Secure DNS web services to fail in case of incorrect authentication
UCoIP Improvements
Upgrade
Upgrades IPBRICK.UCoIP to version v3.14
Upgrades IPBRICK.CAFE to version v3.7:
Fixes the Automatic Reply
Troubleshoot and fix Chat issues
IPBRICK.CAFE administrators can now define multiple simultaneous authentication for a single user,or restrict a session per user
Other Improvements
Add
Add Signotec licence management
Add an option in "advanced telephony management", to manage voicemail and allow the deletion of old voicemails
Add supervision service to service and system monitor for OnlyOffice
Add a script that runs daily, retaining only the last month's data in the defaultcel
Solves the database maintenance feature for voipstats, and add maintenance for the callfacts database. When upgrading to v7.1.5, the functionality is disabled
Two-factor authentication (2FA) adds an extra layer to retrieve user information through IPBRICK.Contacts
Improve
Improves layout for phone management
Improves Asterisk manager connections to avoid errors when the VoIP service is disabled in the web interface
Upgrade
Upgrades BIREPORT to version v1.5
Solved Issues
Solve
Solves an issue with AD group synchronization when group names contain apostrophes
Solves synchronization for DNS Master/Slave zones
Solves errors in configuring SIP ports in VoIP settings
Solves the edit button in "UCoIP > VoIP > Phones Management"
Solves filters applied to Groups in AD Pass-through
Solves call recording cache issues caused by incorrect permissions
Solves the call recordings cache option in the IPBRICK OS web interface
Solves the insert button for voice prompts to always appear
Solves webservice instantiation for certain functionalities to work on IPBRICK v7
Solves the URL for the ALTICE SMS provider on the SMS server
Version 7.1.4July 23, 2024
Security Improvements
Add
New button on the "Users Management" list that allows unlocking a user who has been locked out due to multiple failed password attempts; This button is only visible when the user is locked out!
Other Improvements
Add
New method to synchronize the AD Groups for the "IPBrick LDAP" using "objectGUID" and "sAMAccountName" attributes instead of the "CN" attribute, when the IPBrick Authentication mode is "IPBrick Master with AD Pass-Through Authentication"
When the "Upgrade Mode" of the IPBrick Update is set to "operating system and applications", a new popup message is displayed to inform the IPBrick Admin about the list of upgradable applications
Adds support for applying custom configurations on the "Call Recording" feature using a script
Improve
Webservices improvements: adds a new method "serviceManagement" which allow to stop and start any IPBrick service
Improves the synchronization and new user creation reports when IPBrick is configured in "AD Pass-Through Authentication" mode
Webservices enhancements: introduce new methods for Text-to-Speech (TTS) and Speech-to-Text (STT) services
Remove
Removes the deprecated "Analog Phone" option from the "Group Members" section in "Call Groups"
Solved Issues
Solve
Solves a problem related to groups synchronization that occurs when the IPBrick is configured on the "AD Pass-Through Authentication" mode, and the Active Directory (AD) contains groups with distinguish values for DN, CN, and sAMAccountName
Solves a groups synchronization issue that occur when an IPBrick configured in "AD Pass-Through Authentication" mode lose connectivity with the Active Directory during the synchronization process
Solves a problem on modifying authentication mode to "IPBrick Master with AD Pass-Through Authentication", that occur when the password of the Domain Administrator have a lot of some special characters
Solves an issue on the "Direct Access" feature of certain VoIP functions (such as IVR, attendance sequences, and attendance queues) that arises when modifying a "Direct Access" that contains a "SIP address" beginning with the character "+"
Fixes an issue on the "User Groups" page that occurs when recreating a group with the same name after deletion, without "Applying Configurations" between these two operations
Solves calls issues that occur when the call uses an outbound route that simultaneously has multiple "ALL" prefixes and also has Caller ID restrictions for those same prefixes
Resolves issues with sending voicemail messages via email when the audio format is set to MP3 or WAV
Version 7.1.3June 18, 2024
Security Improvements
Add
Latest security updates got from the Debian Security Repositories till 15th of May 2024
Better support for SAML thanks to the improvement on IM service, CAFE Messenger and CAFE Phone
Enables support for using Elliptic Curve Cryptography (ECC) private keys in SSL Certificates
Improve
VoIP security improvements related with the pike tool
UCoIP Improvements
Upgrade
Upgrades CAFE to version 3.6
Introduces a new feature to schedule out-of-office auto-reply messages
Adds support for SAML Authentication through IPBrick SAML Single Sign-on
Introduces a direct URL for making calls using the CAFE Phone
Introduces the ability to designate groups as favorites and also archive groups
Adds the possibility to configure the number of contact attempts and interval between attempts on the Outbound Lists
Solves some issues on the CAFE Messenger
Solves problem on the Chat history related with the display of images
VoIP Improvements
Add
New option "Source email address" on the Voicemail configuration to define the FROM of the emails sent with voicemail messages
New interface on "Call Recording" to configure "Advanced Recording". Adds the possibility to configure calls recording by IVR, Conference, Scheduler, Group, Sequence and Call Queue
New interface on "Call Recording" to configure the default workflow used by the iPortalDoc
Improve
Call Statistics improvements: the "Current calls" page has a new interface with list, filter and search operations
Call Statistics improvements: the "Current calls" also show the Agent that has answered the call on the "Destination" column
Upgrade
The "Call Recording" feature "Additional Numbers" was migrated to "Advanced Recording"
SMS Improvements
Improve
The field "Password" was renamed to "API Key" for the SMS provider Invisible Cloud
Other Improvements
Add
Support for multiple languages on the emails of E-mail quota alert notification
Support for multiple languages in the notification emails for disk quota alerts
Improve
Disabled by default the service "containerd", which is only used by the Docker
Disabled by default the service "Collectd", which is only used by the Radius Server
Disabled by default the service "supervisor", which is only used by the OnlyOffice application
Remove
Removes the deprecated options "Set-Top Box", "Radio Base Station", "Radio Control Station", "Analog Phones", "Linux Terminal", "Windows Terminal" and "IP Camera" from "Machines Management"
Solved Issues
Solve
Solves fails on the "Online Agents" list that occurs when has some filter applied
Solves a problem related with the password modification of "System Users"
Solves issues on the Disaster Recovery of Configurations, related with the remote network accesses to the PostgreSQL service
Solves an issue on the Statistics (VoIP Calls and Fail2ban), that may occur after a Disaster Recovery of Configurations
Solves internal authentication issues which can produce lot of error messages on the system logs "syslog" and "auth.log"
Solves Caller ID Restrictions issues on calls with blind transfers
Solved sporadic fails of users synchronization that occur when the IPBrick is configured on authentication mode "AD Pass-Through Authentication" and the AD has thousands of users
Solved a problem of groups synchronization, that occur when the IPBrick is configured on authentication mode "AD Pass-Through Authentication" and the AD has more than 1000 groups
Solves issues on the Tomcat Web Server related with permissions of the SSL Certificates
Solves issue related to the mapping of STUNs on the Video Conference service
Solves an issue in the users synchronization, that occur when the IPBrick is configured on authentication mode "AD Pass-Through Authentication" and the "Administrador DN" has special characters
Solves minor issues on the Call Statistics
Solves call recording failures during conference calls that occur when PINs are not defined
Solves a problem on the webmail web interface that occurs when the Web Server has the headers "Set-Cookie HttpOnly" enabled
Resolves configuration issues related to the "Apache Headers Security" interface on the Web Server
Solves issues related with the pause of agents in the Callcenter
Resolves an issue with the user disk quota that occurs when the account is placed in an additional Work Area
Solves certain LDAP replication issues that may arise when using the IPBrick Authentication mode "IPBrick Slave with AD Pass-Through Authentication"
Solves issues related to the default timezone on the PostgreSQL Database
Solves a problem on the VoIP Call Queues related with the configuration of "Allow new calls in queue when there aren't any logged users"
Solves issues on the blind transfers related with the timeouts
Solves issues on calls with blind transfers to routes with Caller ID restrictions
Solves issues related with call pickup that may occur on the CAFE Phone
Resolves a problem related with modifying the file format for call recording
Solves issues with Caller ID restrictions that occurs when the route has a customize Caller ID
Solves problems on Click2dial feature which were originating calls without context mask
Version 7.1.2February 6, 2024
Security Improvements
Add
Latest security updates from the Debian Security
Repositories until 9th of January 2024
Support for the Single Sign-on Authentication based on the
SAML protocol
New web interface to manage SAML Single Sign-on
configurations: Identity Provider and Authorized Service Providers. Interface available at
"Advanced Configurations » Support services » SAML Single Sign-On"
New protection layer in the Firewall based on the Fail2ban
software framework that is designed to prevent brute-force attacks; The Interface to manage Fail2ban
is available at "Security » Fail2ban » Settings"
New interface to monitor, in real-time, the IPs
blocked by Fail2ban; Adds a statistics interface for Fail2ban with reportings and graphs of the
blocked IPs, date, number of attempts and attacked service, and also the origin country of the attack
New interface on the Web Server to configure Apache Headers
UCoIP Improvements
Upgrade
Upgrade IPBRICK.UCoIP Page to version 3.13
Allow guests to enter the conference room 10 minutes before start time
Allow the owner to "open" the conference room earlier
Allow the scheduling of recursive conferences from IPBRICK.CAFE
Other improvements to the Video Conference and Web Phone
Upgrade IPBRICK.CAFE to version 3.5
IPBRICK.CAFE Messenger improvements:
Display message status: Sent, Delivered and Read
Direct reply to messages
Show/hide the group "Everyone"
Integration with the security service Fail2ban
Recursive/periodic scheduling on Video Conferences
Manual or automatic synchronization of Users and Groups
Upgrade the jitsi-meet packages which are the base for the Video Conference service
VoIP Improvements
Add
New option "Announce user count on conference" at VoIP
Call Conference
Improve
Improve the behavior of SIP VoIP register related to the
IPBRICK.CAFE Phone that sometimes took too long to register
VoIP Call Statistics: displays information on the users who make outbound calls
Upgrade
New layout on the call statistics interface based on
Apache Superset
The page for VoIP Call Statistics of IVR calls was enabled
again with the correct presentation of the statistics
Remove
Remove the option to enter the PIN if the VoIP Call
Conference doesn't have any PIN configured
Remove the deprecated options "Pickup with autoanswer callback (with origin CallerID)"
and "Pickup with callback (with origin CallerID)" from the VoIP feature "Pickup mode"
Groupware Improvements
Add
Support for SAML Authentication through IPBRICK SAML Single
Sign-on
Interface to manage the SAML Authentication
Upgrade
Upgrade Groupware to version 5.3, based on SOGO version 5.9.0
Upgrade IPBRICK.Contacts to version 5.1.7
Other Improvements
Add
New interface to manage the PostgreSQL Database
configurations and the Kernel memory parameters related to the PostgresSQL service;
Interface available at "Advanced Configurations » Support services » Database Server » PostgreSQL
Config"
New interface to manage Custom Configurations created by Advanced Administrators;
It's possible to define Custom Configurations that block the "IPBRICK Update";
Interface available at "Advanced Configurations » IPBRICK » Custom Configurations"
Support for Business Intelligence Reporting (BIRT) based on
the Apache Superset and the Metabase
Add protection on the Web Server to avoid disabling the self-default IPBRICK website
Release Notes are now available on the IPBRICK web interface
Support for licenses based on the Number of SIP Trunks; By default an IPBRICK licence allows the
configuration up to 4 SIP Trunks
Improve
Performance and security improvements on the Instant Messaging
service, mainly related to support for the IPBRICK.CAFE application
Replace the default ping to test the AD connection by a
connectivity test directly to LDAP on ports 389 and 636, when the IPBRICK is configured on authentication mode
"AD Pass-Through Authentication"
Increase the performance on the Disaster Recovery of
Configurations when the IPBRICK has thousands of Users and the service Instant Messaging enabled
Webservices improvements: new method to make outbound calls - outboundCall
IPBRICK Monitor improvements: new checks for the
services Fail2ban, Superset, and Metabase
Main system log: syslog, now has a default retention
period of 28 days
IPBRICK Updater improvements: communications using HTTP Proxy
API improvements: Two-factor authentication (2FA)
Remove
Remove the requirement to enter the Administrator Password to
modify some configurations when the IPBRICK Authentication mode is "IPBRICK Master with AD Pass-Through
Authentication
Solve
Solve issue on the Apply Configurations related with the change
of the "Site folder location" on a "Hosted site" at the Web Server
Solve authentication issues on the proxy service when it is
configured with authentication
Solve an issue on the "kernelupdate" service related with the
slow reboot/shutdown of the IPBRICK, which in some cases may take 5 minutes or more
Solve problems related with the Disaster Recovery option
"Delete Backup Configurations older than", which is reset to 180 days after an IPBRICK version Upgrade
Solve an issue on IVR Shortcuts management, which occurred when
deleting a shortcut; Instead of deleting the selected shortcut, the last shortcut was deleted
Solve an issue on the web service
"getWSSystemComputerUidByNameIP"
Solve a problem on the Mail2SMS service that occurred when
Gateway GSM was busy
Solve issue on the Groupware service related with the "Apply Configurations" that started
Groupware even when disabled
Solve a problem on IPBRICK.Contacts related with the LDAP authentication ability to read/write the tree
"OU=Contacts"
Solve issues related with the sending of accented words, on the function "send_sms" of the IPBRICK Webservices
Solve error on the licence activation of the codec G729 used on VoIP service
Solve issues on SIP outbound routes related with the order of the routes on the Kamailio service
Solve a problem on VoIP Call Queues related with the configuration of "Direct Access" containing spaces on
the Address
Solve issue related with the phones on Call Manager, that occurs after a password modification of the phone
Solve issues related with the Caller ID masking on SIP outbound routes
Solve issues on the VPN SSL service related with connection breaks that occur when the option "Multi-Factor
Authentication" is enabled
Solve problem related with the Machines ordering by IP
Version 7.1.1August 29, 2023
Security Improvements
Add
Latest security updates from the Debian Security
Repositories
New protection on the interfaces for the management of
IPBRICK Licenses
New API to support Two-factor authentication (2FA).
The second authentication method can use e-mail or SMS
Support for synchronizing the AD attributes to the IPBRICK LDAP
when the IPBRICK Authentication mode is "IPBRICK Master with AD Pass-Through Authentication"
IPBRICK Monitor improvements: Add new checks for the service
Call Manager
Remove
Disable the console services "Shell", "login" and "exec" due to
security issues
Upgrade
Upgrade Call Manager to version 3.3
Update translations for IPBRICK supported languages;
Improve
The "Apply Configurations" page layout has been improved
Solve
Solve minor issues on the Call Statistics
Solve issues on the information displayed about the "Online
Phones"
Solve a problem with modifying authentication mode to
"IPBRICK Slave" or to "IPBRICK Client"
Solve an issue on the alert notification to change the default
password of the user “administrator”
Solve a problem with Dynamic Routes on VoIP service
Solve issues on some VoIP configurations that occur when
the IPBRICK Web interface language is different from the default (English)
Solve problems related to the configuration of
"Authorized domains" on the Instant Messaging
Solve issues on the Automatic Call Distribution (ACD)
related to the modification of VoIP General configurations
Solve a problem on System Logs related to the recording of logs from remote servers
Version 7.1June 19, 2023
Security Improvements
Add
Support of SSL Certificates for the following services:
Tomcat Webserver and NGINX (Advanced Load Balancer, Web Server, & Reverse Proxy)
Protection for the configuration of the VPN SSL when
the "Multi-Factor Authentication" is enabled
Latest security updates from the Debian Security
Repositories
New ciphers on VPN IPSEC
Upgrade
The IPBRICK main log now shows information about Login
failures that occurred on the IPBRICK Web Interface
Other Improvements
Add
Support for multiple instances on the Cognitive Services
Protection preventing IPBRICK Re-Installation on a
System with non standard LVM partitions
Support for Apache Superset
Add a new alert that warns about a IPBRICK reboot needed after a
Kernel upgrade
Add a new alert that warns about the Services that will be
restarted after an IPBRICK Update
Support for IPBRICK Management Center
Upgrade
Upgrade IBRICK.UCoIP Page to version 3.10
Upgrade IPRBICK Contacts to version 5.1.6
Improve
Improve the support for the IPBRICK API regarding module integration
Disaster Recovery of Application improvements
Improve the support for PDF Printers on the Print Server
IPBRICK Monitor improvements: add new checks for the service Groupware
Remove
The page for VoIP Call Statistics of IVR calls was temporarily disabled due to problems on the
presentation of statistics
Remove option "Enable two-factor authentication using a TOTP application" from Sogo web interface
because of configuration issues
Disable by default the NFS share for folder "systemlive"
Solve
Solve issues related to events updating on the function
"updateWSCalendar" of the IPBRICK Webservices
Solve conflicts between the Docker interface and the network
or routes configured on IPBRICK
Solve an issue with the websites ACL's that occurs when the
ACL is empty
Solve minor issues on the Call Statistics
Solve a problem on modifying authentication mode to "IPBRICK
Slave with AD Pass-Through Authentication", that occur when the password of the Domain Administrator have some
special character
Solve an issue of the /opt partition sometimes filling up when
the connection to AD server fails (AD Pass-Through Authentication only)
Solve a problem of user synchronization that occurs when the main
AD server fails, and the IPBRICK that is configured on authentication mode "AD Pass-Through Authentication"
can't connect to the second AD server
Solve firewall issues related to inserting or modifying
rules of type PREROUTING
Solve problems related to the configuration of "Authorized
domains" on the Instant Messaging
Solve issues related to the functions "voip_get_agents" and
"voip_callqueue_agent_add_to_queues" of the IPBRICK's Webservices
Solve an issue on the Disaster Recovery Configurations List,
related with the size of the Apply Configurations description
Solve problems on network routes that occur when adding an IP
alias on a network interface
Solve issues related to the function "ShowQueueStatus" of the Asterisk Manager
Solve Voice Prompts issue related to modifying the language
Solve issues related to monitoring events on the Call Center
Solves issues on SIP outbound routes related to failures on add the CallerID defined for the route
Solve an issue that occurs when adding a new "subnet" on the VPN IPSec configuration
Solve an issue that occurs when modifying a tunnel on the VPN IPSec configuration
Solve problems related to the display of connection status on the VPN IPSec tunnels
Solve an issue on Mail Copy related to failures on deleting
old email copies
Solve issues on SIP outbound routes related to port 5080 on
the SIP Headers