En el mismo día que se realizaba el UWC en Buenos Aires, la gente de Ubiquiti publicó una actualización de Firmware para el AirOS en su versión v5.5.2.
Los cambios y arreglos son varios tanto a nivel de funcionamiento como de la interfaz web de configuración. Se ve que Ubiquiti le esta dando mucha importancia al tema de la seguridad en sus dispositivos y es por eso que ha agregado certificados SSL en todas las interfaces web, encriptando toda la información que se trafica entre el dispositivo y el navegador. Ahora viene activo por defecto el acceso por HTTPS y se ha removido la funcionalidad admin.cgi (ésta era explotada por la vulnerabilidad de acceso).
Algo que encontré gracias a esta actualización es que Ubiquiti dispone de unos equipos especiales NanoStation M6 los cuales pueden trabajar en las frecuencias de 5.9 Ghz a 6.4Ghz, rango que tienen permitido utilizar los operadores de telecomunicaciones en Rusia (es por ello que ésta versión solo está disponible en ese país).
El listado de cambio completo es:
==================================================================== Version 5.5.2-Service Release (August 17, 2012) ---------------------------------------------- New product support: - New: Rocket M2 Titanium - New: Rocket M5 Titanium - New: NanoStation M6 Regional Updates: - New: Enable DFS frequencies for US/Puerto Rico/ Canada for NanoStationM5/Loco M5/Rocket M5/Rocket M5 GPS/NanoBridge M5 models - New: Lock Indonesia country code: once selected at Login page do not allow to change country unless reset to defaults - New: Remove DFS enable/disable option for Austria, turn DFS ON after upgrade for Austria. Keep DFS enable/disable option for rest of EU countries - Fix: Regulatory rules update for India 2.4GHz band - Fix: Move Puerto Rico under US regulatory domain Fixes: - Fix: AirMax: When one of the clients reboot all others are disconnected from AP - Fix: AirMax: Unexpected device reboots on high load/PTMP (possible fix) - Fix: Traffic shaping ingress rules on LAN port in some cases block Internet traffic - Fix: Traffic shaping bursting is increased to the maximum allowed value according to configured throughput limits - Fix: Association to non-broadcasting SSID CISCO AP takes couple minutes - Fix: Complex AP-repeater setup creates loop in this network - Fix: Increase Password attribute length to 18 when sending empty password to RADIUS server - Fix: Auto Channel selection logic improvement - Fix: DFS: Allow UNII-2 band for Canada w/o unlock key for approved product models - Fix: Traffic Shaper rules changes during upgrade from v5.3.5 - Fix: PPPoE stops sending PPPoE Discovery packets on time change - Fix: NBM3/NBM365 should support 2 Ethernet ports but shows only 1. - Fix: Aggregated transmission problems with some Apple laptops and other devices - Fix: Clients can't reconnect to AP with WPA2-AES security reason (15) - Fix: After upgrade from v5.3.5 to v5.5 secondary Ethernet port isn't configured (running default configuration) - Fix: Stations disassociation because of returned broadcast packets on Ethernet interface - Fix: Second LAN port MTU max is 2024B not 1614B (affected all M series products) - Fix: No Internet connection for clients behind device in router mode - Fix: Access Point ignores Session-Timeout limit received from RADIUS server - Fix: Reduce false positives and misclassifications of invalid DFS radar events - Fix: Can't launch Airview when initial window disabled - Fix: Making changes in Network tab resets MTU to 1500 when Management VLAN is enabled - Fix: Incorrect ebtables VLAN drop rules - Fix: Do not allow to upload Configuration file from different Regulatory domain - Fix: Port Forwarding public port range issue - WEB UI: Show DFS status in MAIN page - WEB UI: airSync: Show correct default slots depending on channel size - WEB UI: Static route disappears in Router mode - WEB UI: Option to disable Multicast Enhancement for AP - WEB UI: Improved IP address validation - WEB UI: Don't enable "DMZ Management Ports" when DMZ is enabled (Router/SOHO Router) - WEB UI: Bridge table display problem. Table too big - WEB UI: Do not show graph for interface when it is not in use - WEB UI: Don't report TOUGHSwitch/airCam WLAN mode in device discovery results - WEB UI: Add Turkish language support - WEB UI: In Simple configuration mode LAN should be BRIDGE0 containing both Ethernet interfaces - WEB UI: Show the same antenna information in MAIN page as in Wireless settings page drop down - WEB UI: Site Survey Scan button is disabled under IE browser - WEB UI: Allow MAC Cloning for BRIDGE interface in Router mode - WEB UI: Bridge table is not displayed in Main page when there are multiple bridge Security Improvements: - WEB UI: Default settings change: Enable HTTPS (port 443) by default - WEB UI: Removed admin.cgi functionality - WEB UI: Add option to disable HTTP service - WEB UI: Add reminder when using default admin user name/ password
Grupo MKE SAS
