Netonix Forums

Is there a tentative schedule when an RC in preparation for a final release might come out?

I understand how busy you are, just wondering for our upgrade planning purposes.

Stephen wrote:

Kevo wrote:Is the TLS browser security issue addressed in this release?

No, it will be done before 1.5.7 is fully released though.

This will be a great option when available. Along the same lines, would it be possible to include a higher SSH key exchange algorithm? Right now it looks like the key exchange of SSH is using diffie-hellman-group1-sha1 which is known to be weak and susceptible to the Logjam attack. OpenSSH does offer a client option to connect similar to the browser flag to downgrade TLS so not a deal-breaker if this doesn't make the cut. Thanks for consideration.

Hey JustJoe and coreinput, right now we are trying to finish up WS3 issue's for the first release which is planned to be within the next week or so. After that I should be working back on the WS issues, the TLS update is planned to be solved by the end of April I will see if I can also investigate OpenSSH key issue during that time.

In 1.5.5 you stated that the VLAN IP address limit was increased to 100. I am trying to add a 14th address on a switch, and it reverts every time. Could you check this?

Hey OmniFlux, I was able to add 14 new vlan's and configure IPs for them at once without much trouble. Could you provide the logs of the switch just after the attempt?


If the switch is very active, it might have just taken it too long to complete the request. If that's the case, doing it over ssh on the console might be more effective. Potentially, I can increase the total allowable time before a reversion as well, but I don't want to do that unless I'm sure it will actually help.

The log is attached. Apply via SSH was successful. I'm worried this configuration will prevent future modifications via the web interface now though.


Can you adjust ntpclient to stop/start only once at the end of the configuration and/or in the background? It appears that is where most of the delay is...

Unfortunately, the ntpclient isn't the source of the issue. It has to do with a fix related to IPv6 dealing with SLAAC from sometime back. For now, you can set the Revert Timer in the Device->Configuration tab to 0 so that it won't revert when you make an adjustment like this.

Is v1.5.7rcx still available? I am getting a blanck when I try to download it. Thanks.

Yes it is, it's working for me. Where are you trying to download from?