redborder release notes

Feature #16324, #16695: Show Client MAC Address tab in Mobility

Feature #16549: Show Client MAC Vendor tab in Mobility

Feature #16345: Add cache system to improve number of API calls to Aruba Central service

Improvement #16375: Optimization in the way Mobility process pipeline work with its cache system

Improvement #16443: Add search box for some Mobility tabs

Improvement #16498: Update our MAC Vendor list used to enrich events

Improvement #16050: Add option to show last value by default in Multiser/serie widgets

Improvement #16558: Add associated clients that dont have x and y defined setting the closest AP x and y in Aruba Central service

Improvement #16626, #16677: Add compare view for Mobility

Improvement #16570: Ignore zone static devices (devices that dont change zones in last 24h)

BugFix #16332, #16444, #16405: Multiple fixes to improve Aruba Central service

BugFix #16372, #16414, #16445, #16368, #16523, #16531: Multipe fixes in Mobility module

BugFix #16388: Fix nmspd service dont restart when applying new configuration

BugFix #16492, #16468: Wrong order in the MAC Vendor enrich process was causing duplicate events for some Modules

BugFix #16495, #16478: MAC Vendor Enriching was missing in Mobility and NMSP pipelines

BugFix #16406: Fix cannot time select in Access Point sensor view

BugFix #16483: Missing Client Mac Vendor in Mobility and Wireless

BugFix #16557: Fix Floor level is not store on floor creation

BugFix #16299: Fix listen IP for sflow service

BugFix #16641: Fix multiple translation missing

BugFix #16456: Fix missing images on email sent after user creation and remove old social links

Feature #16032: Added box type widget to Mobility

Feature #16130: Added compare and export to CSV features to Mobility

Feature #15862: Now we support Aruba Central for Mobility information

Feature #15965: Added Access Points alarms

Improvement #16007: Now we can enable/disable overview widgets in General Settings

Improvement #16040: Pie Charts can now be set to always display the higher value

BugFix #16077, #16013: Missing client count information in Access Points overview

BugFix #16093: Fixed error in the way we show data in Horizontal Bar Widget

BugFix #16074: Fixed time filter not being humanized in Mobility module

BugFix #15962: Fixed Quality metric in Mobility

BugFix #15947: Fixed error showing multiple metrics in Mobility

BugFix #16129: Fixed Mobility table widget ignoring its time range configuration

BugFix #16128: Fixed table widget not showing data correctly

BugFix #16208: Fixed generation of nmsp keys in Manager using the wrong interface

BugFix #16062: Sometimes installation was failing due to missing Chef configuration (client.pem))

None in this release

None in this release

BugFix #11939: Fix webui timeout when define ips rule actions

BugFix #12967, #15757: Fix access point position on widget

BugFix #13682, #15376: Fix rule version view

BugFix #13705: Fix importing sensors with same name

BugFix #13707: Fix error with graph types in vault

BugFix #14199, #14211: Fix multiples bug in scanner

BugFix #14365: Fix duplicate tab in malware unique view

BugFix #15717: Fix get outliers from webui

BugFix #15561, #15617, #15632, #15672: Fix multiple bugs related with dashboard creation and sharing

BugFix #15658: Fix outliers with multiples namespaces

BugFix #15688: Fix cannot add gps marker on map bottom corner

BugFix #15692: Fix access point description with multiple lines cause problems in webui

BugFix #15706: Fix web map not showing well on full screen mode

None in this release

Improvement #14565, #15373: Update rb-monitor and logstash monitor capabilities

BugFix #10970: Fix correlation engine service

BugFix #11483, #15500: Fix visualization error for non admin users in Cluster Settings

BugFix #12903, #15476: Fix minor translation errors in Floor Map view

BugFix #13977: Fix assigned tabs for bulkstat and redfish monitors

BugFix #14524: No mongod is only enabled in master nodes

BugFix #15310: Fix motd of mail gateway

BugFix #15377: Fix non scape of ( ) character using "contains" in filters

BugFix #15394: Fix upper and bottom limit alarms form bug

BugFix #15437: Fix error during Sensor Tree exportation when missing floor map images

BugFix #15445: Disable epel-release repo by default

BugFix #15446: Remove elrepo repo

BugFix #15499: Fix screen blocked for non admin users in create filter policy

BugFix #15505: Fix critical bug that could allow RCE on Monitor Categories

BugFix #15521: Fix sensor import when one of the sensors is from a module that is not load on rb-webui service

BugFix #15532: Fix slack icon on Alarms table view

BugFix #15533: Fix missing creation of malware kafka topic

BugFix #15539: Now creation of topic when there is a new namespace is only made from the Master node

Feature #14481: Create alarms over outliers detection

Feature #14532: Update ndpi on sflow pipeline

Feature #14646: Dynamic file preprocessor rules generation (file filter policies)

Feature #14974: Add URL block capabilities to IPS

Feature #14997: Now we can drop files based on size and type (Snort)

Feature #15089: Limit the number of backups stored

Feature #15152: New disk wiper utility on the boot menu

Feature #15382: New Traffic Map tab in Flow module

Improvement #14510, #14527: Add observation id support for sflow

Improvement #14565: Add logstash monitoring capabilities

Improvement #14705: Update ca-certificates

Improvement #14955: Modify iplist_script.rh to not delete malware agent lists

Improvement #14965: Improve rb_sysconf

Improvement #15024: Add rb-malware-agent to rb_check

Improvement #15116: Add filter rows in Scatterplot

Improvement #15131: Disable social module by default

Improvement #15139, #15327: Add "please wait" when updating General Settings

Improvement #15140: Add extra options in Outliers detector

Improvement #15201: Always draw the prediction line on outliers detection

Improvement #15233: Add possibility to change model options in outliers detection

Improvement #15347: Improve training data interval in outliers detection

Improvement #15373: Update monitor service

BugFix #14427: Fix special characters not well escaped in file_uri (intrusion) and file_name (malware)

BugFix #14496: Fix nginx and chef-mover service was not starting after installation

BugFix #14521, #15277, #15296: Fix fuzzy malware pipeline

BugFix #14549: Fix sflow tag

BugFix #14559: Add dns name resolution for IPs in CSV exportation

BugFix #14592: Fix broken malware settings view

BugFix #14612: Fix duplicated severity on Yara rules

BugFix #14655: Fix new filter policy was remebering previous filter policy

BugFix #14677: Missing rb-reputation domain in /etc/hosts

BugFix #14681: Fix rb-reputation domain was not dynamic on rb-malware-agent

BugFix #14690: Fix rb-malware-agent service (http poll)

BugFix #14694: Add rb-malware-agent in rb_get_services.sh

BugFix #14713: Always send reload signals to snort in rb-malware-agent

BugFix #14851: Fix hostname in rb_sysconf

BugFix #14951: Fix segmentation fault when reloading via unix socket (IPs)

BugFix #15077: Malware Agent should make requests via https

BugFix #15104: Fix rb-malware-agent not cleaning when removing instances (CPUs)

BugFix #15115: Fix outliers on empty namespaces

BugFix #15150: Monitor segments view was broken

BugFix #15151: Avoid extending usb disk during first boot

BugFix #15157: Fix missing translation in scanner module

BugFix #15176: Fix ntpd in IPS

BugFix #15177: Fix snmpd in IPS

BugFix #15195: Duplicated snmpd inm rb_get_services.sh (mail gateway)

BugFix #15196: Sandbox should not be in rb_get_services.sh (mail gateway)

BugFix #15202: Fix negative values on outliers detection

BugFix #15225: Fix scanner profile creation incorrect id

BugFix #15229: Scanner module was creating a javascript call loop outside the module

BugFix #15243: Fix mail in quarantine not deleted after time specified

BugFix #15246: IP are whitelisted when not blacklisted

BugFix #15266: Fix mail gateway url catching

BugFix #15270: Fix MetDefender reputation urls scores requests

BugFix #15273: Fix MetaDefender malware pipeline

BugFix #15280: Fix yara malware pipeline

BugFix #15284, #15293: Fix Aerospike Score malware pipeline

BugFix #15287: Fix Rb Window pipeline

BugFix #15290: Fix Scores malware pipeline

BugFix #15296: Fix fuzzy malware pipeline

BugFix #15316: Fix sorting in Scatterplot

BugFix #15324: Fix update table on load more

BugFix #15332: Fix sorting in table views

BugFix #15343: Fix relay modal behind top bar

Nothing new on this release just important bug fixes

BugFix #14443: Fix configuration of the orchestrator services

BugFix #14446: Fix wrong sensor names in logstash monitor tabs

BugFix #14449: Fix indexing of mobility information dont require nmspd or k2locd running on the cluster (can be run on proxy)

BugFix #14452: Fix anomaly detection not working when running in a different node than rb-webui service

BugFix #14455: Fix missing configuration on redis_lb service

Integrate cuckoo and yara in malware analysis pipeline

Intrusion probes can now catch files through the network and send them to malware analysis

Improvement #14422: Improve clamscan speed analysis

Improvement #14433: New monitoring logstash metrics in Monitor module

BugFix #14368: Fix kafka virtual ip

BugFix #14378: Fix duplicate custom tabs in rb-webui

BugFix #14382: Fix virustotal/metadefender crash malware data pipeline if API keys were empty

BugFix #14389: Fix plugins installation

BugFix #14403: Fix installation problems after manager domain name was changed

BugFix #14410: Fix s3 epmd error during installations

BugFix #14413: Fix installation problems after manager hostname was changed

BugFix #14418: Fix files were analysized more than once in malware analysis pipeline

New traffic anomaly detection system.

Integration of malware detection functionality into enterprise version.

Improvement #1432: "Copy to cliboard" do not depend on flash anymore

Improvement #14095: Many improvements for Scanner module

BugFix #14288: Fix name opscode-erchef instead of erchef in virtual ip configuration

BugFix #14277: Fix postgresql synchronization between nodes

BugFix #14227: Fix registration of ips, proxy and mail gateway

Multiple bugs were fixed on this version.

BugFix #13378: Solve problem on deletion of Rule Version Sources

BugFix #13388: Destiny Country was not showing in Intrusion module

BugFix #13697: Fix Advanced filters in rb-webui

BugFix #14097: Solve map not showing in Social module when BI module is enabled

BugFix #14110: Solve bug with postgresql restart service was hanging

Improve security by updating some essentials system services.

Improvement #14003: Add RPM RSA/SHA256 signature.

Improvement #14040: Disable TLS 1.0 and 1.1 in service application layer.

BugFix #13141: Solve radius database update after change of Access Point Mac Address.

BugFix #13399: Solve social module service not running in proxy.

BugFix #13383: Solve namespace enrichment for scanner sensors.

BugFix #13395: Solve restarting problem for scanner service.

BugFix #13459: Fix missing CVE vulnerabilities data after installation.

BugFix #13491: Fix scanner sensor not draggable on sensor tree view.

BugFix #13573: Adapt system memory for sflow service.

BugFix #13592: Fix mongod.pid exists during rb_sysconf manager wizard.

BugFix #13656: Fix social module service property in proxy.

BugFix #13678: Fix GeoIP update links.

There is nothing new on this version, we had been working on fixing multiple bugs.

Improvement #13295: Change order of default Vault Tabs.

Improvement #13203: New default alarms on the platform.

BugFix #13326: Fix problem with timestamp in vault sensor on proxy.

BugFix #13330: Fix adding default flow monitors cause a problem on the sensor creation affecting to the license system.

BugFix #13333: Fix adding default monitors in flow sensors.

BugFix #13341: Fix filter by sensor name on modules.

BugFix #13342: Fix filter by organization in monitor widgets.

BugFix #13343: Remove some rsyslog templates that were not needed in proxy.

BugFix #13346: Fix filters on Monitor Tops view.

BugFix #13353: Fix add monitor for device sensors.

BugFix #13281: Fix installing vault plugins on all nodes.

BugFix #13286: Fix translation error on filter sensor name, monitor module.

BugFix #13306: Fix custom monitors that were not working.

BugFix #13309: Fix missing device chef role.

BugFix #13380: Fix duplicate info in rb-scanner pipeline.

BugFix #13195: Fix alarms that cointains the character % in their title.

BugFix #13204: Fix logstash-plugin where not update after a cluster update.

BugFix #13212: Fix faling mongod virtual-ip setup on Cluster Setting.

BugFix #13215: Fix filter bug on mobility module after going to the map sensor view.

BugFix #13216: Fix missing translation on RAW Table widget.

BugFix #13220: Fix missing zone uuid on mobility pipeline.

BugFix #13223: Fix Location logstash filter doint counter_store and flow_counter causing the pipeline to act slow.

BugFix #13256: Fix custom snmp monitor operation cant be blank error.

BugFix #13257: Fix logstash pipelines activation in a cluster setup.

BugFix #13263: Fix missing translation on add widget (Infraestructure sensor) view.

BugFix #13264: Fix missing translation on Tools Overlay Maps view.

BugFix #13277: Fix missing client_id dimension on Vault module.

BugFix #13274: Fix empty plugin dimension caused druid realtime and rb-webui service stop working.

There is nothing new on this version, we had been working expanding our audits area.

Improvement #13148: Audit General Settings

Improvement #13149: Audit http ssl certificates

Improvement #13150: Audit relay and ntp servers settings

Improvement #13151: Audit monitor and logs settings

Improvement #13152: Audit amazon cloudwatch settings

Improvement #13153: Audit network routes settings

Improvement #13154: Audit fixed Hosts settings

Improvement #13155: Audit geoIP file settings

Improvement #13157: Audit session timeout

Improvement #13158: Audit trap server settings

Improvement #13159: Audit radius accounting settings

Improvement #13160: Audit radius proxy authentication settings

Improvement #13166: Audit user login attempts and lockout user

BugFix #13161: Fix missing tabs modules for monitor that cause problems on saving settings

BugFix #13177: Fix redBorder Community Webui

There is nothing new on this version, we had been working on the audit area.

Improvement #13124: Now the system can export the audits table using the normal external syslog feature

Improvement #13127: Add audit for alarms module

Improvement #13128: Add audit for reputation and signature policies

Improvement #13133: Add audit for add/delete white/black networks on General Settings

Improvement #13134: Add audit entry when an alarm is triggered

Improvement #13136: Add audit when use check rule sources and updates a signature policy

BugFix #13117: Fix issue with letsencrypt certificate and the Centos updates, now remote update is working again

BugFix #13121: Fix error on recreate RSA key

New Vulnerability Scanner module (that its disabled by default)

Improvement #13033: Register the logout of users in Audit section

Improvement #13034: Register change of credentials in Audit section

Improvement #13035: Register change of RSA key in Audit section

Improvement #13036: Now users can customize the lock session time

Improvement #13037: Improve the security requirments for users passwords

BugFix #13057: Rsyslog fix on IDS/IPS sensor

BugFix #13062: Fix CheckAlarmsJob running when reactive Alarms

BugFix #12966: Fix error on rb-register in Proxy

Support for Captive Portal using Flow Sensors

Alarms using Slack

New Apache plugin for Vault module

New Dnsmasq plugin for Vault module

New Business Intelligence module

Improvement #12946: Update of rmagick gem

BugFix #12841: Multiple fixes in Report module

BugFix #12892: Fixing druid feed for Intrusion module

BugFix #12904: Getting back darklist on Flow module

BugFix #12925: Clean cache for event enrichment process

BugFix #12958: Add vlan id support for proxy flow exporter

BugFix #12960: Fix netflow dimension (cisco_src_vlan)

BugFix #12962: Fix security issue on Monitor Categories

BugFix #12977: Fix bug on Vault Items View

BugFix #12989: Fix advance filters on Vault module

BugFix #12995: Fix API call with namespaces

Nothing new on this release.

Nothing new on this release.

Improvement #12758: Reports: Selecting Widgets Buttons

Improvement #12702: Rotate logstash logs with logrotate

BugFix #12546: Failed to import rules in CEP

BugFix #12754: Badly formatted text on screen when password entered is wrong in User Settings

BugFix #12762: Full translation of error messages not implemented in User Settings

BugFix #12784: The email is not sent to the users listed in the Report

BugFix #12547: Importing CSV file in Sensors, Error 500!

BugFix #12607: Default tab not selected when swap view from tops on mobility

BugFix #12653: Sensors IP Variables (IDS/IPS)

BugFix #12656: Sensors Port Variables (IDS/IPS)

BugFix #12658: Sensor Group IP Variables (IDS/IPS)

BugFix #12660: Sensor Group Port Variables (IDS/IPS)

BugFix #12662: Sensor Group Binding IP Variables (IDS/IPS)

BugFix #12664: Sensor Group Binding Port Variables (IDS/IPS)

BugFix #12667: Sensor Event Rules Search Bar (Limits & Suppress)

BugFix #12707: Error with redfish on redBorder-proxy

BugFix #12711: Unable to update Shape / Image widget without uploading a new image

BugFix #12719: Multiple multilanguage missins translations and errores fixes

BugFix #12458: Advanced Search and Alarm Creation Error

BugFix #12481: Creating a ticket in Zendesk using the Redborder Manager

BugFix #12512: Addign a tier in Default Rules, General settigns

BugFix #12518: Error 500! in IP Variables, General Settings

BugFix #12538: Can’t save a new filter in Advanced Search category (Social module)

BugFix #12541: Hanging Screen In Reports while Removing Page

Nothing new on this release.

Improvement #12649: install npdi 3.4 for pmacctd in proxy

BugFix #12544: CEP: Validation doesn´t work in 'New Rule Wizard'

BugFix #12545: CEP: Failed to export rules created using the wizard

BugFix #12709: CEP: Translation missing on import rule

BugFix #12263: CEP: error messages have weird characters

BugFix #12542: CEP: Cannot add new output when creation a rule.

BugFix #12492: CEP: Creation error on default rules

BugFix #12550: Alarms: Not allowing null search values when creating filter

BugFix #12696: Alarms: Missing translation en.monitor2 on formulary

BugFix #12569: Social: Tiles view giving druid error

BugFix #12698: Social: Please Wait hangs on RAW info view with error 500

BugFix #12570: Dashboards: Error 500 when importing dashboard from other manager

BugFix #12536: Reports: Error 500 when a wrong file is inserted

BugFix #12540: Reports: Generate PDF button not working

BugFix #12567: Reports: Error when a future date is selected

BugFix #12609: Reports/Dashboards: Problem when a different file is uploaded

BugFix #12671: Reports/Dashboards: Problem uploading a file that is not an image in the widget EDITOR

BugFix #12632: Cluster Settings: Save button is not working

BugFix #12513: Cluster Settings: Delete all the default rules problem

BugFix #12520: Cluster Settings: Broken time period value on Historial Rules

BugFix #12524: Cluster Setting: Rule title docs not change when the rule type is changed

BugFix #12526: General Settings: Delete button in port variables not working

BugFix #12516: General Settings: "Disappearing" categories

BugFix #12525: General Settings: Error 500 in Port Variables

BugFix #12527: General Settings: Grey box in GEoIP

BugFix #12502: General Settings: Not numeric limit for "Autoreload Dashboard time" and "Autoreload Raw Time"

BugFix #12514: General Settings: Broken default druid rules

BugFix #12690: Intrussion: tr.ips translation error on RAW view

BugFix #12684: Traffic: tr.flow translation error on RAW view

BugFix #12686: Vault: tr.vault translation error on RAW view

BugFix #12688: Sensors: Reputation Policies Import CSV Sensor

BugFix #12666: Sensors: Signature Policies Import CSV Sensor

BugFix #12489: Sensors: cloud registration problem

BugFix #12519: Sensors: IP Variables import not adding correctly

BugFix #12551: Sensors: Device sensor error when clicking on Hardware Info returns Error 500.

BugFix #12678: Widgets: The name of the uploaded image file does not appear

BugFix #12692: Widgets: Columns translation error on RAW Streams / Table widgets for Intrussion, Social and Vault

BugFix #12694: Widgets: Error translation Hardware info widget

BugFix #12538: Monitor Categories: missing OID information

BugFix #12534: Monitor Categories: Importation error

BugFix #12583: Proxy: missing rb-ale sensor

BugFix #12700: Rule Versions: help information not showing correctly

BugFix #12532: Licenses: Wrong format request

BugFix #12574: NMSP: plugin filter retrieves stores without checking on existence

BugFix #12501: Mobility: Applying a filter on the fields in the status tab does not work

BugFix #12497: Mobility: Save Current Filter does not do anything

Add more languages to webui (We support English and Spanish)

Vault plugins can be manage from the webui

Shodan.io on default lookup sources

Configurable login banner on webui and CLI

Many security improvements on the webui and CLI

Improvement #12155: Creating CEP rule in a more graphical/user friendly way

Improvement #12328: User notification on the last access to the system

Improvement #12329: Increase strong passwords on users

Improvement #12330: Add maximum number of attempts to sign in to the webui.

Improvement #12337: Add an experiration time on users passwords

Improvement #12341: Remove tftp from manager and proxy for security reasons

Improvement #12344: Root and Admin users get block for 5 minutes after a 3 time fail login (CLI)

Improvement #12346: Add an inactivity time for SSH connections of 30 days.

Improvement #12360: Users can search on tabs in every module now

Improvement #12362: Add a close, close all and close to right tab button on modules

Improvement #12379: You can now import and export correatlion engine rules.

Improvement #12419: Default certification version of webui to version 3

Improvement #12434: New openssl 1.0.1e-58

BugFix #11790: Cleaning segments on namespaces.

BugFix #12067: Fix on reports with new hardware status widgets

BugFix #12159: Atop logs filling up the disk

BugFix #12224: Workers timeout on destroying IPS/IDS rules.

BugFix #12259: Error on registration when DNS is not set.

BugFix #12323: Missing bulkstats and refish columns from monitor module

BugFix #12349: Root and admin cannot be disable from users on webui

BugFix #12351: Update RPM in IPS now is working

BugFix #12365: Sync problem on webui when clicking too fast

BugFix #12370: Application, and other objects default list was remove after creating a new one

BugFix #12372: Object vlan was not working on IPS enrichment

BugFix #12429: Wrong web redirection after creating widgets from a module

None in this release

Improvement #12174: A new way to clean memcache system

Improvement #12189: Eject the disk after installation

BugFix #12222: Edit button hide to non admin users on flow and vault sensors

BugFix #12224: Increase time of workers to complete rule db versions

BugFix #12228: Device sensor was not draggable.

BugFix #12230: Edit organizations affects to megabytes_limit and http2k service

BugFix #12205: Darklist not in memcache after installation

BugFix #12205: On widgets title is overwritten byt columnname

BugFix #11790: rb_clean_segments only taking into account the last rule apply

BugFix #12067: reports fix and integration with new widgets

BugFix #12097: Audition on flow sensors not showing up

BugFix #12192: Same vault sensor name in different organizations

BugFIx #12198: Remove dashes from bulkstats directories

None in this release

Improvement #12033 Update logstash to 7.4.2

Improvement #12040 New full enrichment with logstash/realtime and namespaces support

Improvement #12137 Add support for rb_radius on realtime

BugFix #12053: Fix error on rb_get_bulkstats_columns script

BugFix #12120: Fix rb_state default with realtime in manager role

BugFix #12127: Add missing dst_mac field on rb-exporter

None in this release

Device Sensor support in proxy/exporter

BugFix #11802: rb-exporter grey out managment interface

BugFix #11804: console port not working on new kernel version

BugFix #11804: console port not working on new kernel version

BugFix #11837: Error 500 on advance filters in Mobility module

BugFix #11842: Monitor Categories creation permissions

BugFix #11854: Unique menu not showing correctly

BugFix #11857: rb-sociald log rotation

BugFix #11872: Error on memory calculation for druid historical threads

BugFix #11873: Error 500 on AP view

BugFix #11878: SNMP monitor unit interger Error

BugFix #11884: Widget is empty in some timezones

New kernel update to 2.6.32-754.

New druid version 0.12.3.

New keepalived version 2.0.18.

Exporter functionality in proxy.

Arpwatch integration with the exporter.

Vault plugins support.

Redfish, IPMI, SNMP custom monitors.

Sflow support in proxy.

Improved groupBy query to v2 with the new version of druid.

Support new hardware with the new version of the linux kernel.

Set a default druid rule of one month when install using the wizard.

Add sflow to the load balance via keepalived.

GUI improvements.

HTTPS support for Meraki.

BugFix #11659: Fix bug on pretag sFlow service.

BugFix #11676: Fix bug on default dashboard.

BugFix #11703: Fix bug on kill scripts druid services.

BugFix #11727: Fix export zones in sensors.

BugFix #11729: Fix logstash limit logs storage.

BugFix #11731: Fix on metadata cron job script.

BugFix #11736: Fix keepalived not working correctly.

BugFix #11748: Fix Meraki not working properly.

BugFix #11750: Fix snort preprocessor IIS Unicode map error.

BugFix #11752: Fix filters on gui not working.

BugFix #11652: Fix on VirtualIP GUI integration not working properly.

None in this release

None in this release

BugFix #10774: Fix problem with s3cmd.

BugFix #10775: Fix problem on check licenses daily.

BugFix #10776: Fix problem on check licenses weekly.

BugFix #10840: Fix spaces names problem on vault sensors.

BugFix #10961: Fix mobility filters problem.

BugFix #10962: Fix mobility widgets problem.

BugFix #10965: Matching rails version with redBorder version.

BugFix #11011: Fix adding a Vault/Flow with the same IP problem.

BugFix #11014: Fix dashboard pictures aspect ratio problem.

BugFix #11013: Fix bug updating ip on flow was not really updated.

BugFix #11027: Fix import sensors vault/social and error on the job helper.

BugFix #11032: Removing loggly option on the website.

BugFix #11068: Fix problem on rsyslog mmrfc5424addhmacm problem.

New sflow support.

Notice when license is about to expire.

VAULT documentation.

New logstash pipeline support.

BugFix #10573: Update logstash to 6.1.1 due to bugs in pipeline processing.

New Community edition.

Introduction to VAULT/logstash documentation.

New dimension ACTION on VAULT.

Support for IPS proxy policy assigment with new licensing model.

Disable rules using CSV file import.

DNS resolution on widgets.

Help for dashboard view.

New documentation IPS Administration.

Filter by organization on CSV consumption file.

New set of rules for VAULT and CEP.

New datasources in CEP (monitor, VAULT, flow, events).

Improved backup cluster process.

Better SSL Certificate handler.

Improved bypass action from web interface.

Fast search in regex expression.

Hourly update rules support.

Show local URL by default for Web URL parameter in General settings.

Improvements for removing rules versions.

BugFix #10524: Error in category for VAULT

BugFix #10362: Last-check-in pointer appears in flow sensors with no APs.

BugFix #10488: Community: Wrong ET rules classification.

BugFix #10489: Community: IPS Rules’s actions are missed.

BugFix #10486: Community: Rules version sources missing.

BugFix #10422: In organization mode, licenses error listing.

BugFix #10312: Fix adding widget in reports.

BugFix #10425: Missing UUIDs in VAULT data.

BugFix #9940: Error in rb_sysconf creating multiple bondings.

BugFix #10401: Wrong datasources getting info from licenses view.

BugFix #10275: Error in Social sensor configured only fintering by text.

BugFix #10354: Error in events-counter with SIGUSR1 signals.

BugFix #10318: Map widget error exporting to PDF in reports with "Past Period".

BugFix #10313: Issues with reports (more than one page).

BugFix #10335: Flow sensors set product_type attribute as integer when is imported from CSV.

BugFix #10310: Map widget dissapears when PDF report is generated.

BugFix #10317: Error exporting multiserie widget in PDF reports.

Correlation rules from factory.

Availability of extended information about license usage (MB/Day) in graphical and text (CSV) format.

Audit of RAW logs (VAULT) from S3.

New dimensions ip_country_code and public_ip

New set of columns for raw VAULT view.

Removed obsolete notify to mobile option in Alarms.

Disabled session redirection after login.

Extended CEP documentation in the knowledgebase from http://support.redborder.com.

RAW view show only last hour by default. You need to use 'Filter → Advanced Search' to change window time.

BugFix #9939: Add sensors button must be removed in organization mode cluster.

BugFix #10195: Scaterplot overwrite elements from the limits.

BugFix #10111: IPS rb_sysconf can’t register against a manager domain.

BugFix #9946: Report block doesn’t load just after creation.

BugFix #10196: Inconsistent license status from web and from CLI.

BugFix #9125: Graphic issue with null values.

BugFix #10064: Proxy register fails when URL is not an IP address.

BugFix #10205: Sensor filter string overflow in global filters.

BugFix #10281: events-counter stop working after few days.

BugFix #10347: Load new rows in RAW tables doesn’t work.

BugFix #10342: Error modifying licenses in sensor removed.

BugFix #10270: Empty file download for event details at Vault RAW view.

BugFix #10320: dswatcher panics with no product type in sensor.

BugFix #10267: CheckAlarmJob doesn’t start with alarms assigned to disabled users.

BugFix #10323: Wrong help image in dashboard.

BugFix #10274: Different values from raw view and from widget in traffic module.

BugFix #10206: Error in RAW widgets.

BugFix #10276: Error enabling/disabling users in User view.

BugFix #10232: Error disabling CEP rules from webGUI.

New normalization and dimensions for VAULT.

Syslog messages go through manager and they can be relay to an external syslog server.

SSl certificate deletion confimation.

BugFix #10004: Regex validation for web URL in initial and General settings.

BugFix #9769: Error creating sensor flow via API.

BugFix #10098: Rake task to assign product type.

BugFix #9060: Wrong values in alarms.

BugFix #10112: Wrong images in email templates.

BugFix #10101: Error on CEP migration.

BugFix #10033: Java downgrades after manager update.

BugFix #10035: Wrong values in normalized dimensions in VAULT

BugFix #10005: Error rendering cluster diagram widget.

BugFix #9964: All filters are rmoved after apply an Advanced Search.

BugFix #9976: Incorrect sensor name in VAULT sensor tab.

BugFix #10086: Overview widgets are not rendered in some situations.

BugFix #10006: SedReportJob fails.

New use cases in CEP.

New normalization and dimensions for VAULT.

Improvement for IPS and managers update process.

Improvement for licensing model.

BugFix #8990: Wrong rules number for IPS.

BugFix #9053: Too much time enabling/disabling IPS rules.

BugFix #9952: Fix dimensions in rb-samza-bi.

BugFix #9536: Can’t create monitor widgets.

BugFix #10019: IPS proxy fails registering process.

Integration for CEP rules in webUI

Basic use cases for correlation.

Support for VAULT licensing.

New parser engine integration for VAULT.

First parser rules for VAULT.

Integration of VAULT with middlemanager (cluster with data enrichment)

hostname definition based on RFC 1123 and 952.

Improvement for syslog collector.

Improvement for VAULT storage.

BugFix #9766: Sensors help view updated.

BugFix #9806: Fix loop in event-counter configuration.

BugFix #9884: Fix Bytes/Day counter in Licenses view.

SecFix #9573: Obtaining dashboard configuration for any user.

BugFix #9559: Duplicated checkalarmJob.

SecFix #9588: Information exposure through an error message.

BugFix #9821: Changing user settings to "Administrator" does not work.

SecFix #9575: Obtaining user ID of active users.

BugFix #9885: Reaching of license limits does not work.

BugFix #9510: Fix quickstart documentation.

BugFix #9446: Error loading default monitors for flow sensors.

VAULT indexing with middlemanager.

Store raw logs in S3.

Full hashing for all types of logs.

None in this release

SecFix #9581: Adding domains of differnt type.

BugFix #9684: Traffic received with no license.

SecFix #9572: Domain and probe creation for any domain/user.

BugFix #9552: Error in widget compare.

SecFix #9584: Unofficial domains disclosure.

SecFix #9579: Loading malicious URL to any user dashboard.

BugFix #9675: Trial license doesn’t allow create and assign IPS rules.

BugFix #9660: rb-monitor check incorrect kafka server.

BugFix #9341: Indexing task logs are not configured correctly.

BugFix #9678: Chef nprobe template is incorrect.

BugFix #9563: Forgot password issue and infinite redirection at login page.

SecFix #9571: Obtaining list and config all from domains and probes.

BugFix #9779: CEP can’t parse multiple zk or kafka servers in config.yml file.

SecFix #9580: Modification and deletion of user alarms.

BugFix #9680: Manager reinstalled still accept events from IPS previously registered.

New licensing model for IPS sensors.

Basic LDAP integration: you can authenticate using your LDAP server.

Support for event counter in organization licenses.

Timestamping for syslog events in vault module.

None in this release

BugFix #9589: Invalid option in snort initscript environment for IPS and IPS_TEST mode.

BugFix #9029: No statistics in monitor for IDS/IPS metrics (perfmonitor stats).

BugFix #9557: Units in license do not match.

SecFix #9590: Administrator privilege escalation.

BugFix #9586: Error loading VRT rules 2.9.8.x.

BugFix #9564: Incorrect module Vault in main menu.

BugFix #9052: Widget IPS "Grouped Unique" does not work correctly.

SecFix #9578: Malicious file upload for all users accounts.

SecFix #9576: Obtaining list of all users.

SecFix #9574: Modification of user dashboards and reports.

BugFix #9525: Wrong repo in client proxy.

BugFix #9521: Wrong domain for support center webui.

BugFix #9543: Invalid value from flow crahes samza enrichment

BugFix #9555: Fix logo in error view.

BugFix #9556: Error in description for bps.

BugFix #9138: No graphs in Traffic view for big interval queries.

Support for organization licenses.

New framework for trial version licenses (30 days).

Vault module for syslog and CEP messages.

Alternatives http port for webUI.

CEP (Complex Event Processing) correlation engine.

Create rule.json to allow better backups in OLAP.

BugFix #9465: Bad reindexing configuration.

BugFix #9286: No IP address for flow sensor associated to proxy client.

BugFix #9531: Error connection to chef from dswatcher.

BugFix #9329: Wrong cdomain in slave nodes.

BugFix #9509: Chef-client service stopped during register.

BugFix #9350: big queries problem in historical.

BugFix #9308: Issue with shared dashboards after lock/unlock action.

BugFix #9338: Issue running map widgets.

New licensing model.

Better reports documents.

BugFix #9166: Wrong data bag values for monitors.

BugFix #9158: Byte limit overflow in license.

BugFix #8518: Disabled manager actions after proxy and snort generic registering.

BugFix #9061: Events accepted from previous IPS registered in a reinstalled manager.

BugFix #9287: Incorrect nprobe configuration in client proxy.

SecFix #5152: AWS Keys contained in sensors deployments.

BugFix #8634: Verification error in client proxy registering process.

BugFix #8577: Service rb-apspoller init fails in client proxy.

New framework for next licensing model.

Support for serial number for teldat routers.

Add sensors to the global filters.

New application name by default.

User-Agent dimension activated by default.

BugFix #9159: Error on first login settings information.

BugFix #9193: No sensor UUID dimension in realtime.

BugFix #9059: Incorrect services objects decoding.

BugFix #9006: Remove dimension "Group Name" in monitor.

Bugfix #9023: Incorrect reverse resolution for WAN IP Name.

BugFix #9028: Incorrect data in monitor’s graph.

BugFix #9058: Incorrect traffic values.

BugFix #9057: Error creatin sensor after removing it.

BugFix #8393: Incorrect view of menu button.

BugFix #8656: k2hhtp always set insecure option as false in client proxy.

Update librdkafka to version 0.9.4

New dimensions for live versions

Remove dimensions

Show help for dashboard view.

When adding sensor add link to license if there is no license available

First login should request some parameters

Disable Auto and None license

Add checkbox to enable/disable filters on global filter section

Apply changes on global filter pressing ENTER to be faster

Allow create application objects for super admins

New dimension called Product Type

Add new dimension for url

New format of Applications data bag

Change Client DNS resolution to LAN DNS resolution

Delete dimensions from config init.rb

Add wan_interface_description and lan_interface_description at lib/modules/flow/config/init.rb

Update license process

Change label for observation id putting (optional) too

Validation to prevent that a license use more bucket that allowed

Move CheckAPStatusJob to ap_state module

License request view

Change email / password for first login

New default dashboard

Create a rake task for creating applications databag

Persist association of sensors and licenses in Chef

Associate sensors creation with license buckets.

Licenses with limits per sensor’s type

Show sensor’s limit from license in the GUI

Define license format

Change email layout to new one

Disable MAC and VLAN objects

New dimension product_type

Set the pie data details optional on the widget properties

Once the user is created a default dashboard will be copied for this user

Delete current default dashboard and add new default dashboard

Change sensor flow icon

Create new dimensions called lan_description and wan_description on Interface category

New overview widgets

Add product type as a property for Flow Sensors

Allow change service port objects by users

Update default application list

Hide workers and job for non admin users

New dimension exporting_process_id

New lan_l4_port and wan_l4_port

Graph representing the bytes uptake on the cluster

Add specific filters at globals filters

Rename/add flow dimensions

Add observation_id to flow sensors

dynamic {INGRESS/EGRESS}_INTERFACE_{NAME/DESCRIPTION}, SELECTOR_ID_NAME and APPLICATION_ID_NAME via options template

Objects to associate names to ports

nprobe new features

Dashboard’s URL

Global filters per dashboard

At Global Filter, apply changes automatically when selecting Range or other selectors.

Make Global Filter more compact

Make smaller the range selector on Global filter

Move TOS from Datalink to Network category

Improve modal form for new license

Create default dashboard with delayed job.

Align subheaders to the right on Domain menu correctly

Changes in appearance

New look&feel images and color palette

Move Applications into Objects view

Duplicated dashboards if shared by user and by domain

Clarify the dashboard list

Include all metrics in the Raw detail view.

Functional tests for locations

BugFix #9035: CheckAlarmJob fails

BugFix #9033: APP objects creation fails

BugFix #9032: Druid dimensions changed in rb_event

BugFix #9021: Error enrichment with wan_ip_country_code

BugFix #9020: Remove WAN Net Address

BugFix #9019: Remove dimensions

BugFix #9017: Javascript error when searching a sensor in Tree

BugFix #9016: Disable autocomplete at input search in Sensor Tree

BugFix #9001: When Product Type is changed, the license selector show Auto and None.

BugFix #8994: Make icons the same size when searching at Sensor’s Tree

BugFix #8992: Disable private key at General Settings

BugFix #8991: When showing a Floor at Overview, show AP title correctly

BugFix #8975: Error 500 at loading licenses after trying to load IPS license

BugFix #8973: Graph outside the margin

BugFix #8968: If the license file is not valid (like pdf) throw an excption not captured

BugFix #8965: Don’t allow create Client Map widget if AP State module is not active.

BugFix #8964: Error accesing cluster uuid at Setting model.

BugFix #8963: Global filters are not included in Overview queries.

BugFix #8962: Objects APP searches doesn’t work

BugFix #8952: Legend on Horizontal Bar when the widget is too small

BugFix #8947: Error in icon "+" in overview view

BugFix #8946: Only show domains in Global filter

BugFix #8935: Error on uploaded live image

BugFix #8913: Error on rake db:seed on first installation

BugFix #8910: Wrong style in Select Organization view.

BugFix #8898: Error on organization_users relation

BugFix #8890: Labels in Global Filter are not showed

BugFix #8888: Error rendering some widgets in reports

BugFix #8885: Error in ApplicationObject callback to store in Chef

BugFix #8884: Outlier option in contextual menu

BugFix #8869: Installation error

BugFix #8861: Validate uniqueness of licences

BugFix #8852: Invite user window freezed after submitting it

BugFix #8790: Avoid warning console

BugFix #8786: When a widget is cloned in another dashboard, it’s rendered in the current dashboard.

BugFix #8785: Problem with dashboards when it has a lot of rows.

BugFix #8784: Error when clicking a widget

BugFix #8780: Error in reports/dashboards breadcrumb links

BugFix #8778: Error importing data (applications objects) on 10.0.150.17

BugFix #8777: Error creating app object

BugFix #8776: Error creating blocks in a report.

BugFix #8765: Overview widget redirection shows wrong metric in tops

BugFix #8758: Error exporting CSV applications

BugFix #8755: Error trying to create a widget on a report

BugFix #8716: Obtain the last details of RAW table doesn’t work

BugFix #8695: Unable to select granularities marked as Slow query

BugFix #8694: Improve creation of default widgets depending on active modules

BugFix #8693: Change the company value in db/seed

BugFix #8692: New gem into Gemfile

BugFix #8691: Remove wrong references in emails and change the palette color

BugFix #8690: Hide sections that do not work

BugFix #8688: Fix support link

BugFix #8672: The name of the proxy cannot contains "'".

BugFix #8586: Change image for recovery password view

BugFix #8566: Wrong percent bps values in widgets

BugFix #8526: Incorrect bps units scale.

BugFix #8378: Test the WebUI in different browsers and devices

BugFix #8342: Fix timestamp format in netflow.

BugFix #8951: Error changing sensor geolocation