RELEASE NOTES FOR ET/BWMGR for FreeBSD O/S v4.0PRE4 7/29/08 - fixed a bug with interface limits - fixed a problem with deleting a group head rule - CHANGED indexing. There are now 4 index levels (plus ports for firewalls). If you are using an indexlevel other than 2, you must make a manual change before you reboot. See bwman-40.htm for an explanation. v4.0PRE3 7/21/08 - fixed problem where deleting rules could cause a panic - fixed problem with primary bridge interface not working v4.0PRE2 7/10/08 - fix to tcp tracking with "WARNING" message v4.0PRE 6/28/08 - Support for FreeBSD 7.0 - FreeBSD 7 SMP (multiprocessor) support - implemented a new v4.0 licensing system, scaled by system performance - there are now 45Mb/s licenses available - reworked BWMGR to use FreeBSD 7 bridge interface - reworked FreeBSD 7 bridge interface to achieve 40% peformance improvement - reworked FreeBSD 4.9 bridge code to coordinate with 7 - bridging setup is now generated at /etc/rc.bridge by GUI - separated bridging and bwmgr start/stop functions - added fast forward option to bridging - support for SPAN bridge ports - support for LAGG as bridge group members (load balancing, ethernet failover..) - added alternative protocol for compression encapsulation - bwmgrd now gathers stats 70 times faster - added auto-rebuild option for large rulesets - centralized protocol management - centralized the monitor - added "global" ruleset for multi-bridge systems - improved shaping granularity and performance - fixed problems with pps shaping - added an option to include the ethernet header in stats and shaping - updated webmin interface to v1.380 - improved minimums algorithm - 64bit integer support for counters - bwmgr status command - proxy by IP address eliminated, must supply MAC now - bypass cards can now be controlled and monitored individually - improved rule matching efficiency v3.33c 9/4/2007 - fixed problem with MAC address rules matching incorrectly under certain conditions - tcpwindow on interfaces is not correctly reported in status and rebuild - profiles with no settings now work properly - firewall gui search now works properly v3.33b 2/20/2007 - fixed display of unburst v3.33a 2/19/2007 - removed trace code from controls - added shownics command to bwmgr v3.33 2/14/2007 - broke unknown down to unknown_udp and unknown_tcp - added a monitor status led in the GUI - monitor now properly displays report when re-entering when running - added maxstreams parameter - fixed problem where http sniffing could be turned off when adding a rule - monitor graphs now are stored in the default graph directory - monitor no longer panics when no default interface is set v3.32 2/9/2007 - fixed problem detecting non-http protocols - added azureous agent to bittorrent protocol - added ares connect detection (for blocking, no transfer shaping) v3.31 2/4/2007 - fwindex is now properly written to rc.bwmgr - added an "all" option for getprotports - fixed a conflict with protocols usage flag internally - fixed 30 minute protocol graphs - fixed graph labels on protocol graphs to use fractions - removed ip protocols from 30 min prot graphs (markers change) - added status leds for automgr and compression to the GUI - setting a protocol port to unknown now clears it - fixed some conflicts when a different protocol is found on a defined port - cleaned up tracking to require fewer streams - fixed controls in bwmgrd to set the correct profile v3.3 1/7/07 - distribution moved to /usr/bwmgr (from /usr/hdlc) - revived tos tagging - implented Tos/Qos remarking - implented Tos burst triggers - autoshaping is now separated from an interfaces burst threshold - relaxed licensing checks to allow short bursts over the limit - revived stats-only mode. Any amount of traffic can be captured with a 2Mb/s license - firewall rules are now indexed - added port index for firewalls - do range no longer always sets stats to be enabled - paginated firewall rules viewing in GUI - logging will now log all hits if there are multiples - added per protocol settings for compression - added a compression level setting - changed default compression to 10% - promiscuous mode now enabled properly with bge devices - reworked the bursting subsystem - new, more functional main screen - bwmgrd now stores cpu usage and memory stats - bwmgrd now stores protocol stats what protocol watch is enabled - bwmgrd now only retrieves stats from rules/protocols with traffic during that period - bwmgrd now no longer stores records with 0 data (option to store all) - bwmgrd no longer used the .cfg files - protocol graphs for instantaneous and historical data - cleaned up x-cache header detection - new defaults file is default.cfg (bwmgr.cfg is antiquated) - graphs are now color-configurable by default or per graph - interfaces now require -stats to enable stats - PROTOCOLS - comletely new internal protocol framework - user port mapping via /etc/bwmgr-protocols and /etc/user-protocols - protocol module feature for user-implemented protocol extensions NOTE: Any rules you have with the same name as a protocol name will be in conflict as of v3.3 if you enable protocol monitoring. You should rename your rules (and also rename them in the database tables) before running or installing v3.3. Other requirements: - You must copy bwmgr.cfg to /usr/local/etc/bwmgr/config/default.cfg to preserve your default settings. - run dbupdate.v33 - recompile your kernel with the updated if_etherbwmgr.c - you may need more memory than older appliance used, so if you have an older machine with 128M you should consider upgrading the RAM - you'll need to create a link so that your current rc.bwmgr will run. After untarring the dist, you can do: rm -rf /usr/hdlc ln -s /usr/bwmgr /usr/hdlc also don't forget to change your path so that /usr/bwmgr/utils is in the path. v3.25h - 8/14/2006 - fixed firewall deny rules conflict with global rules v3.25g - 5/23/2006 - fixed pps firewall rules v3.25f - 4/25/2006 - rebuilt distribution, removing some trace code that caused crashes in the GUI v3.25f - 4/18/2006 - repaired pass-thru feature v3.25e - 3/29/2006 - registration now uses the proper DNS address for NAT translations v3.25d - 3/7/2006 - GUI fix burstmax now is set properly when applying profile changes v3.25d - 2/9/2006 - fixed memory leak v3.25c - not released - fixed problem adding rules with dest MAC addresses in GUI - fixed problem adding some special protocols in GUI - fixed problem with rules getting "stuck" and blocking with heavy drops v3.25b 10/18/05 - fixed some timing issues in bwmgrd - removed some trace code - fixed some problems displaying reverse groups in the gui v3.25a 10/3/2005 - fixed a problem with reverse group rules v3.25 Released 9/27/2005 - fixed problem viewing groups when members have no name tag. v3.25-beta6 9/12/2005 - fixed bug that caused a crash when viewing groups v3.25-beta5 9/9/2005 - fixed problem with group names with a dash - fixed problem with groups where group name was after member definitions v3.25-beta4 8/23/2005 - fixed searching by index in GUI - fixed more rules problem in GUI - fixed problem with interface -bwboth and bridging - changebw no longer changes the profile tag (allows temp manual override of values) - retooled automgr to support multiple groups - support for skype protocol - fixed problem with minimums - minimums now show up properly in the single rule view screen in the GUI v3.25-beta2 7/18/2005 - removed trace code with mac addresses - fixed problem with command line dynamic rules - fixed problem with reverse groups running out of slots v3.25-beta 7/17/2005 - drops now properly register with rule - fixed nested group viewing in GUI - AutoMgr implemented - perfomance tuning . 10% raw performance improvement . dramatic improvement for large reverse rulesets - new indexing scheme . indexlevel 3 removed . indexlevel 1 significantly improved . dramatic performance increase for larger installations . full-duplex gigabit performance with many 1000s of rules now possible - viewing groups now sorted by usage by default - profile changes much faster for large rulesets, and also are now applied to learned rules - you can now search for the IP address as well as name in the GUI - sort by usage/drops now much faster with large rulesets in the GUI v3.24e 6/17/05 - fixed problem with startup file generation for bge device bridging v3.24d 6/2/05 - added unburst tunable v3.24c 5/15/05 - fixed reporting problem with burst triggers - fixed statsdevice bug v3.24b 4/30/05 - rules can now have both pps and bandwidth controls in the same rule - learned rules now show stats in the GUI - cleaned up pps reporting, gui now shows high counts in stats view v3.24a 4/25/05 - fixed problem with inaccurate reporting for pps rules v3.24 4/4/05 - replaced object module with etbwmgr.ko loadable module - fixed crash when running out of memory, attempt cleanup - stripped HDLC code out of bwmgr driver - fixed serial# bug with some motherboards - disabled interfaces now properly return zero usage - fixed problem with monitor show half bandwidth in unidirectional mode - expanded GUI search (entering rule# starts display at that rule) - added range delete to the GUI - added a step to do range to separate resulting rules - improved tcp window management - Implemented global rules (statsonly and global priority rules are now antiquated) - Implemented packets per second bandwidth management rules - fixed firewall groups in GUI - proxy rules can now be limited - added a search feature for finding rules in the gui - slightly modified the way new rules are added - repaired some problems with groups - fixed gui problem with local network mask - fixed problem with burstmax in reverse rules - fixed bridging problem with bge devices NOTES: statsonly and global priority rules are antiquated. Running your old ruleset will auto convert the rules to global rules. However if you attempt to downgrade the new rules will not be recognized. v3.23o 10/14/04 - fixed problem with gigabit licenses with high traffic volumes v3.23m 9/12/04 - rebuilt distribution with non-driver fix for decoding tcpsyn protocol v3.23m 8/30/04 - tweeked bwmgrd to correct "invalid duration" problems v3.23l 8/11/04 - fix for board level keys. - rewrote graph/mysql algorithm to significantly increase speed of graph display - fixed tos bit matching v3.23k 7/28/04 - fixed another problem with maxlinks - added password override to bwmgr utility so it can be run by non-superusers - added -dyn dynamic rule feature v3.23j not released - fixed problem that could cause "invalid duration" messages on overloaded systems - fixed maxlinks for reverse rules v3.23i 6/12/2004 - cleaned up a few minor issues relating to bursting v3.23h 6/10/2004 - updated bittorrent, and now categorize it as p2p - fixed bwrules.dat for 3.23g changes (new installs only) v3.23g 6/8/2004 - fixed burst duration management *note database update required v3.23f 5/25/04 - fixed problem displaying MACs - 12pm time rules now display properly - added drop counters to statistics - rules can be sorted by "recent drops" in the GUI - fixed problem with allip protocol matching ARPS *note database table update required v3.23e 4/20/2004 - fix for ftp protocol tracking - fixed 95th percentile code in reports - changed GB in daily reports to MB if less than a gigabyte - drop counts now work for firewall rules - reset counters now work for firewall and priority rules - fixed problem with rebuilding proxy rules with an address v3.23d 3/9/2004 - GUI - statsonly rules not have a threshold field - bwmgrd - controls profiles now get set properly at end of month v3.23d 2/16/2004 - fixed SMTP sniffing - fixed rebuild problem with compression - fixed reverse mac rules in gui v3.23c 2/14/2004 - fixed some issues with content classification - updated kazaa/grokster p2p filters to work with latest programs v3.23b 2/6/2004 - fixed problem in GUI with pps rules v3.23b 2/5/2004 - fixed crash/bug with URL rules - change index now works properly on firewall rules - GUI fix with swaps AVGIN/AVGOUT on weekly and monthly graphs - fixed pps rule rebuild output v3.23a 1/30/2004 - improved bandwidth minimums and windowing algorithms - fixed url rules (broken in 3.23) - statsonly rules can now have a burst thresholds (for use as triggers) - fixed crashing bug with internally generated packets - assigning a primary to an interface with no address is now an error - fixed GUI bug which reported avg in and out bandwidth swapped v3.23 1/17/2004 - implemented compression - added incoming/outgoing/combined option for monthly controls - added directional settings to the traffic monitor - added bwmgr_daily daily summary table to substantially speed monthly lookups - controls now run every hour - added firewall marker groups - added dynamic rule entry from command line - groups now show number of members in GUI - support for Freebsd 4.9 - support for ET/GigFailover gigabit failover card - interface burst threshold now also used as a tcp shaping threshold - php-based statistics reports module - added force forward bridge mode for PTP setups - new protocol support for IM (msn, aol, yahoo and match.com) - new protocol support for HTTP content types (text, image, download, video etc) - added support for p2pnetworking.exe in P2P support - support for Gnutella2, bittorrent and DC++ (Directconnect) p2p - implemented protocol groups (http, IM and P2P) - fixed referrer mapping to name address - added change_index feature to change a rule's index - added ability to swap in and out data in graphs - significantly improved HTTP content sniffing effiency - ARP packets can now be matched with MAC or IP address - Fixed Date on Monthly Graphs - added support for SIP and VoIP protocol tracking - changed the precision of traffic graph labels - added link status to interface display v3.22x 10/3/2003 - fixed a bug that caused bwmgrd to crash v3.22x 9/23/2003 - Some GUI fixes, no changes to driver v3.22x 9/6/2003 - SMTP sniffing now works properly - problem with hdlccfg on ppp interfaces was repaired - fixed traffic monitor problems introduced in 3.22w v3.22w 8/28/2003 - fixed some general problems with VLANs - can now match on protocol within vlan header - fixed problem matching MAC/vlan rules when routing (ie when NOT bridging) v3.22u 7/28/2003 - repaired allip pseudo-protocol - fixed scaling on graphs to "look" more accurate - fixed bug with over-limit pulldown in controls section of GUI v3.22t 7/14/2003 - fixed bug deleting ipprot filters - bwmgrd skips controls check if no controls are configured - fixed memory leak related to protocol stream processing v3.22s 6/25/2003 - rebuilt distributions - changes to bwmgrd and cgi only to correct bugs with controls v3.22s 6/16/2003 - Internal changes to demo reporting - fixed bug in em driver that cause problems when reconfiguring a bridge - primary bridge setting can now be removed reliably - added bandwidth controls section to GUI - drops now shown for pps rules. PPS discards are now more efficient. v3.22r 5/29/2003 - fixed usage bug where in was the same as out - improved tracking of KaZaA sessions - fixed stream tracking indexing bug - fixed stream cleanup bug which caused memory leak. - interface drops count is now cleared by Reset Counters button v3.22q 5/20/2003 - fixed bug in usage display with no traffic in GUI - added http-cache pseudo-protocol to identify cached traffic returns - reworked some p2p code to clear up overhead issues v3.22p 5/17/2003 - reworked p2p code to work more efficiently with url and host address sniffing - improved detection of eDonkey p2p transfers - added streams indicator to CLI v3.22o 5/14/2003 - fixed tcpwindow getting cleared with changebw or new profile operations - repaired comment rules - fixed problem with stats gathering for rule names over 15 characters - p2p is broken in this release! v3.22n 5/12/2003 - added name address and url rule tracking (reverse no longer needed) - nameaddr rules no longer require a name - changed internal stream tracking index to 2048 - added Default Graph Directory and Default Interface to Defaults - added src/dest setting for port ranges - added ability to create multiple rules for address ranges in GUI (Do Range) - added useprot for reverse-protocol rules - cleaned up some GUI/CSS stuff - fixed problem with unidirectional reverse rules - fixed use of demo10 in GUI - rules can now be displayed sorted by usage as well as by index - fixed I/O display flag problem in GUI - changed monitor filters to work on unselected criteria - fixed monitor counting problem with certain protocols - fixed problem when changing URL rules to a name address rule - fixed problem in GUI displaying rules with no bwin specification - fixed a problem with default monitor interface - added support for ET/Failover product - p2p is broken in this release! v3.22m 4/16/2003 - fixed balanced group problem with transitioning profiles - repaired bridging when moving wires from one group to another - added bridge debugging function v3.22l 4/12/2003 - repaired SNMP gathering of remote devices - SNMP packets_in now includes broadcasts - fixed avg pps calculation in graphs v3.22k 4/7/2003 - fixed bug and buffer leak with non-bridged interfaces - fixed memory usage problems with large bandwidth limits - fixed demo5 and demo10 demo modes v3.22j 3/25/03 - made rules per page a global option in the defaults config - added edonkey to the p2p protocol filter - color scheme change for new appliance gui - redesign of GUI entry menu - monitor now runs a "test" for a specified period, rather than continuously - added "canned" tests to traffic monitor including protocol report - added graph options for canned tests - added database filter sets for monitor - fixed rebuilddb and loaddb problem with ports - fixed problem with changing a rules burst trigger - fixed problem when setting an address mask rule with the gui - fixed problem with "deny-only" profiles - cleaned up y-axis labels on graphs - fixed hdlc debugging - fixed a problem with ppp linkup condition when down 2/14/2003 v3.22i - fixed bug where command line only allowed 15 character names - fixed graph problem displaying pps graph details - added -burstmax parameter (maximum burst in seconds) - tcpwindow now sets lower window limit, not a hard limit - fixed problem with profiles being erroneously included in startup script. - fixed problem in gui with display of bw rules with no incoming bw setting - added WinMX p2p to the p2p protocol filter 1/30/2003 v3.22h - CSS style sheet added for HTML interface - NSv4.7 or IE5.5 min required - time-based rules now disable properly - misc gui fixes - fixed bug where firewall learned rules were saved in the ruleset - fixed problem with "combined" profiles - fixed problem clearing a profile from a rule - fixed problem where profiles would be assigned erroneously - fixed problem with balanced groups - added smtp sniffing - url specifications can now contain spaces - added ports 6699 and 6257 to p2p port list - full IP addresses now don't display the mask 12/19/2002 v3.22g - fixed shutdown problems with hdlc cards in FreeBSD - implemented watchdog timer interfaces to new R1500SM and R1700SM hardware - modified the options for the watchdog and watchdogd utilities - fixed bug in GUI for setting firewall rules to "allow" - fixed bug adding MAC rules in the GUI - fixed problem with incoming data plots on graphs 12/8/2002 v3.22f - fixed bug with interface limits which could cause degradation and packet loss - Interfaces now show bandwidth management filtering status - fixed a bug when changing a bandwidth rule to a statsonly rule in the gui - added 5Mb/s and 10Mb/s demo modes 12/2/2002 v3.22e - fixed tcp window override from within groups - added ftp protocol type to track ftp port usage - combined gnutella and gnutella_xfer to internal p2p protocol definition - internalized detection of p2p and ftp protocols - reverse rules are no longer required - added 5Mb/s and 10mb/s licensing - fixed problem with monitor and MAC addresses - log-only rules now count hits properly - fixed core dump problem with changebw command - fixed core dump when issue a "change bandwidth" from the GUI - converted graph data to double, you must run dbupdate.v322e - traffic monitor now shows special protocols (ftp, p2p) properly - added macutil utility to simplify the gathering of MAC addresses - fixed problem when changing an existing rule to statsonly 11/12/2002 v3.22d - fixed problems with tcp window manipulation - fixed bug with flat text file graphs - added variable burst periods for all burst triggers - status now shows current_in_use / high_use / maxbuffers - status now shows the max throughput for the license - new graph images - also added 1 day graphs - mySQL now REQUIRED - fixed bug with url rules with null urls - changed default behavior of reverse rules when no slots to index+1 11/1/2002 v3.22c - fixed crash when deleting comments - fixed double counting with stats devices 10/28/2002 Rebuilt v3.22b - fixed problem with time transitions using WDO and WEO tags 10/26/2002 v3.22b - made some adjustments to file-sharing filters. Now try to avoid limiting portsbelow 1024 - fixed problems with error messages in GUI - implemented bandwidth profiles (templates) - rules are now also stored in a mySQL table - time-based operations now use the rules and profiles database - expanded changebw command to include all items in the bandwidth menu - changed the encoding for the internal time field to allow more flexibility - bwmgrd log now timestamps all entries - url rules now correctly display reverse link - some minor bad link fixes in appliance GUI NOTE: You must re-run et_createdb to create bwprofiles and bwrules tables in your database 9/30/2002 - rebuild 3.22a with repaired bwmgrd NOTE: use fixdb to repair your database v3.22a 9/26/2002 - fixed problem when rule name is changed - fixed problem when limits were set in priority 1 data - fixed priority bug when no high priorities were set v3.22 9/23/2002 - changed MAC forwarding table timeout to 30 minutes - fixed problem with fixed timeouts for reverse rules v3.22-RC4 9/18/2002 - fixed double counting of group incoming traffic - fixed statsdevice display problem v3.22-RC2 9/10/2002 - implemented some KaZaA specific detection code - fixed memory leaks when freeing dynamics rules and deleting entries - added some controls to fine tune reverse rule behavior - added fixed timeout option (which allows for temporary rules also) v3.22-RC 8/26/02 - made a few adjustments to gnutella rules to avoid blocking www and ftp ports - note: may be a bad linux distribution v3.22-beta2 8/14/02 - changed -priority stats-only to -statsonly - non-IP traffic can now be logged - implemented reverse MAC rules - the learned MAC table can now be viewed in the GUI (bridge->config) - added button to clear hits/drops counters v3.22-beta1 8/1/2002 - support for gnutella (morpheus,kazaa,bearshare, etc), audiogalazy and imesh detection - rewrite of burst management system, implemented selective triggers - improved prioritization system. Replaced user thresholds with automated ones - implemented reverse rules within groups (auto-groups) - implemented combined stats capabilities - implemented comment rule - implemented nested groups (groups within groups) - bandwidth processing window (setwindow) is gone. Now set to 1 explicitly. - groups can now have members on different interfaces - groups can now have priorities (-group replaces -priority group) - all groups, name rules and reverse rules must now have names - name rules now must be set explicitly as reverse rules - group members now re-attach to group if group rule is deleted and then added - new group view GUI command (classes are history) - rules can now only be linked to groups - Implemented new bandwidth allocation and shared bandwidth algorithm. Interface allocations are now displayed in GUI. - moved bwmgr.cfg to /usr/local/etc/bwmgr - allow longer stats periods (multiples of 300 seconds) - added time of day feature for rules - implemented diffserv tagging controls - disabled rules are now flagged internally (I/O flags remain intact) - implemented reverse ceiling rules - board key now required for operation with HDLC cards v3.21k 5/20/2002 - fixed stats-only mode, broken by changes for 3.21 - GUI "more rules" fixes - fixed monitor ip mask filter bug v3.21j 5/14/2002 - added flushmac to bwmgr to clear the MAC table - implemented periodic MAC table cleansing of stale entries - allowed temporary rules to be added externally - auto-indexing now only applied to rules under 1 million - reworked traffic monitor to function reliably on high-volume networks - implemented monitor rule indexing - changed the default monitor rule limit to 300 - changed the behavior of multiple criteria monitoring - implemented new table cleansing method - multiple and negative filters implemented - fixed GUI bug with destination port - fixed "more rules" problem when viewing classes - fixed class view refresh - pass-thru priority now correctly overrides interface limits without counting. - window now is properly set for reverse rules - new adaptive tcp window algorithm to control tcp flows v3.21i 4/20/2002 - Fixed bug which slowed overall traffic with low burst threshold - Fixed bug with smoothing window setting when set at boot v3.21f 3/19/2002 - Buffer leak/lockup problem when hitting maxbuffers watermark corrected - Tuned queueing requirements for bandwidth rules - maxbuffers now resets high use counter when issued with current setting - fixed portrange output in "bwmgr rebuild" - fixed pps output in "bwmgr rebuild" - GUI Navigation fixes - filled priority buffer leak v3.21d 2/25/2002 - Group fix for GUI v3.21c 2/18/2002 - fixed bug in GUI that didnt allow group member to have bw control settings v3.21a 1/17/2002 - Fixed bug with interface limiting - Fixed percentile in bandwidth report v3.21 12/31/2001 - Completely revised the user manual - added support for matching vlan tags and decoding IP within vlan headers - added support for tos field matching - added rule viewing options (# per screen) to GUI - Re-worked internal queuing system to substantially improve performance - Implemented significantly improved traffic prioritization system - bwburst now defaults to "wire speed" - Added global priorities to override limit rules - GUI menu changes - Database host feature is now functional for accessing external DBs - Added system monitor to analyze network traffic - Added URL rules to decode URLs and FTP file requests - Added Reverse Firewall Deny Rules - Added Reverse Stats-only rules - Fragments now count properly with port rules - bwmgr license key now stored in /usr/local/etc/bwmgr/LICENSE - repaired the policy routing code - implemented TCP rate limiting - added code for Hardware Failover feature - fixed the bandwidth report to report the correct total usage - fixed WAN frame relay lockup problem - MAC address firewall rules now get entered properly - fully implemented passive bridged interfaces - implemented expanded Group functionality - nameaddr rules now can optionally use the port for matching v3.2h (patch) 12/1/2001 - fixed bug with Firewall MAC address rules v3.2g - 9/25/2001 - Fixed buffer leak with MAC limits - png graphics replace gifs. pnglibs are in /usr/hdlc/lib v3.2f Never Released - Implemented reverse DISCARD rules to protect against address scanning - fixed memory leak with dynamic rules and firewall rule deletions v3.2e 8/30/2001 - MAC rules now work with non-IP traffic - added status command to bwmgr - fixed IPCP timeout problem with PPP - the Host setting now works for MySQL data storage in bwmgrd v3.2d 7/28/2001 - fixed changebw panic problem when changing bw on a non-bw rule v3.2c 7/8/2001 v3.01z - added bandwidth report to GUI - fixed flush/firewall problem with MAC defs - fixed statsonly problem v3.2b 5/31/2001 v3.01y - Fixed a problem with learned entries not being removed properly - AVG stats not correctly shown in bits instead of bytes. (GUI only) - Monthly and Weekly graphs now report the correct values (GUI only) - Registration modified. You may need to re-register. v3.2a v3.01x 5/15/2001 - fixed bug related to use of MAC source and dest usage v3.2 Released 5/8/2001 NOTE: v3.2 is a PAID upgrade. New Key Required v3.01w - Learned rules now deleted as soon as they expire V3.2 only: - added "changebw" command to simplify rule mods - fixed bwmgrimport - added separate firewall processing tree - Added Logging - fixed problem retrieving stats from -statdevice devices - added port range capability - added tcpconnect and ipfragments "special protocols" (tcpsyn now antiquated) v3.01u 3/22/2001 - fixed stats again. The 3.01t fixes were broken - learned rules now show idle time in the GUI v3.01t 3/12/2001 - fixed stats errors with interfaces - fixed problem with stats-only rules v3.01s 3/2/2001 - buss-ified hdlc drivers - fixed password access to graphs - added period variable for bwmgrd - added support for v3.2 keys - fixed broken stats for interfaces with no rules - fixed ppp bug where an incoming bogus frame with proper ppp header could panic v3.01r 12/28/2000 - port to 4.2-RELEASE - repaired load balancing - updates to GUI to support bridge load balancing (for v3.2) - added SNMP_PREFIX to GUI defaults file v3.01p 11/30/2000 - bug which cause a panic and/or random failures with name addresses was fixed v3.01o 11/24/2000 - added passwords to graph configuration for non-gui access v3.01m 11/7/2000 - hdebug devts option now works properly v3.01l 10/25/2000 - overshooting limits on -bwboth (combined) was fixed v3.01k 10/16/2000 - Napster Filter Added - Fixed problem with non-burst limits overshooting when bursting was enabled - Reverse rules now can allow 2-way control for 1-way events (such as ftp) - Added Flexibility to GUI to view interfaces and replicate rules - "Add Rule" now checks to see if a rule exists and edits it if it does - Fixed stats-only problem when no real hit registered - Fixed problem with name address crashes - Fixed "layer up" signal which cause PPP to never try to come up - Changed timeout for PPP retries to keep trying to brink up the link v3.01j 9/29/2000 - fixed problem with FreeBSD where MAC address didn't work properly v3.01i 9/16/2000 - fixed bug which caused rules for serial lines to be rejected v3.01h 9/11/2000 - fixed bug in weekly and monthy graph totals v3.01g 9/4/2000 - removed the requirement for a primary bridge specification - above fixes problem with rebuilding rc.bwmgr file - fixed CA/DTR reporting problem v3.01f 8/31/2000 - fixed several IPMAP problems v3.01e 8/23/2000 - bpfilters now work on Frame Bridged Links - dhcrelay and dhcpd now work on Frame Lines - Fixed several bugs with 3.01d. - Graphing AvgIN/AvgOUT now work correctly - Multilink is repaired v3.01d 8/16/2000 - Fixed bugs in 3.01c - Graph interfaces are now sorted alphabetically v3.01c 8/12/2000 - Improved Frame Relay preformance with many DLCIs - Reworked Bridge Group code to allow 1 IP per group (see ipmap option) - GUI now outputs ifconfigs for bridge group addresses v3.01b 7/31/2000 - Fixed ifhdlc reporting for frame relay - Fixed Modem Status issue with PPP - Ignore modem is now the default for all lines - Added stats-only rule definition - Fixed stats spiking problem due to drops being counted - Fixed several graphing bugs - Start now wont start bwmgrd if running v3.01a 7/18/2000 - Fixed Several Name Address Bugs - Name Addressed now work with referrer also v3.16 7/11/2000 v3.01 ET/BWMGR - Reworked Frame Relay to be more efficient with LOTS of DLCIs - Fixed problem with large LMI frames - Added large mbuf capability to support large frames (up to 5300 bytes) - Virtual Bridge Groups allow each segment to have its own address space - Added Name Address feature for name based bandwidth management - Rules now allow changes of addresses when modifying without delete first - MAC and IP rules now work together properly - GUI now accepts multiple addresses per rule (src and dest) - Reverse Limiting implemented - FreeBSD 4.0 support - Added Bridge Configuration Section to GUI - Defaults (bwmgr.cfg) can not be edited in the GUI - Added Session Timeout Variable to bwmgr.cfg - Added some color to the BWMGR GUI :-) v3.15q 4/5/2000 - New board keys supported v3.15p 3/17/2000 ET/BWMGR v3.0 - GUI main menu now shows the version. - GUI now shows source and dest ports correctly - Fixed bloat in device structures which wasted memory with many virtual devices - bwmgr -v now reads the version from the driver - Added -bwmin setting for minimum bandwidth guarantee - Added GRAPH_DIR variable that allows for placment of graph output - Added SNMP_COMMUNITY variable to bwmgr.cfg to allow for private communities - Added -burstboth for combined burst manager threshhold - Fixed some more y2k bugs - Redesigned Burst Manager to allow per-rule burst settings - Implemented Policy Routing - Added SNMP client for gathering statistics from external devices - Graphs now show total usage - Kludged HTML ouput to trick browsers into not caching graphs - Weighted Priorities now work properly on Interface limits - Statistics are now kept for all rules - Statistics are kept for all managed interfaces - Stats physical interfaces are now optional; stats are maintained internally - GUI now deletes associated graph config file when a rule is removed - Fixed memory leak on excessive incoming limits - Fixed memory leak with excessive broadcasts - Fixed Excessive buffer usage on Interface limits - MAC rules now limit non-IP traffic also - Per Rule Thresholds added for fine tuning priorities - Added a pass-thru priority which ignores all limits - Added maxbuffers parameter to avoid system overflows - interface limits now won't block ARPs and other non-IP traffic - changed the minimum window to 100ms (1/10th of a second) - fixed multilink (load balancing) - frame relay stats now shown for root device - comments now work in hdlccfg config files v3.15n 12/20/99 - Board level bwmgr key now works properly v3.15m 12/15/99 v2.73 ET/BWMGR - Fixed MAC learning table bug - Fixed bridging memory leak - You can now remove the stats interface from a rule with the GUI - y2k fix for year 2000 charting in the GUI :-) v3.15l 12/10/99 - Fixed bwmgrd file descriptor leak - Fixed Rx Drops counter bug v3.15k 12/6/99 - Fixed GUI output bug with input only filters v3.15j 11/23/99 - Changed watchdog code for SBCs to be manually started - Updated watchdog utility to enable and disable auto reset - Compiled in FreeBSD 3.3 v3.15i 11/15/99 - Fixed baud rate divisor - Tuned HSSI and PCISYNC boards to avoid transmitter lockups - Added "rx drops" to l2stats for receive queue overflows - Increased the size of the HSSI receive queue - Added a Transmit Watchdog v3.15h 10/28/99 v2.72 ET/BWMGR - Implemented "weighted" prioritization for BWMGR - Implemented "minimum" bandwidth guarantees for BWMGR - Added Thresholds to enhance prioritization - Changed default period to 60 seconds - Changed windows to 5 per second (1/200 second each) - Fixed bug where class bandwidth limited were adjusted wrong with setwindow - Fixed buffer bug when using bwmgr with serial lines - Fixed problem with bwmgr priorities getting divide error - Fixed frame relay problem with many DLCIs - Fixed maproute crash problem - Fixed buffer leak on serial lines (again) - ifhdlc will now report up to 512 DLCIs per line - bwmgr rebuild now outputs the start command when started on a serial line - fixed mbuf leaks under heavy load - ifhdlc now shows utilization properly for frame relay lines - added ARP filter for bridges - added nobcast and lo (learned only) bridge forwarding options - added showbridges command to bwmgr utility - fixed IPCP IP Address option to return correct address - hdlccfg now complains about invalid parameters - linking to a rule with no limits set now fails - bwmgr now outputs rule -i, -o and -d properly in rebuild - bwmgr GUI now wont allow spaces in names v3.15g 8/31/99 v2.70a ET/BWMGR - Fixed mbuf leak in bwmgr with serial interfaces - ET/BWMGR now shows drop count for each rule v3.15f 8/19/99 v2.70 ET/BWMGR - Implemented HDLC Bridging - BWMGR now works on bridged WAN interfaces properly - Fixed Bridge Indications on the BWMGR GUI - Added IN and OUT flags for BWMGR rules in the GUI - Rules can now be disabled without deleting them - Added setwindow granularity feature to BWMGR - Added rule prioritization to BWMGR - Promisicuous mode on Ethernets is now set by the start and stop commands - Fixed BWMGR bug when deleting linked entries - Fixed problem where deleting root index entry dropped the entire branch - Fixed BWMGR problems when deleting linked entries - Linked entries can now be installed out of order - Fixed problem where deleting root index entry dropped the entire branch - Fixed crash when flushing out of order links - bwadmin group added in addition to wheel for access - Statistics period can now be set from the HTML Interface - Fixed double counting on some outgoing rules - Combined in/out bandwidth can now be limited - The learning table entries are updated when changing the bridge group - Rule can now be viewed by name or class with the HTML interface v3.15e 8/4/99 v2.63d ET/BWMGR - Fixed 2nd Port problem with ET/5025-16 - Modified bridge groups so the bridge host is independent of the interface - Added bridge filter that only passes IP and ARP traffic v3.15d 7/24/99 - Fixed transmitter lockup problem with HSSI/PCISYNC when cable is pulled - Fixed 2nd port dtr problem with HSSI/PCISYNC boards - Added hardware watchdog for ET/Rxxxx series products - Fixed multilink crash problem - Fixed multilink fallover problem - Fixed Problem with Bandwidth Manager when run with Sync Boards - Cleaned up up/down link interface - Added devts (data events) option to hdebug. hevts now does not show data events. - Cleanup up ARP conflicts with bridging - Added bridge groups to segregate bridge segments - Added 802.3 Frame Relay Bridging - Fixed Indexing problem when modifying existing bandwidth rules - Fixed Transmit interrupt problem with 5025 based boards - Bridge now disables promiscuous mode properly when disabling bridging - Fixed hanging problem introduced in 3.15 on busy lines - Fixed situation where an mbuf could be freed twice - Eliminated if_bwether.c modification - bwmgrd is now in /usr/local/sbin - Fixed problem with multiple ET/PCISYNC boards - maproute now just takes the interface name to setup a DLCI - Fixed Frame Relay data debugging on DLCIs - BWMGR GUI Field Lengths are now properly enforced - Fixed problem with editing MAC rules - Names that begin with numbers are now rejected v3.15c 5/27/99 - Fixed mbuf failure with ET/HSSI - Repaired multilink utility v3.15b 5/23/99 v2.62a ET/BWMGR - NOTE: v3.15a and v2.62 were broken - ET/BWMGR now supports MAC address rules - Support for 1 and 2 port ET/PCISYNC cards - Added Monthly graph - Fixed ET/HSSI problem with FreeBSD v3.1 - bwcmd (HTML interface) compiled with correct library - Removed menu from custgrph pages - Fixed delay in "bwmgr start" 3.15 5/10/99 v2.61 ET/BWMGR - Support for new 4 port ET/PCISYNC card - new simplified hdlccfg format. The old format will be supported as 'oldcfg' until for a short time to allow for everyone to transition. - fixed frame relay lmi problem on lines other than 0 - added line number to lmi debug code - Fixed BWMGR Loop for machines that move - Separated the BWMGR and HDLC timer functions - bwmgr utility now shows both driver version and ET/BWMGR version v3.12h 5/8/99 - Fixed Frame Relay LMI problem in BSD/OS - Fixed Frame Relay start-up delay problem v3.12g 4/22/99 v2.6beta5 ET/BWMGR - bwmgr "rebuild" function now generates -bwlink entries correctly - links now work properly with HTML interface v3.12f 4/14/99 - Fixed several problems with reinitializing ET/HSSI. - ET/HSSI now recovers from line failures more reliably. - ifhdlc now shows boardtype and DSR/CA - multilink can now accept any interface name (ie multi0, multi1...) - multilink delete function is now operational v3.12e 4/9/99 v2.6beta4 - bandwidth links with names now work properly v3.12d 4/5/99 v2.6beta3 ET/BWMGR - fixed major bandwidth manager overload bug - fixed startup bug in HTML (interfaces not shown) - bwmgrd now daemonizes automatically - bwmgrd now refuses to run (or will terminate) if ET/BWMGR is not running - bwmgrd now shows the version in bwmgrd.log on startup - fixed erroneous log entry generated by bwmgrd v3.12b 3/29/99 v.2.6beta1 ET/BWMGR - Added Public Access to Graphs - Fixed Session Security Bug - Fixed bug where graphs would crash if there was no data - Added rule indexing for significantly better performance - macshow now correctly shows all entries - Bridging can now be enabled and disabled - HTML interface now supports bridging and indexing v3.12a 3/29/99 v.2.5beta7 ET/BWMGR - Fixed bridging bugs - changed MAC table to be more efficient v3.12 3/25/99 NOTE: ALL utilities must be updated with this version -This version was broken - Fixed timer problem when both BWMGR and Sync Board were used ET/BWMGR v2.5beta6 - added bridging support - Fixed graph labels to handle larger volumes - Fixed "dips" in charts - Handle statistical rollovers better - added flag for restarts in statistical data v3.11 3/6/99 - ET/HSSI card now supported for FreeBSD 3.1-RELEASE - BWMGR HTML interface - Fixed Overrun problem with ET/HSSI card - Fixed frame relay stats - Added "drops" statistic for interface in ET/BWMGR - HSSI board driver now uses the buffer settings in config file - Improved HSSI performance to reduce overruns - Fixed "cleanup" bug in serial driver - a temp file is created so rc.bwmgr doesn't get trashed if an operation fails - Fixed error in BWMGR authentication. If your key doesnt work try this. - BWMGR gui now reports correct ethernet address - Fixed mbuf leak caused when line goes down for long periods. - Fixed problem where bw0 had to be installed to run maproute - Workaround for bug in if_xl driver - HP and clock mode HSSI parameters now work properly - Buffer parameters now are functional for ET/HSSI - All non-passive utilities now require super-user to run - Added functions to bandwidth manager - rule naming - rebuild fuction generates new rc.bwmgr - show now can show only 1 rule by name - Modified the config files to make more sense and added an variable that tells you which system port it is (ie 4 = eth4). The line number is no longer required on the hdlccfg command line. - Driver now resets all controllers on reboot to avoid hangs on certain MBs v3.0i 10/30/98 - Added MRTG statistical interface to Bandwidth Manager - Fixed Utilities broken in 3.0h v3.0h 10/1/98 v2.1d ET/BWMGR - Added watchdog to restart bwmgr if timer stops. - Cleaned up hole with continuous INV ARPs v3.0g 9/18//98 - Fixed hanging problem with multi-port boards v3.0f 8/28/98 - Recompile for 2.2.7 - Broken - DO NOT USE v3.0d 8/1/98 - fixed PPP, broken since v3.0b v3.0c 7/28/98 - trafshow now works along with bpfilter protocol filtering v3.0b 7/20/98 - Changed the driver to use OS timer instead of hardware timer v3.0a 7/2/98 - Added switch to ifhdlc to set Multicast flag on an interface v3.0 RELEASE 6/24/98 - fixed BWMGR panic problem - fixed PPP bug with IP Address negotiation - fixed cisco hdlc to work properly when keepalives are turned off - Cleaned up overrun condition - Added support for cisco frame relay encapsulation - Fixed hardware buffer calculation error - Enforce receive queue limits for dev kit (LINUX and BSD). - port to Freebsd 2.2.6 - added linespeed parameter to ifhdlc for SNMP Bandwidth reporting - better line state reporting - fixed RNR problem when overflowed. - Restructured Frame Relay interface to IP subsystem. Cleaner and more efficient. Eliminated problem of stray DLCIs. - HDLC Dev Kit - Added rxbanner and txbanner application samples All utilities MUST be upgraded to use this version as some system structures were expanded. Note that hdlccfg now does not wait for a link status nor does it report the link status as some level 2 functions need ifconfig to be run to be properly initialized. hdlccfg and ifconfig for a particular interface should always be run together and ifconfig should be run immediately after hdlccfg. v3.0 BETA 3/14/98 v3.0 represents a major re-write of the core communications drivers for the ET/5025 series adapters. The purpose of the project is to streamline the driver for higher performance, simplify the identification of problems in the future and to clean up all of the known problem areas. An attempt is also being made to make the driver "crash proof", or at least to isolate areas of the driver which are now vulnerable when other poorly implemented drivers are active in the system. This document will hold the release notes for the beta release until we declare it to be complete. Anyone participating in testing the beta release should refer to this document to moniter the progress of the development. The only utility that currenty is different is hdlccfg. The only notable change in configuration is that you must specify ET502516 as the board type (in previous releases ET5025 was used for both the 8 and 16 bit boards) The driver file is named et5025v30.o v2.56i 2/7/98 - Implemented the event manager for X.25 development kit v2.56h 1/27/98 - Watchdog Timer on PCI card now works properly v2.56g 1/16/98 - Now allows MTU to be set over 1500. Note that you cant use compression with settings over 1500. v2.56e 12/20/97 - Frame Relay with no LMI (option 2) now works properly - Unknown protocols message with cisco hdlc are now only displayed when the IFF_DEBUG flag is set. - Fix to allow protocol filters to work with tcpdump (feedback on this is appreciated) v2.56d 11/29/97 - fixed a bug whiched caused a panic when doing an ifconfig on the bw0 device - fixed multilink functionality. Note that you now must use device ethz? as the multilink device...ethm? will no longer work. Multilink devices are also now set up as PTP devices and require a local and remote address. The addresses don't have to be real, but must be used for routing/gateway references. - PPP workaround for connecting to 3Com routers - change to eliminate "media types?" message v2.56c 11/11/97 - fixed a BWMGR bug introduced in v2.56. If you are using the bandwidth manager you must upgrade to this version. v2.56b 10/25/97 - ifconfig mtu option now works properly v2.56a 10/21/97 v2.1b BWMGR - Fixed a bug in tcp port limiting v2.56 10/14/97 - Changed the way PPP echos are handled to be less intrusive. v2.55e 9/15/97 - Fixed bpfilter problems in both Freebsd and BSD/OS v2.55d 6/20/97 - Made a change to allow single port boards to work properly. v2.55c 6/19/97 - Fixed bug introduced in v.255b which caused the IFF_BROADCAST flag to be erroneously set on root interfaces. v2.55b 6/17/97 MAJOR BUG - DO NOT USE!!! - Upgraded the HDLC development interface and repaired l2_getevt() - IFF_RUNNING is now set when the IP address is added with ifconfig v2.55a 6/6/97 - Fixed BWMGR functions broken by adding the BurstManager v2.55 5/23/97 - Added BurstManager Feature to the ET/BWMGR - Fixed PCI Secondary port problem in BSD/OS v2.54a 5/20/97 - Fixed problem with dual port ET/5025PQ boards v2.54 5/10/97 - Fixed problem which cause panic when deleting BWMGR entries on a live system - Fixed RTS problem with ISA cards introduced in v2.53 v2.54BETA 4/24/97 - Multiboard support for ET/5025PQ v2.53BETA 4/21/97 - FreeBSD 2.2.1-RELEASE full version with ET/BWMGR - Added support for ET/5025PQ PCI board v2.52BETA 3/20/97 - FreeBSD Port to FreeBSD v2.2R - no support for Ethernet bandwidth limiting in this release v2.51BETA2 4/24/97 - PPP bug fix back port to 2.1.X freeBSD v2.51BETA 3/97 - Ported back code with required changes for NetBSD and OpenBSD v2.5c 2/23/97 - fixed frame relay bandwidth manager bug which caused panics v2.5b 2/22/97 - fixed bug when FR congestion management was enabled with no limits v2.5a 2/6/97 - Fixed a bug which would cause usagemon to crash when disabling - Fixed a frame relay initialization bug ETBWMGR v2.0BETA4 1/28/97 - fixed a bug where adding an entry with -x to an empty table crashed - fixed -addr decoding error with proper netmask ETBWMGR v2.0BETA3 1/24/97 - bwmgr now properly shows -addr parameters - delete bug was repaired ETBWMGR v2.0BETA2 1/22/97 - Fixed a bug which causes duplicate packets to be sent over serial lines under some circumstances. v2.5 1/12/97 ET/BWMGR v2.0BETA - Rewrite of the Bandwidth Manager to combine priorities and bandwidth limits - new utility - bwmgr - eliminated bwtune, bwaddr and qpriority utilities - you now must run the bandwidth manager to use interface bandwidth limits. v2.44a 11/19/96 - Fixed compression bug which caused packets to be corrupted - Streamlined the compression process, eliminating dynamic buffer allocation v2.44 11/9/96 - Modifications to PPP negotiation to work-around problems with MCI/Cascade - Fixed PPP Keepalive Problem - Fixed PPP Trace Bug - Fixed HDLC info panic problem - Fixed other PPP buglettes - FreeBSD: First release compiled with 2.15R kernel v2.43a 10/11/96 - Fixed bug with bandwidth manager (board level) authentication - Fixed bug where inverse arp would be erroneously sent v2.43 9/96 - Removed beta designation, no changes. v2.42beta1 8/14/96 WORKS-IN-PROGRESS: - IPX Wan implementation. PPP IPX control protocol implemented - IPX switch for 802.3 or TypeII networks v2.42 ENHANCEMENTS: - New X.25 implementation. The BSD interface as been re-written almost entirely - Bug fix with multi-DLCI frame relay that cause traffic to stop when a single circuit went down. NOTE: The Frame Relay Root Interface no longer requires initialization with an unused address. v2.4beta11 and v2.41 Release ENHANCEMENTS: - Address-based Bandwidth Manager - New Uility - bwaddr CHANGES: - Cisco HDLC is now a separate protocol and requires a new configuration mode. Note that the old hdlc?.cfg files will not work. See cisco0.cfg sample file for info. v2.4beta9 (Final Beta Candidate) April 22, 1996 ENHANCEMENTS: - Load Balancing, line bundling and Fallback Features implemented - New Utility - Multilink - ifhdlc now can be used to display a multilink bundle and interface flags - Individual Frame Relay DLCI debugging - Improved Compression Speed v2.4beta8 April 3, 1996 BUG FIXES: - PPP did not reject unsupported options properly...corrected v2.4beta7 March 16, 1996 BUG FIXES: - Crash problem with certain packets corrected v2.4beta6 March 10, 1996 ENHANCEMENTS: - 3 Tier Priority queueing - TOS priority queueing - Non-destructive Bandwidth Limiting (Simulation) on a per line/dlci basis - Advanced data prioritization by protocol or data type. - Queuing thresholds - Low-priority traffic queue thresholds - Low priority frame relay traffic is sent with the DE-bit set - Bandwidth monitoring for both physical line and per-DLCI - new utility - bwtune for bandwidth management - new utility - qpriority for data prioritization - new utility - usagemon for setting line utilization monitoring - l2stats utility now uses the interface name - improved information about Frame Relay Congestion - ifhdlc utility provides improved Information about Serial Interfaces - New, adaptive Frame Relay congestion management algorithm plus CIR control BUGS FIXED - IPX routing now works with WINDOWS 95 workstations - Memory Sharing bug in 2.3f was repaired - l2stats now correctly reports DE bit for tx on both the line and DLCI stats - PPP state machine error when a prot/code reject was received in CP_OPENED - bpfilters now work properly