MikroTik Changelogs
← Back to search All components

Component: ipsec

511 changelog entries across 207 version(s)

Releases by channel (stacked)

6.46beta9 Testing 2019-Jul-11 (6 years ago)
  • added "connection-mark" parameter for mode-config initiator;
  • allow peer argument only for "encrypt" policies (introduced in v6.45);
  • fixed peer configuration migration from versions older than v6.43 (introduced in v6.45);
  • show warning for policies with "unknown" peer;
6.46beta6 Testing 2019-Jul-04 (6 years ago)
  • improved stability for peer initialization (introduced in v6.45);
6.45.1 Stable 2019-Jun-27 (6 years ago)
  • renamed "remote-peers" to "active-peers";
  • renamed "rsa-signature" authentication method to "digital-signature";
  • replaced policy SA address parameters with peer setting;
  • use tunnel name for dynamic IPsec peer name;
  • added dynamic comment field for "active-peers" menu inherited from identity;
  • added "ph2-total" counter to "active-peers" menu;
  • added support for RADIUS accounting for "eap-radius" and "pre-shared-key-xauth" authentication methods;
  • added traffic statistics to "active-peers" menu;
  • disallow setting "src-address" and "dst-address" for transport mode policies;
  • do not allow adding identity to a dynamic peer;
  • fixed policies becoming invalid after changing priority;
  • general improvements in policy handling;
  • properly drop already established tunnel when address change detected;
6.45beta62 Testing 2019-Jun-13 (6 years ago)
  • added dynamic comment field for "active-peers" menu inherited from identity;
  • added "ph2-total" counter to "active-peers" menu;
  • added support for RADIUS accounting for "eap-radius" and "pre-shared-key-xauth" authentication methods;
  • added traffic statistics to "active-peers" menu;
  • disallow setting "src-address" and "dst-address" for transport mode policies;
  • renamed "remote-peers" to "active-peers";
6.45beta42 Testing 2019-May-08 (6 years ago)
  • added support for RADIUS accounting for "eap-radius" and "pre-shared-key-xauth" authentication methods (CLI only);
6.45beta37 Testing 2019-Apr-25 (7 years ago)
  • general improvements in policy handling;
6.44.3 Stable 2019-Apr-23 (7 years ago)
  • fixed freshly created identity not taken in action (introduced in v6.44);
  • fixed possible configuration corruption after import (introduced in v6.44);
6.45beta31 Testing 2019-Apr-12 (7 years ago)
  • added support for RADIUS accounting for "eap-radius" and "pre-shared-key-xauth" authentication methods (CLI only);
  • added traffic statistics to "active-peers" menu (CLI only);
  • general improvements in policy handling;
  • replaced policy SA address parameters with peer setting;
  • use tunnel name for dynamic IPsec peer name;
6.45beta27 Testing 2019-Apr-03 (7 years ago)
  • fixed possible configuration corruption after import;
6.45beta23 Testing 2019-Apr-01 (7 years ago)
  • properly drop already established tunnel when address change detected;
6.45beta22 Testing 2019-Mar-29 (7 years ago)
  • added support for RADIUS accounting;
  • fixed policies becoming invalid after changing priority;
6.45beta20 Testing 2019-Mar-25 (7 years ago)
  • fixed freshly created identity not taken in action;
6.45beta19 Testing 2019-Mar-22 (7 years ago)
  • renamed "rsa-signature" authentication method to "digital-signature";
6.45beta16 Testing 2019-Mar-18 (7 years ago)
  • added dynamic comment field for "active-peers" menu inherited from identity (CLI only);
  • added "ph2-total" counter to "active-peers" menu (CLI only);
  • added support for RADIUS accounting;
  • added traffic statistics to "active-peers" menu (CLI only);
  • do not allow adding identity to a dynamic peer;
  • renamed "remote-peers" to "active-peers" (CLI only);
6.44.1 Stable 2019-Mar-13 (7 years ago)
  • allow identities with empty XAuth login and password if RADIUS is enabled (introduced in v6.44);
  • fixed dynamic L2TP peer and identity configuration missing after reboot (introduced in v6.44);
  • use "remote-id=ignore" for dynamic L2TP configuration (introduced in v6.44);
6.43.13 Long-term 2019-Mar-13 (7 years ago)
  • fixed all policies not getting installed after startup (introduced in v6.43.8);
  • fixed stability issues after changing peer configuration (introduced in v6.43);
6.45beta11 Testing 2019-Mar-08 (7 years ago)
  • allow identities with empty XAuth login and password if RADIUS is enabled (introduced in v6.44);
6.45beta6 Testing 2019-Mar-05 (7 years ago)
  • fixed dynamic L2TP peer and identity configuration missing after reboot (introduced in v6.44);
  • use "remote-id=ignore" for dynamic L2TP configuration (introduced in v6.44);
6.44 Stable 2019-Feb-25 (7 years ago)
  • added account log message when user is successfully authenticated;
  • added basic pre-shared-key strength checks;
  • added new "remote-id" peer matcher;
  • allow to specify single address instead of IP pool under "mode-config";
  • fixed active connection killing when changing peer configuration;
  • fixed all policies not getting installed after startup (introduced in v6.43.8);
  • fixed stability issues after changing peer configuration (introduced in v6.43);
  • hide empty prefixes on "peer" menu;
  • improved invalid policy handling when a valid policy is uninstalled;
  • made dynamic "src-nat" rule more specific;
  • made peers autosort themselves based on reachability status;
  • moved "profile" menu outside "peer" menu;
  • properly detect AES-NI extension as hardware AEAD;
  • removed limitation that allowed only single "auth-method" with the same "exchange-mode" as responder;
  • require write policy for key generation;
6.44rc1 Testing 2019-Feb-15 (7 years ago)
  • allow to specify single address instead of IP pool under "mode-config";
6.42.12 Long-term 2019-Feb-12 (7 years ago)
  • accept only valid path for "export-pub-key" parameter in "key" menu;
6.44beta75 Testing 2019-Feb-08 (7 years ago)
  • require write policy for key generation;
6.43.11 Stable 2019-Feb-04 (7 years ago)
  • accept only valid path for "export-pub-key" parameter in "key" menu;
6.44beta61 Testing 2019-Jan-17 (7 years ago)
  • accept only valid path for "export-pub-key" parameter in "key" menu;
  • added new "remote-id" peer matcher;
  • fixed all policies not getting installed after startup (introduced in v6.43.8);
  • moved "profile" menu outside "peer" menu;
6.44beta54 Testing 2019-Jan-07 (7 years ago)
  • added new "remote-id" peer matcher (CLI only);