- Created by Sara Jeanes (internet2.edu), last modified by Mike Zawacki (internet2.edu) on Nov 14, 2023
These Release Notes include updates to the eduroam-US RADIUS routing infrastructure. You can find Release Notes for the eduroam Federation Manager portal here.
V1.9.0
Release Date: October 10, 2023
Story
- Update to Grafana 10 (logviewer)
- More intuitive data explorer
- [#8]Name of Organization at top
- General improvements overall
- Update of log storage system to most recent release
Improvement
- Security improvements using AWS secrets
Bug
- [#47]Fix an issue where the proxy would fail on an unreadable configuration file.
v1.8.0
Release Date: June 13, 2023
Story
- Allow listing (New Feature)
- Traffic is filtered to only allow traffic from configured subscribers to reach the RADIUS proxies
- This reduces load on the traffic controller and the proxies
- Traffic controller has less traffic to monitor for rate limiting
- Proxies do not have to answer invalid requests
- Rate Limit Log Monitoring
- New tools to monitor incidents of Rate Limiting more closely in order to better diagnose issues
- Enhanced deployment tools
- Allow for faster releases with less downtime
- IdP Testing Fixes
- Improved error handling and responses
- Security enhancements
- Minor bug fixes
v1.7.1
Release Date: April 6, 2023
Improvement
- Implemented certificate revocation for certificates used in RP testing
- For the Operator-Name attribute to known valid values, rather than accepting values supplied by the RP
v1.7.0
Release Date: March 13, 2023
Story
- RP testing
- Add an IdP for testing your local eduroam WiFi network
- Generates short-lived certificates to authenticate to that RP
- Supply CAT-generated installers for that IdP and certificate
v1.6.0
Release Date: October 18, 2022
Story
- Internal cost reductions
- Reduced the capacity of MQ servers
- Removed unused DB instances
v1.5.0
Release Date: October 6, 2022
Story
- Self-Healing Containers Feature
- Containers in AWS now periodically re-register themselves with the Traffic Controller
- Prevents containers from being 'forgotten' in the event of network issues
v1.4.0
Release Date: August 16, 2022
Story
- IdP Testing infrastructure
- Install the infrastructure that will support an FM feature allowing eduroam administrators to test whether their IdP responds to traffic on the federation.
- Install an AWS Lambda function to perform the IdP testing
- Install MQ configuration for FM to send IdP testing requests to the eduroam infrastructure, and for the eduroam infrastructure to send responses
- Update the RADIUS configuration to accept authentication requests from the IdP Testing lambda function
- Update to the latest released FreeRADIUS version, 3.2.0
v1.3.0
Release Date: August 5 & August 8, 2022
Story
- Load balancing
- Change the network routing of multiple Docker-ized containers behind each TLRS service from an active/standby configuration to an active/active load balanced configuration.
- Ubuntu system updates applied to TC routers
v1.2.0
Story
- Rate Limit Feature Update
- Limits incoming traffic to prevent the national-level proxies from being overloaded with spurious requests
- [#30] Code Cleanup
- Ubuntu system updates applied to TC routers and VPN endpoints
v1.1.2
UPDATE: 4/1/2022 This release has been rolled back. Certain issues will be cherry-picked and released at a future date.
Bug
- [#23] Access-rejects not providing a failure reason
- [#26] Reject requests with invalid punctuation
- [#24] RADIUS server unexpectedly restarts under high load
- [#25] Remove nonresponsive upstream servers
v1.1.1
Improvement
- Improve log line identification for easier processing by a log viewer
v1.1.0
Bug
- [IFMC-2112] - Problem escaping special characters in RADIUS secrets
Story
- Enhancements to service resilience in the event of an AWS Region or Data Center outage
- Logging Foundation
- Update operator-name behavior to write attribute if not present
Improvement
v1.0.1
Bug
- [IFMC-2015] - Allow use of sub-realm
- [IFMC-2012] - Escape additional special characters in RADIUS secrets
Story
- [IFMC-2078] - Enable IPv6 routing
Improvement
- [IFMC-2125] - Flush connection tracking after migration
v1.0.0
- Initial Release
Versions
- No labels