MAC address

Market

The basic service set identifier (BSSID) generation mode can be modified.

Application identification

Market

A command is added on the ACs to switch languages in the application feature library.

The AC feature library supports international applications.

The AC identification framework supports QUIC protocol parsing.

New command:

identify-application signature language { zh | en }

AAA

Market

The server can send multiple class attributes.

802.1X and web-based authentication

Market

Role-based VLAN authorization and web-based authentication are supported.

Web authentication

Market

Web authentication integration with ClearPass supports the HTTPS protocol.

Application identification and ACL

Market

URL filtering for both HTTP and HTTPS is supported.

New commands:

identify-url enable

identify-url http-port

identify-url https-port

identify-url url-group

identify-url url-name

show identify-url enable

show identify-url http-port

show identify-url https-port

show identify-url statistics

show identify-url url-group

show identify-url url-name

Modification commands

[ sn ] { permit | deny } { hostsource | any | sourcesource-wildcard | ip-pool src-poolname } [ time-range time-range-name] [ url-group url-group-id ]

access-list acl-id { permit | deny } { hostsource | any | sourcesource-wildcard | ip-pool src-poolname } [ time-range tm-rng-name ] [ url-group url-group-id ]

app-rule group-name { dscp [ up-streams | down-streams ] dscp-value | deny | per-user-limit { down-streams | up-streams } average-data-rate average-data-rate burst-data-rate burst-data-rate } [ time-range time-range-name ]

Network security upgrade

Internal

Network security upgrades of enterprise-class Wi-Fi products

Compliance with country/region code and regulations

Market

Update on WLAN Country or Region Codes and Channel Compliance

1214682

A client performs WiFiDog authentication and is not removed from the offline queue after going online. As a result, the aging mechanism is triggered and the client goes offline 2 minutes later.

AC_RGOS 11.9(2)B2P15T8

1240372

The dm_app process occupies much memory, which may cause AC breakdown. In the context, the dm_app process is optimized to reduce the possibility of AC breakdown.

AC_RGOS 11.9(6)W2B1

1234433

The RG-MAP852-SF-U provides eight LAN ports. When more than six LAN ports are configured with the same VLAN, only one command is displayed on the command line interface (CLI). However, this cannot be supported on the eWeb.

AC_RGOS 11.9(6)W3B1

1238380

In a scenario where numerous APs are deployed and configured, slow response from CLI commands causes the delay or even timeout of the interface request output on the eWeb. As a result, slow response occurs on the web page.

AC_RGOS 11.9(6)W2B1

1211785

In the following VAC scenarios where the AP is connected to the active and standby ACs, different IP addresses are displayed in online and offline states.

Scenario 1: The AP is connected to the standby AC using IP address 1 and connected to the active AC using IP address 2. Then the AP is connected to the standby AC again using IP address 1.

Scenario 2: The AP is connected to the active AC using IP address 1 and connected to the standby AC using IP address 2. Then the AP is connected to the active AC again using IP address 1.

AC_RGOS 11.9(6)W3B1

1236557

In a fit AP scenario where the AC is onboarded to the cloud, WIS process cannot obtain the MAC address during the startup of the AC.

AC_RGOS 11.9(2)B2P15

1225230

When one-click collection is enabled on the AC, information about various modules needs to be collected. In this case, a lot of resources of the AC are consumed, resulting in high CPU usage. In large-capacity scenarios, this may cause instability in the CAPWAP tunnel and lead to AP disconnections.

N/A

1224429

After anti-proxy is configured on the AC, the configuration will not be delivered to the AP when it is re-connected to the AC.

N/A

1256794

When SNMP cache is enabled on the AC and the MIB channel utilization sub-node is not added to the SNMP cache list, the channel utilization data cannot be read.

N/A

1246678

When the AAA login password of the device is incorrect, the security log prompts that the username is null, instead of the actual username.

N/A

1244734

When a password is configured for an AP on the AC, the password delivered to the AP fails to take effect because the AP and AC have different password policies.

N/A

1255537

The data of the all-optical i-Share list cannot be loaded by page.

AC_RGOS 11.9(6)W5

1255080

The AC can deliver the user isolation configuration of only two radios. When the AP has three or more radios, the user isolation policy cannot be delivered to the third radio.

N/A

1255085

When the IP address of a client remains unchanged and the client roams across ACs, entries are directly restored from the Redis database because the VLAN is not updated. As a result, the client cannot access the Internet.

N/A

1293010

On the i-Share+ AP management page, configure the wireless protocols supported by the 2.4 GHz frequency band for devices that do not support 802.11ac.

AC_RGOS 11.9(6)W3B1, Release(11200520)

1284211

When HTTPS is used to integrate with ClearPass for web-based authentication, the authentication process may become unresponsive for some clients when a large number of clients initiate authentication requests simultaneously.

AC_RGOS 11.9(6)W5, Release(11232023)

1284241

After the web-auth auth server https command is deleted, residual socket connections may occur, causing a command configuration failure.

AC_RGOS 11.9(6)W5, Release(11232023)

1307680

In the scenario where 802.1X authentication and a VLAN group are configured, 802.1X re-authentication is triggered each time a terminal performs Layer 2 roaming, affecting user experience.

AC_RGOS11.9(6)W5, Release(1242622)

1303441

An ACL is configured on an interface in inbound and outbound directions by using a command line. On eWeb, select Config, choose Security > ACL in the navigation tree, and select ACL Application. The information displayed is incorrect.

AC_RGOS11.9(6)W5, Release(1242622)

1307704

The Wi-Fi mapping configuration is optimized. The network type can be empty, and only the radio ID can be configured.

AC_RGOS11.9(6)W5, Release(1242622)

1258073

CAPWAP remote procedure call (RPC) packets time out frequently, and the CAPWAP software occupies excessive CPU resources.

AC_RGOS 11.9(6)W5, Release(11202801)

1316970

When the system is running with full load, enabling service functions may result in insufficient memory resources, leading to system instability.

AC_RGOS 11.9(6)W5, Release(11201401)

1303441

When two access control lists (ACLs) are applied to the same interface, all access control entries (ACEs) cannot be correctly displayed on the web page.

AC_RGOS 11.9(6)W5, Release(11242622)

1317613

After VLAN mapping for AP groups of an SSID is modified on the web page, the SSID configuration is lost in multiple mapping groups.

AC_RGOS 11.9(6)W5, Release(11242622)

1324722

After the Domain Name System (DNS) address of the DHCP address pool is modified on the web page, an error message indicating address conflicts is displayed on the software.

AC_RGOS 11.9(6)W4B1T8, Release(11230418)

1305344

In the multi-IPv6 accounting scenario, if a client obtains more than eight IPv6 addresses, the IEEE 802.1X software may be abnormal.

AC_RGOS 11.9(6)W5, Release(11242622)

1316972

When role management and client identification are enabled, devices with small memory may not run stably at full capacity.

AC_RGOS 11.9(6)W5, Release(12140616)

1308074

The ASan tool detects an exception (not actually triggered). When a 64-byte AP group is created and a scheduled upgrade is configured, a memory out-of-bounds write occurs.

AC_RGOS 11.9(6)W5, Release(11242622)

1326241

When MAC Authentication Bypass (MAB) and web-based secondary authentication are enabled, a client attempting to connect to the AP occasionally encounters a white screen of death issue, preventing it from going online.

AC_RGOS 11.9(6)W3B1, Release(11180415)

1301818

Clients cannot be associated with the AP.

AC_RGOS 11.9(6)W3B1, Release(10191810)