=============================================================================== X-BONE 3.2 CHANGES http://www.isi.edu/xbone/ xbone@isi.edu $Revision: 1.1 $ $Date: 2006/05/13 06:26:45 $ =============================================================================== >>> Changes since X-Bone 3.1.1 Release [4/30/2004 - ] > LDAP Support > Support for Global X-Bone deployment > Replication > Global registry > Multiple CAs > Dropped support for Apache 1.3 and Redhat 9 > Simplified use Less cluttered UI > Node Daemon and GUI Control panels > Automatic installation of apache and openldap components > Automatic mode by default which will allow for intelligent defaults >>> Changes since X-Bone 3.1 Release [4/27/2004 - 4/30/2004] > Bug fixes Install on Linux >>> Changes since X-Bone 3.0 Release [1/30/2004 - 4/27/2004] > Bug fixes Application deployment on Linux Error messages causing XML display problems Timeout on the discover page fixed Socket connect errors on linux System call return code errors Gracefully handle garbage on incoming connections Handle multihomed hosts Updated to reflect changes in ports > Features Application deployment takes a UID as an additional parameter Timeout added to the Create page New application deployment script to support Linux VServers Updated the ACL processing rules. Graceful exit through a xbonectl program New configuration file for GUI Support for Cisco routers Show downlinks more clearly > Others Updated documentation >>> Changes since X-Bone 3.0 Beta 2 Release [12/03/2003 - 01/27/2004] > Bug fixes Install from source on Linux General cleanup Additional checks > Features > Nistnet support on linux > Updated API 2.0 > Custom hostlist support for discovery > Application deployment script >> Notes: > The dns suffix use with X-Bone software has been standardized. The XBONE_NET variable in XB_Params, forward and reverse zone have been updated to all use the same suffix "xbone.overlay". This might effect users who have existing installations and DNS-related configuration files. Their existing configuration must be merged with the newly installed 3.0 files. >>> Changes since X-Bone 3.0 Beta Release [10/20/2003 - 12/03/2003] >> The X-Bone code has stabilized considerably. A number of bugs were fixed and a couple of minor features added. >> New Features (to Beta-2) > Support for Custom hostlist > OM can be specified in the UI > Linux RPM >> Bug fixes > Installation is more robust > Extensive resource checks > Verbose error messages >>> Changes since X-Bone 2.0 Release [11/1/2001 - 10/30/2003] >> The 3.0 version is almost a complete rewrite of the source. It adds new capabilities and is easier to work with. >> New Features > Unified OM and RD > Capabilility to support recursion > Experimental Dynamic DNS support > Experimental Dynamic routing support > XML-based API and UI > Support for IPv6 overlays > Support for custom netlist >> Bug fixes >>> Changes since X-Bone 1.4 Release: [5/31/2001 -> 11/1/2001] >> New Features: > Implements the X-Bone API language: Currently, only the capabilities existing in X-Bone Release 1.4 are implemented. > Added FreeBSD 4.4 support: notably, the support for dynamically creating and deleting gif tunnel interfaces on-demand. > Added Linux 2.4 kernel support (RedHat 7.1 & 7.2). Note that a bug fix to net/ipv4/ipip.c is required (included with this distribution.) > [Experimental] Supports application deployment within the overlay. An sample script of starting ABone daemon (anetd) within a newly created overlay is also included. >> Bug Fixes: > Fixed several pattern matching bugs for Perl 5.6.0. > Fixed interface counting for each ACL entry. >> Misc: > Status page now shows more info about overlays: IPsec, Dynamic Routing, Dummynet, etc. > Minor improvements over the detecting the presence of dynamic routing daemons, GateD & MRTd. > The development of dynamic routing within overlays using GateD & MRTd is temparorily on hold since the open source development/maintainence of both software packages were non-existent. > Allow non-root user to install from source tarball by using "make rd PREFIX=/complete/path/of/your/choice" for RD, "make omgui PREFIX=/complete/path/of/your/choice" for OM. >>> Changes since X-Bone 1.3.1 Release: [11/26/2000 -> 5/30/2001] >> New Features: > Performance improvement: Overlay operations (Create, Delete & Status Monitoring) are now parallelized among all Resource Daemons. Typical creation time for a 10-node overlay are down from about 60 seconds to 5-10 seconds. > Multicast messages (for X-Bone control command requests and responses) are now authenticated using S/MIME cryptographic signatures. > GUI has capability to show all running X-Bone daemons and their capabilities: Operating Systems, X-Bone Versions, IPsec Algorithms, number of tunnels and overlays deployed & available. > Optionally add random padding to IPsec'ed packets. > Support for Dummynet on FreeBSD hosts - set per-hop delay, loss, and queue limits. > Support for RedHat Linux 7 (without IPsec at this time). >> Bug Fixes: > Fixed bug with IPsec replay protection settings that caused the first few packets over a new tunnel to be dropped when an earlier tunnel between the same ends existed. >> Misc: > Better error reporting: > OM lists the hosts found in "not-enough-hosts" error message. > Removed Overlay Link Layer tunnel info from Overlay Monitoring page unless it's "Down". > Better logging: > OM logs IP address blocks used. > RD logs whether existing daemon state file is used or not. > The system will auto-detect more host capabilities (presence of IPsec, etc.), consequently the config files got simpler. > Removed last pieces of the FreeBSD-2.2.8-based CAIRN code. (It was unused since release 1.1.) > Minor improvements to the GUI. > The GUI now installed under instead of taking over the whole Apache data directory. > Comments about IPv6 are added throughout the code. (Grep for "IPv6".) >>> Changes since X-Bone 1.3 Release: [10/30/2000 -> 11/25/2000] >> New Features: > Extended "linear" topology to accommodate more than two hosts. Hosts are distributed evenly at two end routers. Originally requested by UCL group for December 2000 demo at Atlanta. Example: H--\ /--H \ / H = host H----R---R---R---R----H R = router / \ H--/ \--H Files: om/XB_Topology.pm, www/s-cgi-gin/xb-create.pl, www/s-htdocs/images/fan.gif > Added "OverlayManager" field in multicast message to weed out messages from overlay managers *NOT* specified in /etc/xbone/Xbone_daemon.conf. This also made the "DestroyAll" and "ResourceDiscorery" messages (sort of) per Overlay Manager instead of global. Files: om/xb-overlay-manager.pl, rd/xb-daemon.pl >> Bug Fixes: > Don't send DNS update to the secondary DNS server if $XB_Defs::DNS_ SERVER_SECONDARY is blank or the same as the primary DNS server. Files: om/XB_IP_Allocation.pm > Fixed backward compatibility feature in RD and OM message processing. Files: lib/XB_Defs.pm, om/xb-overlay-manager.pl, rd/XB_Node_DB.pm > Expceptions generated by XB_dns_rpc weren't caught earlier, and the subnet wasn't freed. Files: om/XB_IP_Allocation.pm > Dropped the warning message about "NON-XBONE tunnels exist" when adding alias to tunnel interfaces (gif & tunl). It's impossible for RD to know the correct IP address ranges used by each OM. Files: rd/XB_Tunnel.pm > Redirected the "Connection Refused" message when creating & connecting to MRTd socket in "check_mrtd". Files: rd/XB_Route.pm > Corrected $XB_Defs::XBONE_RELEASE, $XB_Defs::XBONE_VERSION_DATE, and $XB_Defs::XBONE_OVLMGR_BACKCOMPAT. Files: lib/XB_Defs.pm >>> Changes since X-Bone 1.2 Release: [3/20/2000 -> 10/30/2000] >> New Features: > OM: > DNS option: Added option to disable DNS update/lookup on a per-overlay basis when creating overlays. > Added sequence number in UDP control messages to detect duplicate packets. > Removed the constraints on Class C IP addresses, and the number of nodes per overlays. Now the user is free to specify IP address blocks of any netmask length. And the number of nodes in each overlays is only limited by topology and the number of available nodes. > RD: > Tunnel Aliasing: Tunnels between the same end points will now be created as aliases of the same tunnel interface (gif for FreeBSD & tunl for Linux) instead of using multiple tunnel interfaces. This eliminates the need to patch the IP-IP tunnel code in both FreeBSD+KAME & Linux. > Support static-route updates using MRTd through the socket interface. > GUI: > Drop MSIE support. > Better sanity checks on GUI inputs. > Allow multiple OS selections. > Installation: > Streamlined installation procedures and documentation. > Use GNU Make on both FreeBSD & Linux platforms. > Move certificate & key files to /etc/xbone/cert. > Move X-Bone daemon configuration & state files to /etc/xbone. > Simplified named configuration procedure. >> Bug Fixes: > Tunnel interface names mismatch during RD crash recovery. > Several other bug fixes.