Version 3.6-2 - 06/04/2025

Improvements

• Added Web (HTTP) port configuration, allowing changes directly from the admin interface.
• Display of detailed network interface information on the Dashboard.
• Dashboard information improved and organized for better visualization.
• Added functionality to configure the system time zone.
• Counting of users connected via VPN SSL and OpenVPN now available on the Dashboard.
• Language selection via the admin interface — now it's possible to select the language (BR/US/ES) directly from the web interface.
• Creation of wrapper and bp-console — console command manager bp-console.

Fixes

• Fixed incorrect time in reports exported as PDF.
• Fixed permission cache invalidation when modifying web filter rules.
• Fixed issue where reports were generated empty in certain situations.

Version 3.6-1 - 03/27/2025

Improvements

• Added Bluepex Agent for integration with the Bluepex Suite.
• Implemented watchdog to automatically restart winbind when the connection to the AD drops, ensuring access restoration.
• Included in the installation: bin/monitor-nfqueue.sh and bin/monitor-deadlock.sh, which monitor crashes and failures (ported from WinconnectionX to Winco Firewall).

Fixes

• Winco VPNSSL – Active Directory (AD) groups were unable to authenticate in WINCO VPNSSL.
• Winco WebFilter – The hotspot_users group was not respected in filter rules.
• Winco WebFilter – Local groups with uppercase letters were not respected in filter rules.
• Winco Dashboard – Local groups with uppercase letters were not deleted through the interface.

Version 3.4.2 - 11/12/2024

Fixes

• Fixed the issue with HTTPS Inspector freezing.
• Faster HTTPS Inspector.
• Fixed warnings in the web report.
• AD user-based rules were not working and have been fixed (neither access rules nor HTTPS inspection rules).
• Some views in the access explorer were broken.
• Fixed EntraID.

Version 3.3.7 - 10/28/2024

Fixes

• Bug fixes introduced by version 3.3-7 in the rule list component.
• Fix for the forwarded zone configuration in the DNS server on Rocky-9.

Version 3.3.6 - 10/23/2024

Improvements

• Implemented rules for access between internal networks and the Firewall itself (Local Rules).
• Redesigned the management of connectivity rules: Outbound Rules, Inbound Rules, QoS Rules, Multiwan Rules, and Local Rules.
• Added functionality to reorder rules directly in the interface using drag and drop.
• Included the option to enable/disable rules directly from the interface.
• Confirmation request added when deleting a rule, user, or group to prevent accidental removals.
• Support added for authentication via Google Workspace.
• Implemented listing of EntraID and Google Workspace users.
• New web report with: Top 50 Most Accessed Domains, Top 50 Users with Highest Data Consumption, Link Usage, Top 50 Most Blocked Domains.
• Option to export reports in PDF format.

Fixes

• Fixed issue with reverse access when using more than one link.
• Adjusted link selection when one of the links is in standby mode.
• The Webfilter now correctly follows the load balancing rules.

Version 3.2.3 - 07/08/2024

Improvements

• English (en_US): The software is now available in English.
• Spanish (es_ES): The software is now available in Spanish.

Fixes

• EntraID Authentication Issue on Rocky 9: Resolved the issue where the screen would go blank after EntraID authentication.
• WEB Filter Schedule Configuration Screen: Fixed the issue with the schedule configuration screen in the WEB filter, ensuring it functions correctly.

Version 3.1.2 - 07/11/2024

Improvements

• Authentication with Microsoft Entra-ID
• Banco do Brasil SCAMS category.

Fixes

• Hotspot authentication via proxy.
• Fixed the OpenVPN routes issue.
• User Licenses released on time.
• Blocking access to firewall pages without authentication.

Version 3.0.16 - 05/21/2024

Attention: This release applies exclusively to Rocky Linux 8 and 9. For customers using CentOS 7, it is necessary to upgrade to Rocky Linux 8 or 9 to take advantage of the new features and fixes in this version

Improvements

• Support for Rocky Linux 9 Operating System
• New Dashboard
• Multiple log windows
• Connection list
• Shows versions of modules and upgrade versions
• Remote support module with VNC and SSH
• Feature to Disable or Enable the Inbound or Outbound rule in Connectivity
• Feature to allow or block external Ping
• Interface configuration screen with:
  • IP configuration
  • PPP configuration (PPPoE) - The unified PPPoE interface list with its PPP interface
  • Create / delete VLAN
  • Create / delete Bridge
  • Possibility to make exceptions by source in the web filter (previously it was only by destination)
• Interface status is now more significant (Ok, Disconnected, Connecting, Connected, Inactive, and No IP/failure)
• Feature to Enable and Disable an interface
• Connection list screen redesigned to show NetworkManager connections along with interfaces
• Have license information and allow license change (in HTTP)
• Active Directory (AD) integration wizard
• Implemented WTM agent authentication
• Implemented a new "Source" option in the HTTP rule, allowing us to create a rule for a program or executable
• Winco VPNSSL Server: Show certificate validity on the screen
• DHCP: Button to delete device associated with the IP
• Included Microsoft root certificates to avoid HTTPS connection errors
• TCP and UDP connections (incoming and outgoing) now leave information in the log and in the log window
• Packets blocked by the firewall appear in the log window
• New option in Winco SSLVPN server and OpenVPN server allows configuring firewall opening directly in the service configuration
• OpenVPN log files, packet logs, and other Winco Firewall service logs are now located in the /var/winco/logs directory
• New blocking page

Fixes

• Adjustment of Winco SSLVPN to no longer accept TLS1 or SSL3
• Bug in the deletion of forwarders in DNS Server configuration
• Interface reload after creating an OpenVPN Client
• When enabling the HTTPS inspector, blocked sites were not shown in the logs
• The software was not correctly reordering HTTP and HTTPS rules
• HOTSPOT groups were not being created
• DHCP: the allocation list was not expiring
• Resolved a GPF issue
• Fixed OpenVPN client configuration file
• Winco-router crash when using the new firewall opening option in OpenVPN
• Now to configure PPPoE rules we will use the Ethernet interface ID itself and no longer the ppp0 value
• HTTP rule sorting was broken
• Fix for content control filter bug
• wncroute if_list command to show the result of the last interface test and the date of the last failure/recovery
• Winco-routerd made compatible with the new network configuration model of winco-webfilter

Version 2.5.1 - 03/18/2024

Improvements

• New web filter lock screen.
• New web content filter with many more pages.

Fixes

• DDNS did not list interfaces correctly.
• Standard NAT rule was not working.

Versão 2.3.3 - 07/02/2024

Improvements

• Added Openvpn client.

Fixes

• Outbound Rules (NAT) that were not working for the default rule..
• Use integrated authentication in the transparent proxy in the WebFilter module.
• The DDNS client did not list the interfaces on Rocky 8.

Version 2.3.1 - 12/14/2023

Improvements

• Added new Geolocation filter feature for both NAT and DMZ.

Fixes

• Winco-webfilter: TCPMSS (maximum segment size) configuration included to resolve Path MTU issues with non-standard PPPOE providers.
• HTTPS Inspector did not work with sites using EC_RSA encryption.
• Correction in the generation of reports.
• Correction of Google authenticator for Hotspot.
• Correction in the License Activation Process.