Recommended action for LANCOM vFirewalls when exceeding the hardware limits
LANCOM vFirewalls have a maximum of supported CPU cores and a maximum supported RAM size (depending on the used license type). As of LCOS FX 11.1 RU2 these limits are checked and, if exceeded, the license becomes invalid. Among other things, this means that UTM functions can no longer be used and configuration changes can no longer be made.
When the hardware limits are exceeded, the assigned hardware must be corrected in the hypervisor and the LANCOM vFirewall must be restarted afterwards, so that the license can be used again.
If a maintencance window is only possible at a later time, LANCOM support can issue a temporary license for your vFirewall as a gesture of goodwill so that the features of the vFirewall can be used again until then. If necessary, create a ticket in the Service portal.
LCOS 10.92 REL currently only available in the download area of the website
Due to a necessary adjustment, the LCOS Auto-Updater and LMC support for LCOS 10.92 REL will be available at a later date. As soon as this is done, a corresponding notice will be published here. Open download area
We thank you for your understanding.
Inheritance for the logical and physical WLAN profiles in the WLAN Controller will be removed
The inheritance for the logical and physical WLAN profiles in a WLAN Controller is expected to be removed from the firmware in the end of 2025 and therefore cannot be used anymore after updating the firmware to a corresponding version. LANCOM Systems recommends to dissolve the inheritance for the affected profiles beforehand and modify the parameters manually.
The procedure to dissolve the inheritance is described in this Knowlede Base article.
LCOS 10.90 Rel withdrawn for 5G routers with Quectel RM520N - Update available
Due to an incompatibility between LCOS 10.90 Rel and 5G modules of the type Quectel RM520N with the WWAN firmware versions R01A05, R01A06, R01A07 and R01A08 connection problems can occur after a firmware update to LCOS 10.90 Rel.
For this reason, LANCOM Systems has withdrawn the firmware version LCOS 10.90 Rel for the affected devices:
- 1800EF-5G
- 1800EFW-5G
- 1800VA-5G
- 1803VA-5G
- 1803VAW-5G
- 1900EF-5G
- 1926VAG-5G
- 1930EF-5G
- 1936VAG-5G
- OAP-5G
LANCOM Systems has released LCOS version 10.90 RU1 for the mentioned devices, which fixes the behavior described.
You can download LCOS 10.90 RU1 from our website.
After updating to macOS 15.2 (Sequoia), the “Connect” button is grayed out in the Advanced VPN Client
On macOS operating systems with version 15.2 (Sequoia), the “Connect” button is grayed out in the LANCOM Advanced VPN Client version 4.70 REL. As a result, no VPN connection can be established with the client.
The behavior has been fixed in the Advanced VPN Client 4.73 REL. This version is available for download now.
Update from LCOS SX 4.30 Rel to 4.30 RU1 not possible for three switch types via the LMC
Currently, the switch models GS-3510XP, GS-3126XP (HW MOD A0) and GS-3528XP (HW MOD A1 and A2) cannot be updated from LCOS SX 4.30 Rel to 4.30 RU1 via the LMC, as the update mechanism in the LMC sends the firmware in a wrong file format to the devices.
Until further notice, LANCOM Systems therefore recommends to upload the firmware update manually via the webinterface of the affected devices or via SCP (only possible with a direct connection to the switch, but not via the WEBconfig tunnel in the LMC). For this purpose, please use the *.upx file in the Download portal.
As an alternative you can also obtain LCOS SX 4.30 RU1 as a custom firmware via the LMC. If necessary, please contact LANCOM support, so that they can provide the custom firmware for your project.
Email support discontinued on 01 July 2024
Since 01.07.2024 it is not possible to open a Case through e-mail. Cases can be opened via the support portal or by phone.
To create a ticket in the portal, you either need the support PIN or the device serial number registered for LANcare.
LCOS SX 4.30 Rel withdrawn for three switch types
After an update to LCOS SX 4.30 Rel operational restrictions can occur on three switch types. Due to this reason, LANCOM Systems has withdrawn this firmware for the affected switch types as a precaution, so that they are not available to download anymore.
The following switch types are affected:
- GS-3510XP
- GS-3126XP (HW MOD A0)
- GS-3528XP (HW MOD A1 and A2)
Cannot establish Advanced VPN Client connection created with LANconfig 10.80 Rel
In an existing installation, that was originally set up with LCOS 10.50 or earlier, even after an update to a current LCOS version the remote site DEFAULT (initially used for VPN dial-in connections, as long as it hasn't been authenticated) is assigned the Diffie-Hellman group DH14 at the most.
When an Advanced VPN Client connection is set up on such a router via LANconfig 10.80 Rel, the Diffie-Hellman group DH15 is stored in the profile file. Thus, the VPN connection cannot be established.
You can find information regarding troubleshooting of this issue in the following Knowledge Base article:
Troubleshooting guide: Cannot establish AVC connection created with LANconfig 10.80 Rel
Important notice for customers with Unified Firewalls in an HA cluster with LCOS FX 10.11 Rel
In LCOS FX 10.11 Rel the service for Content and Anti spam filtering is not started automatically in an HA cluster scenario. After a change to the Slave firewall in the HA cluster, websites cannot be invoked anymore and instead the block site of the URL/Content filter is displayed.
This behavior is fixed in LCOS FX 10.11 RU1. Therefore LANCOM Systems urgently recommends performing an update to this version.
Firmware update of LANCOM managed switches via LANconfig not possible
In LANconfig, updating the switch firmware and automatically checking for new firmware versions is not possible.
LANCOM Systems therefore recommends to perform a firmware update via the web interface of the switch or via LMC. In the LMC, the mechanism for automatic firmware updates can also be carried out.