DFL-200/700/1100 Firmware Release Notes  

Firmware: 1.34.00
Hardware: A1, A2 
Date: March 31, 2006

Enhancements:

- Implementing H.323 ALG in DFL-700 and DFL-1100.

- Now possible to set the MAC address of the WAN interface manually if required.


Fixes:

- It was not possible to connect to the WebUI through a PPTP/L2TP tunnel

- The web browser could stall on some pages when using HTTP ALG

- HTTP ALG now allows compressed data. The HTTP ALG always asked the Web server not to send compressed data as this does not work with content stripping. The HTTP ALG will now allow the server to send compressed data as long as the HTTP ALG isn't configured to do content stripping.

- IKE vulnerability: The IKE library was not performing sufficiently rigorous checks on the validity of IKEv1 packets received from the network.

- Telstra BigPond clients did not use the correct authentication server

- Make UTF-8 checks optional in the HTTP ALG

- The configuration file was not correctly parsed when configuring IDlist, ID type=IP

- Not possible to configure ID list, ID type=DNS

- Added a delay after downloading the new IDS signature database. Earlier the firewall reconfigured immediately after a successful download.




Firmware: 1.33.00
Hardware: A1
Date: May 24, 2005

Fixes

#2700 - Possible crash when an active L2TP tunnel was removed from configuration.

        Affects dfl-1.30 and up.

#2791 - Some E100 interfaces don’t report the correct link status.

        Affects dfl-1.00 and up (DFL-1100 only).

#2822 - Advanced settings for the DHCP client changed to work with the European
        ISP Telia.

        Affects dfl-1.00 and up.

#2831 - A statically configured host could prevent a DHCP enabled host with
        Windows as host OS from receiving an "valid" IP.

        Affects dfl-1.00 and up.

#2834 - High DHCPRelayer load can cause a transaction recycle bug resulting
        in the relayer stalling.

        Affects dfl-1.00 and up.
        
#2839 - An username or password containing some special characters could not
        log in to a HTTPS session.

        Affects dfl-1.00 and up.


Minor fixes

#2826 - PPTP and L2TP are now logging the authenticated user and assigned IP after
        completed ppp negotiation.

        Affects dfl-1.30 and up.

Changes

      - Rebuilt IDS signature database.

#2850 - Restart timers were the same for DFL-200/700/1100. The timers are now
        modified to suit the models different startup times better.

#2859 - Warning added on the firmware upload page.