Since I mentioned the version 3.1.0 release in a previous posting I
thought members of the list might be interested in the release notes.
It looks like version 3.1.0 will be released next week.
Subject: Release Notes for GNAT Box v. 3.1.0
Date: August 2000
Introduction
Many changes have occurred since the GNAT Box Firewall systems was first
introduced in 1996. The amazing system that booted and ran
entirely from a single 3.5" floppy diskette was the first compact
cost effective firewall system on the market. In 1996 many people had
a hard time understanding how such a compact cost effective firewall
could actually exist let alone provide solid security. Over the years
the GNAT Box system has proven itself; from receiving ICSA certification
for version 1.0 in 1996 to besting firewalls that cost 10-20 times more
and provide 20-50 times less performance. Now after 4 1/2 years of
growth the GNAT Box system has come to a crossroads.
With the introduction of version 3.1.0 of the GNAT Box system software
there will be a difference in the system features based on the target
platform. There are two distinct platforms: software only systems and
flash based systems. Software only systems are: GNAT Box Pro and GNAT
Box Light. Flash based systems are: GB-100, GB-1000 and GB-Flash. All
users of the commercial software only systems (GNAT Box Pro) have an
upgrade path to GB-Flash, (contact GTA or your reseller for pricing).
There is no flash solution for GNAT Box Light.
In each section below new features and changes apply to all versions
unless noted.
I. New Features
1. DHCP Server
Applies to: GB-100, GB-1000 & GB-Flash
Description: A DHCP server has been added to the GNAT Box system.
DHCP services can be provided on any network interface.
2. Feature:DNS Server
Applies to: GB-100, GB-1000 & GB-Flash
Description: A DNS server facility has been added to the
GNAT Box system. The DNS server only operates as a primary
name server. Multiple domains can be served.
3. IKE support for IPSec VPN key exchange
Applies to: GB-100, GB-1000 & GB-Flash
Description: The GNAT Box IPSec VPN now supports automated
key exchange using IKE. This should make the GNAT
Box VPN more interoperable with other VPN devices.
4. Built-in Web Content Filtering
Applies to: GB-100, GB-1000 & GB-Flash
Description: GNAT Box now has a built-in http content filtering
facility (CyberNOT). This facility is activated by
purchasing an annual license subscription. The content
filtering facility operates with the traditional or
transparent proxy mechanisms.
5. Japanese Localization
Applies to: All versions
Description: The web interface now is localized for Japanese. Japanese
will be automatically displayed if the user's web browser
language preference is set to Japanese.
6. Runtime System Network Update
Applies to: GB-100, GB-1000 & GB-Flash
Description: The runtime system can now be updated over the network
using either the web interface or GBAdmin. Runtime
system image files use a ".rtm" extension.
II. Changes
1. PPP version of GNAT Box Pro
Applies to: GNAT Box Pro
Description: This version of GNAT Box Pro has support for PPP however
TokenRing, Gigabit and FDDI support have been removed.
PCMCIA cards are supported.
2. Non-PPP version of GNAT Box Pro
Applies to: GNAT Box Pro
Description: This version of GNAT Box Pro has no support for PPP
however it includes support for TokenRing, Gigabit
and FDDI. PCMCIA cards are not supported.
3. GBAdmin Version Selector
Applies to: All versions
Description: Version Selector added to the toolbar. Selecting
the target system type, (GB-100, GB-1000, Pro, Light)
enables the features for the selected target system type.
4. DHCP Lease Duration report
Applies to: GB-100, GB-1000 & GB-Flash
Description: Display DHCP lease information.
5. Services Menu
Applies to: All versions
Description: Services menu has been added to GBAdmin and web interfaces.
This menu provides access for configuration of the servers
available in the system.
6. Web Interface Links Menu Updated
Applies to: All versions
Description: Links menu now includes Content Filtering Information and
Upgrade Information. Clicking on Upgrade Information
will display information about your current system software
and installed options. The most current system software
version for the target system will be displayed along with
a link to download a new version if one is available.
Additionally any options/features that are available for
purchase for the target system are listed.
7. Web Interface Configurations can be Updated Across the Network
Applies to: All versions
Description: The web interface now provides a means to upload a
saved configuration to the target firewall system.
8. Remote Logging Port
Applies to: All versions
Description: The remote logging section can now be configure which
to use a non-standard port. By default UDP/514 is used
by the syslog service.
9. Remote Logging Date Stamp Format
Applies to: All versions
Description: An option is now available to use a non-standard date/time
format in the log records. By default the standard syslog
format displays the date/time stamp as: MMM dd hh:mm:ss.
Where MMM is 3 letter month, dd is the numeric day,
hh is hour, mm is month and ss is seconds.
The non-standard format will display the date/time stamp
as: mm/dd/ccyy hh:mm:ss. Where mm is 2 digit month,
dd is 2 digit day, cc is century and yy is year.
10. Default Filter Creation
Applies to: All versions
Description: In previous versions when default remote access filters
were created by the system for defined tunnels, they
were created as "accept all" and enabled. Now these
filters will be created but they will be set to "disabled".
This will insure that the administrator explicitly
allows all access to defined tunnels.
11. Objects in VPN Definitions
Applies to: All versions
Description: Address Objects can now be used in VPN definitions.
12. GBAdmin Dockable Toolbar
Applies to: All versions
Description: GBAdmin's toolbar is now dockable.
13. Filter Display Adds Color
Applies to: All versions
Description: GBAdmin now displays filter table summary definitions
with a color. Each row of the summary table is color
coded based on its type and status. Disable filters
are grey, Accept filters are green and Deny filters
are red.
14. GBAdmin Menu Format Changed
Applies to: All versions
Description: GBAdmin's scrolling menu has changed. A collapse and
expand menu style has been introduced. Help information
is now displayed by clicking on the main menu section.
Section status is "bubbled up from member elements.
15. GBAdmin Dialog Boxes Centered
Applies to: All versions
Description: GBAdmin's dialog boxes are centered to the application.
16. GBAdmin Frame Size Remembered
Applies to: All versions
Description: GBAdmin now remembers frame size and location.
17. GBAdmin Accepts Feature Codes
Applies to: All versions
Description: GBAdmin accepts feature codes.
18. GBAdmin Menus Changed
Applies to: All versions
Description: In GBAdmin the Remote Logging and Email Proxy sections have
been moved to the new Services section. Sub-menus are sorted
alphabetically.
19. GBAdmin Preferences Changed
Applies to: All versions
Description: In GBAdmin the menu item "Preferences" has been changed to
"Contact Information."
20. GBAdmin Log Viewer
Applies to: All versions
Description: In GBAdmin a new item, "View Message Log", has been added
to the "System Activity" section. The most recent log
messages are displayed when this report item
is selected. These log messages are the most recent
logged, not log data from the remote logging system.
The Locally logged messages are stored in a fixed size
circular buffer. When the circular buffer is filled
it will begin writing over older data. On GB-Light,
GB-Demo, GB-Pro and GB-100 there are 512 record entries
in the buffer. In GB-1000 and GB-Flash up to 1024
entries are stored in the buffer.
21. Web Interface Sub-menus are Sorted
Applies to: All versions
Description: On the web interface the Remote Logging and Email
Proxy sections have been moved to the new Services
section. Sub-menus are sorted alphabetically.
22. Web Interface Preferences Changed
Applies to: All versions
Description: On web interface the menu item Preferences has been changed
to Contact Information.
23. Web Interface Log Viewer
Applies to: All versions
Description: On the web interface a new item, View Message Log,
has been added to the System Activity section.
The most recent log messages are displayed when
this report item is selected. These log messages
are the most recent logged, not log data from
the remote logging system. The Locally logged
messages are stored in a fixed size circular buffer.
When the circular buffer is filled it will begin
writing over older data. On GB-Light, GB-Demo,
GB-Pro and GB-100 there are 512 record entries
in the buffer. In GB-1000 and GB-Flash up to 1024
entries are stored in the buffer.
III. Deletions
1. Deleted: PPP has been Removed
Applies to: All versions
Description: PPP has been removed from GB-100, GNAT Box Pro and GNAT
Box Light. Separate versions of GNAT Box Pro and GNAT
Box Light with PPP have been created.
IV. Bug Fixes
1. Email Proxy RDNS did not function correctly
Applies to: All versions
2. Email Proxy allowed an obscure mail relay trick
Applies to: All versions
Description: Proxy does not allow any know mail relay tricks.
3. Email Proxy response when email exceeds size limits was lost.
Applies to: All versions
Description: Proxy now negotiates with remote client to make
sure "max size exceeded" message gets returned
to sender.
4. FTP using traditional URL proxy did not always function correctly.
Applies to: All versions
Description: Fixed.
5. VPN connections drop unexpectedly with an ARP error.
Applies to: All versions
Description: Resolved. VPN connections now stay connected.
6. GNAT Box stops logging.
Applies to: All versions
Description: Resolved. GNAT Box system logger facility re-written.
7. Current Statistics display incorrect
Applies to: All versions
Description: Current statistics are now displayed correctly.
8. Console interface unable to update access permissions of the
primary admin account.
Applies to: All versions
Description: Fixed.
9. Console interface filter actions carry over to the next filter
when editing next filter.
Applies to: All versions
Description: Fixed.
10. No verification warning when invalid IP number is entered in
DNS field.
Applies to: All versions
Description: Fixed.
11. Saving static routes from behind a router would fail and
close the administration connection.
Applies to: Gbadmin and Web Interface
Description: Fixed, update does not fail and connection does not close.
--
----------------------------------------------------------------------------
Paul Emerson Tel: +1.407.380.0220 x106
Global Technology Associates, Inc. Fax: +1.407.380.6080
3505 Lake Lynda Drive Mobile: +1.407.310.8563
Suite 109 Email: [EMAIL PROTECTED]
Orlando, Florida 32817 USA Web: http://www.gta.com
Mobile Email: [EMAIL PROTECTED]
----------------------------------------------------------------------------
