Available DGW Firmware Versions
Page History
| HTML | ||||
|---|---|---|---|---|
| ||||
<html lang="en">
<head><style>.confluenceTable, .confluenceTh, .confluenceTd {border: solid 1px; border-collapse: collapse; border-color: #ccc; padding: 5px 10px;}</style>
<meta charset="utf-8"/>
<link href="https://fonts.gstatic.com" rel="preconnect"/><link href="https://fonts.googleapis.com/css2?family=Open+Sans&display=swap" rel="stylesheet"/></head>
<body style="color: #333; font-family: 'Open Sans', sans-serif; font-size: 14px; line-height: 1.429">
<table cellpadding="0" cellspacing="0" width="100%">
<tr>
<td style="border-collapse: collapse; padding: 0px 0px ">
<table border="0" cellpadding="0" cellspacing="0" style="border-collapse: collapse; mso-table-lspace: 0pt; mso-table-rspace: 0pt; border-spacing: 0; border-collapse: separate" width="100%">
<tr>
<td>
<h1><span style="color: #1f7cd3; font-family: 'Open Sans', sans-serif;">Release Notes</span></h1>
<table style="width: 100%; height: 18px;">
<tbody>
<tr style="height: 18px;">
<td style="height: 18px;"><span style="font-family: 'Open Sans', sans-serif;">DGW Application 48.0.2430</span></td>
</tr>
</tbody>
</table>
<nav>
<ul>
<li><a href="#section_content"><span<li><span style="font-family: 'Open Sans', sans-serif;">Content<"><a href="#section_content">Summary</a></span></a></li>
<li><a href="#section_features"><span style="font-family: 'Open Sans', sans-serif;">New Features</span></a></li>
<li><a href="#section_fixes"><span style="font-family: 'Open Sans', sans-serif;">Issues Fixed</span></a></li>
<li><a href="#section_knownissues"><span style="font-family: 'Open Sans', sans-serif;">Known Issues</span></a></li>
</ul>
</nav>
<p><span style="font-family: 'Open Sans', sans-serif;"> <div>
<p><hr/></p>
</div>
</span></p>
<h2 id="section_content"><span style="color: #213368; font-family: 'Open Sans', sans-serif;">Content<>Summary</span></h2>
<p><span style="font-family: 'Open Sans', sans-serif;"><div name="checkIfJQLDataIsPresent">
<table border="0" cellpadding="0" cellspacing="0" style="border-collapse: collapse;width: 100%;font-size: inherit;font-family: 'Open Sans', sans-serif;">
<thead>
<tr style="width: 100%;">
<th style="border: 1px solid #cccccc;text-align:left; padding: 10px 5px;font-weight:bold;font-size: inherit;font-family: 'Open Sans', sans-serif; text-transform: capitalize; color: #1F7CD3; font-family: 'Open Sans', sans-serif; min-width: 10em;">Incident Number</th>
<th style="border: 1px solid #cccccc;text-align:left; padding: 10px 5px;font-weight:bold;font-size: inherit;font-family: 'Open Sans', sans-serif; text-transform: capitalize; color: #1F7CD3; font-family: 'Open Sans', sans-serif; min-width: 10em;">JIRA Issue<>ID</th>
<th style="border: 1px solid #cccccc;text-align:left; padding: 10px 5px;font-weight:bold;font-size: inherit;font-family: 'Open Sans', sans-serif; text-transform: capitalize; color: #1F7CD3; font-family: 'Open Sans', sans-serif;">Synopsis</th>
</tr>
</thead>
<tbody>
<tr style="width: 100%;">
<td style="border: 1px solid #cccccc;text-align: left; padding: 10px 5px;font-size: inherit;font-family: 'Open Sans', sans-serif; vertical-align: top; font-family: 'Open Sans', sans-serif;">
IN-14782
</td>
<td style="border: 1px solid #cccccc;text-align: left; padding: 10px 5px;font-size: inherit;font-family: 'Open Sans', sans-serif; vertical-align: top; font-family: 'Open Sans', sans-serif;">
DGW-13290
</td>
<td style="border: 1px solid #cccccc;text-align: left; padding: 10px 5px;font-size: inherit;font-family: 'Open Sans', sans-serif; vertical-align: top; font-family: 'Open Sans', sans-serif;">
The SIP endpoint gateway does not always fail over to secondary server if the UDP connection is lost while a call is in progress.
</td>
</tr>
<tr style="width: 100%;">
<td style="border: 1px solid #cccccc;text-align: left; padding: 10px 5px;font-size: inherit;font-family: 'Open Sans', sans-serif; vertical-align: top; font-family: 'Open Sans', sans-serif;">
</td>
<td style="border: 1px solid #cccccc;text-align: left; padding: 10px 5px;font-size: inherit;font-family: 'Open Sans', sans-serif; vertical-align: top; font-family: 'Open Sans', sans-serif;">
DGW-13549
</td>
<td style="border: 1px solid #cccccc;text-align: left; padding: 10px 5px;font-size: inherit;font-family: 'Open Sans', sans-serif; vertical-align: top; font-family: 'Open Sans', sans-serif;">
An invalid NAT configuration can cause the lost of the network contact with the device.
</td>
</tr>
<tr style="width: 100%;">
<td style="border: 1px solid #cccccc;text-align: left; padding: 10px 5px;font-size: inherit;font-family: 'Open Sans', sans-serif; vertical-align: top; font-family: 'Open Sans', sans-serif;">
</td>
<td style="border: 1px solid #cccccc;text-align: left; padding: 10px 5px;font-size: inherit;font-family: 'Open Sans', sans-serif; vertical-align: top; font-family: 'Open Sans', sans-serif;">
DGW-13570
</td>
<td style="border: 1px solid #cccccc;text-align: left; padding: 10px 5px;font-size: inherit;font-family: 'Open Sans', sans-serif; vertical-align: top; font-family: 'Open Sans', sans-serif;">
Add two new ECDSA ciphers for TLS 1.2.
</td>
</tr>
<tr style="width: 100%;">
<td style="border: 1px solid #cccccc;text-align: left; padding: 10px 5px;font-size: inherit;font-family: 'Open Sans', sans-serif; vertical-align: top; font-family: 'Open Sans', sans-serif;">
IN-14900
</td>
<td style="border: 1px solid #cccccc;text-align: left; padding: 10px 5px;font-size: inherit;font-family: 'Open Sans', sans-serif; vertical-align: top; font-family: 'Open Sans', sans-serif;">
DGW-13652
</td>
<td style="border: 1px solid #cccccc;text-align: left; padding: 10px 5px;font-size: inherit;font-family: 'Open Sans', sans-serif; vertical-align: top; font-family: 'Open Sans', sans-serif;">
The Sbc service is missing replacement expressions to retrieve the "From" and "To" SIP headers.
</td>
</tr>
<tr style="width: 100%;">
<td style="border: 1px solid #cccccc;text-align: left; padding: 10px 5px;font-size: inherit;font-family: 'Open Sans', sans-serif; vertical-align: top; font-family: 'Open Sans', sans-serif;">
IN-14471
</td>
<td style="border: 1px solid #cccccc;text-align: left; padding: 10px 5px;font-size: inherit;font-family: 'Open Sans', sans-serif; vertical-align: top; font-family: 'Open Sans', sans-serif;">
DGW-13668
</td>
<td style="border: 1px solid #cccccc;text-align: left; padding: 10px 5px;font-size: inherit;font-family: 'Open Sans', sans-serif; vertical-align: top; font-family: 'Open Sans', sans-serif;">
Support the Strict-Transport-Security header for DGW Web pages as per RFC 6797.
</td>
</tr>
<tr style="width: 100%;">
<td style="border: 1px solid #cccccc;text-align: left; padding: 10px 5px;font-size: inherit;font-family: 'Open Sans', sans-serif; vertical-align: top; font-family: 'Open Sans', sans-serif;">
IN-14918
</td>
<td style="border: 1px solid #cccccc;text-align: left; padding: 10px 5px;font-size: inherit;font-family: 'Open Sans', sans-serif; vertical-align: top; font-family: 'Open Sans', sans-serif;">
DGW-13695
</td>
<td style="border: 1px solid #cccccc;text-align: left; padding: 10px 5px;font-size: inherit;font-family: 'Open Sans', sans-serif; vertical-align: top; font-family: 'Open Sans', sans-serif;">
Option 77 cannot be removed from DHCP requests.
</td>
</tr>
<tr style="width: 100%;">
<td style="border: 1px solid #cccccc;text-align: left; padding: 10px 5px;font-size: inherit;font-family: 'Open Sans', sans-serif; vertical-align: top; font-family: 'Open Sans', sans-serif;">
</td>
<td style="border: 1px solid #cccccc;text-align: left; padding: 10px 5px;font-size: inherit;font-family: 'Open Sans', sans-serif; vertical-align: top; font-family: 'Open Sans', sans-serif;">
DGW-13701
</td>
<td style="border: 1px solid #cccccc;text-align: left; padding: 10px 5px;font-size: inherit;font-family: 'Open Sans', sans-serif; vertical-align: top; font-family: 'Open Sans', sans-serif;">
The EpServ.AutoCall and EpServ.DelayedHotline parameters are not accessible via TR-069.
</td>
</tr>
<tr style="width: 100%;">
<td style="border: 1px solid #cccccc;text-align: left; padding: 10px 5px;font-size: inherit;font-family: 'Open Sans', sans-serif; vertical-align: top; font-family: 'Open Sans', sans-serif;">
</td>
<td style="border: 1px solid #cccccc;text-align: left; padding: 10px 5px;font-size: inherit;font-family: 'Open Sans', sans-serif; vertical-align: top; font-family: 'Open Sans', sans-serif;">
DGW-13750
</td>
<td style="border: 1px solid #cccccc;text-align: left; padding: 10px 5px;font-size: inherit;font-family: 'Open Sans', sans-serif; vertical-align: top; font-family: 'Open Sans', sans-serif;">
Cannot limit Cwmp service HTTPS provisioning to use only TLS 1.2.
</td>
</tr>
<tr style="width: 100%;">
<td style="border: 1px solid #cccccc;text-align: left; padding: 10px 5px;font-size: inherit;font-family: 'Open Sans', sans-serif; vertical-align: top; font-family: 'Open Sans', sans-serif;">
</td>
<td style="border: 1px solid #cccccc;text-align: left; padding: 10px 5px;font-size: inherit;font-family: 'Open Sans', sans-serif; vertical-align: top; font-family: 'Open Sans', sans-serif;">
DGW-13765
</td>
<td style="border: 1px solid #cccccc;text-align: left; padding: 10px 5px;font-size: inherit;font-family: 'Open Sans', sans-serif; vertical-align: top; font-family: 'Open Sans', sans-serif;">
Add TLS 1.3 support for the Conf, Cwmp and File services.
</td>
</tr>
<tr style="width: 100%;">
<td style="border: 1px solid #cccccc;text-align: left; padding: 10px 5px;font-size: inherit;font-family: 'Open Sans', sans-serif; vertical-align: top; font-family: 'Open Sans', sans-serif;">
</td>
<td style="border: 1px solid #cccccc;text-align: left; padding: 10px 5px;font-size: inherit;font-family: 'Open Sans', sans-serif; vertical-align: top; font-family: 'Open Sans', sans-serif;">
DGW-13785
</td>
<td style="border: 1px solid #cccccc;text-align: left; padding: 10px 5px;font-size: inherit;font-family: 'Open Sans', sans-serif; vertical-align: top; font-family: 'Open Sans', sans-serif;">
SRTP interoperability improvements for the Mipt service.
</td>
</tr>
<tr style="width: 100%;">
<td style="border: 1px solid #cccccc;text-align: left; padding: 10px 5px;font-size: inherit;font-family: 'Open Sans', sans-serif; vertical-align: top; font-family: 'Open Sans', sans-serif;">
IN-14651
</td>
<td style="border: 1px solid #cccccc;text-align: left; padding: 10px 5px;font-size: inherit;font-family: 'Open Sans', sans-serif; vertical-align: top; font-family: 'Open Sans', sans-serif;">
DGW-13818
</td>
<td style="border: 1px solid #cccccc;text-align: left; padding: 10px 5px;font-size: inherit;font-family: 'Open Sans', sans-serif; vertical-align: top; font-family: 'Open Sans', sans-serif;">
Add a "bye delay" parameter to the "Call Transfer Handling" ruleset action of the Sbc service.
</td>
</tr>
<tr style="width: 100%;">
<td style="border: 1px solid #cccccc;text-align: left; padding: 10px 5px;font-size: inherit;font-family: 'Open Sans', sans-serif; vertical-align: top; font-family: 'Open Sans', sans-serif;">
</td>
<td style="border: 1px solid #cccccc;text-align: left; padding: 10px 5px;font-size: inherit;font-family: 'Open Sans', sans-serif; vertical-align: top; font-family: 'Open Sans', sans-serif;">
DGW-13830
</td>
<td style="border: 1px solid #cccccc;text-align: left; padding: 10px 5px;font-size: inherit;font-family: 'Open Sans', sans-serif; vertical-align: top; font-family: 'Open Sans', sans-serif;">
SRTP interoperability improvements for the Sbc service.
</td>
</tr>
<tr style="width: 100%;">
<td style="border: 1px solid #cccccc;text-align: left; padding: 10px 5px;font-size: inherit;font-family: 'Open Sans', sans-serif; vertical-align: top; font-family: 'Open Sans', sans-serif;">
</td>
<td style="border: 1px solid #cccccc;text-align: left; padding: 10px 5px;font-size: inherit;font-family: 'Open Sans', sans-serif; vertical-align: top; font-family: 'Open Sans', sans-serif;">
DGW-13844
</td>
<td style="border: 1px solid #cccccc;text-align: left; padding: 10px 5px;font-size: inherit;font-family: 'Open Sans', sans-serif; vertical-align: top; font-family: 'Open Sans', sans-serif;">
Improve interoperability of the Cwmp service for download requests.
</td>
</tr>
<tr style="width: 100%;">
<td style="border: 1px solid #cccccc;text-align: left; padding: 10px 5px;font-size: inherit;font-family: 'Open Sans', sans-serif; vertical-align: top; font-family: 'Open Sans', sans-serif;">
</td>
<td style="border: 1px solid #cccccc;text-align: left; padding: 10px 5px;font-size: inherit;font-family: 'Open Sans', sans-serif; vertical-align: top; font-family: 'Open Sans', sans-serif;">
DGW-13848
</td>
<td style="border: 1px solid #cccccc;text-align: left; padding: 10px 5px;font-size: inherit;font-family: 'Open Sans', sans-serif; vertical-align: top; font-family: 'Open Sans', sans-serif;">
The Cwmp service need a method to execute CLI commands.
</td>
</tr>
<tr style="width: 100%;">
<td style="border: 1px solid #cccccc;text-align: left; padding: 10px 5px;font-size: inherit;font-family: 'Open Sans', sans-serif; vertical-align: top; font-family: 'Open Sans', sans-serif;">
IN-14945
</td>
<td style="border: 1px solid #cccccc;text-align: left; padding: 10px 5px;font-size: inherit;font-family: 'Open Sans', sans-serif; vertical-align: top; font-family: 'Open Sans', sans-serif;">
DGW-13870
</td>
<td style="border: 1px solid #cccccc;text-align: left; padding: 10px 5px;font-size: inherit;font-family: 'Open Sans', sans-serif; vertical-align: top; font-family: 'Open Sans', sans-serif;">
An interop parameter is needed to add/remove the <Cwmp:ID> header in Cwmp Inform requests.
</td>
</tr>
<tr style="width: 100%;">
<td style="border: 1px solid #cccccc;text-align: left; padding: 10px 5px;font-size: inherit;font-family: 'Open Sans', sans-serif; vertical-align: top; font-family: 'Open Sans', sans-serif;">
</td>
<td style="border: 1px solid #cccccc;text-align: left; padding: 10px 5px;font-size: inherit;font-family: 'Open Sans', sans-serif; vertical-align: top; font-family: 'Open Sans', sans-serif;">
DGW-13883
</td>
<td style="border: 1px solid #cccccc;text-align: left; padding: 10px 5px;font-size: inherit;font-family: 'Open Sans', sans-serif; vertical-align: top; font-family: 'Open Sans', sans-serif;">
The SetParameterValuesFault node is missing from the SetParameterValues error response sent by the Cwmp service.
</td>
</tr>
<tr style="width: 100%;">
<td style="border: 1px solid #cccccc;text-align: left; padding: 10px 5px;font-size: inherit;font-family: 'Open Sans', sans-serif; vertical-align: top; font-family: 'Open Sans', sans-serif;">
</td>
<td style="border: 1px solid #cccccc;text-align: left; padding: 10px 5px;font-size: inherit;font-family: 'Open Sans', sans-serif; vertical-align: top; font-family: 'Open Sans', sans-serif;">
DGW-13887
</td>
<td style="border: 1px solid #cccccc;text-align: left; padding: 10px 5px;font-size: inherit;font-family: 'Open Sans', sans-serif; vertical-align: top; font-family: 'Open Sans', sans-serif;">
The Sbc service resumes SIP calls with the wrong connection address.
</td>
</tr>
<tr style="width: 100%;">
<td style="border: 1px solid #cccccc;text-align: left; padding: 10px 5px;font-size: inherit;font-family: 'Open Sans', sans-serif; vertical-align: top; font-family: 'Open Sans', sans-serif;">
IN-15005
</td>
<td style="border: 1px solid #cccccc;text-align: left; padding: 10px 5px;font-size: inherit;font-family: 'Open Sans', sans-serif; vertical-align: top; font-family: 'Open Sans', sans-serif;">
DGW-13933
</td>
<td style="border: 1px solid #cccccc;text-align: left; padding: 10px 5px;font-size: inherit;font-family: 'Open Sans', sans-serif; vertical-align: top; font-family: 'Open Sans', sans-serif;">
Some RTP packets may cause the application to stop responding.
</td>
</tr>
<tr style="width: 100%;">
<td style="border: 1px solid #cccccc;text-align: left; padding: 10px 5px;font-size: inherit;font-family: 'Open Sans', sans-serif; vertical-align: top; font-family: 'Open Sans', sans-serif;">
</td>
<td style="border: 1px solid #cccccc;text-align: left; padding: 10px 5px;font-size: inherit;font-family: 'Open Sans', sans-serif; vertical-align: top; font-family: 'Open Sans', sans-serif;">
DGW-13963
</td>
<td style="border: 1px solid #cccccc;text-align: left; padding: 10px 5px;font-size: inherit;font-family: 'Open Sans', sans-serif; vertical-align: top; font-family: 'Open Sans', sans-serif;">
Protect DGW Web pages against Cross-Site Request Forgery attacks.
</td>
</tr>
<tr style="width: 100%;">
<td style="border: 1px solid #cccccc;text-align: left; padding: 10px 5px;font-size: inherit;font-family: 'Open Sans', sans-serif; vertical-align: top; font-family: 'Open Sans', sans-serif;">
</td>
<td style="border: 1px solid #cccccc;text-align: left; padding: 10px 5px;font-size: inherit;font-family: 'Open Sans', sans-serif; vertical-align: top; font-family: 'Open Sans', sans-serif;">
DGW-13969
</td>
<td style="border: 1px solid #cccccc;text-align: left; padding: 10px 5px;font-size: inherit;font-family: 'Open Sans', sans-serif; vertical-align: top; font-family: 'Open Sans', sans-serif;">
The crypto tag in the SDP answer may not match the SDP offer.
</td>
</tr>
<tr style="width: 100%;">
<td style="border: 1px solid #cccccc;text-align: left; padding: 10px 5px;font-size: inherit;font-family: 'Open Sans', sans-serif; vertical-align: top; font-family: 'Open Sans', sans-serif;">
</td>
<td style="border: 1px solid #cccccc;text-align: left; padding: 10px 5px;font-size: inherit;font-family: 'Open Sans', sans-serif; vertical-align: top; font-family: 'Open Sans', sans-serif;">
DGW-14049
</td>
<td style="border: 1px solid #cccccc;text-align: left; padding: 10px 5px;font-size: inherit;font-family: 'Open Sans', sans-serif; vertical-align: top; font-family: 'Open Sans', sans-serif;">
The SRTP header remains the same after a SIP hold/resume.
</td>
</tr>
<tr style="width: 100%;">
<td style="border: 1px solid #cccccc;text-align: left; padding: 10px 5px;font-size: inherit;font-family: 'Open Sans', sans-serif; vertical-align: top; font-family: 'Open Sans', sans-serif;">
</td>
<td style="border: 1px solid #cccccc;text-align: left; padding: 10px 5px;font-size: inherit;font-family: 'Open Sans', sans-serif; vertical-align: top; font-family: 'Open Sans', sans-serif;">
DGW-14063
</td>
<td style="border: 1px solid #cccccc;text-align: left; padding: 10px 5px;font-size: inherit;font-family: 'Open Sans', sans-serif; vertical-align: top; font-family: 'Open Sans', sans-serif;">
New parameter "Remove REFER from Allow Header" is needed.
</td>
</tr>
<tr style="width: 100%;">
<td style="border: 1px solid #cccccc;text-align: left; padding: 10px 5px;font-size: inherit;font-family: 'Open Sans', sans-serif; vertical-align: top; font-family: 'Open Sans', sans-serif;">
</td>
<td style="border: 1px solid #cccccc;text-align: left; padding: 10px 5px;font-size: inherit;font-family: 'Open Sans', sans-serif; vertical-align: top; font-family: 'Open Sans', sans-serif;">
DGW-14180
</td>
<td style="border: 1px solid #cccccc;text-align: left; padding: 10px 5px;font-size: inherit;font-family: 'Open Sans', sans-serif; vertical-align: top; font-family: 'Open Sans', sans-serif;">
The answer sent by the Sbc service to a SIP session refresh contains a new SDES crypto key instead of reusing the one previously advertised.
</td>
</tr>
<tr style="width: 100%;">
<td style="border: 1px solid #cccccc;text-align: left; padding: 10px 5px;font-size: inherit;font-family: 'Open Sans', sans-serif; vertical-align: top; font-family: 'Open Sans', sans-serif;">
</td>
<td style="border: 1px solid #cccccc;text-align: left; padding: 10px 5px;font-size: inherit;font-family: 'Open Sans', sans-serif; vertical-align: top; font-family: 'Open Sans', sans-serif;">
DGW-14183
</td>
<td style="border: 1px solid #cccccc;text-align: left; padding: 10px 5px;font-size: inherit;font-family: 'Open Sans', sans-serif; vertical-align: top; font-family: 'Open Sans', sans-serif;">
Permanent certificates are not present after a backup is restored.
</td>
</tr>
<tr style="width: 100%;">
<td style="border: 1px solid #cccccc;text-align: left; padding: 10px 5px;font-size: inherit;font-family: 'Open Sans', sans-serif; vertical-align: top; font-family: 'Open Sans', sans-serif;">
</td>
<td style="border: 1px solid #cccccc;text-align: left; padding: 10px 5px;font-size: inherit;font-family: 'Open Sans', sans-serif; vertical-align: top; font-family: 'Open Sans', sans-serif;">
DGW-14229
</td>
<td style="border: 1px solid #cccccc;text-align: left; padding: 10px 5px;font-size: inherit;font-family: 'Open Sans', sans-serif; vertical-align: top; font-family: 'Open Sans', sans-serif;">
CVE-2021-3449: TLS communications are vulnerable to a Denial of Service (DoS).
</td>
</tr>
<tr style="width: 100%;">
<td style="border: 1px solid #cccccc;text-align: left; padding: 10px 5px;font-size: inherit;font-family: 'Open Sans', sans-serif; vertical-align: top; font-family: 'Open Sans', sans-serif;">
</td>
<td style="border: 1px solid #cccccc;text-align: left; padding: 10px 5px;font-size: inherit;font-family: 'Open Sans', sans-serif; vertical-align: top; font-family: 'Open Sans', sans-serif;">
DGW-14268
</td>
<td style="border: 1px solid #cccccc;text-align: left; padding: 10px 5px;font-size: inherit;font-family: 'Open Sans', sans-serif; vertical-align: top; font-family: 'Open Sans', sans-serif;">
The Sbc service does not handle the REPLACES header.
</td>
</tr>
</tbody>
</table>
</div>
</span></p>
<hr/>
<h2 id="section_features"><span style="color: #213368; font-family: 'Open Sans', sans-serif;">New Features</span></h2>
<p><span style="font-family: 'Open Sans', sans-serif;"> <div name="checkIfJQLDataIsPresent">
<div style="margin: 0 20px; padding: 0;">
<h3><span style="font-family: 'Open Sans', sans-serif; color: #2073c5;">DGW-14268 - The Sbc service does not handle the REPLACES header.<br/></span></h3>
<p><span style="font-family: 'Open Sans', sans-serif; font-size: 14px;"><p>The SBC ruleset action "Handle INVITE with Replaces header" was added.</p></span></p>
<p></p>
</div>
<div style="margin: 0 20px; padding: 0;">
<h3><span style="font-family: 'Open Sans', sans-serif; color: #2073c5;">DGW-14063 - New parameter "Remove REFER from Allow Header" is needed.<br/></span></h3>
<p><span style="font-family: 'Open Sans', sans-serif; font-size: 14px;"><p>A new parameter "Remove REFER from Allow Header" was added to the ruleset action "Call transfer handling".</p>
<p>When this parameter is set, all responses and in-dialog SIP requests relayed by the SBC to the call agent peer have the REFER method filtered-out from the "Allow" header.</p></span></p>
<p></p>
</div>
<div style="margin: 0 20px; padding: 0;">
<h3><span style="font-family: 'Open Sans', sans-serif; color: #2073c5;">DGW-13963 - Protect DGW Web pages against Cross-Site Request Forgery attacks.<br/></span></h3>
<p><span style="font-family: 'Open Sans', sans-serif; font-size: 14px;"><p>The following strategies have now been implemented in the DGW Web pages to protect against Cross-Site Request Forgery (CSRF/XSRF) attacks:</p>
<ul>
<li>The SameSite=Lax attribute is included in the cookie.</li>
<li>CSRF tokens were added to all forms submissions (POST) and background AJAX requests (GET and POST).</li>
</ul>
<p>The CSRF protection is always enabled.</p></span></p>
<p></p>
</div>
<div style="margin: 0 20px; padding: 0;">
<h3><span style="font-family: 'Open Sans', sans-serif; color: #2073c5;">DGW-13848 - The Cwmp service need a method to execute CLI commands.<br/></span></h3>
<p><span style="font-family: 'Open Sans', sans-serif; font-size: 14px;"><p>The CWMP parameter <em>.Services.X_0090F8_Cwmp.CwmpEx.Command</em> was added to execute a CLI command. The CWMP parameter <em>.Services.X_0090F8_Cwmp.CwmpEx.LastResult</em> was also added to display the result of the last executed CLI command.</p></span></p>
<p></p>
</div>
<div style="margin: 0 20px; padding: 0;">
<h3><span style="font-family: 'Open Sans', sans-serif; color: #2073c5;">DGW-13830 - SRTP interoperability improvements for the Sbc service.<br/></span></h3>
<p><span style="font-family: 'Open Sans', sans-serif; font-size: 14px;"><p>When using SDES key exchange with the Sbc service, an incorrect usage of the SRTP crytography caused the cryptographic context, which includes the rollover counter also known as ROC, to reset at inappropriate times. This does not affect the DTLS-SRTP key exchange.</p>
<p>A new "SRTP preferences" ruleset action was added to configure interoperability parameters.</p>
<p>This ruleset action allows the configuration of the following three parameters:</p>
<ol>
<li><b>CryptoModeOnOffer</b></li>
<li><b>CryptoModeOnAnswer</b></li>
<li><b>CryptoContextBehavior</b></li>
</ol>
<p>When this new ruleset action is not added, the default behavior of the Call Agents continues to be:</p>
<ul class="alternate" type="square">
<li>Both crypto mode (<b>CryptoModeOnOffer</b>/<b>CryptoModeOnAnswer</b>) are set to keep their crypto keys.</li>
<li>By default the crypto context behavior (<b>CryptoContextBehavior</b>) is now set to never reset the cryptographic context.</li>
</ul>
<p><b><font color="#de350b">Important change</font></b>: If this new default behavior causes audio decryption issue, set the <b>CryptoContextBehavior</b> parameter to "<em>AlwaysReset</em>".</p></span></p>
<p></p>
</div>
<div style="margin: 0 20px; padding: 0;">
<h3><span style="font-family: 'Open Sans', sans-serif; color: #2073c5;">DGW-13818 - Add a "bye delay" parameter to the "Call Transfer Handling" ruleset action of the Sbc service.<br/></span></h3>
<p><span style="font-family: 'Open Sans', sans-serif; font-size: 14px;"><strong>Incident Number</strong>: IN-14651<br/></span></p>
<p><span style="font-family: 'Open Sans', sans-serif; font-size: 14px;"><p>A new parameter was added to delay the SIP BYE issued by the Sbc service to disconnect the original call leg when handling the SIP REFER method. This new parameter should be used when more time is needed for the peer to issue the SIP BYE itself.</p>
<p>This new parameter only has an effect when the "Call Transfer Handling" action uses the "internal handling" method.</p></span></p>
<p></p>
</div>
<div style="margin: 0 20px; padding: 0;">
<h3><span style="font-family: 'Open Sans', sans-serif; color: #2073c5;">DGW-13785 - SRTP interoperability improvements for the Mipt service.<br/></span></h3>
<p><span style="font-family: 'Open Sans', sans-serif; font-size: 14px;"><p>The <b>Mipt.SessionUpdateCryptoMode</b> parameter was removed and replaced by the following three parameters:</p>
<ul>
<li><b>Mipt.CryptoModeWhenSendingOffer</b> (Default value: RegenerateAlways)</li>
<li><b>Mipt.CryptoModeWhenSendingAnswer</b> (Default value: RegenerateAlways)</li>
<li><b>Mipt.CryptoContextBehavior</b> (Default value: ResetAlways)</li>
</ul>
<p>The default behavior of DGW with SRTP streams is not changed.</p>
<p>When an upgrade is performed, the configuration of the old<b>Mipt.SessionUpdateCryptoMode</b>parameter is taken into account and applied to the three new parameters using the following mapping:</p>
<div class="table-wrap">
<table class="confluenceTable"><tbody>
<tr>
<th class="confluenceTh">Mipt.SessionUpdateCryptoMode</th>
<th class="confluenceTh">Regenerate</th>
<th class="confluenceTh">Keep</th>
</tr>
<tr>
<td class="confluenceTd">Mipt.CryptoModeWhenSendingOffer</td>
<td class="confluenceTd">RegenerateAlways</td>
<td class="confluenceTd">KeepAlways</td>
</tr>
<tr>
<td class="confluenceTd">Mipt.CryptoModeWhenSendingAnswer</td>
<td class="confluenceTd">RegenerateAlways</td>
<td class="confluenceTd">KeepAlways</td>
</tr>
<tr>
<td class="confluenceTd">Mipt.CryptoContextBehavior</td>
<td class="confluenceTd">ResetAlways</td>
<td class="confluenceTd">ResetAlways</td>
</tr>
</tbody></table>
</div>
<p>Note: the <b>CryptoModeWhenSendingOffer</b> and <b>CryptoModeWhenSendingAnswer</b> parameters apply only to the SDES key management protocol. The <b>CryptoContextBehavior</b> parameter applies to both SDES and MIKEY.</p></span></p>
<p></p>
</div>
<div style="margin: 0 20px; padding: 0;">
<h3><span style="font-family: 'Open Sans', sans-serif; color: #2073c5;">DGW-13765 - Add TLS 1.3 support for the Conf, Cwmp and File services.<br/></span></h3>
<p><span style="font-family: 'Open Sans', sans-serif; font-size: 14px;"><p>The Conf, Cwmp and File services now support TLS 1.3.</p></span></p>
<p></p>
</div>
<div style="margin: 0 20px; padding: 0;">
<h3><span style="font-family: 'Open Sans', sans-serif; color: #2073c5;">DGW-13701 - The EpServ.AutoCall and EpServ.DelayedHotline parameters are not accessible via TR-069.<br/></span></h3>
<p><span style="font-family: 'Open Sans', sans-serif; font-size: 14px;"><p>The EpServ.AutoCall and EpServ.DelayedHotline parameters are now accessible via TR-069.</p>
<p>Added the following objects trees to the TR-069 data model:</p>
<ul class="alternate" type="square">
<li>Device.Services.X_0090F8_EpServ.AutoCall.</li>
<li>Device.Services.X_0090F8_EpServ.DelayedHotline.</li>
<li>InternetGatewayDevice.Services.X_0090F8_EpServ.AutoCall.</li>
<li>InternetGatewayDevice.Services.X_0090F8_EpServ.DelayedHotline.</li>
</ul>
</span></p>
<p></p>
</div>
<div style="margin: 0 20px; padding: 0;">
<h3><span style="font-family: 'Open Sans', sans-serif; color: #2073c5;">DGW-13668 - Support the Strict-Transport-Security header for DGW Web pages as per RFC 6797.<br/></span></h3>
<p><span style="font-family: 'Open Sans', sans-serif; font-size: 14px;"><strong>Incident Number</strong>: IN-14471<br/></span></p>
<p><span style="font-family: 'Open Sans', sans-serif; font-size: 14px;"><p>A new <b>Web.HstsHeaderEnable</b> parameter was added to enable the HTTP Strict-Transport-Security (HSTS) header, as described in RFC 6797.</p>
<p>When enabled, this feature prevents users from accessing the DGW Web pages using HTTP, and forces the browser to always communicate using HTTPS.</p></span></p>
<p></p>
</div>
<div style="margin: 0 20px; padding: 0;">
<h3><span style="font-family: 'Open Sans', sans-serif; color: #2073c5;">DGW-13570 - Add two new ECDSA ciphers for TLS 1.2.<br/></span></h3>
<p><span style="font-family: 'Open Sans', sans-serif; font-size: 14px;"><p>The support of ECDSA certificates for TLS 1.2 was improved.</p>
<p>Two new AES cipher suites from RFC 8422 were added:</p>
<ul>
<li>TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384</li>
<li>TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256</li>
</ul>
</span></p>
<p></p>
</div>
</div>
</span></p>
<hr/>
<h2 id="section_fixes"><span style="color: #213368; font-family: 'Open Sans', sans-serif;">Issues Fixed</span></h2>
<p><span style="font-family: 'Open Sans', sans-serif;"> <div name="checkIfJQLDataIsPresent">
<div style="margin: 0 20px; padding: 0;">
<h3><span style="font-family: 'Open Sans', sans-serif; color: #2073c5;">DGW-14229 - CVE-2021-3449: TLS communications are vulnerable to a Denial of Service (DoS).<br/></span></h3>
<p><span style="font-family: 'Open Sans', sans-serif; font-size: 14px;"><p>An important security flaw was found in the OpenSSL library affecting DGW v46.1, v46.2, v47.0, and, v47.1. If exploited successfully, this vulnerability could cause the unit to reboot unexpectedly.</p>
<p>The OpenSSL library was fixed, addressing CVE-2021-3449.</p></span></p>
<p></p>
</div>
<div style="margin: 0 20px; padding: 0;">
<h3><span style="font-family: 'Open Sans', sans-serif; color: #2073c5;">DGW-14183 - Permanent certificates are not present after a backup is restored.<br/></span></h3>
<p><span style="font-family: 'Open Sans', sans-serif; font-size: 14px;"><p>Permanent certificates are now present after a backup is restored.</p></span></p>
<p></p>
</div>
<div style="margin: 0 20px; padding: 0;">
<h3><span style="font-family: 'Open Sans', sans-serif; color: #2073c5;">DGW-14180 - The answer sent by the Sbc service to a SIP session refresh contains a new SDES crypto key instead of reusing the one previously advertised.<br/></span></h3>
<p><span style="font-family: 'Open Sans', sans-serif; font-size: 14px;"><p>The problem occurred when the advertised <tt>a=crypto</tt> attributes changed its tag during the same SIP call.</p>
<div class="preformatted panel" style="border-width: 1px;"><div class="preformattedContent panelContent">
<pre>a=crypto:<tag> <crypto-suite> <key-params></pre>
</div></div>
<p>The Sbc service will now reuse the same <tt>key-params</tt> instead of generating a new one.</p></span></p>
<p></p>
</div>
<div style="margin: 0 20px; padding: 0;">
<h3><span style="font-family: 'Open Sans', sans-serif; color: #2073c5;">DGW-14049 - The SRTP header remains the same after a SIP hold/resume. <br/></span></h3>
<p><span style="font-family: 'Open Sans', sans-serif; font-size: 14px;"><p>When a SIP call was put on hold by the remote SIP peer,the outgoing SRTPheader remained the same.</p>
<p>This behavior is now fixed. Theoutgoing SRTPheader will now have its SSRC, sequence number, and timestamp randomized to different values.</p></span></p>
<p></p>
</div>
<div style="margin: 0 20px; padding: 0;">
<h3><span style="font-family: 'Open Sans', sans-serif; color: #2073c5;">DGW-13969 - The crypto tag in the SDP answer may not match the SDP offer.<br/></span></h3>
<p><span style="font-family: 'Open Sans', sans-serif; font-size: 14px;"><p>When all the following conditions were met, the crypto tag of the SDP answer may have had a mismatch:</p>
<ul>
<li>Secured SIP call with SDES key management;</li>
<li><b>Mipt.SessionUpdateCryptoMode</b> parameter configured to <em>Keep;</em></li>
<li>SIP Hold is sent by remote peer and its crypto tag has different value than the previous SIP exchange;</li>
</ul>
<p>The behavior is now fixed. The SDP answer will now have the matching crypto tag.</p></span></p>
<p></p>
</div>
<div style="margin: 0 20px; padding: 0;">
<h3><span style="font-family: 'Open Sans', sans-serif; color: #2073c5;">DGW-13933 - Some RTP packets may cause the application to stop responding.<br/></span></h3>
<p><span style="font-family: 'Open Sans', sans-serif; font-size: 14px;"><strong>Incident Number</strong>: IN-15005<br/></span></p>
<p><span style="font-family: 'Open Sans', sans-serif; font-size: 14px;"><p>When using the DSP codec Bank2, some RTP packets could cause the DSP to stop responding.</p>
<p>Fixed the DSP configuration that caused the problem.</p></span></p>
<p></p>
</div>
<div style="margin: 0 20px; padding: 0;">
<h3><span style="font-family: 'Open Sans', sans-serif; color: #2073c5;">DGW-13887 - The Sbc service resumes SIP calls with the wrong connection address.<br/></span></h3>
<p><span style="font-family: 'Open Sans', sans-serif; font-size: 14px;"><p>When handling a SIP REFER request to connect two SIP calls from two different signaling interfaces, the Sbc service would resume the SIP call with the wrong connection address. This lead to a one way audio.</p>
<p>The Sbc service now generates the SDP with the correct connection address.</p></span></p>
<p></p>
</div>
<div style="margin: 0 20px; padding: 0;">
<h3><span style="font-family: 'Open Sans', sans-serif; color: #2073c5;">DGW-13883 - The SetParameterValuesFault node is missing from the SetParameterValues error response sent by the Cwmp service.<br/></span></h3>
<p><span style="font-family: 'Open Sans', sans-serif; font-size: 14px;"><p>In various failure scenarios, the SetParameterValuesFault node was not present in the SetParameterValues error response of the Cwmp service.</p>
<p>The SetParameterValuesFault node is now present in the error response.</p></span></p>
<p></p>
</div>
<div style="margin: 0 20px; padding: 0;">
<h3><span style="font-family: 'Open Sans', sans-serif; color: #2073c5;">DGW-13870 - An interop parameter is needed to add/remove the <Cwmp:ID> header in Cwmp Inform requests.<br/></span></h3>
<p><span style="font-family: 'Open Sans', sans-serif; font-size: 14px;"><strong>Incident Number</strong>: IN-14945<br/></span></p>
<p><span style="font-family: 'Open Sans', sans-serif; font-size: 14px;"><p>Added an interop parameter<b>Cwmp.InteropCwmpIdHeader</b> to add or remove the <Cwmp:ID> header in the unit's Cwmp Inform requests sent to an ACS.</p></span></p>
<p></p>
</div>
<div style="margin: 0 20px; padding: 0;">
<h3><span style="font-family: 'Open Sans', sans-serif; color: #2073c5;">DGW-13844 - Improve interoperability of the Cwmp service for download requests.<br/></span></h3>
<p><span style="font-family: 'Open Sans', sans-serif; font-size: 14px;"><p>Cwmp service now supports receiving download requests with a NULL value as the TargetFileName XML element.</p></span></p>
<p></p>
</div>
<div style="margin: 0 20px; padding: 0;">
<h3><span style="font-family: 'Open Sans', sans-serif; color: #2073c5;">DGW-13750 - Cannot limit Cwmp service HTTPS provisioning to use only TLS 1.2.<br/></span></h3>
<p><span style="font-family: 'Open Sans', sans-serif; font-size: 14px;"><p>It is now possible tocorrectly limit Cwmp service HTTPS provisioning to only use TLS 1.2 with the parameter <b>Cwmp.TransportHttpsTlsVersion</b>.</p></span></p>
<p></p>
</div>
<div style="margin: 0 20px; padding: 0;">
<h3><span style="font-family: 'Open Sans', sans-serif; color: #2073c5;">DGW-13695 - Option 77 cannot be removed from DHCP requests.<br/></span></h3>
<p><span style="font-family: 'Open Sans', sans-serif; font-size: 14px;"><strong>Incident Number</strong>: IN-14918<br/></span></p>
<p><span style="font-family: 'Open Sans', sans-serif; font-size: 14px;"><p><b>Bni.DhcpClientUserClass</b> now accepts an empty value.</p>
<p>When <b>Bni.DhcpClientUserClass</b> is empty, the DHCP request no longer contains a value for Option 77.</p></span></p>
<p></p>
</div>
<div style="margin: 0 20px; padding: 0;">
<h3><span style="font-family: 'Open Sans', sans-serif; color: #2073c5;">DGW-13652 - The Sbc service is missing replacement expressions to retrieve the "From" and "To" SIP headers.<br/></span></h3>
<p><span style="font-family: 'Open Sans', sans-serif; font-size: 14px;"><strong>Incident Number</strong>: IN-14900<br/></span></p>
<p><span style="font-family: 'Open Sans', sans-serif; font-size: 14px;"><p>New replacement expressions are now available to retrieve the "From", $fQ, and the "To", $tQ, SIP headers.</p></span></p>
<p></p>
</div>
<div style="margin: 0 20px; padding: 0;">
<h3><span style="font-family: 'Open Sans', sans-serif; color: #2073c5;">DGW-13549 - An invalid NAT configuration can cause the lost of the network contact with the device.<br/></span></h3>
<p><span style="font-family: 'Open Sans', sans-serif; font-size: 14px;"><p>An invalid NAT configuration no longer cause the lost of the network contact with the device.</p></span></p>
<p></p>
</div>
<div style="margin: 0 20px; padding: 0;">
<h3><span style="font-family: 'Open Sans', sans-serif; color: #2073c5;">DGW-13290 - The SIP endpoint gateway does not always fail over to secondary server if the UDP connection is lost while a call is in progress.<br/></span></h3>
<p><span style="font-family: 'Open Sans', sans-serif; font-size: 14px;"><strong>Incident Number</strong>: IN-14782<br/></span></p>
<p><span style="font-family: 'Open Sans', sans-serif; font-size: 14px;"><p>Under a certain critical timing, when using UDP transport, if multiple SIP registration attempts were not answered by the primary server while there was an ongoing call, the SIP endpoint gateway did not fail over to the secondary server once the call ended.</p>
<p>The SIP endpoint gateway now correctly fail over to the secondary server.</p></span></p>
<p></p>
</div>
</div>
</span></p>
<hr/>
<h2 id="section_knownissues"><span style="color: #213368; font-family: 'Open Sans', sans-serif;">Known Issues</span></h2>
<p><span style="font-family: 'Open Sans', sans-serif;"> <div>
<p><p><span style="font-family: 'Open Sans', sans-serif;">There are no known issues.</span></p></p>
</div>
</span></p>
<hr/>
<h2><span style="color: #213368; font-family: 'Open Sans', sans-serif;">Copyright Notice</span></h2>
<p><span style="font-family: 'Open Sans', sans-serif;">Copyright 2021 Media5 Corporation.</span></p>
<p><span style="font-family: 'Open Sans', sans-serif;">This document contains information that is proprietary to Media5 Corporation.</span></p>
<p><span style="font-family: 'Open Sans', sans-serif;">Media5 Corporation reserves all rights to this document as well as to the Intellectual Property of the document and the technology and know-how that it includes and represents.</span></p>
<p><span style="font-family: 'Open Sans', sans-serif;">This publication cannot be reproduced, neither in whole nor in part, in any form whatsoever, without written prior approval by Media5 Corporation.</span></p>
<p><span style="font-family: 'Open Sans', sans-serif;">Media5 Corporation reserves the right to revise this publication and make changes at any time and without the obligation to notify any person and/or entity of such revisions and/or changes.</span></p>
<p><a href="https://www.media5corp.com"><span style="font-family: 'Open Sans', sans-serif;">www.media5corp.com</span></a></p>
</td>
</tr>
</table>
</td>
</tr>
</table>
</body>
</html>
|
Overview
Content Tools
Apps