3.4.0 (2024-09-17)
– Fix issue where whitelist priority wasn’t high enough in some cases.
– Fix issue with some successful logins from Windows event viewer not getting reported.
– Replace WMIC with PInvoke on Windows for account names and active status retrieval. WMIC is deprecated as of Windows Server 2025.
3.3.0 (2024-07-01)
– Add log collection for all clients (requires client and web admin 3.3.0 version). See new “Logs” tab.
– Can use merge=’true’ attribute in appSettings elements for ipban.override.config, this will merge the original config and override config using a newline delimiter. Can set an optional mergeDelimiter=’x’ attribute to specify your own delimiter.
– Add ProcessToRunOnSuccessfulLogin option.
– Update default config to handle additional RRAS failed logins.
3.2.0 (2024-04-26)
New features
– Close open sockets for banned ips.
Fixes
– Force firewalld xml sorting by priority in case firewalld installed doesn’t honor priority attribute.
3.1.0 (2024-03-18)
New Features
– See Web admin changelog for personal edition information.
Fixes
– Revert firewall monitoring to use a separate process again to fix edge cases where Win32 API didn’t report events.
– Various minor performance enhancements
3.0.0 (2023-12-23)
New Features
– Rebuild with .NET 8, gaining improved performance.
Fixes
– Reduce memory usage of personal edition.
– Fix memory leak in Windows Filtering Platform (WFP) firewall.
2.6.0 (2023-12-14)
New Features
– More logging for tiered ban times.
– (Linux only) FirewallD dropped packet logging.
– (Linux only) Option to force iptables firewall on Linux by setting env var `IPBanPro_LinuxFirewallIPTablesWithMonitoringPriority` to `10`.
Fixes
– Tiered ban times will not unblock until the last tiered bantime is expired.
– (Linux only) Fix FirewallD ipv6 rules.
– (Linux only) Installer now uses yum to install ipset-libs on centos and redhat.
2.5.0 (2023-07-12)
New Features
– Country block overrides per machine, use machines section, machine options to do this
– (Linux only) FirewallD is now used on Linux. This replaces the previous iptables implementation.
– ASN blocking, access from settings -> ipban shield section
– UI for disabling notifications for log files or event viewer per item
– Notes field to add whitelisting url form
– Blacklister specific role, this role is only allowed to call the `/api/banipaddresses?ipAddresses=ip1,ip2,ip3,etc` end point on the api of the web admin server
– Self signed certificate option for web admin server email notifications, see appsettings.json
Fixes
– (Windows only) Fix some edge cases where WFP whitelist ip addresses were not given precedence over blacklisted ip addresses
– Improve url whitelisting feature, bug fixes, stability improvements, handling of multiple filters/fqdn
– Tools, ban check in web admin or personal UI now correctly shows url whitelisting
– Attempt to fix an edge case that would delete the license key on web admin or personal edition startup
– Move delete machine button in machines section to the machine options
– Attempt to fix possible Linux timer issue in cycle call
2.4.0 (2023-05-21)
All platforms
– (Both) Fix issue where program would not start if Windows firewall was disabled.
2.3.0 (2023-03-29)
All platforms
– (Both) Support message that requests all firewall rules be sent to server.
– (Both) Windows network adapter priority (interface metric) is now honored when ip addresses are retrieved from the system.
– (Both) Fix an issue where base config (ipban.config) did not change but the override config (ipban.override.config) did and log files could stack endlessly.
– (Personal edition) Auto update option.
– (Personal edition) Tools area now contains an option to retrieve firewall rules without needing to run bash/powershell scripts. Response is in JSON format.
– (Personal edition) UI fixes for banned ip and failed ip sections around blocking and unblocking.
– (Personal edition) Expose the ClearFailedLoginsOnSuccessfulLogin setting in the ui.
– (Personal edition) Fix monitor -> export option.
2.2.1 (2023-02-09)
All platforms
– Fix bug with license sync interval.
– Add user name truncation on @ character by default.
– (Personal edition) Fix issue where dns whitelist was not denoted as whitelisted in the ip checker tool.
2.2.0 (2022-12-06)
All platforms
– Cloudflare integration using new plugins architecture.
– RunProcess integration using new plugins architecture.
– Other minor bug fixes.
2.1.2 (2022-09-21)
All platforms
– Another memory leak fix.
2.1.0 (2022-09-17)
All platforms
– Fix issue in MySQL initializer not detecting server version from connection string.
– Send failed logins for whitelisted ips so they show up in the UI.
– Regex can now include a log group to provide relevant log snippet when logging.
– Refactor cycle tasks to ensure each task executes regardless of whether other tasks throw exceptions.
– Fix memory leak that could appear in some cases when firewall tasks take a long time to execute.
– App setting values can use %[env_var_name]% syntax to load value from an environment variable.
2.0.1 (2022-06-14)
Windows
– Make Tomcat regex less aggressive.
– Fix transaction lock error in Windows Filtering Platform code.
– Personal edition: Fix export button.
2.0.0 (2022-05-12)
All platforms
– Firewall implementation will send packets to the web admin utility if monitoring is enabled.
– Fix memory leak.
Linux
– Fix IPTables to handle non-cidr ip address ranges
1.8.0 (2022-03-22)
All platforms
– Reduce memory usage.
– Option to invert country block, allowing a set of countries to allow and block everything else.
1.7.2 (2022-03-14)
All platforms
– Improved networking performance.
1.7.1 (2022-01-31)
All platforms
– Minor bug fixes.
1.7.0 (2022-01-01)
All platforms
– Improve performance.
– Reduce RAM usage.
1.6.0 (2021-07-11)
All platforms
– Allow free download of software so that it can be trialed without entering payment info.
1.5.1 (2021-04-13)
All platforms
– Support for ip address ranges from the recent and naughty list.
– Allow receiving country block rules from the web admin utility to block entire countries in the firewall. Certain ports can be exempted from this if desired.
– Switch to Windows Filtering Platform as the default firewall. During install, you can enable WinDivert if you need extra performance.
– (Personal Edition) Fix bug where notifications were not sent in some cases.
1.4.0 (2020-12-29)
All platforms
– Listen to web admin broadcast info for easier install process.
– Fix existing credentials being overwritten to blank when updating.
1.3.1 (2020-12-12)
Windows
– Fix an edge case where WinDivert firewall would not honor the whitelist.
Linux
– Add nginx auto setup to installer
All platforms
– Add ability to use ipban.override.config
file to change config per client.
1.3.0 (2020-11-09)
Windows
– Switch to WinDivert as the default firewall. You can still switch back to Windows Filtering Platform by setting environment variable ‘IPBanPro_Firewall’ to ‘WFP’. Please ensure your virus scanner is allowing the IPBan install folder and executable, etc.
1.2.0 (2020-10-27)
All Platforms
– Handle local network machines and whitelist all ip addresses with IPBan Pro installed.
Windows
– Remove outbound networking traffic filter. I will investigate more performant ways and options to filter outbound traffic in the future.
– Fix some issues fetching country, recent and naughty lists from server.
1.1.0 (2020-10-20)
Windows
– Add optional WinDivert firewall for improved performance. Please set the environment variable IPBanPro_Firewall
to WinDivert
to enable this firewall.
You will need to restart the service for this change to take effect.
In addition, you may need to add the datacenter or personal service executable and/or folder to the ignore list of your virus scanner. The default install is c:/program files/IPBanPro*. If you have other applications using WinDivert , you may run into conflicts, in which case, delete the environment variable and restart the service to go back to the Windows Filtering Platform firewall.
1.0.0 (2020-10-03)
Initial Release