Phone Lines icon GFI Support Home Start a conversation Sign in
Start a conversation
  1. KerioControl
  2. KerioControl - Release notes
  3. Articles

Kerio Control 9.4.5 p2 Release Notes

Overview

Kerio Control 9.4.5 p2 has been released and is available for download.

  • Release date: Jan 31, 2025
  • Build ID: 8629

General Improvements:

  • The OVF size has been increased from 8 GB to 32 GB, supporting more robust deployments.
  • Traffic rules leveraging GeoIP address groups are working, whether GeoIP Feature is enabled or not

Security Enhancements:

  • Enhanced security when communicating with all DDNS providers.
  • Upgraded curl to version 8.11 for improved performance and reliability.

GFI AppManager Updates:

  • Fixed an issue where guests were incorrectly reported in GFI AppManager as licensed devices.
  • Added the option in Kerio Control to locally disable GFI Agent functionality
Choose files or drag and drop files
Was this article helpful?
Yes
No

  1. Priyanka Bhotika

  2. Posted

Comments

  1. Alexander Maximus

    Hi,

    We are currently using other virtual firewall solutions across our network. We gave Kerio Control trial a go and found 2 bugs?


    Bug 1

    - If a client authenticates with Kerio Control via NTLM or the user-portal login using IPv6, where the DNS address of the Kerio Control host is also IPv6, the client is never authenticated even though the user shows up in the 'Active Connections' with the correct MAC and the correct IPv6 address, but no IPv4 address shows.
    - However if you authenticate using an IPv4 client via the IPv4 address of Kerio Control host, then authentication works and in the 'Active Connections' the correct MAC shows and the correct client IPv4 address.

    - Ideally this should take into account both IPv4 plus IPv6 and authenticate clients for both source addresses (IPv4 & IPv6), irrespective of IP v4/v6.



    Bug 2

    - If an IP group is created with some IP addresses assigned to it.
    - Then a specific user is assigned that address group via 'Users > Addresses > IP address group'.

    - Then also make sure the 'Always require users to be authenticated when accessing web pages' checkbox is ticked via 'Domains and User Login > Authentication Options > Web Authentication'.
    - IPs in this group now have connectivity for it is auto-authenticated as the linked user. But, if I then remove an IP address from the group, that IP address still remains authenticated.