flexiWAN Release 6.4.1

Release 6.4.1 includes:

  • flexiManage release 6.4.30

  • flexiEdge release 6.4.32

Release Notes:

flexiWAN is the world’s first open source SD-WAN & SASE with a modular and open architecture offered as a cloud service in a SaaS business model.

Version 6.4.1 was released on Sep, 2024. This version introduces Inbound QoS, Wireless Dual SIM, Linux Kernel Upgrade, I225/I226 NICs, Port based LAN NAT, Connection Recovery, AI Agent and more.

There are three options for hosting flexiManage, each relevant for companies with a different set of requirements. All of these options come with support services and include multi-tenancy.

  • SaaS model in a shared environment - flexiManage is hosted by flexiWAN and includes the flexiWAN logo. This option is great for enterprise deployments and small to medium service provider deployments(Find this option in our pricing under Enterprise SaaS)

  • Dedicated environment - an isolated installation of flexiManage hosted by flexiWAN. In this case you can add your logo to the UI. This is the most popular option for MSPs, Service Providers and SIs

  • Self-hosting - self-hosting of flexiManage is typically best for very large telcos

Read this blog post to learn more about the different hosting options of flexiManage.

Contact us.

New in this release:

  • Adding support for Inbound QoS

  • LTE dual SIM, roaming and automatic switchover

  • Allow to configure a virtual interfaces per device

  • Update Linux kernel to 5.15. Use Device Host OS Upgrade to upgrade existing devices

  • Support I225/226 NICs

  • LAN NAT 1 to many (NAPT)

  • Configuration for WAN monitoring and Link monitoring definition

  • Update DHCP server package and show DHCP leases

  • Connection lost recovery for various failure scenarios

  • Tunnel scale and jobs improvements

  • VRRP enhancements, such as: Allowing to track tunnels, No distribution of routers from backup device and Same Router ID on different sites

  • AI agent for question answering

  • Troubleshooting enhancements, such as: Showing device errors / failures on General page, allow to download files from device

  • Password restrictions policy

  • Allow to set a description per interface

  • Allow to modify tunnel subnet range mask

  • UI enhancements

  • Bug fixes

Supported and Planned Features

The list of supported and planned features description can be found in the Feature Overview page

Please send us your feature needs and prioritization.

REST API changes in this release

List of REST API Changes

API

Changes

Backward Compatible?

All /devices

Add interface description

Yes

All /devices

Add loopback interface type

Yes

/devices/{id}/getfile

New API for getting a file from device

Yes

All /linkMonitors

New API for setting Link Monitors configuration

Yes

All /devices /peers

Monitoring include link monitor ID

No

All /ai/chat/query

New API for AI agent queries

Yes

All /qosPolicies

Add inbound policy configuration

Yes

All /firewallpolicies

Add a LAN NAT section with 1to1 or napt types

No

All /vrrp

Add new fields backupRoutesAdvertisementOspf, backupRoutesAdvertisementOspfTag, backupRoutesAdvertisementBgp for setting route distribution from backup device

Yes

All /vrrp

Change url monitor name to http

No

All /organization

Add subnet to the tunnel range configuration

No

Potential Backward Incompatible Changes

List of Potential Backward Incompatible Changes

Title

Description

API changes

See REST API changes

Additional validations

Validations added for configuration consistency

Introduction of connection recovery function

Device will try different stratecies to reconnect to flexiManage when it’s not connected. If new configuration applied, device may also be stopped

Known Issues

List of Known Issues

Title

Description

During login, the username email is case sensitive

The email used in account creation and login is case sensitive

Slow websocket connection during heavy load

During heavy traffic load, device connection to flexiManage may be impacted, prioritize with QoS will avoid it

Tunnel loss and RTT during heavy load

During heavy traffic load, loss and RTT calculation might represent biased values, prioritize with QoS will avoid it

On unstable/slow connections some jobs may be presented as failed on timed out although succeeded

In most of the cases, the jobs have succeeded and the system recovers itself by re-syncing the configuration

Switching WiFi from 2.4Ghz to 5Ghz doesn’t restart DHCP server

To restart the DHCP server for the WiFi interface, stop and start the flexiEdge router

Inbound WAN ICMP with small identifier is dropped

Inbound WAN ICMP with Identifier smaller or equal to 1024 may be dropped

When VRRP enabled, ping from client to an IP address assigned to devices interfaces doesn’t work

The reason is that pakcets are sent to the VRRP MAC address which is not know on the hosting Linux

When changing metric on VLAN interface, QoS for that interface may not function properly

To resolve the issue reinstall QoS after the metric modification

Potential conflict when modifying interfaces from flexiEdge web UI while in recovery mode

When modifying interface from flexiEdge web UI while on recoery mode, a backup for the recovery netplan files may be created flexiwan.recovery.baseline.yaml/fworig, these files are invalid and should be deleted