首页-> 服务与支持-> 客户支持-> 售后服务

服务与支持

抗拒绝服务系统 V4.5R89F03升级包列表

名称: update_ADS_x86_V4.5R89F03.sp02_20170828.zip 版本:ADS_x86_V4.5R89F03.sp02_20170828
MD5:7c40502d2898b121f5e02052599e4c46 大小:15.79M
描述:

【升级基础版本】
V4.5R89F03,V4.5R89F03.sp01

【升级版本】
V4.5R89F03.sp02

【配套联动】
NTA: V4.5.61.2、V4.5R89F03、V4.5R89F03SP01
ADSM: V4.5R89F03、V4.5R89F03SP01

【功能变更说明】


【修复问题说明】
109773 MPLS注入,ADS不回复withdrawal标签删除消息
110103 其他路由配置中的LDP无法删除配置的LSR-ID和接口配置,导致删除对应的IP地址时报错“当前IP正在被LDP路由使用,不能删除”
119540 接口链路配置启用或停用接口,无操作日志记录
119695 ADS 管理口地址与对端不同网段,业务接口ip包管理口地址,路由处理异常
119961 adsm配置下发acl不会优化显示顺序
120282 抓包的系统操作日志有误,Direction始终记录为all
120464 ADS千兆电口不能从强制全双工切回自协商状态
120881 当攻击特征为CONN_LIMIT时,鼠标移动上去不能显示对应的解释说明
120953 当客户syslog服务器收到的带有攻击日志的syslog日志时,收到的攻击日志信息不是最新的攻击日志
121988 统计的速率单位是Bps,没有转换为bps,就直接和自动抓包规则触发阈值进行比对
122079 设置的登录密码满足安全登录设置的要求,在登录的时候仍然提示密码过于简单
122169 当配置端口为4115-4370时,打目标端口为4116的HTTP Flood,不能触发防护状态
123723 通过流量牵引来触发注入路由的MPLS标签生效,未考虑到NTA自动牵引的情况
124195 接收邮箱,SMTP用户名,发送邮箱输入校验失败
124196 当SMTP用户名和密码为空时,发送邮件失败
124221 接口链路配置设置接口工作模式时,切换到半双工,设置不生效
124358 ADS网络诊断ping功能导致页面无法访问
125529 module_com进程异常,导致配置功能失效
125584 和arbor联动时,支持host detection的情况下,由于某些字段检查有问题,导致联动不成功

【注意事项】


[Source Version]
V4.5R89F03,V4.5R89F03.sp01

[Target Version]
V4.5R89F03.sp02

[Matching Versions of Collaborative Devices]
NTA: V4.5.61.2、V4.5R89F03、V4.5R89F03SP01
ADSM: V4.5R89F03、V4.5R89F03SP01

[Function Changes]
None

[Fixed Bugs]
109773 When the MPLS injection is enabled, ADS does not respond to withdrawal label deletion messages.
110103 Under Diversion & Injection > Advanced Route Setting > Others, the value configured for LSR-ID and interface settings cannot be deleted. In this case, when the user tries to delete the corresponding IP address, the system prompts "This IP address is being used by the LDP route and cannot be deleted".
119540 No logs are generated to record interface enabling or disabling operations.
119695 In certain circumstances, traffic supposed to go through the management interface goes through working interfaces.
119961 ACL rules are dispatched by ADS M without being sorted.
120282 System operation logs about packet capture are incorrectly recorded, with Direction all displayed as all.
120464 The working mode of 1000M electrical ports of ADS cannot be manually switched from full duplex to auto negotiation.
120881 Under Logs > Attack Logs > Attack Details, when the Signature column is displayed as CONN_LIMIT, pointing to the signature displays no explanations.
120953 Attack logs received by the syslog server are not the latest.
121988 The statistical value of packets, expressed by bps, is compared with the threshold specified in automatic packet capture rules without being converted to be in bps.
122079 Though the configured password meets the complexity requirements, the system still prompts that the password is too simple.
122169 Under Policies > Protection Groups > HTTP Protection Policy, when Protection Port is set to 4115-4370, HTTP flood traffic destined for port 4116 fails to trigger the protection.
123723 For auto diversion by NTA, the MPLS label configured in the injection route does not take effect.
124221 Under System > Interface, half duplex settings of interfaces does not take effect.
124195 When the user types valid values for Receiver, SMTP Username, and Sender Email Address under System > Log Services > Email, the system still prompts messages indicating that they are invalid.
124196 When the SMTP user name and password are empty, emails fails to be sent.
124358 The ping function makes the Network Diagnosis page irresponsive.
125529 The module_com process exception, resulting in the configuration failure
125584 Adapt the syslog associated with arbor in host dection mode

[Important Notes]
None

发布时间:2017-09-30 16:38:41
名称: update_ADS_x86_V4.5R89F03_20170714.zip 版本:update_ADS_x86_V4.5R89F03_20170714
MD5:b37b0c74b42e7eb5df7480de38293aec 大小:38.32M
描述:

【升级基础版本】
V4.5R89F02, V4.5R89F02.sp01, V4.5R89F02.sp02, V4.5R89F02.sp03, V4.5R89IB02, V4.5R89IB02.sp01

【升级版本】
V4.5R89F03

【配套联动】
NTA: V4.5.61.2、V4.5R89F03
ADSM: V4.5R89F03

【功能变更说明】
1. F03新增和变更功能
(1) 升级包上传后,提示版本关键信息及用户关键提示信息
(2) SYN+ACK防护算法优化
(3) 升级F03之后首次登陆弹出设置向导,配置地区、时区等配置
(4) 信誉云增加国际国内服务器切换、新增上传开关
(5) 新增地区配置,根据地区设置决定是否打开绿盟云
(6) CLI支持portchannel的MAC地址配置
(7) 新增网络诊断和端口检测功能
(8) 优化和NTA联动的牵引时间
(9) CPU和内存资源条颜色变化阈值修改
2. 从F02版本升级到F03版本功能变更
(1) 新增HTTP认证同步功能
(2) ADS的界面UI及帮助信息的国际化支持
(3) 修改手工流量牵引的ipv6前缀长度限制,限制从【120-128】修改为【0-128】
(4) 修改防护群组ipv6前缀长度限制,从【112-128】修改为【1-128】
(5) 修改注入路由ipv6前缀长度限制,从【0】【48-128】修改为【0-128】
(6) 出厂默认关闭远程协助,升级包会适配升级前的配置
3. 从IB02升级到F03版本功能变更
(1) DNS防护策略中增加新的防护算法:重传检查算法
(2) 增加NX3-200E/NX3-600E/NX3-800E/NX3-2020E/NX5-4020E/NX5-6025E型号支持
(3) 支持配置定时发送配置文件到用户指定的FTP服务器
(4) SNMP Agent支持RFC1213定义的标准信息
(5) 新增链路虚通检测功能
(6) 新增对主板/CPU/风扇的温度状态监控,并支持syslog异常告警

【注意事项】


[Version No.]
ADS V4.5R89F03

[Source Version]
V4.5R89F02
V4.5R89F02.sp01
V4.5R89F02.sp02
V4.5R89F02.sp03
V4.5R89IB02
V4.5R89IB02.sp01

[Target Version]
V4.5R89F03

[Matching Versions of Collaborative Devices]
NTA: V4.5.61.2、V4.5R89F03
ADSM: V4.5R89F03

[Function Changes]
1. New and changed functions in F03:
(1) Key version information and a message for users are displayed after an update is uploaded.
(2) The SYN+ACK packet check algorithm is optimized.
(3) For the first login after the upgrade to F03, a configuration wizard is popped out for users to configure the locality and time zone.
(4) Users are allowed to select a domestic or international server for using the reputation cloud and can choose whether to enable the data upload function.
(5) Users are allowed to configure the locality and the system will determine whether to enable NSFOCUS Cloud according to the locality.
(6) Users are allowed to configure MAC addresses for the port channel function in the CLI.
(7) Network diagnosis and port check functions are added.
(8) The configuration of collaborative diversion period (when NTA is involved) is optimized.
(9) Thresholds are adjusted for colors indicating changes in CPU and memory usage.
2. Functions changed from F02:
(1) The HTTP authentication synchronization function is added.
(2) The UI and online help are available in both English and Japanese.
(3) The IPv6 prefix length range is changed from 120–128 to 0–128 for configuration of manual traffic diversion.
(4) The IPv6 prefix length range is changed from 112–128 to 1–128 for protection group configuration.
(5) The valid IPv6 prefix length is changed from 0 and 48–128 to 0–128 for injection route configuration.
(6) The remote assistance function is disabled by default. However, if this function is enabled before the upgrade, this setting will remain effective after the upgrade.
3. Functions changed from IB02:
(1) The DNS retransmission algorithm is added to the DNS protection policy as a new DNS protection algorithm.
(2) The new version adds support for these models: NX3-200E, NX3-600E, NX3-800E, NX3-2020E, NX5-4020E, and NX5-6025E.
(3) Users are allowed to schedule the sending of configuration files to the specified FTP server.
(4) The SNMP agent supports standard information specified in RFC 1213.
(5) A new function is added to check whether link connectivity is real as it appears.
(6) The system can now monitor the temperature of the mainboard, CPU, and fans, and it can also sends alerts on exceptions via syslog.

[Important Notes]
None

发布时间:2017-08-24 18:47:25