热烈庆祝RouterOS 3.0正式发行

邮编：530001

routerOS 3.0特色功能：

1.支持包括Intel和amd最新双核CPU，和双CPU
2.最高支持2G内存
3.支持sata硬盘
4.采用Linux 2.6内核(2.9是采用2.4)
5.支持open vpn功能
6.控制台支持彩色显示

3.0较2.9比较大的改进:

1.内核的升级

RouterOS 2.9.39 采用 Linux kernel version 2.4 .31 版本
RouterOS 3.0beta5 开始采用 Linux kernel version 2.6.19 ,以后的版本会采用更新的Linux内核,内核的升级将给RouterOS带来更加稳定和更加快速的体验

2.支持双核CPU和多CPU,支持SATA接口硬盘,内存最大支持为2GB

SMP (Symmetric Multiprocessing) support

SATA (Serial-ATA) disk support

Maximum RAM support increased from 1GB
to 2GB

Latest interface driver support

Dropped legacy interface support

3.API Support
An application programming interface (API)
is a source code interface that a computer
system provides in order to support requests
for services to be made of it by a computer
program. (from wikipedia.org)
To enable API use “/ip services enable api”
Default RouterOS API port is 8728 TCP.

4.重写的web-proxy(网页高速缓存)

3.0以前的版本采用的是squid的源码,自3.0开始,Mikrotik重写了web-proxy功能,新的web-proxy比squid提供更快的速度,占用更低的内存.

Completely Mikrotik rewritten web-proxy (no
Squid or another pre written source code
used)
Web-proxy package is now fully integrated
into main system package
Web-proxy now is more suitable for Hotspot
use
Web-proxy now works faster and have
optimized memory usage

5.New OSPF Implementation

Completely Mikrotik rewritten OSPF (no
Zebra or another pre written source code
used)
Completely new routing-test v3.0 package
created (routing-test v2.9 package is now
standard routing v3.0 package)
Several previously unfixable bugs fixed
OSPF now have potential for further
improvements ( interface routes, inter-area
filters, pre-interface filters, ...)

6.New VRRP Implementation

Completely new VRRP implementation, not
compatible with previous versions
Several previously unfixable bugs fixed
Now it is necessary to create VRRP
interfaces instead of just enabling VRRP
feature
VRRP addresses now must be assigned as
regular (/32) IP addresses

7.更好更完善的无线功能

Wireless Features
“MAC NAT” bridge
Station-pseudobridge
Learns which IP address has which MAC
address and translates it.
Station-pseudobridge-clone
Uses one MAC address of the device and
clones it to the wireless interface.

8.新增加用户管理和认证功能 User Manager

User Manager
* User Authorization using MSCHAPv1,MSCHAPv2
* User status page
* User sign up system
* Support for decimal places in credits
* Authorize.net payment gateway support
* Database backup feature
* License changes in RouterOS v3.0 for active users:
– Level3 – 10 active users
– Level4 – 20 active users
– Level5 – 50 active users
– Level6 – Unlimited active users

9.内置The Dude 管理接口

Dude是Mikrotik公司研发的设备管理程序,基于snmp功能,目前完全免费,功能强大,操作方便.

RouterOS package – works as dude server
Speed improvements between server/client
Dude Agents to reach private networks and
offload service monitoring
Reports from any list/table
Support for SNMP v3

10.彩色易用的控制台

Console: Colors
Console consumes less memory, it has
faster startup and first export time
References to items, commands, prompts
and exports are coloured
Currently no way to turn colours off, except
running under dumb terminal

支持多行输入,再长的命令也容易输入了.

11.支持NAT穿透,NAT Traversal

NAT Traversal (NAT-T) is a workaround
allowing specific services to establish
connections from masqueraded TCP/IP
networks
Introduced NAT-T for SIP
Introduced NAT-T for IPSec
Rewritten NAT-T for h323
Rewritten NAT-T for PPTP

12.更加易用的轿操作

Interface Bridge Settings
There is new menu in RouterOS v3.0
/interface bridge settings
There are two new options
use-ip-firewall (yes|no, default:no)- whether to
pass internal bridge packet through the IP
firewall (conntrack, filters, mangle, nat) or not
use-ip-firewall-for-vlan (yes|no, default:no) – if
“use-ip-firewall=yes” whether to pass bridge
VLAN packet through the IP firewall (conntrack,
filters, mangle, nat) or not

13.支持open vpn

自3.0beta8开始支持open vpn,这又是一个让人激动的功能.

更新日志(2008年1月18日):

What's new in 3.0:[Mikrotik Routeros3.0正式版]

*) fixed auto upgrade on RB333 & RB600;
*) made RB411 bootup more stable;
*) made DNS & WINS setting work again in PPP;
*) fixed bug - dhcp client did not update NTP server list;

What's new in 3.0rc14:

*) fixed problem - bandwidth shaping on ARES traffic was not working properly;
*) user manager - fixed security bug in user page;
*) fixed locking up in PPPoE server;
*) fixed bridging in PPTP, L2TP an PPPoE;
*) fixed bug - MPPE encryption keys received from RADIUS server were decoded
improperly on RB333;
*) added support for BGP signalled VPLS;
*) fixed bug in port remote-access - it was inserting random data, mostly
nulls, in data sent to serial port and to tcp connection.
*) fixed bug in console error propagation, code like the example below caused
console to enter busy loop:
:do { badcommandname; } while=(true);
*) fixed hotspot https walled-garden;
*) fixed bug - dhcp server failed to give out options with code > 127;
*) console - fixed numeric parameters that accept negative values, were broken
in rc12;
*) fixed port line-state values on MIPS RouterBoards;
*) fixed bug - idle-timeout & session-timeout were not disabled if they
were unset in ppp profiles;
*) fixed OSPF compatibility bug with v2.9 (and some other vendor
implementations): LS Acknowledgments were sent to wrong address;
*) fixed Broadcast flag for DHCP on RB300/RB600;
*) fix wireless nstreme packing problem;
*) improved layer7 firewall matcher memory usage;
*) console - do not add input to history if it is the same as previous line;
*) fixed bridge to forward (R)STP frames as regular if (R)STP not enabled;
*) fixed bug - configuration for missing serial ports was not tagged inactive;
*) console - fixed safe mode, it was causing wery high cpu usage and terminal
traffic;
*) console - added login parameters, passed as part of login name, after '+';
can be used to disable colors (+c) and terminal autodetection (+t), e.g.
"admin+ct";
*) dns resolver has configurable max UDP packet size;
*) fixed dns resolver - tcp queries were broken without ipv6 package;
*) added ingress priority matcher to firewall rules;
*) added number of active pcq queues to queue stats;
*) made advanced mode for wireless interface configuration in WinBox;

What's new in 3.0rc11:

*) added filters to WinBox lists, and added ability to filter routes
without downloading all of them to the client;
*) updated WinBox Loader to v2.2.12 - clicking on IP address in
router discovery list selects ip address not mac address;
*) added '/tool sms send' in advanced-tools package;
*) fixed problem - PPPoE, PPTP, L2TP could restart if user disconnected
at wrong time;
*) fixed problem - PPPoE, PPTP, L2TP static server interfaces
disappeared after disconnect;
*) added support for adding OVPN interfaces to bridge through specifying
bridge in ppp profile;
*) multicast - fixed IGMP Leave message handling;
*) nand improvement for RB532A;
*) fixed user-manager database restore from backup for RB500;
*) fixed bonding - when bonding iface was put in bridge arp link monitoring
did not work properly

What's new in 3.0rc10:

*) fixed problem - sometimes PPTP, L2TP, PPPoE and OpenVPN connections
were not accounted properly, and no new connections could be established;
*) fixed problem - L2TP sometimes could not establish connections through
firewall or with Windows;
*) bgp - fixed TCP MD5 authentication on RB300;
*) fixed bug - route did not work with Level 1 license and routing package enabled;
*) api - '/quit' command now immediately terminates session;
*) console:
'and' operator in expressions that follow 'find' and 'print where'
now is optional, pre-rc9 syntax 'find mtu=1480 type=ether' works
as it used to;
added back filters to firewall print commands, filtering by chain
now is 'print chain=input' instead of 'print input';
fixed 'print count-only', it was ignoring any additional 'print' arguments
that selected only part of items;

更新日志:

[pre]What's new in 3.0rc9:

*) fix for rb100 - can change ethernet settings when interface in bridge/bond;
*) fixed problem - RouterOS did not boot on some routers
(reported disk not found);
*) fixed dns resolver - sometimes could not parse packets with AAAA records;
*) hide ppp interface & wireless passwords and keys in WinBox as well;
*) fixed traffic-flow - could hang multi cpu router and ignore targets sometimes;
*) fixed rb100 - ethernets could be set at random bandwidth limit after reboot;
*) console:
repaint whole screen after terminal size change while in editor
(same as pressing F5 or Ctrl-L). this solves numerous issues with
terminal resizing;
added more workarounds for the case when terminal is too narrow
(<4 characters);
now logical operators '&&' and '||' can also be written as 'and' and 'or';
removed 'where' and 'from' arguments of find command. now find command
can be followed by arbitrary expression that can use item properties,
e.g. "find dst-address in 192.168.0.0/16 and interface=wlan1";
added 'where' argument to print command. "print where <expr>" and
"print from=[find <expr>]" are equal;
removed filters from firewall print commands, now write, e.g.,
"/ip firewall filter print where !dynamic" instead of
"/ip firewall filter print static";
*) web proxy: fixed crash on stopping proxy;

What's new in 3.0rc8:

*) fixed problem - console did not accept ip address ranges correctly;
*) user manager - fixed problem with accounting creating too many sessions;
*) console:
added ip-prefix and ip6-prefix datatypes, written in address/mask
notation;
INCOMPATIBLE CHANGE: expressions of the form "(123/45)" (where first
operand is literal unquoted value) currently will be parsed as single
string, to write division put space before '/' (like with '.' operator);
added operator 'in' that checks if first argument is inside second
argument, currenty implemented for the case where second argument is
ip-prefix or ip6-prefix and first argument is either address or
another prefix;
don't perform full reset of terminal on login;
fixed terminal capability detection, now windows telnet client
works better. TERM environment variable is ignored completely now,
it was overriding detected values before;
*) added support for Huawei E220 USB modem;[/pre]

What's new in 3.0rc7:

*) ftpd - automatically reboot after finishing upload that has name *.auto.npk;
*) added support for Sierra Wireless AirCard 595U;
*) ping - show more types of ICMP reply messages, like in 2.9 versions;
*) add ICMP MPLS extension support to traceroute;
*) console detects terminal size and capabilities, TERM environment
variable is not used, so now this works even over serial;
*) console - fixed crash on non-ASCII characters in input and output;
*) console - export correctly strings that contain control characters;
*) fixed in console - when argument value evaluation produces error, report
that error instead of "invalid value for ..." message;
*) console - changed the way how required command arguments are processed,
now commands like "enable [find]" don't fail with error when find returns
nothing;
*) fixed memory leak on RB500;
*) fixed layer7 protocol matcher, did not handle \x.. sequences correctly;
*) fixed allow-shared-key mode for wireless;
*) fixed station-pseudobridge mode when used in combination with
nstreme framer-policy;
*) fixed hidden ssid issues with wds links;
*) SNTP client - adjust DST according to timezone settings when clock changes;
*) console - fixed crash when terminal size is extremely small (like 1x1),
assume default width 80 if terminal is too narrow;
*) SNTP - fixed overflow bug, now clocks are adjusted correctly if initial
time is way back (like jan/01/1970 on routerboards);
*) added RIPng support in WinBox;
*) added BGP for IPv6 support in WinBox;
*) added PIM support in WinBox;
*) added hide passwords option to WinBox;
*) added regular expression matching to dns resolver static entries;
*) user manager - fixed bug for credit extension using PayPal payments;

What's new in 3.0rc6:

*) RIP - fixed some problems;
*) RIP - automatically distribute connected routes
falling within range of some configured network;
*) RIPng - network configuration statements removed,
interface configuration now is mandatory;
*) added support for IPv6 Firewall in WinBox;
*) added support for IPv6 DNS cache in WinBox;
*) added support for MME routing protocol in WinBox;
*) added support for L7 matcher in WinBox;
*) added support for Prolific 2303 based USB serial devices;
*) specify tcp-mss in dynamicly added PPP mangle rules & do not add
them when mtu is bigger then 1500;
*) fixed USB UPS detection;
*) fixed bug - PPTP client did not work with Windows PPTP server;
*) limited number of active authentication sessions for PPPoE server
to not overload RADIUS server;
*) fixed bug - ssh command did not work on RB333;
*) added support for Intel EXPI9404PT PCI-E ethernet adpater;
*) added simple SNTP client to system package
& removed regular ntp from bundle package;
*) updated timezone information;

What's new in 3.0rc5:

*) added layer7 protocol matching capability in firewall;
*) updated network drivers;
*) make external-fdb for station-wds interfaces be disabled when
in auto mode;
*) added regulatory domain info for 5.8GHz band in Germany;
*) rip - fixed netmask for default route;
*) added /system default-configuration;
*) ability to reset without applying default configuration;
*) reverted BGP network behaviour back to version 2.9;
*) fixed BCP;
*) fixed PPPoE, PPTP, L2TP problems with remote authentication;
*) made Multi-Link over single link work properly in PPTP & L2TP;
*) improved ares/warez p2p protocol matching
*) ospf - fixed MD5 authentication;
*) console - fixed memory leak in 'find' command;
*) fixed ip accounting;
*) user manager - customers can configure Authorize.Net title shown to users;

What's new in 3.0rc4:

*) fixed bug - OpenVPN key renegotiation did not work;
*) updated 5ghz regulatory information for Romania, South Africa and Ireland;
*) added support for dynamic bridge port adding and path cost update for
station-wds mode;
*) fixed rb500 korina driver (ether1) transmit issue;
*) improved wireless performance (also with 2.9);
*) improved nstreme2 performance;

What's new in 3.0rc3:

*) user manager - added PayPal options (https-response & accept-pending);
*) user manager - added transfer-limit to user batch-add form;
*) user manager - added download, upload and total transfer to CSV;
*) added 5GHz turbo band for Germany and Italy;
*) added 'host' argument to 'fetch' tool to support virtual hosts;
*) fixed handling of power saving wireless clients;
*) ftpd - automatically execute uploaded scripts that have name *.auto.rsc;
*) fixed bug - BCP could not be negotiated with some Cisco's;
*) fixed bug - PPTP & L2TP did not work on RB333;

What's new in 3.0rc2:

*) added RFC 2217 server (configure under '/port remote-access');
*) renamed 'get' tool to 'fetch', avoids confusion with builtin 'get' commands;
*) ospf - added 'passive' interface flag;
*) ups - fixed duplicate logging of line power state;
*) fixed bios upgrade from RouterOS on RB200;
*) added switch support for rb1xx;
*) added support for ipv6 firewall;
*) added ipv6 support to dns cache;

New features commentary:

*) installation and boot of USB sticks/drives with RouterOS
Netinstall can now install RouterOS on USB drives. Minitowers
and rackmounts with bios's that support USB boot can now easily boot
from USB flash/hard drives. The USB flash sticks are available in
most electronics stores and are a suitable replacement from IDE
flashdrives and CF with IDE adaptors. It might be advisable to find
a secure place to connect the USB stick so that it can't be knocked
off easily. As of v3rc2,there is one problem that you should not
have a hard drive with RouterOS in the same system or the boot
program on the USB drive will find the hard drive with RouterOS and
probably boot that instead of the RouterOS on the USB stick -- we
will work on fixing this.
*) RFC 2217 serial server TCP to serial
Now you can set the serial port to RFC 2217 server mode and
you can use a remote application to communicate/control the serial device.
Find out more about this protocol at http://www.faqs.org/rfcs/rfc2217.html

What's new in 3.0rc1:

*) enable routing package on upgrade - to fix upgrade from 2.9 version
where routing-test package was used;
*) console - parser now accepts newlines as CR, LF, CR+LF, this fixes import;
*) user manager - using +/- image for group field show/hide instead of
confusing checkbox;
*) fixed bug - usb devices did not work;
*) console - added tab key completions in editor;
*) fixed slowness of RB112/RB133C during bootup (introduced in 3.0beta9);
*) console - fixed variable name lookup;
*) console - added back '/setup' command;
*) console - added '/system script environment';
*) console - fixed wireless interface configuration export;
*) integrated MAC Ping in to regular Ping in WinBox;
*) added support for Marvell IDE controller that is embeded in new Intel motherboards;
*) fixed bug - for routes received via RIP nexthop was invalid in some cases;
*) added 'get' tool for downloading files to router via HTTP or FTP;
*) console - some properties could not be set via API, fixed;
*) user manager - fixed bug for PayPal payments with user data containing
specific characters;
*) ip proxy - setting parent proxy did not work;
*) fixed bug - dst-active was not updated after time update by NTP;
*) console:
fixed 'do' arguments in '/tool bandwidth-test' and other
commands;
inside expressions variables can be referenced without putting
'$' before variable name;
'find' commands have new argument 'where' that allows to write
filtering condition as console expression;
when entering commands from prompt, global variables can be used without
declaring them;

What's new in 3.0beta10:

*) ip proxy - fixed crash; fixed HTTP POST method handling;
*) fixed PCMCIA (non CARDBUS mode);
*) fixed ethernet packet accounting (FCS 4 bytes were not included);
*) ospf - fixed external and inter-area routes;
*) ospf - after Dijkstra's algorithm was executed 256 times,
intra-area routes become invalid;
*) made Torch to not exlcude non TCP & UDP traffic if no specific port was provided;
*) user manager - added download/upload limit and group fields to batch-add form;
*) updated Realtek 8169 driver;
*) added support for radius-mac-authentication result caching in wireless;
*) fixed SIP connection tracking on RB100 & RB500;
*) added support for Novatel Wireless V740 Verizon;
*) wireless - added configuration option for hardware retries count and
frame transmit lifetime;
*) fixed support for MTB-134 / Portwell EZIO LCD display;
*) added initial IPv6 support;
*) added radius client to send Accounting-On packet on startup;
*) added initial calea support;
*) added ethernet bridging support to PPP, PPTP, L2TP & PPPoE;
*) added MRRU support to PPP, PPTP, L2TP & PPPoE - packets bigger than MTU
can be forwarded;
*) user-manager - 3-byte char (UTF-8) bugfix;

What's new in 3.0beta9:

*) console - removed undocumented scripting commands;
*) console - variable lookup now is done while parsing script:
variable name completion works
variables must be declared before use;
*) some of the fixes mentioned under v3.0beta8, did not got in v3.08beta8,
they are fixed now;

What's new in 3.0beta8:

*) use less memory - makes RB133C & RB112 work better;
*) added initial support for OpenVPN (client & server mode);
*) added support for Sierra Aircard 595 & other Sierra Wireless cards;
*) ipsec - fixed tunnel mode;
*) fixed bug - bridging with bandwidth shaping could freeze whole system;
*) ip proxy - allow setting invalid parent-proxy-port value 0 in console.
this fixes import of default settings;
*) ip proxy - fixed bugs introduced in 3.0beta6 (proxy could crash,
cache was not working correctly);
*) support for full frequency list of Atheros chips;
*) ups - fixed: program was becoming unresponsive when serial ups was
configured but was not connected;
*) user manager - password not revealed on sign-up;
*) console - each user has separate set of global variables;
*) console - fixed crashes when exporting "/system health" on non-routerboards;
*) console - removed unexpected entries from export (like /file);
*) policy routing - fixed automatically added rules;

What's new in 3.0beta7:

*) certificates - sometimes when importing CA certificate, certificate
cache was reset. Fixed;
*) fixed RB200 bios upgrade from RouterOS;
*) added reset-configuration command for wireless;
*) user manager - user signup bugfix;
*) fixed RouterOS configuration to reset when "Soft Reset" jumper on
RB133C or JP1 on RB532r5 is shorted;
*) hotspot - added to retry mac authentication in case of radius timeout;
*) hotspot - added total (in + out) byte limit;
*) fixed wireless sniffer file format;
*) work around bugs in some WPA2 implementations that do not do
proper group key updates;
*) routing - added set-in-nexthop and set-out-nexthop filters;
*) routing - added notification when filters are changed for
RIP and OSPF (affects redistributed routes)
*) routing - added MME routing protocol;
*) user manager - added total transfer (download + upload) byte limit;
*) WMM support;
*) TOS matcher in firewall is replaced with DSCP;

What's new in 3.0beta6:

*) WinBox has ability to search in Tables;
*) RSTP bridge package is now merged in to system package;
*) routing-test package is renamed to routing;
*) console - fixed "" to have type str;
*) console - reverted change to export script sources in '{}' braces, such
export was not 100% reversible;
*) hotspot - added option to specify any password for mac authentication;
*) added support for interface routes (without nexthop);
*) route deletion from route table now is much faster (important for
full feed BGP);
*) added update-source option for BGP;
*) RIP is rewritten; added passive-interface option for RIP;
*) added /routing prefix-lists; they can be used for RIP filtering;
*) webproxy now supports SATA disks;
*) fixed bug - OS could not be installed on SATA disks without license;
*) added support for more network cards based on RTL8169 chip;
*) console - F5 or ^L key in commandline resets terminal and prints current
input buffer (if it does not fit in one line);
*) console - fixed backslash whitespace sequence inside quoted string
to expand to nothing, as in 2.9;
*) console - fixed completions and help while editing multiline commands;
*) console - prompt for continuation lines now shows open braces and quotes;
*) console - added 'as-value' option to print and monitor commands that
suppresses normal output and returns array of properties instead;
*) console - 'get' command without 'value-name' returns array with all
item properties;
*) console - fixed crash in fullscreen editor when adding empty at the end;
*) console - readded 2.9 style help;
*) made WRAP board rebooting work;
*) user manager - added Authorize.Net payments;
*) user manager - prices now stored as decimals;
*) user manager - increased active session count limit for license levels 4 and 5;
*) user manager - object removal confirmation;
*) user manager - CSV files now have header;
*) user manager - popup-blocker workaround for CSV;
*) user manager - close option for active sessions;
*) user manager - reset-counters option for routers;
*) user manager - public-host field for customers;
*) user manager - group field for users;
*) user manager - fixed time-zone bug;
*) user manager - added PayPal payments;
*) user manager - utf-8 handling bugfix;
*) user manager - voucher customization;
*) new vrrp implementation
*) graphing - incorrect scale legend bugfix for large data amounts;

What's new in v3.0beta5:

*) console - fixed prompt for continuation lines to be "... ";
*) e-mail - changed to send address-literal instead of hostname in EHLO;
*) e-mail - added e-mail,debug and e-mail,warning log topics, errors now go to
system,e-mail,error;
*) console - fixed 'get' commands, were not reporting flag values;
*) console - removed :list command;
*) updated network drivers;
*) console - multiline command editing:
Ctrl-\ splits line,
prompt shows current line number and total number of lines
when more than one,
home/end twice goes to beginning/end of command like in
fullscreen editor;
console - edit command works also in single line input mode;
console - 'source' argument in '/system script' and 'do' arguments in
various monitor commands accept scripts written in '{}' braces. export
uses this syntax to output scripts;

What's new in v3.0beta4:

*) added GIS/WISPr xml pages for hotspot smart client support;
*) console - order export items by dependencies.
*) fix virtual-AP default mac address;
*) fixed Atheros receive stalling bug that could be observed while
snooping and frequency-monitoring;
*) fixed interface disappear issue on bridge port disabling/removing;
*) fixed station-pseudobridge to not use local macaddress as
default for translation;
*) made ip firewall not be used for bridged packets by default;

What's new in v3.0beta3:

*) added Event-Timestamp radius attribute in hotspot Accounting messages;
*) added hits counter to hotspot walled-garden rules;
*) made demo mode work;
*) fixed bug - sometimes installation software was reporting errors were no error existed;
*) console - fixed local variables;
*) console - improved syntax error messages;
*) console - allow use of item numbers in scripts and without prior print;
*) console - order export by object type dependencies, use item numbers
where required;
*) fixed AR5211 channel list bug;

What's new in v3.0beta2:

*) added support for Atheros PCI Express;
*) replaced console parser -
colored syntactic feedback,
line and column of parse error,
export coloring,
substitution inside quoted strings
(e.g. "addr $($addr & 255.255.255.0)/24");
*) line editor remembers last modified string when walking history. You don't
lose your command if accidently press 'up';
*) F1 works as '?' in console;
*) references to one script may become '(unknown)', will require manual
fixing of configuration;
*) fixed behavior of 'do=' arguments in console;
*) fixed - executing lines from console history did not reset history
position;
*) hotspot transparent http proxy requests now go through acl list of proxy;
*) autosupout.rif & supout.rif file generation now works;
*) wireless - added disable-csma option for nstreme mode;
*) wireless - added station-pseudobridge modes to do MAC NAT when
bridging over station mode link;
*) wireless - support for WPA2 pairwise master key caching to speed
up re-connect times;
*) wireless - access-list and connect-list can now specify signal
range to allow for connection;
*) wireless - access-list is now ordered and supports matching of
all interfaces, all addresses;
*) wireless - access-list entry can match in specified time;
*) wireless - access-list can specify client specific WPA or WPA2
pre-shared-key
*) wireless - support for RADIUS accounting for both MAC and EAP;
*) wireless - support for RADIUS Disconnect-Request to disconnect
client with RADIUS request;
*) wireless - can now specify format of MAC address in RADIUS
requests
*) wireless - include Calling-Station-Id (in format XX-XX-XX-XX-XX-XX)
and Called-Station-Id (in format XX-XX-XX-XX-XX-XX:ssid) in RADIUS
requests

What's new in v3.0beta1:

*) added support for SATA disks;
*) added initial support for SMP on x86;
*) added support for up to 2Gb of memory on x86;
*) fixed time matching in firewall rules;
*) added time matching to bridge firewall rules;
*) multiple ports can be specified in firewall as src. and dst.;
*) added support for NAT-T in IPsec;

Caveats:

*) dropped support for Linksys HomeLink PhoneLine Network Card (10Mbps over
telephone line);
*) dropped support for PCMCIA RadioLan;
*) dropped support for Wavelan/Orinoco wireless cards;
*) dropped support for Aironet/Cisco wireless cards;
*) dropped support for Atheros 5210 wireless cards;
*) dropped support for telephony package;
*) ISDN does not log called and caller numbers anymore;
*) replaced console parser -
some of previously accepted syntax now will not work,
syntax can change in next betas,
completion is not yet fully implemented;
*) matching for some RFC non conforming TOS values won't work;