This section will cover the changes Untangle had from version 9.4.2 till version 10.2.1, which will be a good reference for readers with previous experience with Untangle. Untangle Version 10 had many major architectural changes. Thus, there is no upgrade path from version 9.x to version 10.x. A list of important changes is as follows:
Untangle is now based on Debian 6.0 (squeeze) and 2.6.32 kernel. This should result in slightly better hardware support.
The networking interface (where the users can configure network related settings) has been improved. If Untangle has more than 2 NICs, any additional interface will be disabled (which was not the default behavior earlier). In older versions, an Untangle user was not able to change any interface name.
Untangle Interfaces could now be configured with IPv6; however, the applications could not process the IPv6 till now. More information is available at http://wiki.untangle.com/index.php/IPv6.
HTTPS Inspector is a new application that allows Untangle NGFW to decrypt and scan the HTTPS traffic as HTTP-traffic.
Attack Blocker has been moved into the Untangle platform and can now be configured under the Shield tab located at Config | System.
Spyware Blocker has been merged with Ad Blocker and the remaining obsolete functionality has been removed.
Add the ability to set routes rules based on the port number and OS type in the WAN Balancer module.
OpenVPN now has a new simplified implementation (earlier the steps to configure it were too complex).
POP and IMAP scanning functionality has been removed from the platform due to rare of unencrypted POP and IMAP across WAN links and the delay caused by scanning.
For versions before 10.1, the application was downloaded from the Internet after installing Untangle. Now, Untangle NGFW comes with the applications preinstalled.
Beginning from version 10.1, Untangle NGFW could run in high availability mode, where the high availability mode is failover and not load balancing.
Some enhancements in the memory utilization used by applications (such as Virus and Spam Blocker) while they're not scanning any traffic.
Beginning from version 10.2, IPsec VPN now supports L2TP for remote access.
A new application for the Directory Connector that can be installed on domain controllers to monitor the login event logs and report them to Untangle is now available.
The DHCP Server and DNS Server tabs moved from Network | Advanced to Network.
Version 10.2.1 includes minor hotfixes such as fixing problems caused by HTTPS Inspector to Dropbox clients.
At the time of writing this book, Untangle announced the approach to release version 11.0, which is based on Debian wheezy (7.6) and the 3.2.0 kernel. It also comes with new commercial technologies for the Virus Blocker and Spam Blocker for better performance and efficacy.