MikroTik Changelog Tracker
← Back to search All components

Component: ike1

58 changelog entries across 32 version(s)

Activity over time (changelog entries per month)

7.20.1 Stable 2025-Oct-10 (3 months ago)
  • fixed an issue where policies could be released too early before re-acquisition;
7.16 Stable 2024-Sep-20 (1 year ago)
  • removed unsupported NAT-D drafts with invalid payload numbers;
7.12 Stable 2023-Nov-09 (2 years ago)
  • fixed invalid key length on phase1 negotiation;
  • log an error when non-RSA keys are being used;
7.11 Stable 2023-Aug-15 (2 years ago)
  • fixed Phase 1 when using aggressive exchange mode (introduced in v7.10);
7.7 Stable 2023-Jan-12 (3 years ago)
  • disallow "remote-id" setting for identity;
  • fixed XAuth responder trying to recreate phase 1;
  • improved expired IPsec-SA processing;
6.48 Stable 2020-Dec-22 (5 years ago)
  • fixed "my-id=address" parameter usage together with certificate authentication;
  • fixed 'rsa-signature-hybrid' authentication method;
  • fixed memory leak on multiple CR payloads;
  • fixed policy update with and without mode configuration;
  • rekey phase 1 as responder for Windows initiators;
6.47.8 Stable 2020-Nov-25 (5 years ago)
  • allow using "my-id" parameter with XAuth;
6.47.6 Stable 2020-Oct-21 (5 years ago)
  • allow using "my-id" parameter with XAuth;
6.46.7 Long-term 2020-Sep-07 (5 years ago)
  • improved stability when performing policy lookup on non-existant peer;
6.47 Stable 2020-Jun-02 (5 years ago)
  • added error message when specifying "my-id" for XAuth identity;
  • added support for "UNITY_DEF_DOMAIN" and "UNITY_SPLITDNS_NAME" payload attributes;
  • do not try to keep phase 2 when purging phase 1;
  • improved policy lookup with specific protocol;
  • improved stability when performing policy lookup on non-existant peer;
6.45.9 Long-term 2020-Apr-30 (5 years ago)
  • rekey phase 1 rekeying as responder for Windows initiators;
6.46.5 Stable 2020-Apr-07 (5 years ago)
  • rekey phase 1 rekeying as responder for Windows initiators;
6.46 Stable 2019-Dec-02 (6 years ago)
  • fixed minor spelling mistake in logs;
6.45.1 Stable 2019-Jun-27 (6 years ago)
  • adjusted debug packet logging topics;
6.43.15 Long-term 2019-May-10 (6 years ago)
  • improved stability for transport mode policies on initiator side;
6.44.3 Stable 2019-Apr-23 (6 years ago)
  • improved stability for transport mode policies on initiator side;
6.44 Stable 2019-Feb-25 (6 years ago)
  • do not allow using RSA-key and RSA-signature authentication methods simultaneously on single peer;
  • fixed memory leak;
6.43 Stable 2018-Sep-06 (7 years ago)
  • added unsafe configuration warning for main mode with pre-shared-key authentication;
  • purge both SAs when timer expires;
  • zero out reserved bytes in NAT-OA payload;
6.42 Stable 2018-Apr-13 (7 years ago)
  • display error message when peer requests "mode-config" when it is not configured;
  • do not accept "mode-config" reply more than once;
  • fixed wildcard policy lookup on responder;
6.40.6 Long-term 2018-Feb-20 (7 years ago)
  • fixed crash on XAUTH if user does not exist;
  • fixed memory corruption when IPv6 is used;
  • improved stability on phase1 rekeying;
6.41.1 Stable 2018-Jan-30 (8 years ago)
  • fixed "aes-ctr" and "aes-gcm" encryption algorithms (introduced v6.41);
6.41 Stable 2017-Dec-22 (8 years ago)
  • DPD retry interval set to 5 seconds;
  • disallow peer creation using base mode;
  • fixed crash on xauth if user does not exist;
  • fixed memory corruption when IPv6 is used;
  • improved stability on phase1 rekeying;
  • release mismatched PH2 peer IDs;
  • use /32 netmask if none provided by mode config;
6.40.5 Stable 2017-Oct-31 (8 years ago)
  • fixed crash after downgrade if DH groups 19,20,21 were used for phase1;
  • fixed RSA authentication for Windows clients behind NAT;
6.39.3 Long-term 2017-Oct-12 (8 years ago)
  • fixed initiator ID comparison to NAT-OA;
6.40.4 Stable 2017-Oct-02 (8 years ago)
  • remove PH1 and PH2 when "mode-config" exchange fails;
6.40.3 Stable 2017-Sep-01 (8 years ago)
  • fixed initiator ID comparison to NAT-OA;
6.38.7 Long-term 2017-Jun-20 (8 years ago)
  • fixed crash on xauth message;
6.39.2 Stable 2017-Jun-01 (8 years ago)
  • fixed crash on xauth message;
  • removed xauth login length limitation;
6.39 Stable 2017-Apr-27 (8 years ago)
  • fixed ph2 ID logging;
6.38.4 Stable 2017-Mar-08 (8 years ago)
  • fixed “xauth” Radius login;
6.38.3 Stable 2017-Feb-07 (8 years ago)
  • fixed responder xauth trailing null;
6.38.1 Stable 2017-Jan-13 (9 years ago)
  • fixed ph1 rekey in setups with mode-cfg;