Teltonika RUT230 Router Firmware RUT2_R_00.07.02

New features

Overview side widget
IGMP Proxy
Privileged Access Management (PAM)
AWS Greengrass support
HTTPS certificate and key upload feature
SSH public keys edit box
License page
EC200A-AU and EC200A-EU modem support
DNP3 data for Data to Server

Improvements

Updated busybox to version: 1.34.1
Updated curl to version 7.79.1
Added iptables filter package for string filtering
Added CHAP authentication for L2TP VPN
Added IPv6 support for L2TPv3 VPN
Added EAP-MSCHAPV2 authentication method for IPsec VPN
Added IPv6 support to Auto Reboot
Added 'Save to flash' and 'Test configuration' button to DNP3 configuration page
Updated SNMP version 5.9.1
Added OpenSSL authentication options to SNMPv3
Added support for OSPF redistribution options and OSPF neighbors
Added password field to BGP Peers page
Extended BGP "AS" field validation to accept integers up to 4294967295
Added "DHE+RSA" to OpenVPN cipher selections
Increased OpenVPN max password length from 128 bytes to 512 bytes
Made HMAC key direction initial value dependent on the role of the instance (client or server)
Made HMAC key and HMAC authentication key upload fields required
Added DES to IPsec encryption algorithms selections
Added special character support for CHAP secrets
Added validation requirements for PPTP user list username field
Added option to manually enter Public key in Wireguard configuration
Made generating Wireguard keys possible only while in auto mode
Added Events Log database to troubleshoot archive
Added RFC1918 filter field
Added the possibility to unblock multiple blocked devices at once
Added 'Port' column to blocked login attempts table
Added Speedtest server refresh
Updated Speedtest server list
Added asterisk option to Site Blocking
Added MD5 and SHA256 checksums to package validation page
Changed certificate requirements to only require client key file if client certificate is used
Added pagination and data retention between table pages
Added pagination functionality to tables when there are more than 10 records
Improved table sorting by saving user provided sort settings in the browser
Improved drag and drop functionality
Added the possibility to drag and drop files onto upload components
Moved 'Root CA' from the 'Access Control' page to the 'Certificates' page
Added 'Strict-Transport-Security' response header for HTTPS
Added 'breadcrumbs' to modal windows
Improved initial WebUI loading after login
Added mobile bytes sent and bytes received SNMP OIDs
Added mobile LED turn off feature ('System -> Administration' page)
Added 'iot.1nce.net', 'internet', 'VZWINTERNET' and Truphone APNs to APN database
Updated mobile usage data point calculation logic
Added the possibility to manually enter operator number
Improved obtain mobile cell ID process
Added modem restart if SIM card is removed during APN database fetching process
Added unauthorized call logging
Added space character support in SMS commands
Disabled SMS modem storage configuration form when SIM is not inserted
Changed SMS '%wi' parameter value to return IP address of any currently used WAN interface (not only wired)
Added external modem SMS limit Overview card and widget
Made in-use APNs visible next to mobile interface configurations (before clicking the 'Edit' button)
Added duplicate value check for list configuration options
Changed mobile card instance design
Fixed 'Mobile Data usage reset' SMS rule
Fixed the default state parameter of SMS list POST/GET command
Added Hotspot configuration profiles
Added local Hotspot user password hashing
Added Hotspot password encoding option
Improved Hotspot related firewall rule setting
Improved WiFi Scanner enable switch to toggle 2 and 5 GHz instances separately
Removed CHAP authentication protocol for WiFi Hotspots due to incompatibility with hashed passwords
Added ubus support to Hotspot
Changed default port name of WiFi devices for 'Topology state' Events Reporting rule
Added I/O SNMP trap
Added ISO 8601 time format to I/O Juggler's '%ts' parameter
Added device name parameter '%pc' to I/O Juggler
Added PPPoE VLAN priority support
Made VRRP ping section dependent on main instance
Added 'WAN to LAN' switch
Added WAN field to VLAN configuration

Fixes

Fixed CVE-2021-20322, CVE-2021-4197, CVE-2022-1011, CVE-2022-0847 kernel vulnerabilities
Fixed CVE-2022-28391 busybox vulnerability
Fixed CVE-2018-16789 shellinabox vulnerability
Fixed CVE-2021-44543, CVE-2021-44542 privoxy vulnerabilities
Fixed CVE-2021-43618 GNU Multiple Precision Arithmetic Library vulnerability
Fixed zlib backport security issue
Fixed Wireguard firewall zone assignment
Fixed queued packages disappearing from list after FW upgrade with keep settings
Fixed error message display for multiple input validation rules
Fixed incorrect DHCP validation range for start and limit fields
Removed 'Bring up on boot' option from network interface configuration pages
Fixed coma-separated DHCP options disappearing after save
Fixed exclude and listen interfaces
Fixed 'Use broadcast flag' option saving
Fixed firewall zone assignment when creating new interfaces
Fixed OpenVPN 'Netmask' and 'IP address' field validations
Fixed OpenVPN TAP configuration saving issue
Fixed OpenVPN switching to TUN mode when uploading a configuration from file
Fixed dynamic BGP route state display
Fixed BGP peer enable in edit page
Fixed issue when no L2TP client instance could be bound to IPsec
Fixed firewall rule and zone behavior related to config section creation
Added default value for L2TPv3 netmask, which is now written to config after save
Fixed passthrough option saving to IPsec file
Fixed DMVPN issue where instance configuration could not be saved
Fixed Wireguard peer could not be saved issue
Fixed NTP client time synchronization after factory reset
Fixed device time display with selected time zone
Fixed MODBUS TCP indexation missing bracket issue
Fixed initial MODBUS TCP request count validation
Fixed PIN 3/4 direction switching over MODBUS TCP
Fixed MODBUS data to MQTT socket closing issue when connection fails
Fixed MODBUS alarm configuration deletion
Fixed DNP3 master not working after FW upgrade with 'keep settings'
Fixed DNP outstation not returning error messages
Added missing SNMP objects: mobile IP, data sent/received today
Fixed MQTT Publisher 'Remote address' field validation
Fixed long interface name support for Azure IoT Hub
Increased maximum Azure IoT Hub 'Connection String' length to 4096 characters
Fixed missing sent/received data issue
Fixed URL input field length validation
Fixed admin login issue after upload of backup from a device with older firmware versions
Fixed MAC address formatting in Events reporting messages
Fixed Events reporting DHCP lease message spam, when no new lease is added
Fixed logging crashing after downloading Troubleshoot file
Made Wake on LAN visible only on devices with Ethernet ports
Fixed Traffic log file transfer to FTP server
Fixed Web Filter service reloading after a host list file is uploaded
Fixed access denied messages when sending JSON-RPC requests from root user
Fixed error message display about duplicated intervals in Profile scheduler
Fixed FW upgrade with 'keep settings' migration issue for Access Control's 'Fail count' and 'Device port' fields
Corrected OSPF Routing card values, value positions and names
Fixed global secret instances not being removed when there are no IPsec instances
Fixed uploaded file remove icon not staying in position on hover
Fixed Overview card collapse issue that made it unresponsive after too many clicks
Removed WAN6 interface from the Overview page
Fixed mobile IPv6 display in Events Reporting status messages
Fixed Bridge mode when DNS2 is not available
Fixed PAP/CHAP username and password fields not saving in interface edit window
Fixed sending email without secure connection for providers that support such an option
Fixed 'N/A' parameter showing up in SMS Utilities monitoring status message
Fixed Call Utilities Events Log message for reboot rule
Fixed SMS command validation for no-authorization option
Fixed MODBUS SMS alarms 'Enable' option saving
Fixed running RMS with no SIM card inserted issue
Fixed firmware available on server version checking issue
Fixed CVE-2020-15078 openvpn vulnerability
Fixed storage calculation for packages
SMS Utilities: enhanced service security
Fixed firmware deletion after leaving the page
Fixed setup wizard redirect after LAN IP change
Fixed various validation bugs, typos, option hints & alignments
Fixed multiple IPv6 configuration field validations
Fixed VoLTE management
Fixed incorrect parsing of temperature, revision and IP address values
Fixed handling of SIM card removal
Added multiwan support for Wireguard default route
Fixed wireless signal strength display when no clients are connected
Fixed loss of connectivity for clients when router is in STA+AP mode
Added validation that prevents automatic connection to first unencrypted WiFi AP when using MULTI AP
Fixed Wifi Scanner data not being stored in certain scenarios
Fixed WiFi scanner not turning on after FW upgrade with 'keep settings'
Fixed Hotspot user group limit not resetting on specified time
Removed an RMS error message when no Hotspot users were created
Fixed Hotspot landing page image upload issue
Fixed relay output value display in I/O Juggler condition page
Fixed I/O Juggler's WiFi rule not enabling or disabling WiFi interfaces
Fixed I/O Juggler's double delete issue on I/O Juggler action and condition instances
Fixed I/O Juggler's incorrect I/O status messages

About Router Firmware:

Before you consider downloading this firmware, go to the system information page of the router and make sure that the currently installed version isn't either newer or matching this release.

Due to the large variety of router models and different methods for upgrading the device, it is highly recommended that you read and, above all, understand the installation steps before you apply the new firmware, even if you are a power user.

In theory, these steps shouldn't be much of a hassle for anyone, because manufacturers try to make them as easy as possible, even if they don't always succeed. Basically, you must upload the new firmware to the router through its administration page and allow it to upgrade.

If you install a new version, you can expect increased security levels, different vulnerability issues to be resolved, improved overall performance and transfer speeds, enhanced compatibility with other devices, added support for newly developed technologies, as well as several other changes.

If you're looking for certain safety measures, remember that it would be best if you perform the upload using an Ethernet cable rather than a wireless connection, which can be interrupted easily. Also, make sure you don't power off the router or use its buttons during the installation, if you wish avoid any malfunctions.

If this firmware meets your current needs, get the desired version and apply it to your router unit; if not, check with our website as often as possible so that you don't miss the update that will improve your device.