ProHoster > Blog > internet news > NetworkManager 1.26.0 release

NetworkManager 1.26.0 release

Submitted by stable release of the interface to simplify the configuration of network parameters - Network Manager 1.26.0. Plugins to support VPN, OpenConnect, PPTP, OpenVPN, and OpenSWAN are developed through their own development cycles.

All innovations NetworkManager 1.26:

  • A new build option 'firewalld-zone' has been added, when enabled, NetworkManager will set a zone for connection sharing in the dynamic firewalld firewall, and when new connections are activated, put network interfaces in this zone. NetworkManager still calls iptables to open ports for DNS and DHCP, and for address translation. The new firewalld-zone option can be useful for systems running firewalld with an nftables backend where iptables is not sufficient.
  • Extended syntax for 'match' properties to allow '|', '&', '!' And '\\'.
  • Added MUD URL property for connection profiles (RFC 8520, Manufacturer Usage Description) and ensure that it is set for DHCP and DHCPv6 requests.
  • Added handling of 802-1x.pin and "802-1x.{,phase2-}ca-path" properties in the ifcfg-rh plugin.
  • Vulnerability fixed in nmcli CVE-2020-10754, bound with ignoring parameters 802-1x.ca-path and 802-1x.phase2-ca-path when creating a new connection profile. When trying to connect to the network under this profile, authentication was not performed and an insecure connection was established. The vulnerability appears only in builds that use the ifcfg-rh plugin for configuration.
  • For Ethernet, when the device is deactivated, the original auto-negotiation, speed, and duplex settings are reset.
  • Added support for the "coalesce" and "ring" options of the ethtool utility.
  • Support for team connections without D-Bus (for example, in initrd).
  • Allow Wi-Fi to continue auto-connect attempts when previous activation attempts fail (initial connection setup failure now does not block auto-connect, but auto-connect attempts may resume for existing blocked profiles).
  • Added support for "local" route type, in addition to "unicast".
  • The nm-settings-dbus and nm-settings-nmcli man pages are included.
  • Support for tagging externally controlled devices and profiles via D-Bus is provided. Such devices, which are handled through an external handler, are now also specially marked in nmcli.
  • Added support for setting network bridge options.
  • Added device, driver, and kernel parameter path match for connection profiles.
  • Added support for traffic restriction disciplines bf and sfq.
  • nm-cloud-setup implements a provider for the Google Cloud Platform, which automatically detects and configures receiving traffic from internal load balancers.

Source: opennet.ru

Add a comment