New Features
Information
- Log Tables > Event Counter
- Counter for "Warning" and "Critical" events that occurred within the last 24 hours
- Log Tables > Firewall Log > Text Filter
- Filter option in the firewall log, only entries containing the entered text are displayed
- Ethernet Statistics > Counters for Received Errors and Discards
- Counter for the total errors received and counter for discarded packets within the last 24 hours or 7 days
- Firewall Monitoring > Advanced
- Device connections to/from SCALANCE S can be shown/hidden
- Source interface and destination interface of a connection were added to the table
System
Configuration > Minimum Config File Version
- Minimum version of the configuration file can be specified to increase security against manipulation.
DNS > DNS Client > DNSSec
- DNSSec can be enabled for the DNS Client to ensure that only IP addresses from signed domains are accepted.
DHCPv4 > Relay Agent Information
- Configuration of additional parameters that the DHCP Relay Agent sends to the DHCP Server when Option 82 is used
SINEMA RC > Layer 2 Support
- As SINEMA RC Client, connections to SINEMA RC for transferring Layer 2 traffic can now also be established.
Layer 2 (IPv4)
Ring Redundancy > Ring
- The ring ports no longer have to be in VLAN 1 but can be now be a member of any VLAN.
Layer 3 (IPv4)
DHCP Relay Agent
- DHCP packets can be transmitted between the DHCP Client and DHCP Server when they are located in different networks
Security
Users > Local User: Two Factor Authentication
- A two-factor authentication can be configured for each user, in which a one-time token is required following user name and password authentication.
Users > Roles > Remote Access
- User login to the dynamic firewall and/or the WBM of the device can be restricted.
Passwords > Two Factor Authentication
- A two-factor authentication can be enabled, in which a one-time token is required following user name and password authentication.
AAA >; General > NAS ID
- The RADIUS Client can request the NAS ID (device name) from a RADIUS Server as a RADIUS attribute in access request messages.
AAA > 802.1X Authenticator > MAC Authentication > Sticky
- MAC addresses can be authenticated at a port, depending on the configured maximum permissible number of MAC addresses.
Firewall > IP Service Groups
- IP services, ICMP services or IP protocols can be combined into IP service groups in order to use them in IP firewall rules.
Firewall > IP Rules > FQDN
- DNS-resolved FQDNs can be used for the source and destination in IP rules.