Version 24
v 24.0.0
2024-12-02, This is a new major version with a lot of changes. Please read the changelog carefully and also the "What's new" Section in our online manual. Automatic upgrade from v21 is planned for Q1 2025 and will be rolled out slowly.
- This update will automatically reboot your system
- Transparent HTTP Proxy was removed. In most cases this will have positive effects, as HTTP is not intercepted and the ports 8080 and 58080 are freed up and are not special anymore. But there are no separate HTTP proxy logs of port 80 anymore. But connection tracking is still available if logging is needed.
- Batch-API: All downloads regarding proxy logs are removed.
- Custom Login Page extensions and Login-API Code: PHP Version was upgraded to 8.2 - all your custom code needs to run with that version now. Please try that on a non-production system first.
- Login Page access is now always HTTPS encrypted (no option to disable it anymore). Because most modern mobile devices talk via CAPPORT API to the IACBOX a valid HTTPS connection is mandatory.
- DHCP: Removed additional DHCP ranges to avoid complexity (Exclusive DHCP ranges are still possible).
- VPN Module users have to make sure that their OpenVPN configuration is compatible with the now used OpenVPN version 2.6.
- PMS Login: Removed the deprecated "No charge Mode" as this can be done with free PMS ticket templates since a long time now.
- Remember Me: Remove old settings "via MAC (optional)" and "via Cookie" as most Captive Browsers do not support persistent Cookies anyway.
- DNS forwarders: If multiple DNS servers are configured, they are queried in random order (only available servers)
- DNS service: By default, unknown domains will return the usual NXDOMAIN response and not the SurfLAN IP as in the past. This caused a lot of traffic on the login page webserver. Since most HTTP connections are encrypted nowadays, they will end up with a certificate warning anyway, so it's better to let the client know that the requested domain was not resolvable.
- DNS filter will return success and the "Null IP" 0.0.0.0 instead of NXDOMAIN for filtered domains to avoid that devices switch over to alternative DNS servers possibly bypassing the filter via encrypted transports (DoH etc.).
- Payment Login - Replaced "Klarna Sofort" with "Klarna Checkout" (includes Payment via Invoice, Sofort, Credit Cards and Direct Debit). Klarna Checkout is a completely different API and Payment Provider, therefore the old API/Account data can not be migrated.
- Monitoring: Removed disk speed timing/bytes charts.
- SMTP Proxy got removed as any SMTP connection should be secured by TLS nowadays and so is not able to be proxied.
- Frozentux Linux: Use new Linux LTS kernel 6.6
- WebAdmin Login: Support for two factor authentication (time based TOTP for the start, more to come)
- Login page and WebAdmin: Increase minimum TLS setting to 1.2. To support very old devices this was previously still TLS 1.0/1.1.
- Elliptic Curve TLS certificates can now be used, while still not recommended on the Guest network
- Renewed and upgraded most OS packages
- IACBOX Versioning: From v24 on semantic versioning is used with the format
. . . - iacbox.cloud Integration - allows centralized IACBOX management (See separate communication on this topic. Many cloud features are coming the next months).
- iacbox.cloud: Auto-magic Cloud Backup for all iacbox.cloud customers. Fully encrypted backups stored on EU servers (GDPR compliant).
- Fully renewed DHCP backend as good old ISC dhcpd was discontinued.
- New DHCP server allows one IP Range per VLAN (in combination with deactivated NAT this allows traffic segmentation in the upstream)
- Completely new DNS backend - one DNS service replacing 3 sub-components. The new DNS service is capable of encrypted DNS transport protocols like DoH (DNS over HTTP), DoT (DNS over TLS) and DoQ (DNS over Quic) which will be made available as WebAdmin settings in upcoming updates.
- DNS filter list updates are made weekly now.
- Support for restoring only certain parts of a backup like config without overwriting the license or network settings.
- Completely new update service (server side) and update mechanism. Faster downloads will be provided via a CDN in the near future.
- Login Page: added new background images for health care and cruise ship customers. Also some specific placeholder logos have been added.
- Pre-Announcement: New WebHook Service added. This service can send webhook messages to HTTP endpoints on certain events (Ticket login, logout, idle-timeout, ...). WebAdmin settings page is expected to come soon with a Patchlevel update.
- WebAdmin: The dashboard allows to place any monitoring tile now on the main dashboard. Chart visualization was completely renewed.
- WebAdmin: Split up the PMS backends into three new main categories with their own configuration page: PMS (Hotels), SPMS (Shipboard PMS) and HIS (Hospital Information System)
- WebAdmin: Allow longer passwords, mainly used in password managers.
- WebAdmin: Improved caching to speed up WebAdmin
- WebAdmin: Add more help links (deep links to the online manual)
- WebAdmin - DHCP: Reworked DHCP option page
- WebAdmin: Improve permission settings of WebAdmin user/groups.
- WebAdmin: Improve TLS verification error messages.
- WebAdmin - Email statistics: add an interval field (daily, weekly, monthly, yearly)
- WebAdmin: Many small improvements for logins via external authentication
- Login Page: Add a name field to each Login Page making it easier to find when there are a lot of pages on that system.
- Login Page: Complete rework of the PMS module to support PMS groups with almost every PMS now. This also means better Free Login support for many PMS backends.
- Login Page - Redirect after login: add all available placeholders to CAPPORT API venue-url (URL shown on Android devices).
- Login Page: Add a new padding-left setting to the Login Page Editor for input fields.
- Automatic Online Updates are now triggered every day instead of once per week. But the distribution of updates will be stretched to about 2 weeks for an average Patchlevel update.
- Updated default Login Page
- Remember Me: Devices are now registered for automatic re-login already with their first login.
- SMTP Server: Added a sender name field
- NTP: The NTP daemon is always running now. Removed the hard daily time sync.
- DNS Filter: return EDNS code 17 to mark the request as "filtered".
- Licensing: Removed dependency on the MAC address (licenses are checked more often now)
- Core: New command service replacing old parts to increase future feature speed, reliability and security.
- Free to use (Walled Garden): Add all HTTP URLs for UDP too as HTTP/3 (HTTP2 over Quic) traffic becomes more popular.
- Login prompt: Add licensing state and registration number to the terminal login prompt, making it easier to identify a booted system when dealing with a lot of setups at the same time.
- Auto Login Devices: Increased ticket validity from 24h to 7 days to avoid daily interruption of such devices.
- NTP Servers: Use public NTP server pools to avoid a single point of failure.
- VPN module: Add setting for signature algorithm selection.
- Changed default values: Set DNS servers to EU DNS servers, set Global bandwidth to 200Mbit/s, increase defaults of Free Login, increase Remember-Me timeout from 3 to 14 days, updated DoS prevention limits.
- Many preparations in the background for the upcoming EU CRA (Cyber Resilience Act) CE certification.
- Login Page: All new PMS types check first if a ticket already exists with that login-data and login the present ticket. This is important if tickets have to be bought.
- Login Page: Handle edge case more efficiently when VLANs are enabled but no VLANs are added.
- Login Page: Remove duplicate background definition, leading to an overlapping image on some devices.
- Login Page: Preselect the set WebAdmin language in Login Page Editor as active preview language.
- Payment - PayPal: Support password-only tickets.
- WebAdmin - Ticket Overview: Show correct used download/upload volume in parent tickets (having multiple child tickets).
- WebAdmin - Ticket Overview: Show print icon correctly for child tickets.
- Auto Login Device: Remove a present ticket if an entry for an Auto Login Device gets deleted.
- SNMP: Allow special chars in passwords.
- And many other small bug fixes.
- Login-API is deprecated now and will be removed with the next major version. Most of it can be done with the new Login Page introduced with v21. Please contact us if you need help migrating your existing Login Page.
- Central Services will be replaced by iacbox.cloud. Current customers will be migrated to a special iacbox.cloud package "Central Services Transition" throughout 2025.
- The default password for fresh setups will be removed soon. It will be replaced by a randomly generated password shown on the login prompt.
Version 21.0
v 21.0 (21589)
2024-11-20, This is a bugfix release.
- Unblock Apple DNS domains *.apple-dns.net as some iCloud services only work with this DNS server.
v 21.0 (21585)
2024-11-07, This is a security, feature and bugfix release.
- This update will automatically reboot your system
- Kernel update
- Apple iCloud+ subscribers using the Apple Private Relay and DNS had several issues with DNS as the IACBOX DNS server was bypassed. Access to Apple Private Relay is now blocked resolving most of the problems including a not working short URL logon.now.
- Batch API: Add optional Email recipient field to "createTicket" call that sends an Email with the created ticket to that address
- Payment login: Add optional BCC (blind copy field) to send the Email with the bought ticket also to that address
- Login Page: Redirect after login works now also for confirmation links in Emails and SMS
- SPMS login with MarineXchange: Make the InstallationCode/ShipCode optional
- PMS login with Camping.Care: Add support for phone number and Email fields
- DNS Service: Add a daily cleanup to avoid high memory consumption on large systems with 1000+ concurrent users online.
- WebAdmin - Ticket Overview: Translations with single quotes do not break the UI layout now
v 21.0 (21573)
2024-09-10, This is a security and bugfix release
- This update will automatically reboot your system
- Webserver update See security advisory for more details
- Login Page: Correct daytime/weekday based login hour restrictions which did not work correctly on Sundays
- Shipboard PMS MarineXchange: Check all bookings per cabin to match crew member logins correctly when there are multiple bookings (e.g. after a holiday)
- DNS Filter: chatgpt.com does not get filtered anymore
v 21.0 (21569)
2024-08-21, This is a feature and bugfix release
- This update will automatically reboot your system
- SPMS Resco SMS (XML API): Implement handling for blocked accounts and allow placeholder for group matching
- SMS Login: Improve log messages for generic SMS via HTTP
- Login Page Editor: Images no longer disappear after first page reload on Firefox browser
- SPMS MarineXchange: Guests arriving after "late" are now identified correctly
- Backup FTPS: Fixed an issue where the TLS connection could not be established to a specific type of FTPS Server
- WebAdmin - Online Update: Removed wrong error message if there are no new updates available
- WebAdmin - Network Tools: The IPv6 tools are available again
v 21.0 (21566)
2024-07-15, This is a security and bugfix release
- This update will automatically reboot your system
- Webserver update fixing multiple vulnerabilities. See security advisory for more details
- Radius: Update addressing the Blast-Radius attack. BUT manual config changes are needed! See security advisory for more details
- Login Page - Online payment: Show bank transfer on PayPal shop page for users without PayPal account (seems to be effective for German customers only)
- SPMS MarineXchange: Allow re-logins on departure day
- WebAdmin: Correct date pickers in collected user data and local user menu
- WebAdmin - Ticket Overview: Bring back the ticket print button to allow printing of PMS tickets (This is temporary workaround for affected customers. The valid use-case of re-using payed PMS tickets will be addressed with v24).
- WebAdmin - Login page editor: If an SPMS login is active, do not show a configuration warning
v 21.0 (21561)
2024-07-03, This is a security and bugfix release
- OpenSSH update fixing CVE-2024-6387 (regreSSHion). See security advisory for more details
- SPMS MarineXchange: Allow re-logins on departure day
- WebAdmin: Correct date pickers in collected user data and local user menu
v 21.0 (21556)
2024-06-19, This is a feature, security and bugfix release
- This update will automatically reboot your system
- Kernel update
- Batch Access API: Add parameter to set language for created tickets
- SPMS Login: Allow spaces in cabin numbers for Resco SMS (XML API) interface
- SPMS Login: Add group filter for Resco SMS (XML API) interface
- Connection tracking: Connection tracking logs are disabled correctly again
- WebAdmin: Fixed some minor display issues
v 21.0 (21552)
2024-05-15, This is a security and bugfix release
- Update TLS certificate for the default domain hotspot.internet-for-guests.com
- Batch Access API: Price is now set correctly when creating a new ticket
v 21.0 (21550)
2024-05-06, This is a feature and bugfix release
- Shipboard PMS Login: Added support for the new API of Ship Management Resco SMS (rescompany.com)
- WebAdmin - Reporting: Correct created-by field in ticket statistics export
v 21.0 (21543)
2024-04-17, This is a security and bugfix release
- This update will automatically reboot your system
- Kernel update with security fixes, especially a fix for CVE-2023-6546. See security advisory for more details
- OS packages with security fixes
- WebAdmin - Reports Statistics: Corrected ticket filter when used with newer (S)PMS systems
- SPMS Login: Further fixes for MarineXchange
- PMS Login: Updates for Camping.care PMS backend
- WebAdmin - User Overview: Wrong ticket volume (used up volume) in parent ticket
- SMS/Email Login: Corrected prioritization of allow- and deny-list entries
- Plug'n'play - Ignored devices: Correct timing issue when restaring the service
- BatchAPI - Rename header description in exported CSV of conntrack and proxy data
v 21.0 (21536)
2024-04-12, This is a security release
- Security patch to mitigate a possible local privilege escalation until more information is available. See security advisory for more details
v 21.0 (21530)
2024-03-11, This is a feature, security and bugfix release
- This update will automatically reboot your system
- Kernel update with security fixes
- PMS Login: add interface for new PMS type Camping.care
- SPMS Login: add interface for new SPMS (Shipboard PMS) type MarineXchange
- HIS Login: add interface for new HIS (Hospital Information System) type iS.hospital
- SMS / Email Login: better handling for overlapping entries in deny and allow lists (the more precise match is preferred).
- Application Control PRO: show full ticket names in charts
- Login page: correct wrong translation texts for details in ticket selection
- GDPR: show correct retention period text for anonymize/delete periods
- Dashboard: re-add icons for the online devices charts
- WebAdmin User / Ticket Overview: correct display of currently used bandwidth per ticket
v 21.0 (21522)
2024-02-05, This is a bugfix release
- This update will automatically reboot your system
- Free Login: correct another issue with fixed repeat interval (midnight) calculation
v 21.0 (21518)
2024-02-01, This is a feature, security and bugfix release
- OS packages with security fixes (including CVE-2023-48795)
- WebAdmin User: allow to revoke tickets for users with permissions to "Allow Ticket Overwrites"
- Login Page Editor: added missing translation for "Recipient"
- Login-API: fixed issue which could lead to very big log files if the Login-API was in use
- Free Login: use correct calculation for fixed repeat interval (at midnight)
- Login Page - Device Status: use correct calculation to avoid negative numbers in remaining ticket volume
- Online Payment: ticket sort order works again
- Central Services Login: fixed issue where sometimes the SSO (single sign on) via remote-login did not work
v 21.0 (21510)
2023-12-13, This is a feature and bugfix release
- This update will automatically reboot your system
- QR-Code: add option to generate and print Wi-Fi QR-Codes
- Network - Routes: show correct bandwidth settings when editing a Surf-LAN route
- Login methods - Password Only: the username input field for SMS, Email, Email Ticket Request and Online Payment is now correctly hidden for Password Only tickets
- Login methods: SMS provider eCall via HTTPS removed from the list of explicit implementations. Generic via HTTP should be used instead
v 21.0 (21486)
2023-11-07, This is a security and bugfix release
- OS packages with security updates
- Batch API: Added a rate limit for identical requests to avoid unnecessary load
- Ticket Printer: Tickets created via printer feed button have the correct expiration date again
v 21.0 (21480)
2023-10-12, This is a security, feature and bugfix release
- This update will automatically reboot your system
- Updated glibc (fixing CVE-2023-4911)
- Updated curl (fixing CVE-2023-38545 and CVE-2023-38546)
- OS packages with security updates (incl. CVE-2023-3817)
- Kernel update
- WebAdmin: Add new permission to WebAdmin users and groups that allows/forbids chaning ticket limits when creating a new ticket
- Login Page: Add new placeholder in redirect-after-login URL $LANGSHORT for the 2 char lang code and $PSEUDOMAC for a pseudomized MAC address as GDPR compliant identifier
- WebAdmin and Login Page: Renamed Twitter to "X" with updated icon
- WebAdmin: Updated translations for Italian and French
- CAPPORT API: Add all placeholders in redirect-after-login URL to the venue-url
- WebAdmin: Extend the allowed length of username and passwords to 256 chars
- WebAdmin: Hide cleartext password in SNMP settings
- WebAdmin: Remove the first line (header) from new XLSX Export to be compatible with the old format
- Ticket Printer: Fix error when Unlimited time credit was used
v 21.0 (21472)
2023-08-29, This is a security and bugfix release
- This update will automatically reboot your system
- Kernel update
- OS packages with security updates
- Login page: Improved client VLAN detection
- Backup: Fixed some minor Remote Backup issues
- Next major version: SMTP Proxy will be removed
v 21.0 (21449)
2023-08-08, This is a feature and bugfix release
- This update will automatically reboot your system
- WebAdmin - Free to Use: Entries with port ranges like tcp://10.1.1.10:9080-9090 are now supported
- WebAdmin - Users/Tickets Overview: Searching for online tickets within a specific time-frame works correctly now
- Batch Access API: Exporting ticket statistic data with included ticket_id works again
- Backup: Increased timeout for manual backup download to prevent problems on slow systems
v 21.0 (21444)
2023-07-19, This is a security, feature and bugfix release
- This update will automatically reboot your system
- OS packages with security updates (incl. CVE-2023-29406)
- SNMP Monitoring: Add support for all SHA2 (SHA-128/224/256/384/512) hashes and privacy encryption with AES (AES-128/192/256)
- Batch Access API: Allow to use ticket template UUID for ticket creation
- Replace XLS with XLSX downloads for statistics and data export via Batch Access API
- Ticket Print: Add portugese template for HTML ticket print
- Dashboard: System health now shows the correct state of the network interfaces and last successful backup
- Backup: Increased too short input field length for FTPS and FTPS Legacy backends. Admins are adviced to re-enter their remote backup password
- PMS: Display the correct configuration fields for ASA Hotel XML again
v 21.0 (21430)
2023-06-07, This is a security and bugfix release.
- This update will automatically reboot your system
- Kernel update
- OS packages with security updates (incl. CVE-2023-2650)
- Handle race condition in network interface naming during boot which lead in rare cases to invalid names
- Correct network interface naming in case multiple interfaces are used for Surf-LAN
- Connection tracking: Traffic of still open connections when the ticket got invalid is now added to the ticket
- Remote Backup: Manage backup generations setting is now honored correctly
v 21.0 (21422)
2023-05-17, This is a security release.
- This update will automatically reboot your system
- Renew TLS certificate for the default domain hotspot.internet-for-guests.com
v 21.0 (21418)
2023-04-19, This is a security and bugfix release
- This update will automatically reboot your system
- OS packages with security updates (including fixes for CVE-2023-25690)
- WebAdmin - Dashboard: Improved notification and system health messages for backups
- WebAdmin - Login Page Editor: Improved error handling on theme and loginpage upload
- WebAdmin - Printing layout: Remove username for password-only tickets on ticket printout
- AD/LDAP login: Re-login after password change in backend works again
- Email login: The attached .htm file is now translated to the correct language
- LoginAPI: Traffic to the LoginAPI login page no longer accounts towards ticket volume
v 21.0 (21410)
2023-03-22, This is a feature release
- Allow to deactivate NAT (masquerading) on the Office-LAN uplink interface. Guest devices will be routed to the default gateway with their internal IP to support upstream filters/proxies/analytics.
- Dashboard: Add system health messages and notifications for system backups
v 21.0 (21407)
2023-03-20, This is a bugfix release
- This update will automatically reboot your system
- WebAdmin - Ticket/User Overview: Calculation of time limit for already revoked/invalid tickets corrected
- Login page: Show correct default login page if no location based setting matched
- Login page - Local User: Login with user specific password works again
- Login page - PMS Login: Using departure date as ticket expiration for free tickets works again
v 21.0 (21403)
2023-03-07, This is a bugfix release
- This update will automatically reboot your system
- LoginAPI: Added option to auto-revoke free tickets upon manual user logoff (http://logoff.now)
- Routing Mode: Allow overlapping Surf-LAN routes, using the longest prefix match to determine the client location
- WebAdmin - Ticket/User Overview: Search for various ticket details as well as IP and MAC addresses works again
- WebAdmin - Ticket/User Templates: Added a limit to the ticket template price to avoid creating invalid tickets
v 21.0 (21400)
2023-02-24, This is a bugfix release
- This update will automatically reboot your system
- Cumulated update of v21.0 (21396) and v21.0 (21398)
v 21.0 (21398)
2023-02-22, This is a bugfix release
- This update will automatically reboot your system
- CAPPORT-API: Correct a wrong config value that lead to a wrong login page FQDN (mostly Android devices could not open the login page)
- Core services: Fix an error in our ARP service causing issues with our Plug'n'Play engine
- AD/LDAP login: Make multi-device tickets work again, if force account lookup is used
v 21.0 (21396)
2023-02-17, This is a security, feature and bugfix release
- This update will automatically reboot your system
- Kernel update
- OS packages with security updates (including fixes for CVE-2023-0286, CVE-2022-4304, CVE-2023-0215, CVE-2022-4450)
- WebAdmin - Ticket/User Overview: Allow search with partial IP and MAC addresses
- WebAdmin - Network Plug&Play: Support ignored devices per target IP (needed for the integration of streaming servers)
- PMS Login: Allow authentication with Room + Name for ASA Hotel XML interface
- Loginpage: Improve input validation for values including spaces and for some iOS devices
- Loginpage Editor: New preview modes for Temporarily online: Email + SMS added
- BatchAPI: Allow 0 days (same day) as expiration date for tickets created via BatchAPI
- Manual: New manual section "Integrations" launched with first article "Triax Cast Streaming (Chromecast)"
- OS: Updated time zone information
- WebAdmin - Ticket defaults: Changing ticket expiration period works again
- PMS Login: Login with HoRes PMS interface works again
- Loginpage: Correct some faulty german and chinese translations
v 21.0 (21383)
2022-12-19, This is a bugfix release
- This update will automatically reboot your system
- SMS/Email Login: Correct global limit of maximum allowed SMS / Emails
- SMS Login: Correct limit per user for numbers with whitespaces
- WebAdmin - Create Ticket: Revert previous change to date fields, allow to freely set any valid-from and valid-to dates again
- WebAdmin - Create Ticket: Add check to prevent invalid, negative ticket limits
- Remote Backup: Correct passwords with specific special characters like "&", "<", ">", "'" were unable to connect
- Remote Backup: Expand allowed special characters for the password field (still not allowed characters are "--", "\", """)
- Remote Backup: Extend allowed input field length for the username and password fields
- Remote Backup: Improve logging
v 21.0 (21379)
2022-12-02, This is a bugfix release.
- SMS Login: Newlines in SMS message led to invalid JSON when using Generic via HTTP JSON - POST method
- WebAdmin - Ticket Create: Creating tickets with unlimited expiration date was not possible due to an error
- WebAdmin - Bulk Tickets: Ticket details have not been updated correctly when changing the used ticket template
- Remote Backup: The legacy FTP(S) backup no longer worked on some systems using FTP Servers with very specific settings
v 21.0 (21377)
2022-11-22, This is a security, feature and bugfix release.
- This update will automatically reboot your system
- Kernel update
- OS packages with security fixes (including CVE-2022-31629, CVE-2022-37454, CVE-2022-31630)
- Updated root CAs
- Login page on new iPad 2022 (10.9): Render login page in tablet view
- Login page - ExtAuth login via AD/LDAP: "Force Account Lookup" forces a relogin if the password was changed (see lastPwdChange attribute)
- Login page - ExtAuth login via Radius: Allow backslashes in username
- Login page - PMS Login: Shorten timeouts if the PMS is not responding
- Backup: Add option to select max TLS Version for FTP(S)
- Backup: Auto-Migration of legacy FTP(S) backend to the new backend if test was successful
- Routing mode - Proxy: Correct connection handling of transparent proxy to avoid blocking connections in some edge cases
- Routing mode - RememberMe logins: Assign correct Route-ID in tickets after automatic re-login. This also affects the Users-per-Route monitoring chart
- Routing mode - CAPPORT API: Correct MAC address resolving in routing mode
- Login page: Add missing translations for months in PMS date picker
- Login page: Better error handling if a date was given in a wrong format
- Login page - Online Payment: Show better error message if the payment failed
- Backup: Improve application log messages for successful or failed remote backups (the backup logs contain all details)
- WebAdmin - Autologin: Correct deletion of autologin devices and show the correct last changed date and time
- WebAdmin - Login Page Editor: Correct double encoding of translated button texts
- WebAdmin - Login Page Editor: Make Page link point to the correct sub page
- WebAdmin - Login Page Editor: Correct configuration link of ticket login method
- WebAdmin - User permissions: Fix save user permissions for Business Accounts menu
- WebAdmin - Online Payment: Loosen notification check so that the ticket shop stays active even if the SMS configuration is invalid
- WebAdmin - Online Payment: Keep PayPal VAT settings when saving notification settings
- WebAdmin - Create Ticket: Allow non-sysop users to edit the Valid-to field
- WebAdmin - Bulk Tickets: Allow non-sysop users to edit the Valid-To field
- WebAdmin - Bulk Tickets: Update Valid-To field after Ticket Template was changed
- SMS Login: Fix SMS limit per user for numbers with "+" as prefix
- Postfix/SMTP: Fix postfix configuration to send mails from localhost
- Next major version: PMS login for static Autologin Devices will be removed
- Next major version: Transparent proxy on port 80 will be removed including the possibility to map IPv6-only webpages to IPv4
v 21.0 (21350)
2022-09-08, This is a bugfix release
- WebAdmin - Backup: Increased allowed backup file size for backup restore
- WebAdmin - Backup: Allow spaces for remote path names
- WebAdmin - Backup: Fixed an error where automatic remote backup was not executed properly on some older systems
- WebAdmin - Backup: Fixed incorrect sort order of dates in listing table
- WebAdmin - Backup: Fixed incorrect view of file sizes for larger backups in listing table
v 21.0 (21345)
2022-08-31, This is bugfix release.
- This update will automatically reboot your system
- Loginpage: Improved compatibility mode to better support devices with old or no javascript (e.g. Amazon Kindle eReader)
- WebAdmin - Online Update: Improve display of online update states and download progress during update
- Loginpage - External Authentication: Loosen password character restriction for LDAP and AD backends
- Loginpage - Ticket Request: Fix wrong order of recipient input fields
- WebAdmin - External Authentication + Local User: Honor expiration date for tickets with unlimited time credit
- Webadmin - Reports: Fixed faulty VAT calculation for revenue statistics
- Webadmin - Plug & Play: Fix error for invalid device list upload
- WebAdmin - Backup: Automatic remote backup was still attempted to execute even if deactivated
- WebAdmin - Backup: Use correct icon to display failed remote backups in the history logs
v 21.0 (21336)
2022-08-22, This is a security, feature and bugfix release.
- This update will automatically reboot your system
- Backup: Filename format of manually downloaded backups changed. The filename is now the same as for the remote backup
- Kernel update
- OS packages with security fixes (including CVE-2022-2097, CVE-2022-0547)
- Backup: New backend/protocol SFTP - uses SSH as transport. Authentication via password or key file
- Backup: New backend/protocol S3 (Amazons SimpleStorageService) - send backups to S3 compatible storages
- Backup: Restore a backup from remote server with one click
- Backup: Show history logs of past backups
- Backup: Optionally encrypt remote backups
- Login page: Add help texts (fully translatable) per login method above the login form
- Login page: Add new Spacer element to add more padding if needed
- Ticket printout: Add custom QR-code URL per ticket template
- CAPPORT API: Use redirect-after-login URL as venue-url (Android 11 and 12 will show a notification and open the real browser if clicked)
- WebAadmin: Open manual in a popup with deep-links from features for quick help (more deep-links coming soon)
- Application Control: Detection engine updated with new protocols and performance improvements
- WebAdmin - Ticket/User Overview: Connection tracking information is shown per device in the ticket details popup
- Backup: New FTPS backup supports TLS 1.3 now
- Login page: Ticket selection can optionally show the template description now
- Login page: Add success/error messages of some login methods to application log
- Login page: Support PMS logins on old devices (like e-book readers) without JavaScript support
- Login page - PMS Login: Add a dummy Select option to building selection with added client side validation
- LITE version: Make the full-version feature Plug'n'Play configurations available for LITE users
- Batch-API: Return QR Code ID for created tickets
- Login page - PMS Login: Correct caching hours
- Login page: Support upper-case letters in custom TLS certificates which lead to ignored requests
- Login page: Ensure PMS information is present for extensions like newsletter subscriber plugin
- Login page: Correct some truncated german translations
- Login page: Use the set text color to accordion and pile version of the login-box element
- Login page - HiMed/HIS Login: Show correct error message if the remaining credit is insufficient
- Login page - Email Login: Use correct text color in popup
- Login page - Text element: Correct single quote escaping
- WebAdmin - Login page editor: Correct clickable area of checkboxes
- WebAdmin - Login page editor: Handle exceptions during image and font uploads of unsupported formats
- WebAdmin - Login Page Editor: Correct special modes for ticket selection and filtered DNS entires
- WebAdmin - Login Page Editor: Copying a login page also copys the images now
- WebAdmin - Login Page Editor: Correct PMS configuration checks
- WebAdmin - DHCP: Make enabling a static lease from the table work again
- WebAdmin - PMS config: Allow longer inputs for the room mapping configuration
- WebAdmin - Ticket/User Overview: Correct labels and IDs of payment tickets (PayPal, Klarna). Support searching for transaction and invoice ID.
- WebAdmin - SMS/Email Login: Allow/Deny-list now ignores whitespace
- WebAdmin - Application Log: Add VLAN information to more log messages
- WebAdmin - Local users: Fix DB error while saving under certain circumstances
- WebAdmin - Ticket/User Overview: Revoking a child ticket does not revoke the parent ticket anymore
- WebAdmin - Autologin devices: Hide columns in table of unlicensed/not used modules
- System log: Remove misleading errors if a master ticket logs in the first time
- Fixed Bandwidth: Correct fixed bandwidth support for PMS tickets
- Backup: Backup contains the remote backup time now
- Next major version - Backup: Legacy backend for FTP and FTPS will be replaced with the new FTP/FTPS backend
- Next major version - Tunnel module: OpenVPN version will be upgraded to 2.5 and maybe needs reconfiguration on your server
- Next major version - LoginAPI: PHP will get upgraded to version 8.1
- Next major version - Transparent HTTP proxy will be removed
v 21.0 (21297)
2022-06-15, This is a security release with a HOTIFX for Oracle Opera PMS users.
- This update will automatically reboot your system
- Updated OS packages with security fixes (including CVE-2022-31625, CVE-2022-31626)
- PMS Login - Oracle Opera: Correct order of messages in handshake with PMS which causes failed PMS logins.
v 21.0 (21293)
2022-06-08, This is a feature and bugfix release
- This update will automatically reboot your system
- PMS Login: Support for ElektraOtel Hotel Management software
- WebAdmin - Custom TLS Certificate: Improve certificate chain validation to accept root CAs independent of their "purpose" field
- WebAdmin - Ticket Templates: Allow to change UUID of ticket templates (needed for Batch-API and custom extensions)
- Login Page - PMS Login: Labels of date drop downs are now translated
- Login Page - PMS Login: Date fields are filled with wrong date format after the first login attempt failed
- Login Page: Correct size of the terms and privacy policy checkbox for longer texts
- WebAdmin - Online Update: Add button to allow forced update run
- WebAdmin - Online Update: Correct download of update information
- WebAdmin - Bulk Tickets: Reset all advanced settings after choosing another ticket template
- WebAdmin - Bulk Tickets: Make upload and download of CSV files more robust
- WebAdmin - Bulk Tickets: Honor order of tickets in CSV file
- WebAdmin - User/Ticket Overview: Remove logout action on parent multi-device tickets
- WebAdmin - User/Ticket Overview: Align labels of collapsed and expanded ticket version
- Webadmin - User/Ticket Overview: Anonymize child tickets too if parent ticket gets anonymized
- WebAdmin - Login Page Editor: Select correct tab after uploading an extension
- WebAdmin - Custom Login Page extensions: Fatal exceptions are detected now during extension upload
- WebAdmin - System Monitoring: Visual fixes for User per VLAN chart
- System: Lower default log-level of login page code to avoid large logs
- Online Update: Multiple fixes for AARCH64 updates (RaspberryPi4)
- Remove incorrect VLAN-restart-notice on systems in Routing Mode after upgrade to p21280
v 21.0 (21285)
2022-05-16, This is a security, feature and bugfix release.
- This update will automatically reboot your system
- Renew default TLS certificate for hotspot.internet-for-guests.com
- OS packages with security fixes (including CVE-2022-1343)
- New online manual available
- Manual: Reworked and extended content including latest features (Azure AD, Message after login, Login Page Extensions, ...)
- Manual: Improved search and on-page navigation
- Manual: Support for bright and dark theme
- Manual: Capable of Whitelabel versions
- WebAdmin - User Overview: Show download and upload volume separately in ticket details
- WebAdmin - Auto login devices: Avoid error on saving new devices
- WebAdmin - Auto login devices: Optimize table for large amount of devices
- WebAdmin - Monitoring: Auto-scale Y-axis on users per VLAN chart
- WebAdmin - Online Update: Fix some minor issues and translations
- WebAdmin - Network/Tools: Correct search and table paging
- WebAdmin - Application Log: Correct links to tickets
- Webadmin - User Overview: Hide fields no longer available for anonymized tickets
- Login Page - Social Login: Do not show error message on aborted login
v 21.0 (21280)
2022-05-02, This is a security, feature and bugfix release. Hotfix included for vmware systems that use Application Control. Only systems with valid software maintenance can update to this version.
- This update will automatically reboot your system
- Kernel update (including fixes for CVE-2022-0847, CVE-2022-25636)
- OS packages with security fixes (CVE-2022-0778, CVE-2022-23852)
- New login method category: Business Accounts - with an extended Microsoft 365 Azure AD login method
- New communication feature: Send an email to WiFi users after a successful login with further information and custom links
- Login Page: Allow to upload custom extensions to add custom elements, login methods, event handlers (hooks), generic request handler etc.
- Login Page: Add Ukrainian as available language
- Ticket Printer: Support printer model Metapace T-40
- WebAdmin - Monitoring: Add new bandwidth per VLAN monitoring widget
- WebAdmin - Monitoring: Add new users per VLAN monitoring widget
- Microsoft 365 Azure AD login: Allow to map AD groups or VLANs to ticket templates to distinguish user groups (like lecturers from students)
- WebAdmin - Online Update: Reworked online update page (see this in action with the next update). It shows more detailed information and gives a more fine grained control of which updates should be installed automatically.
- WebAdmin - Online Update: Moved update time frame from remote backup to update configuration
- WebAdmin - Reporting/Collected user data: Add collected email addresses from Message-After-Login
- WebAdmin - Login Page Editor: Text element - link to settings of a text style for faster cross navigation
- WebAdmin - Login Page Editor: Add translation keys to the error pages (Not Found and generic error) which allows this texts to be changed
- WebAdmin - Users/Tickets Overview: Re-introduce filter for used tickets
- WebAdmin Login: Add option to disable username autocomplete
- WebAdmin: Removed warning icon from random MACs in Users/Tickets Overview as this could be misunderstood as something bad - the information is now shown on mouse hover
- Batch Access API: Add filter selection to ticket statistics
- PMS Login: Add option to let created tickets expire on departure date + 1 day
- Email SMTP Server: Add option to force a certain password hashing digest (if auto mode is not working)
- Email/SMS login: Improve usability by showing a message with instructions before the device is taken online and the captive browser disappears on Android
- Social login: Add the email address (if present) to the user profile which is shown on Users/Tickets Overview
- Login Page: Add a bold warning if javascript is disabled or not available (like with some old ebook readers), link to a compatibility page that works at least for simple login methods
- Login Page: Show a better error page if the login page was called with an unknown domain
- Appliction Control: Changes to avoid stability issues on VMware with active Application Control
- WebAdmin login: Avoid misleading error messages on failed logins (by security scanning tools)
- WebAdmin: Fixed incorrect caching that led to slow WebAdmin pages on some systems
- WebAdmin - Quicklinks (Favorites): Fixed error with links to special pages not part of the main menu
- WebAdmin - Users/Tickets Overview: Fixed departure day in ticket details
- WebAdmin - Bulk tickets: Prevent errors while parsing old CSV files
- WebAdmin - Login Page Editor: Do not allow to delete index page
- WebAdmin - Login Page Editor: Image upload now also accepts JPEG images with the long file extension .jpeg
- WebAdmin - Login Page Editor: Fixed multiple smaller bugs
- WebAdmin - PMS setting: Fixed connection status of some PMS types
- WebAdmin - Login Page: Handle unexpected directory structure on theme upload
- WebAdmin - System monitoring: Show marker again (reboots, updates, ...)
- WebAdmin - NTP: NTP server check had false positives
- Login page: WiFi4EU logo was not displayed correctly on iOS devices, especially iPad
- Login page: Fixed a misplaced error message for login box in accordion mode
- Login page: Fixed multiple issues with translated text inside PageLinkElements
- Login page - Device Status Element: Fixed remaining volume after a relogin
- Login page - Data Collector Inline: Fixed custom translations of labels
- SMS Login: Allow multiple formats for mobile numbers
- SMS/Email/TKRQ login: Fixed allow- and deny-lists behaviour after deleting entries
- SMS/Email Login: Increased maximum timeout for activation from 60 to 999 minutes
- External Authentication: Expiration date works again if unlimited time credit is in use
- Guestline PMS: Fixed plugin initialization
- PMS Login: Allow PIN login for guests without first- and last name set
- Cleanup multiple weekly reboots present in config after backup/restore
- Planned redirect: Set a better log message for tickets logged off due to planned redir
- MedCom Login: Improved error handling
- And many small bugfixes
- Unencrypted login page - next major version will not support an unencrypted login page any more as the CAPPORT API (used by all newer mobile devices) works only with a valid TLS connection
v 21.0 (21270)
2022-05-02, This is a bugfix release.
- Backup: Correct execution and order of migration scripts after a backup of an older patch-level version is restored.
v 21.0 (21215)
2022-01-26, This is a security and bugfix release - it replaces the previous update p21214 from 25th Jan.
- This update will automatically reboot your system
- Updated OS packages with security fixes
- Kernel update (Including a patch for CVE-2022-0185)
- Free Login: Relogins of free-tickets with a repeat interval set to monthly (or custom mode with months as unit) lead to failed logins
- WebAdmin - Local User: Saving users with crypted passwords no longer makes them unusable
- WebAdmin - User Overview: Invalid javascript no longer leads to a broken page on IE11
- WebAdmin - Create Ticket: An empty default bandwidth setting does not lead to errors for non sysop users anymore
v 21.0 (21199)
2021-12-16, This is a feature, security and bugfix release
- This update will automatically reboot your system
- PMS login: In rare cases of invalid PMS server responses guests could login with any guest name
- Serivce for partners: Add server-side login page provisioning for partners with custom themes
- WebAdmin - System Health: Lowered minimum hardware requirements of needed disk space to better match usual VM sizes
- WebAdmin - Reports/Statistics: Add filter for used tickets
- Webadmin - User Overview: Improved search for mandatory fields and always search case insensitive
- CAPPORT API: Improved client detection
- Login page: Fix PMS login with names that consist of more than 2 parts
- Login page: Correct display of device status element
- Login page: Planned redirect stopped working in some rare cases due to a missing directory
- WebAdmin - Login Page Editor: Made image upload work for default login page
- WebAdmin - Login Page Editor: Update translation cache after changing the active login page
- Webadmin - User Overview: Correct last seen date/time for child tickets
- Webadmin - User Overview: Add name and description to Local User and Autologin tickets
- Webadmin - User Overview: Fix display of password-only status of Local User tickets
- Webadmin: Fix invalid start value of custom ticket prefixes
- WebAdmin: Correct handling of unicode special chars
- WebAdmin - Ticket print: Use fallback if no language was set
- Login-Api: Correct saving social data with special unicode characters
v 21.0 (21182)
2021-11-04, This is a feature and bugfix release
- This update will automatically reboot your system
- Security updates for OS packages
- Kernel update with security fixes
- New login method - 'Microsoft 365' suitable for OAuth2 authentication via Office365/Azure AD
- Login page: Add new Wifi4EU login page theme and extension
- SMS Authentication: Add Option to receive SMS credentials on another device
- PMS - TigerTMS iLink: Allow to book ticket prices to rooms
- Email Login - Show popup with instructions before taking the device online (as Android will close the Captive Browser immediately)
- Login page: Reload login page on browser tab re-activation
- WebAdmin - Ticket/User Overview: Display creation date for parent tickets
- WebAdmin - Ticket/User Overview: Add link to used ticket template
- WebAdmin - Ticket/User Overview: Add CSV Export for tickets
- WebAdmin - Ticket Details/History: Differentiate between automatic remember-me and manual relogin
- WebAdmin - Ticket Details/History: Added VLAN information
- WebAdmin - Application Log: Added VLAN information
- WebAdmin - Reporting - Collected user data: Add Excel xslx download
- WebAdmin - SystemHealth: Show warning for RememberMe by Cookie setting (as Captive Browser don't store Cookies)
- WebAdmin - PMS: Renamed PMS 'Micros Fidelio' to 'Oracle Opera'
- Editions: Update Classroom and SilverSurfer edition to new v21 login page themes
- Updated root CAs
- Updated timezones
- Login: Child Tickets honor VLAN restrictions of their parent tickets now
- PMS ASAj (XML version): Show separate fields for first and last name
- WebAdmin - Bulk Tickets: Fix errors on page for ticket templates that do not expire
- Webadmin - Ticket/User Overview: Correct displaying special chars in Datacollector texts
- Webadmin - Ticket/User Overview: Resetting the filter also resets the sub authentication methods now
- WebAdmin - System Monitoring: Correct timespan selection of 'Network Surf-LAN Now' chart
- WebAdmin - Reporting - Collected user data: Data export contains now all records not only the shown
- Routing Mode: Correct 'Prefer routing match' feature at multiple places
- Client2Client protection: Fix inconsistent state when upgrading from v19
- Email Ticket Request: Datacollector data is now assigned correctly in the sent email
- Application Control Insights: Allow to select only 14 days in the past
v 21.0 (21165)
2021-10-01, This is a bugfix release
- Email backend: Send Emails to the configured SMTP Server instead of using direct connections
- Migration of very old (but still valid) tickets so they can log in again
- WebAdmin - Login page editor: Fix wrong warning of payment login method
- WebAdmin - Bulk ticket: Correct page break on printout
- WebAdmin - Reports statistics: Correct ticket filter for payment tickets
- WebAdmin - Ticket create filters templates by user group
- Login via Email Ticket-Request: Extend expiration time of requests to one week
v 21.0 (21150)
2021-09-20, This is a feature and bugfix release
- This update will automatically reboot your system
- Security updates for OS packages
- WebAdmin - Social Login config: Add selection for redirect URL (which needs to match the platform APP setting)
- WebAdmin - Payment: Remove reboot notification on changes - new version is working without a reboot
- WebAdmin - System monitoring: Show a message if the session has expired
- Login page: Sort available languages in selection
- Free-to-use: Add new URL needed for Microsoft login
- WebAdmin - User Overview: Payment tickets are found by transaction ID again
- Webadmin - User Overview: Show used time and volume for unlimited tickets
- WebAdmin - User Overview: Correct dispaly of Microsoft Login tickets
- WebAdmin - Login Page Editor: Relax link validation to allow links without sub-domains
- WebAdmin - Login Page Editor: Ticket templates are not displayed due to vlan/route restriction
- WebAdmin - Ticket History: Correct sort order by date/time
- WebAdmin: Show device infos again on systems with many users
- Login page: Prevent display of invalid translation key in a text element
- Login page: Show text after a link in text elements
- Login page: Fix double encoding of HTML chars following a translated text
- Login page: Support text elements with only whitespace used as padding
- Login page - LinkedIn: Corrected scope in OAuth request
- Login page - Social Login: Use custom translations of button text if present
v 21.0 (21140)
2021-09-10, This is a hotfix release for password-only users
- Lowered the resolving interval to 30 seconds of free-to-use service (walled garden)
- RememberMe tokens are created again for password-only tickets. NOTE: users will need to login once again to finally get automatically online next time
- PayPal: Whitelisted many free-to-use (walled garden) links needed for PayPal. As PayPal is forcing security checks now randomly (with multiple different third party Captcha providers!) it's currently not possible to guarantee a seamless user-experience. We're monitoring the situation
- Loginpage: Restore old behaviour of http://logoff.now to immediately log out the device as some customers are using this as an API. This comes with the downside that browsers showing previews of visited pages on new/empty tabs will trigger logoff.now and logout your device just by showing the preview page - so be warned when testing. A future update will make this configurable to revert this disadvantage for other users.
- Loginpage - Datacollector: Tickets created on v19 with an active Datacollector can login again on v21
- WebAdmin Reports/Ticket statistics: Payment and social tickets are filtered and grouped correctly now
v 21.0 (21114)
2021-09-01, This is a bugfix release with a HOTFIX for vmware users.
- This update will automatically reboot your system
- OS package update with security fixes
- Login page: Add filter for unwanted requests
- OS/Linux: Applied patch to fix an invalid detection of CPU feature (FMA,FMA4) which lead to DB corruption (mostly seen on vmware)
- Login page: HiMed login uses the correct field for room number again
- Login page: Correct RememberMe Token for temporary-online-tickets
- Login page: Allow to deactivate languages the browser sends
- Login page on iOS: Input fields do not overflow the form now
- Login page - Payment: Sofort/Klarna is now supported
- Login page: PayPal logins with encrypted passwords work again
- Login page: Fix RememberMe for SMS and Email login
- Login page - SMS/Email/Ticket-Request Login: Correct multiple problems with multi-device tickets
- Login page: PMS login checks for ticket template even if none is needed
- WebAdmin - User Overview: Fix error in search filter
- WebAdmin - Payment: Allow longer input for password and signature fields
- WebAdmin - Email Ticket Request: VLAN ID is assigned correctly now
- WebAdmin - System Health: Check for equal passwords is performed on every login now
- WebAdmin: Ticket mandatory field does not allow space
- WebAdmin: Create Ticket Print: stuck in loop with ticket printer
- WebAdmin - Ticketprinter: Allow to save printer settings only if a port is set
- WebAdmin: Allow shorter activation time slot for SMS and Email login
- VLAN/Route: Ticket templates with restricted VLAN/Route access work again
- DHCP: Additive DHCP ranges are correctly added now
- Backup/restore: Use correct setting for Login-API
- WebAdmin - Ticket details: Email and SMS tickets show the email address or phone number now
v 21.0 (21095)
2021-07-15, This is a bugfix release
- This update will automatically reboot your system
- WebAdmin - User Overview: Custom descriptions for tickets created via Batch Access API are displayed again
- PMS login: Added PMS deny-list to new login page
- WebAdmin: Remote backup via FTPS (TLS) no longer aborts file transmission on the last few MB
- WebAdmin - Privacy Toolkit: The health check for WebAdmin user names is working correctly now
- WebAdmin: Login to WebAdmin with user from External-Authentication is working correctly again
- WebAdmin: Fix typo in loginpage text and use correct german version for E-Mail now
- WebAdmin: Removed cleartext passwords from error stacktraces in the system log
v 21.0 (21084)
2021-06-30, This is a bugfix release
- WebAdmin & Login page: Special characters in Data Collector templates and data no longer lead to errors
- WebAdmin - User Overview: Text search for tickets works again
- SMS Login: The correct sender address is now used for Generic via Email
v 21.0 (21079)
2021-06-17, This is a feature and bugfix release
- This update will automatically reboot your system
- Kernel update with security fixes
- PMS Login: Add interface to new PMS type TigerTMS iLink
- Login page: Planned redirect available for the default login page
- Full Data Collector rework for better integration into the new loginpage and editor
- WebAdmin - User Overview: Improved display of many small details in the Ticket Overview and Ticket Details
- WebAdmin - Login Page Overview: Highlight active login pages for better visibility
- WebAdmin - Login Page Overview: Added option to reset the default login page
- Login Page Editor: Add cross links to important WebAdmin settings for easier configuration
- Login Page Editor: Add option to show/hide border of the iframe element
- Login Page Editor: Allow to add additional information to the iframe link by using placeholders
- Login Page Editor: Added option to mask/show passwords on login
- Login Page Editor: Added new category "Text 3" for design changes
- Login Page Editor: Added new category "Input labels" for design changes
- Login Page Editor: Allow use of placeholders in the text element
- Login page: Improve ticket selection behavior to be more user friendly
- Login page: Overall better performance due to improved caching
- Login page: Speed up online status update after successful login
- Login page: More minor design changes and improvements
- PMS Login: New option to add custom room caption to the login
- Planned redirect: Better visual representation of the relogin state to be more user friendly
- Update translations for WebAdmin and login page
- Online update: Restructured update log for better readability
- Online update: Increase retry interval in case of failed update to prevent "update loops"
- WebAdmin: Adding new DHCP ranges working again
- WebAdmin: Display the name of the WebAdmin user instead of the user group he is assigned to
- WebAdmin: Invalid maintenance popup no longer leads to unstyled menu pages
- WebAdmin - User Overview: Anonymize ticket button working again
- WebAdmin - User Overview: The current bandwidth usage per ticket is displayed correctly now
- WebAdmin - Monitoring: The SurfLAN monitoring chart is displayed correctly again
- Login Page Editor: Custom translations for Data Collector labels are saved correctly now
- Login Page Editor: Login page title can now be changed on first edit
- Login Page Editor: More small improvements and bugfixes
- Login page: Terms of Use and Data Privacy links can be fully disabled again
- Login page: Added redirect before login again
- Login page: Support Free Login via URL GET parameter again
- Payment login: Login with wrong credentials now shows the correct error
- PMS login: Ticket template selection based on VIP groups working again
- PMS login: Using ony last name for authentication working correctly now
- PMS login: The building selection at the login working correctly now
- Email / SMS login: Black and whitelist entries work again
- Free to Use: Using quotes in the description of a Free to Use entry no longer deletes all entries
- Bulk Tickets: The password length check during the upload of bulk tickets working correctly now
- Ticket printer: Creating password only tickets via printer working again
- VAT settings: The VAT value is now added correctly to NET ticket prices
- Marked unsecure login (disable HTTPS for login page) as deprecated
v 21.0 (21050)
2021-04-27, This is a bugfix release
- Login Page Editor: Changing text styles and colors works now on all text templates
- Login Page Editor: Warn message is now readable if no login methods are active
v 21.0 (21047)
2021-04-21, This is a bugfix and security release
- This update will automatically reboot your system
- Update openssl library
- Kernel update with security fixes
- WebAdmin: Added WiFi configuration page for onboard WiFi (like RaspberryPi4)
- Login page: Custom translations are stored now per login page
- Login page: Export and import also include custom translations
- Login page: Add cancel button to password change form
- SMS login: Set client temporarily online to prevent disconnect from WiFi
- SMS login: Add confirmation link to default SMS text
- Ticket Email Request: Show entered Data Collector values on approval page
- Privacy policy: Updated cookie section
- Online manual: Updated more parts of the documentation
- Facebook login: Missing free to use domains are added
- Social login: Correct callback URL is send
- Email login: Confirmation link working again
- Login page: Avoid horizontal scrolling when showing messages
- Login page: Avoid caching of static files like CSS and JS
- Login page: Many small visual changes
- Login page: Opening popups does not cause JS errors
- Login page: Disable Free Login if PMS based free login is used
- Login page: Refresh cache on ticket template changes
- Add missing translations in WebAdmin and the new login page
- Login Page Editor: Changed translations are now updated correctly in the translation popup
- Login Page Editor: french output works now
- Login Page Editor: And many other small fixes
- Login Page Editor: Copy custom translations when copying a login page
- Login Page Editor: activated extension does not refresh editor metadata
- Login Page Editor: Sub-pages work now also without a trailing number in the title
- Login Page Editor: Built-in logos are now filtered from background images
- SMS and Email login: Email address and phonenumber are saved and shown under Reporting again
- WebAdmin: Collected user data does not show uneeded columns
- WebAdmin: Collected user data shows confirmation via SMS
- WebAdmin: Show ticket details popup when using the link in Reporting
- WebAdmin: Do not show password hashes in ticket overview
- WebAdmin: Remove buttons from printed ticket
- WebAdmin: Cancel button on the ticket create page now really cancels the ticket creation
- Calendar on login page and Login-API shows now also next year as option (needed for check out dates)
- ARM: Many small changes
v 21.0
2021-03-31, This is a new major release. Online update is available since 18th August 2021. ATTENTION: This upgrade will take 20-60min depending on your download speed. It will also reboot multiple times - PLEASE WAIT AND DO NOT POWER OFF THE SYSTEM.
- This update will automatically reboot your system
- This version has a completely new login page module and the old one is removed. Login pages using the old CSS editor will be migrated to the new default page preserving background image and logo, but without other CSS changes. Fully customized login pages via "Custom FTP" cannot be migrated. Automatic update will stop in this case.
- Old WebAdmin version was removed.
- Browser Support: Internet Explorer 11 is not supported anymore for complex settings like the new login page editor.
- Initial login page/redirect: Remove user-URL as this is not present in typical connection check calls.
- HTTP content filter and "simple webfilter" have been removed as outdated for unencrypted HTTP connections not being in use anymore.
- Removed proxy features: Upstream proxy, proxy auto-detection and browser whitelist
- Auto login based on user agent was removed.
- "Periodic redirect" for unencrypted HTTP connections was removed as outdated.
- Payment provider wirecard was removed.
- Session limit was removed as there is no need for it nowadays. Tickets keep their usual ticket limit.
- Login-API: PHP 7.4 is used now and custom code needs to run on this version.
- New kernel 5.10 and system components with many security fixes.
- Support for the newest and most secure TLS version 1.3
- Separate TLS versions on Office- and Surf-LAN can be set.
- Webserver supports TLS OCSP stapling now.
- TLS certificate request (CSR) generator adds SAN attribute.
- Fully renewed Linux base system Frozentux v10.
- ARM platform support (Beta) - as a start we have Raspberry-Pi image, more will follow including support for real ARM servers.
- Support for onboard WiFi network cards (Beta) - supported on Raspberry-Pi right now.
- New login page: Fully renewed login page module with different themes.
- New login page: Supports different login pages per location (per VLAN or Route).
- New login page: New set of background images.
- New login page: DataCollector element for stand-alone usage, DataCollector Inline as extension to login forms.
- New login page: Client side error validation.
- New login page supports extension points for custom extensions.
- New login page: Support for custom fonts.
- Login page editor: Easy edititing of your login pages allows to add/remove elements.
- Login page editor: Allows to change existing texts in any language and add new translations.
- Login page editor: Login pages and themes can be downloaded and uploaded.
- User and ticket overview renewed: Improved overview with powerful filters and new ticket detail view.
- All PMS types are now available on the new login page.
- All social login methods are now available on the new login page (Twitter, Google, Microsoft, Facebook, LinkedIn).
- Whitelabel themes are now fully provisioned from our central servers.
- New login page: Only one session cookie is used
- WebAdmin: Improved usability on "create ticket" and "bulk ticket" pages.
- WebAdmin: Show additional warnings on inconsistent settings.
- WebAdmin: Added config page for "forgot password" option.
- WebAdmin: Placement order of login methods is now part of the login page editor.
- WebAdmin: Add predefined ticket templates for social, messaging, and online payment login method.
- Migrate special operation modes "Free mode" and "Autologin mode" to settings available in standard mode.
- WebAdmin: Handle UTF8 BOM prefixes on file uploads.
- Network card detection improved on some VMs.
- Setup: Remove long timeout when changing administrator password.
- WebAdmin: Changing the password of another webadmin user in user management works now correctly.
- Domain name extraction from certificates corrected.
- And many other small fixes.
- HTTP proxy will be removed with v22
Version 19.0
v 19.0 (19080)
2022-05-17, v19 is End-of-Life - please upgrade to v21! This is a maintenance release for systems still on v19. All security and feature updates will be available on v21 only.
- This update will automatically reboot your system
- Renew default TLS certificate for hotspot.internet-for-guests.com
v 19.0 (19070)
2021-09-28, This is a bugfix release
- WebAdmin - Online update: Add an additional Upgrade button to distinguish PatchLevel updates from major upgrades
- WebAdmin - Network: Show correct state of client-to-client protection after restoring a backup
v 19.0 (19061)
2021-05-03, This is a bugfix release
- Login-API: DataCollector inline saves entries again to DB
v 19.0 (19060)
2021-04-21, This is a security release
- This update will automatically reboot your system
- Kernel update with security fixes
v 19.0 (19054)
2021-02-09, This is a security and bugfix release
- This update will automatically reboot your system
- WebAdmin: Support additional categories in future changelogs to highlight breaking changes and security updates
- Login-API automatically redirects if there's no session (lead to empty login pages - mostly on newer iOS)
- WebAdmin: Show correct in/active state of the local users feature
- WebAdmin: Port-Forwarding page saves settings now correctly
- Fixed cases where no remote backup was created
- Security and kernel updates
v 19.0 (19039)
2020-11-18, This is a feature and bugfix release
- This update will automatically reboot your system
- End-of-life warning for old WebAdmin web interface - will be removed with next major release.
- Login-API: Allow upload of video files via editor
- WebAdmin: Add more application log messages for better traceability
- WebAdmin: Port multiple pages to the new WebAdmin design
- Security - Remove outdated TLS cipher 3DES
- Security - Central Services: Use stronger OpenVPN cipher
- WebAdmin: Remove UTF8 BOM prefixes from uploaded CSV files
- WebAdmin network tools: Active clients have not been shown
- Login-API: Label overlapped with input field in desktop mode
- Login-API: Honor allowed VLAN/Route IDs
- Login-API with Datacollector: Support translated labels
- Login-API: Support different language settings per location
- Lite Edition: Hide inaccessible menu entry "Monitoring"
- Security- and kernel updates
v 19.0 (19029)
2020-11-10, This is a hotfix release
- CAPPORT API: Captive browser does not open if a custom domain is in use (affects iOS 14 and Android 11)
v 19.0 (19027)
2020-09-29, This is a feature and bugfix release
- This update will automatically reboot your system
- Support of the new API for captive portals defined in RFC capport-architecture, API server RFC-8908, DHCP option RFC-8910
- New CAPPORT API is supported by iOS 14 and Android 11
- Login-API: Added optional popup for iOS 14 users with randomized MAC addresses
- WebAdmin: Added warning icon for randomized MACs to ticket overview
- Application Control: Added TikTok
- SMS module: Added empty prefix as third option for number prefixes
- Device detection: Updated UserAgent database
- WebAdmin Application Control: Page did not show tabs under IE 11
- WebAdmin Application Control: Closing the profile edit popup redirected to wrong tab
- WebAdmin: Activate/deactivate local users did not work
- WebAdmin local user: Wrong tab was displayed after deleting/uploading a profile
- WebAdmin: Health check for expired certificate had wrong link
- WebAdmin: Remove links from health checks the user has no permissions to see
- Local Login-API: Local user could not login if password policy is active
- Login page: "Forgot password" function did not always work
- Security- and kernel updates
v 19.0 (15873)
2020-08-25, This is a feature release
- Classroom edition: provision Application Control profiles
- Classroom edition: provision a WebAdmin user group
- Classroom edition: better naming of upload profiles
- WebAdmin: Users - allow to specify a template in the upload
- WebAdmin: Users - changed example templates and upload profiles
- WebAdmin: Templates can now be copied
v 19.0 (15842)
2020-08-17, This is a feature and bugfix release
- Classroom edition for schools and universities
- WebAdmin: Users - add a forgot password function to allow self-administration
- WebAdmin: Users - upload and download of users
- WebAdmin: Users - add user templates for easier uploads
- SMS backend: Support Twilio as international SMS gateway
- SMS: Add support for HTTP basic auth when using the "Generic HTTP" backend
- WebAdmin: Users - add table pagination to allow hundrets of users
- WebAdmin: Redirect: json decode error with default db entry
- WebAdmin: Saving login method messaging does not always work
- WebAdmin: Statistic download of planned redirect showed an error
- WebAdmin: VLAN page allowed no long descriptions
- Login-API: Autofocus does not work properly on iOS and Android
- Login-API: Switch off auto-capitalization on all input fields
- WebAdmin: Additional routes are shown in orange (inactive)
v 19.0 (15717)
2020-08-04, This update is a bugfix release.
- WebAdmin: Correct redirect setting pages
- Webadmin: Correct redirect before login settings for VLANs
- WebAdmin: Data privacy popup not working after changing a users real name
- WebAdmin: Special characters in the payment provider message (sms/email) have been removed on save
v 19.0 (15673)
2020-07-21, This update is a feature and bugfix release.
- This update will automatically reboot your system
- WebAdmin: Allow gross (brutto) ticket prices and automatically calculate net and vat prices for ticket printout
- WebAdmin: Add option to filter tickets by template in Tickets/Overview
- Speedup autologin device handling to avoid race condition with captive portal online check
- WebAdmin: Allow 3072bit key length for our WebAdmin CSR generator
- WebAdmin: General speedup of pages
- WebAdmin: Improved usability of VLAN selection for ticket templates
- WebAdmin: Improved rendering of dashboard charts
- WebAdmin: Saving the PMS config while on the old WebAdmin design did not save it for the new WebAdmin design
- WebAdmin: Special characters on the bulk ticket printout were not displayed correctly due to wrong encoding
- WebAdmin: Parts of the bulk ticket printout were missing when printing it to PDF using Firefox
- Sometimes a theme based certificate was not activated correctly
- Loginpage v19: Content of 6th login method tab was not loaded
- WebAdmin: The search for the manual did not work correctly
- Security and kernel updates
v 19.0 (15550)
2020-06-17, This is a bugfix release.
- Batch-API: Some API calls did not work if old WebAdmin was in use
- WebAdmin: Fix visual overlapping areas when showing details of custom certificates
- WebAdmin: CSR generator for custom certificates did not allow 4096bit
- WebAdmin: Correct link in top-tickets graph pointing to ticket details on new WebAdmin
v 19.0 (15520)
2020-06-02, This update is a feature and bugfix release.
- This update will automatically reboot your system
- Free to use (Walled Garden): Allow to open up ports without IP or domain
- Login-API: Add LinkedIn as social media login method
- Regularly trim SSD filesytems for an extended disk lifetime
- Batch-API: Add template ID and name in returned Tickets
- VLAN: Removed and migrated deprecated modes
- WebAdmin: Improve usablity of feature switches
- WebAdmin: New PMS configuration page (ready for additional PMS coming with v20)
- Batch-API: Proxy logs are returned without CSV delimiter
- Login-API: Wrong stylesheet was loaded on planned redirect page
- WebAdmin: Saving user rights in new WebAdmin leads to an invalid menu entry in old WebAdmin
- WebAdmin: Checkbox for planned redirect missing for free login
- WebAdmin dashoard: Application Control widget had overlapping texts
- WebAdmin: Correct not working quick links in Device Filter
- WebAdmin: Remove left over restart notification if VLANs were disabled
- WebAdmin: Autologin Devices: Fix “Delete uploaded devices” option on upload
- WebAdmin: Ticket based connection tracking logs in Tickets/Manage broken if AppCtl gets disabled
- WebAdmin: AppCtlPro: Link in statistics to ticket details not working in new WebAdmin
- WebAdmin: Missing dashboard rights for some users
- Security and kernel updates
v 19.0 (15355)
2020-05-25, This is a security update
- Renewed TLS certificate for the default domain hotspot.internet-for-guests.com
v 19.0 (15230)
2020-05-12, This update is a Hotfix release
- This update will automatically reboot your system
- Rolling back to previous proxy version in order to address issues with captive browsers and DNS
v 19.0 (15228)
2020-04-28, This update is a hotfix release
- This update will automatically reboot your system
- WebAdmin: Users cannot login on certain mainboard types
- HTTP Proxy: Security update
- WebAdmin: Password only tickets could not be created
- Ticket printout: Add missing translations
- WebAdmin: Wrong custom ticket prefix is displayed
- WebAdmin: Ticket creation does not work when logged in via external authentication
- WebAdmin: Ticket template restriction to WebAdmin user groups did not work
v 19.0 (15158)
2020-04-16, This version is a security and bugfix release.
- This update will automatically reboot your system
- Our changelog will be provided in english only from now on (so that we have more time to develop software )
- WebAdmin: Improved performance of device info statistics on dashboard
- WebAdmin: Improved network interface box in system overview
- Device infos: Improve device detection
- AppCtl: Add the word “Pro” if that version is active for easier recognition
- AppCtl: Expired module lead to inconsistent settings
- Login page 2019: Web filter message not clickable
- Central Services: Missing rights when logging into old WebAdmin
- Password login: Special characters have been removed from password
- Login-API: Guestline plugin not working (missing SOAP extension)
- WebAdmin: Disabling password login in the login order leads to an error page
- Free Login: Port filter group selection and full/lite license check broken
- WebAdmin: Correct shortcut link to password only activation
- WebAdmin: Correct notification link to privacy toolkit page
- Port Filter: Correct generated port filter rules with port ranges
- Login page: Company name has changed after a reboot only
- Security- and kernel updates
v 19.0 (14948)
2020-02-20, This version is a feature and bugfix release.
- This update will automatically reboot your system
- WebAdmin: Show notifications when a network connection is lost or reestablished
- WebAdmin: Introduce new main menu - Monitoring
- Device statistics: Enhance device type/OS matching
- Batch Access API: Create tickets with a custom description
- Batch Access API: Print a newly created ticket on a ticketprinter
- WebAdmin: Reorder sub-menus according to their importance
- WebAdmin: Extract SNMP settings to a separate page
- WebAdmin: Add cross-link from DHCP ranges tab to the Surf-LAN IP settings
- WebAdmin: Use the custom userlimit for the hardware requirement check
- WebAdmin: Fix position of the status bar to the top of scrolled pages
- WebAdmin: Change the system/company name via an edit icon in page header
- WebAdmin: Revoking multi device tickets allows to revoke all child tickets too
- WebAdmin: Move PMS VIP groups from ticket templates to PMS settings
- WebAdmin: Avoid caching in background image selection popup
- WebAdmin: Corrected link in system health warning pointing to the network settings
- WebAdmin: Additional DHCP ranges have not been displayed
- WebAdmin: Device statistics did not show any icons when the browser tab was inactive
- WebAdmin: Valid login hours for free login are not displayed correctly after saving
- WebAdmin: Renew maintenance popup was not working
- WebAdmin: Do not allow to restore a backup while an update is running
- Login page: Email and SMS have been labled as social login sometimes
- Login page 2019: When set to custom mode, login method icons have been missing
- DNS Filter: Correct memory limit check
- Login-API: Trying to confirm an outdated email ticket lead to a redirect to the default login page
- Online manual: Fixed search
- Security- and kernel updates
v 19.0 (14873)
2020-02-11, This is a hotfix release
- A recent Google Chrome update (version 80) caused a faulty layout of the Metro loginpage design.
v 19.0 (14843)
2020-01-28, This version is a bugfix release.
- WebAdmin system overview: Show MAC addresses in NIC info box
- WebAdmin: Show a notification to upgrade to the new login page style
- Login page: Filtered websites have not been displayed
- Login page: Improve shadow in footer text information in mobile view
- CentralService: Login via Single-Sign-On did not always work
- WebAdmin: Missing column for detected app/protocol in live connection tracking table
- WebAdmin: Outdated quicklinks could lead to white page
- WebAdmin: Dropdown of PMS VIP settings showed wrong value
- WebAdmin: DNS redirect and bypass moved to own page
- WebAdmin: Wrap long usernames in ticket overview table
- WebAdmin ticket templates: Template was reloaded when ticket type was changed
- WebAdmin Application Control Pro: Small user interface fixes
- WebAdmin: Filter in ticket overview was not always remembered
- WebAdmin: Included missing font in monitoring popup
- WebAdmin: Removed option to redirect offline HTTPS traffic
v 19.0 (14726)
2019-12-18, This version is a bugfix and feature release.
- This update will automatically reboot your system
- WebAdmin top menu bar: Color the system health icon to indicate warnings or errors
- WebAdmin top menu bar: Differentiate the icons for “Manual” and “System overview’
- WebAdmin menu structure: Move “Support info” page to “System overview” and use an info icon
- WebAdmin menu structure: Extract “Data Collector” from “Ticket Defaults” as own menu entry
- Email Login: Add confirmation link to default message
- Translations: Update italian texts
- System monitoring CPU chart: Hide lables if there are too many CPU cores
- System health: Show warning if old Hyper-V legacy VM adapters are used
- System health: Warn if ticket printer uses text-mode
- Batch-API: Extend command “create ticket” to set ticket online immediately
- Application Control: Fixed file permission leading to missing rules
- Application Control: Custom applications don’t show the type (tcp, udp etc.) in the overview table
- WebAdmin: Upload of background image did not work
- WebAdmin: Allow to change language no matter what permissions this user has
- WebAdmin device infos: Missing information with some logon methods
- WebAdmin Privacy Toolkit: Fixed links in checklist
- WebAdmin CSS editor: Allow to edit header and footer
- WebAdmin: Fix escaping issues in Javascript with French texts
- WebAdmin: Saving a ticket template manipulated the price
- WebAdmin: Connection tracking popup was not working
- WebAdmin: When de/activating the LoginAPI the assigned ticket template gets reset
- Login page 2019: Fixed SMS phone number input field of payment plugin
- Free to use service links: Add links needed for Google 2FA authentication and WireCard payment gateway
- Login-API: Changing the Surf-LAN certificate did not update the local Login-API URL
- Login-API WireCard: Add missing image and config file
- Security and kernel updates
v 19.0
2019-11-26, This is a new major release. Manual update is available since Jan 15th. The automatic online update will be available within a few weeks later.
- This update will automatically reboot your system
- New WebAdmin UI with a collapsible side menu
- More intuitive menu/sub-menu structure
- WebAdmin: New icon set
- New SilverSurfer editon: Adapted version for healthcare institutions
- WebAdmin: Introduce new device information charts for device category (smartphone, tablet, desktop) and operating system
- WebAdmin: Allow a separate Office-/Management-LAN domain with its own TLS certificate
- WebAdmin: Include online manual in WebAdmin
- WebAdmin: New page with support information
- Login-API: Add new payment gateway WireCard for seamless credit card payments
- Login-API: Add plugin for apaleo cloud PMS
- Login-API: Add plugin DataCollector-Inline which allows the injection of input fields and checkboxes into the login form
- WebAdmin Security: Lock login for 10 minutes after 5 invalid login tries
- WebAdmin: Separate configuration pages per login method (more is coming!)
- WebAdmin: Allow ticket create as startpage for WebAdmin groups
- WebAdmin dashboard: Hide tiles with system information for normal users
- WebAdmin notifications: Show only one errors per day if the ticket printer is not reachable to avoid spamming
- System health: Show warnings if the minimum hardware requirements are not met
- System health: Warn if license server could not be reached
- Network settings: Increased default IP range (4000 IPs)
- Login-API: Face lift of the login page design
- Login-API: Added DataCollector and Datacollector-Inline plugin
- Login-API: Upgrade to PHP 7.2
- Login-API: Add collected user data of Social Login (name, email) to reporting
- Login-API: Allow dots in usernames
- Default login page: New design available, optimized for mobile devices
- Routing mode: Allow smaller network size (down to /28) for the Surf-LAN
- Security: Add haveged daemon for more entropy
- Removed deprecated status popup
- Hardware support: Allow Intel NICs with i40e driver to register
- Hardware support: Support to install on M.2 NVME SSD disks
- DataCollector: Use normal Datacollector templates also for SMS/Email/Email-Ticket-Request
- Batch-API: Retrieving the application log only returned the last 24 hours
- Batch-API: Download of DataCollector user data did not work
- Login page: Avoid double clicks
- FTP Backup: Increased timeout to work with slow servers/connections
- FTP service: Asynchronous state between backend and WebAdmin fixed
- Application Control: Inconsistent enabled/disabled state fixed
- System rules for logservice filter are overwritten from backups
Version 18.0
v 18.0 (13750)
2020-02-11, This is a hotfix release
- A recent Google Chrome update (version 80) caused a faulty layout of the Metro loginpage design.
v 18.0 (13710)
2019-10-14, This version is a bugfix release.
- LoginAPI: Status plugin showed no data with disabled popup
v 18.0 (13706)
2019-08-22, This version is a bugfix release.
- Metro login page: fixed CSS problems on Chrome/Android for small screen sizes
v 18.0 (13685)
2019-08-09, This version is a bugfix release.
- Webadmin: Fix broken FQDN setting
v 18.0 (13632)
2019-07-24, This version is a feature and bugfix release.
- This update will automatically reboot your system
- Planned redirect: provide statistics as CSV download
- Planned redirect: Add repeat interval
- Free login: Add a bypass web filter option
- Add Remember me support for logon methods: Email activation link, Social Login, Online Payment (PayPal)
- Update TLS root CAs
- Update DNS root server list
- Webadmin: Highlight preferred functions mark deprecated ones
- Email login: Reporting/Messaging - show whether email address was confirmed or not
- Reporting/Connection Tracking: showed an error if no Application Control was enabled
- DNS filter: Check for needed RAM aligned with Basic Server
- WebAdmin: Do not allow special characters in hostname and domain name
- Application log: Invalid characters or dates lead to visual errors
- Data Collector: Changing a checkbox field to input field lead to problems
- LoginAPI/Guestline: No recovery from a corrupt WSDL file
- Webadmin: Insufficient rights if only tickets/manage is enabled
- Remember Me: Error during the login with a changed IP address
- Security and kernel updates
v 18.0 (13560)
2019-06-24, This is a hotfix release (TCP SACK panic)
- This update will automatically reboot your system
- Security and kernel update
v 18.0 (13555)
2019-05-20, This is a bugfix release
- LoginAPI: Incorrect interpretation of location based setups
v 18.0 (13525)
2019-05-06, This version is a feature and bugfix release.
- This update will automatically reboot your system
- ReviewPro integration brings in-stay guest feedback and allows hotels to solve issues while the guest is still there
- LoginAPI: Add indonesian payment gateways Doku and Midtrans
- Proxy: IE/Edge browsers on Windows do not show logonpage if proxy settings are used
- DNS filter: Bypassing filter does not work for unencrypted HTTP
- Webadmin: Improved language selection if cookie is missing
- Webadmin: System health shows warning of old theme also if LoginAPI is active
- WebAdmin Tickets/Manage: Fix link to ticket details when Ext-Auth runs in lowercase-mode
- Webadmin Client logon/Design: Theme part is visible although LoginAPI is active
- LoginAPI Guestline plugin: Improved guest data checking
- LoginAPI: Downscale large logos to header width
- LoginAPI: In some error cases no redirect to the LoginAPI logonpage was made
- LoginAPI Social plugin: Reduced permissions for Google OAuth
- Free to use links: HTTPS URLs do not get cropped anymore when visible for guests
- AppConPRO: Profile assignment does not work for bulk ticket uploads
- DNS filter: Showing the last blocked entries causes sporadic errors
- Security and kernel updates
v 18.0 (13380)
2019-04-02, This version is a bugfix release.
- AppConPRO: Improved performance and stability
- WebAdmin Dashboard: user gauge shows wrong value
- Login-API Guestline PMS: Further alignment to the Guestline interface
- Privacy Toolkit: Check of real names of users fails with special characters
- Translations: Corrected “Departure Date” in Chinese
v 18.0 (13344)
2019-03-15, This version is a feature release.
- This update will automatically reboot your system
- Add new Application Control Pro module
- AppConPRO: Support for multiple profiles per ticket template, VLAN, autologon device
- AppConPRO: Detailed statistics of application usage over 14 days
- AppConPRO: Support for custom applications matched by domain, IP and ports
- AppConPRO: Up to 1000 custom bandwidth groups
- Dashboard: New chart for Application Control (Basic and PRO) with top applications
- WebAdmin: Add translations for Bahasa Indonesia
- LoginAPI: Add interface to Guestline cloud PMS
- Application Control: Renewed profile editor with search function
- Application Control: Update of applications and protocols
- Dashboard: Add new charts for current users and bandwidth usage
- Dashboard: Auto refresh of monitoring plugins
- LoginAPI: Remove Google+ from SocialShare plugin (End of life)
- Landingpage: Exchange Google+ icon with Google icon
- Remote backup: Add option to include/exclude Application Control statistics
- WebAdmin: Updated translations for German, Italian and French
- Email logon: Redirect after logon did not work when using the activation link
- Ticket print: Mandatory fields led to duplicate template description
- Google OAuth: Remove needed permission for contact list
- Many small bugfixes
- Security and kernel updates
v 18.0 (12941)
2018-12-10, This version is a security and bugfix release.
- This update will automatically reboot your system
- NTP: Leapseconds update
- Free to use pages: entries for udp and tcp without port-number have been blocked
- Connection tracking: correct label for open connections
- Tools: fix traceroute
- Application control: fix state check of module
- Security and kernel updates
v 18.0
2018-11-26, This version is a feature and bugfix release. The automatic online update will be available with 04th December 2018.
- This update will automatically reboot your system
- Application Control: New backend with higher throughput and enhanced detection
- Application Control: Statistics shows top usage grouped by application/protocol
- Bandwidth management: Better bandwidth sharing with thin uplinks
- Free to use: Optional subtraction from ticket volume
- Login-API: Add hook for a custom redirect service
- Webadmin: Cross navigation buttons got a new style for easier recognition
- Webadmin: Separate logon methods in tabs
- Dashboard: Show system uptime
- SMS: Option to change prefix for generic/HTTP backend
Version 17.2
v 17.2 (12582)
2018-08-14, This version is a feature and bugfix release.
- This update will automatically reboot your system
- Remember-Me: Add support for Free Logon
- Data privacy: Allow to anonymize single tickets
- Data collector: Add checkbox for a GDPR compliant usage
- Batch-API: Further addons for ticket statistics
- Update terms of use texts for german and english
- Logon page: Update Indonesian translations
- Login-API: Add new mapping type for building selection
- DNS WebFilter: Bypass webfilter option was not visible
- PMS: Needed a re-registration after uploading a backup restore
- Some systems had multiple weekly restarts after the migration to 17.2
- Backup restore overwrites TLS certificate
- Logon page: Replace radio buttons with generic ones
- Login-API: FilerNotifyPlugin caused a blank page if no session was present
- Monitoring dashboard graph top tickets: Average and current values have been exchanged
- Backup: Allow backslashes in FTP path
- Security and kernel updates
v 17.2 (12364)
2018-05-15, This version is a feature and bugfix release.
- This update will automatically reboot your system
- Certificate: TLS certificate for “hotspot.internet-for-guests.com” renewed
- Batch-API: New call to retrieve the GDPR Data Processing Register added
- Batch-API: Allow use of custom username + password for ticket creation
- WebAdmin: New monitoring dashboard plugin for used/free DHCP leases
- WebAdmin: New monitoring dashboard plugin for DNS requests
- WebAdmin: Moved input field for Online Registration to the top for better visibility
- WebAdmin: Added quicklinks to tickets for the Reporting/Application table
- Login-API: Enhance maximum allowed upload size of Login-API profiles
- Login-API: Add $LANG placeholder to the redirect URL
- Active Directory & LDAP: Allow more special characters for username & password
- Logonpage: Added translations for indonesian (Bahasa Indonesia)
- Apple Devices: Fixed multiple problems that appeared after the latest iOS update (iOS 11.3)
v 17.2 (12281)
2018-04-20, This version is a hotfix release.
- This update will automatically reboot your system
- Apple devices: status popup overlays the logon page on the latest iOS version (11.3)
- Security and kernel updates
v 17.2 (12221)
2018-04-06, This version is a feature and bugfix release.
- This update will automatically reboot your system
- Adaptions for the EU General Data Protection Regulation (GDPR)
- New Privacy Toolkit module to support GDPR compliant administration
- Privacy Toolkit: Check of privacy related configuration
- Privacy Toolkit: Generate a customized data processing register
- Privacy Toolkit: Text templates of important GDPR documents
- Privacy Toolkit: Confidentiality agreement for WebAdmin users
- Allow logging of access to privacy related information
- Logonpage: Ship privacy policy texts in english, german and italian
- Login-API: Add support for a privacy policy
- Data privacy: improve the anonymization and deletion of logs and user data
- Logonpage: Automatic migration of classic to metro themes (if not edited)
- CSS Editor: Allow to customize more parts of the logonpage
- WebAdmin: Add tabs for a better overview in client logon/languages
- WebAdmin: Fix maximum bandwith for 10GB interfaces
- Login-API: Show correct login methods after changing the configuration
- PMS (ASAj XML): Show caption field settings
- Metro landingpage: Added translation for the free logon button
- WebAdmin Tickets/Manage: Room number/guest name displayed incorrectely for VIP templates
- WebAdmin: Trim spaces in Google+ login input fields
- WebAdmin: SMTP port was displayed wrong if TLS is active
- WebAdmin: New WebAdmin users could not be deleted
- WebAdmin: Bulk ticket upload used incorrect bandwidth values
- WebAdmin: Log IP/MAC when changing autologon device settings
- WebAdmin: Update input field on year/month change of a date/timepicker
- WebAdmin: Web filter service was shown as inactive if only DNS filter was activated
- WebAdmin: Central Services button was incorrectely labeled after installation
- Security- and kernel updates
v 17.2 (11900)
2018-01-29, This version is a feature and bugfix release.
- This update will automatically reboot your system
- New DNS based web-filter
- Web-filter: Extended lists and categories
- Web-filter: Search for blacklist entries
- Web-filter: Upload custom domain list to DNS blacklist/whitelist
- Landingpage: Show filtered domains for metro landingpages
- Login-API: Add plugin that shows filtered domains
- WebAdmin: Improved bandwidth usage indicators under ticket/manage/online
- WebAdmin: Updated german translations
- WebAdmin: Improve speed and filters of connection tracking table
- Radius: Fix mapping of radius attributes
- Login-API: No landingpage redirect if no redirect URL was set for a VLAN
- Login-API (external mode): SMS plugin - fix recovering form a failed logon
- Login-API: Load overlay.css after all plugin stylesheets
- SMS Module: Adapted to the changed data fields of the A1 Telekom backend
- Backup: Shorter timeout if config is invalid (server not reachable)
- WebAdmin: Correct used bandwidth under ticket details
- WebAdmin: Fix table background color after showing details
- Webadmin: Fix link to monitoring popup under ticket/manage
- Notifications: Count of available updates was sometimes wrong
- Monitoring: Fix check for “foreing DHCP server’
- Notifications: Fix online update message
- Routing: Fix network overlap check
- Periodic redirect: Configuration and backend not always in sync
- Client design: Remove preview button if custom webserver is not active
- Security- and kernel updates containing patches for Meltdown/Spectre
v 17.2 (11800)
2018-11-01, This version is a hotfix release.
- This update will automatically reboot your system
- Security updates containing kernel-patches for Meltdown/Spectre
v 17.2 (11770)
2017-12-18, This version is a bugfix release.
- Reenable NAT helper support for rarely used protocols like TFTP
- Security updates
v 17.2 (11711)
2017-11-16, This version is a bugfix release.
- This update will automatically reboot your system
- Login-API: Fixed issues with VLAN roaming
- Landingpage: Fixed partly wrong ticket validity
- Security and kernel updates
v 17.2
2017-10-27, This version is a feature and bugfix release. The automatic online update to version 17.2 will be available after May 29th.
- This update will automatically reboot your system
- Reworked WebAdmin look and feel
- New dashboard with quicklinks and further system information
- Added system health notifications
- New Frozentux LTS Linux base system
- Extended checks for system services
- Local users: Simplified activation
- Improved throughput of traffic shaping
- Improved throughput of accounting
- Login-API: Added redirect before logon
- Login-API: reworked input validation
- Login-API: add refresh link for client status
- Login-API: added translations for client side validation
- Login-API: Use redirect URL from WebAdmin settings
- Support for hardware without realtime clock
- Routing: Fixed a problem with overlapping routes
- Fix custom domain handling with hard proxy settings
- SMS: fix logon link
- Email & SMS: allow to remove text placeholders
- Free to Use descriptions now allow special characters
- Fixed a problem with empty free logon button text (Metro style)
- Fixed compatibility issues with some old browsers
- Added missing input description text (Metro style)
- Ticketprinter: Ticketselection timeout fixed for TM-T20 II
- Show correct status values of child tickets
- And other small fixes
- Security and kernel updates
Version 17.0
v 17.0 (12055)
2018-05-15, This update includes a renewed TLS certificate for “hotspot.internet-for-guests.com”.
- Certificate: TLS certificate for “hotspot.internet-for-guests.com” renewed
v 17.0 (11510)
2018-01-29, This version is a bugfix release.
- This update will automatically reboot your system
- Security- and kernel updates containing patches for Meltdown/Spectre
v 17.0 (11500)
2018-11-01, This version is a hotfix release
- This update will automatically reboot your system
- Security updates containing kernel-patches for Meltdown/Spectre
v 17.0 (11460)
2017-11-15, This version is a bugfix release.
- This update will automatically reboot your system
- Login-API: Fixed issues with VLAN roaming
- Landingpage: Fixed partly wrong ticket validity
- Security and kernel updates
v 17.0 (11450)
2017-10-09, This version is a bugfix release.
- Ticketprinter: Ticketselection timeout fixed for TM-T20 II
v 17.0 (11400)
2017-08-29, This version is a bugfix release.
- This update will automatically reboot your system
- LoginAPI: update from V8to V17.0 did not extract the current version of hybridauth needed by SocialPlugin
- Security and kernel updates
v 17.0 (11393)
2017-07-12, This version is a feature and bugfix release.
- This update will automatically reboot your system
- Batch-API: Reboot or shutdown a system (to be used with UPS)
- Webadmin: Add custom menu for partners
- Free logon: Repeat interval also fixed in days, weeks, months
- PMS: Added extended HiMed NG type
- Fix switching to custom landingpage mode (FTP)
- Security and kernel updates
v 17.0 (11300)
2017-05-19, This version is a bugfix release.
- This update will automatically reboot your system
- CSS Editor: Allow to select more parts of the page
- Login-API Editor: Allow to upload font files
- Login-API: Show an error if PMS is not reachable
- WebAdmin: Fixed ticket creation with IE11 and older
- Landingpage: Improved header spacing and logo scaling
- Landingpage: Load overlay CSS after the RTL (right-to-left) file
- WebAdmin: Fixed adding IPv6 routes
- Fix error when using the norwegian or turkish template
- Login-API: Fix redirect after roaming
v 17.0 (11236)
2017-04-19, This version is a bugfix release.
- This update will automatically reboot your system
- Background-image chooser: do not reload all preview images
- Manage tickets: Added paging for the table ‘Online’
- Webadmin: Manually created tickets had wrong validity dates
- SMTP Proxy: Fix feedback after sending a test email
- Webadmin: Fix creating tickets right after login
v 17.0 (11187)
2017-04-12, This version is a bugfix release.
- This update will automatically reboot your system
- Landingpage: fix some visual issues
- Free-for-all: support URLs with spaces
- Lite version: landingpage themes could not be changed
v 17.0
2017-04-03, This version is a feature and bugfix release. A manual online update to version 17.0 will be available after May 16th - on request starting with May 9th. The automatic online update to version 17.0 is delayed until end of May.
- This update will automatically reboot your system
- IAC-BOX version number contains from now on the year of the release (2017 -> v17.x)
- Landingpage: New themes in different colors
- Landingpage: Fast and easy exchange of background images
- Landingpage: Single page for all devices
- Setup: UEFI support
- Boot: Rescue boot option added incl. file system check
- Batch-API: Ticket-templates can be fetched
- Batch-API: Tickets can be created
- Batch-API: Auto-logon devices can be added/deleted
- Login-API: Preview of local Login-API landingpage
- Login-API: Added support for the SMS plugin
- Login-API: Added social share buttons (facebook, google, twitter)
- Central-Service: Single-Sign-On (SSO) from partner portal
- Backup: Secure backups via FTPS (FTP over TLS)
- Support thousands of concurrent devices (depending on used features)
- Support of 10Gb interfaces
- WebAdmin: Improved bandwidth settings
- Webadmin: Improved tables for thousands of entries
- WebAdmin: Ticket details show now the backend and used ticket-template
- WebAdmin: The dashboard shows the maximum network bandwidth usage
- WebAdmin: Speedup the upload of lists with autologon devices
- Landingpage: Updated terms-of-use text for english and german
- Login-API: SDK 17.0 preinstalled
- Login-API: Overrides within the SDK configs (bandwidth, download-limits, ...)
- Login-API: CSS classes can get overwritten in an overlay file
- Login-API: Improved location-based settings
- Login-API: Free plugin supports logon methods (take-online and free)
- Login-API: Warn if the client browser does not support cookies
- Ticketprinter: Add template name and description as placeholder
- Multi-Device-Tickets: Allow more than 999 max. users (local user)
- Webfilter: Serve error pages now via TLS
- RememberMe: Timeout can be now up to 180 days
- New default: Captive WISPr support for Apple devices is now turned on
- New default: Idle timeout 120 minutes
- Documentation: Reworked HowTos are available online and as PDF
- Email: also record custom fields in the data-collector
- Login-API: Fix redirect to the landingpage
- Login-API: Show only configured languages
- Login-API: Fix routing of requests in external mode
- Avoid a lockout if a wrong port-forwarding was added
- Printout: Allow longer ticket description texts
- Google+: User data was not saved in the data-collector
- And many other small fixes
- Security and kernel updates
Version 8.0
v 8.0 (11178)
2017-04-04, This version is a bugfix release.
- Correct update notification
v 8.0 (11164)
2017-03-30, This version is a hotfix release for the facebook logon with a local Login-API. A reboot is only made if the local Login-API is active.
- This update will automatically reboot your system
- Facebook logon has been adapted to the new API version.
v 8.0 (11162)
2017-03-28, This version is a hotfix release for the facebook logon.
- Facebook logon has been adapted to the new API version.
v 8.0 (10760)
2017-01-11, This version is a bugfix release.
- This update will automatically reboot your system
- Security and kernel updates
v 8.0 (10684)
2016-11-28, This version is a feature and bugfix release.
- This update will automatically reboot your system
- Speedup of port-filter rules
- Port-filter: UDP-only rules did not work
- Free to use: not all links have been shown after upgrade to v8
- Security and kernel updates
v 8.0 (10550)
2016-10-31, This version is a hotfix release.
- This update will automatically reboot your system
- Timezones have been updated
- Bypassing application control did not always work
- Login-API: not all location based settings have been used
- Security and kernel updates
v 8.0 (10421)
2016-09-27, This version is a feature release.
- This update will automatically reboot your system
- Improved performance under heavy load
v 8.0 (10336)
2016-09-14, This version is a feature and bugfix release.
- This update will automatically reboot your system
- Login-API: new Email plugin
- Remember-Me: Extend timespan to max. 180 days
- OpenVPN TLS-auth: add optional key-direction
- Login-API: add optional security HTTP-headers
- DNS: Update root-servers
- Automatic online update could not get deactivated
- Remember-Me: fix problem with roaming of single-device tickets
- Ticket print: First comment line did not get printed
- SMS generic via email: changed MIME type to text/plain
- ’Free to use’ service crashed in certain situations
- Login-API: avoid problems with cached config settings after a re-registration
- Ticket settings: default bandwidth could be too high
- Security and kernel updates
v 8.0 (10242)
2016-08-09, This version is a feature and bugfix release.
- This update will automatically reboot your system
- Login API: visual improvements
- Custom logon page: improved code editor usability
- Dashboard: added chart for custom webserver hits
- Periodic redirect: add placeholders for IP and MAC in redirect URL
- Login API: added placeholders for client-settings (IP, MAC, VLAN, ...) in the redirect URL
- Email Ticket Request: restrict ticket templates to their VLAN settings
- SMS (generic via email): added a number prefix selection (+ or 00)
- Allow longer top-level-domains in email validation
- Autologon devices: session limit “unlimited” did not work
- OpenVPN certificate upload failed silently for files larger than 5kb
- Custom webserver did not start with theme based custom SSL certificates
- Custom webserver was not reachable with automatic proxy detection enabled
- Custom webserver log files have not been accessible via FTP after re-enabling it
- Local Login API: several small fixes
- Some popups on the admin interface did not open under OS-X
- Kernel and security updates
v 8.0 (10168)
2016-07-19, This version is a security- and bug-fix release.
- This update will automatically reboot your system
- Some files have not been included in the backup
- Login API: invalid default setting possible
- “Free to use” service did not load online payment links
- Sub entries of “Free to use” links could not be de/activated
- Security and kernel updates
v 8.0
2016-07-15, This version is a feature and bugfix release. A manual online update from version 7.0 to 8.0 will be available soon. The automatic online update from version 7.0 to 8.0 is delayed till 2016.10.01
- This update will automatically reboot your system
- Sandboxed local webserver (runs a local Login API - see our HOWTO document)
- Code editor to change the local Login API code directly in the web interface
- Periodic redirect to external pages (HTTP only)
- ’Free to use” service is able to dynamically resolve dependencies of webpages
- 802.1x client support on all interfaces to authenticate at a switch
- OpenVPN supports TLS authentication key files
- Global browser useragent whitelist to filter unwanted requests
- Support for routing between Management-LAN and Surf-LAN
- Login API v2.0: Complete rework of the SDK (useable local and external)
- Login API: Social plugin for Facebook, Google, Twitter
- Login API: Payment plugin for PayPal, Sofortüberweisung, ...
- Login API: Support for “Free logon’
- Login API: Additional plugins: Client status, show advertisements
- Login API: Forward content filter and proxy error messages to the landing page for customization
- Login API: Automatically add external URL to “Free to use” links
- Batch Access API improvements: Execute online update, get logins/logoffs, search by MAC, ...
- Social: Support newer Facebook API version
- Support more 10GB network cards (needs a reinstall)
- “Remember Me” did support only 14 days instead of 32
- DNS proxy returned incorrect answer for non existing .com domains
- Allow download of connection tracking data after a ticket was revoked
- Possible invalid network settings (equal Surf-LAN gateway and protected DHCP range)
- Fix SNMP firewall settings
- Security and kernel updates