cause the client and site-to-site configurations to be superseded by port forwards.

2017-06-14

Features:

  • OpenVPN Integration: Partners can now use OpenVPN to establish an SSL client VPN connection to the Datto Networking Appliance.

2017-06-13

Note: Requires firmware update 0.9.0.64.

Features:

  • DNA auto-update. DNA auto-update allows an operator to configure a schedule for the DNA to automatically update if and when there is a device update available, and if set parameters are met. The DNA does not send device updates without being manually initiated. The auto update feature is off and not configured by default.

  • OpenVPN. This feature allows a user to configure an SSL Client VPN connection using the same client VPN feature currently in place. When enabled, the subnet is divided in two, allowing half of the subnet to use IPSec IKEv1 or IKEv2 client VPN connectivity, while allowing the other half of addresses to be configured for SSL (OpenVPN) client connectivity.

Improvements:

  • Increased the DNA connection tracking table to accommodate larger end-users with more connected clients.
  • Improved the modem manager to enhance logging and improve overall LTE modem performance.

2017-06-12

Features:

  • Site-to-Site VPN - Phase 3: When a DNA is configured for site-to-site VPN, the initiator DNA will send a message to the responder DNA to configure itself as the other VPN endpoint, performing all necessary handshakes automatically. This eliminates additional configuration steps currently required for setting up site-to-site VPN.
  • DNA Auto-Update: DNA auto-update allows an operator to configure update windows during which the DNA will automatically check for and apply software updates. The auto-update feature is off by default and must be manually enabled by the operator.

Improvement:

  • Hostname character limit: The UI now enforces 63 maximum characters per DNS name segment when configuring hostnames. This character limit is consistent with the RFC1123 standard.

2017-05-19

Note: Requires firmware update 0.8.4.58.

Features:

  • DNA now uses Verizon recommended MTU and MSS values on LTE interface, improving performance when in failover.
  • Use the DNA’s internal resolver and search domain while connected via client VPN, enhancing the usability for clients connecting and accessing local resources that require a local resolver.

Bug Fixes:

  • Fixed issue with client VPN where clients behind the DNA are sometimes inaccessible.
  • Fixed issue with client VPN (ike1) where it connects but does not send traffic over the tunnel.
  • Fixed issue where web filters “Ad Networks” was on by default.
  • Fixed issue where client VPN outbound client traffic was affected by port forwarding.
  • Fixed an issue where the DMZ stopped the client VPN from being able to connect.
  • Fixed issue where creating a new LAN stops site-to-site VPN from working on previous LANs.

2017-05-15

Feature:

  • Configurable Channel Width: Allows operators to switch between the 20Mhz and 40Mhz WiFi channels to select the setting that best meets their needs.

Improvement:

  • Local DNS Resolution: This improvement ensures that clients remotely connecting over VPN will be able to resolve hostnames from a DNS server running on the DNA.

Bug Fixes:

  • Fixed a bug that could cause a rendering issue with the Domain Whitelist / Blacklist's Delete button.
  • Fixed an issue where creating a new LAN could cause site-to-site VPN to not work on previously configured LANs.

2017-05-11

Bug Fix:

  • Fixed a VPN issue that could cause statically-assigned WAN IP addresses to appear in the local & remote subnet data used to populate firewall rules and site VPN IPsec configurations.

2017-05-10

Note: Requires firmware update 0.8.0.54.

Features:

  • Client VPN status now displays in DNA management UI - Under Browse Networks there is now a tab for VPN. This will provide detailed information on what is currently connected and the duration of that connection in real time.
  • Client VPN (Windows) no longer requires a third party application - This is also known as IKEv2. Essentially the DNA facilitates a method to build a cert to deploy on clients running a Windows OS that once applied, eliminates the need for a third party application.

Bug fixes:

  • Fixed an issue where some websites had been blocked, even after turning off web filtering. Note that you may still need to clear the cache on the client's OS and Web Browser. The DNA does not currently have access to this.
  • Fixed an issue where the device stopped collecting bandwidth data after a long period since reboot.
  • Fixed the absence of "DNA booted" message when DNA boots in System Events.
  • Fixed an issue where enabling Site to Site VPN broke the UI.

2017-05-04

Features:

  • Client VPN Status: Adds a GUI element to provide a real-time view of all devices and clients connected to a DNA.
  • Site-to-Site VPN - Phase 2: Adds one-click configuration when setting up a site-to-site VPN connection, eliminating manual steps. Also adds auto-discovery of WAN IP and LAN IP ranges, and auto-generates and assigns a new Pre-Shared Key (PSK) to the DNA.
  • IKEv2 for Client VPN: Adds support for native VPN connections to remove the dependency on third-party VPN applications to connect to a DNA's LAN.

Improvements:

  • Added enforcement of RFC standards for device hostname entries to harden the appliance against specific networking configuration issues.

Bug Fixes:

  • Fixed an issue that could cause configuration cards to not sync with configuration changes.
  • Fixed an issue that caused the UI to allow slashes in the device hostname, which would break DNS as a result.
  • Fixed an issue that could cause the UI to display a blank Network Overview page when enabling Site-to Site-VPN.

2017-04-04

Note: Requires firmware update 0.6.1.51.

Features:

  • Fixed bug where internal LAN was not getting an IP Address - In some scenarios, when creating a new VLAN with DHCP Pool, connected clients are unable to obtain an IP Address. The previous workaround required a reboot.
  • Update initiated + Version upgrading to + user / process (if automated) that initiated
  • Update successful + New Version
  • Update failed + Version failed to upgrade to
  • WAN/LTE Interface up + human-readable Interface (not VLANX)
  • WAN/LTE Interface down + human-readable Interface (not VLANX)
  • Factory reset + user that initiated
  • System Start Time
  • Fixed bug where a factory reset breaks web filtering - Details in previous versions of DNA performing a factory reset broke web filtering.
  • Fixed bug where LAN shows WAN/LAN conflict when newly created - Previously when creating a new LAN in the UI it showed the message that a WAN/LAN subnet conflict was resolved, even though that wasn't the case since the LAN didn't exist yet.
  • Improved "Site Blocked" page served up when web filter rule is triggered - Language referencing the DNA has been removed, and general syntax has been updated.
  • Implementation of Dynamic DNS (DDNS) - The DNA now provides a persistent addressing method for the DNA so that WAN IP address changes will not impact services that require a consistent inbound address.
  • DNA Now supports system logs in Network Overview - The DNA now collects and reports system logs for the following events:
  • Added whitelist and blacklist for web filters - The DNA Web Filtering feature now supports adding whitelists and blacklists for specific sites to work in combination with existing web filter categories.
  • Site to Site VPN support - The DNA now supports IPSec Site to Site VPN between another DNA.
  • IP Address Reservations (DHCP Reservations): Allows the reservation of a static IP, within a subnet range of a VLAN, to be statically assigned to a specific device by MAC Address, on a per-VLAN basis.
  • Update initiated + Version upgrading to + user / process (if automated) that initiated it
  • Update successful + new version
  • Update failed + version failed to upgrade to
  • WAN/LTE Interface up + human-readable interface (not VLANX)
  • WAN/LTE Interface down + human-readable interface (not VLANX)
  • Factory reset + user that initiated
  • System start time
  • Remote Power-Cycle DNA: Adds a UI element to allow ‘soft’ reboot functionality of the DNA through the DNA management interface.
  • Dynamic DNS: Provides a persistent addressing method for a DNA so that WAN IP address changes will not impact services that require a consistent inbound address, e.g., for local exchange server, client VPN server. The DDNS name is factory configured and is not user-configurable.
  • Web Filtering Whitelisting / Blacklisting: In addition to web filter categories, the DNA now offers the option of adding sites to either whitelists or blacklists.
  • System Logging: Adds a UI element to report DNA system events; this is a view-only system log which displays historical changes on the DNA.

Bug Fixes:

  • Fixed an issue that could cause a false WAN/LAN conflict message on initial LAN creation.
  • Adds firewall rules to allow traffic between VPN endpoints across the tunnel, ensuring that a client system behind a DNA can communicate with a client system behind another DNA, even with the firewall running. It also ensures that client systems can communicate across a tunnel, yet when a tunnel drops and is restarted.
  • Fixes an issue that could cause a factory reset not correctly to refresh the UI.

2017-03-09

Bug Fix:

  • Fixes an issue that could cause some DNAs to be unable to communicate across the Client VPN tunnel.

2017-03-01

Bug Fixes:

  • Fixed an issue that could cause a static WAN IP to not display on the WAN Card after being configured.
  • Fixes an issue that could cause network interruption when changing a WAN description.

2017-02-28

This release includes client-side updates that require new software downloads. You should upgrade your device to ensure the best results.

Note: Requires firmware update 0.5.4.45.

Features:

  • Updates to heartbeat: Heartbeat controls the DNA's check-ins with its web server to orchestrate communications. This update makes the service more robust.
  • Hardening the LTE modem manager: this hardening ensures that your DNA will get a single IP address from Verizon without rebooting the modem or DNA.

2017-02-23

Bug Fixes:

  • Fixed a validation issue which allowed operators to save blank custom DNS fields, causing connectivity issues.
  • Fixed a UI setting that caused the LAN Segregation card always to show LANs as segregated even with the LAN Segregation feature disabled.
  • Fixed an issue that could cause a user's Partner Portal session to remain logged in after the user logged out of the DNA.
  • Fixed an issue that caused changes made to the description of a configured WiFi network to remove existing MAC Filters.
  • Fixed an issue that could cause WiFi configuration attributes to be cleared when changing an associated VLAN setting.

2017-02-14

This release includes client-side updates that require new software downloads. You should upgrade your device to ensure the best results.

Note: Requires firmware update 0.5.3.44.

Features:

  • Changes to VLAN card disabled when using Client VPN: You are now unable to save changes to the VLAN card while the Client VPN is enabled.
  • Fixed issue with intermittent dropped connections by Verizon: For some customers, connectivity could become intermittently disrupted when operating in failover on Verizon LTE. This update ensures connected clients on both VLAN and WiFi remain connected when in LTE failover without disruption to connectivity.

2017-02-08

Bug Fixes: 

  • Fixed an issue that could cause the device to stop checking in when multiple users are logged into its interface.

2017-02-06

Improvements:

  • Added functionality giving an operator the ability to view multiple DNAs in different browser windows.
  • Added UI notification when a WiFi network is associated with a LAN that does not have a DHCP pool.
  • Added failover status to the Portal API.

Bug Fixes:

  • Fixed an issue that could cause the current WiFi channel to appear blank in the UI when set to "auto."
  • Fixed an issue that could cause WiFi card information to appear blank after saving.

Was this article helpful?

1 out of 1 found this helpful

You must sign in before voting on this article.

Want to talk about it? Have a feature request?

Head on over to our Community Forum or get live help.