Release Notes PN 93000444_U for the 82000747_U firmware November 14, 2007 INTRODUCTION This is a production release of the firmware (EOS) for the Digi One TS and PortServer TS device server product family. These devices support TCP/IP, Telnet, Reverse Telnet, SNMP, PPP, SSHv2, Port Buffering, ARP-Ping, ADDP, DPA-Remote monitoring tool, and Digi's patented RealPort software for COM or TTY port redirection. SUPPORTED PRODUCTS Digi One TS PortServer TS 2/4 (1-port MEI, p/n 50000771) PortServer TS 2/4 MEI Digi One TS H PortServer TS 2/4 H Digi One TS W PortServer TS 2/4 W PortServer TS 1/3 + Modem PortServer TS 1/2/4 PortServer TS 1/2/4 MEI PortServer TS 1/2/4 H MEI PortServer TS 1/2/4 P MEI PortServer TS 1/2/4 R MEI PortServer TS 1/2/4 W MEI PortServer TS 1/2/4 Haz MEI PortServer TS 1/3 M MEI BUG FIXES - Fixed a problem where static IP addresses could not be set after a button reset - Reworked premessage logic to insure the premessage and login prompt are displayed correctly under all conditions - Fixed a problem where the new base port did not become effective immediately on a "revert config=factory" - Fixed a problem where the SNMP meiDescription field always said "half-duplex" even when set to full-duplex - Fixed a problem where the "revert consmenu" command did not revert inband_break - Removed inter-character timeout (aka idletime) option from TS 8/16 CLI because the hardware, and hence the firmware, does not support the feature - Fixed a problem where the SNMP charPortName field could not be set via SNMP - ENHANCEMENTS - Added autodrain option to the "set ports" command. This allows the serial side of an autoconnect connection to drain after receiving a close from the network connection - Added delaylogprompt option to the "set logins/netlogins" command This allows a delay between the time when a connection is made and the login prompt is displayed. It is used when modem connect output interferes with the login prompt - Added Advance Digi Discovery Protocol (ADDP) to the of services that can be enabled/disabled via the "set secureaccess" command - For UDP Sockets profile, the UDP Client behavior has changed. Whereas before one was forced to always manually enter a return address, now the behavior is: UDP Client: Serial data received is automatically returned to the last UDP client that sent data. You can override or lock-down the destination by entering 1 or more IP and port pairs below. All serial data is repeated as UDP unicast to all devices in this list. - Under UDP Sockets Client, the default idle time delay was reduced to 100msec, it had been 1000msec (1 sec) - Added the following options to the set secureaccess command in the CLI: ssh-keyauth=on|off - Allow authentication using a public key ssh-pwdauth=on|off - Allow password authentication What these options do is determine which methods of authentication are allowable when negotiating for an SSH connection. When ssh-keyauth is enabled, public key authentication is an allowable method, when ssh-pwdauth is selected, password authentication is valid. The default is for both to be enabled which will allow a client to select and use either method. It is possible to turn them both off, however no authentication will then be possible and SSH connections will fail. KNOWN LIMITATIONS - Device performance may be affected if rpauth is enabled and the shared secret does not match the driver setting. - Once a device is authenticated using RealPort Authentication it will stay authenticated for the duration of the RealPort session. If you change the rpauth state=disabled, you will need to reboot the device or restart the RealPort service. Simply closing the port does NOT stop the RealPort session. - Because the modem init string is sent out for ALL dev types (min/mio/mout) the firmware does NOT force the ATS0=1 auto-answer out of the init string. This means on a TS1/3M set to modem out it MAY still auto-answer unless this setting has been removed from the init string. - Microsoft Internet Explorer 6 Service Pack 1 (SP1) has a known problem where it displays the error message "Internet Explorer Cannot Open" when you use an HTTPS URL to access this Digi product. The following Microsoft article explains the problem: http://support.microsoft.com/default.aspx?kbid=812935 POST & FIRMWARE UPDATE ****NOTE************************************************************** * If your device is running POST version 82001178_A or later, * * you will not need to update the POST. Ignore the instructions for * * updating the POST. * ********************************************************************** You can update the POST and/or firmware of your device server either through the device server's web interface or command line interface. NOTE: When updating the firmware of your device server to a new version, please ensure that you are running the most recent POST as well. If you need to update your POST, it must be done BEFORE the firmware update. For a wireless device server (Digi One TS W or PortServer TS 2/4 W), please ensure that you are running POST 82000826_D or higher. For a wired device server (Digi One TS, PortServer TS 2/4, etc.), please ensure that you are running POST 82000751_D or higher. POST update via the web interface --------------------------------- Log on to the device server's web interface. Go to Administration > Update Firmware. In the From a File section, select POST from the Update list. Click Browse... and navigate to the POST file. Click Open, then click Update. When the update process has finished, click Reboot to restart the device server. POST update via the command line interface ------------------------------------------ This option requires a TFTP server. First, copy the POST image to the TFTP server. Then, log on to the device server's command line interface and update the POST with the following command: WIRELESS: boot load-boot=:82000826_.bin WIRED: boot load-boot=:82000751_.bin When the update process has finished, restart the device server with the following command: boot action=reset Firmware update via the web interface ------------------------------------- Log on to the device server's web interface. Go to Administration > Update Firmware. In the From a File section, select Firmware from the Update list. Click Browse... and navigate to the firmware file. Click Open, then click Update. When the update process has finished, click Reboot to restart the device server. Firmware update via the command line unterface ---------------------------------------------- This option requires a TFTP server. First, copy the firmware image to the TFTP server. Then, log on to the device server's command line interface and update the firmware with the following command: boot load=:82000747_.bin When the update process has finished, restart the device server with the following command: boot action=reset HISTORY 2007-02-26: 82000747_T1 Enhancements: Enable TCP keepalives for SSHv2 service 2006-12-21: 82000747_T Enhancements: - Add support for the PortServer TS 1/2/4/ Haz MEI products. - Added RealPort exclusive option. Allow only one session per client. New connects from the same driver will kill old presumed dead serial port connections. - 'set config base' base socket maximum is now 60000. Bug Fixes: - Fixed a problem where changing the primary DNS server caused the secondary and tertiary servers to disappear. - Improve escape character processing in telnet. - Fixed a Javascript error on the DNS config page. 2006-04-28: 82000747_S Enhancements: - Added RealPort keepalive option to WebUI. - Added Modbus report by exception. - Enabled RADIUS support - Added auth filtering for SNMP via the "set snmpauth" command - Added ability to specify secondary and tertiary DNS servers - Added new trace feature that: o Allows logins/logouts to be traced including login ID and where connected from. It can be enabled with "set trace mask=login:info o Makes syslog, systime, loghost, and mask=login:info persistent over reboots - Added the "ignorefilterid=on|off" option to the "set radius" command. Allows unknown filter attributes to be ignored. Known filters are processed normally Bug Fixes: - Fixed TCP keepalives on RealPort. - Fixed Pmodem issue where Pmodem connections were not in the who or connections list. - Fixed Pmodem problem where a dialout sometimes disconnected right away. - Fixed Pmodem problem where the Pmodem escape "+++" was going across the connection. - Fixed Pmodem problem where AT commands that looked like hex digits were being incorrectly interpretted as such (e.g. atv0x4). - Fixed various IA related WebUI issues. - Fixed a problem where a WebUI HTTPS connection was directed to HTTP after a reboot. - Worked-around an Internet Explorer browser bug (KB Q323308) which prevented the configuration from being backed up using HTTPS. - Fixed a DHCP problem where leases greater than 50 days would result in constant DHCP requests - Fixed a problem where on a netcx error, the socket isn't always closed 2005-10-13: 82000747_R2 2005-10-13: 82000747_R1 Bug Fixes: - Fixed a problem that existed only in the R release where IA protocols such as Modbus and Custom would get out of sync resulting in the wrong response returned for a given request. 2005-09-16: 82000747_R Enhancements: - Added SSL/TLS autoconnect service support. - Extended DHCP to pass the hostname (via option 12) as a hint to DHCP server when requesting IP address. - Added authentication support to RealPort. Bug Fixes: - Fixed problem where the device rebooted after 50 days. - Fixed several PPP authentication problems. In particular a problem was fixed where in some cases CHAP authentication did not work correctly when authenticating in both directions. - Fixed a PPP problem where receiving particular LCP option message caused the device to reboot. - Fixed problem where a serial port being idle for about 30 days would stop receiving data for the next 30 days. - Fixed a problem where the serial port modem lines were not hanging up when they should have been. - Fixed a problem with port buffering feature where a NUL byte would truncate buffered data. - Fixed WEBUI problems related to PPP and Industrial Automation. 2005-04-21: 82000747_P Enhancements: - Improvements to modem emulation peformance and features. Added capability to save and restore modem registers using AT commands. - Added DHCP client FQDN (DHCP option 81) support. This allows the device to send a domain name to the DHCP server with the intention that the DHCP server will use the domain name when choosing the IP address to assign to the device. Bug Fixes: - Fixed a problem with PPP CHAP authentication that occurred when a peer would send a CHAP challenge greater than 16 bytes and the incorrect CHAP challenge response was being returned. - Fixed a problem where the device would reboot when running a PPP connection and manually adding certain types of routes. - Fixed a problem where the device was not routing supernet type routes correctly. - Fixed a problem where our device was failing to properly negotiate RFC2217 options. - Fixed a problem with auto connect telnet and auto connect rlogin where escape characters would cause the connection to escape to the command line prompt. - Fixed a problem where it was not possible to disable escape characters for telnet, rlogin, and connect sessions. - Fixed a problem where rapidly opening and closing serial socket connections was causing a serial port to get stuck. - Fixed a problem where auto connections configured with raw IP addresses were slow to connect when a bad DNS server was configured. - Fixed a problem where auto connect was sometimes losing data if large amounts of data was being sent while the network connection was being established. - Fixed a problem where a raw auto connection was failing to establish a network connection when the data byte 0x03 was being sent during connection establishment. - Fixed a problem with the auto connect flush character option. This option was causing more than a single byte of data to be flushed. Furthermore the default setting for raw connections and connections when the serial device type was not term was incorrectly flushing data. - Fixed a problem where an error message was being returned when using the "set user" command to configure an auto connection with a DNS destination address. - Fixed some bugs with IA custom protocol and half-duplex where a master or slave not fully half-duplex could cause problems. - Fixed the "splithorizon" feature configurable using the "set forwarding" command. It was doing the opposite of what it should have been doing. - Fixed problems with logport feature coming up with incorrect defaults from factory. - Fixed a problem where the list of access points was not being displayed correctly when doing a "display wlan" command from the command line. - Fixed a problem in the WEB UI where the serial duplex setting was not being shown correctly. 2005-02-14: 82000747_N2 Enhancements: - Enhanced the IA Custom protocol to manage transaction buffers up to 8190 bytes; old maximum was 530 bytes. Includes a new telnet/CLI command "set ia serial range=y buffers=x" where x is 32 to 8190. - Enhanced PPP to allow use of IP addresses in the Ethernet subnet address range. - Added a Web Browser based PPP Wizard to help setup PPP usage. - Allows minimum base TCP socket port of 0 - In the TS 1/3 M (with embedded modem) the init string is sent to the modem for dev=min, mout, mio (incoming, outgoing, and bi-directional). Previously it only was sent for dev=mio. Bug Fixes: - IA engine (Custom and Modbus protocol) is now included in the TS2 products. They were mistakenly excluded in "N" and "N1". - Fixed Modbus issue when different priorities are selected for multiple network masters - Fixed Modbus timeout issue with slow slave device that include gaps within the response. - Fixed Modbus issue when multiple serial ports are processing in parallel and responses return in different order than requests were received. - Fixed bug where port sharing settings were not being saved to backup file. - Fixed issues in IA Custom for half-duplex when Master is not strictly functioning in a half-duplex manner. 2004-12-20: 82000747_N1 Enhancements: - Added support for new product naming convention. - Added ping watchdog feature for wireless devices. - Added support for new boot/POST code that is shared by the new devices. - Added support for virtual access points. - Improved the wireless user interfaces. - Wireless improvements. Bug Fixes: - Fixed a hang or corupted data when there are 8 or more wireless access points. - Fixed a bug when connecting multiple net-slaves to the same IP address but different ports. - Fixed wlanReceiveSignalStrength SNMP response. It was reporting NULL when the radio was not associated with an access point. - Fixed a bug in the "display power" command. 2004-08-06: 82000747_N Enhancements: - Added support for Digi RPM products - Added Port Sharing - Increased maximum port buffer size from 64 kB to 1 MB - Simplified methodology of entering menus in web interface - Added one-stop wizard to web interface for configuring PPP IA Related Enhancements: - Added support for Modbus/UDP (Modbus/TCP format in UDP/IP) - Added support for 64 incoming and 64 outgoing sockets. Each serial or UDP Master reduces this number by 1. - Added support to allow all Master/Clients to route to all Slave/Servers. - Added support for up to 64 destination entries or routes per table. Previous version supported 12. - Added support for use of DNS names as destination entries or routes in tables. - Added support for use of slave address as final octet of IP address of destination entries (or routes) in tables. - The device now assumes an "own" IP for any missing octets in IP address of destination entries (or routes) in tables. - Multiple Masters can be defined for the same protocol now. - Masters can be defined as read-only (Modbus only). - Modbus Servers are discarding duplicate requests now. Bug Fixes: - Fixed issue when Modbus client rapidly open/closes sockets (i.e. Modicon PLC) - Fixed Windows RealPort issue where 0xFF values in Modbus/RTU affected - Reinitializing modem after a close on PortServer TS + Modem products now - Added WEP key index for PortServer TS W products 2004-04-13: 82000747_M1 - Fixed issue with RealPort being used with mio devtype on PortServer TS 1/3 + Modem 2004-01-26: 82000747_M - Added support for PortServer TS 1/3 + Modem products 2003-11-21: 82000747_K1 - Fixed "show wlan" command behavior with many access points available. - Fixed non-wireless behavior when network is unavailable at boot. 2003-09-14: 82000747_K - Added SSL/Secure RealPort - Added HTTPS, Secure Sockets, Authentication - Added Power Management - Added Reverse SSH - New web user interface for Configuration and Management - Added Wireless support to 82000747 (82000829 will no longer be used) - Added Device Discovery enhancements including discovery of misconfigured devices and enable/disable DHCP - Modem emulation enhancements including additional modem emulation AT commands and modem emulation now works with hunt groups - Added serial idle timer - Added the DHCP ignore keepalive - Added additional SNMP traps (RFC 1215) - Added Telnet 2217 support with modem emulation - Removed requirement that base socket be a multiple of 100 - DCD emulation on TCP socket connections - Added additional countries to the list of supported wireless countries - Fixed menues so that the admin command works correctly - Fixed a reboot problem when SSH is used via WAN into NAT - Fixed a SSH hang on Digi One TS - Fixed a bring-up filter problem on an outbound PPP connection