Note: The ER-X/ER-X-SFP/EP-R6 has more limited storage, and in some cases upgrade may fail due to not enough space. If this happens, remove the old backup image first (using "delete system image" command, seeherefor more details) before doing upgrade.
More details can be found in the release notes below. I would like to thank everyone for their participation in the community, as always helping with testing, reporting issues, providing feedback, suggestions! We certainly could not have done it without you Thank you very much!
[Release Notes v1.9.7]
Changes since v220.127.116.11
[UNMS] Add UNMS support (Ubiquiti Network Management System)
[DHCPv6] Fix bug when prefix-delegation was not written correctly to dhcpv6.conf file. Discussedhere
[DHCP] Fix regression that was introduced in 1.9.1 when DHCP server did not register client hostname. Discussedhere
[DHCP] Fix bug where DHCP address was not renewed for pseudo-ethernet interfaces. Discussedhere
[IPv6] Deprecate the “set system ipv6 blacklist” CLI command because it is causing boot error when saved
[IPv6] Fix bug when DNS server was not removed from “resolv.conf” when releasing PD interface
[IPv6] Fix bug when radvd stopped after PPoE connection drop. Discussedhere
[IPv6] Fixed bug when radvd was restarted upon each DHCPv6 renewal. Discussedhere
[IPv6] Fix bug when “delete interfaces ethernet ethX ipv6 address autoconf” set wrong value of “accept_ra” sysctl value
[IPv6] Remove misleading radvd warning about all-zeroes prefix not being allowed. Discussedhere
[IPv6] Fix bug when IPv6 address disappeared from interface after reboot. Discussedhere
[IPv6] Fix bug when EdgeRouter did not receive IPv6 nameservers from ISP. Discussedhere
[L2TPv3] Fix bug when l2tpv3 interface was not updated in kernel. Discussedhere
[IPSec] Fix bug when IPsec site-to-site VPN sometimes was not reestablished after reset of either side
[DNS] Fix bug when “show dns forwarding statistics” was showing errors if dnsmasq was enabled
[DPI] Updated DPI signatures to version 1.302
[UBNT-discovery] Fix possible DDOS attack via UBNT-discovery protocol
[UBNT-discovery] Fix DoS attack vulnerability via UBNT-discover protocol that allowed remote user to reboot router without providing credentials
[Conntrack] Fix bug in CLI when showing and deleting conntrack entry by source doesn't work.
[WebGUI] RemovePHP and rewrite web backend toPython.
Warning !!! if you use some 3rd party software that depends onPHPthen you will need to installPHPmanually because PHP will not be included in EdgeRouter firmwareanymore.
[WebGUI] Fix bug in Basic Setup wizard when DHCPv6 PD prefix-length was set to /64
[WebGUI] Fix bug when wrong internet port was selected in "WAN+2LAN2" wizard on ER-X
[WebGUI] Fix CSRF vulnerability when uploading files
[WebGUI] Fix XSS vulnerability via login page
[WebGUI] Fix broken IPv6 redirects. Discussed here
[Upgrade] Clear APT cache and delete core files before doing upgrade. Discussedhere.
[Backup] Exclude webproxy DB from config backup. Discussedhere.
[RTSP] Add CLI command to enabled RTSP conntrack/nat module. DiscussedhereandhereBy default RTSP module is disabled and following config entry enables it:
ubnt@r1# set system conntrack modules rtsp enable
Saving configuration to '/config/config.boot'...
[Kernel] Backport ipset hash:mac support from upstream kernel
[Kernel] IncreaseNAPI_WEIGHTto 64 to solve packet-loss issue
[System] Fix filesystem storage leak when doing factory reset
[System] Fixed random bootloader hang on ER-8-XG
[System] Add new CLI command that allows admin to change number of CPU cores used for packet processing. To fix packet reordering issue admin needs to set packet-rx-core-num to1. Thisworkaroundwas discussedhere.