In this release, the focus is on security patches to resolve Common Vulnerabilities and Exposures (CVE). We recommend that you upgrade to the latest version, even if you don't need any of the new features. The complete list can be found in the release notes.
Some of the new features are listed below:
- Support for ECC Certificates and Keys
Elliptic curve cryptography certificates and keys are supported by NRSW now. - Update of 3rd party open source packages
The tcpdump debug tool was updated to 4.9.3 - SSL certificate generation
Use random serial numbers for generated SSL certificates. - IPsec improvements
Local and remote IKE port are now configurable. - Scheduled WWAN module restart
Some customers faced problems with stationary devices which did sporadically disconnect from the base station. A nightly reset was introduced. This is enabled by default for affected modules, but can be disabled if not required.
The following issues have been fixed in the new bugfix releases:
- USB serial adapters not working
Some USB serial adapters did not work since NRSW 4.6.0.100 because the required kernel module was not probed correctly. This was fixed
- WWAN connections without DNS provider failed to connect
Since NRSW 4.6.0.100 it was mandatory that a DNS provider is pushed by the network. This is not guaranteed in some private APN networks; depending on the modem type the connection failed in such cases. The old behavior was restored - Firewall issues
In previous versions, a part of IPSec firewall rules were not inserted correctly. This issue has been fixed. - SIM PUK handling improved
With multiple SIMs installed it could happen that wrong PUK settings were not recognized resulting in too many attempts to apply the wrong PUK. This would have resulted in SIM in state PUK2 needed or permanently locked. This was found in internal review and fixed.
The specific releases, manuals and release notes can be found below:
Release Notes
Downloads