MikroTik Changelogs
← Back to search All components

Component: ipsec

511 changelog entries across 207 version(s)

Releases by channel (stacked)

6.48beta27 Testing 2020-Aug-18 (5 years ago)
  • fixed client certificate usage when certificate is renewed with SCEP;
6.47.1 Stable 2020-Jul-08 (5 years ago)
  • do not update peer endpoints for generated policy entries (introduced in v6.47);
6.48beta12 Testing 2020-Jul-06 (5 years ago)
  • added SHA384 hash algorithm support for phase 1 (CLI only);
  • do not update peer endpoints for generated policy entries (introduced in v6.47);
  • fixed multiple warning message display for peers;
  • inactivate peer's policy on disconnect;
6.47 Stable 2020-Jun-02 (5 years ago)
  • added "split-dns" parameter support for mode configuration;
  • added "use-responder-dns" parameter support;
  • allow specifying two peers for a single policy for failover;
  • control CRL validation with global "use-crl" setting;
  • do full certificate validation for identities with explicit certificate;
  • fixed minor spelling mistake in logs;
  • improved IPsec service stability when receiving bogus packets;
  • place dynamically created IPsec policies by L2TP client at the begining of the table;
6.47rc2 Testing 2020-May-25 (5 years ago)
  • added "split-dns" parameter support for mode configuration;
  • added "use-responder-dns" parameter support;
  • allow specifying two peers for a single policy for failover;
  • place dynamically created IPsec policies at the begining of the table;
6.45.9 Long-term 2020-Apr-30 (6 years ago)
  • improved system stability when handling fragmented packets;
6.47beta60 Testing 2020-Apr-24 (6 years ago)
  • allow specifying two peers for a single policy for failover (CLI only);
6.46.5 Stable 2020-Apr-07 (6 years ago)
  • improved system stability when handling fragmented packets;
6.47beta53 Testing 2020-Apr-03 (6 years ago)
  • improved system stability when handling fragmented packets;
6.47beta49 Testing 2020-Mar-20 (6 years ago)
  • control CRL validation with global "use-crl" setting;
  • do full certificate validation for identities with explicit certificate;
6.47beta35 Testing 2020-Feb-17 (6 years ago)
  • added "use-responder-dns" parameter support (CLI only);
6.47beta32 Testing 2020-Feb-10 (6 years ago)
  • added "split-dns" parameter support for mode configuration (CLI only);
  • fixed minor spelling mistake in logs;
  • improved IPsec service stability when receiving bogus packets;
6.45.8 Long-term 2020-Jan-23 (6 years ago)
  • improved system stability when processing decrypted packet on unregistered interface;
6.46.1 Stable 2019-Dec-13 (6 years ago)
  • improved system stability when processing decrypted packet on unregistered interface;
6.47beta8 Testing 2019-Dec-10 (6 years ago)
  • improved system stability when processing decrypted packet on unregistred interface;
7.0beta4 Development 2019-Dec-06 (6 years ago)
  • fixed action=none policies;
6.46 Stable 2019-Dec-02 (6 years ago)
  • added "error" topic for identity check failure logging messages;
  • fixed DNS resolving when domain has only AAAA entries;
  • fixed policy "sa-src-address" detection from "local-address" (introduced in v6.45);
6.46rc1 Testing 2019-Nov-26 (6 years ago)
  • fixed IPsec policy checking on RB4011 (introduced in v6.46beta68);
6.46beta68 Testing 2019-Nov-21 (6 years ago)
  • fixed policy "sa-src-address" detection from "local-address" (introduced in v6.45);
6.44.6 Long-term 2019-Oct-24 (6 years ago)
  • allow inline "passphrase" parameter when importing keys;
  • fixed minor spelling mistakes in logs;
6.45.5 Stable 2019-Aug-26 (6 years ago)
  • allow inline "passphrase" parameter when importing keys;
  • fixed "eap-radius" authentication method (introduced in v6.45);
  • fixed minor spelling mistakes in logs;
6.46beta34 Testing 2019-Aug-22 (6 years ago)
  • fixed DNS resolving when domain has only AAAA entries;
  • fixed "eap-radius" authentication method (introduced in v6.45);
  • fixed minor spelling mistakes in logs;
6.46beta28 Testing 2019-Aug-08 (6 years ago)
  • allow inline "passphrase" parameter when importing keys;
6.46beta16 Testing 2019-Jul-23 (6 years ago)
  • added "error" topic for identity check failure logging messages;
6.45.2 Stable 2019-Jul-17 (6 years ago)
  • added "connection-mark" parameter for mode-config initiator;
  • allow peer argument only for "encrypt" policies (introduced in v6.45);
  • fixed peer configuration migration from versions older than v6.43 (introduced in v6.45);
  • improved stability for peer initialization (introduced in v6.45);
  • show warning for policies with "unknown" peer;