Replify Accelerator 5.6.0-21950 Release Notes ============================================= This document details the content of the Replify Accelerator release 5.6.0. This release is a minor release that contains some minor features and several bug fixes. The previous GA release of Replify Accelerator was version 5.5.0. Release Highlights ==================== - Ability to restrict SSL optimization based on SNI - WAN Connection Pool improvements - Ability to log in to web UI using custom credentials - Improved stability and memory usage when system is under load Upgrade Instructions ==================== The following versions of the Virtual Appliance (VA) and Enterprise Manager (REM) can be upgraded directly to 5.6.0: = 5.5.0 = 5.4.1 = 5.4.0 = 5.3.0 = 5.2.1 = 5.2.0 = 5.1.0 = 5.0.0 To upgrade your system, the REM should be updated first (if you have a REM), followed by the Virtual Appliance and then clients. To upgrade the REM or VA please run the following command at the console: replify-ctl upgrade You will be prompted for an activation code after running the above command. Please contact support@replify.com for this code. Windows clients can be updated by navigating to 'Tools > Options > Updates' in the Replify client user interface. To avail of updates, the client must be connected to an upgraded REM or VA. Detailed installation instructions can be found in the Replify Installation & Configuration Guide. The Accelerator Client can also be downloaded from the web interface of VAs and REMs. Disk Space ========== When deploying from VMWare, the default disk configuration will be a 16GB disk with 'Thick Provisioning'. We would recommend this configuration but if resources are particularly constrained on the server, you may change this to 'Thin Provisioning' to ensure the disk space is only consumed when required. For many production environments, 16GB may not be sufficient to hold all cache data. Please see the installation and configuration guide for details on how to add extra disk space. MAC addresses with Hyper-V ========================== Once the image is deployed on the Hyper-V server the MAC address allocation will be set to 'dynamic' by default. When the machine boots Hyper-V will generate a MAC address for the connected virtual network interface. Replify recommends changing this to use a static MAC address instead. Download Links ============== Downloads are available for VMware ESX 5.5 and above and Microsoft Hyper-V 2012/2016. Other deployments, such as Citrix Xen, Amazon EC2 and Microsoft Azure may be available on request from Replify Support. Please refer to the Replify Installation and Configuration Guide for deployment instructions. VMWare ESX ---------- REM OVF: http://s3.replify.com/v5.x/v5.6.0/Replify-Manager-5.6.0-21950/Replify-Manager-5.6.0-21950.ovf REM VMDK: http://s3.replify.com/v5.x/v5.6.0/Replify-Manager-5.6.0-21950/Replify-Manager-5.6.0-21950-disk1.vmdk VA OVF: http://s3.replify.com/v5.x/v5.6.0/Replify-Appliance-5.6.0-21950/Replify-Appliance-5.6.0-21950.ovf VA VMDK: http://s3.replify.com/v5.x/v5.6.0/Replify-Appliance-5.6.0-21950/Replify-Appliance-5.6.0-21950-disk1.vmdk Hyper-V ------- REM: http://s3.replify.com/v5.x/v5.6.0/Replify-Manager-5.6.0-21950-hyperv.zip VA: http://s3.replify.com/v5.x/v5.6.0/Replify-Appliance-5.6.0-21950-hyperv.zip QEMU ---- REM: http://s3.replify.com/v5.x/v5.6.0/Replify-Manager-5.6.0-21950.qcow2 VA: http://s3.replify.com/v5.x/v5.6.0/Replify-Appliance-5.6.0-21950.qcow2 Docker ------ VA: https://hub.docker.com/r/replifyltd/accelerator/ REM: https://hub.docker.com/r/replifyltd/manager/ SHA256SUMS ------ SHA256 hashes for each file listed above have been generated for this release, they can be downloaded from this link: SHA256SUMS: http://s3.replify.com/v5.x/v5.6.0/SHA256SUMS New Features and Improvements ============================= [ACC-4783] - Ability to restrict SSL optimization based on SNI [ACC-4970, ACC-4999, ACC-5157, ACC-5223, ACC-5266, ACC-5314, ACC-5328] - Logging improvements [ACC-5048] - Peered Appliances page shows secure peering status [ACC-5277] - WAN Connection pooling can be enabled/disabled from the API [ACC-5293] - Recon library now included for diagnostic purposes [ACC-5305] - Debian Packages for VA/REM not containing client download binaries is available [ACC-5318] - GUI authentication can take place using native Linux credentials on host machine [ACC-4742, ACC-4798, ACC-4286, ACC-4287, ACC-4830, ACC-5274, ACC-5315] - WAN Connection Pooling improvements [ACC-4861] - impair-network script has been updated to allow packet loss simulation [ACC-4837, ACC-4843, ACC-4886, ACC-4890, ACC-4916, ACC-4919, ACC-4932, ACC-4946, ACC-4952, ACC-4958, ACC-4964, ACC-4969, ACC-4984, ACC-4986, ACC-4990, ACC-4994, ACC-5007, ACC-5011, ACC-5028, ACC-5069, ACC-5089, ACC-5166, ACC-5167, ACC-5169, ACC-5176, ACC-5280, ACC-5287, ACC-5288, ACC-5320, ACC-5323] - UI improvements [ACC-4968] - Hostnames can now be resolved when adding a peered appliance [ACC-5091] - API now includes functions to query health statistics and alarm statuses [ACC-5132] - Login credentials for Docker containers are now configurable in YML files [ACC-5178] - hyperv-daemons package now included on Hyper-V images [ACC-5273, ACC-5279] - Replify Accelerator is now supported on Debian Buster platform [ACC-5290] - Replify Accelerator can now be installed on systemd-nspawn containers [ACC-5297] - System guid information in get_system_info API call [ACC-5298] - VA can peer with multiple appliances sharing a single NAT address [ACC-5303] - Diagnostic report now includes details of hypervisor/native platform [ACC-5312] - API calls to list appliances and tags are now available on the REM [ACC-5313] - Health graph memory usage now includes memory used by NIFs [ACC-5321] - More efficient memory allocation [ACC-5331] - purge_client_cache function of peered_accelerators API call now allows caches to be deleted by specifying a GUID Fixes ===== [ACC-4794] - Duplicate application server configuration on peered VAs no longer stops optimization [ACC-4897] - SSL certificate creation no longer fails if using special characters in the certificate properties [ACC-5127] - The Replify-CA certificate can now be downloaded from a docker container [ACC-5138] - SMB Info button now works for SMB2+ servers [ACC-5171] - Corruption when adding a service mapping via the API is now prevented [ACC-5212] - Round trip time not reported as 65535ms when it cannot be determined [ACC-5239] - Resolved a number of events where timeouts could affect product stability [ACC-5255] - Epmd no longer listens on 0.0.0.0 after an upgrade [ACC-5268] - get_historic_session_info API call no longer fails [ACC-5276] - Issue where SMB3 content was sometimes not cached has been resolved [ACC-5283] - 0.0.0.0/0 can now be specified as an application server when in bridged mode [ACC-5284] - Intermittent failures when connecting to application servers with older versions of SSL no longer occur [ACC-5285] - Intermittent decompression errors when accessing SSL content no longer occur [ACC-5295, ACC-5296, ACC-5299, ACC-5304, ACC-5307, ACC-5311] - Improved stability under load [ACC-5300] - Changing order of appliances in mac/linux/android client no longer causes an error [ACC-5302] - Hangs in Firefox when accelerating SSL traffic no longer occur [ACC-5316] - get_auth_token.es script now works correctly on a REM [ACC-5329] - view function of application_servers API handler now works correctly [ACC-5332] - view function of server API handler now works correctly [ACC-5172] - commands function of handlers API handler now returns correct information Deprecated Functionality ======================== [ACC-5009] - Prefetching for SMBv1 signed traffic and downgrading SMB2 traffic to SMB1 [ACC-5182] - Cache Warming Errata or Known Issues ====================== [ACC-3718] - Intel based processors on Android devices not supported [ACC-3825] - Un-rooted Android devices can only accelerate HTTP(s) traffic [ACC-4137], [ACC-4170]- applications that use SSL pinning (e.g. Skype for Business, Dropbox etc) will have their connections blocked if configured in the VA to use SSL optimization, unless the pinned certificate is also uploaded to the VA. [ACC-4255] - AVG anti-virus software incorrectly detects a threat during Replify client uninstallation [ACC-4427] - Android client requires a reboot before upgrade or client re-install [ACC-4648] - Mac client service stops when it connects to a VA that is using a non-standard block size [ACC-4719] - STARTTLS and HTTP CONNECT content is not cached in client to local VA scenarios [ACC-4896] - Active FTP may fail for some clients when using a client connected to a peered VA setup [ACC-5047] - Functionality to turn off compression for specified MIME types is no longer working [ACC-5083] - SMB Connections are not optimized by the Mac client