Blog

Ubiquiti UniFi Firmware Release Notes: 3.9.27.8537-4.0.21.9965

Sorting out all the different software releases from Ubiquiti can leave one in a bit of a tizzy (or at least it did me at first). Essentially things break down like this:

  • Most UniFi Equipment (APs, switches) – gets the general firmware release
  • UniFi Cloud Controller – this is the control software, the other software is installed on the individual devices, this is the management UI you use
  • UniFi Security Gateways – get their own firmware
  • UniFi Cloud Keys – get their own firmware, which is oftentimes just an update to the cloud controller software

Official Release Notes

Since 4.0.15

  • UAPG2
    • Improved latency in high traffic installations
  • HD/SHD/XG/BaseStationXG
    • Improved stability
    • Optimized multicast traffic
  • nanoHD/IW-HD
    • Fixed DTIM provisioning issue
    • Fixed a bug in TX power provisioning
    • Fixed WiFi Experience feature
    • Fixed bandsteering disconnection issue
    • Fixed displayed RX rate issue
    • Fixed available channel list for China
    • Fixed fast-apply issue with changing channel width
    • Fixed data forwarding issue when client STA roams from wired AP to wireless uplinked AP
  • IW-HD
    • Fixed wired 802.1X Auto Mode
  • UAP
    • Tweaked Wi-Fi Experience scoring
    • Improved wireless uplink loop detection
    • Fixed bug that might cause MAC ACL and bandsteering to conflict
    • Fixed uplink detection function
    • Fixed ifindex reporting via SNMP
    • Fixed VLAN provisioning bug introduced in 4.0.18
    • Properly isolated dynamic VLANs
    • Security improvements for guest authentication
  • XG6POE
    • Improved PD auto detect
    • Fixed PoE issue which may occur on reboot
  • USW
    • Fixed multiple bugs causing WiFi clients to show as wired once disconnected from WiFi network
  • HW
    • Fixed CVE-2019-5747
    • Misc

Since 4.0.14

  • HD/SHD/XG/BaseStationXG
    • Fixed some IE corruption (related to wildcard and uplink SSIDs)
  • nanoHD/IW-HD
    • Tweaked performance
  • HW
    • Misc.

Since 4.0.10

  • HD/SHD/XG/BaseStationXG
    • Fixed handled of IEs so wildcard SSIDs don’t cause memory corruption.
    • Resolved an illegal memory access when bonding enabled
  • XG/BaseStationXG
    • Enabled multi-radio wireless uplink
  • HD/SHD
    • Enabled VHT160 support
  • nanoHD/IW-HD
    • Fixed downlink staying disconnected after channel change or reboot when uplink using DFS channels
    • Fixed ADDBA Request loop triggered by some client STAs
    • Fixed dynamic VLAN with Fast Roaming issue
  • UAPG2
    • Fixed physical reset function
  • UAP
    • Fixed channel 14 support
    • Fixed issue where all downlink APs are disassociated when one donwlink detects a network loop
  • USW
    • Added alert temperature to environment stats
  • HW
    • Fixed an adoption issue which could occur after known device is reset to factory defaults
    • Misc.

Since 3.9.54

  • UAPG3
    • Fixed BLE support.Fixed a node leak.Fixed a bug here AP may wrongly kick a client STA when “on other VAP” occurs.Fixed a bug in uplink that would cause downlink to hang after channel change.Fixed inter-VLAN communication issue.Fixed and improved wireless uplink support.Fixed bug causing RF scanning to return incorrect results.
  • UAPG3/G2
    • Enabled VHT40/80 support for Japan.Switched to LEDE framework.Implemented upgraded authenticator.Fixed Fast Roaming support.Fixed Cell Size Tuning Support
  • UAPG2
    • Fixed a bug where downlink was disconnected when uplink AP changes channels.
  • HD/SHD/XG/BaseStationXG
    • Fixed and improved Hotspot 2.0 support.
  • SHD/XG/BaseStationXG
    • Enabled Rogue AP scanning on security radio.
  • XG/BaseStationXG
    • Fixed reported 10Gbps PHY rate.
  • BaseStationXG
    • Enabled LED bar and OLED display support.
  • nanoHD/IW-HD
    • Added client ‘Framed-IP-Address’ to RADIUS accounting data.
    • Improved 802.11k scanning.
    • Improved Ethernet stability.
    • Improved Fast Roaming support.
    • Fixed a bug which caused bandsteering to fail to initialize.
    • Fixed instability caused by enabling WLAN scheduling.
    • Fixed throughout issue for clients with certain Intel wireless cards.
    • Fixed wireless adoption issue.
    • Fixed a memory leak.
    • Fixed multiple downlink support.
    • Fixed wrong passphrase issue that some client STAs encountered.
    • Fixed mDNS packets being dropped by IGMP snooping.
    • Fixed bandsteering support when WLAN scheduling enabled.
    • Fixed bug causing instability when netconsole was enabled.
    • Fixed bug which caused some SSID(s) not to broadcast.
    • Fixed a bug in bandsteering.
    • Fixed issue with wireless adoption when in factory default state.
    • Fixed wireless uplink VLAN broadcast/multicast packets format error.
    • Fixed SSDP dropped by IGMP snooping.
    • Fixed bug causing a drop in transmit performance.
    • Fixed RF scanning support.
    • Fixed support for 8 SSIDs per radio.
    • Fixed bug which may cause an AP to stop forwarding packets when configured to use wireless uplink.
    • Fixed bug when using VLANs in a wireless uplink topology.
    • Stability improvements.
  • IW-HD
    • Added wired RADISU MA auth & DVLAN support.
    • Added wired 802.1X fallback VLAN support.
    • Added support for controlling PoE passthrough.
    • Enabled cell size tuning support.
    • Fixed 802.1X automode.
    • Fixed bug in wired 802.1X support.
    • Fixed wireless uplink support while in factory default state.
  • EDU
    • Uses new package manager for EDU SIP.
  • UAP
    • Enabled fast-apply support for minRSSI.
    • Silenced unnecessary LLDP log spam.
    • Fixed false MAC filter rejection anomalies in the controller.
    • Improved wireless uplink loop detection to fix disconnect issues.
  • USW
    • Added more DHCP snooping statistics to CLI output.
    • Increased local syslog size.
    • Now forwards IGMP report packets only on ports with LLDP remote entry.
    • Fixed bug causing issues with DHCP in some environments.
  • USXG6POE
    • Improved PD compatibility.
  • HW
    • Fixed DHCP option 43 support.
    • Fixed false ‘Decrypt Error’ events and improved logging.
    • Security improvement.
    • Miscellaneous bug fixes and improvements.

Since 3.9.42

  • UAPG3
    • Fixed bandsteering when using channel 144.
    • Fixed IP endianness issue.
    • Fixed DPI blocking support.
  • UAPG3/G2
    • Added advanced guest isolation support.
    • Added simple DNS tracking for client STAs to syslog.
    • Fixed leak which caused provisioning/upgrade issues (“Timeout waiting for OL vap X to stop” in syslog).
    • Fixed 802.1X identity not working when Fast Roaming was enabled.
  • XG/BaseStationXG
    • Added multi interface uplink support.
  • BaseStationXG
    • Enabled OLED display support.
  • nanoHD/IW-HD
    • Added 802.11k and 802.11r support.
    • Added support for minimum PHY rate control.
    • Improved wireless uplink stability.
    • Updated 802.11k scan policy.
    • Enhanced bandsteering and set daemon to 802.11v BSS Transition Management (BTM) only mode.
    • Fixed client STA can’t connect after WLAN schedule executed.
    • Fixed bug which caused default SSIDs to broadcast in some cases.
    • Stability and performance improvements.
  • IW-HD
    • Added DFS support.
    • Added wired 802.1X support.
    • Fixed an issue with client STA roaming.
    • Fixed scheduling while atomic bug which caused the management daemon to crash.
  • UAP
    • Added loop detection to wireless uplink.
    • Fixed a bug in RADIUS MAC Auth provisioning.
    • Fixed throughput drop.
    • Fixed bug with rate limiting support.
    • Fixed bug which allowed fast roaming to be enabled on SSIDs that are either open or using WEP.
    • Reduced uplink-monitor log spam.
  • USW
    • Fixed false RX Fault errors showing on some UF-RJ45-1G modules.
    • Fixed SNMPv3 fast-apply fail due to special characters in password.
    • Fixed switch LAG link failed bug.
    • Fixed a memory leak.
    • Fixed false alerts when fan running at low duty.
    • Fixed SSDP forwarding issue.
    • Fixed false overheating alerts.
    • Fixed LAG port LED off issue.
  • HW
    • Improved firmware update error code reporting.
    • Fixed device inform issue with DNS resolving to wildcard IPs.
    • Miscellaneous bug fixes and improvements.

Since 3.9.27

  • USW
    • Fixed RADIUS server provisioning.
    • Added Port Security and MAC ACL support.
    • Added 802.1X guest VLAN support.
    • Restarts DHCP client after a port is up.
    • Fixed LAN client stats when using LACP/LAG.
    • Fixed issue with default VLAN not working when using MAB.
    • Fixed ability to toggle flow control.
    • Disabled SNMP by default.
    • Reduced max VLANs to 255 (default), which lowers memory use by ~10%.
  • HW
    • Added URL support for DHCP option 43.
    • Several fast-apply provisioning improvements.
    • Unified several modules across various UniFi platforms (UAP, USW, USG).
    • Various bug fixes and improvements.

Since 3.9.24

  • UAPG3
    • Fixed crash when 802.11r enabled.
    • Reverted patch which disabled secondary ethernet when using wireless uplinks.
  • UAPG3/G2
    • Improved channel utilization reporting accuracy.
  • UAPG2
    • Improved performance.
  • HD/SDH/XG
    • Fixed issue with reported uplink interface after RF scan when bonding is enabled.
    • Fixed 802.1X VLAN reporting when RADIUS VLAN enabled.
    • Increased ntp client update frequency.
    • Improved client STA performance for SSIDs with DVLAN enabled.
    • Removed unnecessary logging.
  • SHD/XG
    • Fixed performance issue.
  • XG
    • Reenabled auto-negotiation on the 10GbE PHY.
  • nanoHD
    • Reenabled auto-negotiation on the 10GbE PHY.
    • Added channel utilization counters.
    • Added DTIM support.
    • Added initial bandsteering support.
    • Added athstats tool.
    • Added broadcast filtering support.
    • Enabled DFS support.
    • Fixed broadcast filter configuration.
    • Fixed hidden SSID support.
    • Fixed a crash triggered by provisioning.
    • Fixed a bug causing SNMP hostname to disappear after provision and reboot.
    • Fixed PMF support.
    • Various stability improvements.
  • UAP-Pro
    • Removed bandsteering (isn’t supported).
  • UAP
    • Disabled the DS fast BSS transition.
    • Fixed management VLANs on downlink UAPs.
    • Fixed bug which caused 100% CPU use when fast BSS transition enabled.
    • Various wireless uplink changes, including adding multi-radio uplink support.
    • Tracks MAC filter rejections.
    • Various bug fixes and improvements.
  • USW
    • Fixed crash caused by autodetect.
    • Adjusted MAB priority, no longer waiting for 802.1X timeout to process.
    • Fixed port mirror provisioning.
    • Added switch PoE port overload and disconnect reporting.
    • Various bug fixes and improvements.
  • HW
    • L3 adoption and management improvements.

Ubiquiti UniFi SDN Controller Software Release Notes: 5.10.12-5.10.23

Official Release Notes

See the below links for official release notes. I only cover the fixes/changes and don’t include instructions on upgrading, links to downloads, etc., etc.

Since 5.10.21

  • Now allow SSH username to contain uppercase characters or to be an email address.
  • Now prevent Auto-Optimize Network from enabling High Performance Devices on 2.4GHz only APs.
  • Security improvement.
  • Various bug fixes and improvements.

Since 5.10.20

  • Fixed IPv6 encapsulation sizing.
  • Fixed pagination button type.
  • Fixed remote syslog validation when logging to controller.
  • Fixed various bugs with guest portal pre-authorization.

Since 5.10.19

  • Improved OS architecture detection to fix issue where wrong MongoDB storageEngine was being set.
  • Fixed logging format by adding date.
  • Fixed IPv6 MSS clamping.
  • Switched from deprecated Google+ API to Google People API (social guest portal authentication).
  • Miscellaneous fixes.

Since 5.10.17

  • Fixed database migration errors for users without guest portal configurations.
  • Fixed Mongo for 32-bit non-UCK systems.
  • Fixed error with getting temporary cloud credentials.

Since 5.10.12

  • Fixed issue that could prevent db migration from succeeding when upgrading.
  • Fixed issue where setting SSH username/password on a UCK would fail and not notify user.
  • Fixed issue when clicking Submit button for changing SSH credentials.
  • Fixed L3 adopt and upgrade process (bug report).
  • Fixed external guest portal cookies (bug report).

Since 5.9.29

  • Added bidirectional firewall rules for blocking traffic detected by IPS.
  • Added unsupported state for devices.
  • Added an interim firmware update for UPA, UPA-LR, UAP-OD, and UAP-OD5.
  • Added Adopt and Upgrade action for unsupported devices.
  • Added Icon for WAN Transition Event/Alert.
  • Added RFC 3261 unreserved characters to SIP username, extension, and password fields.
  • Added fixed vs inline property panel preference.
  • Added option to disable 5GHz only for high performance clients (part of Auto-Optimize Network feature).
  • Added firmware error detection flags for certain system events.
  • Added events for features enabled by Auto-Optimize Network feature.
  • Added unavailable text to Stats Overview modules.
  • Now checks for latest firmware when running custom upgrade.
  • replaced device icons with photos.
  • Implemented new styling for Port Diagrams.
  • Made action buttons in tables sticky.
  • Blocked clients not counted in Association Failures widget.
  • Now includes manual site-to-site VPNs on site import.
  • Improved Controller Wizard.
  • Improved accuracy of Neighboring Access Points.
  • Improved auto positioning tooltip.
  • Improved tooltip for local login with UBNT account.
  • Improved Most Active APs Widget.
  • Improved navigation in Wizard.
  • Improved global side navigation.
  • Now allow setting switch port name same as profile name.
  • Moved preferences to settings in User Interface.
  • Made improvements to buttons.
  • Updated events and alerts.
  • Updated Insights and Statistics to use new header opanel styles.
  • Updated Traffic Stats tables to use new table styles.
  • Updadted UniFi Network logo and title.
  • Updated device grid status bars.
  • Updated DPI chart UI.
  • Improved RF tooltip position for AP Property Panel.
  • Added option to ignore to Controller Update Available popup.
  • Fixed RADIUS Profile tooltip in WPA Enterprise settings.
  • Fixed IPS Map Country labels not refreshing after changing language.
  • On UniFi Cloud Key 1st Gen Only – now generate an event when MongoDB size exceeds 1.25 GB.
  • Fixed false rejections of valid IPv6 addresses for firewall groups and static routes.
  • Fixed firmware caching when firmware update service returns an error.
  • Fixed a bug that may have prevented database migration when upgrading the controller.
  • Fixed Missing logo in Sites overview.
  • Fix empty Property Panel after page reload.
  • Fixed Release notes bouncing when left open on low height screen.
  • Fixed empty ISP Graph X axis scale.
  • Moved temperature in USG overview property panel.
  • Fixed always displayed warning about not allowed channels.
  • Fixed device table icon padding.
  • Fixed WebRTC functionality on recent builds of Firefox.
  • Fixed various text overflow issues.
  • Fixed client historical label displaying the wrong value.
  • Fixed known clients inconsistency.
  • Fixed incorrect client’s uplink in Client List view.
  • Fixed double DHCPv6-PD node with PPPoE and DHCPv6.
  • Fixed Compact Database feature.
  • Fixed some untranslated strings in Insights/Switch Stats view.
  • Fixed XSS on fatal page.
  • Fixed interim update interval provisioning.
  • Fixed broken Device dist. module color picker.
  • Fixed console error in Hotspot Manager > Payments and Transactions > click on Payments button.
  • Fixed batch edit for nanoHD/In-Wall HD (and possibly other SKUs).
  • Fixed Release notes bounce when left open on low height screen.
  • Fixed unreadable controller logs when using default/lower loglevels.
  • Fixed issue causing devices to get stuck in adopting state.
  • Fixed a NPE which may occur when adopting a USG, and on every inform from it.
  • Fixed validation in Add Client form.
  • Fixed AP VLAN toggle applying to another property panel.
  • Fixed long name overlapping.
  • Fixed missing adopt button for USG in Property Panel.
  • Fixed no DPI data when switching from Overview to Apps.
  • Fixed position and size of tooltips.
  • Fixed sorting via model not working forUniFi AP-BaseStationXG.
  • Fixed icon size of dashboard DPI modules.
  • Fixed spacing on Switch port profiles tagged networks checkboxes.
  • Fixed wireless uplink detection when using Auto-Optimize Network feature.
  • Fixed and improved database handling to mitigate migration issues with large databases (reported bug report).
  • Fixed incorrect LAN traffic counter on switching widget.
  • Fixed voucher printing.
  • Fixed displaying Tx and Rx Radio values in Devices panel.
  • Fixed displaying Wi-Fi Experience for devices with one type of radio.
  • Fixed firmware notice alignment.
  • Fixed IPS date range.
  • Fixed tooltip for Adopting multiple USG.
  • Fixed the error message when deleting user groups attached to WLANs.
  • Now hide PoE label on switch port profile form when no PoE options available.
  • Fixed no margin between buttons in airView.
  • Remove ambiguity from switch power consumption in device properties.
  • Modified Switch ISP upload/download colors.
  • Performed Port Usage widget cleanup and componentization.
  • Legacy (Svg) map – add workaround for Chrome bug when device marker is moved to top left corner on animation applied.
  • Dashboard main status: fixed case when no WIFi Experience is available (i.e. 0 APs) but vertical separator is shown.
  • Added missing icon for STP blocking event.
  • Firewall: Fixed saving IPv6 rules.
  • IPS: Fixed Geo Location that was incorrect in certain cases.
  • Security improvements.
  • Various bug fixes and improvements.

Downloading Log Files from UniFi AP Using Secure Copy Protocol (SCP)

As far as I can tell, the UniFi APs don’t come with a SFTP server, so you’ll need to use SCP (which operates over SSH).

Unfortunately, it seems that most developers have dropped true SCP support from their software in favor of SFTP. Luckily, if you are on a *nix system (including MacOS) you can use the utility scp to accomplish this task.

scp nameofuser@ipofap:../../var/log/messages /local/path/on/computer

For those running Windows, you can either setup a Linux VM or use Microsoft’s WSL to gain access to SCP.

Note that the ../../ are important. By default SSHing into a UAP lands you in a folder /etc/persistent, you need to get back up to the root and then navigate into the /var/log where we’ll grab the messages file.

Ubiquiti UniFi Cloud Key Firmware Release Notes: 0.8.10 – 0.8.12 AND 0.10.0 – 0.12.4

Official Release Notes

The Great Firmware Split!

The last release notes for the UCK I published where for 0.8.9 – the current firmware version is 0.12.4 AND 0.8.12. What? Okay, there is a logical explanation – Ubiquiti has released the next generation (Gen2) of their UCK’s.

Where it gets confusing is that the new generation (Gen2) is using lower firmware version numbers (latest is 0.8.12) compared to the older (Gen1): 0.12.4. I’d have swapped those numbers, but that’s just me.

Gen2 0.8.12 Changes

  • Since 0.8.10:
    • Bundled UniFi Protect 1.5.0.
    • Now allows +, %, and uppercase letters in the admin user name.
    • Fixed download prorgess bar rolling backwards during firmware update.
    • Other miscellaneous.
  • Since 0.8.7
    • Bundled UniFi Controller 5.9.29.
    • Bundled UniFi Protect 1.4.2.
  • Since 0.8.6
    • Added UCK-RM LED control.
    • Now calculates per-service CPU load based on all cores.
    • Misc.
  • Since 0.7.7
    • Bundled UniFi Controller 5.9.29.
    • Bundled UniFi Protect 1.2.2.
    • Fixed import backups restart loop.
    • Fixed enabling UFP service. (Plus only)
    • Implemented UI design v3 for management portal.
    • Added per controller CPU and memory usage.
    • Fixed CVE-2018-17182.
    • Fixed bug causing display animation to get stuck in some cases.
    • Misc.

Gen1 0.12.4 Changes

  • Since 0.12.2:
    • Now allows +, %, and uppercase letters in the admin user name.
    • Fixed JAVA_HOME not being set correctly.
  • Since 0.11.12:
    • Bundled UniFi Controller 5.9.29.
    • Misc.
  • Since 0.11.4:
    • Bundled UniFi Controller 5.8.28.
    • Misc.
  • Since 0.11.2:
    • Bundled UniFi Controller 5.8.24.
    • Misc.
  • Since 0.10.1:
    • Bundled UniFi Controller 5.8.23.
    • Misc.
  • Since 0.10.0:
    • Bundled UniFi Controller 5.7.23.
  • Since 0.8.10:
    • Bundled UniFi Controller 5.7.20.
    • Fixed an issue where /data/unifi may not be created during initial setup.
    • Fixed fallback address removal.
  • Since 0.8.9:
    • Bundled UniFi Controller 5.6.30.

Ubiquiti UniFi SDN Controller Software Release Notes: 5.8.23, 5.8.28, 5.9.29

See the Official Release Notes

New Features in 5.9.29

  • New Dashboard
  • IPS Dashboard
  • IPS Signature Suppression
  • IPS Signature Categories Control
  • Per Radio Uplink Control
  • Speed and Duplex Config for USG Interfaces
  • Fallback VLAN support for USW when using 802.1X
  • Added local SSO login.
  • Controller HD and Micro SD free space monitoring notifications
  • Analytic Reporting.
  • New Cloud Access Integration

New Features in 5.8.23

  • Scheduled Upgrades Support – Currently in beta.
  • Ability to add Site VPN Route Distance.
  • Add WeChat as an authentication method to Hotspot.
  • Added netconsole logging to config.
  • Added speed and duplex config for USG interfaces.
  • Added control for dnsmasq as DHCP server.
  • Added Wi-Fi Happiness to client STA statistics.
  • Added app switcher.
  • Added BaseStationXG LED bar color control to the device properties panel.
  • Allow setting opacity on Image-type maps.
  • Allow setting Management VLAN at Access Points.
  • Property Panel now shows images of most popular client devices.
  • One can assign USG Physical Ports to Logical Networks.
  • Local SSO login capabilities added.

Changes Since 5.8.28

  • Added about popup
  • Allow choosing which department to contact in chat window
  • Hide Fast Roaming feature for WEP networks
  • Fixed displaying IP address of gateway discovered by Discovery Tool
  • Fixed migration issue
  • Fixed a potential bug affecting autobackup on Windows 10
  • Fixed a bug which caused unifi.yourdomain.com to be provisioned to devices for both the management and STUN URLs.
  • No longer excludes all port forwarded ports from policy routing.
  • Other bugs fixes and improvements.

Changes Since 5.8.20

  • Added validation for Promotional URL input in Guest Control.
  • Enabled RF scanning for UAP-nanoHD.
  • Fixed a bug with AC-IW/IW-Pro provisioning which caused traffic to stop forwarding (only when the management VLAN and a WLAN VLAN are the same).
  • Fixed RADIUS accounting for switching products.
  • Fixed decoding UTF-8 characters over WebRTC.
  • Fixed analytics graph display on Firefox in Hotspot Manager.
  • Fixed default value for Outdoor Mode in batch AP configuration.
  • Fixed property panel auto scroll after refresh.
  • Fixed time range change after granularity modification on the Statistics Overview page.
  • Fixed reversed TX/R client stats.
  • Updated translations.
  • Other backend bug fixes and improvements.

Changes Since 5.7.x

  • Added description from mDNS.
  • Added tooltip that DHCP DNS must be a valid IP address.
  • Allow Facebook-based Hotspot authorization portal to be opened in Apple Captive Network Assistant.
  • Allow setting mask /31 (255.255.255.254) for USG/WAN so as to be in compliance with RFC3021.
  • Display warning when time series start day isbefore data retention settings for given granularity.
  • Use the same tab order as switches for UAP-AC-IW.
  • In the device list, invisible uplinks in uplink column after refresh.
  • Switch stats shouldn’t allow one to select device managed by another.
  • Prepopulate RADIUS Tunnel-Medium Type once “Virtual LANs (VLAN)” is selected.
  • Fixed MAC auth provisioning so RADIUS assigned VLAN is set when its enabled in the RADIUS profile.
  • Fixed devices disappearing from map when changing from legacy to designer without saving, also issue with changing map type from Google to image for a second time.
  • Removed extra PHY port for USG-XG.
  • Now show Hardware Offload as off when IPS is enabled, cannot be turned on.
  • Expose HTTPS blocking for Facebook Wi-Fi portal.
  • Other backend fixes and improvements.

Ubiquiti UniFi Security Gateway Release Notes: 4.4.21, 4.4.22

4.4.21 to 4.4.22

See official release notes.

  • Fixed commit error that was generated when multiple provisions were made of the same configuration.
  • Fixed regression in local web UI introduced in 4.4.21.
  • Fixed potential loop in signature fetching for IDS/IPS.
  • Improved dnsmasq reloading, increased sacalability of hostfile-update feature.
  • Fixed application of config changes on running system in source-validation/uRPF.
  • Updated tzdata (time zones) to version 2018d.
  • USG-XG-8 Only
    • Interface speed is now sent to LCM (display).

4.4.18 to 4.4.21

See official release notes.

  • Added back end port remapping in 5.8.x and newer controller versions.
  • Fixed premature expiring of TCP connection states for long-lived idle connections.
  • Made back end improvements to RADIUS server that remove character restrictions on passwords (‘ and ” now usable).
  • IDS/IPS was upgraded to Suricata 4.0.4 which provides minor performance and back end improvements as well as some bug fixes.
  • CPU utilization had increased in 4.4.18 for gathering statistics, mcad, and ubnt-util, brought back down to normal levels.
  • Resolved a memory leak in mcad.
  • Made back end improvements for dnsmasq, specifically DHCP server handling of hostnames of DHCP reservations.
  • dnsmasq is no longer limited to /8, /16, and /24 networks.
  • Disabled deprecated SSh ciphers.
  • Removed “noccp” from xl2tpd configuration, there should be no reason to disable and some Windows L2TP clients require it.
  • Removed offload scheduler due to performance degradations in some configurations which utilized rate limiting user groups.
  • Fixed a hung connection issue with FTP by importing an FTP contrack fix, only occurred with unusual formatting of 227 message.
  • Fixed use of external guest portal through USG.
  • USG-XG-G Only
    • Updated LCM firmware.
    • Updated Bluetooth back end.
    • Upgraded kernel version to resolve high/growing CU usage from migration processes.
    • Allow disabling of autonegotiation on eth0 port.

Ubiquiti UniFi Firmware Release Notes: 3.9.24.8264

Official Release Notes

You can find official release notes from Ubiquiti here:

HD/SHD/XG

  • 3.9.24-3.9.27.8537
    • Fixed an issue with the reported uplink interface after RF scan when bonding was enabled.
    • Fixed 802.1X VLAN reporting when RADIUS VLAN was enabled.
    • Increased NTP client update frequency.
    • Improved client STA performance for SSIDs with DVLAN enabled.
    • Removed unnecessary logging.
    • SHD/XG Only
      • Fixed a performance issue.
    • XG Only
      • Re-enabled autonegotiation on the 10 GbE PHY.
  •  3.9.21-3.9.24.8264
    • Improved device stability when using rate control.
    • Fixed channel utilization stats.
    • Fixed spectral scanning support.
    • Fixed forwarding of fragmented IPv6 packets.
    • SHD/XG Only
      • Made improvements to airTime.
  • 3.9.19-3.9.21.8191
    • Fixed the speed regression introduced in 3.9.18.
    • Made an improvement to stability.
    • XG Only
      • 10Gbps Ethernet performance Improvements.
  • 3.9.18-3.9.19.8123
    • Fixed a memory leak when multicast enhancements were enabled.
  • 3.9.15-3.9.18.8086
    • Made improvements to stability and performance.
  • 3.9.3/3.9.6-3.9.15.8011
    • XG Only
      • Fixed airView and airTime support.
    • USXG Only
      • Improved LAG config handling.

nanoHD

  • 3.9.24-3.9.27.8537
    • Added:
      • Channel utilization counters.
      • DTIM Support.
      • Initial Bandsteering support.
      • athstats tool.
      • Broadcast filtering support.
    • Enabled DFS support.
    • Fixed:
      • broadcast filter configuration.
      • hidden SSID support.
      • crash triggered by provisioning.
      • bug causing SNMP hostname to disappear after provision and reboot.
      • PMF support.
  •  3.9.21-3.9.24.8264
    • Added channel utilization support (currently 5GHz only).
    • Enabled VHT160 support.
    • Added nslookup.
    • Enabled MU-MIMO.
    • Fixed per-STA rate limiting support (user groups).
    • Stopped broadcasting default SSID.
    • Added MAC ACL support.
    • Fixed RADIUS VLAN support.
    • Fixed fast-apply support.
    • Fixed HT40 support on 2.4GHz.
    • Made improvements to stability.
  •  3.9.19-3.9.21.8191
    • Merged 3rd release firmware.
    • Added RADIUS VLAN support.
    • Added fast-apply support.
    • Added 802.11w support (PMF).
    • Added 802.11X identity support.
    • Disabled country code IE.
    • Made improvements to stability.
  • 3.9.18-3.9.19.8123
    • Fixed MBSS support.
    • Made improvements to stability.
  • 3.9.15-3.9.18.8086
    • Added guest control support.
    • Added 802.1X support.
    • Added support for multiple BSSIDs per radio.
    • Fixed issue when using a bracket in the ESSID or PSK.
    • Fixed auto channel selection issue.
    • Fixed 802.11n negotiation issue.
    • Fixed issue which could cause Ethernet to stay down after provision or reboot.
  • 3.9.3/3.9.6-3.9.15.8011
    • Added stainfo support.

UAP

  • 3.9.24-3.9.27.8537
    • Disabled over the DS fast BSS transition.
    • Fixed management VLANs on downlink UAPs.
    • Fixed a bug which sometimes caused 100% CPU usage when fast BSS transition was enabled.
    • Made various wireless uplink changes, including adding multi-radio uplink support.
    • Now track MAC filter rejections.
    • UAPG3 Only
      • Fixed remaining crash when 802.11r is enabled.
      • Reverted a patch which disabled the secondary ethernet when using wireless uplinks.
    • UAPG2/G3 Only
      • Improved channel utilization reporting accuracy.
    • UAPG2
      • Made improvements to performance.
    • UAP-Pro Only
      • Removed bandsteering as it isn’t supported.
  •  3.9.21-3.9.24.8264
    • Refactored and improved fast-apply, which also fixed two small memory leaks.
  •  3.9.19-3.9.21.8191
    • Fixed a memory leak related to the redirector.
    • UAPG2/G3 Only
      • Now tracks TX airtime latency.
    • UAPG1 Only
      • Fixed device firmware upgrade.
  • 3.9.18-3.9.19.8123
    • Fixed NAS-IP-Address attribute so that it always returns the management IP of the AP.
  • 3.9.15-3.9.18.8086
    • Improved STA signal reporting
    • Made improvements to wireless uplink/mesh V3.
    • Fixed a bug with rate control when using multiple SSIDs.
  • 3.9.3/3.9.6-3.9.15.8011
    • Fixed a small memory leak.
    • Fixed outdoor flag.
    • Added fast-apply for guest portal.
    • Improved guest portal redirector handling.
    • Fixed a bug with L3 wireless adoption.
    • Fixed bandsteering.
    • Fixed issue with bridge priority so the secondary ethernet port remains enabled.
    • Improved DFS.
    • Fixed an issue preventing bandsteering from being enabled.
    • Fixed an issue with the downlink monitor.
    • Added uplink priority for the bridge interfaces.
    • Added KRACK AP mode patches for 802.11r.
    • UAPG3 Only
      • Fixed minimum rates.
      • Further improvements to device upgrade and boot times.
      • Fixed a crash in hostapd when Fast Roaming is enabled.
      • Added support for 82.11r and 802.11k.
      • Fixed channel utilization reports.
      • Improvement bootup and TFP recovery times.
    • UAPG2/G3 Only
      • Added RADIUS VLAN support to MAC authentication bypass.
      • Fixed a bug which prevented APs from uprgading when bandsteering was neabled.
      • Fxied issue with 3.9.3.7537 which caused some APs to not accept any clients.
    • UAPG2 Only
      • Added support for 802.11k.
    • UAPG1/G2
      • Added net-snmp.

HW

  • 3.9.24-3.9.27.8537
    • Made L3 adoption and management improvements.
  •  3.9.21-3.9.24.8264
    • Added device hostname in shell.
    • Optimized image size.
  •  3.9.19-3.9.21.8191
    • Enabled TCP Packetization-Layer Path MTU Discovery when an ICMP black hole is detected.
    • Improved CPU utilization of SNMP.
  • 3.9.18-3.9.19.8123
    • Fixed some issues which would cause L3 adopted devices to show up as disconnected in the controller.
    • Fixed SNMP sysName.
  • 3.9.15-3.9.18.8086
    • New protocol implementation.
    • Added controller support for netconsole.
  • 3.9.3-3.9.15.8011
    • Improved security.
    • Updated openssl package to 1.0.2m.
    • Updated curl to 7.57.0.
    • Added IPv6 management support.
    • Improved event notification on device upgrade.

USW

  • 3.9.21-3.9.27.8537
    • Fixed crash caused by autodetect.
    • Adjusted MAB priority, no longer waiting for 802.1X timeout to process.
    • Fixed port mirroring provisioning.
    • Added switch PoE port overload and disconnect reporting.
  •  3.9.19-3.9.21.8191
    • Enhanced DHCP snooping trace log for LAGs
  • 3.9.15-3.9.18.8086
    • Made various improvements.
  • 3.9.3/3.9.6-3.9.15.8011
    • Added port ID in STP error message.
    • Lowered STP topology change log level.
    • Improved DHCP guarding and snooping.
    • Added DHCP snooping debug command.

USL2

  • 3.9.3/3.9.6-3.9.15.8011
    • Improved PSU status reporting.

AC-IW/IW-Pro/EDU/M-Pro

  • 3.9.3/3.9.6-3.9.15.8011
    • Fixed VLAN pass-through regression
    • Added port disable support.
    • AC-IW/IW-Pro Only
      • Improved VLAN config and prevented traffic leaks.
      • Fixed RADIUS VLAN when port VLAN is enabled.
      • Added QoS CIR/EIR support.
      • Made improvements to performance.
      • Fixed management VLAN issue causing decreased multicast performance.
    • EDU only

Google Docs: Thoughts and Curated Resources

Google Drive as File Server: Thoughts and Curated Resources

Introduction

This is an accumulation of research and resources I’ve made researching Google Drive and its implementation, FWIW.

Features of Google Drive

  • In the Business, Enterprise, and Team Editions it includes unlimited storage.
  • The system can be centrally administered.
  • It supports granular permissions.
  • Provides Vault for retaining important data thus ensuring one can meet data compliance requirements.
  • Powerful searching capabilities, including in non-textual files (e.g. images) using Optical Character Recognition (OCR).
  • Team Drives provide shared storage owned by a team rather than an individual.
  • Drive File Stream allows one to access the files as if they were on your local network.
  • 24/7 support.

Software Clients

  • Google Backup and Sync
  • Google File Stream
  • ExpanDrive

Third Party Integrations for Google Drive

There are numerous third party integrations for Google Drive. I’ve listed a few.

  • Smartsheet
  • Drawing / Diagramming / Mock Ups / Design
    • Lucidchart
    • Moqups
    • draw.io
    • Kami
    • Cacoo
    • Concept inbox
  • Notifications
    • Notifications for Drive Folders
    • Folder Team Notifications
    • ezNotifications for Sheets
  • Project Management
    • Wrike
    • Asana
    • MindMeister
    • Any.do
    • Trello
  • Document Management
    • AODocs
    • Powertools for Document Management
    • Egnyte
    • General Audit Tool (GAT Core)
    • DocuSign
    • HelloSign
    • HelloFax
    • Metadrive
    • BetterCloud
    • GAT+
    • Backupify
    • Spanning Backup
    • gPanel
    • CloudPages
    • ezPanel
    • Drive Mechanic
    • Spinbackup
    • Master Console
    • JumpCloud
  • Programmability
    • Google Apps Script
    • Zoho Creator
    • Ultradox
    • AppSheet
    • Add Reminders
    • Zapier
    • Database Browser
    • Collavate
    • KiSSFLOW
    • Business Process Simulator
    • RunMyProcess
    • Joget Workflow
  • Clients
    • cloudHQ
  • Accounting
    • bkper
    • Zip Books
    • Expensify
    • ONE UP
    • ERPAG
    • Jivrus’ Integra for QUickBooks
  • Forms
    • Zoho Forms
    • FormApprovals
  • Spreadsheets
    • AwesomeTable
    • Super Metrics for Google Sheets
    • SheetGo
  • Migration
    • Carbo Migration Tool
    • MultCloud
    • cloudHQ

Google App Scripts for Google Drive

  • 19 Useful Google Apps Scripts to Automate Google Drive (Ashutosh KS, Hongkiat):
    • Convert to PDF and Email Google Sheets
    • Convert Images to Text Using OCR
    • Track File Editors in Google Drive
    • Save a Webpage to Google Drive
    • Send a Google Doc via Email
    • Convert a Google Doc to Markdown
    • Set Auto-Expiry for Shared Data
    • Save Gmail Attachments in Drive
    • List Directory in Google Drive
    • Convert Google Docs to HTML
    • Combine Data from Multiple Sheets
    • Export Google Sheets to CSV Files
    • Convert PDF Attachments to Plain Text
  • The Most Popular and Useful Google Scripts (Amit Agarwal, Labnol):
    • File Permissions Explorer
    • Google Form File Uploads
    • Send to Google Drive
    • Send Google Spreadsheets as PDF
    • Download Tweets Permanently
    • Schedule Gmail Emails
    • Save Google Voicemails as MP3
    • Gravity Forms to Google Sheets
    • Google Web Scraping
    • Save Gmail Images
    • Email Form Data
    • Schedule Google Froms
    • WordPress Authentication with Google Scripts
    • Extract Email Addresses
    • GDocs2MD
    • Auto-Expire Shared Folders

Official Google Resources

On Programmability/API/Google Apps Script

Google Drive Articles To Accomplish Specific Tasks

Concerns About Google Drive as File Server

Ubiquiti airOS Terms Defined And In Need of Definition

  • Access Point PTP
    • When one has only a single device (e.g. NanoBeam) acting as an AP and there is a single client device.
    • Referenced: airOS 8 User Guide, pg. 13.
  • Point-to-Point (PtP) Link
    • Referenced: airOS 8 User Guide, pg. 13.
  • Station PtP Mode
    • A client device connecting to a PtP link.
    • Referenced: airOS 8 User Guide, pp. 13, 14.
  • Access Point PTMP AirMax AC
    • When a single device (e.g. NanoBeam) is acting as an AP for multiple client devices that are all airMAX AC devices.
    • Referenced: airOS 8 User Guide, pg. 13.
  • Access Point PTMP AirMax Mixed
    • When a single device (e.g. NanoBeam) is acting as an AP for multiple client devices where the clients are a mix of airMAX AC and airMAX M devices.
    • Referenced: airOS 8 User Guide, pg. 13.
  • Station PtMP Mode
    • When multiple clients are connect to an AP they are placed in this mode.
    • Referenced: airOS 8 User Guide, pg. 14.
  • Lock to AP Mac
    • When there are multiple devices broadcasting an SSID, allows one to lock client devices connectivity to a single AP via its MAC address.
    • Referenced: airOS 8 User Guide, pg. 14.

Helpful Reads