IPv6 support, network adapter bind, and various resolved issues
Improvements
- IPv6 support. Please read the “Important Information” section for more information about IPv6 support with this firmware version
- SFTP/SSH/WebUI sessions have additional limits regarding concurrent sessions in order to prevent potential DoS attack. (NDM-000200, WSR-000001)
- Added the ability to select the network adapter to bind the webserver to with the WEBSERVER ADAPTER console command.
- Added the ability to limit the total number of user session for the webserver with the WEBSERVER TOTALUSERSESSIONS console command.
- The device can now be configured such that local password changes require a minimum number of positions in which characters are changed. (NDM-000329). This can be enabled or disabled using a new flag -CHANGE associated with the SETPAsswordrule/GETPAsswordrule command.
- Daylight Savings Time (DST) no longer observed in most of Mexico’s time zones.
Bug fixes
- When using a TCP/IP Server in SIMPL Windows, a FIN/ACK was not always sent when closing the socket.
- Resolved an issue where a SIMPL+ process could crash and would not get restarted.
- Resolved an issue where the Control System was not sending a time sync to a connected device.
- Removing IPIDs from IPTable through WebUI would not always work properly.
- Rebooting Control System directly after using CrestronDataStoreStatic.Flush() would not store data properly.
- IPID description field in WebUI would always be empty
- IPTable port values for UDP communication incorrect in WebUI
- Resolved an issue that would show “AutoUpdate file for read, error 13” in error log.
- Resolved an issue with Crestron SNMP OIDs.
- IGMP Join/Leave messages would not be sent on the Control Subnet when enabling/disabling a UDP socket.
- Resolved an issue where the CWS server would send an incorrect HTTP 301 redirect after successfully logging in.
- When loading programs from the WebUI, the IPTable would get loaded even when “Do not copy IP Table” was checked.
- When FIPS mode is enabled, weak SSL/TLS Key Exchange was allowed on port 41796
- NVRAM data gets corrupted when downloaded if the data is larger than 2048 bytes.
- CP4N would show incorrect MAC address when using VER console command.
- Removed expired certificates.