NEA 9.12.7 and NMC 23.2.7 and Earlier

  • Updated on Jun 18, 2025
  • 159 minute(s) read
  • ED
  • Migration Team
 Prev Next

Nasuni Edge Appliance 9.12.7 and NMC 23.2.7

Released January 2, 2024

Resolved Issues

NMC

  • Issues 59385: Connecting Edge Appliances that own ransomware mitigation enabled volumes to other mitigation enabled volumes may result in inconsistent behavior for the mitigation policies on connected appliances. In this state, performing a disaster recovery could cause volumes to enter a stale state where data remains unprotected on the appliance.

Data Propagation

  • Issues 59288: Added a new backend configuration option to overcome an issue where the snapshot retention service failed due to internal database limits.

Platform

  • Issue 60838: Added the Dell firmware update(51.16.0-5150/ 52.26.0-5179) to address the issue with their PERC RAID cards. Post NEA 9.12.7 update, hardware Edge Appliances will notify customers about the new firmware that customers can update via the service console. The PERC RAID card issue affects the following hardware models:

    • N2040

    • N4040

    • N1050

    • N2050

    • N4050

    Note: Customers can manually update the firmware without updating to NEA 9.12.7 using the instructions on the Dell website.

  • Issues 60862: An issue with a fix introduced in NEA 9.12.5 for Mac clients with Enhanced Mac OS X Support caused an inconsistent behavior for files blocked by share settings.

  • Issues 60883: A Samba issue blocked users from restoring files using Windows Previous Versions.

Nasuni Edge Appliance 9.12.6 and NMC 23.2.6

Released Novsember 27, 2023

Resolved Issues

Data Propagation

  • Issues 59719 and 59720: Because of an inconsistent response from AWS for S3 buckets in Ireland (eu-west-1), volumes using buckets in Ireland could become inaccessible.

Platform

  • Issue 59835: A Samba issue with NEA version 9.12.x caused some clients to experience degraded performance and slow directory browsing under heavy load.

Nasuni Edge Appliance 9.12.5 and NMC 23.2.5

Released November 6, 2023

New Features and Updates

With this release, Nasuni Dell 15G hardware appliances now support the Intel E810 NIC. Customers running this setup can expect the same network performance as with our other network interfaces.

Resolved Issues

Platform

  • Issue 55755: Updated the installation process on the Nasuni N2040 and N4040 hardware Edge Appliances to support the latest RAID firmware.

  • Issue 57790: Due to an issue in NEA version 9.12.x, Mac clients with Enhanced Mac OS X Support enabled could create and access files blocked by share settings.

  • Issue 59171: An 9.12.x NEA Advanced Global File Locking problem blocked the use of Windows Previous Versions to restore files.

Data Propagation

  • Issue 57855: Using NMC 23.2.x with Global File Acceleration on pre-9.12 NEAs connected to volumes owned by a 9.12 NEA caused the GFA service to restart every 5 minutes.

Security

  • Issue 58934: The new version of Samba in NEA 9.12 did not enforce an optional backend configuration to require SMB signing for shares (CVE-2023-3347).

Nasuni Edge Appliance 9.12.4 and NMC 23.2.4

Released August 23, 2023

Resolved Issues

Platform

  • Issue 56599: Copy operations for files or folders containing Alternate Data Stream (ADS) could slow down or time out due to a third-party library issue.

  • Issue 56988: When “Enhanced Support for Mac OS X” is enabled for a share, Windows clients might be unable to open or copy files on a 9.12.x Edge Appliance.

  • Issue 56316: Clients using SMB encryption to access file shares might be unable to save in some circumstances after updating to the 9.12 release.

  • Issue 56898: The updates to NEA 9.12.x/NMC 23.2.x could fail after reboot because of a rare installation issue.

Nasuni Edge Appliance 9.12.3 and NMC 23.2.3

Released July 26, 2023

Resolved Issues

Platform

  • Issue 56445: Fixed an issue in NEA version 9.12.x that prevented Mac or Windows clients with Enhanced Mac OS X Support from renaming folders when accessing shares.

Nasuni Edge Appliance 9.12.2 and NMC 23.2.2

Released July 5, 2023

Resolved Issues

Platform

  • Issue 56044: Appliances with proxy configurations could fail to update to NEA 9.12 /NMC 23.2.

Data Propagation

  • Issue 21210: Due to a rare merge issue, data propagation can take longer than usual, resulting in unprotected data on the Edge Appliance.

  • Issue 54971: Added NMC notification if metadata (Phase 2) snapshots fail because the system is unable to obtain file or directory status.

Nasuni Edge Appliance 9.12.1 and NMC 23.2.1

Released June 14, 2023

Resolved Issues

Platform

  • Issue 55576: Due to an issue with Oplocks, saving files could take longer than usual in directories without Advanced Global File Locking.

Nasuni Edge Appliance 9.12 and NMC 23.2

Released June 5, 2023

Update Considerations and Paths

To deliver all these great enhancements coming in the 9.12 release, we’ve had to update some underlying databases that will require a longer than normal maintenance window during the upgrade. We have performed extensive testing internally and expect upgrade times to be between 30 minutes and 2 hours, but please note that there could be some appliances that will experience more than 2 hours of upgrade time, and potentially significantly more. Therefore, Nasuni recommends to upgrade during a weekend or otherwise in periods of low activity to reduce impact to end users.

If the longer than normal upgrade time is of concern, please contact Nasuni Support to discuss different options in minimizing upgrade times.

Warning: Rebooting Edge Appliances during the update process will interrupt the update, requiring you to contact Nasuni Customer Support to restore normal operations.

Required Versions for Update Eligibility

You must update to one of the specified versions below before updating to this release. The required Edge Appliance version update path implements pre-update checks to ensure that Edge Appliances have enough free cache space to update successfully.

  • Edge Appliance: 9.9.5 or 9.10.2+

  • NMC: 22.3.5 or 23.1.3

Note: Edge Appliance 9.10 and NMC 23.1 were limited-availability releases that weren’t made available to all customers.

Update Checks

  • Only the above-listed appliance versions will see the updates to 9.12/23.2.

    • Appliances running version 9.9.x/22.3.x must update to 9.9.5/22.3.5 first.

    • Appliances running version 9.10.x/23.1.x must update to 9.10.2/23.1.2 first.

  • Appliances running pre-9.5/21.2 releases are subject to additional update constraints. For details, see Nasuni Compatibility and Support

  • Recovery: Updating through an unsupported path is blocked during Recover. To avoid any issues, deploy a Nasuni version that corresponds to the major version of the source Edge Appliance before beginning the Recovery process.

Supported update path

  • Edge Appliance

    • 8.8.3+ / 9.0.x / 9.3.x → 9.5.x → 9.9.5 or 9.10.2+ → 9.12

  • NMC

    • 8.8.3+ / 9.0.x / 9.3.x → 21.2.x → 22.3.5 or 23.1.2+ → 23.2

Warning: Rebooting Edge Appliances during updating, even during post-reboot updates, will disrupt the update process. This can lead to the need to engage Nasuni Customer Support to restore normal operation. To prevent any inconvenience, it is advised not to reboot Edge Appliances during the update process.

New Features and Updates

Safer with Nasuni

  • Targeted Recovery for Ransomware Protection: This release introduces a new targeted recovery workflow as part of our Ransomware Protection add-on service, enabling you to quickly restore only the files impacted by an attack using the Nasuni Management Console.

  • Ransomware Violation Logging: With this release, ransomware violations will logged into folders named using Edge Appliance's serial number, a unique identifier, rather than the descriptions, which can be updated. The parent folder path remains the same.
    For example: .nasuni/ransomware_violations/{filer-serial-number}
    Note: Navigate to the NMC -> filer details page to find the Edge Appliance (filer)'s serial number.

Faster Front-End and Sharing Performance

  • General Availability of NEA 9.10/NMC 23.1 performance improvements: NEA 9.10/NMC 23.1 was a limited availability release that enhanced performance and lowered resource utilization. The release improved front-end I/O performance by 50% compared to the previous releases for both small and large files in environments not under Global File Lock. The Nasuni Edge Appliance now tracks new and changed data more efficiently and protects it by pushing it to the object store without additional copy-on-write (COW) operations. The result will be more consistent read/write performance during NEA snapshot operations. With this release, NEA 9.10 and NMC 23.1 is now generally available to all customers. Refer to NEA 9.10 and NMC 23.1 release notes for more details.

  • Performance Boost for Advanced GFL: Continuing the focus on performance, this release adds opportunistic locking (oplocks) for read events when Advanced Global File Lock (AGFL) is configured, significantly improving latency for end users accessing applications like Civil 3D and Revit that require AGFL.

  • General Availability for Multi-Volume GFA: With this release, customers with a Premium license or Multi-Site Collaboration add-on service can now use the NMC to configure and manage Global File Acceleration on multiple volumes and leverage GFA for optimized data propagation for all of their shared volumes.

New AWS S3 Region Support

This release includes enhancements to the AWS S3 connector to enable us to support newly added AWS regions quickly.

  • Cloud credentials with region-specific hostnames are no longer required. You can use the generic AWS S3 hostname (s3.amazonaws.com) for AWS S3 cloud credentials, and new volumes will automatically be created using the region-specific hostnames based on the selected region.

    Note: AWS requires you to opt-in to new AWS regions added after March 20, 2019, before you can use them.

  • New supported AWS regions are listed under Cloud Providers and Object Stores. Support for new AWS regions will be added to NMC 23.2+ only. With this release, customers can create new volumes in the latest supported regions from the NMC only. The latest supported regions will not be available on the Edge Appliance UI.

  • Updated the minimum Amazon S3 IAM policy actions needed for Nasuni Edge Appliances running on version 9.12.x or higher. In addition to the previous requirements, Nasuni now requires the ListAllMyBuckets permission. Refer to the Nasuni Configuration Guide for Amazon Simple Storage Service (Amazon S3) for the updated IAM policy.

Platform Upgrade

  • Upgrade to Samba 4.17 and PostgreSQL 13 for the Edge Appliance database.

Updated Best Practices / Recommendations

This release includes updated best practices to optimize performance and ensure appliances run in fully supported and tested configurations. These are the new recommendations, which include alerts if not at the recommended levels:

  • NEA: 8+ CPU cores, 16+ GB of RAM

  • NEA/NMC Hyper-V and ESXi versions: Hyper-V 2012 R2 or later, ESXi 7.0 or later

Ecosystem Partner Technology Support

Detailed information about compatible and supported technologies: Nasuni Compatibility and Support

As a general rule, Nasuni supports all applications that comply with the requirements of NAS protocols. Nasuni also makes further investments in new applications to ensure that end-to-end solutions provide a seamless experience for our customers.

Azure

Support for the newly released Azure Blob Storage Cold Tier

  • Azure’s new Cold Tier supports online access to objects and is fully qualified to work with Nasuni.

AWS

  • New AWS Regions added for customers using Nasuni with their AWS subscriptions:

    • Hyderabad, Asia Pacific (ap-south-2)

    • Jakarta, Asia Pacific (ap-southeast-3)

    • Melbourne, Asia Pacific (ap-southeast-4)

    • Zurich, EU (eu-central-2)

    • Spain, EU (eu-southeast-4)

    • UAE, Middle East (me-central-1)

Google

  • New Google Regions added for customers using Nasuni with their GCP subscriptions:

    • Turin, Italy (europe-west12)

    • Doha, Qatar (me-central1 )

End of Life Features and Recently Unsupported Items

Nasuni ended support for ISCI in Nasuni version 8.8. In this release, we removed the SNMP information for ISCI.

Recently Unsupported Items

Hypervisors

As of the NEA version 9.12 release, the following hypervisor versions are no longer officially supported by Nasuni:

  • Hyper-V 2012 and earlier

  • ESXi 6.7 and earlier

Resolved Issues

NMC and NMC API

  • Issue 53342: Using the NMC API to update NFS Host Options could return a validation error incorrectly.

  • Issue 49907: Updated title of the NMC 'File Types Written' pie chart to 'File Types in Snapshots.' Additionally, we added descriptive text to provide clear information about the data represented in the pie chart.

  • Issue 45573: On NMC’s Remote Access page, updated the ‘Enable’ status column header to 'Remote Access' to better represent column values.

  • Issue 45330: Snapshots during the last minute of the day (23:59:01-23:59:59 of the Appliance’s local time) were not displayed in the NMC File Browser’s version list.

  • Issue 32936: “Volumes Unavailable” warning link under the NMC System Health list incorrectly redirected users to the Volumes overview page. These warnings are Edge Appliance-specific. We have removed the warning link from the list to avoid confusion around remediation steps.

  • Issue 32204:Fixed an internal issue that prevented using chained SSL certificates to secure the NMC and Edge Appliance Admin UI.

  • Issue 30741: Due to a race condition, the NMC File Browser process that loads directory information and the NMC API Refresh Path Status endpoint might never complete.

  • Issue 4620: Improved how we reclaim deleted database entries on the NMC to avoid an issue that could make the NMC inaccessible.

Nasuni Platform

  • Issue 50252: Hardened database initialization scripts during installation and upgrade to recover from externally initiated (non-Nasuni UI) reboots that could introduce database inconsistencies.

  • Issue 50037: When using the NMC to connect a volume remote Edge Appliance, the operation could sometimes fail and return a message that the "Domain Configuration on the Filer is unavailable at this time.”

  • Issue 48575: The Edge Appliance auditing service failed after DR because of a problem with a backend configuration setting.

  • Issue 48314: After a factory reset, hardware Edge Appliances do not recognize new network devices that use a different driver due to a race condition.

  • Issue 48137: A problem with the SMB service on Active Directory domain-joined Edge Appliances prevented Linux clients from using FQDN formatted domain names to mount SMB shares.

  • Issue 37247: The NMC CIFS Locks list incorrectly displayed share information for paths containing spaces.

Features introduced in NEA 9.10 require additional backend changes during updates. Fixed the following issues to ensure updates to NEA 9.12 are completed successfully:

  • Issue 54436:Corrected a rare upgrade script looping issue that prevented upgrades from completing.

  • Issue 54425: An error in the update procedure could sometimes result in a partial update, requiring intervention from Nasuni Support.

Network Protocols and UniFS

  • Issue 51519: Metadata-only restores were not attempted in all possible cases, increasing the total time to restore large directories and files.

  • Issue 49044: When performing metadata-only restores, the data content size of the restored data may not be immediately updated, resulting in discrepancies in the reported accessible data.

  • Issue 46657: AWS redirects can cause an internal service to run out of memory making AWS S3 volumes inaccessible.

  • Issue 37137: Metadata (Phase 2) snapshots fail if too many files are open simultaneously and the File Descriptor limit is met.

Data Propagation and GFL

  • Issue 52458: Global File Locking can result in merge conflicts in specific scenarios, blocking data protection for impacted files.

  • Issue 40622: Due to an issue with an internal library, SSL session caching can grow over time, causing performance degradation and slower data protection.

Known Issues

  • Issue 55178: NMC UI stops reporting restore progress for ransomware-targeted restores if an Edge Appliance reboots while a restore is in progress. Post reboot, subsequent restores could completed succefully irrespective of the progess status.

Nasuni Edge Appliance 9.10.3 and NMC 23.1.3

Released May 2, 2023

Resolved Issues

Security

  • Issue 54013: In NEA 9.10.2 and NMC 23.1.2, we added a fix for Microsoft/Samba vulnerability CVE-2022-38023. With this release, we enforce Netlogon security for the CVE to complete the support for all Microsoft's planned June and July 2023 changes (MS KB5021130).

Nasuni Edge Appliance 9.10.2 and NMC 23.1.2

Released April 11, 2023

Resolved Issues

Nasuni Platform

  • Existing volumes could fail to mount after updating the Edge Appliance to the 9.10 release because of complications between the sequencing of update tasks and stopping Nasuni services. To resolve these complications, we fixed the following issues:

    • Issue 52835

    • Issue 52833

    • Issue 53395

  • Issue 53558: Added checks to ensure an appliance can complete updates successfully. Customers will receive a notification if the software update is not possible on a given Edge Appliance. For assistance, customers should contact Nasuni Customer Support.

  • Issue 53504: Added an advisory message to the Edge Appliance console advising customers not to power off or reboot the appliance while it updates.

  • Issue 51622: In rare circumstances, enabling and disabling snapshot schedules on volumes connected to a 9.9 Edge Appliance could break snapshot schedules on volumes. This will stop scheduled data protection on the affected volumes.

Security

  • Issue 51813: Added a fix for Microsoft/Samba vulnerability CVE-2022-38023.

Data Propagation

  • Issue 51984: The Health Monitor incorrectly reports File Accelerator service as unhealthy after updating an Edge Appliance to NEA version 9.9.x.

  • GFA 1154: For customers who no longer have access to the Global File Acceleration(GFA) service, stale GFA configurations can cause Health Monitor to incorrectly report the File Accelerator service as unhealthy.

Nasuni Edge Appliance 9.10.1 and NMC 23.1.1

Released February 28, 2023

Resolved Issues

Security

  • Issue 52853: Updated ClamAV version to 103.8 as the older version was susceptible to the following vulnerabilities:

    • CVE-2023-20032 (Critical, CVSS 9.8): A vulnerability in the HFS+ partition file parser of ClamAV could allow an unauthenticated, remote attacker to execute arbitrary code.

    • CVE-2023-20052 (Medium, CVSS 5.3): A vulnerability in the DMG file parser of ClamAV versions could allow an unauthenticated, remote attacker to access sensitive information on an affected device.

Note: These vulnerabilities only affect Nasuni Edge Appliances with AV-enabled volumes.

Nasuni Edge Appliance 9.10 and NMC 23.1

Released February 16, 2023

New Features and Updates

Improved front-end client I/O performance

In an effort to continuously improve performance and lower resource utilization, the Nasuni Edge Appliance now has a new data protection engine. This engine can track new and changed data more efficiently and protect it without the additional copy-on-write operation. Note: The COW disk will still be utilized during metadata snapshots.

The new engine also adds the following improvements:

  • 50 percent improvement in front-end performance for both small and large files without Global Locking.

  • Improved data propagation time across connected Edge Appliances.

  • Faster Antivirus scans for Edge Appliance with a large number of connected clients.

  • Improved front-end IOPs for files with Global File Locking.

  • Improved emergency cache eviction performance for large files.

  • For better tracking of protected data, the SNMP metric 'filerPushesCompleted' will now only track the completion of phase 2(metadata) protection rather than tracking phase 1(data) and phase 2(metadata) protection.

Update Considerations

Plan extra time to apply this update, especially for NEAs with many frequently changing files or high cache utilization (>10TB). Estimating time to update:

  • 5 million cached files: Approximately 4 minutes

  • 100 million cached files: Approximately 80 minutes

Warning: Rebooting Edge Appliances during the update process will interrupt the update, requiring you to contact Nasuni Customer Support to restore normal operations.

Resolved Issues

NMC

  • Issue 22066: Updated the help text for the “Allowed Hosts” field in the “Edit NFS Exports” form to explain how to allow access from all hosts.

Data Propagation and GFL

  • Issue 52564: Resolved an issue that caused NMC to incorrectly report healthy Edge Appliances as offline.

  • Issue 50872: Increased the backend buffer to accommodate high ingestion rates and slow eviction activities, such as migrations and large restores, to prevent cache filling. This could stop data protection and propagation.

  • Issue 49514: The cache management service could stop working when the Edge Appliance ingests large amounts of data. Without active cache management, data protection stops causing the local cache to fill up.

  • Issue 48636: A rare database inconsistency in tracking new or updated files could stop data propagation for the impacted volume.

  • Issue 47270: An inconsistency in tracking unprotected changes for files under Advanced Global File Lock can stop data protection on the impacted Edge Appliance.

  • Issue 42168: A race condition around internal file metadata tracking could cause data corruption while performing file I/O operations.

  • Issue 42151: A race condition between the back-end sync process and enabling Global File Lock on a file can potentially break data protection on an Edge Appliance, causing sync errors.

  • Issue 37393: In rare circumstances, a connected Edge Appliance fails to sync data from a snapshot, causing data inconsistency on the connected Edge Appliance.

  • Issue 33998: An unusual race condition while bringing data into the cache can potentially stop data protection and propagation on an Edge Appliance.

  • Issue 32393: The Edge Appliance fails to synchronize changes from the cloud locally due to a rare issue. This issue can cause potential data loss.

  • Issue 32056: The copy-on-write disk could overflow when the Edge Appliance performs the snapshot under a heavy load. In rare circumstances, the internal cache management service cannot gracefully handle this condition, impacting snapshots and user access to SMB shares and NFS exports on the Edge Appliance.

  • Issue 27195: NMC's Oldest Unprotected Data chart loses accuracy when Global File Locking changes are made between the data (phase 1) and metadata (phase 2) pushes.

Security

  • Issue 51170: pdated iDRAC firmware on hardware models to address CVE-2022-34435.

Platform CVEs – The following list of CVEs has been resolved by the updates to the platform in Nasuni Edge Appliance 9.10 and NMC 23.1. Note: While these CVEs are resolved in the underlying platform for NEA 9.10/NMC 23.1, the design of the Nasuni platform may have already mitigated any potential vulnerability (for example, CVEs that require local access to exploit, or exploits in unreferenced dependent packages):

  • CVE-2022-21619, CVE-2022-21624, CVE-2022-21628, CVE-2022-21626, CVE-2022-40674, CVE-2022-38177, CVE-2022-38178, CVE-2022-31676.

Nasuni Edge Appliance 9.9.5 and NMC 22.3.5

Released April 25, 2023

Resolved Issues

Nasuni Platform

  • Issue 53504: Added an advisory message to the Edge Appliance console advising customers not to power off or reboot the appliance while it updates.

  • Issue 51622: In rare circumstances, enabling and disabling snapshot schedules on volumes connected to a 9.9 Edge Appliance could break snapshot schedules on volumes. This will stop scheduled data protection on the affected volumes.

  • Issue 53558: Added checks to ensure an appliance can complete updates successfully. Customers will receive a notification if the software update is not possible on a given Edge Appliance. For assistance, customers should contact Nasuni Customer Support.

Data Propagation

  • Issue 51984: The Health Monitor incorrectly reports File Accelerator service as unhealthy after updating an Edge Appliance to NEA version 9.9.x.

  • GFA 1154: For customers who no longer have access to the Global File Acceleration(GFA) service, stale GFA configurations can cause Health Monitor to incorrectly report the File Accelerator service as unhealthy.

Security

  • Issue 51813: Added a fix for Microsoft/Samba vulnerability CVE-2022-38023. Provides full support for Microsoft's planned June and July 2023 changes (MS KB5021130) to enforce Netlogon security for the CVE.

Nasuni Edge Appliance 9.9.4 and NMC 22.3.4

Released February 24, 2023

Resolved Issues

Security

  • Issue 52853: Updated ClamAV version to 103.8 as the older version was susceptible to the following vulnerabilities:

    • CVE-2023-20032 (Critical, CVSS 9.8): A vulnerability in the HFS+ partition file parser of ClamAV could allow an unauthenticated, remote attacker to execute arbitrary code.

    • CVE-2023-20052 (Medium, CVSS 5.3): A vulnerability in the DMG file parser of ClamAV versions could allow an unauthenticated, remote attacker to access sensitive information on an affected device.

Note: These vulnerabilities only affect Nasuni Edge Appliances with AV-enabled volumes.

Nasuni Edge Appliance 9.9.2 and NMC 22.3.2

Released January 4, 2023

Resolved Issues

Nasuni Platform

  • Issue 49816: Added access to the serial console for appliances running on AWS EC2 Nitro instances.

  • Issue 51150: Addressed an issue that prevented OS disk resizing to complete for NVMe-based OS disks.

  • Issue 51482: Fixed a boot loader issue on Nasuni Edge Appliances and NMCs initially deployed with Nasuni versions 7.0-7.2.13.

Nasuni Edge Appliance 9.9.1 and NMC 22.3.1

Released December 6, 2022

Resolved Issues

NMC/Edge Appliance UI

  • Issue 50945: The ransomware service stopped working on unmanaged Edge Appliances after updating them to 9.9.

  • Issue 49057: NMCs using an HTTPS proxy could not enable Single Sign-On with Azure Active Directory.

  • Issue 48998: We improved NMC availability in the NEA 9.8/NMC 22.2 release by suppressing excessive messaging for auto cache events. Notifications for user-initiated requests to bring paths into cache were also suppressed. Added a new backend configuration setting to re-enable auto cache notifications. If this setting is required, contact Nasuni Customer Support.

Nasuni Platform

  • Issue 50716: Log rotation for the Edge Appliance’s Antivirus Service could stop working and cause an outage when the /var partition fills up.

Nasuni Edge Appliance 9.9 and NMC 22.3

Released November 9, 2022

New Features and Updates

Rapid Ransomware Recovery

  • Cyber Resilience Home in the NMC: The 22.3 NMC release adds a new Cyber Resilience menu that serves as a home base for the Ransomware Protection add-on and Antivirus Protection.
    Note: Antivirus settings can no longer be administered using the Edge Appliance Admin UI.

  • Threshold-Based Ransomware Detection: This release enhances Ransomware Protection to ensure you do not see false positives triggered by legitimate user activity. Based on the known behavioral patterns of ransomware attacks and valid file system activity, Ransomware Protection will now detect attacks when the number of violations meets the user-defined threshold. The default threshold values account for day-to-day file system activities but can be adjusted to accommodate usage patterns.

  • Ransomware Mitigation Policies: In addition to improved detection, Ransomware Protection now includes mitigation policies to stop attacks quickly, minimizing the number of affected files and reducing the time to recover. After a ransomware attack has been detected, mitigation policies block clients from connecting to the Edge Appliance if additional violations meet the user-defined mitigation threshold. Blocked clients can be viewed and managed using the NMC UI and new NMC API endpoints.
    Note: We recommend using threshold-based ransomware detection for a month to observe any false positives and adjust the thresholds if required before enabling mitigation policies.

  • Ransomware Incident Reporting & Management: When a ransomware attack occurs, you must have all the information on which files were encrypted, which clients were associated with the attack, when mitigation policies took effect, and the recommended snapshot version to restore. The new incident reporting and management features enable you to understand the scope of an attack fully and to share critical information with other stakeholders as you work to ensure minimal impact on your business.

  • New Health Monitor Category: We added a new Cyber Resilience category to the Health Monitor. With this new category, the Health Monitor now tracks the ransomware service and will report an unhealthy state if the service stops responding or cannot receive an updated ransomware signature file.

Note: All customers who are currently entitled to ransomware detection will be able to take advantage of the new threshold-based detection upon upgrading to NEA 9.9 / NMC 22.3. The new mitigation policies and incident reporting capabilities are limited to customers who have purchased the Ransomware Protection Add-on Service.

Quality and Performance

  • Improved cloud connection management: In this release, we improved our cloud connection management to classify and manage slow(active data transfer) and dead(zero bytes transferred) connections. This will improve data propagation on Edge Appliances with slow network connectivity. 9.9 Edge Appliances will terminate dead connections after 20 seconds and allow slow connections to persist for up to 600 seconds.

  • OS Disk Improvements: We increased the default OS disk size from 16 GB to 32 GB for newly-installed Nasuni Edge Appliances and NMCs running on virtual machines to provide headroom to support intensive workloads and additional services such as Ransomware Protection. Administrators can expand the OS disk on existing VMs up to 32 GB by following the same process used to expand the cache disk. The OS disk size for hardware-based Edge Appliances remains 32 GB.

Ecosystem Partner Technology Support

Detailed information about compatible and supported technologies: Nasuni Compatibility and Support

As a general rule, Nasuni supports all applications that are in compliance with the requirements of NAS protocols. Nasuni also makes further investments in new applications, such as the ones highlighted below, to ensure that end-to-end solutions provide a seamless experience for our customers.

Cloud Providers and Object Storage

Azure

  • Certification of Azure Premium SSD v2: For all customers running Nasuni Edge instances on Azure VMs, Nasuni qualified the new Azure Premium SSD v2 offering, which provides an exciting opportunity to get performance equivalent to the Azure Ultra Disk offering at a lower price than both Azure Ultra Disk and Azure Premium SSD v1.n.

  • Certification of Azure Large v5 VM: Nasuni has qualified the new Azure D48ads_v5 VM for large Azure workloads. The D48ads_v5 is the successor to the D48as_v4 and offers better performance across all workloads.

Google

  • New Google Regions added for customers using Nasuni with their GCP subscriptions:

    • Columbus, Ohio, North America (us-east5)

    • Dallas, Texas, North America (us-south1)

    • Tel Aviv, Israel, Middle East (me-west1)

End of Life Features and Recently Unsupported Items

Recently Unsupported Items

Hypervisors

Nasuni ended official support for the below hypervisor versions after the 8.7 release. However, there was no active block preventing the usage of these hypervisor versions. To stay current with modern technologies, as of the 9.9 release, customers can no longer deploy, update, or perform a disaster recovery to a Nasuni Edge Appliance on the below hypervisor versions. Nasuni recommends upgrading to the latest available hypervisor version.

  • Microsoft Hyper-V 2008, 2008 R2, and Server 2012 (non R2)

Resolved Issues

NMC and NMC API

  • Issue 46254: Decommissioned Edge Appliances and NMC cannot be recommissioned. Corrected the post-disaster recovery message that incorrectly stated Nasuni could recommission an appliance or NMC.

  • Issue 47925: In Nasuni Edge Appliance 9.7 and NMC 22.1, we added additional content security policy headers to secure our web applications further. These policies inadvertently blocked the ability to upload and display logos used for Web Access Branding.

Nasuni Platform

  • Issue 40262: Using Windows Previous Versions to restore files with macOS resource forks incorrectly set permissions and blocked access to the restored resource fork.

  • Issue 44952: Network connectivity issues on the destination Edge Appliance after disaster recovery could potentially halt the recovery process rendering the Admin UI inaccessible.

  • Issue 47367: The Edge Appliance Escrow Passphrase introduced in 9.3, allowing customers who escrow their keys with Nasuni to perform the Disaster Recovery process without contacting Nasuni Customer Support could sometimes be cleared after an update, requiring customers to set a new passphrase.

  • Issue 47939: Nasuni's encryption engine uses a finite set of algorithms. If a customer's encryption keys contain preferences that disagree with Nasuni's chosen set, the engine creates recurring internal logs that can potentially strain system resources and cause high CPU utilization and slow directory browsing.

Network Protocols and UniFS

  • Issue 47976: A race condition between creating new volumes and SMB shares could block access or break share configuration backups.

Data Propagation

  • Issue 41344: A reporting issue may cause a discrepancy in Content Size value in the File Browser between Edge Appliances connected to the same volume.

  • Issue 47015: If a database error occurs on an Edge Appliance while performing a sync, the operation could complete without updating the database, causing data loss.

Security

  • Issue 2407: Removed ephemeral Diffie-Hellman cipher support from the Nasuni Edge Appliance and Nasuni Management Console to address CVE-2015-4000. Older browsers that continue to use the DHE cipher suite may not be able to securely connect to the Nasuni Edge Appliances. We recommend customers use one of the officially supported browsers Nasuni Supported Web Browsers .

Platform CVEs – The following list of CVEs has been resolved by the updates to the platform in Nasuni Edge Appliance 9.9 and NMC 22.3. Note: While these CVEs are resolved in the underlying platform, the design of the Nasuni platform may have already mitigated any potential vulnerability (for example, CVEs that require local access to exploit, or exploits in unreferenced dependent packages):

  • CVE-2022-0492

Known Issues

  • Issue 48949: The anti-ransomware service fetches and updates ransomware signatures regularly.

    • The service could drop a few file events during the update process. This does not significantly impact the ability to detect a ransomware incident.

    • Turning ransomware detection off while a signature update is in progress can cause the service to terminate without clearing blocked clients.

  • Issue 49816: Nasuni Edge Appliances and NMC running on AWS EC2 Nitro instances do not currently support the service console.

  • Issue 50144: Ransomware incident reports use UTC timezones to ensure consistent readability across all regions. Incidents on the incident management page indicate the use of UTC timezones, but the timezone label needs to be added to the generated incident reports.

  • Issue 50529: Disabling ransomware detection does not reset the detection threshold to default values

Nasuni Edge Appliance 9.8.5 and NMC 22.2.5

Released February 28, 2023

Resolved Issues

Security

  • Issue 52853: Updated ClamAV version to 103.8 as the older version was susceptible to the following vulnerabilities:

    • CVE-2023-20032 (Critical, CVSS 9.8): A vulnerability in the HFS+ partition file parser of ClamAV could allow an unauthenticated, remote attacker to execute arbitrary code.

    • CVE-2023-20052 (Medium, CVSS 5.3): A vulnerability in the DMG file parser of ClamAV versions could allow an unauthenticated, remote attacker to access sensitive information on an affected device.

Note: These vulnerabilities only affect Nasuni Edge Appliances with AV-enabled volumes.

Nasuni Edge Appliance 9.8.4 and NMC 22.2.4

Released October 13, 2022

Resolved Issues

Nasuni Platform

  • Issue 49822: Creating or updating an existing SMB share on a Nasuni Edge Appliance with a large number of shares ( >500) could temporarily degrade performance.

Nasuni Edge Appliance 9.8.3 and NMC 22.2.3

Released October 5, 2022

Resolved Issues

Nasuni Platform

  • Issue 49301: An internal check for RFC 2307 UNIX extensions could add process overhead for joining a Nasuni Edge Appliance to an Active Directory. Due to this, the process could potentially time out for large AD environments (>50,000 accounts). Added a new configuration setting to disable this check. If this setting is required, contact Nasuni Customer Support.

Nasuni Edge Appliance 9.8.2 and NMC 22.2.2

Released September 20, 2022

Resolved Issues

NMC

  • Issue 48930: When updating NMC SSL certificates, the NMC prompted administrators for their password rather than a contextual confirmation phrase, breaking the ability for SSO users to update SSL certificates.

  • Issue 47943: Disabling remote access on a volume while snapshots are in progress and re-enabling it could potentially disrupt data protection and volume version updates that determine Edge Appliance upgrade eligibility. Nasuni enforces an additional volume version check before updating to 9.7 or higher versions. All volumes on the Edge Appliance must be on version 9.5 or higher to be eligible for the update.

Nasuni Platform

The 9.3 release added optional support for a new library for inline encryption that can improve cloud throughput by accelerating encryption and decryption performance. Nasuni customers using this library can experience the following issues :

  • Issue 48638: For certain workloads, using this library for decrypting data on a physical Edge Appliance can increase latency in file system operations for end-users.

  • Issue 48174: Another error was found in the library after fixing Issue-42869 in the 9.7.4 release, where it could not decompress data that was initially compressed and encrypted by a different library, requiring intervention from Nasuni to switch back to the default method.

  • Issue 42065: An issue with the library could cause the Edge Appliance to become unresponsive, halting local and cloud-related data operations.

Known Issues

  • Issue 49123: Due to an internal issue, using PrivateLinks on the AWS S3 connector can stop customers from connecting to remote volumes from different regions. Nasuni has removed AWS S3 connector support for cloud credentials with AWS S3 PrivateLinks unless private DNS is updated to redirect the default S3 endpoint to use the private link address.

Nasuni Edge Appliance 9.8.1 and NMC 22.2.1

Released August 17, 2022

Resolved Issues

NMC and NMC API

  • Issue 48561: The version compatibility messaging for unsupported older and newer Edge Appliance versions shown in the NMC's list of Filers was incorrect.

Data Propagation

  • GFA 978: The Global File Acceleration service is unable to handle non-ASCII characters in an Edge Appliance's description. This could put File Acceleration services in a state where the NMC is unable to manage the service.

  • GFA 895:The File Acceleration service could fail to make data propagation recommendations if the Edge Appliance’s /var partition runs out of space.

Nasuni Platform

  • Issue 47509: The AWS S3 connector now supports cloud credentials with AWS S3 PrivateLink.

  • Issue 46673: Internal logic that checks for the expected number of disks generates false alerts for NF-200, NF-400, and NF-440 hardware models with disks on the rear expansion trays.

Nasuni Edge Appliance 9.8 and NMC 22.2

Released July 12, 2022

New Features and Updates

Enhanced Security

  • Single Sign-On with Azure Active Directory for the NMC: The 22.2 version of the NMC enhances security by introducing support for Single Sign-On (SSO) providers using OAuth 2.0 and OpenID Connect (OIDC). Azure AD is the first provider supported by Nasuni. Once enabled, only SSO users are allowed to access the NMC UI, and Nasuni will enforce the configured Azure AD policy for Multi-Factor Authentication.

  • NMC API to Update Cloud Credentials: Today’s security policies require updating cloud credentials regularly. With this feature, we are introducing a new version of the NMC API (v1.2) that includes new endpoints to list and update cloud credentials on Edge Appliances. For the first time, customers can use automation and orchestration tools to immediately and non-disruptively update the access key and secret used by the Edge Appliance.

Data Portability

  • Automated Cutover for Cloud Providers: Nasuni’s cloud-independence ensures our customers are able to make the optimal selection for their business in terms of back-end object storage for their files and unstructured data. As a result, we see increasing numbers of customers choosing to migrate some or all of their workloads from one object storage provider to another, whether that is from private, on-prem object storage to the cloud, or from one cloud provider to another. As part of the 9.8 NEA release, we have made it possible for our Professional Services personnel to automate cutting over from one object storage provider to another, ensuring we guarantee minimal downtime for our customers during a migration.

Faster File Protection and Sharing Performance

  • Improved Performance When Using Snapshot Retention: Enhanced our Snapshot Retention service, specifically while removing data based on the snapshot retention policy selected for a given volume. With this enhancement, we have shown up to a 2X improvement in front-end performance for Nasuni Edge Appliances actively pruning snapshots.

Ecosystem Partner Technology Support

Detailed information about compatible and supported technologies: Nasuni Compatibility and Support

As a general rule, Nasuni supports all applications that are in compliance with the requirements of NAS protocols. Nasuni also makes further investments in new applications, such as the ones highlighted below, to ensure that end-to-end solutions provide a seamless experience for our customers.

Cloud Providers and Object Storage

Google

  • New Google Regions added for customers using Nasuni with their GCP subscriptions:

    • Europe-Southwest 1 (Madrid)

    • Europe-West 9 (Paris)

    • Europe-West 8 (Milan)

Resolved Issues

NMC and NMC API

  • Issue 2615: Using NMC API v1.1 to query CIFS locks, CIFS clients, and FTP Clients can potentially cause NMC to reboot due to lack of memory. The new NMC API v1.2 version of these endpoints resolves this issue.

  • Issue 24631: In rare circumstances, NMC is unable to communicate with Edge Appliances that have undergone updates or disaster recovery due to prolonged start-up time.

  • Issue 42394: Resolved a race condition that could cause NMC to report managed Edge Appliances as offline.

  • Issue 42972: For directories with Auto Cache enabled, excessive notifications for each auto fault event can fill up NMC disk space. This could make the NMC inaccessible.

  • Issue 44290: The help icon within the filter text box on the 'Filer CIFS Filer Locks' page makes filtering long file paths inconvenient.

  • Issue 44291: The NMC UI's value for licensed capacity did not display fractional information when necessary for customers licensed for more than a petabyte of capacity, incorrectly only showing the integer value.

  • Issue 45712: Disconnecting a remote volume while a connected Edge Appliance is offline causes temporary inconsistency in the database. NMC API endpoints fail to list volumes in this state.

  • Issue 46058: Sharing cloud credentials among a large number of Edge Appliances could increase response latency for the GET cloud-credentials NMC API endpoint.

  • Issue 46067: Email notifications for software updates contain an incorrect link to the corresponding release notes.

Nasuni Platform

  • Issue 40758: The "Resync Domain Configuration" button on the Edge Appliance's Directory Services page now fully synchronizes domain configuration and can be used to resolve domain configuration mismatch errors.

  • Issue 42011: Rebooting an Edge Appliance before it completes its first initialization could affect internal setup, potentially making the Edge Appliance inaccessible.

Data Propagation and GFL

  • GFA 687: The File Acceleration service could fail to make data propagation recommendations if the Edge Appliance /var partition runs out of space.

  • GFA 852: For volumes with Global File Acceleration enabled, the default Time To Protect (TTP) value incorrectly overwrites customer-defined TTP configurations.

  • Issue 46073: Fixed the backend logic that causes performance overhead as multiple Edge Appliances wait longer than expected to complete their snapshot.

Security

  • Issue 47188: Specific inputs can cause the zlib library to crash. Updated the zlib package to safeguard from a potential vulnerability, CVE-2018-25032.

  • Issue 46659: Updated ClamAV versions to 103.6 as the older version was susceptible to the following vulnerabilities: CVE-2010-1205, CVE-2022-20770, CVE-2022-20771, CVE-2022-20785, CVE-2022-20792, CVE-2022-20796, CVE-2022-20803.

Platform CVEs – The following list of CVEs has been resolved by the updates to the platform in 9.8 and 22.2. Note: While these CVEs are resolved in the underlying platform, the design of the Nasuni platform may have already mitigated any potential vulnerability (for example, CVEs that require local access to exploit, or exploits in unreferenced dependent packages):

  • CVE-2020-0465, CVE-2020-0466,CVE-2020-25704, CVE-2020-36322, CVE-2020-36385, CVE-2021-0920, CVE-2021-3564, CVE-2021-3573, CVE-2021-3653, CVE-2021-3656, CVE-2021-3752, CVE-2021-4155, CVE-2021-22543, CVE-2021-37576, CVE-2021-42739, CVE-2021-45960, CVE-2021-46143, CVE-2022-0330, CVE-2022-0778, CVE-2022-22720, CVE-2022-22822, CVE-2022-22823, CVE-2022-22824, CVE-2022-22825, CVE-2022-22826, CVE-2022-22827, CVE-2022-22942, CVE-2022-23852, CVE-2022-25235, CVE-2022-25236, CVE-2022-25315

Nasuni Edge Appliance 9.7.4 and NMC 22.1.4

Released June 22, 2022

Resolved Issues

NMC

  • Issue 47249: Reminder notifications issued by the Ransomware Protection Service have been disabled to prevent customers from being flooded with recurring notifications for the same incident. Customers will now only receive notifications when a new incident is detected.

  • Issue 42972: For directories with Auto Cache enabled, excessive notifications for each auto fault event can fill up NMC disk space. This could make the NMC inaccessible.

Nasuni Platform

  • Issue 42869: The 9.3 release added optional support for a new library that can improve cloud throughput by accelerating encryption and decryption performance. In rare circumstances, this library could not decompress data that was initially compressed and encrypted by a different library, requiring intervention from Nasuni to switch back to the default method.

Security

  • Issue 46659: Updated ClamAV versions to 103.6 as the older version was susceptible to the following vulnerabilities: CVE-2010-1205, CVE-2022-20770, CVE-2022-20771, CVE-2022-20785, CVE-2022-20792, CVE-2022-20796, CVE-2022-20803.

  • Issue 46678: Updated the GnuPG package to resolve a potential side-channel attack against RSA keys when the product is used as a virtual machine (CVE-2017-7526).

Nasuni Edge Appliance 9.7.3 and NMC 22.1.3

Released May 24, 2022

Resolved Issues

NMC and NMC API

  • Issue 44361: A problem with session management during heavy NMC API load could cause the NMC’s disk to fill, making it inaccessible.

  • Issue 45452: The cred_id value in NMC API version v1/v1.1 GET /volumes and /volumes/list endpoints returned the cred_uuid rather than the expected hash of the Edge Appliance’s serial number and cred_uuid.

Nasuni Platform

  • Issue 44894: System Alerts for volumes that had not snapped within the specified duration were not being sent.

Data Propagation

  • Issue 45539: When Global File Locking is enabled, a rare problem with file manifest verification could cause retries to continue indefinitely for impacted files, inflating cloud consumption.

Nasuni Edge Appliance 9.7.2

Released May 6, 2022

New Features and Updates

Support for Nasuni Edge Appliances running on Dell 15G hardware

  • With this release, we are supporting new Nasuni Edge Appliance hardware models running on Dell 15G PowerEdge Servers. We are introducing new models for our mid-line (N2050) and our high-end (N4050) hardware. These hardware models support a range of cache sizes (from 3TB to 27TB) and can be ordered with or without Self-Encrypting Drives (SEDs).

Nasuni Edge Appliance 9.7 and NMC 22.1

Released April 13, 2022

Update Paths to Edge Appliance 9.7 and NMC 22.1

The 9.5 Edge Appliance and 21.2 NMC releases added elements to prepare the appliances to update to versions 9.7 and 22.1, respectively. The 9.7/22.1 appliance versions have built-in checks to make sure ineligible appliances and configurations cannot upgrade.

Update Checks

  • Appliance Version: Only 9.5/21.2 appliance versions will see the updates to 9.7/22.1. Appliances running earlier releases (8.8.3 to 9.3) must update to 9.5/21.2 before updating to 9.7/22.1. For details, see Nasuni Compatibility and Support .

  • Shared Volumes: For Edge Appliances with shared volumes, Nasuni enforces an additional volume version check before updating to 9.7. All the volumes on the Edge Appliance must be on version 9.5. The volume version matches the lowest version among all the connected Edge Appliances. For details, see Nasuni Compatibility and Support .

  • Disaster Recovery: Updating through an unsupported path is blocked during DR (source 9.3 or earlier Edge Appliance/NMC to 9.7 Edge Appliance/22.1 NMC), although the error message in the DR wizard is incorrect. To avoid this issue, deploy a Nasuni version that corresponds to the major version of the source Edge Appliance before beginning the DR process.

Supported update paths

  • Edge Appliance

    • 8.8.3+ / 9.0.x / 9.3.x → 9.5.x* → 9.7.x

    • *9.5.x Edge Appliance with shared volumes connected to 9.3 or older Edge Appliances → Update all connected Edge Appliances to 9.5.x → 9.7.x

  • NMC

    • 8.8.3+ / 9.0.x / 9.3.x → 21.2.x → 22.1

New Features and Updates

Enhanced Security

  • Ransomware Detection: Our customers already know and love Nasuni for its Rapid Ransomware Recovery capabilities that allow millions of files to be restored from a ransomware attack or other outage in a matter of seconds. In this release, we are adding detection and alerting of ransomware attacks to help customers easily identify the impacted files and culprit users, so customers can recover smarter and even faster without having to pay the ransom.

    • Anti-Malware Services: With this feature, we are broadening our malware detection capabilities and hence rebranding the Antivirus Service in the NMC to the Anti-Malware Services.

    • Ransomware Detection: Customers can enable Ransomware Detection on a volume owned by an Edge Appliance running 9.7. This will also enable the service on any connected 9.7 Edge Appliances. Edge Appliances running versions before 9.7 will not provide ransomware detection for the volume. The Ransomware Detection service compares new and renamed files against known ransomware file extensions and ransom notes. If a ransomware variant shares an extension with a legitimate application, Nasuni Support can add that extension to a whitelist to avoid false positives.

    • Ransomware Alerting: If a ransomware attack is detected, customers will be notified via UI notifications, email, Syslog, or SNMP traps. The notifications are also available via the NMC API. Detailed logs regarding the impacted files are stored in the new ransomware_violations directory under the .nasuni directory located at the root of every volume. After an attack is detected, customers can follow Nasuni's best practice guide to mitigate the attack and perform a rapid ransomware recovery.

  • Content Security Policy: To further secure our web applications from code injections and cross-site scripting attacks, we added additional content security policy headers to the Nasuni Management Console, Edge Appliance Admin UI, and Web Access.

Data propagation Improvements

  • Global File Acceleration(GFA) Enablement Windows: This feature allows customers to designate individual Edge Appliances for removal from the GFA pool for certain periods of time in order to perform other non-GFA related tasks. The enablement window defines the period when snapshots are controlled by the GFA Cloud. The Edge Appliance will continue to operate normally outside the enablement window and will still have access to all the relative data, but will not accept snapshot recommendations from the GFA Cloud. All snapshots outside of the enablement window are to be triggered manually.

Better Management

  • UI Support for built-in Windows users and administrators: In 9.5, we introduced a new feature that allows our Edge Appliances to support Windows built-in users and administrators, eliminating the need to perform the time-consuming task of modifying file permissions when migrating data from Windows file servers or other legacy file storage systems using these configurations. While this feature was available to be enabled by Nasuni Professional Services or Support in 9.5, we are now enabling our customers to manage this feature on their own.

  • Availability of multiple NMC and Edge Appliance update versions: Along with the latest version of the NMC and Edge Appliance, customers will now have the option to download and install older supported versions of the software from their Nasuni Orchestration Center (NOC) accounts.

Nasuni Dashboards

  • New health and performance-monitoring capabilities allow customers to gain deeper insights into the performance and health of their Nasuni environments. New pre-built Grafana dashboards leverage the industry-standard Telegraf, InfluxDB, and Grafana (TIG) stack to provide an easy-to-deploy, open-source monitoring solution. Using Grafana's leading observability platform, Nasuni customers can visually pinpoint anomalies in order to proactively address issues and correlate events across their infrastructure, so they can identify and resolve problems more quickly to provide a better IT service to their business. These new dashboards will be available through our Nasuni Labs repositories, encouraging our customers to customize and share their own dashboards with others in the community.

  • Global File Acceleration API to support Nasuni Dashboards: A brand new API for the GFA service now makes it easy for customers using our new Nasuni Dashboards to comprehensively monitor the performance and behavior of GFA for multi-site file sharing and data protection.

Ecosystem Partner Technology Support

Detailed information about compatible and supported technologies: Nasuni Compatibility and Support

As a general rule, Nasuni supports all applications that are in compliance with the requirements of NAS protocols. Nasuni also makes further investments in new applications, such as the ones highlighted below, to ensure that end-to-end solutions provide a seamless experience for our customers.

Cloud Providers and Object Storage

Ceph: Ceph is an open-source software-defined storage platform that implements object storage on a single distributed computer cluster and is S3-compatible. Nasuni supports the use of Ceph with Nasuni's Amazon S3 connector for BYOC (Bring Your Own Cloud) customers. As with all private object storage solutions, customers should check with the vendor for specific deployment and management directions before using Nasuni.

Resolved Issues

NMC/Edge Appliance UI and API

  • Issue 24743: The Nasuni Management Console could become unresponsive after Edge Appliances were unmanaged or replaced using Disaster Recovery.

  • Issue 28333: When many shares (>100) are enabled for Web Access on an Edge Appliance, the process that enumerates the list of shares in the UI can timeout. This timeout can now be extended by contacting Nasuni Customer Support.

  • Issue 33024: Side Load could fail and report a network error because of a problem with session management on the source Edge Appliance.

  • Issue 42280: Integrated storage customers could create volumes in AWS regions that Nasuni only supports for customers using their own cloud credentials (BYOC).

Nasuni Platform

  • Issue 38193: The service menu could not be used to configure the iDRAC after upgrading the Dell iDrac firmware on hardware Edge Appliances to 4.40.XX.XX.

  • Issue 40187: The Edge Appliance SNMP monitoring agent could timeout during startup when many shares (>5000) are configured. Added a backend configuration option to extend the timeout. If this setting is required, contact Nasuni Customer Support.

  • Issue 43856: Snapshots could not run after performing disaster recovery on an Edge Appliance with remotely connected volumes, because of a problem with the Volume Antivirus Service configuration.

Network Protocols and UniFS

  • Issue 43177: File descriptor exhaustion during the sync process for remote access-enabled volumes could erroneously create file conflicts in UniFS, artificially inflating cloud utilization.

  • Issue 43276: Accumulated database transactions for aborted operations could deplete Edge Appliance resources and cause I/O errors when saving file or directory name conflicts in UniFS.

Security

Platform CVEs – The following list of CVEs has been resolved by the updates to the platform in 9.7. Note: While these CVEs are resolved in the underlying platform for 9.7, the design of the Nasuni platform may have already mitigated any potential vulnerability (for example, CVEs that require local access to exploit, or exploits in unreferenced dependent packages):

  • CVE-2016-4658, CVE-2021-23841, CVE-2021-23840, CVE-2021-35550, CVE-2021-35556, CVE-2021-35559, CVE-2021-35561, CVE-2021-35564, CVE-2021-35565, CVE-2021-35567, CVE-2021-35578, CVE-2021-35586, CVE-2021-35588, CVE-2021-35603, CVE-2021-40438, CVE-2021-42574

Known Issues

  • Issue 45452: The newly-added cred_id field in the Get Volumes NMC API endpoint returns the UUID of the credential rather than the hash of the Edge Appliance's serial number and the associated credential UUID. This is inconsistent with the cred_id value returned by the GET /account/cloud-credentials endpoint.

  • Issue 45770: If an NMC is updated to 22.1, User Group-Filer Permission settings retain the previous ‘Manage Antivirus Service' label rather than 'Manage Anti-Malware Service’. A new 22.1 NMC shows the correct permission label.

Nasuni Edge Appliance 9.5.4 and NMC 21.2.4

Released March 11, 2022

Resolved Issues

Nasuni Management Console

  • Issue 44443: NMC resource utilization increased significantly in some cases after Edge Appliances were upgraded to 9.5, causing degraded NMC performance and timeouts.

Edge Appliance

  • Issue 43769: During network outages or high NMC load, the Edge Appliance mechanism that ensures NMC connectivity could inadvertently stop other critical Edge Appliance services when attempting to restore communications.

Nasuni Edge Appliance 9.5.3 and NMC 21.2.3

Released February 24, 2022

New Features and Updates

  • Added new Google region for customers using Nasuni with their GCP subscriptions:

    • Santiago (Chile)

Resolved Issues

Data Propagation

  • GFA-681: The Global File Acceleration service's queries could hang, causing 100% CPU utilization on Edge Appliances.

Platform

  • Issue 43981: Changed the 9.5 upgrade process to preserve existing built-in groups to prevent users from losing access when upgrading to the release.

  • Issue 43549: Nasuni added a security fix in the 9.5.1 release to safeguard Edge Appliances from the Samba Vulnerability with symlinks (CVE-2021-20316). The security fix incorrectly blocked symlinks with targets to absolute paths for NFS clients.

Security

  • Issue 43764: Resolved Samba vulnerability (CVE-2021-44142) that could allow remote attackers to execute code as root when the “Enhanced Support for Mac OS X” Nasuni share feature is enabled.

NMC 21.2.2

Released January 26, 2022

Resolved Issues

Data Propagation

  • GFA-729: Connecting or disconnecting Edge Appliances to a Global File Accelerator-enabled volume can delete GFA configurations in some circumstances.

Nasuni Edge Appliance 9.5.1 and NMC 21.2.1

Released January 10, 2022

Resolved Issues

Platform

  • Issue 41354: Edge Appliances upgraded to 9.5 may display a notification about a problem with the BUILT-IN group links configuration.

Security

  • Issue 41426: Nasuni has added security checks to safeguard Nasuni Edge Appliances from the reported Samba vulnerability with symlinks (CVE-2021-20316). Symlinks can potentially be exploited using SMBv1 or NFS to access file system metadata other than the defined share access on a Nasuni Edge Appliance. More details:

    • Note: The SMBv1 protocol must be enabled, or the SMB share must also be available via NFS (multiprotocol) for this attack to succeed.

    • Beginning with the 9.0 release, the SMBv1 protocol is disabled for all new and existing Edge Appliances. SMBv1 is only enabled for customers who reached out to Nasuni to have SMBv1 re-enabled for their Edge Appliances.

Nasuni Edge Appliance 9.5 and NMC 21.2

Released December 15, 2021

New Features and Updates

NMC 21.2

NMC As Its Own Product: Beginning with this release, the NMC can be released independently from the Edge Appliance, and we're introducing a new NMC versioning system to reflect this change. Customers should upgrade the NMC to the 21.2 NMC release before upgrading their Edge Appliances to 9.5. Each NMC version will support the latest major version, and the prior two major versions, of the Edge Appliance. We've added messaging in the NMC to provide an alert if an Edge Appliance is running an unsupported software version.

  • Better Management

    • Global File Acceleration Configuration: We are enhancing GFA by enabling you to use the NMC to activate and configure GFA behavior on your own without requiring Nasuni Support.

    • NMC API for NFS Exports: NMC 21.2 has new API endpoints to create, update, and delete NFS exports and host options programmatically.

  • Operational Improvements

    • NMC Confirmations: In preparation for Single Sign-On (SSO) support, the NMC 21.2 now prompts users for a contextual confirmation phrase, rather than a password, to confirm actions that are consequential, irreversible, or disruptive (such as deleting a volume or share, or performing an update). Further, the power control option has been removed from the NMC login page and is only available to logged-in users.

Edge Appliance 9.5

  • Improved Data Migrations

    • Support for Built-In Groups: The Edge Appliance now supports Windows built-in groups and administrators, eliminating the need to perform the time-consuming task of replacing these ACLs when migrating data from Windows File Servers and other legacy storage systems. The first version of this feature is only available to Nasuni Professional Services, but a subsequent release will include a customer-facing configuration UI.

  • Faster File Protection and Sharing Performance

    • Reducing snapshot lock contention: Improved data propagation time to the cloud and other Edge Appliances for new and changed data by reducing snapshot lock contention. Edge Appliances no longer need to acquire a volume snapshot lock before snapping data to the cloud (P1), eliminating delays incurred by waiting for a lock.

    • Optimized IO: Adjusted the buffer size used within the Edge Appliance to improve performance for large, sequential read and write operations (>128 KB). This can accelerate migrations and large file copy operations by as much as 30%.

    • Write optimizations: Changed UniFS data structure and algorithm to improve file write operations on a Nasuni Edge Appliance. This change can improve concurrent file write operations up to 30%.

  • Operational Improvements

    • Auditing Improvements: The Edge Appliance audit logger can now distinguish between users sharing the same network connection, which is common when accessing Nasuni from VDI solutions or shared servers. Further, internal events to the Edge Appliance can now be excluded from the audit log, to reduce audit log verbosity and speed processing of end-user audit events. If this setting is required, contact Nasuni Customer Support.

NMC 21.2 and Edge Appliance 9.5

  • Operational Improvements

    • Cloud Credential Supportability: When adding cloud credentials, the NMC 21.2 and Edge Appliance 9.5 UI now return error-specific messages from cloud service providers to assist with troubleshooting. Before this change, customers could only obtain this information by contacting Nasuni Customer Support.

    • Disaster Recovery De-Escrow Selection: Customers opting to use Nasuni-escrowed keys during Disaster Recovery must now choose between using a self-service de-escrow passphrase (first introduced in 9.3) or a single-use, Nasuni-generated recovery key.

Ecosystem Partner Technology Support

Detailed information about compatible and supported technologies: Nasuni Compatibility and Support

As a general rule, Nasuni supports all applications that are in compliance with the requirements of NAS protocols. Nasuni also makes further investments in new applications, such as the ones highlighted below, to ensure that end-to-end solutions provide a seamless experience for our customers.

Cloud Providers and Object Storage

AWS

  • Support for Amazon S3 Glacier Instant Retrieval: With this new release, Nasuni officially supports this new archive storage class from AWS for long-lived data that is rarely accessed and requires instant retrieval. Customers can take advantage of this tier by implementing S3 lifecycle policies to move rarely accessed objects to a lower cost tier for additional savings.

  • New AWS Regions for customers using their own cloud credentials (BYOC): South Africa, Osaka Japan, Milan Italy, and Bahrain.

    • Nasuni virtual appliances are now supported on EC2 instances in these new AWS regions.

    • BYOC customers can create Nasuni File System Volumes backed by S3 buckets in these regions.

    • Support includes both UI and API.

  • EBS Volume Type (io2): The new io2 volumes are designed to deliver 99.999 percent durability, making them 2000x more reliable than a commodity disk drive, at no additional cost. Customers can get higher performance from their EBS volumes (500 IOPS/GiB) and reduce any over-provisioning that might have been done in the past to achieve the desired level of performance, for no additional cost.

  • EC2 Local Zones: Enabling customers to run latency-sensitive workloads on Nasuni Edge Appliances closer to their end users.

MinIO Object Storage

  • MinIO offers high-performance, S3-compatible object storage. Nasuni supports the use of MinIO for BYOC customers.

Applications

  • GoodSync: Nasuni has qualified a commercial tool for synchronizing data between Microsoft SharePoint and Nasuni on a customer-defined schedule or one-time occurrence.

  • Workato: Nasuni has formed a partnership with Workato, an Intelligent Automation platform that can be used by both Business and IT to automate repeating workflows as part of their day-to-day business needs and processes. This partnership has integrated Nasuni with over 1,600 leading enterprise SaaS vendors, such as Autodesk Construction Cloud Connect/BIM360, now available for customer preview.

Resolved Issues

NMC 21.2 and NMC API

  • Issue 31957: NMC API performance could degrade when the Nasuni Analytics Connector was enabled for customers with Azure volumes.

  • Issue 32964: The Health Monitor widget on the NMC Filer overview page showed an unhealthy Edge Appliance count irrespective of user permissions.

  • Issue 33070: Health Monitor notifications were not being sent as SNMP traps.

  • Issue 35095: Active Directory administrative users could not log in to the Edge Appliance Admin UI in some cases if the NMC managed the Edge Appliance before joining the Edge Appliance to Active Directory.

  • Issue 36001: NMC login could take as long as two minutes for some users because of an issue with network activity charts.

  • Issue 37040: NMC core services could timeout during start-up in environments with many shares or Edge Appliances.

  • Issue 37219: During Edge Appliance updates, the Health Monitor could incorrectly return an unhealthy status for the appliance.

  • Issue 39208: Breaking Global Locks on files with diacritics/accent characters in the file path failed and displayed an error.

  • Issue 40586: Creating a volume using the NMC API with the EMC ECS cloud provider failed and returned an error.

Edge Appliance Admin UI and Web Access

  • Issue 28859: When Web Access was enabled for many shares on an Edge Appliance (>300), the list of shares within Web Access could fail to load.

  • Issue 40122: Integrated customers sometimes could not use the Edge Appliance Admin UI to create new volumes.

Nasuni Platform

  • Issue 25067: Added enhanced messaging during volume creation to provide a detailed error for an Active Directory error condition.

  • Issue 27726: An Edge Appliance could sometimes become unresponsive during an upgrade because of interdependency between two internal services.

  • Issue 30805: Edge Appliance configuration backups could sometimes exceed the 5 minute timeout for Edge Appliances on slow networks. Added a backend configuration option to extend the timeout. If this setting is required, contact Nasuni Customer Support.

  • Issue 37309: Any file restores for items within the ".nasuni" directory were skipped.

  • Issue 38857: CIFS locks held by Administrative Users did not show up in the UI.

  • Issue 40159: Upgrading after performing a field re-install of NF60 or N1040 hardware Edge Appliances could fail and raise a "Cache Resize Failed" alert.

Network Protocols

  • Issue 40154: Clients using encrypted SMB with third-party load balancers could sometimes get "Access Denied" messages or experience dropped connections.

Data Propagation

  • Issue 29845: In some cases, updated cloud credentials in the UI were not applied during the next snapshot, causing snapshots to stall until the Edge Appliance was rebooted.

  • Issue 39798: Edge Appliances could hold snapshot locks over a long period due to inadequate handling of internal API responses.

  • Issue 39986: A rare network error caused a delay in data propagation across some Edge Appliances without any error message to the user.

Security

NMC, Edge Appliance, Web Access, and Hardware Security Fixes

  • Issue 21449: Added cache-control headers to NMC, Edge Appliance UI, and Web Access to improve web application security and remediate web vulnerability scanner findings.

  • Issue 30249: Updated JavaScript libraries to address two security vulnerabilities (CVE-2020-11023, CVE-2020-11022)

  • Issue 35320: Mitigated a potential NMC security vulnerability related to unsafe third-party links commonly associated with "reverse tabnabbing" attacks.

  • Issue 37822: Two CVEs addressed by Dell firmware upgrade for hardware-based Edge Appliances (CVE-2021-21538, CVE-2021-21542). Note that versions of iDRAC firmware before 5.00.10.00 returns error messages after a successful firmware upgrade. Subsequent upgrades will not encounter the error messages.

  • Issue 39938: Mitigated stored cross-site scripting attacks in Nasuni Web Access through additional content security headers.

Platform CVEs – The following list of CVEs has been resolved by the updates to the platform in 9.5. Note: While these CVEs are resolved in the underlying platform for 9.5, the design of the Nasuni platform may have already mitigated any potential vulnerability (for example, CVEs that require local access to exploit, or exploits in unreferenced dependent packages):

  • CVE-2019-11719, CVE-2019-11727, CVE-2019-11756, CVE-2019-17006, CVE-2019-17023, CVE-2020-6829, CVE-2020-9272, CVE-2020-9273, CVE-2020-12400, CVE-2020-12401, CVE-2020-12402, CVE-2020-12403, CVE-2020-27480, CVE-2021-20254, CVE-2021-20265, CVE-2021-25215, CVE-2021-26937

Known Issues

  • Data within the NMC Volume Data Propagation page will change after Edge Appliances are upgraded to 9.5. Data Propagation Time now measures metadata snapshot start and stop (P2) for a volume. Values recorded before the upgrade that also included file data (P1) time will remain visible in the charts until they expire.

  • Issue 30571: Performing firmware updates from the service menu will (falsely) appear to fail so long as the current BMC firmware is earlier than 5.00.10.00. To work around this issue, perform the update, wait for it to "fail," and if the update was a BMC update, wait 10 minutes. The Edge Appliance will remain operational during the 10 minutes it can take for the BMC update. Reboot after the update for other updates (e.g., BIOS, MegaRAID).

  • Issue 40711: Updating host options for an NFS Export using the NMC API requires a host ID as part of the update request. This host ID changes after the update, so if you need to perform subsequent updates, use the NMC API to retrieve a new list of host options before performing the next update.

  • Issue 41354: Edge Appliances upgraded to 9.5 may display a notification about a problem with the BUILT-IN grouplinks configuration. This will be addressed in a 9.5 patch release, but can be resolved by visiting the Directory Services page in the Edge Appliance Admin UI and clicking the Submit button.

  • Issue 42280: The following AWS regions are available for customers using their own cloud credentials (BYOC). Although integrated storage customers can see these regions on the Add Volume page, integrated volumes created on these regions cannot snap to protect data. This will be addressed in a 9.5 patch release.

    • Africa (Cape Town), Asia Pacific (Osaka), Europe (Milan), Middle East (Bahrain), EU (Paris), EU (Stockholm), Asia Pacific (Osaka-Local), Asia Pacific (Hong Kong), China (Beijing), China (Ningxia), GovCloud (US-East), GovCloud (US-West).

Nasuni 9.3.5

Released September 29, 2021

New Features and Updates

  • New Google Regions added for customers using Nasuni with their GCP subscriptions - Asia-South 2 (Delhi), Australia-SouthEast 2 (Melbourne), Europe-Central 2 (Warsaw), North America- NorthEast 2 (Toronto).

Resolved Issues

Data Propagation and Global File Lock (GFL)

  • GFA 534, 544: Improved the Global File Accelerator (GFA) service to ensure consistent data propagation for large files.

  • GFA 539: Added a request timeout to GFA to help resume connections on unreliable networks.

Nasuni 9.3.4

Released September 14, 2021

Resolved Issues

NMC/Edge Appliance UI and API

  • Issue 39723: Customers who requested Nasuni to disable encryption key generation and key escrow could not use uploaded encryption keys to create new volumes using the 9.3 NMC.

Nasuni Platform

  • Issue 39933: An architectural issue with the SMB Durable Handles feature (introduced in the 9.3 release to allow clients to survive temporary connection loss) could impact I/O performance for end-users. Durable handles are currently only supported for volumes with NTFS Exclusive Permissions Policy and are disabled when Global File Lock is active.

  • Issue 40109: During heavy load, excessive .tdb file growth associated with Durable Handles could block creating new files or directories.

Nasuni 9.3.3

Released August 17, 2021

New Features and Updates

  • New Amazon S3 Regions added for customers using Nasuni with their S3 subscriptions - Africa (Cape Town), Asia Pacific (Osaka), Europe (Milan), Middle East (Bahrain).

Resolved Issues

NMC/Edge Appliance UI and API

  • Issue 28332: An issue with the original implementation of Nasuni Web Access can cause AD account lockout requiring manual unlock if a user attempts to authenticate with an invalid password and the number of shares exceeds the number of allowed login attempts specified in the AD account lockout policy.

  • Issue 36489: When hundreds of shares are Web Access-enabled, Web Access could hang after login.

  • Issue 37540: Improved page load time for NMC pages that support multi-select.

Nasuni Platform

  • Issue 35099: A rare issue with the cache disk resize process could prevent the Edge Appliance from fully booting.

Network Protocols and UniFS

  • Issue 39162: Using the macOS Finder search to search for files or folders returned zero results.

Data Propagation and Global File Lock (GFL)

  • Issue 39300: Snapshot retries could sometimes be blocked when the Volume Antivirus Service is enabled.

Nasuni 9.3.2

Released July 21, 2021

Resolved Issues

Nasuni Platform

  • Issue 39161: Changes in file timestamps introduced by a recent Windows Defender update affected the ability to open and save files for applications such as Revit, AutoCAD, and Petrel.

Nasuni 9.3.1

Released July 13, 2021

Resolved Issues

Nasuni Platform

  • Issue 38316: An issue with how the Appliance calculates the available memory on Amazon EC2 Nitro instances can prevent the Appliance from fully booting.

  • Issue 38855: Passphrase-protected encryption keys could not be imported.

  • Issue 39005: A race condition during Edge Appliance startup could prevent volumes from mounting.

Nasuni 9.3

Released June 23, 2021

New Features and Updates

  • Advanced Global File Lock Stability:

    • Improves the reliability, quality, and performance of Global File Lock (GFL) while simplifying the code to enable future enhancements. Reliability and quality have been improved by eliminating race conditions associated with file renames and optimizing communication with the lock server. With the changes introduced by this feature, Advanced Global File Lock performance has been improved so that it now matches the performance of Optimized Global File Lock.

    • Changes for NFS volumes: Advanced GFL (AGFL) has never been supported with NFS-only or NFS multiprotocol volumes. The NMC and Edge Appliance UI now blocks Administrators from using AGFL with NFS-enabled volumes to align with product standards. Further, the NFS protocol cannot be added to existing CIFS volumes using AGFL. Customers using NFS with AGFL with an earlier Nasuni version will receive an alert notification to disable AGFL after upgrading to 9.3.

  • Global File Acceleration: Global File Acceleration (GFA) is a new cloud-based service that uses audit information in real-time to accelerate data propagation between sites and to prioritize by usage patterns. GFA is an opt-in service available to Premium customers.

  • Self-Service Encryption Key De-Escrow:

    • Customers choosing to escrow new encryption keys with Nasuni must now provide a passphrase for each of their Edge Appliances and NMC. After the escrow passphrase is set, new and existing keys will be escrowed with Nasuni using this passphrase. During a disaster recovery procedure, the Edge Appliance will request this passphrase in order to de-escrow the escrowed encryption keys. This removes the need for customers to engage Nasuni Customer Support during a disaster recovery procedure to de-escrow their encryption keys and gives customers another method to secure their encryption keys.

    • This passphrase is only stored on the customer Edge Appliance, and Nasuni does not have any visibility or access to what is chosen. If the passphrase is lost or not available, customers can fall back to the pre-9.3 manual de-escrow and validation process by contacting Nasuni Customer Support.

  • Inline Encryption Support: A new inline mechanism to encrypt and decrypt information stored in the cloud has replaced the fork and exec method used before 9.3. Inline encryption ensures consistent cloud performance and memory usage for the encryption process. Additionally, we have added optional support for a new library that can improve encryption and decryption performance. While this library has performance benefits for specific workloads, it can have a small but measurable impact on front-end performance for other workloads. Because of that situation, the feature is disabled by default. Please contact your account team or Nasuni Customer Support to discuss your workloads and whether the feature may be appropriate for your environment.

  • NAS Performance: Compound Insert Statements: Optimized database operations to improve performance for new file creation.

  • Platform OS Version Update: Updated the Nasuni platform OS version to improve stability and fix security vulnerabilities.

  • Durable Handles Support for Surviving Temporary Connection Loss: Durable handles allow SMB 2.0 and higher clients to open a file and survive a temporary connection loss (60 seconds or less), such as is commonly experienced when using VPN connections or when transitioning from wired to wireless networks. Durable handles are currently only supported for volumes with NTFS Exclusive Permissions Policy and cannot be used with Global File Lock.

  • Extended Attribute Support Performance Improvements: DOS Extended Attributes (EA) are now disabled by default for SMB shares when the optional setting to enable Enhanced Support for Mac OS X is not enabled. EA Support was first enabled by default for all shares beginning in the 8.5 Nasuni release, which incorporated a new version of Samba. EA support is not commonly required for operating systems or applications and has subsequently been demonstrated to degrade directory listing performance. If EA support is required, you can enable Enhanced Support for Mac OS X for your shares, and it will enable EA support for them.

  • Automatically Stripe Cache Disks at First Boot: Customers utilizing most hypervisors who want to stripe the Edge Appliance cache across multiple devices can now stripe disks themselves without involving Nasuni Customer Support. The devices must all be the same size and be present when the Edge Appliance boots for the first time. EC2-based and GCP-based Edge Appliances do not yet support automatic striping at first boot.

Ecosystem Partner Technology Support

Detailed information about compatible and supported technologies: Nasuni Compatibility and Support

As a general rule, Nasuni supports all applications that are in compliance with the requirements of NAS protocols. Nasuni also makes further investments in new applications, such as the ones highlighted below, to ensure that end-to-end solutions provide a seamless experience for our customers.

Cloud Providers and Object Storage

AWS

  • GP3 EBS Volumes: Amazon EBS GP3 volumes are the latest generation of general-purpose SSD-based EBS volumes that enable customers to provision performance independent of storage capacity while providing a lower price per GB than existing GP2 volumes. GP3 volumes can be used with Nasuni Edge Appliances.

Azure

  • Updated Marketplace Images: Nasuni will publish 9.3 versions of the Edge Appliance and NMC in the Azure Marketplace after the release has transitioned to General Availability (GA). Releases are first introduced as Limited Availability (LA) releases and are rolled out to groups of customers in several waves before GA. The boot partition of Azure Images has been increased from 16 GB to 32 GB to comply with Azure Marketplace listing requirements.

Google

  • Google Cloud Storage Connector with Region and Storage Class Support: The 9.3 Google Cloud Storage connector now supports both region and storage class selection during volume creation.

  • Nasuni Appliances listed in Google Marketplace: Nasuni will publish 9.3 versions of the Edge Appliance and NMC in the Google Marketplace after the release has transitioned to General Availability (GA). Releases are first introduced as Limited Availability (LA) releases and are rolled out to groups of customers in several waves before GA. Nasuni now provides an Open Source Download option in the NMC, and Edge Appliance help menus to comply with Google Marketplace listing requirements.

Applications

  • Schlumberger Petrel: One of the most popular applications in the energy industry, Nasuni has now fully qualified this application for use with our platform.

  • Splunk: Nasuni has certified that customers can use Splunk to monitor and report on their Nasuni environment.

Recently Unsupported Items

Nasuni Edge Appliance Hardware

  • Gen 1(11G) and Gen 2(12G) hardware Edge Appliances are no longer supported and are incompatible with the 9.3 release. Customers using Gen 1 and Gen 2 appliances will not see the option to upgrade.

Web Browsers

  • Internet Explorer 11: Microsoft support for Internet Explorer 11 with Microsoft Teams ended on 11/30/20.

Resolved Issues

NMC/Edge Appliance UI and API

  • Issue 2671: Creating a volume now triggers a snapshot for the volume so that snapshot-dependent settings are immediately available. Before this change, the configured snapshot schedule determined the time of the first snapshot.

  • Issue 25188: Using the NMC to add Cloud Credentials to an Edge Appliance with existing Cloud Credentials could fail in some circumstances.

  • Issue 32551: The Health Monitor check for XFS file system fragmentation has been disabled. An analysis of Support cases and Edge Appliance performance data indicates this check did not closely correlate to the Edge Appliance’s health.

  • Issue 34089: In some cases, not all NMC-managed Edge Appliances were visible in the Filer Access section of the NMC's Edit Group dialog.

  • Issue 34885: Added a UI note to clarify that editing the Edge Appliance time configuration (time zone or time servers) deliberately disconnects and resets all currently connected SMB clients for the selected Edge Appliance in order to ensure proper authentication.

Nasuni Platform

  • Issue 5873: An unexpected shutdown during the initialization of the core database on a newly-provisioned Edge Appliances could leave the appliance in an unusable state.

  • Issue 20913: Updated the Hyper-V image to remove a hardcoded custom path for the Smart Paging file.

  • Issue 27263: The SMB notification process might cause the appliance to run out of memory.

  • Issue 30570: No reminder for installation of new firmware on a hardware Edge Appliance.

  • Issue 32549: Added a cleanup task to reclaim disk space consumed by crash dumps written by previous Nasuni versions.

  • Issue 33164: Deleting a volume might not successfully remove the associated container or bucket from object storage in some circumstances.

  • Issue 34689: The process that removes local temp files generated on the Edge Appliance during snapshot retention could sometimes fail.

  • Issue 35159: Syslog audit events were incorrectly including an internal path prefix.

  • Issue 35234: Added SMART monitoring for the M.2 device used by the COW in 14G Edge Appliances to notify for device failure.

  • Issue 35537: Audit events might not be logged when a volume is unmounted and subsequently remounted.

  • Issue 35832: An error could block the setup of traffic groups used to segment traffic on Edge Appliances with multiple network interfaces.

Network Protocols and UniFS

  • Issue 27413: Added a configuration option for NFS with AD Unix Extensions (RFC 2307) with multiprotocol access to resolve an “access denied” error that could occur when a user was a member of more than 16 groups. Please contact Nasuni Customer Support if this setting is required.

  • Issue 34060: Linux SMB clients are not appropriately notified when shares are closed before an Edge Appliance reboot.

  • Issue 33645: A full or nearly full extended attribute cache causes slow directory listing.

  • Issue 34886: Editing settings for an existing FTP directory should not restart the FTP service. Service restarts are now only invoked when directories are removed or added.

Data Propagation and GFL

  • Issue 24290: When Advanced Global File Lock is enabled and a file is opened with lock mode=255, the lock might not be released on the lock server when the lock is closed.

  • Issue 24365: Rename of files under GFL can sometimes cause internal appliance failures and temporary data unavailability.

  • Issue 24718, Issue 33825: Rename of the file under GFL can cause a lock to be held indefinitely by Nasuni locking service for the destination (new name) files.

  • Issue 25360: Files are not appropriately locked when using Advanced GFL with a GENERIC_XXX access mask.

  • Issue 25466: Saving and reopening a large file in read-only mode when GFL is enabled can sometimes cause IO timeouts.

  • Issue 26314: A file that should be pushed to the cloud can remain unprotected if the Antivirus Service is used with GFL and the file is changed by a connected user when the AV Service is scanning it.

  • Issue 26366: In some cases, the content of a file under GFL is not synchronized before opening, causing applications to read an outdated version of the file.

  • Issue 26506: In rare cases, the rename of the file can cause the removal of the file if both source and target files are open by clients.

  • Issue 26536: In rare cases, the rename of a file can cause a loss of the file content on a remote Edge Appliance.

  • Issue 27171: Certain file access patterns can prevent the Edge Appliance from synchronizing file content with the cloud and other Edge Appliances.

  • Issue 28519: A directory moved from a subtree with Global File Lock enabled to a subtree where GFL is disabled retains the original GFL status, but UI does not show it, and it cannot be disabled.

  • Issue 28768: In rare cases, the rename of a file can cause the removal of the file or losing recently saved changes.

  • Issue 29467: When the “Degrade to read locks” option for GFL is enabled on an Edge Appliance, files that were not protected before enabling degraded mode will not be protected if the internal appliance process or entire appliance is restarted.

  • Issue 31002: When GFL is enabled, and there were local network problems or an unclean Edge Appliance shutdown, locks on the Global Lock Server could remain when the Edge Appliance no longer has a lock for the files. In this case, the files remain read-only on other Edge Appliances until the locks are manually broken.

  • Issue 31007: Specific file access patterns can prevent the appliance from synchronizing file content with the cloud and other appliances. A new algorithm ensures accurate tracking of files that require protection and synchronization under GFL.

Security

Platform CVEs – The following list of CVEs has been resolved by the updates to the platform in 9.3. Note: While these CVEs are resolved in the underlying platform for 9.3, the design of the Nasuni platform might have already mitigated any potential vulnerability (for example, CVEs that require local access to exploit, or exploits in unreferenced dependent packages):

  • CVE-2013-2139, CVE-2015-2716, CVE-2015-6360, CVE-2015-8035, CVE-2015-9251, CVE-2015-9289, CVE-2016-10735, CVE-2016-5131, CVE-2017-12652, CVE-2017-15412, CVE-2017-15710, CVE-2017-15715, CVE-2017-17807, CVE-2017-18190, CVE-2017-18258, CVE-2017-18551, CVE-2017-6519, CVE-2018-10360, CVE-2018-1283, CVE-2018-1301, CVE-2018-1303, CVE-2018-13139, CVE-2018-14040, CVE-2018-14042, CVE-2018-14404, CVE-2018-14567, CVE-2018-15587, CVE-2018-17199, CVE-2018-18066, CVE-2018-18074, CVE-2018-18751, CVE-2018-19662, CVE-2018-19985, CVE-2018-20060, CVE-2018-20169, CVE-2018-20676, CVE-2018-20677, CVE-2018-20836, CVE-2018-20843, CVE-2018-20852, CVE-2018-21009, CVE-2018-4180, CVE-2018-4181, CVE-2018-4700, CVE-2018-5745, CVE-2018-7191, CVE-2019-10098, CVE-2019-10207, CVE-2019-10638, CVE-2019-10639, CVE-2019-10871, CVE-2019-11135, CVE-2019-11190, CVE-2019-11236, CVE-2019-11324, CVE-2019-11358, CVE-2019-11459, CVE-2019-11487, CVE-2019-11884, CVE-2019-12293, CVE-2019-12382, CVE-2019-12450, CVE-2019-12614, CVE-2019-12749, CVE-2019-13232, CVE-2019-13233, CVE-2019-14283, CVE-2019-14494, CVE-2019-14822, CVE-2019-14866, CVE-2019-14973, CVE-2019-15217, CVE-2019-15807, CVE-2019-15903, CVE-2019-15916, CVE-2019-15917, CVE-2019-16056, CVE-2019-16231, CVE-2019-16233, CVE-2019-16707, CVE-2019-16746, CVE-2019-16935, CVE-2019-16994, CVE-2019-17041, CVE-2019-17042, CVE-2019-17053, CVE-2019-17055, CVE-2019-17400, CVE-2019-17498, CVE-2019-17546, CVE-2019-17666, CVE-2019-18808, CVE-2019-19046, CVE-2019-19055, CVE-2019-19058, CVE-2019-19059, CVE-2019-19062, CVE-2019-19063, CVE-2019-19126, CVE-2019-19332, CVE-2019-19338, CVE-2019-19447, CVE-2019-19523, CVE-2019-19524, CVE-2019-19527, CVE-2019-19530, CVE-2019-19534, CVE-2019-19537, CVE-2019-19767, CVE-2019-19807, CVE-2019-19956, CVE-2019-20054, CVE-2019-20095, CVE-2019-20386, CVE-2019-20388, CVE-2019-20636, CVE-2019-2737, CVE-2019-2739, CVE-2019-2740, CVE-2019-2805, CVE-2019-2974, CVE-2019-3820, CVE-2019-3890, CVE-2019-3901, CVE-2019-5094, CVE-2019-5188, CVE-2019-6465, CVE-2019-6477, CVE-2019-8331, CVE-2019-8675, CVE-2019-8696, CVE-2019-9454, CVE-2019-9458, CVE-2019-9503, CVE-2019-9848, CVE-2019-9849, CVE-2019-9850, CVE-2020-1971, CVE-2019-9851, CVE-2019-9852, CVE-2019-9853, CVE-2019-9854, CVE-2019-9924, CVE-2019-9959, CVE-2020-10531, CVE-2020-10690, CVE-2020-10713, CVE-2020-10732, CVE-2020-10742, CVE-2020-10751, CVE-2020-10757, CVE-2020-10772, CVE-2020-10942, CVE-2020-11022, CVE-2020-11565, CVE-2020-11868, CVE-2020-12049, CVE-2020-12243, CVE-2020-12653, CVE-2020-12654, CVE-2020-12662, CVE-2020-12663, CVE-2020-12770, CVE-2020-12825, CVE-2020-12826, CVE-2020-12888, CVE-2020-13817, CVE-2020-14305, CVE-2020-14308, CVE-2020-14309, CVE-2020-14310, CVE-2020-14311, CVE-2020-14363, CVE-2020-14556, CVE-2020-14577, CVE-2020-14578, CVE-2020-14579, CVE-2020-14583, CVE-2020-14593, CVE-2020-14621, CVE-2020-14779, CVE-2020-14781, CVE-2020-14782, CVE-2020-14792, CVE-2020-14796, CVE-2020-14797, CVE-2020-14803, CVE-2020-15705, CVE-2020-15706, CVE-2020-15707, CVE-2020-15999, CVE-2020-1722, CVE-2020-1749, CVE-2020-1927, CVE-2020-1934, CVE-2020-2574, CVE-2020-2732, CVE-2020-2752, CVE-2020-2754, CVE-2020-2755, CVE-2020-2756, CVE-2020-2757, CVE-2020-2773, CVE-2020-2780, CVE-2020-2781, CVE-2020-2800, CVE-2020-2803, CVE-2020-2805, CVE-2020-2812, CVE-2020-2830, CVE-2020-5313, CVE-2020-7595, CVE-2020-8492, CVE-2020-8616, CVE-2020-8617, CVE-2020-8647, CVE-2020-8649, CVE-2020-9383

Known Issues

  • Issue 28332: An issue with the original implementation of Nasuni Web Access can cause AD account lockout requiring manual unlock if a user attempts to authenticate with an invalid password and the number of shares exceeds the number of allowed login attempts specified in the AD account lockout policy. This issue will be corrected in an upcoming Nasuni release.

  • Issue 36244: The “Generate Backup Key” button used to set a backup encryption key for a remote-only Edge Appliance has been removed from the NMC’s filer encryption keys page since backup keys are automatically generated and escrowed when an escrow passphrase has been set for a 9.3 Edge Appliance. If you need to generate a backup key for a pre-9.3 Edge Appliance, you may use the Edge Appliance Admin UI.

  • Issue 36476: As part of Self-Service De-Escrow, the "Set/Change Escrow Passphrase" permission is automatically added to any groups that had the "Manage all aspects of Volumes" or "Add and Delete Volumes" permissions during the upgrade, and corresponding notification is raised. This notification is not provided on Edge Appliance after a DR from 9.0 to 9.3 if the Edge Appliance is not under NMC management.

  • Issue 38193: Applying the latest iDRAC firmware update (version 4.40.XX.XX) on 14G hardware Edge Appliances (N2040, N4040) breaks the ability to configure the iDRAC using the Nasuni console. This issue will be corrected in an upcoming Nasuni release.

Nasuni 9.0.7

Released July 16, 2021

Resolved Issues

Nasuni Platform

  • Issue 39161: Changes in file timestamps introduced by a recent Windows Defender update affected the ability to open and save files for applications such as Revit, AutoCAD, and Petrel.

Nasuni 9.0.6

Released June 29, 2021

Resolved Issues

Nasuni Platform

  • Issue 38316: An issue with how the Appliance calculates the available memory for EC2 Nitro instances can prevent the Appliance from fully booting.

Nasuni 9.0.5

Released May 24, 2021

Resolved Issues

Data Propagation and GFL

  • Issue 28172: Removed a redundant operation that could sometimes cause extended sync times and significantly impact data propagation.

Nasuni 9.0.4

Released April 26, 2021

Resolved Issues

NMC/Edge Appliance UI and API

  • Issue 32873: The SNMP Send Test Trap button in the NMC was not functional.

Nasuni Platform

  • Issue 33616: Intermittent network connectivity issues could leave an Edge Appliance stuck "Gathering Initial State" in the NMC.

  • Issue 33616: Enabling the iDRAC USB Passthrough NIC on Nasuni Hardware Edge Appliances could create a conflict that breaks access to network adapters in the UI.

  • Issue 35562: A configuration issue prevented remote-only Edge Appliances from escrowing encryption keys used for DR recovery.

  • Issue 34043: Updating proxy settings after initial configuration could fail and log the following error: "Unable to communicate with proxy. Check your proxy settings and verify that the proxy is functioning correctly."

Network Protocols and UniFS

  • Issue 36206: An NTFS permissions processing issue could prevent macOS clients from accessing the resource fork of a file even though the client could access the primary file.

Data Propagation and GFL

  • Issue 36465: Snapshots and sync operations could fail in some circumstances.

  • Issue 36533: An error-handling issue related to many open files could cause the sync process to mark unique directories as conflict directories incorrectly.

Nasuni 9.0.3

Released April 12, 2021

Resolved Issues

Data Propagation and GFL

  • Issue 36492: Names are not properly compared during sync on case insensitive volumes.

Nasuni 9.0.2

Released March 29, 2021

Resolved Issues

Nasuni Platform

  • Issue 29621: Sharing a volume between Edge Appliances using the same AD domain configuration could fail in environments with complex domain topologies.

  • Issue 35732: Fixed an issue with disconnecting CIFS clients through the NMC and Edge Appliance UI.

Data Propagation and GFL

  • Issue 27270: Enhanced the Advanced GFL Fast Sync directory list's scalability by adjusting the process that removes stale directories from the list.

  • Issue 32899: An issue with the Edge Appliance's xattr cache could cause slow directory listing performance.

  • Issue 34642: Hardened the snapshot retention pruning process to avoid a condition that could cause it to run out of memory and stall.

  • Issue 34847: Corrected a rare condition that could block sync operations on remotely connected Edge Appliances.

  • Issue 35137: Global File Lock requests could fail for a file if an Edge Appliance sent bad data to the lock server.

Security

  • Issue 35506: Disabled NetBIOS for the NMC and adjusted the backend configuration option for the Edge Appliance to disable the NetBIOS port in addition to the listener. Please contact Nasuni Customer Support if NetBIOS should be disabled for your Edge Appliances.

Nasuni 9.0.1

Released February 22, 2021

Resolved Issues

Nasuni Platform

  • Issue 26380: After adding a domain-joined Edge Appliance to NMC management, domain accounts are removed from the Edge Appliance and users cannot use them for Edge Appliance management UI authentication.

  • Issue 32700: After an otherwise successful DR, Edge Appliances with only remote volumes and no local volumes are unable to connect to remote volumes.

Network Protocols and UniFS

  • Issue 33032: When Optimized Global File Locking is enabled, and two Microsoft Excel users edit the same file from different Edge Appliances, a problem with tracking SMB file modification times could intermittently cause user edits to be lost.

Data Propagation and GFL

  • Issue 34406: A problem with generating unique identifiers could sometimes cause volume sync to fail and create an alert.

  • Issue 30496: Added an alert to detect a rare database error that could cause snapshots to fail silently.

  • Issue 35128: When SMB clients access a share with both Advanced Global File Lock and Enhanced Support for Mac OS X enabled, locks for files with Alternate Data Streams could incorrectly be left open.

Nasuni 9.0

Released December 2, 2020

New Features and Updates

  • Synchronization Improvements for Shared Volumes: We have improved the Edge Appliance function that merges changes from cloud storage during the synchronization process to improve data consistency across connected Edge Appliances and added resilience to better account for rename and move operations.

  • Edge Availability: VMware HA: In 8.8, Nasuni introduced Edge Availability to shorten the amount of time it takes for an Edge Appliance to reboot. Now in 9.0, we have validated that, when used with VMware HA, clients will automatically reconnect to an Edge Appliance after the VM restarts.

  • NMC As Its Own Product: In this release, we have broken out the Nasuni Management Console (NMC) as its own product. This provides a foundation for us to deliver management enhancements faster than in previous releases when the NMC was tied to the Edge Appliance release schedule.

  • SMB Update: Samba is a key component of Nasuni cloud file storage, which implements the SMB file-sharing protocol. In the 9.0 release, we have upgraded the underlying Samba software to version 4.12 and have aligned SMB file-sharing parameters to align with best practices for security and performance. The following changes to SMB defaults have been implemented:

    • Disabled SMBv1 protocol: For security reasons, version 1 of the SMB protocol has been disabled for all new and existing Edge Appliances. Customers who require SMBv1 access for legacy CIFS clients should contact Nasuni Customer Support when upgrading to 9.0 so that it can be enabled.

    • Disabled 8.3 name generation: 8.3 name generation allowed legacy SMB clients (e.g., DOS 6.22 and Windows 95) to access the long file and folder names created by modern SMB clients. The addition of 8.3 names can decrease directory enumeration performance and has been disabled.

    • Better performance for multi-threaded write operations: SMB asynchronous IO settings have been optimized to allow greater throughput during multi-threaded write operations.

    • Better capacity reporting: SMB (CIFS) shares now report actual file sizes rather than using an allocation rounding calculation that improved performance for some legacy SMB clients.

  • Platform Stability: We have streamlined the kernel extensions used by the Edge Appliance to improve system stability and performance.

  • Upgraded Hardware Edge Appliance Firmware: Upgraded firmware is available for Nasuni Edge Appliance hardware, including all models for N1040, N2040, and N4040 as well as supported versions of the NF-60, NF-200, NF-400, and NF-600. Use the Edge Appliance Service Console to apply the Edge Appliance's firmware update and power cycle when prompted.

Ecosystem Partner Technology Support

Detailed information about compatible and supported technologies: Nasuni Compatibility and Support

As a general rule, Nasuni supports all applications that comply with the requirements of standard file sharing protocols (e.g., SMB, NFS). Nasuni also makes further investments in new applications, such as the ones highlighted below, to ensure that end-to-end solutions provide a seamless experience for our customers.

Cloud Providers and Object Storage

AWS

  • AWS PrivateLink: AWS PrivateLink provides private connectivity between VPCs and services hosted on AWS or on-premises, securely on the Amazon network. By providing a private endpoint to access your services, AWS PrivateLink ensures your traffic is not exposed to the public internet. No configuration is required on the Nasuni Edge Appliance.

  • AWS Outposts: A fully managed service that offers the same AWS infrastructure, AWS services, APIs, and tools to virtually any data center, co-location space, or on-premises facility for a truly consistent hybrid experience. Nasuni has added support for deploying Nasuni Management Console and Nasuni Edge Appliance on AWS Outposts.

Azure

  • Azure VM Update

    • Removed the Azure VM Agent: Edge Appliance or NMC VMs deployed using the 9.0 Azure Marketplace Image or Nasuni-provided VHD no longer include the Microsoft Azure Agent and use a new Microsoft-provided mechanism to perform heartbeat registration. The installation of Azure VM Extensions is now blocked in order to preserve system integrity. Note: The Azure VM Agent is not removed when upgrading from an earlier release to 9.0. Customers wishing to operate without the Azure VM Agent should perform a DR to a new 9.0 Edge Appliance or NMC.

    • Updated Marketplace Images: 9.0 versions of the Edge Appliance and NMC will be published in the Azure Marketplace once the release has transitioned to General Availability (GA). Releases are first introduced as Limited Availability (LA) releases and are rolled out to groups of customers in several waves before GA.

    • Accelerated Networking Enabled by Default: Accelerated Networking will be enabled by default for the 9.0 Azure Marketplace Image. Accelerated networking reduces latency and improves throughput for Azure VMs.

  • Azure AD Application Proxy: Provides secure remote access to on-premises web applications. After a single sign-on to Azure AD, users can access both cloud and on-premises applications through an external URL or an internal application portal. App Proxy can be used in a Nasuni environment to provide additional security to the NMC, Edge Appliance Admin UI, and Web Access.

  • Azure Information Protection: A cloud-based solution that enables organizations to discover, classify, and protect documents and emails by applying labels to content.

Google

  • Google Compute Engine: Google Compute Engine is the Infrastructure as a Service component of Google Cloud Platform, which is built on the global infrastructure that runs Google's search engine, Gmail, YouTube, and other services. Google Compute Engine enables users to launch virtual machines on demand. Nasuni virtual appliances now support Google Compute Engine.

  • Google Cloud Storage Connector: Nasuni now provides a dedicated storage connector for Google Cloud Storage. Please contact your Nasuni Account Management Team to have this connector enabled. Selection of Region and Storage Class during volume creation is planned for a future release.

VMware

  • VMware Marketplace: Nasuni virtual appliance images are now available through the VMware Marketplace.

Applications

  • BIRD Raven BIM Communication Tool: An Autodesk Revit BIM communication tool that monitors the user's activity for the new BIM 360 Design platform and enables users to send instant messages through a common conversation specific to the project they are collaborating in. In addition to BIM 360 Design, Raven also supports Revit Server, local work-shared, and Nasuni hosted models. It notifies the user instantly whenever a team member joins the active project, is no longer active, reloads the latest modifications, or synchronizes with the central file.

  • DBM Cloud Systems AIRE: An Advanced Intelligent Replication Engine to deliver petabyte-scale replication and data migration. AIRE features an advanced rules engine to automatically replicate and distribute your data across on-premises, public, and hybrid multi-cloud endpoints — to match your cloud strategy. AIRE is a great tool for Nasuni customers who wish to migrate their Nasuni data from one object vendor to another.

Recently Unsupported Items

Hypervisors

  • Nutanix Acropolis version AOS 5.11.Z support ended in November of 2020.

Authentication Providers

  • Microsoft Windows Server 2008 and Server 2008 R2. Microsoft support ended on 01/14/2020.

Resolved Issues

NMC/Edge Appliance UI and API

  • Issue 20589: An error with time calculation could cause snapshots and antivirus scans to execute outside the configured schedule.

  • Issue 24359: An incompatibility with certain customer-generated application cookies could break login to Nasuni Web Access.

  • Issue 25097: The cleanup task for NMC notifications could fail to execute when other tasks were running, causing the disk to fill and make the NMC inaccessible.

  • Issue 25491: The NMC and Edge Appliance File Browser could return an incorrect value for the Auto Cache property for mixed case directories on case-insensitive volumes.

  • Issue 26309: Updated the NMC and Edge Appliance documentation to include an explanation of the data provided by the volume’s “Last Snapshot” field.

  • Issue 27816: The NMC API “Update a Filer” endpoint did not include a description. This endpoint can be used to update Edge Appliance settings but cannot be used to apply software updates to Edge Appliances.

  • Issue 30172: Adjusted the NMC Health Monitor memory fragmentation check's threshold values to reduce false-positive alerts.

  • Issue 31719: Added error handling to the NMC API Health Monitor endpoint to correctly account for situations where status is not available for some checks.

Nasuni Platform

  • Issue 2382, Issue 20515, Issue 28583: An issue with the Edge Appliance operating system kernel could cause an unclean shutdown.

  • Issue 24760: An issue with the process responsible for communicating with the cloud could cause the Edge Appliance to be inaccessible.

  • Issue 27659: Added a pre-upgrade check to resolve an issue that could cause the Edge Appliance upgrade process to hang and become unresponsive.

  • Issue 27739: An intermittent Edge Appliance Active Directory configuration issue could cause the create volume and create share operations to fail until the appliance is rejoined to AD.

  • Issue 29653: Auditing could misattribute user actions when multiple clients share the same IP address, common in VDI implementations.

  • Issue 30344: Revised the Edge Appliance process that acquires account keys, to avoid a rare condition that prevents an Edge Appliance from connecting to remote volumes.

  • Issue 30942: Updated the NMC and Edge Appliance documentation for CIFS shares to highlight that the “Read Only” share option is superseded when custom Authentication permissions are set. If “Read-Write” is set in the Authentication section for users or the group access, then the actual access for the user or group is Read-Write. The “Read-Write” access of the user or group overrides the “Read Only” share setting.

Network Protocols and UniFS

  • Issue 27812: Updated a third-party FTP library to resolve a memory leak that could require rebooting the Edge Appliance to restore access.

  • Issue 28199: Clients connected to shares with the Hide Unreadable Files option enabled do not receive updated directory listings reflecting changes to files or folders originating from remote Edge Appliances without manually refreshing the window.

  • Issue 30246: Adjusted SMB performance settings for shares with Enhanced Support Mac OS X enabled to allow asynchronous IO when small files (< 1088 bytes) are read or written. Prior to this change, only large file IO utilized asynchronous IO.

Data Propagation and GFL

  • Issue 26305: Incorrect matching of files and directories between cloud and local versions during the snapshot and synchronization process caused files and directories to not sync up correctly.

  • Issue 28243: Failure in a phase 2 snapshot could cause newly created files and directories to disappear on an Edge Appliance.

Security

  • Issue 29158: Updated the library and configuration used internally for SSH to resolve multiple CVEs (CVE-2017-15906, CVE-2018-15473, CVE-2018-15919, CVE-2018-20685, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111).

  • Issue 30032: Added a backend option to disable NetBIOS connections to Edge Appliances. Please contact Nasuni Customer Support if NetBIOS should be disabled for your Edge Appliances.

  • Issue 30429: Set the X-Content-Type-Options Header for Nasuni Web Access, NMC, and Edge Appliance web applications to protect against MIME sniffing security vulnerabilities.

Known Issues

  • Issue 31990: Customers using the Edge Appliance Admin UI rather than the NMC should upgrade to 9.0 before attempting to establish a remote connection to a Google volume created using a 9.0 Edge Appliance. Trying to connect using an older version of the Edge Appliance Admin UI is not blocked but will result in errors.

  • Issue 32700: Edge Appliances with only remote volumes and no local volumes are unable to connect to remote volumes after an otherwise successful DR. Contact Nasuni Customer Support before performing a planned DR to avoid this issue. A future release will correct this issue.

  • Issue 32873: The NMC UI option to send an SNMP test trap to an Edge Appliance does not function. A future release will correct this issue.

Nasuni 8.8.4

Released November 24, 2020

Resolved Issues

NMC/Edge Appliance UI and API

  • Issue 32398: The NMC API List Volumes endpoint could perform very slowly for Azure cloud storage customers using 50 or more volumes.

  • Issue 32399: Updated the NMC Health Monitor "More Information" link to reference the correct Nasuni Community Portal URL.

Nasuni Platform

  • Issue 32396: Unless a wildcard is specified, prefix-based search for Active Directory groups in the NMC or Edge Appliance UI can time-out in AD environments with a large number of groups.

Nasuni 8.8.3

Released September 23, 2020

Resolved Issues

NMC/Edge Appliance UI and API

  • Issue 31489: The Health Monitor SMB share check will now be off by default while we better tune this alert. Please contact Nasuni Customer Support if this check is required.

Nasuni Platform

  • Issue 31453: An issue with DNS resolution prevented Nasuni Appliance Proxy Configurations from working when a host name was specified for the Proxy Server.

Data Propagation and GFL

  • Issue 31188: The process that the Edge Appliance uses to read and write cloud data does not appropriately retry GET requests after a timeout.

Nasuni 8.8.2

Released August 31, 2020

Resolved Issues

NMC/Edge Appliance UI and API

  • Issue 30559: The Analytics Connector extension for the NMC and Edge Appliance File Browser could cause timeouts in the File Browser for Azure customers.

Nasuni Platform

  • Issue 30558: Using Azure ephemeral OS disks for the Nasuni OS disk is not supported and a warning will now be displayed if an Edge Appliance is using an ephemeral OS disk.

  • Issue 30735: An issue with the 8.8 release prevented Proxy Configurations from functioning with the NMC and Edge Appliance.

Data Propagation and GFL

  • Issue 30560: Resolved a performance-impacting memory issue in the service that the Edge Appliance uses to read and write cloud data.

Network Protocols and UniFS

  • Issue 31012: Restore was mistakenly bringing the contained objects into the cache before completing the restore, which could significantly increase the time to complete the restore.

Security

  • Issue 30593: Firmware update to resolve a new buffer overflow vulnerability on iDRAC for hardware Edge Appliances (CVE-2020-5344) is now available for manual install using the Edge Appliance Service Console.

Nasuni 8.8.1

Released July 14, 2020

Resolved Issues

NMC/Edge Appliance UI and API

  • Issue 29991: The Health Monitor service incorrectly reports an NFS export as unhealthy when the Allowed Hosts for the export has been changed from the default.

  • Issue 29994: Customers with Nasuni-provided cloud credentials who want to use the Analytics Connector can now use the file system browser to obtain handle and bucket information for a volume.

  • Issue 29995: Updated the validation logic for the NMC API volumes endpoint to support the listing of volumes with a second type of legacy volume GUID.

  • Issue 29996: The Health Monitor service incorrectly reports CIFS shares as unhealthy when the CIFS protocol level for the Edge Appliance is set to CIFS & SMB2.

Nasuni Platform

  • Issue 29771: An error prevented volumes with legacy volume GUIDs from automatically mounting after an Edge Appliance is upgraded to the 8.8 release.

  • Issue 29993: Added additional logic to Edge Appliances running on cloud hypervisors to ensure that new types of ephemeral disks are not used for the cache. Data stored on ephemeral devices may be lost when the virtual machine is shut down, making ephemeral devices unsuitable for the cache.

Security

  • Issue 29785: Fixed an internally discovered vulnerability in the Shared Link Global User mode of Web Access that could allow a malicious user with access to at least one Shared Link Global User Web Access share to manually manipulate network traffic in order to create shared links for folders outside of the original path, potentially granting access to data that wouldn’t otherwise be accessible to the user. Shared Link Global User mode for Web Access is not enabled by default for customers and can only be activated by contacting Nasuni Customer Support.

Nasuni 8.8

Released June 12, 2020

New Features and Updates

  • Health Monitor for Edge Appliances: Edge Appliances now report health information to the Nasuni Management Console so that administrators can better understand the health and resource utilization of their Edge Appliances. Monitored health areas include disk, network connectivity, the Nasuni file system, Nasuni services, SMB shares, NFS exports, and also includes monitoring for high CPU and memory utilization. Health Monitor information for Edge Appliances is available from the NMC UI along with recommended remediation steps. Further, warning and error messages are available via NMC notifications and the NMC API and, if configured, can be sent as email alerts, syslog, and SNMP traps.

  • Edge Availability: Edge Availability brings you even more uptime with optimized services and a faster Edge Appliance boot process. During restart, the loading of Nasuni software on virtualized appliances completes within one minute or less, representing a 40% improvement in restart performance compared to the 8.7 release. Hardware-based appliances also benefit from faster restarts, but are still subject to BIOS operations. When the Edge Appliance is running, services are more long-running, resilient, and capable of recovering from interruption.

  • Platform OS Version Update: Updated the Nasuni platform OS version to improve stability and fix security vulnerabilities. 50 CVEs were addressed by the platform OS version update.

  • Web Vulnerability Scan Remediation: Updated Web Access, Edge Appliance Admin UI, and the NMC to fix both internally-found and customer-reported security vulnerabilities. We updated shared web libraries to the latest available versions in order to resolve security vulnerabilities. We also implemented session-based IP address and user agent tracking to prevent session replay attacks across computers. If the IP address of a client using a Nasuni web interface changes, the client will be prompted to re-authenticate. If session-based IP address and user agent tracking is not required, please contact Nasuni Customer Support to disable this feature.

  • Upgraded Hardware Edge Appliance Firmware: Upgraded firmware for supported Nasuni Edge Appliance hardware, including NF-60, NF-200 Gen 2, NF-200 Gen 3, NF-400 Gen 2, NF-400 Gen 3, NF-440 Gen 2, NF-440 Gen 3, NF-600, N1040t, N1040r, N2040, and N4040.

Ecosystem Partner Technology Support

Detailed information about compatible and supported technologies: Nasuni Compatibility and Support

As a general rule, Nasuni supports all applications that are in compliance with the requirements of NAS protocols. Nasuni also makes further investments in new applications, such as the ones highlighted below, to ensure that end-to-end solutions provide a seamless experience for our customers.

  • Autodesk Civil 3D: A design and documentation solution for civil engineering that supports building information modeling (BIM) workflows.

  • AWS WorkSpaces: A managed, secure Desktop-as-a-Service (DaaS) solution.

  • AWS Snowball Edge with Nasuni Cloud Migrator: Data transport service that uses secure devices to transfer large amounts of data into and out of the AWS Cloud.

  • AWS S3 Transfer Acceleration: Enables fast, easy, and secure transfers of files over long distances between your client and an S3 bucket.

  • Azure Windows Virtual Desktop: A comprehensive desktop and app virtualization service running in the cloud.

  • F5 NGINX Plus: The only all‑in‑one load balancer, content cache, and web server. It can also be used for dual data streaming to REST-based storage.

  • Windows Distributed File System: Provides the ability to logically group shares on multiple servers and to transparently link shares into a single hierarchical namespace.

End of Life Features and Recently Unsupported Items

End of Life Features

  • iSCSI: iSCSI support ended on 10/29/2019.

  • Data Migration Service: Data Migration Service support ended on 4/30/2020.

Recently Unsupported Items

Nasuni Edge Appliance Hardware

  • NF-100 G2: NF-100 G2 support ended on 12/31/2019. The NF-100 G2 is not compatible with the 8.8 release and therefore customers will not see the option to upgrade.

Hypervisors

  • VMware ESXi 5.5 and 6.0: Final supported release was 8.7.

  • Microsoft Hyper-V 2008, 2008 R2, Server 2012, Server 2012R2: Final supported release was 8.7.

Web Browsers

  • Microsoft Internet Explorer 10: Final supported release was 8.7.

Resolved Issues

NMC/Edge Appliance UI and API

  • Issue 2520: Added a backend option to customize the authentication timeout for Nasuni Web Access. This may be required if there are 50 or more Web Access-enabled shares on an Edge Appliance. If this option is required, please contact Nasuni Customer Support.

  • Issue 21532: Added better messaging to the NMC and the Edge Appliance File Browser UI to show if Global File Lock is enabled or inherited for the current path.

  • Issue 24960: The NMC API "List CIFS file locks" endpoint could report an error if Edge Appliances earlier than the 8.7 release were under NMC management.

  • Issue 25275: Deleting quotas using the NMC could fail if the path contains Unicode or Cyrillic characters.

  • Issue 21124: An error in handling Unicode and special characters could break the management of an Edge Appliance and cause inaccurate status reporting in the NMC.

  • Issue 25679: Resolved an Issue with the NMC Create Volume UI that could incorrectly suppress a multi-protocol compatibility warning when the NTFS Exclusive volume permissions policy is selected and other settings are toggled.

  • Issue 26109: The "Download CSV" option on the NMC Unprotected Files page generated a file that was named incorrectly.

  • Issue 26199: Added an option to retain a larger number of entries for the NMC Data Propagation Visibility feature.

    If this option is required, please contact Nasuni Customer Support.

  • Issue 26211: Added daily updates to supplement the process that Edge Appliances utilize, after upgrade or first boot, to inform the NMC of version-specific capabilities.

  • Issue 26270: Changed the minimum supported CPU and RAM values for the Hyper-V and VMware NMC images to match supported minimums.

    A minimum of 2 CPUs and 16 GB of RAM are required for the NMC.

  • Issue 26271: On hardware Edge Appliances, removed unused user interface elements for replacing drives.

  • Issue 26369: Added a notification to the NMC to report if the NMC is undersized.

    A minimum of 2 CPUs and 16 GB of RAM are required for the NMC.

  • Issue 27315: In some cases, after Disaster Recovery was initiated for an Edge Appliance, the process that the NMC uses to communicate with the Edge Appliance messaging queues could deadlock , requiring a reboot of the NMC to resolve.

  • Issue 27958: Added a warning to the NMC Delete Volume process to highlight the implications for remotely connected Edge Appliances.

  • Issue 28282: A problem with the NMC option to temporarily prioritize snapshots for an Edge Appliance connected to a volume could occasionally block other connecting Edge Appliances from running snapshots.

  • Issue 28864: Removed a delay in retrieving customer-specific Edge Appliance configuration after a Disaster Recovery, so that all functionality is immediately available.

Nasuni Platform

  • Issue 20473: Added a time update failure notification to alert when an Edge Appliance is unable to connect to the configured NTP server.

  • Issue 21034: The "Update Domains" button on the NMC and Edge Appliance Directory Services page does not correctly update domain ID source information from the NOC.

  • Issue 25561: Optimized NMC and Edge Appliance and directory group search logic to address an issue that could cause searches to time out in directory environments containing a large number of objects.

  • Issue 25563: An unclean Edge Appliance shutdown could prevent the Edge Appliance services from starting after a reboot.

  • Issue 25753: Fixed an antivirus scan performance issue on NF-60 Nasuni Edge Appliances that could cause snapshots to fail.

  • Issue 26798: Removed a time-triggered file system check during boot to align with XFS filesystem best practices.

  • Issue 28464: When using the AWS Nasuni-shared AMI to launch an EC2 instance, enabling EBS encryption for the boot disk caused the Edge Appliance or NMC to enter emergency mode.

  • Issue 28857: Added handling to resolve an issue: when traffic is received on an unexpected port (for example, during an internal security vulnerability scan), that could incorrectly raise a high-utilization notification on Edge Appliances that are actually lightly loaded.

  • Issue 28945: In order to align with third-party vendor recommendations for logging verbosity, ListXattr audit messages are now suppressed by default when read auditing is enabled for a volume. If these messages are required, please contact Nasuni Customer Support.

Network Protocols and UniFS

  • Issue 25576: Users get an error when attempting to use the Windows Explorer Previous Versions interface to open Microsoft Office files.

  • Issue 26574: Data written via FTP protocol when an unexpected service failure occurs can cause a Nasuni Edge Appliance to be unresponsive.

  • Issue 27384: The configuration to disable Asynchronous I/O for the CIFS shares was no longer effective and needed an update.

  • Issue 27462: If share permissions are changed from the default and associated with an AD group with special characters in the name, creating a CIFS share could fail.

  • Issue 27757: Added a backend option to improve the throughput of multi-threaded SMB write operations. If this option is required, please contact Nasuni Customer Support.

Data Propagation and GFL

  • Issue 2366: Fixed quota merge issues that could cause quotas to disappear and an inability to create new quotas.

  • Issue 20104: I/O errors during the push of a file or directory manifest could cause the snapshot to hang, resulting in unprotected data until the cacheman process is restarted.

  • Issue 21978: NFS hardlinks are broken (handled as independent files) after propagating to remote appliances. If the hard link is used to write data on a remote appliance, data will not be saved into the expected destination.

  • Issue 23549: Newly created directories could disappear on an Edge Appliance if a network error caused the phase 2 snapshot to fail.

  • Issue 26186: Resolved a memory leak in the antivirus scan process.

  • Issue 26564: Fixed a potential data loss issue for a case when creating an NFS hard link fails.

  • Issue 27076: Resolved a rare and intermittent issue that could cause the process used by Auto Cache to crash.

  • Issue 27132: After an Edge Appliance reboot, data on volumes with millions of versions could be unavailable for up to 30 minutes, because of an issue with large version number handling.

  • Issue 28426: An incorrect push version could be sent to the Global File Lock lock server, causing an inability to unlock a file.

Security

  • Issue 25935: Disabled the use of TLS version 1.1 and earlier versions for the NMC, Edge Appliance Admin UI, and Web Access to remove support for web encryption protocols that are now considered to be insecure. If you have legacy web browsers that require TLS 1.1 or earlier, please contact Nasuni Customer Support to enable legacy encryption support.

  • Platform CVEs: The following list of CVEs has been resolved by the updates to the platform in 8.8. Note: While these CVEs are resolved in the underlying platform for 8.8, the design of the Nasuni platform may have already mitigated any potential vulnerability (e.g., CVEs that require local access to exploit, or exploits in unreferenced dependent packages): CVE-2016-10739, CVE-2016-3616, CVE-2018-0734, CVE-2018-1000876, CVE-2018-1000877, CVE-2018-1122, CVE-2018-12327, CVE-2018-12404, CVE-2018-12900, CVE-2018-14599, CVE-2018-15473, CVE-2018-15686, CVE-2018-16402, CVE-2018-16838, CVE-2018-16858, CVE-2018-16881, CVE-2018-18074, CVE-2018-18384, CVE-2018-19208, CVE-2018-19519, CVE-2018-20060, CVE-2018-3081, CVE-2018-5383, CVE-2018-5741, CVE-2018-7159, CVE-2018-9517, CVE-2019-0155, CVE-2019-0217, CVE-2019-1010238, CVE-2019-11135, CVE-2019-11745, CVE-2019-13734, CVE-2019-14287, CVE-2019-14835, CVE-2019-14901, CVE-2019-14901, CVE-2019-15239, CVE-2019-15605, CVE-2019-18397, CVE-2019-18408, CVE-2019-18634, CVE-2019-2975, CVE-2019-3846, CVE-2019-3858, CVE-2019-6470, CVE-2019-9500, CVE-2019-9631, CVE-2019-9948, CVE-2020-2604, CVE-2020-5312.

Known Issues

  • Issue 25360: An issue with Linux SMB client file locking implementation makes it incompatible with Advanced Global File Lock.

  • Issue 29157: CIFS share health checks for publicly accessible CIFS shares that are set to require encryption are not functional and will show an error for these shares.

  • Issue 29384: CIFS share health checks are not supported for LDAP bound Edge Appliances.

  • Issue 29418: Unable to create a volume in AWS South America region when Edge Appliance has already created 9 or more volumes.

Nasuni 8.7.5

Released August 25, 2020

Resolved Issues

  • Issue 31187: The process that the Edge Appliance uses to read and write cloud data does not appropriately retry GET requests after a timeout.

Nasuni 8.7.4

Released August 17, 2020

Resolved Issues

  • Issue 30985: Restore was mistakenly bringing the contained objects into the cache before completing the restore, which could significantly increase the time to complete the restore.

Nasuni 8.7.3

Released June 22, 2020

Resolved Issues

NMC/Edge Appliance UI and API

  • Issue 28831: The NMC API "List CIFS file locks" endpoint could report an error if Edge Appliances earlier than the 8.7 release were under NMC management.

Data Propagation and GFL

  • Issue 28829: After an Edge Appliance reboot, data on volumes with millions of versions could be unavailable for up to 30 minutes, because of an issue with large version number handling.

  • Issue 28888: An incorrect push version could be sent to the Global File Lock lock server, causing an inability to unlock a file.

Nasuni Platform

  • Issue 28834: Optimized NMC and Edge Appliance and directory group search logic to address an issue that could cause searches to time out in directory environments containing a large number of objects.

  • Issue 29546: In order to align with third-party vendor recommendations for logging verbosity, ListXattr audit messages are now suppressed by default when read auditing is enabled for a volume. If these messages are required, please contact Nasuni Customer Support.

  • Issue 28919: Added handling to resolve an issue: when traffic is received on an unexpected port (for example, during an internal security vulnerability scan), that could incorrectly raise a high-utilization notification on Edge Appliances that are actually lightly loaded.

Network Protocols and UniFS

  • Issue 28830: Data written via FTP protocol when an unexpected service failure occurs can cause a Nasuni Edge Appliance to be unresponsive.

  • Issue 28833: Added a backend option to improve the throughput of multi-threaded SMB write operations. If this option is required, please contact Nasuni Customer Support.

Nasuni 8.7.2

Released April 17, 2020

Resolved Issues

  • Issue 28617: Resolves an issue that could disable fast push under Global File Lock in certain circumstances.

Nasuni 8.7.1

Released April 6, 2020

Resolved Issues

  • Issue 26446: Files under Global File Lock Asynchronous mode could be inaccessible if the fastpush version was merged prematurely.

  • Issue 26578: iSCSI clients could fail to reconnect to an Edge Appliance after disaster recovery.

  • Issue 26896: An internal error on some Edge Appliances could prevent the generation of the configuration backup required for disaster recovery.

  • Issue 26953 and Issue 27326: An issue with certain Unicode characters in directory names could cause an error during snapshot pruning.

  • Issue 26967: An Edge Appliance with NFS exports could sometimes fail to successfully boot after an upgrade.

  • Issue 27305: Nasuni 8.7 VMs using the Nutanix AHV hypervisor fail to boot.

  • Issue 27306: The AMQP auditing service could unexpectedly stop shortly after AMQP auditing is configured.

  • Issue 27322: With the NMC API, an error in the validation logic for the “delete folder quota” NMC API endpoint prevents the deletion of folder quotas.

  • Issue 27323: A lock clean-up error with Advanced GFL could block opening a file as read-only from a second Edge Appliance when the file is open for editing on another Edge Appliance.

  • Issue 27325: The RAID controller firmware used for the N2040 and N4040 hardware Edge Appliances could mishandle parity, leading to potential data loss.

  • Issue 27408: If the NMC was managing any Edge Appliances earlier than 8.7, the 8.7 NMC “CIFS File Locks” page would fail to load and would return an “internal service error”.

  • Issue 27603: If the NMC was managing any Edge Appliances earlier than 8.7, the 8.7 NMC “CIFS Clients” page would display a message that “There are no CIFS clients to display” and the list would be empty.

  • Issue 27604: Fixed an issue on the NMC and Edge Appliance “CIFS Clients” page that could cause stale connections to incorrectly be listed.

  • Issue 28251: Added error handling to abort the phase 2 snapshot when a network error occurs to avoid a condition that could block sync and snapshot retention.

Nasuni 8.7

Released January 27, 2020

New Features and Updates

  • Volume Creation - The NTFS Exclusive Volume Permissions Policy is now the default when creating a Volume using the CIFS protocol. The NTFS Exclusive Volume Permissions Policy was first introduced in the 7.10 Nasuni release and improves support for historical SIDs while also providing more robust handling for additive permissions, deny permissions, and traverse permissions. NTFS Exclusive Volumes do not support multiple protocols, so if multiple protocols are required, customers should choose the NTFS Compatible Volume Permissions Policy instead.

  • Nasuni Global File Lock - Improved consistency between the Edge Appliance cache file system and the cache management database.

  • Platform Enterprise Readiness Notifications - Notifications via alerting and error messages when a Nasuni Edge Appliance connection capacity reaches preset soft limits (additional new connections are throttled), as well as when system hits preset hard limits (additional new connection requests are denied). Connection counts include all protocols, including SMB, NFS, and FTP. The alerts are squelched/rolled-up for 24 hours. Rejected connection requests receive an immediate ICMP UNREACHABLE: the client will see an error with "failed to connect to host" or similar, not hang indefinitely.

  • Nasuni Analytics Connector Support - Added information to the NMC file browser and NMC API to expose input parameters for the Nasuni Analytics Connector.

Ecosystem Partner Technology Support

Detailed information about compatible and supported technologies: Nasuni Compatibility and Support

As a general rule, Nasuni supports all applications that are in compliance with the requirements of NAS protocols. Nasuni also makes further investments in new applications, such as the ones highlighted below, to ensure that end-to-end solutions provide a seamless experience for our customers.

Applications

  • Azure Load Balancer - Support limited to geo routing clients to the closest Nasuni Filer.

Hypervisors

  • Amazon EC2-Nitro - Support for Nitro instance types.

  • Hyper-V 2019 - Support for latest release.

  • VMware Cloud on AWS - Support for running Nasuni virtual appliances.

Object Storage

  • NetApp StorageGRID - On-premise object storage supported via the Nasuni AWS connector.

  • Nutanix Objects - On-premise object storage supported via the Nasuni AWS connector.

  • Wasabi Hot Cloud Storage - Cloud object storage supported via the Nasuni AWS connector.

Resolved Issues

NMC/Edge Appliance UI and API

  • Issue 22465: The "Update an AMQP Destination" NMC API endpoint incorrectly stripped the configured AMQP password value on update.

  • Issue 25579: Improved NMC API field validation to resolve an issue that could prevent validation errors from being reported.

  • Issue 25580: The "Create Volume" NMC API endpoint was incorrectly restricting the encryption key name to 25 characters.

  • Issue 25592: A notification should be generated if an Edge Appliance is unable to perform a config backup.

  • Issue 25641: Updated the Edge Appliance UI to generate an error message when an invalid email address format is supplied for a quota or quota rule.

  • Issue 25645: Corrected a validation error in the "Create Volume" NMC API endpoint when specifying a volume permissions policy for the CIFS protocol.

  • Issue 25647: The NMC maintenance task that cleans up notifications to reclaim disk space could time out in environments with more than 100 Edge Appliances, preventing other daily NMC tasks from running.

  • Issue 25648: Updated NMC UI guidance when creating shares on a Volume that has been configured to use Advanced Global File Lock. The new guidance states: "You are attempting to create a share on a volume on which Advanced Global Locking is currently enabled or had once been enabled. ALL SMB-connected users may be briefly disconnected and reconnected automatically, which will result in data reads and writes on this filer to be disrupted."

Nasuni Platform

  • Issue 21855: Fixed issue where total unprotected files appeared larger than actual amount because deleted files were included in the calculation.

  • Issue 22394: Fixed issue where .fuse_hidden files were included in calculation of unprotected data.

  • Issue 25185: By default, all newly created Volumes using Google Cloud Storage are created in us-east1. Added handling for a Global Cloud Storage-specific 409 response code to support customers who manually move their Google Cloud Storage buckets to another region after they have been created.

  • Issue 25597: When more than one user is connected from the same client system, the CIFS File Locks data could be attributed to the wrong user in NMC and Edge Appliance UI.

  • Issue 25599: Resolved an intermittent race condition that could cause the system clock to get out of sync, resulting in a data unavailable situation.

  • Issue 25601: An intermittent failure when deleting a volume from the NMC or Edge Appliance could sometimes silently fail, resulting in unintended object storage utilization.

  • Issue 25608: Resolved an error that could prevent Edge Appliances from sending quota reports.

  • Issue 25610: Resolved an issue that could sometimes cause the Active Directory domain join process to fail if NS records are missing.

  • Issue 25631: Added better handling of lowercase and uppercase characters in Active Directory domain names to resolve an issue where Domain Names could appear multiple times in Edge Appliance drop-down menus.

  • Issue 25633: Corrected an issue on hardware-based Edge Appliances that prevented the detection of failed RAID card battery packs.

  • Issue 25642: The .nasuni/audit folder was reported as missing. Resolved the issue by protecting the folder so that it no longer allows rename or deletion.

  • Issue 25643: In some large complex customer LDAP configurations, login performance was impacted due to inefficient lookup activity.

  • Issue 25704: The process to collect data following an unplanned reboot could sometimes fail, preventing root cause analysis.

  • Issue 25793: Fixed issue that prohibited Nasuni Edge Appliances from remotely connecting to a volume created in the AWS Hong Kong region.

  • Issue 26343: An incorrectly formatted restore partition in some hardware Edge Appliances could block the Edge Appliance restore process.

Global File Locking

  • Issue 2481, Issue 2503: Fixed issue that caused inconsistent state in file system, complications with snapshots/restores, and inode warnings in log files.

  • Issue 2515: Fixed issue that caused inconsistent state in file system and many sync alerts.

  • Issue 25276: The proactive push of open files is now enabled by default when Global File Locking is utilized.

  • Issue 25652, Issue 25654: Files that are under Global File Lock can be removed from Edge Appliances connected to the volume, making them inaccessible.

  • Issue 25653, Issue 25712: Global File Lock on file that is not open prevents other users from editing and requires manual intervention to break.

  • Issue 25657: Fixed memory leak which can result when files are deleted from a directory that is under Global File Lock.

Network Protocols and UniFS

  • Issue 25600: In some circumstances, modifying an existing NFS export could break the full listing of directory contents through the Nasuni File browser or mounted NFS export.

  • Issue 25613: Added an option to enable macOS file_ids when Enhanced Support for Mac OS X clients is enabled to support workflows that requires an application to save over recently deleted files. Please contact Nasuni Customer Support if this option is required.

  • Issue 25637: Added an option to allow the rename or move of directories with open files when Enhanced Support for Mac OS X clients is enabled. Please contact Nasuni Customer Support if this option is required.

Security

  • Issue 25585: Removed support for weak sshd ciphers.

  • Issue 25596: Three Linux kernel bugs were found in the handling of TCP networking (CVE-2019-11477, CVE-2019-11478, CVE-2019-11479), that could allow a knowledgeable attacker to send specially crafted packets that cause a vulnerable system (in this case the NMC or Edge Appliance) to cause a kernel panic or cause CPU utilization to spike. This release includes an updated kernel that is not vulnerable to these attacks.

  • Issue 25609: Resolved MDS attacks on Intel processors (CVE-2018-12130, CVE-2018-12127, CVE-2019-11091, CVE-2019-11135, and CVE-2018-12126).

  • Issue 25619: Added mitigation for the L1TF, aka "Foreshadow" kernel bug (CVE-2018-3620, CVE-2018-3646).

  • Issue 25626: Added mitigation for the SWAPGS attack against x86_64 CPUs (CVE-2019-1125).

  • Issue 25634: Added options for SMB security to disable guest account access and anonymous access. Please contact Nasuni Customer Support if this option is required.

  • Issue 26149: Added a backend option to disable SMBv1 to remediate an SMB file sharing vulnerability (CVE-2019-3880). Please contact Nasuni Customer Support if this option is required.

  • Platform CVEs: The following list of CVEs has been resolved by the updates to the platform in 8.7. Note: While these CVEs are resolved in the underlying platform for 8.7, the design of the Nasuni platform may have already mitigated any potential vulnerability (e.g., CVEs that require local access to exploit, or exploits in unreferenced dependent packages): CVE-2019-3855, CVE-2019-12735, CVE-2019-11811, CVE-2018-15688, CVE-2018-16864, CVE-2018-16865, CVE-2018-18311, CVE-2018-18445, CVE-2019-2698, CVE-2016-10745, CVE-2019-2816, CVE-2018-1312, CVE-2019-10160, CVE-2019-9636, CVE-2019-3862, CVE-2019-6974, CVE-2018-18559, CVE-2018-18397, CVE-2018-5742, CVE-2019-3815, CVE-2018-5407, CVE-2019-6454,CVE-2018-5743.

Known Issues

  • Issue 22970: The User Authentication Field on the NMC and Edge Appliance UI should not be visible after toggling the Protocol field on Edge Appliances that aren't joined to AD or LDAP.

  • Issue 23230: The Create Volume NMC API endpoint doesn't require Case Sensitivity when creating a volume with the NFS protocol.

  • Issue 26122: The "preparedr" command normally used as part of the Side Load process does not complete and returns an error on Edge Appliances without volumes.

Nasuni 8.5.11

Released February 11, 2019

Resolved Issues

  • Issue 25828: Files that are under Global File Lock can be removed from Edge Appliances connected to the volume, making them inaccessible.

  • Issue 25829: Global File Lock entries are not removed from the Global File Lock map, even after the files are deleted.

  • Issue 25830: Fixed issue that prohibited Nasuni Edge Appliances from remotely connecting to a volume created in the AWS Hong Kong region.

  • Issue 26371: An incorrectly formatted restore partition in some hardware Edge Appliances could block the Edge Appliance restore process.

  • Issue 26372: Files under Global File Lock Async mode could be inaccessible if the fastpush version was merged prematurely.

  • Issue 26544: The RAID controller firmware used for the N2040 and N4040 hardware Edge Appliances could mishandle parity, leading to potential data loss.

Nasuni 8.5.10

Released November 11, 2019

Resolved Issues

  • Issue 25219: Updated the validation logic for the NMC API volumes endpoint to support the listing of volumes with legacy volume GUIDs.

  • Issue 25225: Resolved an issue with Asynchronous Global File Lock (GFL) mode that could remove files from Edge Appliances connected to the volume, making them inaccessible.

  • Issue 25276: Added an option to enable the proactive push of open files when Global File Locking (GFL) is enabled. Please contact Nasuni Customer Support if this option is required.

  • Issue 25289: Resolved an issue with Hyper-V or Azure VMs running 8.5 that could prevent them from configuring their network during initial setup or after a network reset.

  • Issue 25315: If no domain is specified during login, Web Access should use the default AD domain of the Edge Appliance to authenticate users.

  • Issue 25421: Resolved an issue with Case-insensitive volumes that could prevent SMB clients from being notified of changes to files or folders that originated from remote Edge Appliances. Previously, a manual refresh of the Mac Finder or Windows Explorer would be required in order to view the changes.

Nasuni 8.5.9

Released October 10, 2019

Resolved Issues

  • Issue 24606: When disconnecting a volume from a remote Edge Appliance, the NMC UI should warn that any unprotected files for the volume which has been disconnected will be lost after disconnecting.

  • Issue 24607: Updated the description for the Edge Appliance "General Settings" administration page to clarify that users specified as Administrative Users must also have the appropriate share permission to access the share.

  • Issue 24609: Disabling AMQP auditing for a volume could fail to correctly enable logging to the volume's ".nasuni" directory.

  • Issue 24611: Files that are under Global File Lock which are moved from one directory to another can be removed from Edge Appliances connected to the volume making them inaccessible. Data can be restored from previous versions.

  • Issue 24612: When the AMQP audit service is used with Varonis, event processing would stop when sequence numbers exceeded the Varonis 32-bit maximum.

  • Issue 24712: Files that are under Global File Lock Advanced mode can be removed from Edge Appliances connected to the volume making them inaccessible. Data can be restored from previous versions. This affects Bentley MicroStation and other applications which delete and recreate files when saving.

Nasuni 8.5.8

Released September 11, 2019

Resolved Issues

  • Issue 23786: Resolved an installation issue for the 12-disk variant of the NF-440 Gen 3 Edge Appliance.

  • Issue 23787: The audit logger process used for integration with AMQP-based auditing services, such as Varonis or STEALTHbits, is incorrectly disabled when the Edge Appliance auditing configuration page is saved.

  • Issue 23788: File or directory renames that include a change in case were not being correctly propagated for case insensitive volumes.

  • Issue 23789 and Issue 23918: The Edge Appliance Cloud Volume Manager service could fail to push a volume TOC that contains millions of versions.

  • Issue 23790: When Syslog Export is configured for the NMC and a DR of the NMC is performed, some essential services for the NMC could fail to start.

  • Issue 23920: Added a backend configuration option to disable anonymous (NULL session) SMB logins to resolve an issue that could result in thousands of unused null sessions that would impact server performance. Please contact Nasuni Customer Support if this option is required.

  • Issue 24427: To remedy observed performance and compatibility issues, this update changes the default state of TCP_SACK first introduced in Issue 23308 for 8.5.4 to re-enable TCP_SACK. This setting controls a mitigation for two Linux kernel bugs that were found in the handling of TCP networking (CVE-2019-11477, CVE-2019-11478), that could allow a knowledgeable attacker to send specially crafted packets that cause a vulnerable system (in this case the NMC or Edge Appliance) to cause a kernel panic or cause CPU utilization to spike. Please contact Nasuni Customer Support if this option is required.

  • Issue 24538: When multiple volumes are connected to an Edge Appliance and autocache is configured, the volume sync process could fail, causing new data in the cloud to be inaccessible on the Edge Appliance.

Nasuni 8.5.7

Released August 20, 2019

Resolved Issues

  • Issue 24269: When Advanced Nasuni Global File LockTM is enabled and a lock is downgraded, a file could be incorrectly removed from the Edge Appliance cache in certain circumstances.

Nasuni 8.5.6

Released August 12, 2019

Resolved Issues

  • Issue 24133: Added error handling to the snapshot retention process to prevent pruning if a file manifest could not be read.

Nasuni 8.5.5

Released August 02, 2019

Resolved Issues

  • Issue 23960: Disable creation of a critical manifest list on first snapshot after upgrade which can cause data propagation delays.

Nasuni 8.5.4

Released July 29, 2019

New Features and Updates

  • Additional AWS S3 Regions added for BYOC Customers - EU (Paris), EU (Stockholm), Asia Pacific (Hong Kong), China (Beijing), China (Ningxia), GovCloud (US-East), GovCloud (US-West).

Resolved Issues

  • Issue 23080: If an Edge Appliance is under NMC control and is licensed for Nasuni Global File LockTM, the link for Global File Lock should be visible in the Configuration section of the Edge Appliance Admin UI.

  • Issue 23133: Fixed a condition that could result in a leaked lock when using Nasuni Global File Lock in advanced mode.

  • Issue 23134: Fixed a snapshot edge case that could cause wasted CPU cycles.

  • Issue 23135: Updated the "Enhanced Support for Mac OS X Clients" share setting to correct an issue that could cause macOS resource forks greater than 128KB to be stripped during migration.

  • Issue 23136: Fixed an issue that could cause file quota usage to be displayed inaccurately. Deleting the associated quota and recreating the quota may be required after this update for quota to be displayed accurately.

  • Issue 23428: Fixed an issue that could cause files to be incorrectly removed from the Edge Appliance cache when using Nasuni Global File Lock

  • Issue 23435: Reverted an 8.5 fix to support copying files with corrupt Mac AFP_AfpInfo Alternate Data Streams (Issue: 2538) to resolve an issue that could prevent connected SMB clients from listing newly created folders when the "Enhanced Support for Mac OS X" share setting was enabled.

Resolved Security Issues

  • Issue 23308: Two Linux kernel bugs were found in the handling of TCP networking (CVE-2019-11477, CVE-2019-11478), that could allow a knowledgeable attacker to send specially crafted packets that cause a vulnerable system (in this case the NMC or Edge Appliance) to cause a kernel panic or cause CPU utilization to spike. This update adds an option to override default TCP parameters to prevent these attacks. Please contact Nasuni Customer Support if this option is required.

Nasuni 8.7.1

Released July 01, 2019

Resolved Issues

  • Issue 23363: An issue with how Advanced Global Locking handles lock downgrades may cause data unavailability in certain instances.

Nasuni 8.5.2

Released June 19, 2019

Resolved Issues

  • Issue 23180: When the filer alert service is not configured for a volume, the process that manages snapshots could cause high memory consumption after several days.

Nasuni 8.5.1

Released June 12, 2019

Resolved Issues

  • Issue 22628: Stale pinning or autocache entries for deleted volumes could cause the 8.5 NMC upgrade to fail.

  • Issue 22639: A file permissions problem could block NMC login after upgrading to 8.5 and an "Internal Server Error" message would be displayed.

  • Issue 22640: An SMB file sharing issue in 8.5 prevents users from connecting to Publicly Available Volumes using SMBv3 on AD bound Edge Appliances. This fix resolves access for Windows and Linux clients. An unresolved bug in macOS related to guest access prevents macOS clients from connecting. rdar://51157962 has been filed with Apple for this issue.

Nasuni 8.5

Released May 16, 2019

New Features and Updates

Extended Platform Capability

  • Data Propagation Visibility – Added functionality that provides graphical insight into the performance of data propagation from source Nasuni Edge Appliances to any remotely connected Edge Appliances. Added visibility for Data Propagation Time (DPT) and the Age of Oldest Unprotected Data (OUD) for a volume. DPT measures the time between snapshot start and when sync completes on connected Nasuni Edge Appliances, so that administrators can understand the performance of data propagation in their Nasuni environment. OUD reports the age of the oldest data or metadata change for a volume in the cache that has not yet been protected by a snapshot. Both graphs support multiple views – including 30-day, daily, and hourly – to provide insight into both historical and recent data propagation performance. Views also include Max and Average times, along with per-Edge Appliance information where appropriate.

  • NMC API Enhancements – Added functionality that enables customers to programmatically manage their Nasuni environment, and to automate critical business workflows for data governance and application integration. Added NMC API endpoints for the following NMC functionality:

    • Enabling/disabling Global File Lock for a given path.

    • Manage cache residency for a given path by configuring Pinning and Autocache, as well as an API endpoint to bring a path into cache.

    • Control the pinning of data and metadata for a path.

    • Collect metadata information for a file or folder via API (size, owner, configured options for a path).

    • Create a folder within a specified volume path.

    • Configuring volume audit settings for Nasuni and third-party auditing integration.

    • Provide a centralized NMC API endpoint to configure third-party AMQP auditing across multiple Edge Appliances.

    • NMC API endpoints are now throttled to preserve NMC performance and stability. NMC API endpoints are generally limited to 5 requests/second for "Get" actions and 1 request per second for "Post", "Update", or "Delete" actions. Nasuni recommends adding "sleep" or "wait" steps to existing API integrations to avoid exceeding the throttling defaults. A per-account backend setting has been added to adjust these defaults where required. Please contact Nasuni Customer Support if this option is required.

Enterprise Support

  • Platform Enterprise Readiness – A key component of the Nasuni Cloud File Services platform is Samba, an implementation of the SMB file-sharing protocol. In the Spring 2019 release, we have upgraded the underlying Samba software to version 4.9, and have included a number of enhancements to ensure the stability of the platform at high user connection levels (1000 or more connections). This enhancement ensures that our largest customers experience stability and usability of the Nasuni platform for SMB workloads.

  • UniFS Global File Lock Resilience – This release includes a number of enhancements to improve the resiliency of the Nasuni Global File Lock service, which customers leverage to share and collaborate across their enterprise. These enhancements to the Global File Lock service ensure that customers with large, extensive synchronization and collaboration environments achieve consistency and expected levels of performance.

  • NMC Enterprise Readiness and Performance Improvements – Improved the resiliency of the Nasuni Management Console (NMC) process that manages Edge Appliances, and extended its scalability when managing a large number of Edge Appliances (100 or more) by reducing memory and CPU utilization. Also optimized the NMC Volumes Connections page to improve NMC UI performance for customers with a large number of volumes. Load times have been reduced from minutes to just a few seconds.

  • NTFS Exclusive Mode Volume Upgrade – In a previous release (7.10 in 2017), Nasuni introduced the NTFS Exclusive volume mode for new volumes, to improve NTFS permissions compatibility and better support users and groups with historical SIDs. However, existing volumes that were in NTFS-compatible mode could not take advantage of this compatibility improvement until now. With the Spring 2019 release, customers with NTFS-compatible volumes can now upgrade those volumes to NTFS Exclusive mode and take advantage of significant compatibility improvements for SMB-only workloads. This change is done without having to migrate the data, which saves time and resources for customers.

  • macOS Owner Permissions Control - Extended the Enhanced Support for the Mac OS X share feature to add compatibility for the Windows "Owner Rights" well-known SID to give administrators the ability to limit the permissions that NTFS Owners are implicitly granted. When used in conjunction with Nasuni permissions best practices, adding the "Owner Rights" well-known SID to the NTFS ACL with modify rather than full control permissions will prevent owners from inadvertently changing NTFS permissions. This will avoid problems observed with broken inheritance and duplicated permissions on the Mac platform.

Ecosystem Partner Technology Support

Detailed information about compatible and supported technologies: Nasuni Compatibility and Support

As a general rule, Nasuni supports all applications that are in compliance with the requirements of NAS protocols. Nasuni also makes further investments in new applications, such as the ones highlighted below, to ensure that end-to-end solutions provide a seamless experience for our customers.

Applications

  • Autodesk Revit 2020 - building information modeling software for architects, landscape architects, structural engineers, MEP engineers, designers and contractors.

  • Esri ArcGIS - A platform for working with maps and geographic information.

  • Bentley OpenRoads Designer (Formerly InRoads) - A comprehensive modeling environment to provide construction-driven engineering to help accelerate project delivery of road networks, unifying design and construction processes from concept to completion.

  • Bluebeam Revu - Delivers PDF creation, editing, markup, and collaboration technology for your design and construction workflows.

  • SKM Power*Tools - Electrical power systems analysis and design software for fault calculations, load flow, coordination, arc flash hazards, motor starting, transient stability, reliability, harmonics, grounding, cable pulling, and more.

  • Acronis Files Connect - An AFP server that runs on your Windows server, and enables Macs to connect to file shares and NAS via Apple Filing Protocol (AFP) instead of the Server Message Block (SMB) protocol. Integrates with Mac Spotlight for search.

  • Varonis DatAdvantage - Maps who can access data and who does access data across file and email systems, shows where users have too much access, and then safely automates changes to access control lists and security groups.

  • Varonis Data Classification Engine - Gives context around sensitive data, so that you can easily identify and lock down overexposed data and stale data, and remediate security vulnerabilities.

  • Cloudtenna DirectSearch - Direct content intelligence agent uses deep machine learning to identify the files most relevant to each individual user, thereby providing intelligent search, file sharing, and communications solutions.

  • GrayMeta Curio - A search solution that can harvest data from many different sources.

  • SearchBlox - Provider of enterprise search, sentiment analysis, and text analytics solutions.

  • SharePoint Search - Enables users to find relevant information, and makes it easy for Search administrators to customize the search experience.

  • CyberArk Privileged Session Manager - A central access control point into critical systems with real-time monitoring and recording.

Hypervisors

  • VMware ESXi 6.7 - Support for latest release.

  • Nutanix Acropolis (HCI) - Supported with AHV, Hyper-V, or VMware-based hypervisors.

Object Storage

  • Azure ZRS - Simplifies development of highly-available applications by storing three replicas of your data in different Availability Zones, with inserts and updates to data being performed synchronously across these Availability Zones.

  • Google Cloud Storage - Cloud object storage supported via the Nasuni AWS connector.

  • Virtustream Storage Cloud - Cloud object storage supported via the Nasuni AWS connector.

  • Hitachi Vantara HCP - On-premise object storage supported via the HCP connector.

  • WD ActiveScale - On-premise object storage supported via the Nasuni AWS connector.

  • Scality RING - On-premise object storage supported via the Nasuni AWS connector.

  • Cloudian HyperStore - On-premise object storage supported via the Nasuni AWS connector.

  • PureStorage FlashBlade - On-premise object storage supported via the Nasuni ECS connector.

  • Azure StorSimple - Supported as a migration source.

Resolved Issues

NMC/Edge Appliance UI and API

  • Issue 2461: Added a warning during CIFS shares creation if Advanced Global File Locking has been configured for any path within the volume. The warning indicates that "You are attempting to create a share on a volume on which Advanced Global File Locking is enabled. ALL SMB-connected users may be disconnected, which will result in data reads and writes on this Filer to be disrupted. Users might need to re-reconnect."

  • Issue 2476: Added help text to the Add New/Edit Cloud Credentials Name field.

  • Issue 2469: The Edge Appliance UI should not allow volume creation without first uploading an encryption key if the account has been configured to disable encryption key generation and escrow.

  • Issue 2495: Deleting an NMC user could fail when volume Safe Delete is enabled.

  • Issue 2553: The Edge Appliance and NMC Cloud Credentials page should wrap the text in the Volumes column when multiple volumes are associated with a credential.

  • Issue 2676: If an Edge Appliance is under NMC control and is licensed for Global File Lock, the link for Global File Lock should be visible in the Configuration section of the Edge Appliance Admin UI.

  • Issue 4581: Added additional encryption export compliance checks to the Serial Numbers page.

  • Issue 18337: In Active Directory environments with a large number of AD users or groups or when numerous trusts are present, using the Edge Appliance or NMC GUI to search for a user or group could return a "not found" result even though the user or group exists in AD.

  • Issue 18358: The NMC API documentation shows read-only options as valid entries for body properties.

  • Issue 20463: When an Edge Appliance is configured to use an HTTPS Proxy and the proxy password contains a pound sign (#) or a forward slash (/), the Edge Appliance will fail to join NMC management.

  • Issue 20667: The NMC API notification endpoint should return results that are ordered from newest to oldest.

  • Issue 21198: When using cloud credential on multiple Edge Appliances not under NMC Control, adding the Edge Appliances to NMC could lead to an overwrite of cloud credential information on the Edge Appliance after joining.

  • Issue 21293: Using the NMC to connect or disconnect a remote volume could time out when more than 100 Edge Appliances are deployed.

Nasuni Platform

  • Issue 2636: A configuration parameter to disable the creation of an SMB-related database was not honored, resulting in an unexpected large file that could cause an outage because the Edge Appliance /var partition filled.

  • Issue 2413: If the Nasuni Edge Appliance logging directory reaches its quota, the process that rotates and cleans up old logs to free up space could break, preventing the addition of new logs.

  • Issue 2517: If the Copy on Write (COW) partition fills during snapshot, in some rare cases, the snapshot process could stall rather than recovering.

  • Issue 2565: The Edge Appliance should report more helpful error messages during domain join.

  • Issue 2573: When performing DR on an Edge Appliance that accesses a volume through remote access, the Edge Appliance may fail to mount the volume if the Edge Appliance has been offline for an extended period of time.

  • Issue 2594: Removing the Edge Appliance AD configuration could fail to clean up the associated AD machine account, preventing subsequent attempts to rejoin AD with the same configuration.

  • Issue 11278: Removed the "Content-Type" header from the proxy request sent by the NMC or Edge Appliance to resolve a "Proxy CONNECT aborted" error raised by some third-party proxy software when configuring a proxy integration.

  • Issue 20824: Edge Appliances failed to connect to remove volume backed by Hitachi Content Platform storage when multiple user accounts are used for the connector.

Global File Locking

  • Issue 2477: Directories with Global File Locking enabled failed to propagate data on Edge Appliances under high load due to a problem with the prioritization algorithm.

  • Issue 19097: Volumes with folders enabled for Global File Locking could show unprotected data even after a snapshot completes, because of an issue that could block files from being retried while the process that manages snapshots was busy.

  • Issue 20089: The UniFS service should not return an I/O error when requesting files be brought into cache that are already in cache.

  • Issue 21163: Files in a directory that has Global File Locking enabled failed to propagate when appliance was under high workload.

  • Issue 21598: Concurrent open-write-close operations on a file in a directory that has Global File Locking Asynchronous mode enabled can lead to a lock being held on a file long after the file has been closed.

  • Issue 21705: Failed to acquire a lock for file under Advanced Global File Locking mode after lock upgrade/downgrade.

Network Protocols and UniFS

  • Issue 2542: Snapshot which did not complete should not be reported as a success.

  • Issue 3516: An issue with quota processing could delay writes by up to 30 seconds when 1000s of quotas are set for a volume.

  • Issue 2538: Copying a file with a corrupted Mac AFP_AfpInfo Alternate Data Stream (ADS) from Windows to a Nasuni Share enabled for Enhanced Support for Mac OS X fails. Windows reports the following error: "An unexpected error is keeping you from copying the file". The file should be copied but the corrupt AFP_AfpInfo ADS should be skipped.

  • Issue 2543: Changing file name case from upper to lower case fails on case insensitive volumes.

  • Issue 2659: Snapshot failed to complete on extremely rare condition where inode generation number is zero.

  • Issue 2684: Snapshots older than the volume retention policy are not removed when process encounters unexpected file handles.

  • Issue 3083: Potential file I/O errors when adding/removing hardlinks while file is open.

  • Issue 11631: Access to object ACLs that have historical SIDs is broken for NTFS Compatible Volumes in Nasuni Edge Appliance 8.0 and 8.3 versions.

  • Issue 20833: When "Enhanced Support for Mac OS X Clients" is enabled for a share, and the "Owner Rights" Windows well-known SID is applied to restrict the permissions granted to folder or file owners, the SID is not correctly processed when evaluating permissions, leading to a condition where Mac users are unable to create new folders or access folders that they own.

  • Issue 21413: CIFS sessions are disconnected with Status_Network_Session_Expired after kerberos TGT expiry time elapses (10 hours by default in most kerberos implementations).

  • Issue 21537: Quota may be inaccurate after snapshot when quota delta values are not automatically reset.

  • Issue 22016: Improved error handling after an unexpected service restart in order to resolve a condition that could block Edge Appliances from running snapshots or syncs for the impacted volume.

Security

  • Issue 2406: Added a Backend option to control the list of supported ciphers for SFTP in order to remediate vulnerabilities reported by security vulnerability scans. Please contact Nasuni Customer Support if this option is required.

  • Platform CVEs – The following list of CVEs has been resolved by the updates to the platform in 8.5. Note: While these CVEs are resolved in the underlying platform for 8.5, the design of the Nasuni platform may have already mitigated any potential vulnerability (e.g., CVEs that require local access to exploit, or exploits in unreferenced dependent packages): CVE-2015-8830, CVE-2016-4913, CVE-2016-9396, CVE-2017-1000050, CVE-2017-10661, CVE-2017-11600, CVE-2017-13215, CVE-2017-16939, CVE-2017-16997, CVE-2017-17805, CVE-2017-18208, CVE-2017-18232, CVE-2017-18267, CVE-2017-18344, CVE-2017-3735, CVE-2018-0495, CVE-2018-0732, CVE-2018-0737, CVE-2018-0739, CVE-2018-1000005, CVE-2018-1000007, CVE-2018-1000026, CVE-2018-1000120, CVE-2018-1000121, CVE-2018-1000122, CVE-2018-1000199, CVE-2018-10119, CVE-2018-10120, CVE-2018-10322, CVE-2018-10583, CVE-2018-10675, CVE-2018-1068, CVE-2018-10768, CVE-2018-10844, CVE-2018-10845, CVE-2018-10846, CVE-2018-1087, CVE-2018-10883, CVE-2018-10902, CVE-2018-1091, CVE-2018-1092, CVE-2018-1094, CVE-2018-10940, CVE-2018-1118, CVE-2018-1120, CVE-2018-1130, CVE-2018-12910, CVE-2018-13405, CVE-2018-13988, CVE-2018-14629, CVE-2018-14633, CVE-2018-14633, CVE-2018-14634, CVE-2018-14646, CVE-2018-14646, CVE-2018-15120, CVE-2018-16841, CVE-2018-16851, CVE-2018-16852, CVE-2018-16853, CVE-2018-16857, CVE-2018-3620, CVE-2018-3639, CVE-2018-3665, CVE-2018-3693, CVE-2018-5344, CVE-2018-5390, CVE-2018-5391, CVE-2018-5803, CVE-2018-5848, CVE-2018-7566, CVE-2018-7740, CVE-2018-7757, CVE-2018-8897.

Nasuni 8.4.3

Released March 28, 2019

Resolved Issues

  • Issue 20404: An empty "name" value for the AUDIT_LISTXATTR attribute could cause the auditlogger process used to integrate with Varonis to crash.

  • Issue 20408: When an Active Directory domain trust is configured for selective authentication, Authenticated Users cannot renew user tickets, causing authentication to fail after ticket expiration.

  • Issue 20909: Bringing directories with hard links into cache can fail if parent-child relationships are present. The failure is not recoverable.

Nasuni 8.4.2

Released March 05, 2019

Resolved Issues

  • Issue 20373: Under certain conditions, an incorrect UniFS directory entry is updated during a successful snapshot, leaving the accurate directory entry unprotected and generating a notification that a "skipped invalid dirty directory" was present and that "This system needs to be manually examined."

  • Issue 20375: If a network error is encountered while bringing directories with hard links into cache, the operation fails and is not recoverable.

  • Issue 20389: A database issue could cause some objects to repeatedly fail during snapshots.

  • Issue 20393: When more than 100 Edge Appliances are managed by the NMC, pressing the Refresh Managed Filers button could return a message stating that "An unknown error" occurred.

  • Issue 20395: A snapshot cancelled warning should not be reported in the NMC or Edge Appliance notifications when a snapshot ends after the 10 minute default max push duration. By design, unprotected data will be queued for the next snapshot.

  • Issue 20805: Converting a volume from the S3 to HCP connector fails when a new, rather than existing, HCP user account is specified in cloud credentials.

Nasuni 8.4.1

Released February 02, 2019

Resolved Issues

  • Issue 3080: Fixed issue listing the contents of a “.snapshot” directory on an NFS export when the directory contains hardlinks.

  • Issue 3081: When Global Locking is enabled, an issue with lock ordering could cause the filesystem process on Edge Appliance to restart under heavy load.

  • Issue 11989: Client file share operations could be delayed by 30 seconds or more when a large number of quota objects are configured (>2000).

  • Issue 18718: A configured NFS export could fail to be exported because of a delay in system startup.

  • Issue 19686: Raised the maximum number of versions for a volume from 2147483647to 9223372036854775807 to correct an issue that could cause data propagation to fail.

Nasuni 8.4

Released December 19, 2018

New Features and Updates

  • Data Propagation Visibility: Added functionality that provides graphical insight into the performance of data propagation from source Nasuni Edge Appliances (Filers) to any remotely connected Edge Appliances. Added visibility for Data Propagation Time (DPT) and the Age of Oldest Unprotected Data (OUD) for a volume. DPT measures the time between snapshot start and when sync completes on connected Nasuni Edge Appliances so that administrators can understand the performance of data propagation in their Nasuni environment. OUD reports the age of the oldest data or metadata change for a volume in the cache which has not yet been protected by a snapshot. Both graphs support multiple views including 30 day, daily and hourly to provide insight into both historical and recent data propagation performance. Views also include Max and Average times along with per Edge Appliance information where appropriate.

  • NMC API: Added NMC API endpoints for the following NMC functionality: Configure Nasuni Global File Lock and Global Lock mode for a given path, manage cache residency for a path by configure Pinning and Autocache as well as adding an NMC API action to bring a path into cache. Added a Path Status endpoint to report on configuration and status for a given path,

  • NMC Performance: Optimized the NMC Volumes Connections page to improve NMC UI performance for customers with a large number of volumes. Load times have been reduced from minutes to just a few seconds.

  • HCP Object Storage: Added support for the Hitachi Content Platform (HCP) Object Store.

  • Nutanix Acropolis Hypervisor Support: Added support for the Nutanix Acropolis Hypervisor.

  • Expanded AWS Hypervisor Support: Added support for AWS EC2 instance types based on the Nitro hypervisor such as the M5 and C5 instance types.

  • Reliability, Availability, and Stability Updates:

    • Updated platform for SMB (CIFS) file sharing and Directory integration - Samba has been upgraded to version 4.8

    • Base OS: Updated the Edge Appliance and NMC Base Operating System.

Resolved Issues

  • Issue 13022: All files are not uploaded in the Web Access multi-upload dialog.

  • Issue 14593: An error could allow remotely connected volumes to remain attached to the remote filer after the volume is deleted.

  • Issue 14988: A timing issue during DR could cause NMC users to have an incomplete set of actions after login.

  • Issue 15175: Network traffic for the Side Load process could be interrupted because of network queue exhaustion.

  • Issue 15258: Under heavy load, the Edge Appliance could become unresponsive and logging could stop.

  • Issue 15806: The NMC overview page "File Types Written" section displays "MB" for values that should be listed in KB.

  • Issue 15856: Enforce 15-character hostname limitation in the Edge Appliance service menu to match the GUI limitation.

  • Issue 16027: Added better error messaging to the Edge Appliance HTTPS Proxy Settings page to indicate failure because of an incorrect or missing password.

  • Issue 16038: When removing the final "Do Not Proxy" entry from the Edge Appliance HTTPS Proxy Settings page, the action could fail to complete.

  • Issue 16111: If the Edge Appliance is configured to use an external auditing service such as Varonis and the settings don't match with the what the AMQP receiver expects, the Edge Appliance's AMQP sender should properly stop and reflect "not connected" as the status.

  • Issue 16123: When an admin uploads an invalid volume encryption key to an Edge Appliance, an informative error message should be returned rather than a generic "internal error" message.

  • Issue 16165: The NMC was incorrectly reporting the private IP address as the public IP address for a publicly available Azure Edge Appliance.

  • Issue 16171: The process that manages the Edge Appliance cache could lock up when processing large sparse files with extents that do not fit into memory or when the manifest contains many contiguous chunks that should be collapsed into one.

  • Issue 16255: Configure a limit (100,000 entries) when downloading a list of Unprotected Files as a CSV so the NMC does not run out of memory.

  • Issue 16296: Improved error handling to notify when a file restore fails because the file already exists in the destination directory.

  • Issue 16327: Attempting to change the user "Time Zone" in the NMC fails with an error.

  • Issue 16336: The SNMP process fails to start after DR completes for an Edge Appliance.

  • Issue 16351: Tooltips for Actions within the Volume List on the NMC Volumes page are not consistently updated to reflect the correct text when Actions are manually invoked.

  • Issue 16483: In certain conditions, an Edge Appliance could fail to send a full list of supported features (such as support for case-insensitive volumes) to the NMC after a reboot resulting in features being missing in the NMC UI for the corresponding Edge Appliance.

  • Issue 16489: Adjusted the calculation of Edge Appliance CPU utilization in a multi-processor environment to avoid an incorrect "CPU over threshold" warning.

  • Issue 16497: Capped the maximum amount of Edge Appliance RAM to 128 GiB. Any memory above the limit of 128 GiB is ignored.

  • Issue 16562: Reclaimed space from the deletion of log files during log rotation isn't available until the Edge Appliance is rebooted.

  • Issue 16605: Updates to Groups with Domain Associations are not correctly handled, resulting in conflicts that can cause the NMC queue management process to crash.

  • Issue 16609: Static routes are lost on network config save.

  • Issue 16610: Deleting a volume using the NMC with IE11 succeeds, but the UI gets stuck in a pending state.

  • Issue 16637: Added an optional backend Edge Appliance configuration to support long running migration actions that could result in more that 16424 open files by a single user. Please contact Nasuni Customer Support if this option is required.

  • Issue 16678: Updated the "show_idrac" Edge Appliance Service Menu command to correctly reflect that status of the iDRAC NIC as dedicated rather than shared.

  • Issue 16697: NMC UI incorrectly requires users to choose "Case-Sensitive Paths" for case insensitive volumes.

  • Issue 16698: After resizing the cache partition for an Edge Appliance VM, the appliance is unable to make use of the increased size.

  • Issue 16700: When accessing a file using a SMB share mapped to a subdirectory rather than the root of a case insensitive volume, file access can fail if the request uses a file name case differs from the original file name case.

  • Issue 16716: Added a backend Edge Appliance configuration option to adjust the domain join timeout so that domain join operations in complex AD environments have enough time to complete. Please contact Nasuni Customer Support if this option is required.

  • Issue 16753: The Nasuni process used to interface with external auditing services such as Varonis can be prevented from reconnecting after sustained outages that cause the audit logger queue become full

  • Issue 16796: Memory leak in SMB quota module.

  • Issue 16834: If a remotely accessible volume has more than one remote connection, the Filer "x Remote" text in the Filer column of the NMC Volume List does not accurately reflect the number of remotely connected Edge Appliances.

  • Issue 16845: When the SMB server responds to an encrypted request in an expired session, its response is unencrypted, and the client ignores the unencrypted response.

  • Issue 16861: Add support for an optional second M.2 BOSS card for the N4040 appliance.

  • Issue 16865: Setting SMB Encryption back to "Optional" after setting SMB Encryption to "Desired" or "Required" silently fails.

  • Issue 16891: Moved a Global Lock configuration setting first introduced in 7.10 from a default setting to a backend configuration variable. This setting made GL push in progress files--files not yet fast pushed to the cloud--show up as 0 byte files on remote Edge Appliance rather than waiting to make them visible until push completes, leading to a potential scenario where a user tries to open a file that isn't yet capable of being retrieved from the cloud and the end user application would show the file as corrupt. Please contact Nasuni Customer Support if this option is required.

  • Issue 16937: When retrieving data containing unsorted file manifests from the cloud (written by filers running version 5.1.5 and earlier), a process could repeatedly crash.

  • Issue 16951: The Broadcom 10GbE NIC in the N4040 Edge Appliances can stop passing traffic under heavy load because of a problem with the manufacturer-supplied kernel driver.

  • Issue 16967: Incorrect quota counts can cause snapshots to fail.

  • Issue 17006: An out-of-order message chunk could crash the service that NMC uses to connect to the message queuing service.

  • Issue 17040: An unexpected change in accessible data for volumes could be reported after a volume is shared with a new Edge Appliance.

  • Issue 17043: Under certain circumstances, a directory that was present in cache but not present in the Edge Appliance database, could cause the directory to incorrectly be processed as a root directory during a snapshot, causing a flood of sync error messages.

  • Issue 17045: Editing the Edge Appliance and NMC settings for Filer System Alert to disable Snapshot Alerts generates a validation error when attempting to save the configuration.

  • Issue 17051: NTACLs aren’t correctly set for files created by Mac clients when Enhanced Support for Mac OS X is enabled.

  • Issue 17052: The backend communications service used by the NMC could restart if a request takes longer than 2 minutes to complete.

  • Issue 17059W: When an Edge Appliance has striped cache disks, a request to delete a Volume could fail to finish because of a blocking request from an unrelated metrics collection process.

  • Issue 17106: The process providing SMB access could run out of space to store essential configuration files.

  • Issue 17107: Log rotation could fail to move logs to cache during snapshot and subsequent move attempts would also fail until the Edge Appliance is rebooted.

  • Issue 17117: The NMC UI only displays a subset of Edge Appliances connected to a volume.

  • Issue 17136: Files in directories under Global Lock could be stuck as unprotected when the UniFS directory manifest had a version attribute set to zero.

  • Issue 17166: Added a Backend option to set the minimum TLS version and acceptable cipher suites for Edge Appliances. Please contact Nasuni Customer Support if this option is required.

  • Issue 17171: Added throttling to the NMC API endpoints to preserve NMC stability and performance

  • Issue 17209: SNMP metrics for the following Edge Appliance attributes were not showing correct values: filerOpensForRead, filerOpensForWrite, filerReadHits, filerReadMisses, filerMergeConflicts.

  • Issue 17273: Idle sessions cleanup in Samba causes poor SMB performance. Adjusted idle cleanup behavior thresholds and frequency to minimize process queueing and high CPU utilization during idle session cleanup.

  • Issue 17320: Nasuni Filer – restore - Restore to a different destination directory copies the .nasuni tree into it.

  • Issue 17387: Using the NMC to edit Host Options for an NFS Export causes a "Failed to update" error.

  • Issue 17417: The process the Edge Appliance uses to communicate to the cloud could crash if an HTTPS proxy is configured and the password contains special characters such as '\\*\\\'

  • Issue 17421: Snapshots running during a seasonal time change could crash the service that NMC uses to connect to the message queuing service.

  • Issue 17446: A ".snapshot" directory is reported as file instead of a directory for connected clients.

  • Issue 17509: Enabling syslog auditing can cause internal logging to stop until the process is restarted.

Resolved Security Issues

  • Issue 15298: Release BIOS and microcode updates for Gen 2 (12G) hardware appliances to combat Spectre variant 2, 3a, and 4 (CVE-2017-5715, CVE-2018-3640, and CVE-2018-3639).

  • Issue 15356: Release BIOS and microcode updates for Gen 3 (13G) hardware appliances to combat Spectre variant 2, 3a, and 4 (CVE-2017-5715, CVE-2018-3640, and CVE-2018-3639).

  • Issue 1579: Release BIOS and microcode updates for Supermicro A1SRi-2558F (NF-50) to combat Spectre variant 2 (CVE-2017-5715).

  • Issue 16427: CVE-2018-3639: Son of Spectre ("Variant 4").

  • Issue 16447: Release BIOS and microcode updates for 14G Edge Appliances to combat Spectre variants 3a and 4 (CVE-2018-3640 and CVE-2018-3639).

  • Issue 16622: CVE-2018-3665: Lazy FPU save/restore information leakage.

  • Issue 16684: Remove CBC ciphers from SSH configuration.

  • Issue 16863: CVE-2018-1139: Samba allows NTLMv1 over SMB1 transport, even when NTLMv1 is disabled.

  • Issue 16864: CVE-2018-10858: Buffer overflow in libsmbclient.

  • Issue 17160: CVE-2018-5390, CVE-2018-5391: SegmentSmack / FragmentSmack.

  • Base OS CVEs - The following list of CVEs have been resolved by the update to the base OS in 8.4. Note: While these CVEs are resolved in the underlying platform for 8.4, the design of the Nasuni platform may have already mitigated any potential vulnerability (e.g., CVEs that require local access to exploit, or exploits in unreferenced dependent packages): CVE-2016-2183, CVE-2017-10268, CVE-2017-10378, CVE-2017-10379, CVE-2017-10384, CVE-2017-11368, CVE-2017-11423, CVE-2017-11671, CVE-2017-13215, CVE-2017-15906, CVE-2017-3636, CVE-2017-3641, CVE-2017-3653, CVE-2017-3736, CVE-2017-3737, CVE-2017-3738, CVE-2017-6419, CVE-2017-6462, CVE-2017-6463, CVE-2017-6464, CVE-2017-7562, CVE-2018-1000001, CVE-2018-1050, CVE-2018-1057, CVE-2018-10675, CVE-2018-10915, CVE-2018-10918, CVE-2018-10919, CVE-2018-1111, CVE-2018-1124, CVE-2018-1140, CVE-2018-12020, CVE-2018-12384, CVE-2018-14634, CVE-2018-14679, CVE-2018-2562, CVE-2018-2622, CVE-2018-2640, CVE-2018-2665, CVE-2018-2668, CVE-2018-2755, CVE-2018-2761, CVE-2018-2771, CVE-2018-2781, CVE-2018-2813, CVE-2018-2817, CVE-2018-2819, CVE-2018-3620, CVE-2018-3690, CVE-2018-3693, CVE-2018-5146, CVE-2018-5740, CVE-2018-7566.

Known Issues

  • Issue 16801: Adding a SMB share to a volume that has been enabled for Advanced Global Locking briefly interrupts the service that provides SMB connections to clients. This also applies to Volumes with paths that were once enabled for Advanced GL, but have been subsequently been disabled.

Nasuni 8.3.8

Released December 18, 2018

Resolved Issues

  • Issue 17582: After resizing the cache partition for an Edge Appliance VM, the appliance is unable to make use of the increased size.

  • Issue 17583: NTACLs aren't correctly set for files created by Mac clients when Enhanced Support for Mac OS X is enabled.

  • Issue 17584: Enabling syslog auditing can cause internal logging to stop until the process is restarted.

  • Issue 17674: Fixed issue listing the contents of a ".snapshot" directory on an NFS export when the directory contains hardlinks.

Nasuni 8.3.7

Released November 30, 2018

Resolved Issues

  • Issue 17579: When Global Locking is enabled, an issue with lock ordering could cause the filesystem process on Edge Appliance to restart under heavy load.

  • Issue 17580: Network errors while faulting directories with hardlinks are not recoverable.

Nasuni 8.3.6

Released November 14, 2018

Resolved Issues

  • Issue 17428: When the SMB server responds to an encrypted request in an expired session, its response is unencrypted and the client ignores the unencrypted response.

  • Issue 17431: Added Collectd logs to the log rotation policy to avoid /var disk full issues.

  • Issue 17432: The backend communications service used by the NMC could restart if a request takes longer than 2 minutes to complete.

  • Issue 17453: Using the NMC to edit Host Options for an NFS Export causes a "Failed to update" error.

Nasuni 8.3.5

Released October 17, 2018

Resolved Issues

  • Issue 17006: An out-of-order message chunk could crash the service that NMC uses to connect to the message queuing service.

  • Issue 17107: Log rotation could fail to move logs to cache during snapshot and subsequent move attempts would also fail until the Edge Appliance is rebooted.

  • Issue 17117: The NMC UI only displays a subset of Edge Appliances connected to a volume.

  • Issue 17136: Files in directories under Global Lock could be stuck as unprotected when the UniFS directory manifest had

  • Issue 17166: Backend option to set the minimum TLS version and acceptable cipher suites not being honored by Edge Appliances.

  • Issue 17273: Idle sessions cleanup in Samba causes poor SMB performance. Adjusted idle cleanup behavior thresholds and frequency to minimize of process queueing and high CPU utilization during idle session cleanup.

Nasuni 8.3.4

Released September 18, 2018

Resolved Issues

  • Issue 16605: Updates to Groups with Domain Associations are not correctly handled, resulting in conflicts that can cause the NMC queue management process to crash.

  • Issue 16856: A memory leak in path handling by the SMB process could cause the Edge Appliance to run out of memory.

  • Issue 17040: An unexpected change in accessible data for volumes could be reported after a volume is shared with a new Edge Appliance.

  • Issue 16864: Issue 17043: Under certain circumstances, a directory that was present in cache but not present in the Edge Appliance database, could cause the folder to incorrectly be processed as a root directory during a snapshot, causing a flood of sync error messages.

Nasuni 8.3.3

Released August 30, 2018

Resolved Issues

  • Issue 16609: Static routes are lost on network config save.

  • Issue 16796: Memory leak in Samba quota module.

  • Issue 16861: Add support for an optional second M.2 BOSS card for the N4040 appliance.

  • Issue 16864: CVE-2018-10858: Buffer overflow in libsmbclient.

  • Issue 16967: Incorrect quota counts can cause snapshots to fail.

Nasuni 8.3.2

Released August 20, 2018

Resolved Issues

  • Issue 16786 - NMC UI incorrectly requires users to choose "Case-Sensitive Paths" for case insensitive volumes.

  • Issue 16940 - When retrieving data containing unsorted file manifests from the cloud (written by filers running version 5.1.5 and earlier), a process could repeatedly crash.

Nasuni 8.3.1

Released July 25, 2018

Resolved Issues

  • Issue 16751 – Fixed Robocopy and file access failures on Case Insensitive volume.

  • Issue 16769 – Corrected value for "CPU over threshold" warning.

Nasuni 8.3

Released July 18, 2018

New Features and Updates

  • NMC Performance Improvements – NMC has been optimized for environments in excess of 50 volumes or 50 Edge Appliances. The Volumes page is now paginated rather than returning all volumes under NMC management.

  • Data Propagation Improvements – Implemented directory serialization changes along with general performance optimizations (including XML processing & compression) that improve metadata and directory propagation.

  • Make Browsing Faster – Upgraded internal file system handling code to accelerate listing the contents of folders containing a large number of files.

  • Updated NMC Message Queue – Updated NMC and Edge Appliance message queuing service to replace an end of life component. The 8.3 release will be required for NMC / Edge appliance communication to function as of November 1, 2018.

  • Teamcenter Integration – Created a Global Synchronization Mode that enables fast propagation of files managed under product lifecycle management systems like Teamcenter.

  • Syslog Integration – Added support for industry-standard syslog implementations so that Nasuni information can be used by tools such as Splunk or the ELK stack.

  • Additional private object storage integration - HGST – Customers who are deploying Western Digitals’s HGST private object storage solutions and want to use the Nasuni Global File System.

  • Web Access Shared Links Enhancement – We’ve introduced a second mode of Web Access shared links that relies on administrator-specified credentials to access files, rather than the sharing user’s credentials. This mode is known as Global Shared Links User (GSLU) mode. When using GSLU mode, shared links can be retrieved after creation and links do not break after the sharing user changes their Active Directory password. This share-level feature is disabled by default and must be enabled via a setting to the customer's Nasuni license. Please contact Customer Support to have this feature activated.

Resolved Issues

  • Issue 14222 – Web Access not correctly scoping access based on user’s domain.

  • Issue 14238 – Poor Edge Appliance networking performance when AAAA record requests do not get a response.

  • Issue 14344 – Added ability to the backend to enable keepalives for SMB sessions.

  • Issue 14391 – Resolved a global lock issue where AV unscanned file is not fast-pushed after being ignored.

  • Issue 14465 – Add action information for ClamAV false positive notifications.

  • Issue 14479 – Resolved issue with special characters that prevented users from editing shares or creating shares.

  • Issue 14532 – Revised NMC SMB configuration to prevent anonymous browsing via an SMB connection to the NMC.

  • Issue 14571 – A reboot Immediately following DR can leave a volume unavailable until the next time a replication change is invoked.

  • Issue 14658 – Added an alert when operations fail because of missing acl-stash.json file.

  • Issue 14679 – Modifying metadata on volume root does not propagate due to push considering only dirty data.

  • Issue 14786 – Time zone calculation is wrong when using GMT +/- format.

  • Issue 14900 – Added identifying details in User-Agent header when making requests to Cleversafe object storage.

  • Issue 14990 – Improved alert handing for time skew events to include number of seconds in alerts.

  • Issue 15034 – Edge Appliance service menu AD domain list method updated to use new code for trusted domain enumeration.

  • Issue 15306 – UnicodeDecodeError when looking up users or groups containing special characters in Active Directory.

  • Issue 15338 – Post-update network refresh is failing with a false positive and generating an alert.

  • Issue 15514 – Updated documentation to clarify a situation with non-empty directories that contain only blocked files appear empty to a client, and might lead to unexpected behavior when attempting to delete those directories.

  • Issue 15549 – Added warning to NMC when managing Edge Appliances with a higher version than the NMC.

  • Issue 15575 – Sync problems after key upload failure. Reuploading an existing passphrase protected key could cause sync problems.

  • Issue 15597 – Edge Appliance AD Domain Configuration, invoking “Resync domains" does not update domain information.

  • Issue 15667 – Resolved issue with 404 handling that could have allowed files to be overwritten when using Byte Range Locking (BRL) with applications such as GeoPak.

  • Issue 15689 – Super User receives permission denied error when performing restores to locations other than the original location.

  • Issue 15698 – Added snapshot status to heartbeat data to address an issue that could cause snapshots status to show “in progress” in the NMC when the snapshot had already completed.

  • Issue 15729 – Resolved an issue with autofault that could result in an unresponsive Edge Appliance UI or NMC access to the Edge Appliance.

  • Issue 15771 – 500 Internal Server Error when uploading invalid keys on SSL certificates rather than raising an error on the form.

  • Issue 15815 – Resolved issue where volume root metadata isn’t checked for changed data before being overwritten.

  • Issue 15896 – Resolved 8.0 release known issue - When using the (Advanced) Clone NTFS-Style permissions module in the Migration Utility and unresolved/orphan SIDs are present in the source, migrated data may be inaccessible for users until the unresolved SIDs are removed.

  • Issue 16537 – Attempting to change the user’s displayed time zone in NMC returns an error.

  • Issue 15910 – Global lock - Original lock server remains in use after a lock server failover.

  • Issue 15937 – Deleting hard-linked files during merge does not always work.

  • Issue 15998 – Resolved issue with incorrect AWS S3 region selection during volume creation for non-default regions.

  • Issue 16014 – Resolved issue where NMC communication could fail intermittently with over 50 Edge Appliances under NMC management.

  • Issue 16054 – GUI session timeout not being enforced.

  • Issue 16060 – Resolved issue that could cause snapshots for AWS S3-based volumes to fail after updating to 8.0.

  • Issue 16106 – When using a valid, customer-provided volume encryption key, volume creation using the NMC could fail with an error "invalid encryption key."

  • Issue 16121 – Permissions inheritance gets enabled when owner is changed.

  • Issue 16294 – File browser doesn't load - Uncaught TypeError :Cannot read property count of "null", when quickly navigating folders.

  • Issue 16356 – Migration using "Copy data only" option to NTFS Exclusive volume removes access group and others permissions.

  • Issue 16428 – Added VM "hardware" processor limit to prevent exceeding tested configurations. Any processors above the tested limits are ignored. The current tested limit is 40 processors.

  • Issue 15825 – Added more robust cleanup to prevent notifications filling DB on NMC.

  • Issue 15960 – Resolved issue with remote access that could prevent the connection of remote edge appliances to ECS volumes.

  • Issue 16037 – An internal UI-related process slowly leak threads in certain circumstances, leaving no additional threads for UI tasks.

  • Issue 16147 – Excessive autofault logging, resulting in /var filling.

  • Issue 16401 – Corrected NMC cache usage percentage calculation method to correctly reflect usage. Percentage now matches the percentage reported by the edge appliance.

Resolved Security Issues

  • Issue 15900 – CVE-2018-6871 (aka CVE-2018-1055) Resolved remote arbitrary file disclosure vulnerability in LibreOffice.

  • Issue 15901 – The following CVEs are resolved by the update to ClamAV 0.99.4-1: CVE-2012-6706, CVE-2017-6419, CVE-2017-11423, CVE-2018-1000085, and CVE-2018-0202.

  • Issue 15902 – CVE-2018-5732 and CVE-2018-5733: Buffer overflow in dhclient DHCP code could allow a malicious DHCP server to crash the DHCP client.

  • Issue 16035 – Nessus reports SQL Injection against login URL.

  • Issue 16072 – Convert username and password input in login forms to remedy pen test script execution finding.

  • Issue 16560 – Several serious iDRAC7 (Gen 2 - 12G) and iDRAC8 (Gen 3 - 13G) security problems (CVE-2018-1207, CVE-2018-1208, CVE-2018-1209, CVE-2018-1210, CVE-2018-1211).

  • Issue 16561 – Several serious iDRAC9 (Gen 4 - 14G) security problems (CVE-2018-1207, CVE-2018-1208, CVE-2018-1209, CVE-2018-1210, CVE-2018-1211).

Known Issues

  • Issue 16456 – When using the VMware embedded client, deployment of the Edge Appliance OVF may fail with message "Capacity of uploaded disk is larger than requested." Upgrade to version 1.24 version of the VMware Embedded Client to resolve.

Nasuni 8.0.7

Released October 25, 2018

Resolved Issues

  • Issue 17385: A slow to respond child Winbind operation (i.e. domain operation) could block operations on the primary Winbind service. This update reduces the probability that a single slow/heavily saturated domain process will effect other domains.

Nasuni 8.0.6

Released October 04, 2018

Resolved Issues

  • Issue 17273: Idle sessions cleanup in Samba causes poor SMB performance. Adjusted idle cleanup behavior thresholds and frequency to minimize of process queueing and high CPU utilization during idle session cleanup.

Nasuni 8.0.5

Released August 23, 2018

Resolved Issues

  • Issue 16873: Add support for an optional second M.2 BOSS card for Dell 14G Edge Appliances.

  • Issue 16895: Improve filesystem availability when under heavy load with global lock.

Nasuni 8.0.4

Released August 09, 2018

Resolved Issues

  • Issue 16750: Fixed Robocopy and file access failures on Case Insensitive volume.

  • Issue 16758: Corrected value for "CPU over threshold" warning.

  • Issue 16870: NMC UI incorrectly requires users to choose "Case-Sensitive Paths" for Case Insensitive volumes.

Nasuni 8.0.3

Released June 28, 2018

Resolved Issues

  • Issue 16284: The following CVEs are resolved by the update to ClamAV 99.4-1: CVE-2012-6706, CVE-2017-6419, CVE-2017-11423, CVE-2018-1000085, and CVE-2018-0202

  • Issue 16532: CVE-2018-1055 Resolved remote arbitrary file disclosure vulnerability in LibreOffice

  • Issue 16568: Several serious iDRAC7 (Gen 2 - 12G) and iDRAC8 (Gen 3 - 13G) security problems (CVE-2018-1207, CVE-2018-1208, CVE-2018-1209, CVE-2018-1210, CVE-2018-1211)

  • Issue 16569: Several serious iDRAC9 (Gen 4 - 14G) security problems (CVE-2018-1207, CVE-2018-1208, CVE-2018-1209, CVE-2018-1210, CVE-2018-1211)

  • Issue 16531: Sync problems after key upload failure. Reuploading an existing passphrase protected key could cause sync problems.

  • Issue 16535: Resolved 8.0 release known issue - When using the (Advanced) Clone NTFS-Style permissions module in the Migration Utility and unresolved/orphan SIDs are present in the source, migrated data may be inaccessible for users until the unresolved SIDs are removed.

  • Issue 16537: Attempting to change the user’s displayed time zone in NMC returns an error.

  • Issue 16533: Resolved issue with remote access that could prevent the connection of remote edge appliances to ECS volumes.

Nasuni 8.0.2

Released April 23, 2018

Resolved Issues

  • Issue 16063: Resolved issue that could cause snapshots for AWS S3-based volumes to fail after updating to 8.0.

  • Issue 16066: Resolved issue where NMC communication could fail intermittently with over 50 Edge Appliances under NMC management.

  • Issue 16067: Resolved issue with incorrect AWS S3 region selection during volume creation for non-default regions.

Nasuni 8.0.1

Released April 9, 2018

Resolved Issues

  • Minor bug fixes and improvements.

Nasuni 8.0

Released March 30, 2018

New Features and Updates

  • Samba has been upgraded to version 4.7 with many fixes and enhancements for better performance, security and increased stability. Winbind performance is enhanced. Volumes using NTFS exclusive mode now support foreign and historical SIDs.

  • Safe Volume Delete - NMC and the Appliance UI now have the option to require multiple administrators to agree before a volume is deleted.

  • Scalable Version State - Reduced memory usage and improved performance for access to snapshot history. Improves the performance of snapshot retention policy, Windows Previous Versions, boot time for appliances with more than 100,000 versions and other operations related to snapshot history.

  • Global Locking enhanced performance - 35% IOPS improvement for operations under Global File Locking.

  • Case-Insensitive Accelerated Volumes - Increased performance of operations in very large directories with greater than 5,000 objects on case-insensitive volumes without degradation as the size increases.

  • NMC API new endpoints - Create Shares, Create Volumes, Take Snapshot

  • Varonis Support - Integration with Varonis DatAdvantage, DatAlert, DatAnswers, DatAlert Analytics and Data Classification Framework products supported by new auditing APIs and AMQP audit delivery.

  • Enhanced Telemetry - additional phone-home statistics will help Nasuni continue to improve performance and troubleshoot issues.

  • Enhanced Support for Mac OS X - Case-Insensitive volumes are the new default for 8.0. These volumes are automatically created with the large_xattrs required for Enhanced Support for Mac OS X. It is no longer necessary to contact Support before enabling Enhanced Support for Mac OS X for shares on newly created case-insensitive volumes.

  • Issue 13330: Added support for Azure Korea Central and Korea South Regions

  • Issue 13545: Enhanced Support for Mac OS X. Alternate data streams are now retained during all file operations on both Windows and Mac OS X.

  • Issue 13657: Added capability for Support to disable mDNS when required for security purposes. Please contact Support if this is required for an appliance.

  • Issue 13791: New NMC page to show NMC API authentication tokens issued to users, plus the ability to revoke tokens.

  • Issue 13860: SSL certificates generated by a Nasuni appliance will now have subjectAltName populated as specified by RFC 2818 and RFC 6125. This will enhance compatibility with Chrome and Firefox browsers.

Known Issues and Limitations

  • Issues 15167, 15266: When mounting shares from Windows using the Net Use command, the "DOMAIN\Username" format must be used to authenticate. "User@DOMAIN.com" format is not supported. Nasuni File Audit does not audit access denied events, so these are not available to Varonis.

  • Nasuni File Audit does not provide client IP address for operations on NFS exports.

  • Issue 13052: NMC File Browser Audit events are reported with the UNKNOWN protocol and the events are always for root.

  • Issue 15896: When using the (Advanced) Clone NTFS-Style permissions module in the Migration Utility and unresolved/orphan SIDs are present in the source, migrated data may be inaccessible for users until the unresolved SIDs are removed.

Documentation Changes From 7.10

  • Documentation was updated for all New Features and Updates.

  • Issue 14788: Updated documentation related to specifying administrative users.

  • Issue 14939: Released new document describing how to handle idmap issues.

  • Issue 15068: Several documents updated to note that key generation time on VMs may vary widely.

  • Issue 15070: Documentation for Azure deployment was updated.

  • Issue 15686: Added information about MTU settings when using EC2 instances.

  • Issue 15555: NF-VM and NMC-VM designation for appliances in NMC screens changed to NVM and NMC respectively.

  • Issue 15578: Added information to Administration Guide explaining case-insensitive volumes cannot be multi-protocol.

Resolved Issues

  • Issue 12843: .snapshot directory can now be viewed on Mac from the Finder.

  • Issue 13423: Fixed issue where timeout could prevent connecting a remote volume.

  • Issue 13830: Fixed errors with NMC API endpoints accessed with trailing '/'

  • Issue 13953: Fixed issue where an appliance can fail to join NMC.

  • Issue 14119: Fixed issue where appliance occasionally loses AD connection.

  • Issue 14640: Fixed issue where a Share mounted from a Mac showed a '?' icon instead of a drive icon in the Finder.

  • Issue 14659: Fixed condition where occasionally edits made to Shares result in "Failed to update volume permissions" error.

  • Issue 14752: Improved paging in NMC API endpoints that list CIFS clients, CIFS locks, and FTP clients.

  • Issue 15142: Nasuni File Audit will no longer include unnecessary 'fuse_hidden' entries related to internal file system operations.

  • Issue 15638: Resolved issue where autocached or pinned folders were displayed in NMC with "/now" added to the pathname.

  • The following CVEs are resolved by the update to Samba 4.7, further details can be found in the Samba release notes: CVE-2016-2123, CVE-2016-2125, CVE-2016-2126, CVE-2017-2619, CVE-2017-7494, CVE-2017-12150, CVE-2017-12151, CVE-2017-12163

Nasuni 7.10.9

Released March 26, 2018

7.10.9 is the latest release in the 7.10.x series before the release of 8.0 and is required in order to upgrade to 8.0. All Nasuni Edge Appliances MUST be on 7.10.9 (or later) to upgrade to 8.0.

Resolved Issues

  • Issue 15875: Fixed a critical issue introduced in 7.10.8 in which Nasuni Edge Appliances configured to autoupdate were unable to boot properly after attempting to install Nasuni 7.10.8.

Nasuni 7.10.8

Released March 15, 2018

New Features and Updates

  • Issue 15583: VM Striped Cache – Allow VMs to stripe their cache across multiple virtual disks for increased performance above the I/O restrictions of a single disk. Please contact Nasuni support to enable.

Resolved Issues

  • Issue 15634: Fixed an issue when global locking is enabled and after renaming a conflict folder, folder is missing from certain Nasuni Edge Appliances.

  • Issue 15765: Resolved device mapper issue with newly expanded caches that would cause snapshots to fail.

  • Issue 14063: Resolved cloud capacity chart inconsistencies that occur after an Nasuni Edge Appliance was decommissioned or marked inactive.

  • Issue 15008: Resolved validation issue that prevented shares beginning with an underscore from being created.

  • Issue 15655: Resolved GL issue where file in cache could be truncated and must be restored from cloud.

  • Issue 15567: Set robots.txt to disallow on NMC and Edge Appliance to prevent internet search engine indexing.

  • Issue 15478, 15356, 15298, 15798: Updated BIOS and microcode for appliances to address Spectre Variant 2 (CVE-2017-5715).

  • Issue 14075: Prevent space depletion in /var and associated instability from log-intensive events.

  • Issue 15700: Increased Apache global timeout to prevent filer UI operations from timing out for long-running tasks.

  • Issue 14617: Resolved Azure scalable cache issue where newly added storage could be used for the COW rather than cache.

Nasuni 7.10.6

Released February 15, 2018

Resolved Issues

  • Issue 13619: Fixed issue where appliance reboots under a heavy workload of writes to Alternate Data Streams or extended attributes.

  • Issue 14604: Fixed issue where "create parents" option was not working when uploading a file via the Mobile client.

  • Issue 15020: Fixed issue where prune operations fail if certain characters were found in extended attributes.

  • Issue 15118: Fixed issue joining appliance to Active Directory when environment contained trusted domains that have one-way trusts.

  • Issue 15331: Added ability to configure the maximum number of winbind processes on an appliance.

  • Issue 15413: Fixed issue where incorrect migration status was displayed in appliance UI.

  • Issue 15444: Fixed issue where joining Active Directory failed due to timeout when querying name server records.

  • Issue 15556: Fixed issue where MCE errors were displayed at appliance startup.

Nasuni 7.10.5

Released January 30, 2018

Resolved Issues

  • Issue 14463: Fixed issue where duplicate settings made the Shares page on the NMC inaccessible.

  • Issue 14574: Enhanced migration service to try both SMB1 and SMB2 when migrating.

  • Issue 14619: Fixed issue where extra call was generated to remove an extended attribute on a file.

  • Issue 14739: Fixed issue where error message was returned by NMC API before a volume completed a snapshot.

  • Issue 14857: Provided support for Enhanced Networking on AWS appliances.

  • Issue 14943: Fixed issue preventing migration of files with special char U+F026.

  • Issue 15166: Fixed issue where snapshot retention cleanup process was failing on very large directory structures.

  • Issue 15247: Added option to address CVE-2017-5753 ("Spectre" variant #1) and CVE-2017-5754 ("Meltdown") processor security vulnerabilities. Due to Intel's withdrawal of the microcode update to address CVE-2017-5715 ("Spectre" variant #2), that CVE is not addressed in this release. We will be providing the necessary microcode for Spectre variant #2 once it becomes available and is qualified. Exploiting Meltdown and Spectre requires local access to the system by malicious software, which, as a hardened appliance, Nasuni does not allow. In addition, the Meltdown and Spectre mitigation can degrade performance of your Nasuni appliance by as much as 35%. For these reasons, the option is disabled by default. If you would like this option enabled for added protection, please contact Nasuni support.

Nasuni 7.10.4

Released January 10, 2018

Resolved Issues

  • Issue 15198: Fixed issue where default value of the mode parameter in the NIC bonding module was incorrect on upgrade to 7.10.x.

Nasuni 7.10.3

Released December 20, 2017

Resolved Issues

  • Issue 14194: Fixed error message when enabling remote support with a degraded network connection.

  • Issue 14333: Sped up Active Directory domain join process when there are a large number of Filers.

  • Issue 14758: Increased Sideload pause timeout threshold.

  • Issue 14862: Fixed issue where NMC displayed error when displaying volumes that were not fully mounted.

  • Issue 14989: Reduced memory usage when thousands of notifications are generated.

Nasuni 7.10.2

Released December 8, 2017

Resolved Issues

  • Issue 15011: Fixed issue where one of the conflict versions of files generated after simultaneous edits in non-globally locked environments may become unavailable.

Nasuni 7.10.1

Released December 1, 2017

Resolved Issues

  • Issue 14498: Fixed issue where capacity display for quotas was limited by appliance cache size.

  • Issue 14596: Fixed issue that prevented some encryption keys to be uploaded to the NMC.

  • Issue 14744: Fixed issue with conflict files being created due to failed sync.

  • Issue 14750: Increased default open file limit in file system.

  • Issue 14814: Addressed Samba vulnerabilities CVE-2017-14746 and CVE-2017-15275.

  • Issue 14836: Fixed issue where SNMP service fails to start on OS2 Filers.

  • Issue 14853: Fixed issue where sync problems were erroneously reported in notifications.

  • Issue 14855: Fixed upgrade issue where system would not come up after reboot.

  • Issue 14880: Addressed INTEL-SA-00086 management engine vulnerability.

Nasuni 7.10

Released November 15, 2017

New Features and Updates

  • NMC API - A RESTful API to provide programmatic access to much of the information in the NMC GUI for Volumes, Appliances and Notifications. This release is the first version of the API, which will be enhanced in future releases.

  • Fast Track Push - The ability of a selected appliance to receive the next available access to a cloud volume to perform a snapshot, putting it ahead of any others in the queue.

  • NTFS Exclusive Mode - The ability to properly handle historical SIDs is enabled with this new volume level permissions policy setting. Once NTFS Exclusive Mode is set, the volume can never be set to multi-protocol mode.

  • Volume-less DR - The capability to perform a DR for an appliance that has no local volumes. (Issue 11830)

  • Resync Domain - The ability to synchronize AD domain configuration changes from other appliances. (Issues 13642, 14007, 14068)

  • Complex AD Forests - Support for discovering trusted domains across forests. (Issue 13952)

  • Delete Directory Services - The ability to leave the domain to which the appliance is currently joined. All AD connected volumes must be disconnected from the appliance for this to occur. (Issue 14008, 14171)

Known Issues and Limitations

  • Once NTFS Exclusive Mode is set, the volume can never be set to multi-protocol mode.

Documentation Changes From 7.9

  • Documentation for new features above.

  • Issue 31060: Added note about FTP anonymous access in Configuring FTP documentation.

  • Issue 13213: Added Tip to manually reconnect remote volumes after DR for appliances not managed by NMC.

  • Issue 14285: Updated documentation in various places to reflect minimum requirement of VMware ESXi 5.5 for Nasuni VMs on VMware.

  • Issue 14518: Added details about chunk size to Best Practices Guide, Cache Configuration Guide, NMC Guide, and Admin Guide.

  • Issue 14528: Added explicit prerequisites to SideLoad procedure in Admin Guide, SideLoad doc, and Recovery doc.

  • Added procedure for possible notification during snapshot or sync, in NMC Guide and Administration Guide.

  • Added details about the Clam AntiVirus (ClamAV®) open-source antivirus engine, in Best Practices Guide, NMC Guide, Third-Party Licensing Guide, and Administration Guide.

  • New screenshots, in Installing the Nasuni Filer on the EC2 Platform.

  • Added reminders to keep COW disk in proportion to cache disk when changing the size of the cache disk, in Cache Configuration and several other documents.

  • Selecting the "Secure transfer required" feature for an Azure Storage account does not affect the operation of the Nasuni Filer, in Configuring Customer-Provided Azure Storage for the Nasuni Filer and Installing Nasuni Filer on Customer-Provided Azure Storage Getting Started Guide.

  • Corrected the default number of cores for a Nasuni Filer, in Best Practices Guide, Initial Configuration Guide, and Installing on Virtual Platforms.

  • Clarified the processing for recovery after resetting the administrative account, in Recovery Guide, Administration Guide, and NMC Guide.

  • Clarified the prerequisites for performing the Side Load procedure, in Recovery Guide, Administration Guide, and Side Load Guide.

  • Clarified the default outbound Quality of Service, in Best Practices Guide, Cache Configuration Guide, Administration Guide, and NMC Guide.

  • Added material about enabling Auditing to help mitigate ransomware, in Best Practices Guide, Administration Guide, and NMC Guide.

  • Clarified meaning of Restrict Anonymous setting for CIFS, in Administration Guide and NMC Guide.

  • Added material on Cloud I/O and Cloud Credentials, in Administration Guide and NMC Guide.

  • Added discussion of chunk size and related topics, in Best Practices Guide, Cache Configuration Guide, Administration Guide, and NMC Guide.

  • Rewrote section on General CIFS Settings to clarify processing in different situations, in Administration Guide and NMC Guide.

  • Added details about how long notifications are retained, in Administration Guide and NMC Guide.

  • Added procedure for obtaining JSON format of shares configuration in NMC, in NMC Guide.

  • Clarified use of DFS for failover, in DFS Configuration and Best Practices Guide.

  • Reconciled the recovery procedures, in Administration Guide and Recovery Guide.

  • Removed mentions of default volume and default CIFS share, in Best Practices Guide, Best Practices Guide, and Administration Guide.

  • Clarified best use cases for Side Load procedure, in Side Load Feature.

  • Added warnings against restoring a virtual machine from a virtual machine snapshot or backup, in Cache Configuration Guide and Installing on Virtual Platforms.

  • Added information about how permissions affect the ability to download files, in Administration Guide and NMC Guide.

  • Added procedure for SMB3 encryption, in Administration Guide, Security Features, and NMC Guide.

  • Added instructions for "Snapshot ran out of internal space" error, in Administration Guide and Best Practices Guide.

  • Updated the supported Cleversafe/IBM Cloud Object Storage version to 3.8.3.

  • Added details of the use of encryption keys with remote volumes, in Encryption Key Best Practices.

  • Clarified details of NTFS Exclusive Mode and NTFS Compatible Mode, in Administration Guide and others.

  • Clarified NMC procedure for changing SMB protocol.

  • Added procedure for installing NMC using Azure Resource Manager, in Installing the Nasuni Filer on the Azure Platform.

  • Clarified that displayed size might differ from external size indications, in Administration Guide and other documents.

  • Clarified the distinction between "private cloud", "customer-controlled public cloud", "BYOC", and "public cloud" in many docs. Changed name of Private-Cloud-Getting-Started-Guide-Azure to GS-Guide-for-Azure-BYOC.

  • Added link to NASUNI-FILER-MIB for SNMP support, in Administration Guide.

  • Added NTFS Exclusive Mode to available permissions for volume, in Administration Guide and other documents.

  • Created Upgrading Nasuni Filers to Use Case-Insensitive Volumes procedure.

  • Clarified that changes to the Snapshot Retention setting go into effect when the next snapshot occurs, and that it is normal to temporarily see more snapshots than the Snapshot Retention setting would suggest, in Administration Guide and NMC Guide.

  • Added detailed instructions in volume creation procedures about preferring case-insensitive CIFS volumes, in Administration Guide, Best Practices Guide, and Worksheets for Configuring NMC, Nasuni Filers, Volumes, and Shares.

  • Added best practices for handling historical SIDs before adding data, in Administration Guide, Best Practices Guide, and NMC Guide.

  • Removed references to fsck, since it is unnecessary with OS7, in Administration Guide, NMC Guide, Recovery Guide, Installing on Virtual.

Resolved Issues

  • Issue 8079: Sped up migration process for large directories or trees by beginning to migrate in parallel while enumerating the migration source.

  • Issue 11365: NMC File Browser will now use paginated directory listings to speed up display and reduce memory usage.

  • Issue 11957: Resolved issue where long running snapshot searches in the file browser were left running after navigating away from the file browser page.

  • Issue 12205: Fixed issue where duplicate host options for NFS exports can prevent NFS from starting. Duplicate entries are now prevented.

  • Issue 12239: Resolved issue where Samba sent Kerberos login requests for root to AD. This was resolved in an earlier release, but verified for 7.10.

  • Issue 12963: Sped up restore process for large directories or trees by beginning to restore in parallel with enumerating the source of the restore.

  • Issue 13010: Resolved timeout in NMC when viewing a large list of Migration jobs.

  • Issues 13036, 12513: Fixed issue with timeout mounting remote volumes with large numbers of versions.

  • Issue 13237: Fixed issues where appliance can fail to boot if waiting for a migration source.

  • Issue 13320: Customers with a mix of escrowed and non-escrowed encryption keys will receive a new monthly alert, as this situation can affect the DR process. When performing a DR, the customer will need to provide non-escrowed keys, in addition to the escrowed keys provided by Nasuni.

  • Issue 13393: Fixed issue where deleting a quota could cause sync issues.

  • Issue 13492, 13504: Fixed issue where, under certain circumstances, Volumes cannot be connected to a remote appliance due to domain trust issues.

  • Issue 13357: Nasuni Mobile web browser file uploads are no longer limited to 2GB for Chrome and Firefox.

  • Issue 13505: Fixed issue where Domain Join that completed would appear to hang and not complete when user is logged into LastPass.

  • Issue 13612: The process of removing versions per retention policy will now continue from where it left off after appliance reboot, rather than restarting.

  • Issue 13634: Fixed issue where duplicate Kerberos DNS lookup entries can occur.

  • Issue 13655: Removed SWEET32 vulnerable ciphers from TLS allowed list.

  • Issue 13656: Removed several weaker ciphers from SSH allowed list.

  • Issue 13802: Fixed issue where previous versions could appear to be missing.

  • Issue 13812: Fixed issue unpacking tar files with symlinks on NFS exports.

  • Issue 13814: Fixed issue where snapshot retention will not delete older versions on Volumes with a remote appliance attached with read-only access.

  • Issue 13908: Fixed issue with NFS mounts when declaring explicit host options.

  • Issue 13973: Improved performance and fixed timeout error on CIFS status page.

  • Issue 14006: Improved performance of user browsing of large directories after a snapshot.

  • Issue 14036: Addressed CVE-2017-1000364 - Stack guard kernel security vulnerability.

  • Issue 14037: Addressed CVE-2017-1000364 - Stack guard glibc security vulnerability.

  • Issue 14040: Changed label of usage graph on NMC to "Accessible Capacity on Managed Volumes" to avoid confusion with the similar graph on account page which is for all Volumes in the account.

  • Issue 14140: Added 4 SNMP Nasuni MIB variables to track which appliance local disk device is being used for which storage function.

  • Issue 14210: Fixed issued where Snapshot retention cleanup failed to properly handle a service error from the NOC.

  • Issue 14215: Fixed issue saving Aspen HYSYS files with automatic case backups under Global Lock.

  • Issue 14336: Fixed issue when setting QoS rules where "You have unsaved changes" warning appears even after changes are successfully saved.

  • Issue 14167: Fixed issue where appliances that are not the master for any volume showed an empty data growth chart when selected in NMC.

  • Issue 14169: Fixed issue where Domain join fails when copying configuration from appliances that have domains that are no longer enabled on the network.

  • Issue 14186: Fixed issue connecting to a remote volume when inheriting shares with custom share access permissions.

Related articles