Skip to content

Releases: ns1/ns1-privatedns

3.3.6

06 Dec 22:53
@kayim91 kayim91
3.3.6
c87529c
Compare
Choose a tag to compare
3.3.6 Latest
Latest

Enterprise DDI 3.3.6 includes stability and security fixes.

  • Portal: fixed a problem where DHCP/IPAM events did not reach the dashboard when DNS was very busy.
  • DNS: XFR container could mishandle messages, causing backlog in Rabbit queue leading to eventual disk space overflow.
  • DNS: when there was a high load of API requests, a few individual zones stopped receiving updates until the XFR container was restarted.
  • DHCP: Improved handling of null values and Option 43 values.
  • DHCP: fine-tuned a health check to catch case when keadatad hangs during shutdown.
  • System: Third party library security fixes.
  • System: Permissions service internal updates.
  • System: use Postgres read-only replicas when making read-only queries.
  • System: Dist container health checks were adjusted to increase reliability.
  • System: Load balancer 'X-Forwarded-For' headers containing more than one IP address are now handled correctly.
Assets 2
Loading

3.3.5

05 Oct 20:42
@lawnmowerlatte lawnmowerlatte
3.3.5
2807bea
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Learn about vigilant mode.
Compare
Choose a tag to compare
3.3.5

Enterprise DDI 3.3.5 includes numerous XFR and DHCP bug fixes.

  • What’s fixed?
    • DHCP: Improved watchdog to force a restart of keadatad if stalled
    • DHCP: Resolved an issue where a remote server previously configure with TSIG could not be re-configured to successfully use GSS-TSIG
    • DHCP: Removed requirement for the value field in requests for options that do not carry any data such as Option 43
    • DNS: Backported 12+ XFR improvements, including setting a minimum XFR refresh time, improvements on RRsets updates during AXFR, improved logging and other backend process improvements
    • DNS: Resolved an issue where XFR worker queues would grow unbounded, resulting in XFR processing to halt
    • DNS: Resolved an issue with RR created via dynamic DNS which did not populate all required fields
    • DNS: Removed an erroneous health check
    • System: Back-ported improved permissions back-end service
Assets 2
Loading

3.3.4

01 Jun 20:23
@kayim91 kayim91
3.3.4
7057e94
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Learn about vigilant mode.
Compare
Choose a tag to compare
3.3.4

Enterprise DDI 3.3.4 includes numerous bug fixes and an improvement for handling gateway IP addresses overlapping with existing IPs.

  • What’s New?

    • DHCP: An IP address that overlaps with a new subnet's gateway is now merged in

  • What’s fixed?

    • DHCP: Resolved an issue where the DHCP option sip-directory-agent was deployed with incorrect syntax
    • DHCP: Cannot add DHCP option 102 or 121 using API or portal
    • DHCP: Resolved an issue where HA DHCP could lose synchronization
    • DHCP: Usage stats for IPAM networks show all zeros
    • DHCP: NS1 DDNS could not be configured with a default zone which is in a view
    • DHCP: Wildcard record required for NS1 DDNS is not automatically added when the reverse zone is in a view
    • DHCP: Fixed an issue where a remote server configured for GSS-TSIG updates could not be re-configured for TSIG updates
    • Monitoring: Allow private IPs by default in the DDI platform
    • Portal: Resolved an issue where IPAM was not included in the global search results
    • Portal: Resolved an issue where the current configuration for NS1 DDNS was not shown
    • Portal: Dashboard latest activity displays last global 200 events instead of per service (DNS, DHCP, IPAM)
    • System: Improved record type validation in API key and user permissions
Assets 2
Loading

3.2.7

18 May 23:42
@lawnmowerlatte lawnmowerlatte
3.2.7
593b784
Compare
Choose a tag to compare
3.2.7

Enterprise DDI 3.2.7 addresses CVE-2021-3450 and includes numerous bug fixes.

  • What’s fixed?
    • DHCP: Resolved an issue where the DHCP option sip-directory-agent was deployed with incorrect syntax
    • DHCP: Cannot add DHCP option 102 or 121 using API or portal
    • DHCP: addressed a tag related migration issue between 3.1 and 3.2
    • DHCP: NS1 DDNS use zone handle instead of domain when zone is in a view
    • DHCP: Duplicate key value violates unique constraint scope_id_address_key
    • DHCP: Fixed an issue that prevented clearing rebind/renew timers
    • DHCP: Fixed an issue where lease-time and related renew/rebind timers are not correctly deployed to DHCP
    • DHCP: Fixed an issue were prefixes would occasionally disappear requiring a page refresh
    • DHCP: Fixed an issue where editing a remote zone resulted in an invalid body error
    • DHCP: Resolved several issues related to creation of DHCP reservations
    • DHCP: Resolved an issue where HA DHCP could lose synchronization
    • DNS: Creating a record with up metadata attached to data feed causes a 500 error
    • DNS: Cannot add RFC 2317 zone through portal
    • DNS: Validation errors on zone object when editing views and networks
    • Monitoring: Allow private IPs by default in DDI platform
    • Portal: Blank screen on scope group option tab
    • System: Fixed OpenSSL vulnerability CVE-2021-3450
    • System: Improved logging from ns1_backup and ns1_restore scripts
    • System: DIST container closes its connection pool and doesn’t recover
Assets 2
Loading

3.3.3

04 May 20:10
@jbc-1023 jbc-1023
3.3.3
b6043ce
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Learn about vigilant mode.
Compare
Choose a tag to compare
3.3.3

Enterprise DDI 3.3.3 includes a number of new features, including extended search, SSO MVP, multi-XFR support and performance enhancements. It also includes numerous bug fixes and UX improvements.

  • What’s New?

    • DHCP: Update utilization stats now include gateway/broadcast IP addresses
    • DHCP: Search address by prefix includes target’s parent
    • DHCP: DHCP now stores DUID and client ID in lease object
    • DNS: Allow the use of multiple XFR containers
    • DNS: Set up batch transfers for zone updates
    • DNS: Display zone serial number
    • DNS: Portal now shows an alert re. hijacking risk when removing a domain
    • DNS: Portal now expose the SOA name server field
    • IPAM: Display gateway and broadcast addresses in IPAM
    • System: Added a database backup integrity check
    • System: Improved debug log file collection
    • System: DDI now supports SSO - MVP
    • System: Email address and username can have special characters

  • What’s fixed?

    • DNS: Fixed issue whereby query limits are being ignored
    • DNS: Fixed issue where you cannot add a reverse zone using the portal
    • DNS: DDNSD updates become unhealthy after pruner runs
    • DNS: Primary zone can not be configured for zone transfers
    • DNS: Edit filter chain after creating a A record results in blank page
    • DHCP: NS1 DDNS, zone handle used instead of domain when zone is in a view
    • DHCP: Fixed issue where the list search doesn’t stop
    • DHCP: Scopes option box shows the wrong ScopeGroup name
    • DHCP: Allow for creation of an address as a gateway
    • DHCP: Cannot set lease duration option in the scope UI
    • DHCP: Fixed issue which resulted in a blank page on reservation all lease tab
    • DHCP: Improved IPAM address insert performance
    • DHCP: Lease time and related renew/rebind timers have API/UI limitation and are incorrectly stored in KEA
    • Security: Fixed OpenSSL Vulnerability - updates for LibSSL and OpenSSL
    • System: Updated health check for minimum disk
    • System: Added SAML endpoints
    • System: Updated disk containers health check message
    • System: Fixed issue whereby DIST container would become healthy after failing snapshot
    • System: Added default values for Core, Data, Dist service definitions in the bootstrap wizard
    • System: Fixed issue whereby you couldn’t get to the monitor container from the service types panel
    • System: The services types health check page initially shows incorrect data
    • System: The UI is not updating even though it is being polled
    • System: Request being sent to the wrong definition ID is not triggering an error
    • System: Wrong container is displayed after configuring multiple core containers
    • System: Added DIST container rebalance timer
Assets 2
Loading

2.5.12

12 Apr 19:46
@lawnmowerlatte lawnmowerlatte
2.5.12
882b95e
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Learn about vigilant mode.
Compare
Choose a tag to compare
2.5.12

Enterprise DDI 2.5.12 fixes vulnerabilities in openSSL and libSSL described in CVE-2021-3449 as well as numerous bug fixes.

  • What’s fixed?
    • Security: OpenSSL and LibSSL have been patched to address CVE-2021-3449
    • System: Change XFR and DIST containers to use least connections
    • System: Fixed an issue whereby sequential failovers could break database replication
    • System: Fixed a post-upgrade issue where data replication from DIST to the DNS service was not complete
    • System: Fixed an issue where the oplog was not pruned and vacuumed properly
    • System: Fixed an issue where data loss could occur on repeated Primary failover before the initial failover completed
    • System: Shuffle core host variable for DIST container to avoid failure
    • System: Updated prune timer from 1 minute to 1 hour
    • System: Update the max connection count for PostgreSQL
Assets 2
Loading

3.2.6

22 Mar 18:26
@dhabets2 dhabets2
3.2.6
7865737
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Learn about vigilant mode.
Compare
Choose a tag to compare
3.2.6

Enterprise DDI 3.2.6 addresses CVE-2020-1971 and includes several bug fixes.

  • What’s New?
    • CORE: Automate debug collection from a DDI install
  • What’s fixed?
    • CORE: Fixed a post-upgrade issue where data replication from DIST to the DNS service was not complete
    • CORE: Fixed a data restore issue
    • CORE: OpenSSL/LibSSL have been patched to address CVE-2020-1971
    • DHCP: Fixed an issue where the Scope’s Option tab showed an incorrect ScopeGroup name
    • DNS: Fixed an issue where a secondary zone configured with a TSIG key would not show this key in the AP or UI, instead showing the zone as if no TSIG key was configured
Assets 2
Loading

2.5.11

26 Feb 19:39
@dhabets2 dhabets2
2.5.11
6bfd1bb
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Learn about vigilant mode.
Compare
Choose a tag to compare
2.5.11

Enterprise DDI 2.5.11 fixes vulnerabilities in openSSL and libSSL described in CVE-2020-1971 and CVE-2021-23840.

  • What’s fixed?
    • API: API returns HTTP 500 when issuing GET on a DNSSEC signed zone or DNSKEY/RRSIG record within that zone
    • Security: OpenSSL/LibSSL have been patched to address CVE-2020-1971, CVE-2021-23840
Assets 2
Loading

3.2.5

19 Feb 22:16
@dhabets2 dhabets2
3.2.5
47b4d9b
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Learn about vigilant mode.
Compare
Choose a tag to compare
3.2.5

Enterprise DDI 3.2.5 includes key stability, DHCP, UX performance and bug fixes.

  • What’s fixed?
    • DHCP: Allow reservations with same identifier but in different subnets
    • DHCP: Fixed an issue where creating a custom DHCP option definition would trigger the API and UI to respond with an Internal Server Error
    • DHCP: Fixed an issue where it was not possible to select array when creating a custom DHCP option
    • DHCP: Fixed an issue where saving a Scope Group with a large number of Scopes and Reservations could fail with a 504 gateway timeout
    • DHCP: IPAM get next endpoint returns an address already in use
    • DHCP: Scope group “Match Client ID” checkbox is out of sync with default value
    • DNS: Fixed an issue where you cannot modify the nameserver associated with a DNS service if there is a view associated with it
    • DNS: Fixed an issue where an ACL/View erroneously could prevent DNS resolution
    • IPAM: Fixed an issue where subnets were not enclosed correctly
    • Portal: Validate totp minlength to prevent causing backend 401 error
    • Portal: Fixed an issue where a record could not be cloned to the root of any zone
    • Portal: Fixed an issue where the portal becomes unresponsive when viewing a DHCP scopes range
    • Portal: Fixed an issue where multiple calls to an endpoint were made where only one is needed
    • Portal: Persist show reserve zones checkbox
    • Portal: Optimized Template view for large IPAM dataset
    • System: Fixed slow response from portal - API returning code 500
    • System: Fixed an issue which results in possible data loss during certain types of primary failover
    • System: Fixed an issue where the oplog will fill up entire disk over time
    • System: Fixed an issue where the services endpoint would not show a service definition with a Scope Group attached
    • System: Fixed issue with Dist going unhealthy during stress testing
    • System: Fixed an issue with the upgrade database migrations
Assets 2
Loading

2.5.10

19 Feb 14:31
@dhabets2 dhabets2
2.5.10
4811785
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Learn about vigilant mode.
Compare
Choose a tag to compare
2.5.10

Enterprise DDI 2.5.10 fixes the OpenSSL vulnerability described in CVE-2020-1971.

  • What’s fixed?
    • Portal: Fixed a version problem with the database restore utility
    • Security: OpenSSL has been patched to address CVE-2020-1971
    • System: Increased the database max connections
Assets 2
Loading