UniFi NeXt-Gen Gateway Firmware 1.12.19
Improvements
Add support for disabling weak ciphers for L2TP VPN.
Add firewall rule match to firewall log prefix.
Improve the accuracy of SFP link status detection.
Improve compatibility to PPPoE ISP provider that provides IPv6.
Update SSH login message to make it compliant with ToS and EULA.
Update timezone data.
Update OpenSSL to 1.1.1n.
Update ROOT CA.
Update Suricata to 6.0.4
Update busybox from 1.31.1 to 1.34.1
Update zlib to 1.2.12
Update DPI database (Requires UniFi Network 7.1.59 or newer).
Remove TLS1.0 and TLS1.1 support for guest portals.
Exclude weak TLS ciphers for the built-in WiFiman server.
Patch miniupnp/minissdpd for CVE-2019-12106, CVE-2019-12107
Reduce the delay in DHCP server responses.
Minor LCM fixes and improvements.
Bugfixes
Fix issue where configuration may fail to apply in edge cases.
Fix bug that caused backup restore to fail if ipset with the same name but different type already exists.
Fix log flood from "arping" process when LAN client has multiple IPs on the same physical interface.
Fix bug when "pppd" client keeps running after switching WAN from PPPoE to DHCP.
Fix bug when Chromecast Android app would fail to arrange multiple speakers into groups.
Fix gray background on LCM display that might confuse users into thinking that UXG has not been adopted.
Fix issue where arping message was spamming log files.
Fix a corner issue where the default routing table may become incorrect when both WANs are used.
Fix an issue where the UXG-Pro can't link with 1G peer device using UF-RJ45-10G on SFP+ ports.
Fix an issue where the advertised MTU in IPv6 RA packet is not used.
Fix issue that Content Filtering does not work for wired client with guest portal enabled.
Fix issue that excessive incorrect failovers are reported.
Fix config errors when renaming radius profile.
Additional information
Manual upgrade instructions
SSH into your UXG-Pro and execute the following in it's shell (replace <em><firmware_url></em>
with one of the download links found below):
Checksum
md5: 0fe1359b63a6a98267928118aa66f041
sha256: 517a9c4e1d96bc322df1c7eb1f5420880bb264f5073aae8c924bba1823e8aba9
Download links