MikroTik Changelogs
ā† Back to search All components

Component: firewall

248 changelog entries across 110 version(s)

Releases by channel (stacked)

7.8 Stable 2023-Feb-24 (3 years ago)
  • fixed bridge priority target;
  • fixed DSCP priority target for IPv6 Mangle;
  • fixed netmap range maximum address calculation for IPv6 NAT;
7.8beta2 Testing 2023-Jan-20 (3 years ago)
  • fixed bridge priority target;
  • fixed DSCP priority target for IPv6 Mangle;
  • fixed netmap range maximum address calculation for IPv6 NAT;
7.7 Stable 2023-Jan-12 (3 years ago)
  • added "set-priority" option for IPv6 mangle firewall;
  • made "dynamic" parameter settable for IPv4 address lists;
7.7beta6 Testing 2022-Nov-04 (3 years ago)
  • added "set-priority" option for IPv6 mangle firewall;
  • made "dynamic" parameter settable for IPv4 address lists;
7.6 Stable 2022-Oct-17 (3 years ago)
  • added "src/dst-address-type" parameter under "IPv6/Firewall/Mangle" menu;
  • disable IRC NAT helper on upgrade;
  • fixed IPv6 filtering with "in/out-interface" matcher that is in VRF;
  • fixed IRC NAT helper (CVE-2022-2663);
  • fixed usage of "netmap" action for IPv6 source NAT;
7.6beta8 Testing 2022-Sep-21 (3 years ago)
  • fixed usage of "netmap" action for IPv6 source NAT (CLI only);
7.6beta4 Testing 2022-Sep-01 (3 years ago)
  • added "src/dst-address-type" parameter under "IPv6/Firewall/Mangle" menu;
  • disable IRC NAT helper on upgrade;
  • fixed IPv6 filtering with "in/out-interface" matcher that is in VRF;
  • fixed IRC NAT helper (CVE-2022-2663);
7.5 Stable 2022-Aug-30 (3 years ago)
  • added support for RTSP helper;
7.5rc1 Testing 2022-Aug-19 (3 years ago)
  • added support for RTSP helper;
7.4.1 Stable 2022-Aug-04 (3 years ago)
  • fixed "in-interface-list" matcher when VRF is used;
7.5beta4 Testing 2022-Jul-22 (3 years ago)
  • added support for RTSP helper;
7.4 Stable 2022-Jul-19 (3 years ago)
  • added "srcnat" and "dstnat" flags to IPv6/Firewall/Connection table;
  • added support for IPv6/Firewall/NAT action=src-nat rules;
  • fixed IPv6 NAT functionality when processing GRE traffic on TILE devices;
  • fixed IPv6/Firewall/RAW functionality;
  • include "connection-mark", "connection-state", and "packet-mark" when packet logging is enabled;
  • properly handle interface matcher when VRF interface is specified;
7.2 Stable 2022-Mar-31 (4 years ago)
  • improved available port lookup for source NAT when free port range is exhausted;
7.2rc5 Testing 2022-Mar-23 (4 years ago)
  • improved available port lookup for source NAT when free port range is exhausted;
7.2rc2 Testing 2022-Jan-28 (4 years ago)
  • improved system stability when using address lists (introduced in v7.2rc1);
6.49 Stable 2021-Oct-06 (4 years ago)
  • fixed "ingress-priority" matcher;
  • fixed GRE protocol packets considered invalid when PPTP helper is disabled;
6.49beta36 Testing 2021-Apr-23 (5 years ago)
  • fixed "ingress-priority" matcher;
6.49beta22 Testing 2021-Mar-08 (5 years ago)
  • fixed GRE protocol packets considered invalid when PPTP helper is disabled;
6.44.5 Long-term 2019-Jul-04 (6 years ago)
  • fixed fragmented packet processing when only RAW firewall is configured;
  • process packets by firewall when accepted by RAW with disabled connection tracking;
6.45.1 Stable 2019-Jun-27 (6 years ago)
  • fixed fragmented packet processing when only RAW firewall is configured;
  • process packets by firewall when accepted by RAW with disabled connection tracking;
6.45beta50 Testing 2019-May-20 (6 years ago)
  • process packets by firewall when accepted by RAW with disabled connection tracking;
6.45beta45 Testing 2019-May-13 (6 years ago)
  • fixed fragmented packet processing when only RAW firewall is configured;
6.41.3 Stable 2018-Mar-08 (8 years ago)
  • fixed "tls-host" firewall feature (introduced in v6.41);
6.40.6 Long-term 2018-Feb-20 (8 years ago)
  • limited maximum "address-list-timeout" value to ā€œ35w3d13h13m56sā€;
6.42rc24 Testing 2018-Feb-08 (8 years ago)
  • fixed "tls-host" firewall feature (introduced v6.41);