Archived release notes

Version 3.2.6

Release Date: December 1, 2025

Improvements/Updates

• Transparent Mode Support on SFP Ports: Added functionality to enable transparent mode for SFP interface.
• Rule Hit Counting Introduced: a feature to track and display the number of times each rule is matched, providing better visibility and analytics.
• UI/UX Enhancement.

Version 3.2.5

Release Date: November 11, 2025

Improvements/Updates

• OT Security Sensor Integration
• Improved OTA Integration
• Added password protection for exporting configuration as a text file to improve security.
• Improved rule handling in Transparent mode to preserve rule order when editing or adding new rules.
• UI/UX Improvements & Bug Fixes

Version 3.2.4

Release Date: September 26, 2025

Improvements/Updates

• Enhanced Login Feedback: Updated the general error message displayed when login fails
• Improved Protocol Validation: Strengthened format validation for NTP and SNMP
• SSH Brute-Force Protection: Implemented measures to prevent brute-force attacks on SSH access.
• IP Spoofing Control for Auto-Learned Traffic: Added a new setting to enable or disable IP Spoofing protection specifically for automatically learned traffic.
• Object Management Enhancement: Now supports the use of hyphen characters in object names.
• Alert Page Pagination: Improved pagination for better navigation and performance on the Alert page.
• UI/UX Enhancements & Bug Fixes

Version 3.2.3

Release Date: August 08, 2025

New Features

• Universal Traffic Learning: Firewall Learning Mode is now supported on all interfaces in both Routing and Transparent modes for greater policy creation flexibility.
• OPC Classic Support: Added Deep Packet Inspection for OPC HDA (Historical Data Access) and OPC A&E (Alarms & Events) protocols.

Improvements/Updates

• Improve Import/Export Firewall Rules.
• Improve Live Packet Capture
• Improve OT Access integration.
• Support resetting to Default for Port Configuration
• Minor bug fixed.

Version 3.2.2

Release Date: July 07, 2025

New Features

• Deep Packet Inspection (DPI) support for OPC DA protocol.
• Ability to configure the Management Interface on SFP ports.

Improvements/Updates

• VPN Enhancements:

  • Added support for Route-Based Policy in IPSec.
  • Display of connected clients for OpenVPN.
  • Support for multiple OpenVPN server instances.

• Minor bug fixes

Version 3.2.1

Release Date: May 30, 2025

Improvements/Updates

• Minor UI/UX enhancements and bug fixes.

Version 3.2.0

Release Date: May 16, 2025

New Features

• VPN Support: Added support for both IPSec and OpenVPN.
• Factory Reset: Restore the device to factory default settings.
• Full Configuration Import/Export: Export and import complete device configurations in JSON format.

Improvements/Updates

• NAT Rule Validation: Enhanced validation logic to prevent misconfigurations.
• DDoS/DoS Protection: Improved detection and mitigation in Transparent Mode.
• Support Add/Edit/Remove rule at Learning Mode
• Improve UI/UX and bug Fixes

Version 3.2.0

Release Date: May 16, 2025

New Features

• VPN Support: Added support for both IPSec and OpenVPN
• Factory Reset: Restore the device to factory default settings.
• Full Configuration Import/Export: Export and import complete device configurations in JSON format.

Improvements/Updates

• NAT Rule Validation: Enhanced validation logic to prevent misconfigurations.
• DDoS/DoS Protection: Improved detection and mitigation in Transparent Mode.
• Support Add/Edit/Remove rule at Learning Mode
• Improve UI/UX and bug Fixes

Version 3.1.4

Release Date: April 4, 2025

Improvements/Updates:

• Enhance navigation and ensure consistency across the application.

  1. Navigation:

     • Updated "Search" field UI to match OPSWAT design system.
     • Converted some level 4 menu items into tabs under level 3.

  2. Breadcrumbs:

     • Ensured all pages have correct and consistent breadcrumbs.

  3. Component Consistency:

     • Aligned primary buttons with the design system and breadcrumb.
     • Applied correct styles to "Search" and "Filter" components.
     • Made secondary buttons visible.
     • Styled modals correctly and centered them.

• Bug Fixes

Version 3.1.3

Release Date: March 7, 2025

New Features

• Custom DPI Profiles: Support for creating DPI profiles for Ethernet/IP.
• Non-OT Protocol Validation: Validate formats for HTTP, HTTPS, SNMP, TELNET, DNS, and DHCP protocols. Improved SSH protocol support across multiple versions.
• Network Capture: Export PCAP files without a password.

Improvements/Updates

• Default Mode: The firewall defaults to Transparent mode.
• Update License Mechanism: Users can use the device without needing to upload a license file.
• Dual Mode: Smoother switching between Transparent and Routing modes.
• Rate Limiting: Implemented rate limiting for Transparent mode.
• UI/UX Improvements: Enhancements to firewall rules and setting modes.
• Memory Consumption: Reduced memory usage.
• Bug Fixes

Version 3.1.2

Release Date: February 7, 2025

New Features

• Bidirectional Protection: Enable LAN ⇔ DEVICE traffic control in Transparent Mode.

• Custom DPI Profiles: Support creating DPI profiles for BN3500.

• Advanced Firewall Rules: Add subnet masks, IP ranges, and port ranges for Routing Mode rules.

• Non-OT Protocol Validation: Validate formats for ICMP, FTP, SMB, TIME, RDP, VNC, SMTP and NTP protocols.

• OT Protocol Validation: Validate formats for all the OT protocols that we support for DPI

• Web Access Restriction: Restrict web UI access to specific IP addresses.

• User Management: Allow multiple user accounts for web UI access.

• Enhanced NAT 1:1: Support multiple NAT 1:1 configuration by enabling the use of virtual IPs on physical interfaces.

• Rate Limiting:

  • Apply bandwidth rate limits on specific firewall rules for Routing and Transparent mode.
  • Apply limiting packet per second for Routing mode.

• Dual Mode: Simultaneous operation of Transparent and Routing Modes.

• Implement System Rule page:

  • Display active system ports (e.g., SSH, HTTPS, Remote Syslog, Routing Port…).
  • Add OTAccess rules for remote connections with OTA integration.

• Object Management: Save group of IP addresses with meaningful names.

• DHCP Support: Available for Physical, VLAN and Bridge Interfaces.

• VRRP Support

UI/UX Improvements:

• Implement settings search for easier navigation.
• Option to hide/unhide Transparent/Routing settings.

Version 3.1.0

Release Date: 29 November 2024

New Features

• Firewall Learning Mode: Now supported in Routing Mode, enabling smarter and adaptive rule creation.
• Dynamic Routing: Added support for RIP and OSPF protocols, improving routing flexibility.
• Routing Redundancy: Integrated Virtual Router Redundancy Protocol (VRRP) for enhanced network failover.
• Support for VLAN configuration
• Bridging functionality
• Proxy ARP support for efficient IP management

Version 3.0.1

Release Date: 25 September 2024

Bug Fixes

• The rule for transparent mode was removed when applying the backup file.
• The Masquerade rules and pinging to the LAN port.

Version 3.0.0

Release Date: 26 August 2024

New Features

Support Routing mode:

• Port Base Routing: Allows routing based on specific ports for granular control of network traffic.

• Support NAT (1:1, Port Forwarding, Masquerade)

  • 1:1: Direct mapping between internal and external IPs.
  • Port Forwarding: Redirects specific port traffic to internal IPs.
  • Masquerade: Maps multiple local devices to a single public IP.

• Support Static Routing: Manual configuration of routing paths for consistent and predictable network traffic.

DPI Enhancements:

• Support for new protocols in the DPI engine.
• Support creating DPI Profile (Modbus, DNP3, MQTT, PROFINET-PTCP)

Improve new UI:

• Support Dashboard: Centralized view of device status, performance metrics, and security alerts.
• Improving the settings page: More user-friendly with better organization and clearer configuration options.

DOS/DDOS prevention:

• ICMP Protection: Filters malicious ICMP packets to prevent attacks like ping floods.
• Null Scan Filter Function: Blocks null scan attacks by filtering packets with no flags set.
• Xmas Filter Function: Prevents Xmas scan attacks by blocking packets with FIN, URG, and PSH flags set.
• SYN/FIN Filter Function: Detects and blocks SYN/FIN scan attacks.
• TCP Offset Protection Function: Ensures TCP packets have valid offsets to prevent manipulation.
• Min. Header Size Filter Function: Blocks packets below the minimum TCP header size to prevent attacks with malformed packets.

Support OTAccess Integration.