Warning: Use of undefined constant _FILE_ - assumed '_FILE_' (this will throw an Error in a future version of PHP) in /membri/eeepc901/blog/wp-content/plugins/easygravatars/easygravatars.php on line 14
Untangle NG Firewall 12.0 | Blog di eeepc901
Crea sito
RSS

Untangle NG Firewall 12.0

7 Marzo 2016

Untangle Gateway

untangle-64

Untangle NG Firewall

Untangle NG Firewall è una distribuzione Linux basata su Debian adibita a gateway con moduli installabili per applicazioni di rete come bloccaggio spam, filtraggio web, anti-virus, anti-spyware, prevenzione delle intrusioni, VPN, SSL VPN, firewall, e altro.

Versione 12.0

Questa versione contiene (in Inglese):

Major Tech Changes

Untangle 12.0 is based on Debian Jessie (8.x) and the 3.16 linux kernel. This should provide more modern hardware support. Existing Untangle 11.2.1 installs will upgrade to 12.0 and install the new 3.16, which will be booted on the first reboot after upgrade. Additionally, The database has been migrated from postgres 9.1 to postgres 9.4. The UI now leverages Extjs 6.

Directory Connector

Directory Connector can now connect with your google account and google drive account.

Reports

The “new” reports are officially complete, and 12.0 removes the old reporting infrastructure. 12.0 is able to log five times the number of events per second than 11.2 on the same hardware.

There is a new summary email which sends some basic information and a link to the reports. Google drive integration has been added and Untangle can upload daily report data backups and daily CSVs to google drive for indefinite storage.

The PDF summaries are no longer sent. The old reports servlet has been removed.

Some new SQL operators are available in conditions. Alert rules based on rate thresholds (X actions per minute) are now possible. Some new report entries types have been added to allow variable number of datasets (see Reports > Network > Interface Usage).

Device List

Many users are familiar with the “Host Viewer” which tracks local unique IP addresses on your network and various information about them. 12.0 adds a “Device List” which tracks local unique MAC addresses on the network and various information about them. Unlike the host viewer, the device list is stored on the disk and is persistent through reboots.

This allows you to do thing like set the username for certain devices (for devices that are not shared), or alert when new devices are discovered. It also stores information about the last known hostnames and User Agent and other metadata.

Language

All translations are now done in one PO file. This should significantly simplify translations.

SSL Inspector

HTTPS Inspector has been renamed SSL Inspector and now has the ability to inspect SMTP over SSL. After SSL Inspector unwinds the TLS on the SMTP session, Spam Blocker and friends will now scan the SMTP as per a normal unencrypted session. SSL Inspector will reencrypt the traffic as it leaves the server.

Email

Config > Email gains a new way to send email called “Send email using the cloud hosted mail relay server.” This is the new default and it will use a the untangle.com cloud to relay email using an SSL relay. This allows many users whose ISPs block port 25 to send email without trying to find a relay.

The quarantine interface has received a major usability update.

IPsec VPN

IPsec VPN now has the ability to create GRE tunnels (normal and encrypted with IPsec) to remote sites.

Virus Blocker

Virus blocker now also does a cloud scan concurrently with the local scan. The cloud scan checks against the current threat intelligence in the untangle.com cloud and checks the know information about the file, the URL, and other metadata. If either the local scan or the cloud scan returns that a file is malicious it is blocked.

Licensing

Bypassing of premium apps for hosts over the licensed seat limit is now automatic. For hosts over the seat limit, they will still be scanned by the free apps. By default an alert is sent when this occurs. You can still manually bypass devices so they are not counted, but it is no longer necessary. The hosts viewer shows your current hosts and which are counted as “active.”

Configuration Backup

Configuration Backup can now backup to google drive in addition to the normal backup to your account on untangle.com

Minor Changes

  • Application Control has merged the “block” and “tarpit” settings into one “block” setting.
  • Web Filter now blocks QUIC by default
  • Intrusion Prevention no longer scans sessions that would will be blocked.
  • New options allow logging of bypassed sessions to and from Untangle itself.
  • Tons of other bugfixes and small enhancements!

Risorse

La distribuzione può essere scaricata da:

Il sito web della distribuzione è: http://www.untangle.com/

Il sito web per sviluppatori è: http://sourceforge.net/projects/untangle

Conclusioni

Si tratta di una versione maggiore con molti cambiamenti.

Subscribe

Subscribe to our e-mail newsletter to receive updates.

No comments yet.

Leave a Reply