Search changelog entries
| Component | Change |
|---|---|
| bridge | correctly display bridge FastPath status when vlan-filtering or dhcp-snooping is used; |
| conntrack | fixed GRE protocol packet connection-state matching (CVE-2014-8160); |
| crs317 | fixed known multicast flooding to the CPU; |
| ike1 | general stability improvements (introduced in v6.45beta); |
| ike2 | added support for IKE rekeying for initiator; |
| ike2 | improved child SA rekeying process; |
| lte | added initial support for Vodafone R216-Z; |
| ovpn | added "verify-server-certificate" parameter for OVPN client (CVE-2018-10066); |
| winbox | added "System/SwOS" menu for all dual-boot devices; |
| www | improved client-initiated renegotiation within the SSL and TLS protocols (CVE-2011-1473); |
| Component | Change |
|---|---|
| bridge | fixed port running state for non-ethernet interfaces (introduced in v6.45beta33); |
| ccr | improved packet processing after overloading interface; |
| crs3xx | added ethernet tx-drop counter; |
| crs3xx | improved switch-chip resource allocation on CRS326, CRS328, CRS305; |
| defconf | changed default configuration type to AP for cAP series devices; |
| dhcpv6-client | added option to disable rapid-commit (CLI only); |
| dhcpv6-server | added RADIUS accounting support with queue based statistics; |
| discovery | fixed CDP packets not including address on slave ports (introduced in v6.44); |
| firewall | process packets by firewall when accepted by RAW with disabled connection tracking; |
| ike2 | fixed pre-shared-key authentication failure (introduced in v6.45beta34); |
| ike2 | improved certificate verification when multiple CA certificates received from responder; |
| ippool | improved logging for IPv6 Pool when prefix is already in use; |
| ipv6 | improved system stability when receiving bogus packets; |
| lte | improved firmware upgrade process; |
| ospf | fixed opaque LSA type checking in OSPFv2; |
| rb3011 | improved system stability when receiving bogus packets; |
| rb4011 | fixed MAC address duplication between sfp-sfpplus1 and wlan1 interfaces (wlan1 configuration reset required); |
| snmp | improved reliability on SNMP service packet validation; |
| ssh | fixed non-interactive multiple command execution; |
| supout | added "pwr-line" section to supout file; |
| traceroute | improved stability when sending large ping amounts; |
| traffic-generator | improved stability when stopping traffic generator; |
| Component | Change |
|---|---|
| conntrack | significant stability and performance improvements; |
| dhcpv6-server | fixed dynamic IPv6 binding without proper reference to the server; |
| firewall | fixed fragmented packet processing when only RAW firewall is configured; |
| gps | fixed missing minus close to zero coordinates in dd format; |
| wireless | improved installation mode selection for wireless outdoor equipment; |
| Component | Change |
|---|---|
| dhcpv4-server | fixed commenting option for alerts; |
| dhcpv6-server | fixed binding setting update from RADIUS; |
| ike1 | improved stability for transport mode policies on initiator side; |
| ipv6 | adjusted IPv6 route cache max size; |
| ipv6 | adjust IPv6 route cache max size based on total RAM memory; |
| ipv6 | improved IPv6 neighbor table updating process; |
| lte | reset LTE modem only when SIM slot is changed on dual SIM slot devices; |
| lte | use default APN name "internet" when not provided; |
| rb2011 | removed "sfp-led" from "System/LEDs" menu; |
| rb4011 | fixed SFP+ interface full duplex and speed parameter behaviour; |
| rb4011 | improved SFP+ interface linking to 1Gbps; |
| smb | fixed possible buffer overflow; |
| snmp | added "radio-name" (mtxrWlRtabRadioName) OID support; |
| ssh | do not generate host key on configuration export; |
| switch | fixed possible crash when interface state changes and DHCP Snooping is enabled; |
| system | accept only valid path for "log-file" parameter in "port" menu; |
| userman | updated authorize.net gateway DNS name; |
| webfig | improved file handling; |
| winbox | improved file handling; |
| winbox | show "R" flag under "IPv6/DHCP Server/Bindings" tab; |
| wireless | added support for US FCC UNII-2 and Canada country profiles for LHG-5HPnD-US, RBLHG-5HPnD-XL-US and SXTsq5HPnD-US devices; |
| wireless | improved wireless country settings for EU countries, outdoor models will use outdoor frequency range by default; |
| wireless | improved system stability for all devices with 802.11ac wireless; |
| wireless | improved wireless country settings for EU countries; |