----------------------------------------------------------------------- Release Notes for AccessPoint SSL VPN Toolkit Version 1.2.1 ----------------------------------------------------------------------- October 5, 2004 These release notes describe new product information and updates to the AccessPoint SSL VPN Toolkit documentation. These release notes also list important information about the AccessPoint 1.2.1 software and describe known problems and limitations. ----------------------------------------------------------------------- Table of Contents ----------------------------------------------------------------------- * Minimum System Requirements * Special Product Information * New Features and Enhancements * Resolved Caveats * Technical Support * Technical Documentation ----------------------------------------------------------------------- Minimum System Requirements ---------------------------------------------------------------------- The following are the minimum system requirements for the AccessPoint 1.2.1 SSL VPN Gateway Machine: * 600 MHz Processor x86/Pentium compatible processor * 128 MB RAM * 500 MB available disk space * CD-ROM Drive ----------------------------------------------------------------------- Special Product Information ----------------------------------------------------------------------- Administrative and End User Client Requirements: For Windows Operating Systems * Browser: Internet Explorer 5.1 or higher Mozilla 1.x Netscape 7.0 or higher Opera 7.0 or higher* * Java: Sun JRE 1.1 or higher Microsoft JVM 5 or higher * Browser Config: Cookies, Java and JavaScript must be enabled For Unix Operating Systems * Browser: Mozilla 1.x or Netscape 7.0 or higher * Java: Sun JRE 1.1 or higher * Browser Config: Cookies, Java and JavaScript must be enabled ----------------------------------------------------------------------- New Features and Enhancements ----------------------------------------------------------------------- AccessPoint 1.2p1 Features: * RDP 5.0 support - AccessPoint SSL encryption and authentication combined with the Microsoft Terminal Services ActiveX client. The ActiveX client supports RDP 5.0 features including 32-bit color display and print services. * Client authentication via digital certificates - AccessPoint supports dual factor authentication to identify remote SSL VPN users. * Inactivity Timeout - the administrator may configure an inactivity timeout by user, group or globally. * New HTTP proxy in ANSI C. New HTTP proxy provides greater performance and a smaller memory footprint. Besides increasing the speed that web pages are displayed, the new proxy will be able to support future enhancements such as granular URL filtering without significantly degrading proxy performance. Note: The 1.2.1 release also includes the legacy Perl and mod_perl proxy. The complete transition to the C proxy and elimination of the Perl proxy will occur in the 1.3 release. * Customization of the SSL VPN portal, including configuring which SSL VPN portal pages and application icons are displayed. * Static routes for the Virtual Passage SSL VPN Client. The AccessPoint administrator may use the current routes configured on the SSL VPN gateway or define custom routes to be provided to the Virtual Passage client. AccessPoint 1.2.1 Features: * Portal Layout changes: - Virtual hosting is now supported. - Only the corresponding domain name will be displayed in the Domain drop down menu for new domain layouts. * Virtual Passage Enhancements: - Virtual Passage now supports overlapping IP address ranges for the physical interface of the client machine and the Virtual Passage client IP address. * The ActiveX RDP client includes the MSRDP.cab file. So Windows users will be able to automatically launch the Terminal Services ActiveX client without needing to download the cab file from the Microsoft web site. Users with browsers other than Internet Explorer will be warned that the ActiveX RDP client is not supported by their browser. ----------------------------------------------------------------------- Resolved Caveats ----------------------------------------------------------------------- AccessPoint 1.2p1 Resolutions: * HTTP Proxy resolved issues and changes: - New method of HTTP redirect fixes issue in Internet Explorer caused when displaying images with relative URLs that were generated by JavaScript. - Dynamic AccessPoint address bar replaced with standard web browser address bar. Some web sites, including Novell Groupwise, use a JavaScript form[0].submit function which did not work with the AccessPoint address bar. * Ability to delete domains that have a '%' character. * Ability to delete a Network Resource once the Network Resource has been applied and then removed from a User or Group policy. * Terminal Services 5.0 IE memory problem solved. AccessPoint 1.2.1 Resolutions: * Logo images may be uploaded (caveat only in 1.2p1) * The Login Banner Message with more than 8 spaces will not cause SMM to fail to restart * If SMM is unable to accept a configuration file parameter, SMM will ignore the specific parameter. This change will prevent SMM from failing to start up. * The Terminal Services applications, defined in the Portal Layout and displayed in the Applications page, will not be overwritten by the default Terminal Services applications when SMM restarts * Disabling the web cache cleaner control in the portal layout will apply to both manually logging out of the portal as well as closing the web browser window. * Virtual Passage Resolved Caveats: - MTU size is preset and not negotiable. Many firewalls and routers block MTU size TCP negotiations. MTU negotiation severely impacted the performance when the SSL VPN client needed to access resources on a different subnet then the SSL VPN gateway device. - If the VPN tunnel disconnects unexpectedly, Virtual Passage will gracefully close the connection. - The Virtual Passage connector is now marked "Safe for Scripting", so it should run in the default IE security settings * The Java VNC client has been modified to no longer send certain mouse movement messages to the VNC server. Some VNC servers cannot accept the compressed VNC messages and would disconnect the VNC session after certain mouse events. * The Java RDP client now supports all recognized keyboard key mappings. Previously, certain characters, such as ":<>?'{}" on some international keyboards were not recognized by Microsoft JVM. Now, all ASCII characters on international keyboards will be interpreted correctly by MS JVM as well as Sun JVM. * ActiveX files, including the Web cache cleaner, MSRDP and Virtual Passage connector have been compiled to support older Windows operating systems. So older Windows platforms should not see any memory error messages or other warnings when running the ActiveX files. ----------------------------------------------------------------------- Technical Support ----------------------------------------------------------------------- Menlo Logic offers phone and email support to customers with valid support contracts or customers evaluating the AccessPoint software. Dedicated support engineers are available to provide installation, configuration, and source code development assistance. Support Offerings and Benefits * A range of support options that scale with customers' specific needs. * 24 x 7 premier support to quickly respond to worldwide requests. * Hardware and software integration services. * Unparalleled experience supporting large scale distributed systems. If you have a valid technical support contract or are currently evaluating the AccessPoint software, you may contact Menlo Logic support at: * Email: support@menlologic.com * Phone: 650-922-6500 * Web: http://www.menlologic.com/support.html To obtain general information about Menlo Logic, technical support programs, or software upgrades, contact 650-922-6500 or email sales@menlologic.com. ----------------------------------------------------------------------- Technical Documentation ----------------------------------------------------------------------- Technical documentation for AccessPoint is available at the Menlo Logic Support Portal. To request a support account to access the secure support site, call 650-922-6500. Technical documentation for the AccessPoint Source Code Toolkit includes the AccessPoint Installation Guide, Configuration Guide, End User Guide, and Developer Guide. ----------------------------------------------------------------------- Document No. 000104 All contents are Copyright © 2004 Menlo Logic LLC. All rights reserved.