What's new

	Important
	Remember from release 8.0: An explicit valid licence for version 8 is needed; Several obsolete hardware/software components have been removed.

Important

END-OF-LIFE from release 8.8.

The support of several Abilis models, cards, devices, protocols have been discontinued starting with release 8.8.0.

	Warning
	Prior to update to version 8.8.0 please verify that your hardware is compatible and that you do not need anymore the discontinued protocols.

All references to the removed resources, lists, etc... will be automatically removed during the configuration conversion.

Cards and interfaces: ESB and ESB2 (V24, V35, X21, E1 synchronous HDLC interfaces); Intel 82801 (100 Mbps Ethernet interface); Intel/Dec 21143 (100 Mbps Ethernet interface).
Protocols and resources: SYNC (synchronous HDLC interface); SDLC (synchronous data link control); HDLCT (hdlc transport via COR); FR (frame relay); PLE (Plink emulation); ML (multilink); CTIX25D (X25 over D-channel); CTIB (B channels bundle); CTIVSP (virtual synchronous HDLC port); CTIPC (Permanent connections of B channels bundles and VSP); SQ931 (Simulated Q931).
Resource subtypes: IP over Dedicated Line (replaced by IP over DSL); IP over Dedicated Line with Abilis Back-up; IP over Multi-Links; IP over B-Channel;IP over X.25 Pvc; X25 over D-Channel;PV, X25 over Dedicated Line; PV, X25 over Dedicated Line with Abilis Back-up;PV, X25 over Multi-Links;PV, X25 over Frame Relay; PV, X25 over Frame Relay with Abilis Back-up; PV, X25 over VSP; PV, X25 over VSP with Abilis Back-up.

New features of the release 8.8:

Ethernet modems: Added resource ETHMOD to supervise and configure Abilis Ethernet modems.

Tcp: Redesigned and reimplemented TCP driver providing the following improvements:

Reduced number of per-session thread from 10 to 1.
Introduced support for TCP window scaling.
Overall performance improvement.
Introduced the possibility for the applications to provide their own transmit and receive buffers, thus allowing per-session and per-application window sizes. This feature is not used yet and therefore the tcpwin: parameter value is still common for all sessions, but we expect this feature will be used soon in next versions.
Fixed handling of zero window resume, it is faster now.
Improved handling of fast retransmission.

Improved TCP diagnostics with the addition of filters and most frequently desired views.

[19:04:54] ABILIS_CPX:d d tcp ?

D D [RES:]Tcp                              Display diagnostics of OPENED Tcp connections
D DE [RES:]Tcp                             Display diagnostics of all Tcp connections
D D[E] [RES:]Tcp filter:val [filter:val]   Display diagnostics of Tcp connections
                                           matching the specified filters

Allowed filters:

ID:             Connection identifier [0..1023]
                This filter is alternative to all the others.

LOC:            Local IP address [x.x.x.x] and/or TCP port [0..65535]
                in the format x.x.x.x:nnnnn or x.x.x.x or nnnnn.
REM:            Remote IP address [x.x.x.x] and/or TCP port [0..65535]
                in the format x.x.x.x:nnnnn or x.x.x.x or nnnnn.

LISTEN [-C]     Shows connections in LISTEN TCP/IP state.
                -C shows count of each local port.
CLOSED [-C]     Shows connections in CLOSED TCP/IP state.
                -C shows count of closed connections.
ESTABLISHED     Shows connections in ESTABLISHED TCP/IP state.

[19:05:16] ABILIS_CPX:d d tcp

RES:Tcp -----------------------------------------------------------------------
       Transmission_Control_Protocol
       STATE:READY          CUR-SESNUM:143    CUR-ESTAB:16
       - TCP Connections ----------------------------------------------------------------
       ID    TOP-State TCP/IP-State LocAdd-LocPort        RemAdd-RemPort        Resource
       ----------------------------------------------------------------------------------
       17    CONNECTED ESTABLISHED  192.168.000.232-80    192.168.020.100-46792 Http
       18    CONNECTED ESTABLISHED  192.168.000.232-10638 192.168.020.254-80    Opc
       38    CONNECTED ESTABLISHED  192.168.000.232-80    192.168.020.100-46816 Http
       41    CONNECTED ESTABLISHED  192.168.000.232-80    192.168.020.100-46822 Http
       44    CONNECTED ESTABLISHED  192.168.000.232-80    192.168.000.015-60138 Http
       59    READY     TIME-WAIT    192.168.000.232-80    192.168.020.100-46668 Http
       92    CONNECTED ESTABLISHED  192.168.000.232-32184 192.168.000.221-41414 Vs
       96    CONNECTED ESTABLISHED  192.168.000.232-32697 192.168.000.221-41415 Vs
       106   CONNECTED ESTABLISHED  192.168.000.232-1404  192.168.000.222-41414 Vs
       108   CONNECTED ESTABLISHED  192.168.000.232-2430  192.168.000.227-41414 Vs
       109   CONNECTED ESTABLISHED  192.168.000.232-2943  192.168.000.228-41414 Vs
       110   CONNECTED ESTABLISHED  192.168.000.232-2060  192.168.000.116-39146 Acnt
       115   CONNECTED ESTABLISHED  192.168.000.232-3969  192.168.000.228-41415 Vs
       116   CONNECTED ESTABLISHED  192.168.000.232-4482  192.168.000.222-41415 Vs
       117   CONNECTED ESTABLISHED  192.168.000.232-23    192.168.000.004-26194 Telnet
       118   CONNECTED ESTABLISHED  192.168.000.232-5508  192.168.000.227-41415 Vs
       141   CONNECTED ESTABLISHED  192.168.000.232-80    192.168.002.028-56437 Http

[19:05:53] ABILIS_CPX:d d tcp listen -c

RES:Tcp -----------------------------------------------------------------------
       Transmission_Control_Protocol
       ------------------------------------------------------------------------
       TCP/IP-State LocAdd-LocPort         Count
       ------------------------------------------------------------------------
       LISTEN       000.000.000.000-21     5
       LISTEN       000.000.000.000-22     6
       LISTEN       000.000.000.000-23     5
       LISTEN       000.000.000.000-25     8
       LISTEN       000.000.000.000-80     35
       LISTEN       000.000.000.000-443    40
       LISTEN       000.000.000.000-2060   4

[19:07:06] ABILIS_CPX:

Vrrp:
- Restructured configuration and diagnostics, added CTRL-RES parameter.
- Added the possibility to control IpRes of PPP and AIPT2 subtype.
  Thanks to this new feature it is possible to enable PPP (and consequently Poecli) and AIPT2 resources in the Abilis which is currently MASTER and leave them disabled in the Abilis currently BACKUP. When the BACKUP becomes MASTER it will enable the desired PPP or AIPT2 resources.
  Tip
  Interesting chapter: Section 33.4.9, “Virtual Routers with controlled IP resources”.
Ipban: Largely improved IPBAN service:
- Increase max-items from 3000 to 10000, new default 3000.
- Mail parameters now default to SYS (inherited from SYS-MAIL-xxxx of D G)
- Increased FIND-TIME default from 10 to 1440 minutes and BAN-TIME from 10 to 10080 minutes. This is because the nowadays attach schemes uses attempts with large delays.
- Changed default action from BLOCK to MAIL. The reason is that the former default BLOCK (current BAN), was not effective due to the short FIND-TIME and BAN-TIME, otoh the new FIND-TIME and BAN-TIME have a much larger impact and therefore their activation must be carefully done. Also note that configuration created prior to 8.0.0 had default ACTION:NONE, and since many configurations are converted it is also possible that they have ACTION:NONE in configuration.
- Added WHITE-LIST:PrivateIpAdd as default value, to be able to always access Abilis from private addresses (192.168.x.x, 172.16-31.x.x, 10.x.x.x).
- When configuration is converted from previous versions, if values were still the default ones they will be converted to the new values.
- Added ALERTED state. It appears when MAIL without BAN action is used. In this situation an IP address that would be suited for ban is instead just alerted and signalled via mail.
- Differently from previous IPBAN implementation now every query during the BANNED condition restarts the BAN-TIME, in this way if the attacker continue the connection attempts it will remain banned.
Aipt2:
- Made resource controllable by VRRP.
- Largely improved throughput performances thanks to a redesign of the internal UDP interface. As example, in Abilis base-D (Celeron 1.6 Ghz) without ciphering and compression, the maximal throughput improved from about 500 Mbit/sec to about 830 Mbit/sec using two paths in load balancing.
Aipt:
- Largely improved throughput performances thanks to a redesign of the internal UDP interface. As example, in Abilis base-D (Celeron 1.6 Ghz) without ciphering and compression, the maximal throughput improved from about 350 Mbit/sec to about 700 Mbit/sec using PATH:SINGLE.
NPV: Reduced CPU consumption thanks to a redesign of the internal UDP interface.
Sip: Removed TCP transport (partial implementation and commonly not required). SIP can use only UDP now. Due to this removal the user parameter SIP-PROT: has been removed too.
Smtp: At system boot it is possible that certain internal mails are generated when the network connectivity is not available yet, and thus such mails are placed to the deferred queue for later attempt, typically several minutes after the connectivity is available. With this new feature the retry is faster (every 30 sec) during the first 10 minutes after boot, thus speeding up the delivery of such initially deferred mails.
Virtual office / AbilisPhone:
- Bugfixes in DJ/MJ handling.
- Added parameters DJ/MJ to be used for non-AP-VOIP calls.
- Renamed AP-HDPA-DJ/MJ to AP-MOBILE-DJ/MJ.
- Renamed link evaluator parameters.
- Improved help.
Configuration converter:
- NAT: value dimtable:1000 is converted to dimtable:2500.
- CTIVO: added DJ:0 MJ:80.
- IPBAN:
  - When MAIL-xxx parameters have default values of 8.7 they are converted to default values of 8.8.
  - Value max-items:1000 is converted to max-items:3000.
  - If ACTION, MAX-FAIL, FIND-TIME, BAN-TIME , WHITE LIST have default value of 8.7 they are converted to default values of 8.8.
- The END-OF-LIFE resources are automatically removed with all their references.

	Tip
	Interesting chapter: Section 33.4.9, “Virtual Routers with controlled IP resources”.


Abilis CPX tutorial, release 8.8		About this book