Nasuni Edge Appliance 10.1.1, File IQ 10.1.1 and NMC 25.2.1
Released July 24, 2025
Resolved Issues
Platform
Issue 78150: Fixed an issue where SMB access failed on NEAs using the “ad” id mapping backend after applying Microsoft’s July 8, 2025, Netlogon security update (KB 5062572) on Active Directory domain controllers. This only affected NEAs using AD Unix Extensions for multiprotocol access.
Nasuni Edge Appliance 10.0.5 and NMC 25.1.5
Released July 22, 2025
Resolved Issues
Data Propagation
Issue 77784: Fixed an issue in Global File Locking (introduced in 10.0.1) where read-only open requests using Optimized or Asynchronous Global Locking could leave a lock entry in a non-released state if the open operation failed, causing some files to appear locked longer than expected.
Nasuni Edge Appliance 10.1, File IQ 10.1, and NMC 25.2
Released July 16, 2025
New Features and Updates
Enhanced Ransomware Protection with Username-Based Blocking - Ransomware Documentation
Nasuni Ransomware Protection now supports blocking malicious activity at the user level with username-based blocking. This enhancement helps stop compromised user accounts from continuing unauthorized actions, even if the attacker switches devices or IP addresses. Username-based blocking complements existing IP-based blocking to provide a more robust and flexible mitigation strategy.
As part of your mitigation policy, you can now choose to block the attack source by IP address, username, or both.
Appliance Requirements: NEA 10.1 or later and NMC 25.2 or later
Default Policy: New volumes default to block by username; existing volumes retain current settings.
Incident Reports: Reports now display both the username and IP address associated with the incident.
This update enhances your ability to contain threats quickly and effectively, even in environments where users access systems from multiple locations or devices.
File IQ - File IQ Documentation
File IQ 10.1 introduces new capabilities that enable you to enforce enhanced security, monitor the health of your File IQ appliance, and facilitate disaster recovery.
Expanded Status Page: Monitor and diagnose configuration or service issues.
System Status Dashboard: View performance and health metrics.
Volume Usage Dashboard: Formerly “Chargeback,” renamed to better reflect usage insights.
Disaster Recovery - With 10.1, the File IQ database is backed up and restored when you perform a disaster recovery on an existing File IQ appliance, eliminating the need to re-scan the entire volume.
Premium File IQ - File IQ Premium Documentation
Continuing our pursuit to build tools that enable you to understand your data better and be AI-ready, we are excited to introduce a premium File IQ offering with this release, which brings a host of new, exciting features.
Reporting
Premium File IQ provides purpose-built reports that customers can readily consume to keep up with file system changes on a regular basis.
Built-in reports include:
File Size by Age, Owner, and Distribution
File Size/Count by Extensions
Top 10 Directories by File Count and Size.
Top 10 Edge appliances by activity
Top 100 directories by activity
Volume Usage Detail (chargeback/showback by share or individual directory)
Weekly and Monthly Reports - Configured reports are emailed to the subscribed users based on the last week's and last month’s data, respectively.
This requires a dedicated volume connected to the File IQ appliance with read-write permissions.
Proactive alert notifications that trigger when certain thresholds are breached
Edge appliance throughput
Volume Writes and Deletes indicating possible malicious activity
Increase in File counts and Volume size
Expanded Retention - Premium File IQ offers longer event retention, with up to 21 days for real-time events, and 365 days for aggregated events. Increasing the event retention may require resizing your appliance.
New Dashboards
Report History – This dashboard track all reports generated by File IQ.
Volume Explorer - This dashboard allows users to explore the file system tree and get details such as tree size, directory and file counts, last modified file and directory, and more.
SSO for Grafana: Grafana dashboards now integrate with Okta and Entra ID for user authentication.
More Volumes- Premium File IQ appliances support up to 48 volumes (47 data volumes + 1 reporting volume).
Note: Contact your Nasuni Account Manager to enable Premium File IQ.
Web Access - Access Web Access Documentation
With this release, Nasuni is delivering a refreshed Web Access experience featuring significant improvements in performance, usability, and platform scalability.
Performance Improvements & Technology Upgrades
Web Access now supports a higher number of concurrent users and includes broad performance enhancements across the platform.
Reusable Shared Links
Users no longer need to re-generate shared links for reuse—links and their associated passwords can be copied after initial creation.
Improved User Experience
The interface has been refined to offer a more intuitive and seamless experience, with smoother interactions throughout.
Advanced Web - Access Web Access Documentation
Building on the foundation of Web Access, Nasuni is introducing a paid advanced tier designed to support greater scalability and enhanced collaboration.
More Concurrent Users: Supports more than 100 concurrent users to meet enterprise-level demand.
Basic Tier supports up-to 100 concurrent users.
Advanced Sharing Capabilities Include:
Multiple links per file/folder
One-time passcode protection via email
Sharing links via email
Upgrade Consideration
Shared links created in 10.0 or earlier versions do not work on NEA 10.1 or later versions. Users need to recreate the shared links post update.
Note: Contact your Nasuni Account Manager to enable Advanced Web Access.
Data API - Data API Documentation
With this release, the Nasuni Data API provides better scalability and performance.
Lowercase Response Headers: For previous versions, most API response headers are now returned in lowercase rather than mixed case, including x-secret-key and x-size.
Tunable NFS Threads to Boost Performance
The number of NFS threads on an Edge Appliance can now be adjusted to better support high-concurrency or I/O-intensive workloads. This backend setting is persistent across upgrades and disaster recovery. The default remains 128, and changes can be made by contacting Nasuni Support.
Improved Directory Faulting Performance
Directory faulting is now up to 2X faster when fetching uncached directories from the object store. This enhancement significantly reduces thread contention, resulting in lower resource consumption and improving the responsiveness and resilience of the appliance during high-load or recovery operations.
These improvements offer tangible benefits across multiple scenarios, including:
Accelerating disaster recovery, with faster repopulation of the cache
Recovering from intensive file system scans by applications like Varonis
Nasuni Management Console (NMC) Updates
In preparation for the upcoming HA-Edge product, the State Management page now replaces the former Shutdown and Reboot page in the NMC.
Ecosystem Partner Technology Support
Detailed information about compatible and supported technologies: Nasuni Compatibility and Support.
As a general rule, Nasuni supports all applications that comply with the requirements of NAS protocols. Nasuni also makes further investments in new applications, such as the ones highlighted below, to ensure that end-to-end solutions provide a seamless experience for our customers.
Cloud Providers and Object Storage
Nasuni appliances are now compatible with the latest Google VM classes (N4 and C4) and storage type (hyperdisk).
Hypervisors
Xen Hypervisor Support
With this release, Nasuni introduces general support for all Xen-based hypervisors, addressing the critical need for customers seeking cost-effective virtualization solutions and further expanding the available deployment use cases.
Nasuni appliance virtual images (Edge and Nasuni Management Console) are now available in the VHD format, enabling seamless deployment on Xen-based hypervisors.
In terms of officially tested support, Nasuni has validated and fully supports the following Xen-based hypervisors for NEA and NMC VM deployments:
XCP-ng Hypervisor
KVM Hypervisor Support
As part of the 10.1 release, Nasuni offers general support for KVM-based hypervisors through a universal image in QCOW2 file format. This enables flexible deployment of the Nasuni Edge Appliance (NEA) and the Nasuni Management Console (NMC) across a broad range of KVM environments.
Tested and Fully Validated:
OpenShift Virtualization Engine
Proxmox (Supported since NEA 10.0.4 and NMC 25.1.4)
Limited Validation (Expected to Work):
Oracle Compute Infrastructure
Red Hat Enterprise Virtualization (RHEV)
Rocky Linux KVM
OpenStack Virtualization
General Compatibility:
Other KVM-based hypervisors are expected to be compatible with Nasuni software, though we have not explicitly tested them.
End of Life Features and Recently Unsupported Items
End of Life Features
Nasuni Analytics Connector (NAC)
Support for the Nasuni Analytics Connector (NAC) officially ends on October 1, 2025. After this date, the feature is no longer receiving updates, bug fixes, or technical support. We recommend planning your transition accordingly.
The Nasuni Data Service (NDS) is replacing the NAC functionality. Learn more about NDS: Nasuni Data Service
Nasuni Edge Appliance UI – Volume Management
With this release, volume management is no longer available in the Nasuni Edge Appliance UI. To create new volumes or manage existing ones, use the Nasuni Management Console (NMC) version 25.2 or later.
Web Access-Global Shared Link Users
The Global Shared Link User (GSLU) feature has been deprecated and is to be removed in a future release. The 10.1 version of Web Access does not need a special GSLU sharing mode.
Recently Unsupported Items
Nasuni Mobile Access app
The Nasuni Mobile Access app has been unsupported since May 1, 2024, but was operational. As of this release, the mobile app no longer works.
Update Considerations and Paths
With this release, Volume management requires an NMC. Customers without an NMC do not see updates to 10.1/25.2. We recommend installing an NMC and enabling NMC management on all existing appliances.
Update Checks
Appliances on version 10.0.x/25.1.x see the updates to 10.1/25.2.
Appliances running version 9.15.4/24.1.4 must update to 10.0.x/25.1.x first.
Appliances running pre-9.15.4/24.1.4 releases are subject to additional update constraints. For details, see Nasuni Compatibility and Support
Disaster Recovery (DR): Updating through an unsupported path is blocked during DR. To avoid issues, deploy a Nasuni Appliance with a version corresponding to the major version of the source Edge Appliance before beginning the DR process.
Supported Update Path
Edge and File IQ Appliances
9.15.4 → 10.0.x-> 10.1
NMC
24.1.4 → 25.1.x → 25.2
Note: Nasuni recommends updating during a weekend or another period of low activity to minimize the impact on end users.
Warning: Rebooting Edge Appliances during the update process interrupts the update, requiring you to contact Nasuni Customer Support to restore normal operations.
Resolved Issues
NMC/Edge Appliance UI and API
Issue 51753: A service timeout prevented the NMC install wizard from showing the upgrade option.
Issue 68200: The NMC incorrectly showed Edge Appliances as offline once per day due to an issue in how it handled new UniFS as a Service (UaaS) stacks.
Issue 71223: In rare cases, connecting a volume while remote appliances are offline may create duplicate connections and shares with a "_new" suffix.
Issue 75225: Appliances and NMC no longer generate notifications when accessible (NOW) capacity reaches 90% or exceeds the licensed capacity.
Nasuni Platform
Issue 74935: Adjusted the time source stability threshold to reduce unnecessary alerts after upgrading to NEA 10.0.x and NMC 24.1.x. This addresses the issue of frequent appliance notifications stating "No timeserver is providing a sufficiently stable time source.
Issue 75739: Resolved an issue with the seamless upgrade procedure failing to apply the expected 128 GiB memory cap until a second reboot.
Issue 76173: Fixed an issue that prevented SMB Async DOS Mode from being disabled via backend settings on 10.0.x appliances.
Network Protocols and UniFS
Issue 61213: Addressed an issue where large metadata syncs could cause performance degradation. Implemented internal process fixes to handle these operations more efficiently.
Issue 63836: Snapshot retention fails if it encounters a corrupted file manifest. We have added a backend configuration to ensure the retention job completes successfully.
Issue 64652: Nasuni now blocks automatic bucket creation for volumes that have completed at least one snapshot. This prevents data loss in cases where a customer renames a bucket outside of Nasuni. Previously, the appliance would fail to find the bucket for the volume and create a new bucket with the original name, risking data loss.
Issue 67607: A failure to obtain a Snapshot Retention lock due to network connectivity issues causes the retention jobs to restart. Added a retry flow to better handle such failures.
Issue 68052: Fixed a snapshot retention issue where, in some cases, the service failed to remove older versions from a volume after the owning appliance recovered using Disaster Recovery.
Issue 71045: Fixed an internal issue that caused customers using Snapshot Retention as a Service (SRaaS) to receive incorrect error notifications on failed prune jobs.
Issue 75963: Addressed a potential crash caused by excessive memory usage in appliances running the optional inline encryption library.
File IQ
Issue 3531: Fixed an issue where the Edge Appliances filter in the NIQ Grafana dashboard did not correctly handle NEAs that had undergone Disaster Recovery.
Issue 4241: The File IQ Chargeback dashboard failed to process duplicate audit directories that were created when restoring an older version of a directory or file.
Issue 4790: Fixed an issue where File IQ audit settings were not applied correctly when coexisting with AMQP on the NEA. File IQ and AMQP settings can now be configured independently.
Security
Issue 69848: To address a potential Denial of Service (DoS) vulnerability affecting middleware/servers, the Grafana version on the File IQ appliance has been updated to 11.3.
Platform CVEs – The following list of CVEs has been resolved by the platform updates in 10.1. Note: While these CVEs are resolved in the underlying platform for 10.1, the design of the Nasuni platform may have already mitigated any potential vulnerability (e.g., CVEs that require local access to exploit, or exploits in unreferenced dependent packages):
Issue 2024-6484 (Informational): Nasuni is not vulnerable to this Bootstrap carousel component issue, which could allow Cross-Site Scripting (XSS) attacks.
Issue 2021‑44420 (High, CVSS 7.3): Fixed a high-impact Django vulnerability that allows access control bypass via newline characters in URLs.
Known Issues
Web Access
Issue 820: After upgrading to 10.1, file/folder versions on Web Access cannot be listed if Previous Versions was not enabled on existing shares; the Versions tab may show, but be empty. Enable Previous Versions before upgrading to 10.1 to avoid this issue.
Issue 873: In this release, ETag information is not included for directories in the Data API response. This issue is to be resolved in an upcoming release.
Highly Available (HA) Edge
HA Edge member nodes must receive DHCP-assigned IP addresses for the dedicated IP addresses (or DIPs). We plan to support statically assigned DIPs soon.
Issue 76323: HA Edge appliances cannot be rebooted via the NMC. Users can reboot their HA-Edge Appliances via the vCenter UI by following the process outlined under “Can I shut down or reboot my HA Edge Appliance?” in the HA Edge FAQ.
NMC
Issue 67940: The NMC API create folder endpoint is incompatible with NTFS Exclusive volumes. Folders created using the API do not inherit permissions from the parent folder and are only be accessible by Nasuni admins. This affects customers using NTFS Exclusive volumes who rely on the API for folder creation.
S3 Edge
Issue 77999: Due to an internal issue with S3 Edge service, customers are unable to browse shares on so
Nasuni Edge Appliance 10.0.4, File IQ 10.0.4, and NMC 25.1.4
Released June 17, 2025
New Features and Updates
Proxmox VE Hypervisor Support: With this release, Nasuni introduces support for Proxmox Virtual Environment (VE) hypervisor, addressing the critical need for customers seeking cost-effective virtualization solutions.
Nasuni appliance virtual images (Edge and Nasuni Management Console) are now available in the qcow2 format, enabling seamless deployment on the Proxmox KVM hypervisor.
Enhanced S3 Edge Multipart Upload: A major redesign delivers 2x faster multipart uploads for large files, along with improved reliability, optimized bandwidth usage, and increased cost efficiency.
Support for Dell 16G Hardware - Nasuni Edge Appliances are now supported on Dell 16G PowerEdge servers. This includes a new low-end model, the N1060.
Ecosystem Partner Technology Support
Detailed information about compatible and supported technologies: Nasuni Compatibility and Support.
Cloud Providers and Object Storage
New Google Regions added for customers using Nasuni with their GCP subscriptions: Regions:
Stockholm, Sweden (europe-north2)
Resolved Issues
NMC
Issue 62724: Added a 'Type' column to the NMC serial numbers page to differentiate between appliance types (NEA, NMC, NAA, File IQ, and UaaS).
Issue 74278: Resolved an issue where users could not create SMB (CIFS) shares with names starting with the # (octothorp) symbol.
Platform
Issue 76204: Fixed an issue where upgrade to 10.0.x failed on some hardware appliances as the system booted from an outdated partition, loading the wrong kernel and preventing the upgrade.
Issue 73629: Improved handling of volume version numbers during disaster recovery to ensure Edge Appliances are fully restored.
Data Propagation
Issue 76658: Fixed an issue where customers without a Global File Locking (GFL) or GFL with Write Oplocks license were incorrectly notified about lock arbiter communication failures.
Nasuni Edge Appliance, File IQ 10.0.3, and NMC 25.1.3
Released May 29, 2025
Resolved Issues
Web Access
Issue 76124: Resolved an issue where Web Access shared links created prior to upgrading to NEA version 10.0.1 were no longer accessible. Older shared links now function as expected post-upgrade.
Security
Issue 76138: Resolved a vulnerability in Web Access where shared links could be manipulated to access, upload, or delete files beyond the intended shared folder.
Nasuni Edge Appliance, File IQ 10.0.2, and NMC 25.1.2
Released May 14, 2025
New Features and Updates
Advanced Global File Locking (AGFL): New support for “Write Opportunistic Locking”: We have enhanced Advanced Global File Lock with client-side caching for write operations, which provides an average performance improvement of more than 60% in high-latency environments. This upgrade is especially impactful for distributed teams who use demanding applications like Autodesk Civil3D and Revit. By intelligently caching write activity, users experience more consistent performance, no matter where they work.
To activate this feature, all appliances connected to a shared volume must be updated to version 10.0.2. After all appliances are running the new version, no further configuration is needed for AGFL: the performance benefits take effect automatically.
Note: Once the feature is active on a volume, appliances running versions earlier than 10.0.2 will no longer be able to connect to that volume.
Global File Lock features, including write oplocks, require reliable network connectivity. Review the updated firewall and port requirements to ensure sufficient connectivity and fully benefit from these new capabilities.
Resolved Issues
Platform
Issue 75425: On upgrading from NEA version 9.15 to 10.0, configured static routes to different network gateways are not transferred to the new operating system, making shares inaccessible.
File IQ
Issue 4885: Fixed an issue where the File IQ dashboard would fail to load when accessed via a hostname that resolves to both IPv4 and IPv6 addresses
Nasuni Edge Appliance, File IQ 10.0.1 and NMC 25.1.1
Released April 13, 2025
Ecosystem Partner Technology Support
Detailed information about compatible and supported technologies: Nasuni Compatibility and Support
Cloud Providers and Object Storage
OVHcloud: With this release, Nasuni now supports OVHcloud object storage for all Bring Your Own Cloud (BYOC) customers.
Azure: Support for latest Azure VMs: With this release, Nasuni appliances now support NVMe interfaces for managed disks within Azure Dadsv6 and Ebdsv5 VMs (NVMe is required for Dadsv6 and optional for Ebdsv5). Azure’s new NVMe interface is designed to offer the highest Azure-managed disk storage performance.
Resolved Issues
Platform
Issue-74031: As part of the NEA 10.0 upgrade, pinned folders were automatically brought into the cache. If the pinned content exceeds the size of the cache, the cache could fill, impacting data protection and propagation.
Issue-74210: In some cases, N1050 hardware appliances could hang during boot and remain unreachable because of a network device naming issue introduced by the underlying platform changes in OS 8.
Issue-74212: The default network naming scheme for OS 8 could conflict with network interfaces on N1050 hardware appliances, making them inaccessible after boot.
Issue-74226: Due to an issue introduced in 10.0, appliances configured for DHCP with custom DNS but with an empty search domain fail to report the status to the NMC periodically. Although the appliance is accessible, NMC reports an unhealthy status for these appliances.
Issue-74543: Added a fix to ensure continued compatibility between Nasuni appliances and Azure VMs using Accelerated Networking.
Data Propagation
Issue-73768: Fixed the 10.0 issue that can reset the Enablement Window settings for GFA-enabled volumes.
Nasuni Edge Appliance,File IQ 10.0 and NMC 25.1
Released February 27, 2025
New Features and Updates
Core Platform OS Improvements
Nasuni is excited to announce the transition of our underlying operating system from CentOS 7 to Rocky Linux 8, marking a significant step in modernizing our platform. This major upgrade reflects our commitment to delivering improved performance, enhanced security, and a streamlined user experience.
Upgrading to the new core platform OS is seamless and does not require additional downtime compared to typical upgrades (<15 minutes). After you see that your NEA is successfully running 10.0 and your NMC is running 25.1, you’ll know that you are now running the new OS. The operating system is also displayed at the bottom of the NEA and NMC UIs.
Note: If the NEA 10.0 or NMC 25.1 releases are not visible for some of your appliances, ensure that your Nasuni deployments meet the following criteria:
Ensure that your appliances are running NEA 9.15.4 or later and NMC 24.1.4 or later. For more details, refer to the Update Considerations and Paths.
Ensure that the OS disk size is 32GiB or larger for NEA and NMC VMs.
Ensure that Hyper-V appliances are running Hyper-V version 2019 or later versions.
Ensure that hardware appliances are Nasuni Dell 14G or newer. 13G hardware appliances are end-of-life. Customers cannot update them to the NEA 10.0 release. For assistance, contact our Account Management team.
Improved Directory Listing Performance
We are pleased to announce significant improvements to directory listing performance, designed to provide a faster and more efficient experience when managing and accessing Nasuni file shares using SMB. Improvements include parallelizing file attribute checks used by directory listing, and disabling the “Hide Unreadable Files” share setting for new shares by default (can be overridden using the shares UI/API) since permissions checking during directory listing requires significant overhead. In our internal tests, directory listings are now up to 50% faster for large directories (1000+ items), reducing wait times and boosting productivity.
Ransomware Detection Enhancements
Improved the ransomware detection algorithm to reduce the reliance on known ransomware signature patterns based on the latest ransomware trends. The enhanced algorithm provides faster detections for certain variants while addressing false positives for specific workflows.
Improved Cache Eviction Performance
During cache eviction, database operations negatively impacted front-end performance for access protocols (SMB, NFS). The process has been optimized to ensure that front-end performance remains consistent during cache eviction.
Improved Disk Space Management for Logging
To ensure the best possible experience when interacting with Nasuni Support, we have improved our backend logging infrastructure by improving log rotation mechanisms and logging handling during shutdown and reboot scenarios. There are no end-user changes due to these backend logging improvements, but we wanted to highlight Nasuni’s commitment to providing a robust Support experience.
S3 Edge - Multipart Upload Support
We are happy to announce the addition of multipart upload support for S3 Edge, enabling faster and more reliable uploads for large files via the S3 protocol. Large files can now be divided into smaller parts and uploaded concurrently, reducing upload times. We improved reliability by ensuring failed parts of a file upload can be retried without having to restart the entire upload from the beginning, thereby saving network resources and time.
Updated Inline Encryption Library
In the NEA 9.3 release, we added support for a new optional library to improve inline encryption and decryption performance. We updated the library to its latest version.
Note: This feature is disabled by default because it can impact front-end performance for certain workloads. Contact Nasuni Customer Support to discuss your workloads and whether the feature might be appropriate for your environment.
Object Store Security Level Update
When updating to NEA 10.0, the security level for OpenSSL object storage connections now defaults to SECLEVEL 2 for enhanced security. For any accounts using only major cloud providers (AWS, Azure, GCP) as backend cloud object stores, the security level automatically updates to SECLEVEL 2. For accounts using other backend object storage providers, the level remains at SECLEVEL 1 to ensure backward compatibility. To update your account's security level for additional object storage providers, contact Nasuni Support.
Nasuni File IQ
We have changed the name of our Nasuni IQ product to Nasuni File IQ. This new name more accurately reflects the product's purpose and its ability to provide centralized data intelligence for a company's file data. Although the name has changed, all features and functionality remain the same. Nasuni IQ now represents a suite of intelligence products that includes File IQ and more.
Update Considerations and Paths
In the NEA and NIQ 9.15.4/NMC 24.1.4 release, we added foundational platform improvements required to update Nasuni Appliances to NEA and NIQ 10.0/NMC 25.1. Therefore, appliances must be running at least 9.15.4/NMC 24.1.4 before updating to NEA and NIQ 10.0/NMC 25.1.
Note: Nasuni recommends updating during a weekend or another period of low activity to reduce the impact on end users.
Warning: Rebooting Edge Appliances during the update process interrupts the update, requiring you to contact Nasuni Customer Support to restore normal operations.
Update Checks
Appliances on version 9.15.4/24.1.4 see the updates to 10.0/25.1.
Appliances running version 9.14.x/23.3.x must update to 9.15.4/24.1.4 first.
Appliances running pre-9.14/23.3 releases are subject to additional update constraints. For details, see Nasuni Compatibility and Support
Disaster Recovery (DR): Updating through an unsupported path is blocked during DR. To avoid issues, deploy a Nasuni Appliance with a version corresponding to the major version of the source Edge Appliance before beginning the DR process.
Supported update path
Edge and File IQ Appliances
9.12.x → 9.15.4 → 10.0
NMC
23.2.x → 24.1.6 → 25.1
Ecosystem Partner Technology Support
Detailed information about compatible and supported technologies: Nasuni Compatibility and Support
As a general rule, Nasuni supports all applications that comply with the requirements of NAS protocols. Nasuni also makes further investments in new applications to ensure that end-to-end solutions provide a seamless experience for our customers.
Support Scale Computing HC3 VM Format
Nasuni is proud to announce the support for Scale Computing as part of the NEA 10.0/ NMC 25.1 release. A new download button is now available in account.nasuni.com for new deployments on top of Scale Computing infrastructure. Reference Nasuni documentation for instructions on deploying the new VM type.
Support for new Cloud Regions
AWS
New AWS Regions added for customers using Nasuni with their AWS subscriptions. Regions:
Mexico (Central ) mx-central-1
Asia Pacific (Thailand) ap-southeast-7
New Google Regions added for customers using Nasuni with their GCP subscriptions: Regions:
Querétaro (northamerica-south1)
Dula Regions:
Belgium + London (EUR5)
London + Frankfurt (EUR7)
Frankfurt + Zürich (EUR8)
End of Life Features and Recently Unsupported Items
End-of-Life Features
Global File Acceleration (GFA) Observation Mode:
GFA Observation mode is no longer available with this release. GFA can only be enabled in Active mode. Existing volumes using Observation mode continue to function until the next major release. Customers needing a substitute to monitor data propagation performance should contact their Account Manager to enroll in Nasuni Ops IQ (preview).
Edge Appliance Management UI Volumes Management:
In an upcoming release, the Edge Appliance Management UI no longer supports volume management and associated functionality. An NMC is required to create new volumes and manage existing ones.
Recently Unsupported Items
Nasuni Edge Appliance Hardware
Nasuni Dell 13G hardware appliances are end-of-life. Customers cannot update them to the NEA 10.0 release.
Hypervisors
Hyper-V 2016 or earlier is no longer supported. Customers cannot update any appliances running on Hyper-V 2016 or earlier to the NEA/NIQ 10.0 and NMC 25.1 releases.
Web Access Shared Links –Edge Appliance UI Change
With this release, the Edge Appliance UI no longer supports creating or updating Web Access Shared Links. To manage Share Links, use the Nasuni Management Console (NMC) going forward.
Resolved Issues
NMC and NMC API
Issue-40248: Fixed an NMC login issue that prevented users with parentheses in their usernames from logging in.
Issue-60940: NMC API documentation incorrectly showed volume’s antivirus settings as editable using the API.
Issue-63802: An NMC 24.1 issue around processing Unicode characters in the appliance description broke the NMC Cloud Credentials page.
Issue-64581: If a user cancels a restore job between the source scan and restore phases, the system incorrectly notifies them that the restore was successful.
Issue-65016: Due to an issue with database connection limits, disaster recovery fails for NMCs managing more than 200 appliances.
Issue-65089: Using the NMC API to create a new volume fails when an existing encryption key is used.
Issue- 65131: For Nasuni Web Access, inconsistent login error messages were fixed.
Issue-65392: Providing an incorrect username and password while deleting domain configuration improperly cleared the domain configuration.
Issue-65847: Added the volume name to the ongoing restore progress status on the File Browser page.
Issue-66128: The NMC ‘File Types in Snapshots’ and ‘File Sizes in Snapshots’ charts accounted for files and file types across all snapshots, not only the current filesystem state. To avoid further confusion, these charts are removed from the NMC. Along with these charts, the Filer Heuristics page is removed from the Appliance UI and the NMC. For accurate details on file types and file sizes, use Nasuni File IQ.
Issue-67979: Disabling remote access to a volume while remote appliances remain connected can potentially cause data loss. To prevent data loss, remote access permissions can no longer be disabled while remote appliances are still connected to the volume. This restriction applies to volumes with read-write, read-only, or custom remote access permissions. You must now disconnect volumes from remote appliances before disabling remote access. Added a warning to take a snapshot to protect any new data before disconnecting an appliance.
Note: Remote Access settings have been removed from the NEA UI. Use the NMC to update Remote Access settings for a volume.
Issue-68106: The Cloud Credentials page fails to process Unicode characters in the 'Filer Description.' With this release, we no longer support the Unicode characters in entity names such as Edge Appliance description, volume name, SSL certificate name, etc. We advise renaming existing entities that include Unicode characters in description or friendly name fields to avoid issues.
Issue-69506: NMC fails to list volumes for remote connection if the associated cloud credential is deleted from the owning appliance.
Issue-69947: For high-latency appliances, ransomware signature file updates can sometimes time out. We have added a backend configuration to adjust the time-out value. Contact Nasuni Support if this configuration is required.
Issue-70181: For NFS exports, the export name now includes a '/nfs/' prefix to more accurately represent the export name used for mount commands.
Platform
Issue-25944: Log rotation could fail while the appliances performed snapshots. This could fill the var partition, causing an appliance outage.
Issue-40936: An internal logging issue could fill the NMC var partition and prevent NMC updates. A log rotation feature was added to ensure adequate space in the var partition.
Issue-43782: The underlying OS update resolved an issue where the network interrupts had an affinity for a single core. This caused core 0 to be saturated under certain workloads, resulting in performance degradation.
Issue-65543: Enabling the “Hide Unreadable Files” option on a Share reduces directory listing performance by 10-25%. By default, new Shares have this feature disabled.
Issue-66133: In the 9.14 NEA release, an optional backend configuration was introduced to support NFS v2. This backend configuration failed to survive appliance reboots and updates.
Issue-68487: The underlying OS update fixed an upstream bug that could cause appliance outage under high load conditions.
Issue-70832: 9.15 Edge Appliances with 250GB CoW disks incorrectly generate a notification advising customers to resize their appliances.
The following issues were addressed as part of the underlying OS update:
Issue-63020: OS8 does not support NFS over UDP for exports, which only affects NFSv3 clients since NFSv4 requires TCP. In this release, we have added a backend configuration that extends support for NFS over UDP. If you are still using NFS over UDP, contact Nasuni Support to enable this configuration.
Issue-73009: Under high latency conditions, connections may occasionally drop between third party tools such as Varonis and Edge Appliances. This issue has been resolved with the OS8 update, which included updates to internal libraries. As a result, connection error handling has become more robust, eliminating the need for any intermediary proxy servers
Network Protocols and UniFS
Issue-35834: A long-running internal script could block the cache eviction process from running, filling up an appliance's cache disk.
Issue-36040: A rare database issue with cache eviction can impact data protection and propagation.
Issue-59268: Appliances could fail to evict data if they cannot check directory settings for one or more connected volumes. This can impact disaster recovery for appliances sharing a volume.
Issue-65268: If a file is modified between data and metadata snapshot, a data leak can occur, causing higher than expected cloud storage utilization. Added garbage collector functionality to clean up leaked data asynchronously from the cloud storage.
Issue-66670: Sync fails due to conflicts on filenames with Unicode characters.
The following issues were addressed as part of the cache eviction performance improvements:
Issue-45336: Long-running evictions can potentially degrade front-end performance.
Issue-49930: Edge Appliance fails to evict data for all volumes if a volume is deleted while the appliance is evicting data for the same volume.
Security
Issue-62794 and Issue-61501: Underlying OS update resolved the following issue:
CVE-2024-20919 (Moderate, CVSS 5.9): A vulnerability in Oracle's Java SE and GraalVM products that allows unauthenticated attackers to manipulate critical data through the Hotspot component via APIs.
CVE-2023-48795 ((Moderate, CVSS 5.9): Terrapin attack- A vulnerability in the SSH transport protocol affecting OpenSSH versions before 9.6, allowing attackers to bypass integrity checks via manipulated sequence numbers during the handshake phase.
Known Issues
Issue-67940: The NMC API create folder endpoint is incompatible with NTFS Exclusive volumes. Folders created using the API do not inherit permissions from the parent folder and are only be accessible by Nasuni admins.
Issue-71440: If two or more appliances are configured with S3 Edge and perform snapshots while a multipart upload is occurring, a conflict directory is created, requiring manual cleanup by an admin account.
Issue-72022: If S3 Edge was previously configured before updating to the 10.0 release, a required internal directory structure for multipart uploads is not automatically created when updating to 10.0, resulting in multipart uploads not working as expected. As a workaround, customers need to update their NOC S3 configuration with a small change and refresh the license, which resolves the issue.
Issue-4443: Grafana dashboards running on File IQ appliances run update checks to the open-source GitHub repository. File IQ appliance updates package necessary updates from an upcoming release, removing existing checks to the open-source repositories.
Issue-73768: There is an existing issue that can reset the Enablement Window settings for GFA-enabled volumes. As a result, upgrading to NMC 25.1 may lead to an unhealthy status in the Health Monitor for connected Nasuni File IQ appliances. You have two options to address this situation:
Reconfigure the GFA Enablement Windows.
Ignore this warning, as the File IQ appliance only has read-only access to all volumes.
Nasuni Edge Appliance,Nasuni IQ 9.15.5 and NMC 24.1.5
Released November 20, 2024
Resolved Issues
Data Mobility
Issue 2315: Updated an internal package to support Nasuni-managed data migration service.
Nasuni Edge Appliance,Nasuni IQ 9.15.4 and NMC 24.1.4
Released November 4, 2024
New Features and Updates
AWS S3 Region Support
New AWS Region added for customers using Nasuni with their AWS subscriptions:
Malaysia, Asia Pacific (ap-southeast-5)
S3 Edge
Recursive Listing: You can now leverage recursive listing with S3 Edge to list an entire folder and all its sub-directory contents.
Virtual Hosting Access to Buckets: Along with path-style URLs, S3 Edge now supports virtual-hosted style URLs, allowing admins to configure custom URLs.
Path style URL: https://s3.region-code.amazonaws.com/bucket-name/key-name
Virtual-Hosted-Style URL: https://bucket-name.s3.region-code.amazonaws.com/key-name
Improved Checksum Performance: The enhanced checksum performance allows you to upload large files (>100 GiB) without potential timeouts. File transfer speeds have also improved by approximately 90% (based on internal testing) across all file sizes, with the most improvement seen with smaller files (<100KiB).
Resolved Issues
NIQ
Issue 3046: Connecting a volume to an NIQ appliance with read-write permissions can cause an NIQ service outage, requiring a manual reboot. Added a fix to ensure that only read-only volumes are scanned by the NIQ service.
Data Propagation
Issue 1826: Resolved an issue introduced in the 9.14 release that prevented Global File Acceleration (GFA) enabled volumes to switch from Observation to Active mode.
NMC and Edge Appliance (NEA) UIs
Issue 67470: A large number of UI sessions can fill the internal database and, consequently, the var partition, potentially causing an Edge Appliance outage.
Platform
Issue 69918: The NMC Health Monitor Services category could incorrectly report an unhealthy status for appliances updated to 9.15.x.
Cyber Resilience
Issue 64730: In rare circumstances, the ransomware detection service could enter a restart loop under a high front-end load, which could impact detection.
Nasuni Edge Appliance,Nasuni IQ 9.15.3 and NMC 24.1.3
Released September 20, 2024
Resolved Issues
Network Protocols and UniFS
Issue 65009: Fixed a rare issue that could cause volume version conflicts during sync operations. The fix is effective once all appliances (NEA and NIQ) connected to a volume are running version 9.15.3 or later.
Notes:For a given volume, once all connected appliances are running version 9.15.3+, only appliances running 9.15.3+ can establish new connections to the volume.
Volume created on a 9.15.3+ Edge Appliance can only connect to appliances running version 9.15.3 or later.
NIQ
Issue 66164: Active Directory health checks can fail on NIQ appliances due to incorrect backend network configuration.
Issue 3308: Updating NIQ appliances from 9.14.x to 9.15.x could fail due to a database update issue, disrupting access to NIQ dashboards.
Issue 3058: Fixed the broken Nasuni logo on the NIQ homepage dashboard.
Issue 3132: Edge Appliances stopped forwarding data to the NIQ Appliance due to an issue with the NIQ event forwarder service.
Platform
Issue 67133: Resolved a 9.15 issue that prevented enabling the Nasuni support bridge while behind an HTTPS proxy.
Issue 66622: Due to an issue with the internal authentication protocol, a large number of simultaneous authentications could degrade front-end performance.
Issue 64935: End users could experience slow write operations to shares using 'Enhanced Support for Mac OS X.'
Nasuni Edge Appliance, Nasuni IQ 9.15.2 and NMC 24.1.2
Released July 26, 2024
Resolved Issues
Network Protocols and UniFS
Issue 65386: Added internal metrics to track a rare issue that can cause version conflicts during sync operations.
Nasuni Edge Appliance,Nasuni IQ 9.15 and NMC 24.1
Released June 25, 2024
New Features and Updates
Snapshot Retention Enhancements
Snapshot Retention as a Service (SRaaS): Customers can now deploy AWS and Azure cloud services dedicated to running snapshot retention jobs. These cloud services run within the customer tenant, providing the scalability, availability, and management advantages of the cloud without permitting Nasuni access to your data. The resource-intensive portions of Snapshot Retention are moved to a set of cloud services, freeing up Nasuni Edge Appliance (NEA) resources and removing the requirement to deploy dedicated NEAs for Snapshot Retention workloads. Snapshot Retention as a Service also enables an NEA that owns multiple volumes to run two Snapshot Retention jobs simultaneously: one job on the NEA and one job in the cloud.
Performance: Up to a 10x improvement in the time it takes to complete Snapshot Retention jobs.
Configurations:
Stack Deployment: Cloud service stacks can be deployed via AWS CloudFormation or Azure Resource Manager. The underlying templates can also be incorporated into third-party deployment tools. For prerequisites and deployment steps, visit the UniFS™ as a Service site.site or see Snapshot Retention.
Nasuni Management Console (NMC) configuration: The Snapshot Retention configuration section of the NMC Guide enables you to configure retention jobs to run on an appliance or in the cloud.
Version Compatibility: Requires NMC version 24.1+ and the NEA that owns the volume to be running 9.15+.
License: Contact your Nasuni Account Team if you are interested in shifting the Snapshot Retention process to the cloud.
Cost: Running the cloud service incurs additional costs, which vary depending on your specific environment and requirements. To learn more about the cost of running this service for your organization, contact your account team.
Enhanced Local Snapshot Retention Service: Under certain circumstances, the Snapshot Retention service can encounter issues when processing cloud objects. The Snapshot Retention service detects these issues and notify you to work with Support to address them.
GFA-Appliance Snapshot Priority
Global File Acceleration (GFA) can now support setting priority by NEA for snapshots. Customers can assign either a high priority or low priority, which increase or decrease snapshot frequency, respectively.
Cache Enhancements
Eviction Insights: Cache eviction notifications now provide much greater detail about when eviction began and ended, cache size after eviction, and metrics on files and directories that were evicted. Using these details, customers can now determine how often cache data is evicted, how long eviction takes, and the causes of emergency evictions.
Low Eviction Target: Customers using custom cache reserve settings benefit from a new low target level for cache eviction. Edge Appliances with a custom reserve setting evict data and metadata until the eviction target is met, freeing more space for new incoming data. This reduces the frequency of cache evictions and improves the Edge Appliance’s performance.
Improved Performance: Added separate queues to simultaneously bring data into the cache via front-end and back-end activities. Customers using third-party tools such as Varonis to walk the file system while accessing files can expect a significant improvement in cache performance.
AWS Endpoints
Customers can now use AWS PrivateLink, FIPS Endpoints, and S3 Transfer Acceleration to transfer data between Edge Appliances and their S3 buckets.
AWS PrivateLink: Support for AWS PrivateLink is now available on the NMC Cloud Credentials page. S3 Buckets for Volumes and the PrivateLink’s VPC must be in the same region. Edge Appliances need to have access to VPC’s private network in order to communicate using PrivateLink.
S3 FIPS Endpoints: S3 FIPS Endpoints are available in AWS US East/West, AWS GovCloud (US), and AWS Canada (Central/West). S3 Buckets must be in these supported regions to use FIPS Endpoints.
S3 Transfer Acceleration (S3TA): This is an AWS bucket property and is available from AWS as a separately charged service. Customers need to enable this feature on existing Volumes from the AWS console. Cloud Credentials with the S3TA hostname cannot be used to create new Volumes.
Version Compatibility: Requires NEA 9.15+/NMC 24.1+
Refer to the AWS S3 Configuration Guide for more details.
Nasuni IQ (NIQ)
NIQ Status: Introducing a new NIQ Status page to the Edge Appliance UI to monitor and alert on incorrect NIQ configuration.
Visibility Dashboards: The following dashboards were added to improve the observability of NIQ services and database performance.
Database Support: Tracks internal NIQ database usage, including DB connections, schema sizes, storage consumption, and query performances.
Service Support: Tracks internal NIQ services and monitors activities such as events received, event aggregation history, volume scanning, and volume aggregation history.
Chargeback Dashboard: Customers can now view a chargeback summary and corresponding details in one consolidated dashboard. Using the dashboard, customers can drill down into the chargeback details for the top 3 directories.
New Singapore Lock Server
Introducing a new APAC lock server in Singapore to provide low-latency Global File Locking performance for Edge Appliances in the region. The new Singapore lock server replaces the Tokyo lock server
NMC APIs
New NMC API capabilities include the following:
Upload Volume Encryption Keys: With NMC 24.1, you can use the NMC API to upload self-generated Volume encryption keys. This enables you to better integrate encryption key management with key management workflows and eliminates the need for storage administrators to handle volume encryption keys.
Manage Antivirus Violations: The NMC API can now be used to ignore antivirus violations or delete infected files, enabling integration with antivirus security workflows.
End of Life Features and Recently Unsupported Items
End of Life Features
Tokyo Lock Server
The Tokyo lock server is no longer available. The new Singapore lock server replaces the Tokyo lock server.
Recently Unsupported Items
Hypervisors
The following hypervisor versions remain no longer officially supported by Nasuni and are now be actively blocked from upgrading to the 9.15 release and beyond:
Hyper-V 2012 R2 and earlier
Unsupported since 9.12 release
Note: This is the last major release that supports Hyper-V 2016 servers. Nasuni recommends running appliances on Hyper-V 2019 servers or later.
Hardware
This is the last major release that supports Nasuni Dell 13G hardware appliances. Customers won't be able to update those appliances to subsequent major releases. We recommend reaching out to your Account Manager to discuss options for upgrading to a supported Edge Appliance.
Nasuni Mobile App
Nasuni ended support for the Nasuni Mobile App on May 1, 2024, and it has been removed from the app stores. If you are interested in a mobile app for access to the Nasuni Access Anywhere product as a replacement, we ask that you submit a request to Nasuni for such an app; you may do so by opening a case on the community portal.
Resolved Issues
NMC
Issue 26190: Because the NMC view of CIFS locks is only updated every 5 minutes, a lock that has already been released may appear in the list of locked files. In that case, we have improved error messaging for unlocking files to indicate that the lock may no longer exist.
Issue 40936: NMC updates fail when the var partition does not have adequate space to complete the update.
Issue 55123: Updated the help text for 'Enable Snapshot Directories' on the NMC create and edit Share dialogs to better explain the dependency on Snapshot Directory Access settings.
Issue 57310: Failure to clean alert-level notifications caused the NMC database to fill up and stop working.
Issue 58372: In case of an issue, internal NMC services could generate and store large log files to aid investigation. These files can eventually fill up the var partition, causing the NMC to stop working.
Issue 62761: Due to an incorrect checking interval, the Health Monitor raised notifications on a daily basis for non-critical services.
Issue 64792: SMB shares on Edge Appliances with multiple volumes using ransomware detection and antivirus could be inaccessible after reboot or disaster recovery because of a timeout issue..
Nasuni Platform
Issue 27920: If Volume Safe Delete is unable to delete the marked volume within 24 hours, volume deletion never completes.
Issue 58478: In some rare cases, an unclean shutdown or reboot could leave the Edge Appliance in an unusable state.
Issue 59732: Due to an upstream Samba issue, Edge Appliance performance can slow down under high load conditions.
Issue 62225: An internal service on Hyper-V appliances failed to start on boot due to out-of-sequence initialization. Health Monitor reported on the failed service.
Issue 62765: Certain applications are unable to delete a file when marked for deletion on close.
Issue 63391: Adjusted handling for Samba logging verbosity to ensure normal detail is resumed after key operations so the var disk does not fill up and block appliance operations.
Issue 63459: Clients were blocked from connecting to an Edge Appliance using NFS v2. If you need NFS v2 support for your exports, contact Nasuni Customer Support to configure a backend option.
Issue 64721: Due to an upstream bug, the internal metric service can be unresponsive, causing the Edge Appliance to stop working.
Network Protocols and UniFS
Issue 2470: A fixed-size queue can block snapshot retention jobs involving large numbers of directories.
Issue 27920: In some rare cases, the snapshot retention service is unable to parse chunks of data and stops working..
Issue 36649: Versions created on the first nine days of the month remain visible for restore selection even though the snapshot retention service removed the version and data.
Issue 48097: Snapshot skipped notifications incorrectly and reported a network error as the reason when another condition was present.
Issue 55136: Turning off remote access on a volume and updating the Edge Appliance that owns it to a version with strict volume version requirements before completing a snapshot could cause services to enter an unhealthy state.
Data Propagation
Issue 57410: Added appropriate handling of error codes from the object store in case objects are deleted directly from the bucket.
Issue 59783: Data protection stops on an Edge Appliance if it fails to acquire a snapshot lock within a certain number of attempts. Global File Acceleration can exacerbate this issue..
Issue 59868: An issue with the volume mount process after disaster recovery could potentially stop data protection and propagation on a GFA-enabled volume.
NIQ
Issue 2905: The Volume Utilization dashboard fails to load for very wide file systems layouts (the top three levels have millions of files and directories). It works well with deep file system structures..
Issue 65233: Removed the CoW disk sizing notifications for NIQ appliances to adhere to its sizing recommendation.
Security
Issue 60868: Updated internal packages to mitigate CVE-2018-1000007 (medium severity), where communication using curl might accidentally leak authentication details to third parties.
Added the following proactive measures to safeguard Nasuni appliances from SSH Terrapin attacks (CVE-2023-48795, medium severity).
Issue 64872: Removed the vulnerable ciphers and implemented workarounds for SSH prescribed by Red Hat.
Issue 64956: To safeguard against SFTP clients vulnerable to SSH Terrapin attacks, we updated the internal FTP service on Edge Appliances. Due to this update, vulnerable SFTP clients may fail to connect to an Edge Appliance. We added a backend configuration to enable connections from these insecure clients. Contact Nasuni Customer Support if this backend configuration is needed (CVE-2023-48795).
Nasuni Edge Appliance, Nasuni IQ 9.14.6 and NMC 23.3.6
Released June 17, 2024
Resolved Issues
NMC
Issue 40458: Active Directory users can experience intermittent NMC login problems due to an issue with the internal authentication module.
Nasuni Edge Appliance, Nasuni IQ 9.14.5 and NMC 23.3.5
Released May 28, 2024
New Features and Updates
S3 Edge
With this release, we are adding support for a new access protocol, S3, for all Nasuni Volumes. Nasuni customers can leverage S3 Edge on top of traditional NAS protocols to achieve low latency and high-throughput access to their Nasuni data at the edge. This new protocol provides additional flexibility to organizations looking to modernize applications, improve performance, build data pipelines for Artificial Intelligence (AI) and Machine Learning (ML), and expand the volume of data within the Nasuni File Data Platform.
Multi-Protocol Flexibility: Customers can enable the S3 protocol while maintaining access to their data using traditional NAS storage protocols (SMB, NFS, FTP).
Tags: To facilitate classification and compliance, S3 Edge supports up to 20 tags.
Performance: Customers can observe a significant improvement in throughput performance.
Note: S3 Edge is not available by default. Contact your Nasuni Account Management Team to enable S3 Edge.
Compatibility
Cloud Providers: S3 Edge is a front-end access protocol. It supports all Nasuni-compatible cloud providers.
Volumes:
Only NTFS Exclusive and Public Volumes are currently supported.
S3 is a case-sensitive protocol, however, customers can use the S3 protocol with both case-sensitive and case-insensitive volumes. Nasuni has determined that there are no data loss or data unavailable scenarios that can occur with S3 and case-insensitive volumes. For example, if there is an existing file named "ABC.txt" on a share, and S3 tries to upload a file named "abc.txt" to the same share, the upload does not succeed, and a generic error message is returned.
Edge Appliance: Requires NEA version 9.14.5+.
Authentication: Only s3v4 (Amazon S3 Signature Version 4) authentication and authorization are supported.
Setup and Management
Prerequisite: S3 Edge is enabled for your account.
Enable the S3 protocol for each Edge Appliance from the S3 Edge tab in your Nasuni account account.nasuni.com
From the S3 Edge tab, configure buckets, end-user access keys, and secret keys. For detailed steps, refer to the S3 Edge Configuration guide. Note: Buckets and access credentials are encrypted so that only Edge Appliances can read them.
Connect to enabled Edge Appliance via the S3 protocol using the configured credentials.
Global File Lock (GFL) with S3 Edge
The S3 protocol interacts with any GFL-enabled directory using Optimized mode behavior, regardless of which GFL mode is set on a directory.
Limitations
Currently, S3 Edge does not support multi-part uploads. Support for S3 Edge multi-part upload is to be added in a subsequent release.
Resolved Issues
NIQ
Issue 64887: NIQ appliances may experience slowdowns and potential reboots when not connected to an Active Directory.
Platform
Issue 64650: Due to aggressive customer network timeouts, Remote Support connections to appliances could be terminated, causing stale connections and impacting follow-on connections.
Nasuni Edge Appliance, Nasuni IQ 9.14.4 and NMC 23.3.4
Released April 26, 2024
New Features and Updates
Cloud Providers and Object Storage
AWS
New AWS Regions added for customers using Nasuni with their AWS subscriptions:
Calgary, Canada(ca-west-1)
New Google Regions added for customers using Nasuni with their GCP subscriptions:
Johannesburg, South Africa(africa-south1)
Resolved Issues
NMC
Issue 60925: For GFA-enabled volumes, switching from Active to Observation mode does not restore the snapshot and sync schedule on the owning Edge Appliance, thus stopping data protection and propagation.
Platform
Issue 63768: Nasuni is officially ending support for 2012 R2 and earlier Hyper-V servers in an upcoming release and 2016 Hyper-V servers in the subsequent major release. Nasuni recommends running appliances on 2019 Hyper-V servers or later. Added an NMC warning to notify customers of the end of support.
Issue 62351: Fixed an issue where the DNS service failed to start on Edge Appliances if the name servers do not support DNSSEC.
Data Retention
Issue 40121: Fixed an internal issue that caused snapshot retention to stall indefinitely.
Issue 64387: Due to a metrics issue introduced in NEA 9.14, NMC could incorrectly report a decrease in Cloud Usage for snapshot retention-enabled volumes.
NIQ
Issue 64026: A bug introduced in 9.14.3 NIQ prevents new Hyper-V NIQ appliance installations. Existing installations are not impacted.
Resolved Issues
Nasuni Edge Appliance, Nasuni IQ 9.14.3 and NMC 23.3.3
Released April 2, 2024
New Features and Updates
Nasuni IQ: Data Intelligence
With this release, we are launching a new data intelligence feature, Nasuni IQ (NIQ). You can use Nasuni IQ to get deeper insights into your Nasuni environment, monitor usage patterns, make proactive data management decisions, and prepare your unstructured data environment for artificial intelligence (AI). Nasuni IQ’s fast metadata scans process existing and new data and provide insights using easy-to-read pre-built dashboards. These dashboards offer the following key features:
Enhanced Visibility and Insights: Actively monitor your Nasuni environment using comprehensive dashboards that display detailed views of user activities, usage patterns, and consumption.
Proactive Data Management: Anticipate storage needs, identify potential bottlenecks, and implement data management policies to ensure resources are allocated effectively.
Note:
Volumes connected with NIQ appliances should use Custom Read-only Remote Access Permissions. Writing new or updating existing files is restricted on Nasuni IQ Appliances.
A new Nasuni IQ service runs on the Edge Appliances to send audit events to the NIQ Appliance.
Cloud Requirement
For this initial release, Nasuni IQ is only available for Nasuni customers using Azure Blob Storage.
Version Requirements
The 9.14.3 NIQ Appliance requires 9.14.3 NEA and 23.3.3 NMC.
Firewall Requirement
For Nasuni IQ, Edge Appliances and NIQ Appliances need access to additional FQDNs and ports. Refer to the Nasuni Firewall and Port Requirement documentation.
Installation and Management
Download and install NIQ Appliances from account.nasuni.com
Download NIQ Appliances from the Downloads page.
Nasuni IQ is a new appliance type. For sizing recommendations, refer to the Nasuni IQ Installation Guide.
Serial numbers and auth codes for Nasuni IQ Appliances are available under the NIQ Serial Numbers section.
Configure NIQ Appliances and Services from account.nasuni.com
Enable NIQ Appliances and Edge Appliances services from the new NIQ Config page.
Once enabled, assign Edge Appliances to respective NIQ Appliances.
Using the NMC, remotely connect volumes to NIQ Appliances.
Nasuni IQ Volume Scans
Depending on the size of the volume, an initial volume scan can take days or weeks. Subsequent volume scans should take minutes or hours, based on how much data has changed in the volume.
Data and Insights Retention
Raw audit events are retained for 7 days.
You can access insights and aggregated analysis on dashboards for up to 90 days.
NMC Health Monitor
Added a new dedicated Health Monitor category, Nasuni IQ, to check the health of NIQ services running on NIQ appliances.
Known Issue
Issue 62724: The NMC Serial Numbers page incorrectly categorizes NIQ appliances as Filers.
Issue 2548: While sharing panels, Grafana warns that panel preview is unavailable, although sharing functionality is not impacted.
Nasuni Edge Appliance 9.14.2 and NMC 23.3.2
Released February 14, 2024
Resolved Issues
NMC
Issue 62447: Fixed an issue introduced in NEA 9.14/NMC 23.3 where noncritical services triggered Health Monitor alerts.
Issue 62131: The check for ransomware signature file updates ran more frequently than intended. Aggressive checking caused by the increased frequency occasionally led to intermittent failures, resulting in health monitor alerts.
Issue 61539: Health Monitor incorrectly flags internal services as unhealthy if the health check for the service times out.
Issue 61995: Deleting shared volumes using ransomware mitigation could lead to orphaned policies on remote Edge Appliances. Updating NEAs with orphaned policies to 9.14+ could break ransomware protection, resulting in Health Monitor alerts.
Platform
Issue 61550: Fixed an issue where downloading an ISO image on a faulty flash drive could fail and result in infinite retries. Repeated download attempts consume high bandwidth, potentially affecting end users.
Issue 61238: Due to an upstream Samba issue, Edge Appliance performance can slow down if the trusted domain name does not have a matching entry in DNS.
Nasuni Edge Appliance 9.14.1 and NMC 23.3.1
Released January 15, 2024
Resolved Issues
Platform
Issue 60838: Added the Dell firmware update(51.16.0-5150/ 52.26.0-5179) to address the issue with their PERC RAID cards. Post NEA 9.12.7 update, hardware Edge Appliances notify customers about the new firmware that customers can update via the service console. The PERC RAID card issue affects the following hardware models:
N2040
N4040
N1050
N2050
N4050
Note: Customers can manually update the firmware without updating to NEA 9.12.7 using the instructions on the Dell website.
Issues 60883: A Samba issue blocked users from restoring files using Windows Previous Versions.
Issues 61258: Due to missing drivers in the 9.14 release, N4050 hardware appliances running NEA version 9.14 fail to detect their NIC cards.
Nasuni Edge Appliance 9.14 and NMC 23.3
Released December 6, 2023
Update Considerations and Paths
In the NEA 9.12/NMC 23.2 release, we added foundational platform improvements required to update Nasuni Appliances to NEA 9.14/NMC 23.3. Therefore, appliances must be on NEA 9.12.x/NMC 23.3.x before updating to NEA 9.14/NMC 23.3.
Note: Nasuni recommends updating during a weekend, or another period of low activity, to reduce the impact on end users.
Warning: Rebooting Edge Appliances during the update process interrupts the update, requiring you to contact Nasuni Customer Support to restore normal operations.
Update Checks
Appliances on version 9.12.x/23.2.x see the updates to 9.14/23.3.
Appliances running version 9.9.5/22.3.5 must update to 9.12.x/23.2.x or later first.
Appliances running version 9.10.2/23.1.2 must update to 9.12.x/23.2.x or later first.
Appliances running pre-9.5/21.2 releases are subject to additional update constraints. For details, see Nasuni Compatibility and Support
Disaster Recovery (DR): Updating through an unsupported path is blocked during DR. To avoid issues, deploy a Nasuni Appliance with a version corresponding to the major version of the source Edge Appliance before beginning the DR process.
Supported update path
Edge Appliance
[9.9.5+ OR 9.10.2+] → 9.12.x → 9.14
NMC
[22.3.5+ OR 23.1.2+] → 23.2.x → 23.3
New Features and Updates
Safer with Nasuni
Advanced Ransomware Detections: An enhanced detection algorithm examines file system events, looking for signs of destructive activity associated with ransomware attacks. This builds upon the existing signature-based detection to identify additional types of ransomware, including zero-day ransomware and variants that use a random signature for each attack.
Simplified UI: The new detection service can be configured by setting appropriate confidence levels for incident creation and mitigations. This simplifies configurations for multiple indicators used for detection. NMC 23.3+ no longer supports threshold-based detection. Once NMC is updated, customers cannot adjust thresholds for pre-9.14 Edge Appliances.
Updated Behavior: After updating NEAs using Ransomware Detection to 9.14, they automatically start using Advanced Ransomware Detection with the default confidence levels.
Improved Targeted Restores: With Advanced Ransomware Detection, targeted restores can now recover impacted files without requiring administrators to manually enter a signature.
Improved Logging: Ransomware Detection only logs violations when an incident is detected, in order to improve log readability.
Safelist: Earlier versions of Ransomware Detection relied upon an optional safelist of file extensions that Nasuni Support could configure to reduce false positives. Since Advanced Ransomware Detection looks at destructive actions rather than extensions alone to identify ransomware, safelisting should no longer be necessary to suppress most false positives. To ensure ransomware protection for all file types, previously safelisted extensions are not carried forward in 9.14. The previously configured safelist is still in effect for pre-9.14 Edge Appliances. In case of recurring false positives with Advanced Ransomware Detection, contact Nasuni Support for remediation options.
Snapshot Retention Enhancements
Performance: Volume snapshot retention performance has improved by 20-40% over high latency connections (measured between the appliance and object storage).
Better Snapshot Retention: Ensuring the snapshot retention service closely adheres to the set retention policy, 9.14 NEAs add more frequent time boundaries. This improves the timely removal of deleted files from old snapshots, thus saving cloud storage capacity.
Note: Snapshot retention time boundaries can prevent fast restores. Frequency of time boundaries can be adjusted using a backend configuration. If needed, contact Nasuni support to adjust this configuration.
Serviceability
Accurate Cache Resident Status: NMC 23.3+ UI and API report cache resident status as true only if the whole file is cached on the Edge Appliance. To ensure accurate cache resident status reporting, NMC 23.3+ only reports the status of files. Cache resident status for folder paths is no longer supported.
Hidden Dot Files: NEA 9.14 introduces a new backend configuration setting to show hidden dot files at a Share level. If this setting is required, contact Nasuni Customer Support.
New NMC APIs
Disable GFL on a given path: With NMC 23.3, customers can now use a new NMC endpoint to Disable Global File Lock on a given path.
Added/Exposed Edge Appliance Network Information: The GET Filer endpoint now provides Edge Appliance network details. The API response contains the hostname, IP address, default gateway, DNS servers, and search domain details.
Platform Upgrade
OS Disk Requirements: Starting with the next major release following NEA 9.14 and NMC 23.3, Nasuni Appliances require 32 GiB OS disks. Customers running VMs with OS disk sizes less than 32 GiB are advised to increase the disk size. We added a boot-time warning notification recommending resizing the OS disk space if it is under-provisioned.
Samba Version: Upgraded Samba to 4.17.10.
Ecosystem Partner Technology Support
Detailed information about compatible and supported technologies: Nasuni Compatibility and Support
As a general rule, Nasuni supports all applications that comply with the requirements of NAS protocols. Nasuni also makes further investments in new applications to ensure that end-to-end solutions provide a seamless experience for our customers.
AWS
New AWS Regions added for customers using Nasuni with their AWS subscriptions:
Tel Aviv, Israel (il-central-1)
New Google Regions added for customers using Nasuni with their GCP subscriptions:
Dammam, Saudi Arabia(me-central2)
Berlin, Germany(europe-west10)
Resolved Issues
NMC and NMC API
Issue 32766: In rare circumstances, updates to Nasuni-managed credentials used for communication between the NMC and managed Edge Appliances fail to take effect, impacting NMC's ability to report and manage Edge Appliances effectively..
Issue 37796: Removed a deprecated "allowed devices" option from the NMC's Filer Mobile Settings page to prevent administrators from accidentally disabling mobile access.
Issue 39224: NMC's “Connect Volume” page could slow down while managing a large number of volumes (100+).
Issue 40385: Internal services could fail to start on NEAs with a time skew, effectively blocking NMC management and access to the NEA admin UI.
Issue 43100: Uploading a public key to the NMC's encryption keys page could generate a blank error pop-up.
Issue 43949: Health Monitor could inaccurately report inactive services as healthy.
Issue 47489: Added help text to the accessible data widget to show how accessible capacity is calculated.
Issue 47552: The "Copy Credentials" button on the NMC Cloud Credentials page was incorrectly hidden if some NEAs are offline.
Issue 51707: Removed the "Unix/NFS Permissions Only Mode” as an allowed Volume Permissions policy when adding the NFS protocol to CIFS volumes since the policy is invalid for multiprotocol volumes.
Issue 51753: During Disaster Recovery, the option to update was sometimes not offered even though an update was available.
Issue 52007: The ransomware protection service could fail to start after updating the Edge Appliance to a 9.9+ version if the appliance cannot download ransomware signatures from the NOC.
Issue 52079: The “Go to Page” help text in the NMC’s search box was not visible for Google Chrome users.
Issue 56232: Active Directory users with a parenthesis character in their names could not be added as Domain Users in the NEA and NMC UI.
Issue 56354: An optional backend setting for customers with 200+ NEAs to increase the number of NMC database connections was ineffective.
Issue 56375: The “Reset CIFS Auth Cache” button on the NMC CIFS Clients page could silently fail when multiple targets were selected.
Issue 56693: Updating Active Directory user details associated with a Ransomware incident could crash the ransomware protection service.
Issue 56963: Due to an underlying framework update, NMC APIs running on NMC version 23.2 or later require 'Content-Type' to be specified as JSON (applications/JSON). Invoking NMC APIs without specifying the content type generates an error response. Updated NMC API document to reflect the change in requirements.
Issue 57357: When clocks fall back one hour in the fall, a bug could prevent NMC administrators from logging in.
Issue 59385: Volumes using Ransomware mitigation could enter a stale state after Disaster Recovery, causing data to remain unprotected.
Platform
Issue 29345: Fixed a log rotation issue due to which third-party utility logs filled up the var partition. Other Edge Appliance services could stop working if the var partition runs out of space.
Issue 35321: Log rotation is impacted if the var partition space fills up. Due to this, some log files were never removed or compressed on the Edge Appliance.
Issue 36926: When performing disaster recovery on an NEA without owned or remotely connected volumes, previously disconnected or deleted volumes could reappear.
Issue 45961: Clam AV could not scan some Microsoft Office files with macros, preventing them from being protected in the cloud..
Issue 55256: Edge Appliances could lose their encryption key escrow passphrase configuration after an unexpected shutdown.
Issue 55574: Resync operations on Nasuni Access Anywhere clients could fail if performed on large directories (50,000 files or more) with many AD groups used for ACLs.
Issue 57292: Appliances running in AWS could incorrectly raise undersized memory notifications because EC2 instances were not reporting all available memory blocks.
Network Protocols and UniFS
Issue 26283: Simultaneously adding an encryption key to a shared volume and disabling the existing keys blocked the new key from being shared with the remote NEAs and prevented the remote NEAs from accessing the volume.
Issue 52554: After Disaster Recovery, a timing issue could sometimes make remotely connected volumes unavailable if the volume encryption key was also used as the configuration backup key.
Issue 54488: In rare circumstances, volumes could be inaccessible after updating to version 9.10 or higher.
Issue 54889: Updating the Filer (Edge Appliance) description's case breaks antivirus violation logging for case-sensitive volumes.
Issue 55700: Frequently written files could remain unprotected on the Edge Appliance.
Issue 58480: Snapshots could stop working after performing Disaster Recovery for an AD-joined NEA if customers did not immediately join the appliance to Active Directory.
Issue 59288: Added a new backend configuration option to overcome an issue where the snapshot retention service failed due to internal database limits.
Data Propagation and GFL
Issue 53212: When reading a list of global locks from the lock server during service startup, a rare parsing issue could block the service from starting, making data unavailable.
Security
Updated ClamAV version to 1.0.2 as earlier versions were potentially susceptible to the following vulnerability:
CVE-2022-20770/CVE-2022-20771: (Low, CVSS 7.5): A vulnerability in CHM and TIFF file parsers that could allow an unauthenticated, remote attacker to cause a denial of service condition on an affected device
The updated Samba version(4.17.10) addresses the following potential vulnerabilities:
CVE 2022-2127 (Moderate, CVSS 5.9): Due to an out-of-bounds read vulnerability found in Samba, when Winbind is used for NTLM authentication, a maliciously crafted request can trigger an out-of-bounds read in Winbind, possibly resulting in a crash.
CVE 2023-3347 (Moderate, CVSS 5.9): A vulnerability was found in Samba's SMB2 packet signing mechanism that could allow a man-in-the-middle attack affecting the integrity of the data.
Known Issues
Issue 59402: Ransomware-targeted restore modal displays an inaccurate count for '# of Files Affected' until the NMC receives a heartbeat from the affected Edge Appliance. The NMC receives heartbeats every 5 minutes.
Issue 57221: Color icons indicating confidence levels in Ransomware Incident Reports are not visible when downloaded or printed.