MikroTik Changelog Tracker
← Back to search All components

Component: ovpn

103 changelog entries across 45 version(s)

Activity over time (changelog entries per month)

7.21 Stable 2026-Jan-12 (3 weeks ago)
  • fixed OVPN server handling on reboot (introduced in v7.20);
  • improved system stability when using cipher=blowfish128;
7.20.7 Long-term 2026-Jan-08 (3 weeks ago)
  • fixed OVPN server handling on reboot (introduced in v7.20);
  • improved system stability when using cipher=blowfish128;
7.20 Stable 2025-Sep-29 (4 months ago)
  • added support for sha384 hmac;
  • improved tunnel setup speeds in configurations with large ammount of active OVPN clients;
7.19 Stable 2025-May-22 (8 months ago)
  • properly match GCM hardware acceleration capabilities (introduced in v7.17);
7.18.1 Stable 2025-Feb-28 (11 months ago)
  • disable hardware accelerator for GCM on MMIPS CPUs (introduced in v7.18);
7.18 Stable 2025-Feb-24 (11 months ago)
  • added requirement for server name when exporting configuration;
  • disable hardware accelerator for GCM on Alpine CPUs (introduced in v7.17);
7.17.1 Stable 2025-Jan-30 (1 year ago)
  • added requirement for server name when exporting configuration;
7.17 Stable 2025-Jan-16 (1 year ago)
  • added VRF support to OVPN server (server menu now supports multiple entries and previous server configuration is automatically imported);
  • improved system stability;
7.16 Stable 2024-Sep-20 (1 year ago)
  • improved system stability;
7.15 Stable 2024-May-29 (1 year ago)
  • fixed import ovpn config when remote port is missing;
  • fixed minor typo in error message;
7.14 Stable 2024-Feb-29 (1 year ago)
  • added support for pushing routes;
  • improved "push-routes" option handling when large amount of routes is specified;
  • improved key-renegotiation process;
  • improved OVPN configuration file import process;
  • improved system stability when using HW encryption on ARM64 devices (introduced in v7.13);
  • limit the maximum length for "push-routes" up to 1400 characters;
7.13.4 Stable 2024-Feb-07 (1 year ago)
  • improved system stability when using HW encryption on ARM64 devices (introduced in v7.13);
7.13 Stable 2023-Dec-14 (2 years ago)
  • improved memory allocation during key-renegotiation;
  • removed "ping-timer-rem" option from client config file;
7.12 Stable 2023-Nov-09 (2 years ago)
  • added "tls-auth" option support for imported .ovpn profiles;
  • improved system stability;
7.11 Stable 2023-Aug-15 (2 years ago)
  • do not try to use the "bridge" setting from PPP/Profile, if the OVPN server is used in IP mode (introduced in v7.10);
  • fixed OVPN server peer-id negotiation;
  • fixed session-timeout when using UDP mode;
  • improved key renegotiation process;
  • include "connect-retry 1" and "reneg-sec" parameters into the OVPN configuration export file;
  • properly close OVPN session on the server when client gets disconnected;
7.10.1 Stable 2023-Jun-27 (2 years ago)
  • fixed OVPN server peer-id negotiation;
7.10 Stable 2023-Jun-15 (2 years ago)
  • added initial support for V2 data transfer protocol;
  • improved system stability;
7.9 Stable 2023-May-02 (2 years ago)
  • added support for OVPN server configuration export and client configuration import from .ovpn file;
  • improved system stability for Tile devices;
7.8 Stable 2023-Feb-24 (2 years ago)
  • added AES-GCM and multicore encryption support;
  • improved server stability;
  • improved TLS-related error logging;
7.7 Stable 2023-Jan-12 (3 years ago)
  • added "CBC" postfix to AES cipher names;
  • added "route-nopull" option for client side;
  • added hardware acceleration support for IPQ-6010;
  • added support for IPv6 tunneling;
  • fixed "Called-Station-Id" usage in RADIUS requests;
7.6 Stable 2022-Oct-17 (3 years ago)
  • added IPv6 support;
  • added VRF support for client;
7.5 Stable 2022-Aug-30 (3 years ago)
  • fixed encryption key renewal process which caused periodic session disconnects;
  • improved system stability when hardware acceleration is used on ARM64 devices;
  • moved disconnected user logging message from "debug" to "info" topic;
7.4 Stable 2022-Jul-19 (3 years ago)
  • added "AUTH_FAILED" control message sending;
  • fixed "called-station-id" RADIUS attribute value for OVPN server;
  • use selected cipher by default when the server does not provide "cipher" option;
7.3 Stable 2022-Jun-06 (3 years ago)
  • adjusted SHA2 authentication algorithm naming to allow legacy OpenVPN implementations to connect;
  • fixed hardware offloading support on CHR;
  • fixed memory leak on TILE architecture;
  • fixed packet processing on MT7621A;
  • fixed server instance not responding to incoming connections after reboot on CHR;
  • improved Windows client disconnect procedure in UDP mode;
  • improved server stability under continous overload;
  • improved service stability when outbound packets are blocked by firewall in UDP mode;
  • improved service stability when processing frequent disconnects in UDP mode;
  • improved stability when forwarding traffic on TILE;
  • moved authentication failure messages to "info" logging level;
  • reply with the same IP address that the connection was established to;
7.2.2 Stable 2022-Apr-28 (3 years ago)
  • fixed memory leak on TILE architecture;
  • fixed packet processing on MT7621A;
  • improved Windows client disconnect procedure in UDP mode;
  • improved service stability when processing frequent disconnects in UDP mode;
  • improved stability when forwarding traffic on TILE;
7.2 Stable 2022-Mar-31 (3 years ago)
  • added SHA2 authentication algorithm support;
  • added hardware acceleration support for IPQ4018/IPQ4019 and AL* series chipsets;
  • added option to send disconnect message in UDP mode;
  • fixed large option message parsing;
  • improved UDP session handling;
  • improved memory allocation on Tile in "ethernet" mode;
  • improved system stability in high load scenarios;
6.47.10 Long-term 2021-May-31 (4 years ago)
  • fixed route cache entry leak when establishing a new session;
6.48.2 Stable 2021-Apr-09 (4 years ago)
  • fixed route cache entry leak when establishing a new session;
6.47 Stable 2020-Jun-02 (5 years ago)
  • added "use-peer-dns" parameter for OVPN client;
6.44.5 Long-term 2019-Jul-04 (6 years ago)
  • added "verify-server-certificate" parameter for OVPN client (CVE-2018-10066);
6.45.1 Stable 2019-Jun-27 (6 years ago)
  • added "verify-server-certificate" parameter for OVPN client (CVE-2018-10066);
6.40.6 Long-term 2018-Feb-20 (7 years ago)
  • fixed resource leak on systems with high CPU usage;
6.41.1 Stable 2018-Jan-30 (8 years ago)
  • fixed resource leak on systems with high CPU usage;
6.39.3 Long-term 2017-Oct-12 (8 years ago)
  • added support for "push-continuation";
  • added support for topology subnet for IP mode;
  • fixed duplicate default gateway presence when receiving extra routes;
  • improved performance when receiving too many options;
6.38.1 Stable 2017-Jan-13 (9 years ago)
  • fixed address acquisition when ovpn-in interface becomes slave;
6.36.1 Stable 2016-Aug-05 (9 years ago)
  • add special exception route for tunnel itself when using add-default-route;
6.36 Stable 2016-Jul-20 (9 years ago)
  • enable perfect forwarding secrecy support by default;
  • fixed compatibility with OpenVPN 2.3.11;
6.35.4 Stable 2016-Jun-09 (9 years ago)
  • enable perfect forwarding secrecy support by default;
6.26 Stable 2015-Feb-03 (11 years ago)
  • allow to add VLANs to ovpn server bindings;
6.22 Stable 2014-Nov-11 (11 years ago)
  • added support for null crypto;
6.16 Stable 2014-Jul-17 (11 years ago)
  • fixed ethernet mode;
6.11 Stable 2014-Mar-20 (11 years ago)
  • fixed TLS renegotiation;
  • make bridge mode work with big packets (do not leave extraneous padding);
  • fixed require-client-certifcate;
6.10 Stable 2014-Feb-12 (11 years ago)
  • make it work again;
6.4 Stable 2013-Sep-12 (12 years ago)
  • allow to specify server via dns name;
5.21 Stable 2012-Oct-12 (13 years ago)
  • fixed memory leak on disconnects;