iboss Network Security     contact us 877.742.6832   
  
 
iboss Enterprise Firmware Release Notes
Below are firmware release changes, updates, and features that have been added for the iboss Enterprise Web Filters.
7.0.3.20
  • Resolved. Issue with upgrading from version 6 firmware to previous version 7.0.3.5 firmware version.
  • Resolved. Computer identification based on MAC address not working properly when using the Identify Me button.
7.0.3.15
  • Enhancement. Miscellaneous performance enhancements added regarding SWG setting changes. This will be useful for deployments with many delegated administrators making changes simultaneously.
7.0.3.5
  • Resolved. SWG performance issues on large networks on rare occasions with many delegated administrators logged in simultaneously.
  • Resolved. Bandwidth Shaping rule edit button broken.
  • Resolved. Yahoo.com redirecting to search page even with option to Block Encrypted Yahoo Search is disabled.
  • 7.0.3.5 Report Updates
7.0.1.65
  • Update. Misc. backend updates.
7.0.1.60
  • Enhancement. Sandbox feature enhancement uses blended signatures to scan files before entering the network.
  • Resolved. Restore to Factory Default button broken.
  • Resolved. YouTube EDU isn't redirecting correctly.
  • 7.0.1.60 Report Updates
7.0.1.25
  • Resolved. Backup Manager - Cannot save SMB share settings.
  • Resolved. Unable To Save On Preferences->Block Pages.
  • Resolved. Web Categories Description Page Missing.
  • Resolved. Default Landing URL in Proxy Settings.
  • Resolved. The Proxy Cache details added back.
  • Resolved. User Password Self Service Portal URL invalid.
  • Resolved. Google SSO using onboard reporter can't send login to AD Plugin.
  • 7.0.1.25 Report Updates
7.0.1.15
  • Enhancement. Chromebook Single Sign-on Authentication Support.
  • Resolved. SSL Decryption through proxy broken.
  • Resolved. SNMP settings not able to save.
  • Resolved. Unable to download iboss certificate for MITM SSL Decryption.
  • Resolved. Cannot save SMB Backup settings on Backup & Restore manager.
  • Resolved. Save button when editing filtering group incorrectly labeled 'Copy Group'.
  • Resolved. System Proxy Info not displaying.
  • Resolved. Cannot delete LDAP Server entry from the Delete Selected button.
  • Resolved. Error when identifying computer by MAC Address.
  • Resolved. Delegated Admin self-service password change added back.
  • Resolved. "Mask Login iboss Logos" option doesn't work for user login pages.
  • Resolved. Unable to delete exception request.
  • Resolved. Keyword/SafeSearch option not applying when importing URLs to allowlist.
  • Updated. Link to Internet Access Window added back to management interface login.
  • 7.0.1.15 Report Updates
7.0.0.25
  • Resolved. Delegated administrators being logged out immediately after logging in.
  • Resolved. Threat/Malware reports not generating in new APT module.
  • Resolved. Download of the MITM certificate for SSL Decryption failing on warning page.
  • Resolved. Re-engineered the groups page to use infinite scroll for viewing groups to resolve interface performance issues on large number of group sets.
  • Resolved. Copying group settings to another group ignore monitoring settings.
  • Resolved. Allow Keyword option when adding a keyword not being saved when checked.
  • Resolved. Adding new Local Subnet, Filtering and Authentication Methods ignored.
  • Resolved. Adding new Local Subnet as IPv6, values not being accepted.
  • Resolved. Block Uncategorized sites option not displaying.
  • Resolved. AD Plugin server request count increments are blank.
  • Resolved. AD Plugin server description being overwritten with last description for all entries.
  • Resolved. Self Service URL Lookup says not enabled for group.
  • Resolved. Schedule widget not displaying times around 330AM and clear button not working.
  • Resolved. Current IP and group display on login page without logging in.
  • Resolved. Group name drop down list in controls not updating changed group names.
  • Resolved. Group Cache Settings under Network Advanced Settings not saving when enabled.
  • Resolved. Support for IE11 Compatibility View to resolve blank page attempting to access interface.
  • Resolved. Downloading a restore point backup created on version 6 when in version 7 fails.
  • Update. Added group number with group name to drop down list under controls.
  • Update. Added username to logout confirmation window when logging a user out from a computer.
  • 7.0.0.0.25 Report Updates
7.0.0.20
  • Resolved. Remote Management broken on version 7+.
  • Resolved. Local Subnets Bandwidth Accounting value not displaying correctly.
  • Resolved. Redirect block page not redirecting.
  • Resolved. Add computer -> Identify Me, not correctly displaying IP.
  • Resolved. LDAP validation for Search Filter not allowing %s value.
  • Resolved. 255.255.255.255 could not be used as a valid subnet mask in local subnets.
  • Resolved. Monday not displaying on local user time limits.
  • Resolved. Advanced Schedule not working in IE11.
  • Update. Alternate color for each category row.
  • Update. Change Password miscellaneous updates.
  • 7.0.0.0.20 Report Updates
7.0.0.15
  • Resolved. ibossNetID SSO Agent stops communicating with the SWG filter.
  • Resolved. Administration password containing special characters breaking login.
  • Resolved. Bypass toggle button on dashboard for fail-safe card not updating when pressed.
  • 7.0.0.0.15 Report Updates
7.0.0.10 IMPORTANT NOTE: It is recommended to create a backup restore point prior to running this firmware update. If you have an external reporting appliance, you must update the reporting appliance before or at the same time as the filter as well as an IPS device.
  • Resolved. LDAP login for delegated administration.
  • Resolved. Configuring categories for Monitoring triggers.
  • Resolved. Upgrade in previous version for 5-series models on rare occasion not pulling up management interface.
  • Update. Domains listed in exception requests not hyperlinked correctly.
  • 7.0.0.0.10 Report Updates
7.0.0.0 IMPORTANT NOTE: It is recommended to create a backup restore point prior to running this firmware update. If you have an external reporting appliance, you must update the reporting appliance before or at the same time as the filter as well as an IPS device.
  • Enhancement. Interface update to responsive layout.
  • Enhancement. APT Module features added to SWG for version 6 devices. Malware subscription required.
  • Enhancement. Home Dashboard added for quick links and action items.
  • Enhancement. Nested Groups for easily viewable linked groups.
  • Enhancement. Self Service Lookup URL feature.
  • Resolved. Encrypted Yahoo Search blocking feature not being blocked.
  • Resolved. Domain Extension blocking matching case sensitive.
  • Update. Threat Console additional settings moved under Threat Console sub-menu.
  • Update. Advanced User Settings moved under Preferences sub-menu.
  • 7.0.0.0.0 Report Updates
6.0.26.15
  • Enhancement. IPv6 Support.
  • Enhancement. Local Subnets and Bypass IP Ranges have been added as options for clustering between devices.
  • Resolved. Unable to delete content in Filtering Group notes.
  • Resolved. YouTube EDU not being applied in rare cases.
  • 6.0.26.15 Report Updates
6.0.26.10
  • Resolved. Bypass IP Range had an issue with selecting Full Bypass.
6.0.26.5
  • Resolved. Compatibility updates for previous firmware version 6.0.26.0.
6.0.26.0
  • Enhancement. Support for userDN added for ibossNetID.
  • Enhancement. Group Views feature added to compare filtering group settings under the Groups tab.
  • Enhancement. Added feature for automatic cache clearing for NetID and AD Login scripts for User Group caching under Network -> Advanced Settings.
  • Enhancement. Block Encrypted Yahoo Search feature added.
  • Resolved. YouTube Edu enabled causes infinite redirection.
  • Resolved. Request Exception for blocked pages is not working
  • Resolved. SSL decryption warning page fails to load on All Destinations, only on ones specifically listed.
  • Resolved. A few categories didn't allow the "No Overrides" option to save in the web categories section.
  • Resolved. Keyword blocking issues for wildcard matches on 6.0.23.115+ versions.
  • Resolved. Issue with matching multiple words in keyword blocking.
  • Resolved. Reboot is no longer required for any changes made to the "Default Landing Page" when using the Proxy pac authentication.
  • Update. SNMP Help Link Incorrect
  • Update. Updates for SSL encryption security packages.
  • 6.0.26.0 Report Updates
6.0.23.125
  • Enhancement. Gmail controls added for restricting to only approved organization Google Domains. SSL Decryption is required for this feature.
  • Enhancement. Spotify blocking feature added.
  • Resolved. Keywords were not being blocked on 6.0.23.25+ firmware versions.
  • Resolved. iboss series 6 making IGMP queries causing error log messages in some switches.
  • 6.0.23.125 Report Updates
6.0.23.115
IMPORTANT NOTE: If you are on version 6.0.23.25 and below this firmware version, you must upgrade to this version to avoid any issues with SSL decryption.
  • Enhancement. Ability to add notes to the Bypass IP Range entries.
  • Resolved. Issue with SSL gateway decryption from 6.0.23.25+ firmware versions.
  • Resolved. BYOD iPod/iPhone Login Page going to Internet Access Window.
  • Resolved. The AOL sign-up triggering the Tor/Ultrasurf Lock.
6.0.23.100
  • Enhancement. API Clear cache for group caching.
  • Resolved. Issue with using Google Image Search within Google Docs while Image Scrubbing enabled.
  • Resolved. Issue with Google Docs and Gmail attachments being blocked by blogspot.com addresses.
  • Resolved. NTLM save and test fails when proxy set to NTLM on series-6 iboss.
  • Resolved. Foreign Google domains resolved correctly with Block Google Encrypted Search enabled.
  • Resolved. Saving the option to Use Local Subnets for Default Group on the ibossNetID SSO Agent settings.
6.0.23.25
IMPORTANT NOTE: YouTube Encrypted Blocking was broken out on a per group basis. Check all group settings after the upgrade for the filtering group to be sure encrypted youtube is still blocked as it was a global option before and now on a per group basis.
  • Enhancement. Generation 3 YouTube Encrypted Blocking now on a per filtering group basis vs. global.
  • Resolved. Issues with domains overlapping with Google IPs (ex: blogspot.com).
  • Resolved. Misc. updates and improvements with connection count handling.
  • 6.0.23.25 Report Updates
6.0.22.125
  • Enhancement. Generation 2 clustering of manual logins that can directly cluster from iboss itself.
  • 6.0.22.125 Report Updates
6.0.22.100
  • Enhancement. Caching for ibossNetID deployments to increase performance and offload LDAP/AD/eDirectory servers. This requires iboss cache to be flushed when moving a user from one group to another, but substantially offloads LDAP servers on the network and reduces coupling between the iboss and failing/non-responsive servers.
  • Resolved. Youtube embedded videos with Youtube for schools enabled would not play.
6.0.22.90
  • Update. Update to address ASA firewall bug where stagnant connections may be left open. This may lead to high connection counts when using Cisco ASA firewalls.
6.0.22.75
  • Enhancement. Sync Manual User Logins added to Clustering. If used, each cluster member will need all the iboss devices listed in the cluster members.
  • Resolved. ibossNetID and Apple Logon Hooks set to default to the local subnet group if no group match is found and the local subnet set to require user login will now default to the security key for the group that is used.
  • Resolved. Reverse DNS mapping of domains was not functioning as expected.
  • Resolved. Ignores Google domains for reverse DNS mapping.
  • Resolved. Proxy conflict when Mobile Client is associated with unique listening IP on same port that proxy is listening on.
  • Resolved. Google block encrypted search not functioning properly for Chromebook and Android devices.
  • 6.0.22.75 Report Updates
6.0.22.5
  • Resolved. Issue with Google Docs and Gmail attachments being blocked by blogspot.com addresses.
  • 6.0.22.5 Report Updates
6.0.22.0
  • Resolved. Issue with clustering between x50/x500 & x60/x600 model units (ex: 14500 & 14600).
  • Resolved. Connections reaching max being reached on x60/x600 models.
  • 6.0.22.0 Report Updates
6.0.21.150
  • Enhancement. Expat Shield added to High-Risk Activity Lock.
  • Enhancement. Clustering between x50/x500 & x60/x600 model units (ex: 14500 & 14600).
  • 6.0.21.150 Report Updates
6.0.21.120
  • Enhancement. SNMP support added to 4550+ models.
  • Enhancement. SpotFlux VPN added to High-Risk Activity Lock.
  • Enhancement. OpenVPN added to High-Risk Activity Lock.
  • Resolved. Updates to TOR High-Risk Activty Lock.
  • Resolved. Custom Category Allowlist not matching on subdomains via proxy or mobile client.
  • Resolved. Allowlist/Blocklist Import as Global doesn't work as global.
  • Resolved. URLs addresses in allowlist not applying correctly, only domains/subdomains.
  • Resolved. Google Encrypted Search not being blocked via proxy to the iboss.
  • Update. Copy group settings wording updated for clarity.
6.0.21.10
  • Resolved. Update compatibility issues with version 6.0.21.0 with systems that do not have Internet access while the update is taking place.
  • 6.0.21.10 Report Updates
6.0.21.0
  • System with onboard reporting improvements.
  • Resolved. Issue with logging into the iboss SWG Filter through the Remote Management interface.
  • 6.0.21.0 Report Updates
6.0.20.30
  • Resolved. Delegated admin session would end when another delegated admin with same username logged in.
  • Resolved. Google encrypted blocking update to allow pages to load that require encrypted Google ads.
  • 6.0.20.30 Report Updates
6.0.20.0
  • Enhancement. Ability to log into admin interface using LDAP/AD credentials. Map an LDAP group to the iboss under the iboss users page to allow members of that group to log into the iboss.
  • Enhancement. Ability to create different level admins using LDAP credentials by mapping different LDAP groups to iboss admin login groups.
  • Enhancement. BYOD features that include a compatible mobile login window that does not require a session window. Features available under Network Settings->BYOD.
  • Enhancement. Ability to customize the mobile login page for BYOD login.
  • Enhancement. Ability to copy group settings from one to many.
  • Update. Enhanced all Google SSL blocking to be more compatible with pages that require Google SSL ads/tracking to load. Pages that require Google SSL ad tracking may have had trouble loading due to the Google SSL blocking feature enforcing the block policy.
  • Resolved. Google Encrypted Searching blocking when proxying to the iboss.
  • Resolved. eDirectory ignore patterns were not matching when monitoring eDirectory with events.
  • 6.0.20.0 Report Updates
6.0.18.100
  • Resolved. Refresh timeout was not being performed on each heartbeat of the ibossNetID SSO Agent if the local subnet is set to require user login and the ibossNetID SSO Agent was being used for authentication.
6.0.18.95
  • Resolved. Google SafeSearch not being enforced if google.com was in a custom allowlist with SafeSearch option checked when going through the iboss proxy.
  • Resolved. YouTube App not being blocked when checked.
  • Resolved. Cleanvideosearch.com videos not being played when going through the iboss proxy.
6.0.18.80
  • Resolved. Google SafeSearch not being enforced in some cases when going through the iboss proxy.
6.0.18.75
  • Enhancement. Program signature added for SnapChat app under Social Media controls.
  • Enhancement. Transparently Authenticated Users remain logged in after reboot or local subnets change.
  • Update. Icons on home page of management interface redesigned.
  • Resolved. Google Image Scrubbing for Google foreign domains.
  • Resolved. Block Page For HTTPS Traffic using the Local SSL Inspection Agent.
  • Resolved. SSH Blocking fails on DNS resolvable SSH connections.
  • Resolved. Group Override Timeout not working.
  • Resolved. Categories unchecked to Log under Web Statistics still logged.
  • Resolved. Restore Factory Defaults did not clear out URL Exception requests.
  • Resolved. Block Google Encrypted Access also blocked *.appspot.com and *.googleapis.com SSL cert.
  • Resolved. Incorrect YouTube EDU filter key allows video to play.
  • Resolved. m.youtube.com not redirecting to cleanvideosearch.com.
  • Resolved. Google Image Scrubbing not applying filter for URLs with port numbers.
  • 6.0.18.75 Report Updates
6.0.18.15
  • Resolved. Issue with the mobile client through proxy that if the computer is removed from the list, it no longer accepts logins.
6.0.18.10
  • Enhancement. Cleanimagesearch.com redirect added on Mac mobile client for the ability to filter image search results.
  • Enhancement. Proxy Mobile Client Source IP Authentication allows mobile proxy authentication based on source IP.
  • Enhancement. Support page added directly in the iboss filter interface for helpful links and information.
  • Enhancement. ibossNetID SSO Agent added ability to register with multiple iboss devices.
  • Enhancement. ibossNetID SSO Agent added ability to be deployed with configuration parameters on command line.
  • Enhancement. iboss AD Plugin added ability to integrate with RADIUS authentication.
  • Resolved. In rare cases the filter stops sending URL data to the reporter.
  • Resolved. Saving applications page will disable YouTube and Google settings on Social Media page.
  • Resolved. Local SSL Inspection Agent blocking google.com when Google Drive is selected to be blocked.
  • Update. Manual User Session Timeout augmented. If set, activity will keep session alive. When traffic activity becomes idle, the user is logged out after the specified time.
6.0.17.30
  • Enhancement. iboss Local SSL Inspection Agent support added.
  • Resolved. Domain extension blocking matches were case sensitive.
6.0.17.25
  • Enhancement. LDAP support for Open Directory.
6.0.17.20
  • Enhancement. User list search filters and sorting for delegated administrators. To sort, click the User title.
  • Resolved. Bandwidth entries by domain in the logs were not displaying correctly.
  • 6.0.17.20 Report Updates
6.0.17.10
IMPORTANT NOTE: If you have an external reporting appliance, you must update the reporting appliance before or at the same time as the filter.
  • Enhancement. New Bandwidth Shaping Dashboard module. Allows you to view QoS/Bandwidth Shaping rules in real-time.
  • Enhancement. User list search filters and sorting. To sort, click the User title.
  • Enhancement. Glype Proxy detection blocking enhancement.
  • Update. Mobile client backend server IP addresses bypassed for iboss IP Address blocking feature.
  • Update. Ports 3389, 465, 992, 993, 995, 587 added to allowed list for SSL on Non-Standard Port blocking.
  • Resolved. YouTube Gen2 not working correctly for blocking Encrypted YouTube.
  • Resolved. When applying factory defaults, alias group names remain in place.
  • Resolved. QoS username input field limited to 16 characters.
  • Resolved. Hot Spot Shield not being blocked. Added to high-risk app locking if both options are checked for Hot Spot Shield and High-Risk App Locking.
  • 6.0.17.10 Report Updates
6.0.16.90
IMPORTANT NOTE: If you have an external reporting appliance, you must update the reporting appliance before or at the same time as the filter.
  • Resolved. Block Google Encrypted Access blocks websites with embedded encrypted Google analytics links.
  • Resolved. Stealth Category Rule Blocking HTTPS.
  • Resolved. Custom Login URL being clustered.
  • Resolved. Identified Computer Edit defaults with a user currently associated to the IP
  • Resolved. External Reporter Database Password sent in URL in plain text when saved.
  • Resolved. Cannot edit "Log Web Statistics" categories.
  • Update. Alias Group Names not replicated with Clustering.
  • Update. Complete Bypass on Bypass IP Range from DNS interception.
  • Update. Foreign Google Domains to be added to Block Google Encrypted Search & Access.
  • 6.0.16.90 Report Updates
6.0.16.75
  • Resolved. QoS Address Matching. In certain cases, quality of service rules not being applied. This is now resolved.
  • Resolved. Local Subnet With Require User Login and Login Hook Falling back to local subnet causes incorrect group.
  • Resolved. When safe search is enabled on a group used for mobile, Google searching is blocked.
  • Update. Pre-defined Adult Keyword list updated.
6.0.16.65

IMPORTANT NOTE: If you are on version 6.0.16.20 and in tap mode, you should update to this latest version.

  • Resolved. Tap mode would potentially hang in rare circumstances on version 6.0.16.20. This has been resolved.
  • Enhancement. Performance improvements for reporting between iboss Filter and Reporter.
  • Enhancement. SSL Filtering Improvements.
  • Resolved. Addresses potential issues with filter locking out of reporter.
  • Resolved. Cluster Alias Group Names.
  • Resolved. Block SSL on Non-Standard ports blocking SSL for IMAP port 993.
6.0.16.20
IMPORTANT NOTE: If you have an external reporting appliance, you must update the reporting appliance before or at the same time as the filter.
  • Enhancement - Ultrasurf / Tor Blocking Feature.
  • Enhancement - Youtube Application Blocking Feature.
  • Resolved - Redirection of cleanvideosearch.com on network not working properly for iPad.
  • Resolved - Clean Image Search was redirecting while proxying to iboss.
  • Resolved - Mobile Client Licenses are not being released.
  • Resolved - Submitting URL Recategorization from iboss interface submits from default email.
  • Resolved - Google Safe Search not enforced in proxy mode.
  • 6.0.16.20 Report Updates
6.0.15.125
  • Update - Google SSL search blocking updated to reflect changes implemented by Google. If you are having problems accessing Google search, update to this version.
  • Update - SSL Domain enforcement updates to fix problems with inadvertant Google blocking due to changes in protocols.
6.0.15.120
  • Update - Additional enhancements to ultrasurf blocking signatures.
6.0.15.115
  • Update - Updates to enhance blocking to latest version of Ultrasurf.
6.0.15.100
IMPORTANT NOTE: If you are on version 6.0.15.x series, you should update to this latest version.
6.0.15.60
  • Enhancement - Connection tracking performance improvements.
6.0.15.50
  • Resolved - MDM filter syncing wouldn't enable when you click Save. This has been resolved.
  • Resolved - Issue with hanging after attempting to login to the onboard report interface.
6.0.15.20
IMPORTANT NOTE: If you have an external reporting appliance, you must update the reporting appliance before or at the same time as the filter.
  • New - iboss Enterprise Filter cluster filtering settings to iboss Mobile Ether MDM. Provides the ability for the cloud based MDM filtering to cluster filtering settings with the iboss Enterprise Filter settings.
  • 6.0.15.20 Report Updates
6.0.15.5
IMPORTANT NOTE: If you have an external reporting appliance, you must update the reporting appliance before or at the same time as the filter.
  • New - Integration with Enterays Network Access Controllers
  • New - Realtime bandwidth feed. Provides data for reporter in depth bandwidth analysis.
  • New - Support for mobile clients traversing networks that mangle request headers (some cell networks)
  • Resolved - Reporting would stop logging in rare circumstances.
  • 6.0.15.5 Report Updates
6.0.13.0
IMPORTANT NOTE: If you have an external reporting appliance, you must update the reporting appliance before or at the same time as the filter.
  • Resolved. Fixed non-responsive ibossNetID SSO Agent page when an LDAP server hangs if configured to pull groups from LDAP.
  • Resolved. Fixed non-admin users disabling global Block Google Encrypted Search option.
  • Enhancement. Clean image search block image sent from filter or reporter instead of cloud.
  • 6.0.13.0 Report Updates
6.0.12.245
  • Enhancement. Bypass Citrix Applications option for predefined list of citrix addresses to bypass.
  • Resolved. ibossNetID Single sign-on agent losing authentication fix.
  • Resolved. YouTube Education bug fix for incorrect School ID.
  • 6.0.12.245 Report Updates
6.0.12.200
  • Enhancement. Ability to configure an additional IP address for the Mobile Client to listen on. Allows you to configure ports 80 and 443 to use for mobile filtering.
  • Resolved. Windows Mobile Client Gen2 may experience slow down due to hanging SSL communication port on iboss SWG.
  • Resolved. Manual login override window over SSL/HTTPs connection can become non-responsive.
6.0.12.150
  • Enhancement. iboss Mobile Client integration with user LDAP groups.
  • Resolved. VNC recordings may stop due to non-responsive computers.
  • 6.0.12.150 Report Updates
6.0.12.125
  • Resolved. Fixes problems with Youtube not loading in certain network topologies.
  • Resolved. Fix for clustering on 16500 models.
6.0.12.120
  • Resolved. Fixes issue where youtube.com is inaccessible with an iboss with multiple interfaces.

** Please upgrade to 6.0.12.125 if you are experiencing problems with Youtube loading.

6.0.12.110
  • Resolved. There was an issue with terminal servers and terminal clients where if the terminal server was set to be filtered, it would keep overwriting the last logged in user. This has been resolved.
  • Enhancement. Generation 2 Windows Mobile Client support.
6.0.12.30
  • Resolved. In rare cases, the interface may potentially hang and unit may become unresponsive. This has been resolved.
  • Enhancement. YouTube Encrypted blocking enhancements and fixes captcha issues with inline deployments.
6.0.12.0
  • Enhancement. Various bug fixes and performance improvements. Highly suggested to upgrade for firmware versions 6.0.11.x.
6.0.11.130
  • Resolved. Issues with desktop recording when using an external report manager.
  • Resolved. Enabling URL exception requests on last filtering group did not save properly.
  • Resolved. URL exception requests from last filtering group did not show the correct group.
  • 6.0.11.130 Report Updates
6.0.11.70
  • Resolved. admin username would logout user too frequently.
  • Resolved. Adding search engines such as google.com in the allowlist was allowing Youtube videos to play from search results due to the Youtube allowlist referal feature. This no longer happens on search engines added to allow list.
6.0.11.60
  • Resolved. SafeSearch was being applied to incorrect google URL.
6.0.11.50
  • Enhancement. Clean Image Search redirect when proxying to the iboss.
  • Resolved. Embedded YouTube videos would be redirected to cleanvideosearch.com, adding a site to the allowlist will allow the embedded video to play.
  • Resolved. QoS page could take a while to display while trying to fetch rates for each rule.
  • Enhancement. Algorithmic improvements to span/mirror/tap operational mode increases packet processing ability in this configuration significantly which deliver even higher performance.
6.0.11.25

IMPORTANT NOTE: 6.0.11.25 is recommended. If you have downloaded 6.0.11.20 and scheduled an install, cancel this install and download the latest 6.0.11.25.

IMPORTANT NOTE: If you have an external reporting appliance, you must update the reporting appliance before or at the same time as the filter.

  • Resolved. URL Exception requests displayed incorrect username.
  • Resolved. Google log callouts would not lead to search results when clicking on the View button in some cases.
  • Enhancement. Manual login overrides do not get overriden by automatic authentication with heart beats.
  • Enhancement. Next generation signature database. Significant signature database enhancements and algorithm changes which deliver even higher performance, better resource utilization, and enhances hyrbrid cloud integration.
  • Enhancement. Global timeouts separated for manual authentication vs. automatic authentication under the Users Advanced Settings section.
  • Enhancement. Allowlist, blocklist and custom allow/block lists search filters.
  • Enhancement. Allowlist, blocklist and custom allow/block lists now scrollable with configurable display length.
  • Enhancement. Scheduled firmware updates now default to next day at 1:30 am.
  • Enhancement. QoS now displays real-time bandwidth being applied to each rule.
  • Resolved. QoS did not match properly on certain rules such as IP Addresses.
  • Enhancement. Bandwidth logging per domain. Report allows for dynamic drill down into domains and creation of PDF report with bandwidth per domain statistics in overall PDF report.
  • Resolved. Reporter NTP time synchronization has been changed to deal with cases where time on reporter would drift.
  • Enhancement. Ability to specifiy NTP server for reporter.
  • Resolved. The real-time top bandwidth consumers would not update in certain circumstances.
  • Enhancement. Logs display amount of bandwidth consumed per domain access.
6.0.10.5
Critical Update
  • Critical Update. This update addresses issues where the iboss in certain circumstances would stop responding.
6.0.9.115
  • Resolved. Youtube.com was being allowed if set to block on a custom block page link. This has been fixed.
  • Resolved. Downloading the Apple Single Sign-on Login Hook link was broken. This has been fixed.
6.0.9.105
  • Resolved. Packet injection fixes for redirection of youtube.com and google.com encrypted serach in instances where it wasn't sending correct responses with units deployed inline with a management card.
  • New. Windows Agent for Single Sign-on Authentication with integration with LDAP.
  • Resolved. Username wasn't populating on the URL exception requests, this has been fixed.
  • 6.0.9.105 Report Updates
6.0.9.60
  • Resolved. In some instances Active Directory scripts failed to authenticate; this has been fixed.
  • Resolved. Ads category set to block would cause some sites not to load properly and just spin loading. This has been fixed.
  • Resolved. Depending on deployment configuration, encrypted YouTube not blocking, this has been fixed.
  • Resolved. Help page links updated.
  • Resolved. Adding a site to the allowlist will allow you to prevent embedded videos from youtube on a website from redirecting to cleanvideosearch.com when cleanvideosearch is enabled on a group.
  • 6.0.9.60 Report Updates
6.0.9.50
  • Resolved. Encrypted YouTube blocking adjustments.
  • Resolved. Google Encrypted search under certain instances not blocking.
  • Update. Clean Image Search feature redirect Bing, Yahoo, Dogpile and other image searches to filtered Google Image Search.
  • Resolved. Fixed the filtering group tabs being incorrect on higher group numbers in the Advanced Schedule.
  • New. Clean Video Search plays videos when directly clicking a youtube.com link, previously went to the home page of cleanvideosearch.com.
  • 6.0.9.50 Report Updates
6.0.9.30
(Must update reporter first)
  • New. Clean Image Search as images are now coming from Google Images directly while blocking images that come from blocked sites.
  • Update. Backend reporter enhancements on the way the filter reports logs to the reporter. If you have an external Reporter appliance, you must update the reporter first before updating the filter.
  • Resolved. Tokenize groups wasn’t working if Match Group Key was left blank, this has been fixed.
  • Resolved. Issue with specific programs not being able to uncheck on the Programs page.   
6.0.9.5
Critical Update
  • Critical Update. This update addresses issues where the iboss interface may stop responding intermittently.
6.0.8.250
  • Update. Add domain time usage to onboard reports.
  • Update. Adjustment to optimize logging to reports from the filter.
6.0.8.245
  • New. Apple Single Sign-on LDAP integration.
  • Update. Adjustment to youtube.com to cleanvideosearch.com redirection.
6.0.8.230
  • Update. URL Domain Ignore List changed to URL Pattern Ignore List for adding specific URLs to ignore from reports.
  • Resolved. User Session Timeouts would fail to timeout user.
  • Resolved. World of Warcraft falsely triggering.
6.0.8.215
  • New. YouTube Education integration added per group for YouTube school ID.
  • New. Clean Video Search redirection per group basis.
  • New. YouTube Blocking per group basis while blocking HTTPS globally.
6.0.8.210
  • Resolved. In certain circumstances the filter may stop reporting to an external reporter. This has been resolved.
  • Resolved. Using Google search services for enterprise may be affected by safe search enforcement in some browsers. This has been resolved.
  • Resolved. TCP port 6001 changed from being accessible doing an internal vulnerability scan.
6.0.8.205
  • Resolved. Ultrasurf blocking enhanced.
6.0.8.175
  • New. Ability to explicitly block outbound SSH connections.
  • New. Ability to explicitly block outbound RDP connections.
  • Resolved. Ultrasurf blocking enhanced.
6.0.8.120
  • Resolved. Web hits would not display on PDF reports.
6.0.8.115
  • Resolved. Fixed video searching and viewing problems with cleanvideosearch.com.
6.0.8.110
  • Resolved. Logging web traffic for internal proxy servers.
6.0.8.100
  • Resolved. On firmware versions 6.0.8.x and above that employ a new mobile client engine, older mobile clients would have trouble connecting and providing mobile filtering. The number of active mobile clients would display 50 maximum.
6.0.8.65
  • Resolved. With certain configurations, the Clean Video Search feature would not redirect properly when enabled. This affected iboss 2 port models mainly that use their firewall as a gateway.
  • Resolved. Database had some issues with domains using a wildcard such as *.google.com.
6.0.8.60 - Critical Update For Setups Using Onboard Reporting
  • Resolved. This is only a critical update if you are NOT using an separate external reporting appliance (iboss Enterprise Reporter). If you are using an external Enterprise Reporter, you must perform the critical update of version 6.0.8.50 or greater to that appliance. Reporter database maintenance would not clean old log archives causing the database to become full and potentially unaccessible. This would only happen if under the reporter Settings the value for "Hold Logs Before Deleting" was anything other than 0.
  • Resolved. Manual override window would fail to authenticate a user against and LDAP server (Active Directory, eDirectory, etc) if there were special characters in the user's OU.
6.0.8.50
  • Update. Mobile client filtering performance enhancement. Enhanced concurrent simultaneous connection support.
  • New. AD Plugin diagnostic tool in AD Plugin section.
6.0.8.30
  • Critical Update For Users of 6.0.8.25 - Critical clustering issues were resolved. Even if clustering is not being used, all users of firmware version 6.0.8.25 are required to upgrade to 6.0.8.30 or above.
6.0.8.25
  • New. Dynamic blocking of filtered websites which are accessed via Google Translation Services.
  • New. SSL support for iboss configuration interface. Certificates configured under Network->SSL Settings
  • New. SSL support for user override logins.
  • New. Clean Image Search expanded to automatically redirect Yahoo Images to the Clean Image Search when Clean Image Search is enabled.
  • Updated. Maximum number of allow list and block list URLs increased substantially.
  • Resolved. iboss time zone would cause system time to be off under certain circumstances. In addition to this being resolved, now clicking Save on the Timezone page will also sync the system time via NTP.
6.0.7.25
  • Resolved. Under certain circumstances when connecting LDAP via SSL or eDirectory via SSL, an error would be thrown indicating the certificate could not be found.
6.0.7.20
  • Updated. Backup/Restore was improved to support restoring to a hardware platform that is not the same as the original hardware platform (different interfaces, etc).
6.0.7.10
  • Resolved. Update for gen2 Mac mobile client support. Resolves case where wrong mobile client key could put user in the wrong filtering group when local.
6.0.7.0
  • New. Support for next generation Mac mobile clients.
  • New. Support for eDirectory full tree synching on every pass when using polling is enabled.
  • Improved. Misc. improvements to eDirectory integration and user synching.
6.0.6.235
  • Resolved. Some of the categories were not showing up under the threshold/real-time monitoring page.
6.0.6.230
  • New. Ability for delegated admins to log into iboss interface when they're computer's IP Address is in the bypass IP ranges or they are off the local network.
6.0.6.225
  • New. Ability to map groups of mobile clients to different filtering groups by specifying different security keys per group.
6.0.6.215
  • New. Group Filter in detected computers section.
  • New. Quick MyIp Filter in detected computers section.
  • New. Ability to choose to use subnet default filtering policy when using the AD Plugin and no groups match for a user login.
  • New. No need to import eDirectory certificate any longer when using SSL with eDirectory auto login.
  • Resolved. Custom successful login custom redirect fixed for manual logins.
  • Resolved. Reporting group data was not properly propagated for proxy users.
  • Improved. LDAP communication to LDAP servers.
  • Improved. eDirectory communication to eDirectory servers.
6.0.6.195
  • Resolved. Some videos would not play under goLive! Campus. goLive! Campus integration feature enhanced.
6.0.6.190
  • Improved. Glype dynamic proxy detection.
6.0.6.180
  • Resolved. Some YouTube videos would not play via goLive! Campus even with the goLive! Campus Integration feature enabled on the programs page.
  • Resolved. The Google clean image search feature may cause some Google logos not to load.
6.0.6.145
  • Improved. Minor improvements to the new goLive! Campus media library integration.
6.0.6.140
  • New. Encrypted YouTube blocking and clean YouTube searching. This unique feature solves the problem that was created when Google installed a generic Google SSL/HTTPS certificate for YouTube. This feature allows you to block encrypted access of YouTube via https while still allowing other vital Google services such as Google Apps (Google Docs, Gmail, etc). In addition, this feature provides a clean YouTube feed that has user comments and extra misc. content from YouTube removed. In addition, Safe Search is enforced for all searches.
  • New. goLive! Campus integration. This allows the iboss to integratate with iboss's goLive! Campus community. goLive! Campus allows schools to control YouTube media content and grow a library of videos that can be shared throughout the school. The solution is in the cloud which means teachers can request videos and build their public classroom video channels while off campus as well. In addition, media content between schools is shared. It's a great way to manage YouTube access and build a media library.
6.0.6.125
  • Resolved. Global checkbox options are removed for delegated admins in the allowlist/blocklist import and the keywords import pages.
  • Resolved. Fixed issue with trailing dots in domain name causing rules not to be applied correctly.
6.0.6.120
  • Resolved. This firmware fixes an issue for users of version 6.0.6.100 where access to interface is repeatedly lost Although it does not affect all users, all users of 6.0.6.100 must upgrade
6.0.6.100
  • New. Ability to apply reporting groups to subnet and ranges. This is in addition to the ability to assign reporting groups to filtering groups which was available prior to this version. This allows you to delegate and divide reporting based on IP ranges while maintaining the same filtering groups across those IP ranges.
  • New. Ability to lock a policy on an entire subnet/IP range. This works just like the Computer Overrides User option, except you define it for the entire subnet/range on the Add Local Subnets page.
  • Change. Changes to subscription caching.
6.0.6.20
  • Resolved. This update applies updates to the internal reporter with regard to database management. Please refer to the release notes for the reporter for details on 6.0.6.20 found here. If you are using an external reporting appliance, please update the reporting appliance to version 6.0.6.20.
6.0.6.10
  • NOTE. If you are using an external report manager appliance, you must update your reporting appliance when applying this update to 6.0.6.10.
  • New. Dynamic Glype proxy detection. This signature dynamic matches proxy requests by signature. This can be enabled under Internet Controls->Programs, Protocols, DLP->Dynamic Proxy Blocking.
  • New. Administration auditing support. Tracks filter changes and audits administrative changes to the reporter logs.
  • New. Ability to block users from posting on facebook while still having the ability to view facebook posts. This option is found under Internet Controls->Programs, Protocols, DLP.
  • New. Improved SSL blocking.
  • New. Speed improvements to manual authentication via LDAP using the iboss login Window.
  • Resolved. Keyword option did not show on custom allow list.
  • Resolved. Global option did not show on keyword page.
  • Resolved. Block Google encrypted access did now show for delegated administrators.
  • Resolved. Ability to add timed Allowlist URLs did not show for delegated administrators.
  • Resolved. When doing an advanced add for a computer, the ability to select require user login was not present.
6.0.5.35
  • Resolved. This is a critical update that resolves an issue with internal log maintenance. All users should update to this release if running firmware version 6.0.5.X.
6.0.5.25
  • Resolved. This resolves an issue related to the reporter performing maintenance on the url log entries. Version 6 up to this point may have an issue when attempting to delete a url log entry archive.
6.0.5.20
  • New. Ability to block all encrypted Google traffc on a per group basis.
6.0.5.10
  • New. Improvements in performance througout interface.
  • New. Packet processing performance increase in tap mode.
  • Resolved. Issue processing SSL certificates in version 6.0.5.0. Users of this firmware version should upgrade to this release.
6.0.5.0
  • New. Advanced new user interface. Completely redesigned with enhancements to usability throughout.
  • Resolved. eDirectory Full Sync and polling would not honor ignore pattern.
  • Resolved. Importing to allow list no longer strips "www." if it is prepended to URL.
  • Resolved. Importing to block list no longer strips "www." if it is prepended to URL.
  • New. Bypassing individual Youtube videos was not allowed if "www." was not prepended to the the full URL. iboss handles both cases automatically.
  • New. Enhanced SSL Blocking.
6.0.3.10
  • Resolved. Login As Different User did not present proper login page when accessed from block page (only affected version 6.0.3.0).
6.0.3.0
  • New. When performing a manual override and then logging out, the original user that was transparently authenticated is restored automatically.
  • New. Hitting logout on the Internet Status window only has an effect if the user is logged in manually.
  • New. Ability to specify a filtering group as an override group. This allows you to create a group that will allow a user to override block pages with the same user account and password instead of having to create a separate account for override.
  • Resolved. Individual youtube videos added to the allow list would fail to play.
  • New. Ability to add individual youtube video to a specific group instead of just to a custom youtube category.
  • Resolved. eDirecotry login ignore patterns were not being respected when using polling or full sync.
  • New. Pressing the Login As Different User button brings up the login window and not the user session window if a user is already logged in.
6.0.2.95
  • Resolved. When using the iboss as a DNS filter (pointing to iboss as computer's DNS server for the purpose of filtering), iboss would not filter if a management interface was present.
6.0.2.90
  • Resolved. When logged in as a delegated non-full administrator, the ability to add a timed URL to the allow list was not appearing.
  • New. Clearing iboss caches will automatically propagate to all members of the cluster. Clearing caches (not URL cache, but group membership cache) can be found under Home->Tools & Utilities.
  • Resolved. When logged in as a delegated non-full administrator, the global checkbox for keywords was appearing. This option is now hidden when logged in as non-administrator.
6.0.2.85
  • New. Added ability to manually specify what the source mac address should be for block page redirects. This is found under Home->Preferences->Customize Block Pages. It is a global setting and should be left as default for most networks.
6.0.2.80
  • New. Added ability to add local iboss user which overrides AD Plugin groups (works like AD Script functionality).
6.0.2.75
  • Resolved. Block page was having issues submitting URL exception requests from Firefox and Safari.
6.0.2.60
  • New. Category descriptions with an "&" in their name were changed to use "/" for consistency and to allow description to show up fully on block page.
6.0.2.50
  • New. Ability to submit URL for recategorization request directly via the URL Lookup page.
  • New. Added date to URL exception request list.
  • New. Ability to move QoS rule to specific priority number with single action.
  • New. Added contact email to URL exception request list and block page to allow user to enter an email address contact.
  • Resolved. Group priorities were not being honored when matching by group membership OU.
  • Resolved. Streaming Audio/Video category not showing in URL Category Lookup page.
6.0.2.0
  • New. Ability to add a timed URL to the allow list which automatically removes itself after the preconfigured specified time.
  • New. Ability to add default setting for timed URL addtions to the allow list.
  • New. Ability to add a session timeout on a per user basis for local iboss user overrides.
  • Resolved. Adding IP to the Bypass IP Range would perform processing on SSL connections.
6.0.1.65
6.0.1.60
6.0.1.50
  • New. Ability to install firmware at specified date and time. Allows firmware to be prepared for installation during non-peak hours.
  • Resolved. iboss may stop logging URLs (only applies to version 6 firmware).
6.0.1.30
  • Resolved. SSL may fail to block under certain circumstances where a network has an internal DNS server in bypass list.
6.0.1.15
  • New. Ability to lock web category. Locking a web category prevents a delegated administrator from changing it.
  • New. Ability to specify No Overrides for web category. This prevents a delegated administrator from adding a URL to the allow list when the category has this option enabled.
  • New. Streaming Radio/TV category.
  • New. Backup/Restore email indicates IP Address of iboss on which backup was performed.
  • Resolved. Incorrect Allow List Navigation page would be displayed when the Allow Only feature was enabled and the navigation page was enabled.
6.0.1.5
  • Resolved. Manage Users priviledge was not displayed when adding delegated administrator.
  • Resolved. Ability to scroll to next page of override users was not available when logged in as delegated administrator.
6.0.1.0

This release is a milestone release which significantly upgrades reporting performance and contains significant changes to the back-end. The reporter (both internal and external report manager) must rebuild its reportring database during this upgrade.

Upgrading the iboss Filter requires a mandatory upgrade to the External Report Manager if present. If you are not utilizing an external report manager, the internal report manager is upgraded automatically.

  • New. Full delegated reporting. Divide all reporting and access based on reporting groups.
  • New. Auto-partitioning of URL logs.
  • New. Full backup capabilities for reporting data, including URL logs and bandwidth accounting data.
  • New. Rearchitected reporting back end which significantly improves data access performance as well as data maintenance feature for heavy data loads.
  • New. Reporting front end. Improved design and navigation flow.
  • New. Google SSL/Encrypted Search blocking.
  • New. Global Video Desktop Recording password functionality.
5.0.37.70
  • Resolved. eDirectory matching by OU via transparent authentication may fail to match correct filtering group.
  • Resolved. eDirectory matching by OU via Full Sync button may fail to match correct filtering group.
5.0.37.55
  • Resolved. iboss inteface may stop responding when being accessed as a proxy with "Identity Theft/IP Address URL Blocking" enabled.
5.0.37.20
  • Added. Support for bypassing Remote Desktop ports when accessing clients via Remote Desktop not from within the local LAN. SSL authentication was preventing access to the Remote Desktop clients.
5.0.37.15
  • Update. Resolved issue where block page was not being presented on older clients running HTTP 1.0 protocol.
5.0.37.10
  • Added. Ability to use a user's full distinguished name (DN) when using automatic login via eDirectory. This is configured through the eDirectory settings page for each eDirectory server registered by specifying "Use Full User DN". This is useful for eDirectory deployments that have duplicate usernames within a tree.
  • Added. Ability to use a user's full distinguished name (DN) when using manual login via LDAP. This is configured through the LDAP settings page for each LDAP server registered by specifying "Use Full User DN".
  • Added. Ability to specify the LDAP search scope to a single level (or subtree which is default) when using manual login via LDAP. This is configured through the LDAP settings page by configuring the search scope. Specifying "Single Level" will restrict the user search to the same level as the search base and will not use recursion.
  • Added. Support for multiple independent LAN connections on single appliance. Ideal for networks that have an independent VLAN needing filtering. Available on new models configured with multiple LAN/WAN interfaces.
  • Added. Ability to match filtering group membership based on eDirectory user's OU when using transparent eDirectory login. Previous releases supported this for Active Directory and LDAP via login window.
5.0.36.10
  • Added. Ability for local iboss user group membership to override Active Directory group membership when using transparent authentication via logon/logoff scripts.
5.0.33.10
  • Added. Youtube safe search enforcement.
  • Added. Use of compression for transfers when using clustering. This is desirable when using clustering across WAN links or slow connections. For compression to be used, each cluster member must be specified to use compression. Note: With this update, you must update all members of the cluster when using clustering as the communication protocol is not backward compatible.
5.0.32.20
  • Added. Ability to adjust clustering transfer timeouts. Timeouts can be adjusted to larger values when clustering across slow links.
5.0.32.10
  • Added. Ability for delegated administrators to add local iboss override users.
  • Added. Ability to match Active Directory groups based on tokenizing group names. For example, an Active Directory group System Administrators can attempt to match System then Administrators for a group match if tokenize group names is enabled.
  • Update. Backend performance enhancements.
  • Added. Apple single sign-on via logon and logoff hooks.
  • Added. Ability to match on user DN and OU container for Active Directory and LDAP.
  • Resolved. Clusting option may cause iboss to top responding on models 9550 and above.
  • Update. Ability to set user session timeout while using Active Directory scripts. When no heartbeat is received from script, user is timed out if a user timeout is specified.
5.0.30.115
  • Resolved. Custom block page redirect page for proxy was not redirecting properly.
  • Added. Group name passed to block page so that it can be displayed in custom redirect page.
  • Resolved. Logon scripts to Active Directory Server 2008 R2 may cause error when saving settings on the Active Directory page.
  • Added. Hotspot Shield signatures for full blocking of Hotspot Shield.
  • Updated. New signatures for Ultrasurf.
  • Updated. Rogue SSL detection enhanced.
  • Updated. ':' where not allowed when adding Allowed Sites. The ':' character is now allowed.
  • Updated. Ability to submit group number via "gn" property to URL Exception requests.
  • Resolved. Default group when filtering via direct proxy was not applying properly.
5.0.30.15
  • Local subnets "Quick Edit" feature. This feature (located under Home->Setup Network Connection->Add Local Subnets) allows an administrator to quickly change subnet settings and ordering.
  • URL priority combo box changed to url priority text box for faster page load time.
  • URL Alllow List update. In certain cases, a URL or domain may not match an allowed site in the list due to case sensitivity in the URL request.
  • Improved policy interface web engine. Increases performance and alleviates cases where some images do not show under slow links or heavily loaded links.
  • eDirectory enhancements. Features added to eDirectory configuration page that include authentication delay configuration and statistics generation.
  • Proxy server update. Under certain cases, the proxy server may stop responding. Issue only affected users with a filtered proxy setting (does not apply when iboss internal proxy was configured in Proxy Only mode).
  • Custom Block/Allow List delegation update - although previous version prevented updates to the custom block/allow list by delegated administrators, the update prevents delegated administrators from accessing the list if access is not granted.
  • Internet Controls menu Items reorganized.
  • URL Exception Requests and URL Category Lookup moved from Tools & Utilities to Internet Controls.
  • iboss local user password reset self service interface. Allows users to change their own password via link.
  • Keyword block list updated to allow for "allow" keywords. This allows certain keywords to allow a URL to be bypassed based on patterns within the URL.
 
About Us | Customers | Partners | News & Events | Support | Site Map | Privacy Policy | Terms of Use | Contact Us