Ubiquiti UniFi SDN Controller Software Release Notes: 5.5.19, 5.5.20, 5.5.24

5.5.19

See the official release notes.

  • Added AP tagging
  • Added support for FreeRADIUS on USG. Configured under Settings–>Services–>RADIUS.
  • Enabled LAN2 support for USG3.
  • Added L2TP over IPsec option for remote user VPN config.
  • Added admin overview (found in site overview area).
  • Added Hotspot Analytics.
  • Added WLAN – broadcast/multicast blocking.
  • Fixed Enable VPN client in VPN Network Settings.
  • Adjusted unifi.init so it detects Oracle JDK 8 installed via PPA.
  • Fixed changing rules order in firewall.
  • Raised the WLAN group load balance limit to 200.
  • Fixed a bug causing duplicate downlinks to show in the controller UI.
  • Fixed group AP editing issue.
  • Added device configuration warning bar with real time input updates.
  • Made Dashboard widgets configurable.
  • Renamed vpn client to vpn type.
  • Set next hop for static route as default.
  • Removed voip option from available network purposes.
    • Old networks configured with the VoIP type are removed upon upgrade (has been unusable since 4.x controller).
  • Removed deprecated VoIP configuration from USG.
  • Fixed initial value of data retention days.
  • Added special icons for UCK client.
  • Made performance improvements to Dashboard.
  • Added beta warning for languages other than English.
  • Added Turkish translations.
  • Added Danish, Norwegian and Turkish to the languages supported by Hotspot Portal.
  • Added buytton for toggling clients visibility on Topology view.
  • Fixed issue with unused cache not clearing as expected (causing controller to die because of a memory leak).
  • Added color to RF scan results.
  • Added missing SFP module info tooltips for UniFi switch.
  • Set max SSID length to 32 characters.
  • Made various topology view improvements.
  • Addded ability to mark rogue APs as known.
  • Added support for Catalan, Norwegian (Bokmal), and Slovak languages on HotSpot.
  • Added validation for USG/USW SNMP community string.
  • Fixed tooltip positioning.
  • Made Edit Account frame bigger to ensure enough room for labels in all languages.
  • Now allow one to edit firewall settings when no USG is adopted.
  • Animated map menu.
  • Removed RADIUS VLAN from wireless networks.
  • Extended RADIUS server validation to not allow disabling it if there is a device that uses Default profile.
  • Highlighted Topology paths.
  • Fixed Statistics Overview initializer.
  • Added ability to batch restart APs.
  • Made improvements to Topology.
  • Improved Topology detection.
  • Switch Statistics now show device connected to a port.
  • Map Marker Button icons positioning has been tweaked.
  • Improved Notify Device Requirement performance.
  • Improved SVG map zooming.
  • Fixed pending change tag color.
  • Removed BETA badge from RADIUS assigned VLAN for Wireless Network.
  • Allowed AP properties WLAN table to wrap.
  • Greyed out device entries when WLAN group is off.
  • Fixed speed test ping translation.
  • Added save & close button to Preferences.
  • Limited firewall group name to 31 characters.
  • Removed config.properties USG ICMP items.
  • Now shows AP channel utilization in Properties and Devices list page.
  • Added granularity to Statistics (5m/1h/1d).
  • Configured Data Retention for each granularity of Statistics in Settings/Maintenance.
  • Redesigned inputs for date picking.
  • Increased precision of Throughput chart on Dashboard page.
  • Added Force Provision button to Properties/Manage Device.
  • Added PMF controller to WLAN group settings.
  • Added first seen column to Known Clients list page.
  • Added free-trial authorization column to Guests list in HostSpot Manager.
  • Now show Gateway column in Payments and Social Views in HostSpot Manager.
  • Fixed USG/USG-P4 port labels.
  • Fixed displaying Hotspot Analytics page when Guest Portal is disabled.
  • Fixed client status ordering.
  • Now show terminal for UAP-AC-IW.
  • Changed Revoke RADIUS user to Delete with new icon.
  • Added – as placeholder.
  • Renamed Name server placed to DNS server.
  • Fixed content of tooltips on Dashboard page.
  • Prohibited deselecting current device in Performance view.
  • Added icon to switch port list.
  • Improved Insights –> Switch Stats.
  • Changed Revoke buton to Delete button on Admins list.
  • Fixed issue with sending large files over WebRTC (e.g. backups).
  • Prohibited 0.0.0.0 as an address-group member since it isn’t a valid entry in the firmware.
  • Improved some backend validations.
  • Added batch editing of clients.
  • Channel names are now displayed in a new and consistent way – e.g. 3 (1,+1) HT40,151 (149,+1) VHT40
  • Allowed disabling of site-to-site VPN.
  • Enabled finding device on map when in read only mode.
  • Display only historical rx/tx bytes on Known Clients page.
  • Changed guest authorization status to display expiration date when expired.
  • Angular templates are now used by default in Guest Authorization Settings.
  • Removed “new” badge from Angular templates and removed “beta” badge from template overrides and languages.
  • Fixed expiration dropdown on Guest Control settings page.
  • Fixed success messages on saving configuration.
  • Fixed various Auto Backup setting issues.
  • Fixed latency color in legend of Throughput graph.
  • Made small UI improvements.
  • Removed VoIP interface from controller.
  • Enabled by default MSS clamping on VTI.
  • Added Hotspot Manager link to site switcher.
  • Relocated Hotspot 2.0 to Services section.
  • Added option to report WebRTC connection errors to cloud.
  • Used lower scale Throughput graph to increase rendering performance on Safari/iOS.
  • Enabled tunneled reply by default.
  • Improved vouchers quota.
  • Updated translations.
  • Improved date picker.
  • Allowed displaying WLAN schedule in 24 hour format when “Using 24-hour time” preference is on.
  • Added Adapt no data / no security gateway messages on Dashboard page.
  • Fixed device menu when toggling small/normal markers on Map page.
  • Fixed icons on clients’ graph on Dashboard page.
  • Fixed speed test column chart.
  • Fixed USG badge and tooltip on DPI Settings page.
  • Fixed typo in validation hints for IP.
  • Improved locate button behavior.
  • Updated OUI table.
  • Now shows L2TP remote user VPN on dashboard and remote user VPN insights.
  • Fixed issue where the local DNS record for unifi may not provision when using USG.
  • Fixed an issue with current day stats being improperly calculated.
  • Fixed an issue with fixed IP handling.
  • Fixed auto backup data retention days.
  • Hide UGW port remap if UGW4 exists.
  • Now use RADIUS assigned VLAN only for WPA-EAP.
  • Link to Hotspot Manager only displayed in Site Switcher if Guest Portal is enabled.
  • Fixed 404 error when switching sites while editing.
  • Fixed email validation.
  • Now use monthly value as default occurrence in Auto Backup settings.
  • Fixed number of devices in filter buttons on Known Clients page.
  • Restored open panel functionality from device marker on map.
  • Enabled reset button after hotspot package removal.
  • Improved Cloud Connection error tooltip.
  • Improved header icons.
  • Improved placeholders and regular expressions.
  • Added FQDN or local validation to domain name.
  • Fixed port forward validations.
  • Fixed domain name validation.
  • Fixed issue with controller causing too many directs.
  • Added validation for RADIUS profile VLAN mode.
  • Fixed issue with community string changing to public, regardless of configured value.
  • Added pagination in Settings / Network list.
  • Disallowed SVG upload for guest portal images.
  • Fixed displaying sections on Guest Control settings page.
  • Fixed clickable area of alerts full screen button.
  • Fixed site settings save error.
  • Fixed refreshing networks in switch property panel on network add/remove.
  • Made security improvements.
  • Signed Windows installer package.
  • Removed restricted U-NII-2C channels when Canada country code is set.
  • Moved the AP channel utilization graph into the header.
  • Added memory and load average to device list columns.
  • Show only adopted APs in Recent Activities in Statistics.
  • Rename all-time top client.
  • Updated validation hint for maximum number of stations in wireless network group.
  • Now shows DB migration progress.
  • Greyed out disabled WLAN rows in Property Panel.
  • Improved chart animations.
  • Added autofocus on 2FA token field.
  • Now allows one to cancel migration of device.
  • Fixed Not Authorized/Bad Request on first launch after accepting SDN Invitation.
  • Fixed WAN load balance config so that it actually provisions to USG.
  • DB migration improvements.
  • Fixed firewall rule validation.
  • Improved LAN address identification on USG.
  • Updated firewall rule button styles.
  • Used bps instead of bytes per second.
  • Fixed problem with enabling Cloud Access.
  • Now handling ESC on cloud access modal.
  • Restricted 5 minutes data retention.
  • Switch port usage graph now prevents displaying connected both Device and Client.
  • Updated bundled snappy-java to 1.1.2.6.
  • Updated bundled JRE to 8u131 b11 for Mac controller.
  • Improved WebRTC debugging.
  • Fixed an issue when granting admin privilegs on a site.
  • Generates a SHA512 password if device firmware is capable of it.
  • Removed TLSv1 from default SSL protocols for Java 7/8.
  • Fixed services link not visible on mobiles.
  • Fixed removing items on WebRTC connection.
  • Now allows antenna gain of 0.
  • Supports UAP-AC-IW-Pro.
  • Supports USW L2 PoE.
  • Increased broadcast and multicast MAC limit to 256 per site.
  • Updated WebRTC JNI to 1.0.17.
  • Updated bundled Tomcat package to 7.0.78.
  • Fixed clearing statistics.
  • Added HSTS support (disabled by default).
    • Can be controlled only by system.properties.
  • Fixed uplink status when using bonding on AC-HD.
  • Fixed an issue with the remote IP in WebRTC logging, previously was always 127.0.01.
  • Made various backend improvements.
  • Allowed RADIUS Profile secret to accept any string.
  • Hid RADIUS Profile secret for read-only admins.
  • Improved VPN health status.
  • Fixed wired uplink stats on AC-HD when using bonding.
  • Fixed an issue when trying to register controller with UniFi cloud tie in (unifi.ubnt.com).
  • Fixed a DB migration issue which caused stats not to be visible in the UI post upgrade when upgrading from <=5.4.x.

Controller Bugfixes/Changes Ported from 5.4.x

  • Improved dynamic Dashboard.
  • Improved loading DPI statistics.
  • Improved Topology view.
  • Improved Image Map performance.
  • Updated translations.
  • Added Catalan translations.
  • Fixed saving Settings –> Controller.
  • Added user group override notice, client list user group column.
  • Fixed panel expand/collapse icon aliasing.
  • Added LAG support to AP –> Network Configuration (AC-HD only).
  • Added limited amount of LAN DHCP leases notice.
  • Added minRSSI noise floor notice.
  • Added expand/collapse icon to device list actions column.
  • Disallowed SVG image type in Maps.
  • Added progress bar for backup upload.
  • Fixed import/export function.
    • The configuration tab will not be visible after import.
  • Fixed available manual negotiation options for 10GBASE-T ports.
  • Added Migrate Site (Export Site) Wizard.
  • Fixed slow DB backup.
  • Fixed RADIUS profile migration issue.
  • Improved email templates.

Firmware Changes from 3.8.2/4.3.41

  • UAPG3
    • Enabled DFS on UAP-AC-SHD.
  • UAPG2
    • Fixed an STA connectivity issue that occurred when a second generation AP is the wireless downlink to a wired third generation AP.
    • Fixed an issue causing less than expected throughput in recent releases.
  • UAP
    • Fixed a bug in uplink-monitor.
  • USW
    • Added 802.1X MAC auth bypass support.*
  • USL2
    • Added PSU fail detection support.*
  • USG
    • Updated numerous subsystems to the latest EdgeRouter 1.9.7.
      • Includes a number of bug fixes mades to EdgeRouter in past 2-3 years, though these are largely not applicable to USG use case.
      • IPv6 fixes were most relevant to USG users.
    • Subsystems updated include UPnP, PPTP client, DHCP server, Quagga, PPPoE and PPP Handling, DHCP Client, conntrack, configuration subsystem, operational commands subsystem, IPv6 router advertisement service, keepalived, NAT configuration and handling, OpenVPN configuration subsystem.
    • Increased maximum NDP and ARP cache table sizes, added back end controls for ARP and NDP timeouts.
    • Made improvements to Guest control.
      • Added locking to improve reliability.
      • Reworked some of the back end functions to improve performance.
    • Fixed memory leak in VPN status reporting eventually leading to disconnects of USG from controller.
    • DPI Improvements
      • Back end additions for DPI blocking.
      • Stats clearing fix.
      • Signature update improvements.
    • RADIUS server permissions fixed for log files and accounting data.
  • HW
    • Fixed the issue printing SSH login when the interface IP changed.

From 5.5.19 to 5.5.20

Official release notes.

Controller Bugfixes/Changes

  • Fixed port mirroring range.
  • Fixed app with Chinese translations.
  • Added Google to social transactions.
  • No longer display number of clients for site-to-site VPN.
  • Limited MAC ACL list to 512 per WLAN group.
  • Added VAP BSSID filter to devices page.
  • Fixed the issue causing storm control settings to be provisioned even when disabled.
  • Updated bundled Tomcat to 7.0.79.
  • Now always deploys WAN_OUT firewall rules and removed the config.properties control.
  • Improved 802.1X provisioning on USW, so that switch does not get blocked.
  • Fixed site-to-site connection status on VPN health widget.
  • Improved the broadcast/multicast filter.
  • Made various security improvements.

From 5.5.20 to 5.5.24

See the official release notes.

Controller Bugfixes/Changes

  • Fixed wrong data in VLAN column in WLAN list.
  • Reverted “change auto VPN VTI subnet mask to /30” as it needs to be reworked.
  • Changed auto VPN VTI subnet mask to /30.
  • WLANs table now displays in Property Panel for In-Wall.
  • Fixed an issue preventing switch ports from coming up after being disabled.
  • Fixed a bug with IW causing the port to be disabled when the VLAN is off.
  • Fixed a backend bug with guest access.
  • Made improvements to MAC address input validation.
  • Fixed a provisioning issue which would clear USG WAN settings.
  • Improved Ethernet bonding support on UAPs (on supported devices).
  • Improved topology view when using wireless uplinks.
  • Now allows setting device credentials during setup and new site wizards.
  • Made various backend fixes and improvements, also security improvements.

Firmware Changes from 3.8.3/3.8.6/4.3.49

  • UAPG3
    • Major code base upgrade (codename Toronto).
    • airTime and airView support (SHD exclusive).*
    • Switched to net-snmp in preparation for SNMPv2 support (eventually v3 too).**
  • ACG1
    • Fixed WEP on first generation AC models.
  • EDU
    • Various fixes and improvements for the baresip client.
  • ACIW
    • Fixed management VLAN support.
  • UAP
    • Made various Mesh v3 improvements.
    • Prepared management VLAN support for other UAP devices.*
    • Added support for multiple WLAN schedule blocks per day.*
    • Improved reliability of receiving Framed-IP-Address attribute.
    • Added 802.11r support (excluding UAP-AC v1/v2 and UAP-AC-Outdoor).*
    • Disabled multicast enhancements by default.
    • Improved RF scanning.
    • Fixed a RADIUS related bug with fast-apply.
    • Added management VLAN support for wireless uplink.*
    • Added options for RF scan (active/passive, background/foreground).*
    • Added support for best channel suggestion after running RF scan.*
    • Added support for fast-apply WLAN config, for existing WLANs only.
    • Allowed 80MHz for Russian country code.
    • Removed iperf package, as it does not provide proper results when using an AP as an endpoint.
    • Various security and backend fixes and/or improvements.
  • USL2
    • Added support for switch power monitor and PSU info.*
  • USW
    • Fixed DoS issue reported via HackerOne.
    • Added per port Class of Service (CoS) queuing and max traffic class support.*
    • Delayed port LED blinking until system, ready.
    • Added backend for 802.1X MAC authentication bypass support.*
    • Added support for port egress rate limiting.*
    • Implemented route metric changing on load-balance status change.
      • This fixes WAN failover issues with L3 adopted USGs, and improves multi-WAN failover functionality in general.
      • Fixed multi-WAN regressions in 4.3.46-4.3.49 picked up from EdgeRouter 1.9.7.
      • Implemented new local web UI on USG.
        • Fixes a variety of long-standing bugs with the old UI.
        • Adds ability to configure LAN IP and DHCP server.
      • Updated ISC dhcp version.
        • Probably fixes some edge case problems with multiple DHCP WANs and recovery after ethernet link loss.
      • Added backend for custom host-uniq for PPPoE.
      • Fixes for some uses of multiple routing tables.
        • Nothing controller provisioned does anything impacted by this, but a small number use config.gateway.json VPN configurations which are impacted.

Leave a Reply

This site uses Akismet to reduce spam. Learn how your comment data is processed.

%d bloggers like this: