RT1900ac Release Notes

Version: 1.1.5-6542-4


(2017-11-15)
  1. Fixed a security vulnerability regarding File Station.

  2. Fixed an issue where Site-to-Site VPN might not work properly.

  3. Fixed an issue where SRM might fail to get IP address from DHCP server upon startup.

  4. Fixed an issue where firewall rules might not display properly after an SRM update.

  5. Minor bug fixes.

Version: 1.1.5-6542-3


(2017-10-17)
  1. Fixed multiple security vulnerabilities regarding WPA/WPA2 protocols for wireless connections (CVE-2017-13077, CVE-2017-13078, CVE-2017-13079, CVE-2017-13080, CVE-2017-13081, CVE-2017-13082, CVE-2017-13084, CVE-2017-13086, CVE-2017-13087, CVE-2017-13088).

  2. Fixed multiple security vulnerabilities regarding Broadcom Wi-Fi chip (CVE-2017-11120, CVE-2017-11121).

  3. Fixed an issue where the channel 140 could not be selected in 20MHz on RT1900ac.

  4. Fixed an issue where the password might not be masked properly upon login failure.

Version: 1.1.5-6542-2


(2017-10-04)
  1. Fixed multiple security vulnerabilities regarding DNSmasq (CVE-2017-13704, CVE-2017-14491, CVE-2017-14495, CVE-2017-14496).

  2. Fixed multiple security vulnerabilities regarding DHCPv6 Server (CVE-2017-14492, CVE-2017-14493, CVE-2017-14494).

  3. Fixed a security vulnerabilities regarding Linux kernel (CVE-2017-1000253).

  4. Fixed an issue where the default gateway might not be updated when DHCP-PD is not supported by the ISP.

Version: 1.1.5-6542-1


(2017-09-30)
  1. Enhanced Wi-Fi stability by adjusting related parameters.

Version: 1.1.5-6542


(2017-09-30)

What's New

  1. Added mask for the shared secret for WPA/WPA2-Enterprise setup.
  2. Added support for Site-to-Site VPN official version with performance enhancement.

Fixed Issues

  1. Fixed an issue where port forwarding might not work properly when the load balancing and failover functions of Smart WAN are both enabled.
  2. Fixed an issue where the system might fail to access the Internet via PPPoE from certain ISPs in Japan.
  3. Fixed an issue where client devices might fail to wirelessly connect to RT1900ac.
  4. Fixed an issue where IPv6 might be abnormally enabled under a PPPoE connection.
  5. Fixed an issue where the Wireless page might not work properly when Synology Router is switched to a country/region where 160MHz is not supported.
  6. Fixed an issue where the Internet connection might be down upon removal of Ethernet cable from LAN 1 when failover function of Smart WAN is enabled.
  7. Fixed an issue where the system might not stop PPTP connection properly.
  8. Fixed an issue where the system might not access the Internet properly after successfully establishing an L2TP connection.
  9. Fixed an issue where Firewall might not work properly.
  10. Fixed an issue where Customized Policies in Parental Control might not work properly.
  11. Minor bug fixes.

CVE Security Updates

  1. Fixed a security vulnerability regarding DNS (CVE-2017-12132).
  2. Fixed multiple security vulnerabilities regarding Linux Kernel (CVE-2017-1000364, CVE-2017-1000365, CVE-2017-1000370, CVE-2017-1000371).

Version: 1.1.4-6509-4


(2017-08-24)
  1. Added support for static IP setup in PPPoE connections.

  2. Fixed an issue where a certificate error message may display when Web Filter is enabled.

  3. Fixed an issue where the clients connected to Guest Network may access the primary network when Synology Router is under Wireless AP Mode.

  4. Fixed the issue where OpenVPN might not work properly after the import of profile.

  5. Fixed an issue where the user interface of SRM might not be operated properly when DHCP server has obtained an invalid IPv6 DNS server address.

  6. Fixed an issue where IPTV might not work properly.

  7. Fixed an issue where the clients connected to Guest Network might not access the Internet properly when Default Policy is enabled along with Web Filter and/or SafeSearch in Parental Control.

Version: 1.1.4-6509-3


(2017-07-20)

Fixed issues

  1. Fixed an issue where Synology Router might fail to acquire IP addresses from other routers.

CVE Security Updates

  1. Fixed multiple security vulnerabilities regarding SRM login page (CVE-2017-9553, CVE-2017-9554).
  2. Fixed a security vulnerability regarding Samba (CVE-2017-11103).
  3. Fixed a security vulnerability regarding Broadcom Wi-Fi password (CVE-2017-9417).

Version: 1.1.4-6509-2


(2017-07-04)

Fixed issues

  1. Fixed an issue where percentages might not display correctly in Traffic Monitor.
  2. Fixed an issue where the Default Policy in Parental Control might not work properly after system reboot.
  3. Fixed an issue where 6in4 might not work properly after having been enabled for a certain period of time.
  4. Fixed a compatibility issue for Huawei E3372h-153.
  5. Minor bug fixes.

CVE Security Updates

  1. Fixed a security vulnerability regarding Linux Kernel (CVE-2017-8890).

Version: 1.1.4-6509-1


(2017-06-06)

What's new

  1. You can now enable/disable SIP option.

Fixed issues

  1. Enhanced the security of Website History in Traffic Monitor.
  2. Enhanced the security of Traffic Report.
  3. Enhanced the security of SRM to prevent unauthorized access to certain files.
  4. Improved port forwarding performance on RT2600ac.
  5. Fixed an issue where PPPoE relay might not work properly through wireless connection.
  6. Fixed an issue where Parental Control might not display properly.
  7. Fixed an issue where Web-filter might not work properly when IPv6 service is enabled.
  8. Fixed an issue where the previous Web-filter profile setting might be cleared when any other profiles are set up.
  9. Fixed an issue where Traffic Control on RT2600ac might not work properly when IPTV and VoIP are enabled.
  10. Fixed an issue where certain content in Traffic Report might not display properly.
  11. Fixed an issue where the Internet Allowed Time function in Parental Control might not work properly after Synology Router reboots.
  12. Fixed an issue where Traffic Monitor might not work properly.

CVE Security Updates

  1. Fixed a security vulnerability regarding Samba (CVE-2017-7494).

Version: 1.1.4-6509


(2017-04-27)

Compatibility and Installation

  1. Changed VPN implementation from Openswan to Libreswan.

What's new

  1. You can now determine to enable/disable MU-MIMO (RT2600ac only).
  2. Added support for Wireless Repeater mode (RT2600ac only).
  3. Added support for Website History in Traffic Monitor.
  4. You can now customize DNS server address in Guest Network.
  5. Upgraded DPI signature
  6. Added support for Bing and Youtube in SafeSearch.
  7. Added support for USB tethering from Android device.
  8. System Information is now available in Control Panel.
  9. You can now customize web-filter block page.
  10. Added support for more 3G/LTE dongles.
  11. Signal and cell site information is now available in 3G/LTE.
  12. You can now edit default policy in Parental Control.
  13. You can now set up Reboot Schedule.
  14. You can now customize login page.

Fixed issues

  1. Fixed an issue where 2.4GHz Wi-Fi might fail to keep its bandwidth on 40 MHz.
  2. Fixed an issue where Wi-Fi might not work on the correct channel in certain countries/regions.
  3. Fixed an issue where Wi-Fi password in hexadecimal format might fail to be saved in WPA/WPA2 mode.
  4. Fixed an issue where an abnormal amount of unknown domains and countries might display in Traffic Report.
  5. Fixed an issue where SRM might fail to access Internet when LAN and the Secondary WAN use the same subnet.
  6. Fixed an issue where the performance might be affected when some LAN ports are connecting to 100Mbps devices.
  7. Fixed an issue where the secondary WAN interface might display as disabled when OpenVPN connection is used.
  8. Fixed an issue where IPTV service might fail to work through certain ISP.
  9. Fixed an issue where SMB service might fail to work properly.
  10. Fixed an issue where drag-and-drop might fail to function properly with Firefox 52.
  11. Fixed an issue where the primary WAN interface might fail to work properly when VPN connection is enabled.
  12. Fixed an issue where the default gateway might not be updated when a DHCP client has not received DNS information.
  13. Fixed an issue where IPv6 connection might fail to be established.
  14. Fixed an issue where the NAS device under Synology Router might fail to use QuickConnect to connect to IPv6 network through 6to4 tunnel.
  15. Fixed an issue where Interface Check might fail to send PING packets.
  16. Fixed an issue where devices on LAN might fail to connect via PPPoE when PPPoE Relay is enabled on Synology Router.
  17. Fixed an issue where SafeSearch might fail to work on Windows 10.

Known Issues and Limitations

  1. VPN Plus Server must be updated to version 1.1.0 or above to be compatible with SRM 1.1.4.
  2. Wireless Repeater Mode will be changed to Bridge Mode when the configuration is restored to a Synology Router running SRM earlier than version 1.1.4.
  3. Additional client device will display on the parental router of a wireless repeater.
  4. Client devices which are wirelessly connected to the repeater will display as wired ones on the parental router.

CVE Security Updates

  1. Fixed multiple security vulnerabilities regarding TCPDump (CVE-2016-7922, CVE-2016-7923, CVE-2016-7924, CVE-2016-7925, CVE-2016-7926, CVE-2016-7927, CVE-2016-7928, CVE-2016-7929, CVE-2016-7930, CVE-2016-7931, CVE-2016-7932, CVE-2016-7933, CVE-2016-7934, CVE-2016-7935, CVE-2016-7936, CVE-2016-7937, CVE-2016-7938, CVE-2016-7939, CVE-2016-7940, CVE-2016-7973, CVE-2016-7974, CVE-2016-7975, CVE-2016-7983, CVE-2016-7984, CVE-2016-7985, CVE-2016-7986, CVE-2016-7992, CVE-2016-7993, CVE-2016-8574, CVE-2016-8575, CVE-2017-5202, CVE-2017-5203, CVE-2017-5204, CVE-2017-5205, CVE-2017-5341, CVE-2017-5342, CVE-2017-5482, CVE-2017-5483, CVE-2017-5484, CVE-2017-5485,CVE-2017-5486)
  2. Fixed multiple security vulnerabilities regarding Linux Kernel (CVE-2017-2636, CVE-2017-6348, CVE-2017-6345, CVE-2017-6353, CVE-2017-6214, CVE-2016-7910, CVE-2016-7911, CVE-2017-6074, CVE-2017-5986, CVE-2016-10208, CVE-2016-10088).
  3. Fixed multiple security vulnerabilities regarding Imagemagick (CVE-2016-10144, CVE-2016-10145, CVE-2017-5506, CVE-2017-5507, CVE-2017-5508, CVE-2016-10146, CVE-2017-5509, CVE-2017-5510, CVE-2017-5511)
  4. Fixed multiple security vulnerabilities regarding FFmpeg (CVE-2017-5024, CVE-2017-5025, CVE-2016-10190, CVE-2016-10191, CVE-2016-10192).
  5. Fixed multiple security vulnerabilities regarding OpenSSL (CVE-2017-3731, CVE-2017-3732, CVE-2016-7055).
  6. Fixed multiple security vulnerabilities regarding XML (CVE-2016-4658, CVE-2016-5131).
  7. Fixed a security vulnerability regarding Glibc (CVE-2015-8982).
  8. Fixed a security vulnerability regarding cURL (CVE-2016-9586)
  9. Fixed a security vulnerability regarding PHPMailer (CVE-2016-10033)
  10. Fixed a security vulnerability regarding PNG (CVE-2016-10087)
  11. Fixed a security vulnerability regarding Linux system daemon (CVE-2016-10156)

Version: 1.1.3-6447-4


(2017-03-15)
  1. Fixed a security vulnerability regarding Linux Kernel (CVE-2017-2636).

  2. Fixed an issue where SRM UI might fail to display.

  3. Fixed an issue where certain devices might not display in Status page during data transfer.

  4. Fixed an issue where Traffic Control might display devices with wrong MAC or IP addresses.

  5. Fixed an issue where SRM might fail to work properly when Smart WAN is enabled.

  6. Fixed an issue where Interface Check in Smart WAN might fail to work properly.

  7. Fixed an issue where DHCP server might fail to assign IP addresses to devices having switched to another Wi-Fi band.

  8. Fixed an issue where SRM might fail to work properly when IPTV is enabled.

  9. Fixed an issue where SRM might display two shared folders when SD card is renamed.

Version: 1.1.3-6447-3


(2017-02-14)
  1. Fixed an issue where users might fail to access Internet via PPPoE from certain ISPs in Japan.

  2. Fixed an issue where SRM might fail to acquire DHCP IP addresses from certain ISPs in Canada.

  3. Fixed an issue where real-time traffic might fail to display properly on Task Bar and Status page.

  4. Fixed an issue where IPTV might fail to play smoothly.

  5. Fixed an issue where RT2600ac might deliver lower performance when the Secondary WAN Interface is connected to a 10/100 switch.

  6. Fixed an issue where the secondary interface of Smart WAN might fail to display properly when connected to the ISP via LTE dongle.

  7. Fixed an issue where more than one unknown items might display in the Traffic Report.

Version: 1.1.3-6447-1


(2017-01-18)
  1. Fixed a security vulnerability regarding PHPMailer (CVE-2017-5223).

  2. Fixed an issue where IPv6 might restart services unexpectedly.

  3. Fixed an issue where ICMP traffic might display abnormally in Traffic Monitor.

  4. Fixed an issue where RT2600ac might fail to access Internet.

Version: 1.1.3-6447


(2017-01-12)

Compatibility and Installation

  1. VPN Server must be updated to version 1.3-2496 to be compatible with SRM 1.1.3

What’s New

  1. Upgraded the database for GeoIP.

  2. Added drop-down menu to Interface Check in Smart Wan for enabling/disabling default gateway health checks.

  3. Wi-Fi supports FCC DFS Channel.

Fixed issues

  1. Fixed a security vulnerability regarding Linux kernel (CVE-2016-7117). 

  2. Fixed an issue where IPTV service might fail to set up on first installation.

  3. Fixed an issue where Synology Router might hang when a connected LT2P client is removed.

  4. Fixed an issue where L2TP client and server might automatically restart service.

  5. Fixed an issue where devices with High Priority will occupy all bandwidth in Traffic Control.

  6. Fixed an issue where real-time traffic might fail to display when IPTV is enabled.

  7. Fixed an issue where firewall rules might be erased when Log Center is disabled.

  8. Fixed an issue where banned devices might be removed when Traffic Monitor is disabled.

  9. Fixed an issue where Traffic Monitor might fail to display real-time traffic when multiple devices are connected.

  10. Minor bug fixes.

Version: 1.1.2-6425-2


(2016-12-21)
  1. Fixed multiple security vulnerabilities regarding NTP service (CVE-2016-7426, CVE-2016-7427, CVE-2016-7428, CVE-2016-7429, CVE-2016-7431, CVE-2016-7433, CVE-2016-7434, CVE-2016-9310, CVE-2016-9311, CVE-2016-9312).

  2. Fixed a security vulnerability regarding Linux kernel (CVE-2016-8655).

  3. Fixed a security vulnerability regarding ImageMagick (CVE-2016-8707).

  4. Fixed an issue where IPv6 might fail to acquire IP addresses when switched from manual IP to auto IP.

  5. Fixed an issue where the search function in Download Station might crash.

  6. Fixed an issue where LAN1 connection might fail when WAN and LAN1 are connected to the Internet via PPPoE simultaneously.

Version: 1.1.2-6425-1


(2016-11-15)
  1. Fixed multiple security vulnerabilities regarding cURL (CVE-2016-8615, CVE-2016-8616, CVE-2016-8617, CVE-2016-8618, CVE-2016-8619, CVE-2016-8620, CVE-2016-8621, CVE-2016-8622, CVE-2016-8623, CVE-2016-8624, CVE-2016-8625).

  2. Fixed an issue where SRM might fail to access the Internet after normal boot up.

  3. Fixed an issue where the Firewall page might remain loading in certain condition.

  4. Fixed an issue where PPPoE will not retry if it failed to connect after rebooting Synology Router.

  5. Fixed an issue where PPPoE might fail to access the Internet through certain ISPs in Japan.

  6. Fixed an issue where IPTV might fail to work when IGMP Proxy is enabled.

  7. Minor bug fixes.

Version: 1.1.2-6425


(2016-10-27)
  1. Supports the VPN Plus package.

  2. Upgraded the database for GeoIP and URL blocker.

  3. Fixed an issue where IP addresses cannot be assigned via DHCPv6 if WAN IP has been manually configured.

  4. Fixed an issue where the status appears as disconnected when DHCPv6-PD is selected.

  5. Fixed an issue where prefix item is mandatory in IPv6 6to4 when swtiched from IPv6 6in4.

  6. Fixed a security vulnerability regarding COW breakage in Linux kernal (CVE-2016-5195)

  7. Minor bug fixes.

Version: 1.1.1-6414-1


(2016-10-13)
  1. Fixed multiple security vulnerabilities regarding OpenSSL (CVE-2016-6304, CVE-2016-2183, CVE-2016-6303, CVE-2016-6302, CVE-2016-2182, CVE-2016-2180, CVE-2016-2177, CVE-2016-2178, CVE-2016-2179, CVE-2016-2181, CVE-2016-6306).

  2. Fixed multiple security vulnerabilities regarding PostgreSQL (CVE-2016-5423, CVE-2016-5424).

  3. Fixed multiple security vulnerabilities regarding cURL (CVE-2016-5419, CVE-2016-5420, CVE-2016-5421).

  4. Fixed a security vulnerability regarding Nettle (CVE-2016-6489).

  5. Fixed a security vulnerability regarding GnuPG (CVE-2016-6313).

  6. Fixed a security vulnerability regarding OpenSSH (CVE-2016-6515).

  7. Fixed an issue where a failed deletion message might show up when monitor history of Traffic Control was deleted.

  8. Fixed an issue where SRM might fail to access the Internet when the healthy gateway didn’t answer ping requests.

  9. Fixed an issue where Traffic Control might fail when load balancing was enabled.

Version: 1.1.1-6414


(2016-09-29)
  1. Upgrading to SRM 1.1.1 is required for upgrading the following packages to the latest version:

    • Intrusion Prevention

    • Perl

    • Radius Server

    • VPN Server

    • Media Server

    • Download Station

    • DNS Server

  2. Now system-related settings are relocated from the previous “Network Center” to the new “Control Panel” application.

  3. "Storage & Printer” in SRM 1.1 is integrated into “Control Panel” in SRM 1.1.1 for external storage and printer management.

  4. Supports both primary and secondary WAN interfaces to be configured as different PPPoE connections.

  5. Supports Port Forwarding incoming traffics to the subnets if the subnets have been configured to be accessible through static route.

  6. Supports Port Forwarding incoming traffics to VPN subnets.

  7. Supports DFS channels in wireless settings.

  8. Fixed an issue where PPPoE might fail to access Internet through certain ISPs in New Zealand.

  9. Fixed an issue where SRM might fail to acquire DHCP IP addresses from certain ISPs in the United States and Croatia.

  10. Fixed an issue where manually set IPv6 address might be erased after reboot.

  11. Minor bugs fixed.

Version: 1.1-6338-2


(2016-08-25)
  1. Enhanced the security of Linux kernel (CVE-2016-5696).
  2. Fixed an issue where certain routing function might fail to work on PPPoE connections when Smart WAN is enabled.
  3. Fixed an issue where domain name settings in DHCP Server might be erased after system reboot.
  4. Fixed an issue where default gateway might be disabled after system reboot/upgrade.
  5. Fixed an issue where guaranteed bandwidth in Traffic Control might fail to work properly when maximum bandwidth is not set.

Version: 1.1-6338-1


(2016-07-26)
  1. Enhanced the security of UPnP-related applications (CVE-2016-6255: libupnp).
  2. Fixed an issue where settings in Network Center > Security > Service might be incorrectly displayed after adding certain firewall rules.
  3. Fixed an issue where PPPoE connection might fail after the upgrade.
  4. Fixed an issue where switching the Internet connection type from Auto to Manual might fail.
  5. Fixed an issue where SRM might fail to acquire DHCP IP addresses from certain ISPs in the United States.

Version: 1.1-6338


(2016-07-19)

Before Starting

  1. The DDNS of 3322.org will be removed in SRM 1.1 due to unclarified domain usage violation. Please refer to http://www.pubyun.com/p/notice/ for details.

What’s New in SRM 1.1

  1. Traffic Report

    • Generates reports for applications and devices on a weekly/monthly/annual basis, letting users monitor network traffic efficiently anytime and anywhere.

    • Summarizes network traffic information for analyzing if certain devices/applications are consuming too much bandwidth, and for investigating security concerns.

    • You can also set up a schedule to receive reports via email regularly.

    • Generates traffic reports and provides history overview instantly.

    • Supports exporting reports in CSV format.

  2. Smart Connect

    • Automatic frequency band selection for your device according to its surrounding environment.

    • Advanced mechanism for band selection based on customized criteria.

  3. Smart WAN

    • Ensures continuous network services in the event of Internet connection failure with automatic failover.

    • Provides Internet connection via two network interfaces with load balancing, which can spread traffic across both interfaces according to customizable settings.

    • Provides policy route to allow you to distribute traffic by source/destination address to specific interfaces.

  4. Parental Control

    • Integrated with Google SafeSearch to easily block thousands of inappropriate sites related to violence or sex.

    • Multiple profiles can be created for the Custom web-filter in order to block different sets of inappropriate sites.

  5. Firewall

    • Overall IPv4 and IPv6 security enhancements for both Synology Router and its subordinate LAN/Wi-Fi devices to prevent malicious traffic from the Internet.

    • Hit times of each rule will be logged for security investigation.

    • Supports setting up rules for both TCP and UDP connection at once.

    • Added the Service page for secure and easy management of Internet access to all SRM applications.

  6. Others in Network Center

    • Internet

      • Supports secondary WAN interface.

      • Added options of frequently used services (e.g. FTP and HTTP) in Port Forwarding.

      • Updated DDNS provider list:

        1. Google

        2. Variomedia

        3. CloudNS

        4. DNSEXIT

        5. Joker.com

        6. DNS-O-MATIC (Additional purchase required)

        7. DNSPod.cn

        8. ChangeIP

    • Local Network

      • Supports creating a domain name for SRM and the subordinate devices.

      • Supports IGMP Proxy.

    • Traffic Control

      • Removing the settings of devices in Traffic Control will not affect the settings in Parental Control now.

      • You can now edit multiple devices at the same time.

      • Added support for erasing traffic statistics.

      • Added packet counts for traffic statistics.

      • Added the "Application categories" option for viewing traffic statistics.

      • Provides up to 1-year long traffic statistics.

  7. Log Center

    • Added the "Network" option for log classification.
  8. Customized Wallpaper

    • You can now customize your desktop wallpaper.

What’s New in Packages & Utilities

  1. Intrusion Prevention

    • Works as an intrusion detection system (IDS) when the "Detect malicious packets" option is enabled, and analyzes traffic and detects network intrusion to enhance security.

    • Works as an intrusion prevention system (IPS) when both of the "Detect malicious packets" and the "Drop detected malicious packets" options are enabled, and inspects network packets for proactive protection against suspicious traffic.

    • Provides graphical statistics and analysis of malicious packets.

    • Supports packet detection/prevention for multiple network interfaces at the same time.

    • Loaded with rule sets for comprehensive protection and applies the corresponding Alert/Drop action for detected packets.

    • Supports updating the ruleset database.

  2. Cloud Station Server

    • Automatically synchronizes files between your Windows, Mac, Linux computers (Cloud Station Drive), iOS and Android mobile devices (DS cloud).

    • Offers backup service for Windows, Mac, Linux computers running Cloud Station Backup.

    • Keeps up to 32 historical versions of files with incremental data.

    • Respects ACL and Linux permissions.

  3. Cloud Station Drive

    • An application which sync files between your computers and Synology Router via the Internet, so that your data and documents are always up-to-date and stay beside you. Even without an Internet connection, you can still view or edit your files within the specific folder offline, and all the changes will be automatically synced to your Synology Router and other computers when the Internet connection is restored.

    • Supports installers for different operation systems:

      1. Windows XP and onward

      2. Mac OS X 10.7 and onward

      3. Ubuntu or Fedora (officially supported versions)

  4. Cloud Station Backup

    • A backup service that backs up files from multiple client computers to your Synology Router.

    • Supports installers for different operation systems:

      1. Windows XP and onward

      2. Mac OS X 10.7 and onward

      3. Ubuntu or Fedora (officially supported versions)

What’s New in Mobile Apps

  1. DS router for iPhone/iPad/Android

    • The feature for wireless signaling:

      1. iOS: You can now check the link rate between your device and the Synology Router anywhere when connected through Wi-Fi.

      2. Android: You can now check the signal strength/link rate between your device and the Synology Router anywhere when connected through Wi-Fi.

    • Supports remotely rebooting the Synology Router.

    • Supports multiple profiles for the custom web-filter.

    • Supports Google SafeSearch.

    • Supports setting up TCP/UDP port forwarding at the same time.

    • Supports setting up the source port and the destination port in one firewall rule.

    • Supports firewall to block/allow IPv4 and IPv6 traffic from WAN to Synology Router and to the subordinate LAN/Wi-Fi devices.

    • Supports Wi-Fi Smart Connect.

  2. DS cloud for iPhone/iPad/Android

    • DS cloud is the counterpart to Cloud Station for your mobile devices. It allows you to choose the folders on your Synology Router which you want to sync to your mobile devices and make available for offline viewing anywhere you go. DS cloud also gives you total control over the sync criteria: for each folder, you can set the maximum file size as well as the type of files you wish to sync.

Known Issues & Limitations

  1. SRM

    • Primary and secondary interfaces cannot be both set to PPPoE connections simultaneously.

    • Only the primary interface can be set as a VPN client.

    • When the secondary interface (LAN 1) is set as the default gateway for Internet access, the IPTV & VoIP settings will still only act on the primary interface (WAN).

  2. DS router

    • DS router must be upgraded to the latest version to be compatible with SRM 1.1:

      1. iOS: v1.1.1

      2. Android: v1.1.1

    • iOS 7 or earlier is not supported from DS router 1.1 or onward.

    • Android 4.0.4 or earlier is not supported from DS router 1.1 or onward.

  3. Intrusion Prevention

    • Running this package will demand CPU resources and system memory; the IPS (intrusion prevention system) mode will lower the maximum transmission rate.

    • The secondary interface (at Network Center > Internet > Connection) is not yet supported.

    • Wireless bridge mode and wireless client mode are not yet supported.

  4. Cloud Station Server

    • Cloud Station Server on SRM only supports external hard drives, USB drives, or SD cards formatted in ext4 with storage capacity larger than 4GB.

    • Shared folder syncing is not supported; that is, a Cloud Station ShareSync client cannot be paired with a Cloud Station Server on SRM.

    • Database location settings are not changeable.

  5. VPN Server

    • VPN Server must be updated to be compatible with SRM 1.1.

    • VPN Server may fail to create connection when the secondary interface (at Network Center > Internet > Connection) is enabled.

Version: 1.1.5-6542-4


(2017-11-15)
  1. Fixed a security vulnerability regarding File Station.

  2. Fixed an issue where Site-to-Site VPN might not work properly.

  3. Fixed an issue where SRM might fail to get IP address from DHCP server upon startup.

  4. Fixed an issue where firewall rules might not display properly after an SRM update.

  5. Minor bug fixes.

Version: 1.1.5-6542-3


(2017-10-17)
  1. Fixed multiple security vulnerabilities regarding WPA/WPA2 protocols for wireless connections (CVE-2017-13077, CVE-2017-13078, CVE-2017-13079, CVE-2017-13080, CVE-2017-13081, CVE-2017-13082, CVE-2017-13084, CVE-2017-13086, CVE-2017-13087, CVE-2017-13088).

  2. Fixed multiple security vulnerabilities regarding Broadcom Wi-Fi chip (CVE-2017-11120, CVE-2017-11121).

  3. Fixed an issue where the channel 140 could not be selected in 20MHz on RT1900ac.

  4. Fixed an issue where the password might not be masked properly upon login failure.

Version: 1.1.5-6542-2


(2017-10-04)
  1. Fixed multiple security vulnerabilities regarding DNSmasq (CVE-2017-13704, CVE-2017-14491, CVE-2017-14495, CVE-2017-14496).

  2. Fixed multiple security vulnerabilities regarding DHCPv6 Server (CVE-2017-14492, CVE-2017-14493, CVE-2017-14494).

  3. Fixed a security vulnerabilities regarding Linux kernel (CVE-2017-1000253).

  4. Fixed an issue where the default gateway might not be updated when DHCP-PD is not supported by the ISP.

Version: 1.1.5-6542-1


(2017-09-30)
  1. Enhanced Wi-Fi stability by adjusting related parameters.

Version: 1.1.5-6542


(2017-09-30)

What's New

  1. Added mask for the shared secret for WPA/WPA2-Enterprise setup.
  2. Added support for Site-to-Site VPN official version with performance enhancement.

Fixed Issues

  1. Fixed an issue where port forwarding might not work properly when the load balancing and failover functions of Smart WAN are both enabled.
  2. Fixed an issue where the system might fail to access the Internet via PPPoE from certain ISPs in Japan.
  3. Fixed an issue where client devices might fail to wirelessly connect to RT1900ac.
  4. Fixed an issue where IPv6 might be abnormally enabled under a PPPoE connection.
  5. Fixed an issue where the Wireless page might not work properly when Synology Router is switched to a country/region where 160MHz is not supported.
  6. Fixed an issue where the Internet connection might be down upon removal of Ethernet cable from LAN 1 when failover function of Smart WAN is enabled.
  7. Fixed an issue where the system might not stop PPTP connection properly.
  8. Fixed an issue where the system might not access the Internet properly after successfully establishing an L2TP connection.
  9. Fixed an issue where Firewall might not work properly.
  10. Fixed an issue where Customized Policies in Parental Control might not work properly.
  11. Minor bug fixes.

CVE Security Updates

  1. Fixed a security vulnerability regarding DNS (CVE-2017-12132).
  2. Fixed multiple security vulnerabilities regarding Linux Kernel (CVE-2017-1000364, CVE-2017-1000365, CVE-2017-1000370, CVE-2017-1000371).

Version: 1.1.4-6509-4


(2017-08-24)
  1. Added support for static IP setup in PPPoE connections.

  2. Fixed an issue where a certificate error message may display when Web Filter is enabled.

  3. Fixed an issue where the clients connected to Guest Network may access the primary network when Synology Router is under Wireless AP Mode.

  4. Fixed the issue where OpenVPN might not work properly after the import of profile.

  5. Fixed an issue where the user interface of SRM might not be operated properly when DHCP server has obtained an invalid IPv6 DNS server address.

  6. Fixed an issue where IPTV might not work properly.

  7. Fixed an issue where the clients connected to Guest Network might not access the Internet properly when Default Policy is enabled along with Web Filter and/or SafeSearch in Parental Control.

Version: 1.1.4-6509-3


(2017-07-20)

Fixed issues

  1. Fixed an issue where Synology Router might fail to acquire IP addresses from other routers.

CVE Security Updates

  1. Fixed multiple security vulnerabilities regarding SRM login page (CVE-2017-9553, CVE-2017-9554).
  2. Fixed a security vulnerability regarding Samba (CVE-2017-11103).
  3. Fixed a security vulnerability regarding Broadcom Wi-Fi password (CVE-2017-9417).

Version: 1.1.4-6509-2


(2017-07-04)

Fixed issues

  1. Fixed an issue where percentages might not display correctly in Traffic Monitor.
  2. Fixed an issue where the Default Policy in Parental Control might not work properly after system reboot.
  3. Fixed an issue where 6in4 might not work properly after having been enabled for a certain period of time.
  4. Fixed a compatibility issue for Huawei E3372h-153.
  5. Minor bug fixes.

CVE Security Updates

  1. Fixed a security vulnerability regarding Linux Kernel (CVE-2017-8890).

Version: 1.1.4-6509-1


(2017-06-06)

What's new

  1. You can now enable/disable SIP option.

Fixed issues

  1. Enhanced the security of Website History in Traffic Monitor.
  2. Enhanced the security of Traffic Report.
  3. Enhanced the security of SRM to prevent unauthorized access to certain files.
  4. Improved port forwarding performance on RT2600ac.
  5. Fixed an issue where PPPoE relay might not work properly through wireless connection.
  6. Fixed an issue where Parental Control might not display properly.
  7. Fixed an issue where Web-filter might not work properly when IPv6 service is enabled.
  8. Fixed an issue where the previous Web-filter profile setting might be cleared when any other profiles are set up.
  9. Fixed an issue where Traffic Control on RT2600ac might not work properly when IPTV and VoIP are enabled.
  10. Fixed an issue where certain content in Traffic Report might not display properly.
  11. Fixed an issue where the Internet Allowed Time function in Parental Control might not work properly after Synology Router reboots.
  12. Fixed an issue where Traffic Monitor might not work properly.

CVE Security Updates

  1. Fixed a security vulnerability regarding Samba (CVE-2017-7494).

Version: 1.1.4-6509


(2017-04-27)

Compatibility and Installation

  1. Changed VPN implementation from Openswan to Libreswan.

What's new

  1. You can now determine to enable/disable MU-MIMO (RT2600ac only).
  2. Added support for Wireless Repeater mode (RT2600ac only).
  3. Added support for Website History in Traffic Monitor.
  4. You can now customize DNS server address in Guest Network.
  5. Upgraded DPI signature
  6. Added support for Bing and Youtube in SafeSearch.
  7. Added support for USB tethering from Android device.
  8. System Information is now available in Control Panel.
  9. You can now customize web-filter block page.
  10. Added support for more 3G/LTE dongles.
  11. Signal and cell site information is now available in 3G/LTE.
  12. You can now edit default policy in Parental Control.
  13. You can now set up Reboot Schedule.
  14. You can now customize login page.

Fixed issues

  1. Fixed an issue where 2.4GHz Wi-Fi might fail to keep its bandwidth on 40 MHz.
  2. Fixed an issue where Wi-Fi might not work on the correct channel in certain countries/regions.
  3. Fixed an issue where Wi-Fi password in hexadecimal format might fail to be saved in WPA/WPA2 mode.
  4. Fixed an issue where an abnormal amount of unknown domains and countries might display in Traffic Report.
  5. Fixed an issue where SRM might fail to access Internet when LAN and the Secondary WAN use the same subnet.
  6. Fixed an issue where the performance might be affected when some LAN ports are connecting to 100Mbps devices.
  7. Fixed an issue where the secondary WAN interface might display as disabled when OpenVPN connection is used.
  8. Fixed an issue where IPTV service might fail to work through certain ISP.
  9. Fixed an issue where SMB service might fail to work properly.
  10. Fixed an issue where drag-and-drop might fail to function properly with Firefox 52.
  11. Fixed an issue where the primary WAN interface might fail to work properly when VPN connection is enabled.
  12. Fixed an issue where the default gateway might not be updated when a DHCP client has not received DNS information.
  13. Fixed an issue where IPv6 connection might fail to be established.
  14. Fixed an issue where the NAS device under Synology Router might fail to use QuickConnect to connect to IPv6 network through 6to4 tunnel.
  15. Fixed an issue where Interface Check might fail to send PING packets.
  16. Fixed an issue where devices on LAN might fail to connect via PPPoE when PPPoE Relay is enabled on Synology Router.
  17. Fixed an issue where SafeSearch might fail to work on Windows 10.

Known Issues and Limitations

  1. VPN Plus Server must be updated to version 1.1.0 or above to be compatible with SRM 1.1.4.
  2. Wireless Repeater Mode will be changed to Bridge Mode when the configuration is restored to a Synology Router running SRM earlier than version 1.1.4.
  3. Additional client device will display on the parental router of a wireless repeater.
  4. Client devices which are wirelessly connected to the repeater will display as wired ones on the parental router.

CVE Security Updates

  1. Fixed multiple security vulnerabilities regarding TCPDump (CVE-2016-7922, CVE-2016-7923, CVE-2016-7924, CVE-2016-7925, CVE-2016-7926, CVE-2016-7927, CVE-2016-7928, CVE-2016-7929, CVE-2016-7930, CVE-2016-7931, CVE-2016-7932, CVE-2016-7933, CVE-2016-7934, CVE-2016-7935, CVE-2016-7936, CVE-2016-7937, CVE-2016-7938, CVE-2016-7939, CVE-2016-7940, CVE-2016-7973, CVE-2016-7974, CVE-2016-7975, CVE-2016-7983, CVE-2016-7984, CVE-2016-7985, CVE-2016-7986, CVE-2016-7992, CVE-2016-7993, CVE-2016-8574, CVE-2016-8575, CVE-2017-5202, CVE-2017-5203, CVE-2017-5204, CVE-2017-5205, CVE-2017-5341, CVE-2017-5342, CVE-2017-5482, CVE-2017-5483, CVE-2017-5484, CVE-2017-5485,CVE-2017-5486)
  2. Fixed multiple security vulnerabilities regarding Linux Kernel (CVE-2017-2636, CVE-2017-6348, CVE-2017-6345, CVE-2017-6353, CVE-2017-6214, CVE-2016-7910, CVE-2016-7911, CVE-2017-6074, CVE-2017-5986, CVE-2016-10208, CVE-2016-10088).
  3. Fixed multiple security vulnerabilities regarding Imagemagick (CVE-2016-10144, CVE-2016-10145, CVE-2017-5506, CVE-2017-5507, CVE-2017-5508, CVE-2016-10146, CVE-2017-5509, CVE-2017-5510, CVE-2017-5511)
  4. Fixed multiple security vulnerabilities regarding FFmpeg (CVE-2017-5024, CVE-2017-5025, CVE-2016-10190, CVE-2016-10191, CVE-2016-10192).
  5. Fixed multiple security vulnerabilities regarding OpenSSL (CVE-2017-3731, CVE-2017-3732, CVE-2016-7055).
  6. Fixed multiple security vulnerabilities regarding XML (CVE-2016-4658, CVE-2016-5131).
  7. Fixed a security vulnerability regarding Glibc (CVE-2015-8982).
  8. Fixed a security vulnerability regarding cURL (CVE-2016-9586)
  9. Fixed a security vulnerability regarding PHPMailer (CVE-2016-10033)
  10. Fixed a security vulnerability regarding PNG (CVE-2016-10087)
  11. Fixed a security vulnerability regarding Linux system daemon (CVE-2016-10156)

Version: 1.1.3-6447-4


(2017-03-15)
  1. Fixed a security vulnerability regarding Linux Kernel (CVE-2017-2636).

  2. Fixed an issue where SRM UI might fail to display.

  3. Fixed an issue where certain devices might not display in Status page during data transfer.

  4. Fixed an issue where Traffic Control might display devices with wrong MAC or IP addresses.

  5. Fixed an issue where SRM might fail to work properly when Smart WAN is enabled.

  6. Fixed an issue where Interface Check in Smart WAN might fail to work properly.

  7. Fixed an issue where DHCP server might fail to assign IP addresses to devices having switched to another Wi-Fi band.

  8. Fixed an issue where SRM might fail to work properly when IPTV is enabled.

  9. Fixed an issue where SRM might display two shared folders when SD card is renamed.

Version: 1.1.3-6447-3


(2017-02-14)
  1. Fixed an issue where users might fail to access Internet via PPPoE from certain ISPs in Japan.

  2. Fixed an issue where SRM might fail to acquire DHCP IP addresses from certain ISPs in Canada.

  3. Fixed an issue where real-time traffic might fail to display properly on Task Bar and Status page.

  4. Fixed an issue where IPTV might fail to play smoothly.

  5. Fixed an issue where RT2600ac might deliver lower performance when the Secondary WAN Interface is connected to a 10/100 switch.

  6. Fixed an issue where the secondary interface of Smart WAN might fail to display properly when connected to the ISP via LTE dongle.

  7. Fixed an issue where more than one unknown items might display in the Traffic Report.

Version: 1.1.3-6447-1


(2017-01-18)
  1. Fixed a security vulnerability regarding PHPMailer (CVE-2017-5223).

  2. Fixed an issue where IPv6 might restart services unexpectedly.

  3. Fixed an issue where ICMP traffic might display abnormally in Traffic Monitor.

  4. Fixed an issue where RT2600ac might fail to access Internet.

Version: 1.1.3-6447


(2017-01-12)

Compatibility and Installation

  1. VPN Server must be updated to version 1.3-2496 to be compatible with SRM 1.1.3

What’s New

  1. Upgraded the database for GeoIP.

  2. Added drop-down menu to Interface Check in Smart Wan for enabling/disabling default gateway health checks.

  3. Wi-Fi supports FCC DFS Channel.

Fixed issues

  1. Fixed a security vulnerability regarding Linux kernel (CVE-2016-7117). 

  2. Fixed an issue where IPTV service might fail to set up on first installation.

  3. Fixed an issue where Synology Router might hang when a connected LT2P client is removed.

  4. Fixed an issue where L2TP client and server might automatically restart service.

  5. Fixed an issue where devices with High Priority will occupy all bandwidth in Traffic Control.

  6. Fixed an issue where real-time traffic might fail to display when IPTV is enabled.

  7. Fixed an issue where firewall rules might be erased when Log Center is disabled.

  8. Fixed an issue where banned devices might be removed when Traffic Monitor is disabled.

  9. Fixed an issue where Traffic Monitor might fail to display real-time traffic when multiple devices are connected.

  10. Minor bug fixes.

Version: 1.1.2-6425-2


(2016-12-21)
  1. Fixed multiple security vulnerabilities regarding NTP service (CVE-2016-7426, CVE-2016-7427, CVE-2016-7428, CVE-2016-7429, CVE-2016-7431, CVE-2016-7433, CVE-2016-7434, CVE-2016-9310, CVE-2016-9311, CVE-2016-9312).

  2. Fixed a security vulnerability regarding Linux kernel (CVE-2016-8655).

  3. Fixed a security vulnerability regarding ImageMagick (CVE-2016-8707).

  4. Fixed an issue where IPv6 might fail to acquire IP addresses when switched from manual IP to auto IP.

  5. Fixed an issue where the search function in Download Station might crash.

  6. Fixed an issue where LAN1 connection might fail when WAN and LAN1 are connected to the Internet via PPPoE simultaneously.

Version: 1.1.2-6425-1


(2016-11-15)
  1. Fixed multiple security vulnerabilities regarding cURL (CVE-2016-8615, CVE-2016-8616, CVE-2016-8617, CVE-2016-8618, CVE-2016-8619, CVE-2016-8620, CVE-2016-8621, CVE-2016-8622, CVE-2016-8623, CVE-2016-8624, CVE-2016-8625).

  2. Fixed an issue where SRM might fail to access the Internet after normal boot up.

  3. Fixed an issue where the Firewall page might remain loading in certain condition.

  4. Fixed an issue where PPPoE will not retry if it failed to connect after rebooting Synology Router.

  5. Fixed an issue where PPPoE might fail to access the Internet through certain ISPs in Japan.

  6. Fixed an issue where IPTV might fail to work when IGMP Proxy is enabled.

  7. Minor bug fixes.

Version: 1.1.2-6425


(2016-10-27)
  1. Supports the VPN Plus package.

  2. Upgraded the database for GeoIP and URL blocker.

  3. Fixed an issue where IP addresses cannot be assigned via DHCPv6 if WAN IP has been manually configured.

  4. Fixed an issue where the status appears as disconnected when DHCPv6-PD is selected.

  5. Fixed an issue where prefix item is mandatory in IPv6 6to4 when swtiched from IPv6 6in4.

  6. Fixed a security vulnerability regarding COW breakage in Linux kernal (CVE-2016-5195)

  7. Minor bug fixes.

Version: 1.1.1-6414-1


(2016-10-13)
  1. Fixed multiple security vulnerabilities regarding OpenSSL (CVE-2016-6304, CVE-2016-2183, CVE-2016-6303, CVE-2016-6302, CVE-2016-2182, CVE-2016-2180, CVE-2016-2177, CVE-2016-2178, CVE-2016-2179, CVE-2016-2181, CVE-2016-6306).

  2. Fixed multiple security vulnerabilities regarding PostgreSQL (CVE-2016-5423, CVE-2016-5424).

  3. Fixed multiple security vulnerabilities regarding cURL (CVE-2016-5419, CVE-2016-5420, CVE-2016-5421).

  4. Fixed a security vulnerability regarding Nettle (CVE-2016-6489).

  5. Fixed a security vulnerability regarding GnuPG (CVE-2016-6313).

  6. Fixed a security vulnerability regarding OpenSSH (CVE-2016-6515).

  7. Fixed an issue where a failed deletion message might show up when monitor history of Traffic Control was deleted.

  8. Fixed an issue where SRM might fail to access the Internet when the healthy gateway didn’t answer ping requests.

  9. Fixed an issue where Traffic Control might fail when load balancing was enabled.

Version: 1.1.1-6414


(2016-09-29)
  1. Upgrading to SRM 1.1.1 is required for upgrading the following packages to the latest version:

    • Intrusion Prevention

    • Perl

    • Radius Server

    • VPN Server

    • Media Server

    • Download Station

    • DNS Server

  2. Now system-related settings are relocated from the previous “Network Center” to the new “Control Panel” application.

  3. "Storage & Printer” in SRM 1.1 is integrated into “Control Panel” in SRM 1.1.1 for external storage and printer management.

  4. Supports both primary and secondary WAN interfaces to be configured as different PPPoE connections.

  5. Supports Port Forwarding incoming traffics to the subnets if the subnets have been configured to be accessible through static route.

  6. Supports Port Forwarding incoming traffics to VPN subnets.

  7. Supports DFS channels in wireless settings.

  8. Fixed an issue where PPPoE might fail to access Internet through certain ISPs in New Zealand.

  9. Fixed an issue where SRM might fail to acquire DHCP IP addresses from certain ISPs in the United States and Croatia.

  10. Fixed an issue where manually set IPv6 address might be erased after reboot.

  11. Minor bugs fixed.

Version: 1.1-6338-2


(2016-08-25)
  1. Enhanced the security of Linux kernel (CVE-2016-5696).
  2. Fixed an issue where certain routing function might fail to work on PPPoE connections when Smart WAN is enabled.
  3. Fixed an issue where domain name settings in DHCP Server might be erased after system reboot.
  4. Fixed an issue where default gateway might be disabled after system reboot/upgrade.
  5. Fixed an issue where guaranteed bandwidth in Traffic Control might fail to work properly when maximum bandwidth is not set.

Version: 1.1-6338-1


(2016-07-26)
  1. Enhanced the security of UPnP-related applications (CVE-2016-6255: libupnp).
  2. Fixed an issue where settings in Network Center > Security > Service might be incorrectly displayed after adding certain firewall rules.
  3. Fixed an issue where PPPoE connection might fail after the upgrade.
  4. Fixed an issue where switching the Internet connection type from Auto to Manual might fail.
  5. Fixed an issue where SRM might fail to acquire DHCP IP addresses from certain ISPs in the United States.

Version: 1.1-6338


(2016-07-19)

Before Starting

  1. The DDNS of 3322.org will be removed in SRM 1.1 due to unclarified domain usage violation. Please refer to http://www.pubyun.com/p/notice/ for details.

What’s New in SRM 1.1

  1. Traffic Report

    • Generates reports for applications and devices on a weekly/monthly/annual basis, letting users monitor network traffic efficiently anytime and anywhere.

    • Summarizes network traffic information for analyzing if certain devices/applications are consuming too much bandwidth, and for investigating security concerns.

    • You can also set up a schedule to receive reports via email regularly.

    • Generates traffic reports and provides history overview instantly.

    • Supports exporting reports in CSV format.

  2. Smart Connect

    • Automatic frequency band selection for your device according to its surrounding environment.

    • Advanced mechanism for band selection based on customized criteria.

  3. Smart WAN

    • Ensures continuous network services in the event of Internet connection failure with automatic failover.

    • Provides Internet connection via two network interfaces with load balancing, which can spread traffic across both interfaces according to customizable settings.

    • Provides policy route to allow you to distribute traffic by source/destination address to specific interfaces.

  4. Parental Control

    • Integrated with Google SafeSearch to easily block thousands of inappropriate sites related to violence or sex.

    • Multiple profiles can be created for the Custom web-filter in order to block different sets of inappropriate sites.

  5. Firewall

    • Overall IPv4 and IPv6 security enhancements for both Synology Router and its subordinate LAN/Wi-Fi devices to prevent malicious traffic from the Internet.

    • Hit times of each rule will be logged for security investigation.

    • Supports setting up rules for both TCP and UDP connection at once.

    • Added the Service page for secure and easy management of Internet access to all SRM applications.

  6. Others in Network Center

    • Internet

      • Supports secondary WAN interface.

      • Added options of frequently used services (e.g. FTP and HTTP) in Port Forwarding.

      • Updated DDNS provider list:

        1. Google

        2. Variomedia

        3. CloudNS

        4. DNSEXIT

        5. Joker.com

        6. DNS-O-MATIC (Additional purchase required)

        7. DNSPod.cn

        8. ChangeIP

    • Local Network

      • Supports creating a domain name for SRM and the subordinate devices.

      • Supports IGMP Proxy.

    • Traffic Control

      • Removing the settings of devices in Traffic Control will not affect the settings in Parental Control now.

      • You can now edit multiple devices at the same time.

      • Added support for erasing traffic statistics.

      • Added packet counts for traffic statistics.

      • Added the "Application categories" option for viewing traffic statistics.

      • Provides up to 1-year long traffic statistics.

  7. Log Center

    • Added the "Network" option for log classification.
  8. Customized Wallpaper

    • You can now customize your desktop wallpaper.

What’s New in Packages & Utilities

  1. Intrusion Prevention

    • Works as an intrusion detection system (IDS) when the "Detect malicious packets" option is enabled, and analyzes traffic and detects network intrusion to enhance security.

    • Works as an intrusion prevention system (IPS) when both of the "Detect malicious packets" and the "Drop detected malicious packets" options are enabled, and inspects network packets for proactive protection against suspicious traffic.

    • Provides graphical statistics and analysis of malicious packets.

    • Supports packet detection/prevention for multiple network interfaces at the same time.

    • Loaded with rule sets for comprehensive protection and applies the corresponding Alert/Drop action for detected packets.

    • Supports updating the ruleset database.

  2. Cloud Station Server

    • Automatically synchronizes files between your Windows, Mac, Linux computers (Cloud Station Drive), iOS and Android mobile devices (DS cloud).

    • Offers backup service for Windows, Mac, Linux computers running Cloud Station Backup.

    • Keeps up to 32 historical versions of files with incremental data.

    • Respects ACL and Linux permissions.

  3. Cloud Station Drive

    • An application which sync files between your computers and Synology Router via the Internet, so that your data and documents are always up-to-date and stay beside you. Even without an Internet connection, you can still view or edit your files within the specific folder offline, and all the changes will be automatically synced to your Synology Router and other computers when the Internet connection is restored.

    • Supports installers for different operation systems:

      1. Windows XP and onward

      2. Mac OS X 10.7 and onward

      3. Ubuntu or Fedora (officially supported versions)

  4. Cloud Station Backup

    • A backup service that backs up files from multiple client computers to your Synology Router.

    • Supports installers for different operation systems:

      1. Windows XP and onward

      2. Mac OS X 10.7 and onward

      3. Ubuntu or Fedora (officially supported versions)

What’s New in Mobile Apps

  1. DS router for iPhone/iPad/Android

    • The feature for wireless signaling:

      1. iOS: You can now check the link rate between your device and the Synology Router anywhere when connected through Wi-Fi.

      2. Android: You can now check the signal strength/link rate between your device and the Synology Router anywhere when connected through Wi-Fi.

    • Supports remotely rebooting the Synology Router.

    • Supports multiple profiles for the custom web-filter.

    • Supports Google SafeSearch.

    • Supports setting up TCP/UDP port forwarding at the same time.

    • Supports setting up the source port and the destination port in one firewall rule.

    • Supports firewall to block/allow IPv4 and IPv6 traffic from WAN to Synology Router and to the subordinate LAN/Wi-Fi devices.

    • Supports Wi-Fi Smart Connect.

  2. DS cloud for iPhone/iPad/Android

    • DS cloud is the counterpart to Cloud Station for your mobile devices. It allows you to choose the folders on your Synology Router which you want to sync to your mobile devices and make available for offline viewing anywhere you go. DS cloud also gives you total control over the sync criteria: for each folder, you can set the maximum file size as well as the type of files you wish to sync.

Known Issues & Limitations

  1. SRM

    • Primary and secondary interfaces cannot be both set to PPPoE connections simultaneously.

    • Only the primary interface can be set as a VPN client.

    • When the secondary interface (LAN 1) is set as the default gateway for Internet access, the IPTV & VoIP settings will still only act on the primary interface (WAN).

  2. DS router

    • DS router must be upgraded to the latest version to be compatible with SRM 1.1:

      1. iOS: v1.1.1

      2. Android: v1.1.1

    • iOS 7 or earlier is not supported from DS router 1.1 or onward.

    • Android 4.0.4 or earlier is not supported from DS router 1.1 or onward.

  3. Intrusion Prevention

    • Running this package will demand CPU resources and system memory; the IPS (intrusion prevention system) mode will lower the maximum transmission rate.

    • The secondary interface (at Network Center > Internet > Connection) is not yet supported.

    • Wireless bridge mode and wireless client mode are not yet supported.

  4. Cloud Station Server

    • Cloud Station Server on SRM only supports external hard drives, USB drives, or SD cards formatted in ext4 with storage capacity larger than 4GB.

    • Shared folder syncing is not supported; that is, a Cloud Station ShareSync client cannot be paired with a Cloud Station Server on SRM.

    • Database location settings are not changeable.

  5. VPN Server

    • VPN Server must be updated to be compatible with SRM 1.1.

    • VPN Server may fail to create connection when the secondary interface (at Network Center > Internet > Connection) is enabled.

Version: 1.0.3-6030-3


(2016-06-15)
  1. Enhanced NTP security (CVE-2016-4957, CVE-2016-4953, CVE-2016-4954, CVE-2016-4955 and CVE-2016-4956).
  2. Enhanced Dnsmasq security (CVE-2015-8899).

Version: 1.0.3-6030-2


(2016-06-03)
  1. Enhanced SRM security about OpenSSL (CVE-2016-2105, CVE-2016-2106, CVE-2016-2107, CVE-2016-2108, CVE-2016-2109, CVE-2016-2176).
  2. Enhanced SRM security about ImageMagick (CVE-2016-3714, CVE-2016-3715, CVE-2016-3716, CVE-2016-3717, CVE-2016-3718, CVE-2016-5118).
  3. Fixed an issue where restoring PPPoE settings from an older version of SRM might result in a dialing failure.

Version: 1.0.3-6030-1


(2016-04-19)
  1. Adjusted transmission power settings for Synology Router in China.
  2. Updated the database of web-filter and traceroute.
  3. Fixed an issue where SRM might fail to get an assigned IP address from certain vendor’s DHCP server.

Version: 1.0.3-6030


(2016-04-01)
  1. Modified transmission power settings according to feedback from Bundesnetzagentur in Germany.
  2. Relocated Synology Account to Network Center > Administration.
  3. You can now use your Facebook, Google, or LinkedIn account to register a Synology Account.
  4. Supported the IPTV service of certain ISPs in Spain.
  5. Fixed an issue where L2TP connection might fail in certain situations.

Version: 1.0.2-6022-1


(2016-03-10)

Fixed Issues

  1. VPN Server must be upgraded to version 2463 or later to be compatible with SRM 1.0.2.
  2. Fixed an issue where Internet connection might be unstable when Synology Router is connected to certain ISPs in the UK.

Version: 1.0.2-6022


(2016-03-03)

Fixed Issues

  1. Added the "TCP/UDP" option to Port Forwarding to set TCP and UDP rules at the same time.
  2. Allows setting the DHCP range for guest networks.
  3. Re-defined schedule behavior in Parental Control: When Internet access is blocked on a device, you can still use this device to access SRM and other devices in the local network.
  4. Re-defined “banned” in Traffic Control: When a device is banned, you cannot use this device to access the Internet or SRM, but you can still access other devices in the local network.
  5. UPnP rules will remain after an SRM reboot.
  6. Enhanced SRM security (CVE-2015-7547, CVE-2015-3197 CVE-2015-5621, CVE-2016-0777, CVE-2016-0778).
  7. Fixed an issue where SRM could not find DNS servers when PPPoE was selected as the connection type after a soft reset of the Synology Router (i.e., pressing the reset button for four seconds).
  8. Minor bug fixes.

Version: 1.0.1-6007-2


(2016-01-26)

Fixed Issues

  1. Enhanced security for SSH connections (CVE-2016-0777 and CVE-2016-0778).
  2. Fixed an issue where FTP transmission through PPPoE may not work when firewall rules are in place.

Version: 1.0.1-6007-1


(2016-01-19)

Fixed Issues

  1. Fixed an issue where the Contact Support page in Support Center could not be displayed correctly.
  2. Fixed an issue where newly added port forwarding rules might disappear if not saved immediately.
  3. Fixed an issue where reconnecting to PPPoE would periodically cause a slight increase in memory consumption.
  4. Fixed an issue where configuring ISP settings with a DHCP Client ID might fail.
  5. Fixed an issue where setting MAC Filter rules might cause SRM to malfunction when Wi-Fi Security Level is set as WEP.

Version: 1.0.1-6007


(2016-01-12)

Fixed Issues

  1. Supports VLAN tagging used by Internet service providers, including Internet/IPTV/VoIP tagging.
  2. Implemented functional limits for rules and device number in SRM.
  3. Supports Layer 7 QoS for guest network devices.
  4. Displays guest network devices in Status page device list.
  5. Fixed an issue where SRM first time installation might fail when selecting router mode via a mobile device.
  6. Fixed an issue where restoring SRM settings might result in Parental Control rules disappearing.
  7. Fixed an issue where restoring SRM settings might result in errors when applying Beamforming settings.
  8. Fixed an issue where Parental Control schedules might have no effect on IPv6 devices.
  9. Fixed an issue where iOS devices might not be able to play music through AirPlay.
  10. Minor bug fixes.

Version: 1.0-5781-3


(2015-12-22)

Fixed Issues

  1. Enhanced PPPoE performance in SRM.

Version: 1.0-5781-2


(2015-12-15)

Fixed Issues

  1. Fixed an issue where IPv6 setup might fail.
  2. Fixed an issue where devices in the local network might fail to access the Internet through PPPoE while SRM is in Wireless AP mode.
  3. Fixed an issue where Wi-Fi speed might drop when the Synology Router is connected to certain British ISPs.
  4. Fixed an issue where devices in guest networks might fail to access the Internet while DMZ is enabled. Once you have updated SRM, please disable and then re-enable DMZ to make it work properly.
  5. Fixed an issue where devices in the local network might fail to access some websites when the Synology Router is connected to certain British ISPs.

Version: 1.0-5781-1


(2015-11-25)

Fixed Issues

  1. Supports setting up private port range for port forwarding.
  2. Updated the available 5GHz Wi-Fi channels of some countries.
  3. Enhanced Wi-Fi transmission performance of some countries.
  4. Fixed an issue where transmissions between LAN, 2.4GHz Wi-Fi, and 5GHz Wi-Fi might fail.
  5. Fixed an issue where Wake-on-LAN over QuickConnect might fail.
  6. Fixed an issue where SRM might not get IPv6 prefix.
  7. Fixed an issue where the UPnP client list might be erased.
  8. Fixed an issue where Wi-Fi speed might drop while connecting to some European ISP vendors.

Version: 1.0-5781


(2015-11-02)

Fixed Issues

  1. Fixed an issue where firewall could not block LAN devices from accessing WAN.
  2. Fixed an issue where SRM could not be accessed through router.synology.com in some situations.
  3. Fixed an issue where SRM could not immediately get IPv6 prefix.
  4. Fixed an issue where Wi-Fi SSID disappeared in rare instances.
  5. SRM now allows you to configure IPv4 address priority over IPv6 in Ping.
  6. SRM will now detect if LAN and WAN subnets are the same to avoid connection failure due to subnet overlap.
  7. SRM will now show the current operation channel if Auto is selected for the Channel option.
  8. Adjusted transmission power in channel 2 and 10 of Wi-Fi 2.4GHz.
  9. Updated the Web-filter database in Parental Control.

Version: 1.0-5766


(2015/10/01)
  1. N/A. (This is the initial release of RT1900ac)