Search the Community
Showing results for tags 'security features'.
This change log covers what's changed in Domotz Pro service since previous Release Notes. These changes include Domotz Pro cloud, Domotz Agent and Domotz Pro App. Since previous Release Notes new versions of Domotz Agent and Domotz Pro App have been released. February 13rd, 2019 In order to fully exploit the new features, functionalities and bug fixes released, please make sure you have installed the latest version of Domotz Pro Mobile App: check on Apple Store or Google Play. Latest version as of today is 1.9.1 Domotz Agent: check on Domotz Portal under the subscription tab. Latest Agent version as of today is 2.4.3 Violet Digital Support: check on Apple Store or Google Play. Latest version as of today is 2.6.7 Domotz Pro WebApp and Portal are already updated to the latest version What's new: Premium plan has been introduced: this plan is ideal for MSPs, or IT professionals with needs to manage multiple Franchises, Hospitality, Retail, or Corporate networks. Commercial Integrators can also leverage the functionalities available within this new plan on the Large Business installations. The new plan, includes new functionalities and higher volumes or frequency of reads as compared to the Advanced plan: Higher number of EYEs can be configured Higher frequency for reading EYEs values can be configured Agents configured under the Premium plan can consume up to 10GB/mo traffic on Remote Connections External IP Host monitoring is extended on Agents configured under the Premium plan Additional Layer-3 Subnets monitoring can be configured on a higher number of subnets for Agents configured on Premium plan A higher number of API calls can be executed on Agents configured under the Premium Plan Device Response Time: on Agents configured under the Premium plan, the Agent periodically initialize ping session to any single device and collects Round Trip Delay and Packet Lost statistics. Additional information and features are available: Historical values: the collected data will be available in the form of statistical values with historical graph for faster review and analysis of issues. Alerts: alerts can be configured to receive notification if certain thresholds of Packet Lost percentage or RTD measures are breached. Real Time execution: it is possible to ping every single device real-time to get a RTD feedback second by second. Public API: historical data for device response stats are retrievable using Domotz Public API. CyberSecurity Features (Perimeter Network Scan): on Agents configured under the Premium plan, Domotz periodically runs a security assessment of your networks and alerts the user if any new potential threat is found. Both internal LAN perimeter scans and external WAN perimeter scans are performed to ensure that the network is compliant with the security best practices. The user will be informed if there is any potential threat and can decide whether to acknowledge that threat. The following two features are currently available under the new plan: WAN Scan – TCP Open Port Scanner: Domotz periodically performs slow TCP port scans against the Public IP address of the monitored network (WAN Scan) in order to identify and inform you if any TCP port has been found open. As a matter of fact, it is quite a common practice to open a port on the Modem/Router of a network and forward that port to a specific device within the network (allowing unsecured remote management, visibility, or other forms of remote access). However, this is usually not a good practice in terms of security. LAN Scan – UPnP Port Forwarding Scanner: Domotz performs an internal UPnP scan (LAN Scan) to identify whether UPnP is enabled on the Router/Modem and whether any device on the network is leveraging UPnP to open ports and redirect the traffic. As a matter of fact, while a Router/Modem normally blocks incoming connections, preventing some malicious access, UPnP could allow a malicious program to bypass the firewall entirely: if UPnP is enabled on the Router/Modem, a malicious application might ask the Router/Modem to redirect network to remote IP addresses on the Internet (instead of local IP addresses), and the router would comply. The same malicious application might also ask the Router/Modem to open ports on the WAN side and redirect the incoming traffic to a specific device (exposing the device to the outside world). LibertyAV - DigitaLinxIP deep discovery: Domotz now discover LibertyAV's DigitaLinxIP controller on the scanned network (IPEXCB). Thanks to a new recognition methodology, all the receivers and transmitters are automatically discovered by Domotz even if configured on a different VLAN/Subnet LibertyAV - DigitaLinxIP enhanced recognition: A new Domotz Pro Tile and menu entry, gives access to a new set of features specifically designed for LibertyAV - DigitaLinxIP. The following information are available directly on Domotz Pro: Device Network Configuration Device resource usage (CPU and Memory) Firmware version Model identifier Audio/Video Settings/Status (timing, format, rate, bitrate, fps, HDCP, EDID, etc) Streaming data Encoder (TX) / Decoder (RX) - topology graph Command to Reboot Command to Factory Reset the device Improvements: Domotz Icon: Domotz and Fingbox hardware are now reported with their own icon. PoE switch: Araknis Switch driver has been patched to support newer firmware version. Subscription model: starting from January 31st, 2019, credits are not sold anymore online. Listening requests from multiple Domotz users, Lite Lifetime License has been replaced with 5 Years Lite prepaid plan using existing credits. Direct Collaborations: all users can invite Domotz Support to access to their Agents directly from the Collaboration tile. Moreover, selected user account can invite Global Presence Alliance (GPA) support to access to their agents directly from the Collaboration tile. Domotz Alert Digest: daily alert digest email now includes the number of events directly in the email subject. Domotz Dashboard Improvement: the Domotz Global Dashboard now performs ETAG checks on the returned data from the cloud, optimizing the traffic during the refreshing phase for the dashboard. Agent Search in Global Dashboard: Agents can now be searched in the global dashboard using the MAC address of the hardware hosting the Domotz Agent. Fix: ZigBee driver has been fixed to support newer Control4 FW version 3+ Ruckus slower controllers could not provide AP status information without timeout exceptions Device Response Time history have been extended to one month Fix on the formatting of Monthly Reports Known limitations: Device Response Time features are limited to recent version of the Domotz Agent package. Some old package on third-party hardware need to be manually upgraded Eyes configured for deleted devices affect the total counting of Eyes Devices with multiple network interfaces (multiple MAC address) can't be merged into single device Field Operators can't set alerts on Domotz Eyes (SNMP Custom OID and TCP Services monitoring) Static IP address on the Domotz Box cannot be configured before configuring the Agent Multiple Devices logically connected to a Managed Switch Port: in case of WiFi AP connected to a switch port, the information is not available at the WiFi AP info
This change log covers what's changed in Domotz Pro service since previous Release Notes. These changes include Domotz Pro cloud, Domotz Agent and Domotz Pro App. Since previous Release Notes new versions of Domotz Agent and Domotz Pro App have been released. May 8th, 2018 In order to fully exploit the new features, functionalities and bug fixes released, please make sure you have installed the latest version of Domotz Pro Mobile App: check on Apple Store or Google Play. Latest version as of today is 1.7.5 Domotz Agent: check on Domotz Portal under the subscription tab. Latest Agent version as per today is 1.9.1 Violet Digital Support: check on Apple Store or Google Play. Latest version as of today is 2.6.7 Domotz Pro WebApp and Portal are already updated to the latest version What's new: App and WebApp in Demo Mode: it is now possible to use the Domotz Pro App in Demo Mode (or via Web App) in order to understand and show all the features available through Domotz. The Demo Mode also works when the mobile is in offline mode Disable Device Auto Discovery: the Device Auto Discovery performs a network scanning every 30 seconds. It is now possible to disable the automatic discovery of new devices, in order to allow the monitoring system to monitor only the existing devices at a certain date Domotz Users can be invited on a FingBox: all the Domotz Pro users can be invited by a FingBox user to monitor their network. A new Agent is created in the Domotz Pro list of agents and it performs Remote Monitoring and Managing activities by leveraging the FingBox hardware Domotz on Luxul Router - Epic 5: Domotz Agent is now available on the Luxul Router - Epic 5 series SNMP Templates: for some devices, OiD are suggested to the user during an SNMP sensor setup CyberSecurity Features (Beta on request): TCP Open Ports scanner (WAN), Default Credentials Scanner and UPNP Port Forwarding Scanner (Router/Modem security issue) CleanUp Agent Data: user can now clean-up completely the data of an Agent, and start scanning a new network (without requiring the re-configuration of the Agent). This now allows users to Configure the Agent in a network, then ship or relocate on a different network, and start scanning from scratch Denon and Marantz integration: new 2018 models (both Denon and Marantz) can now be managed remotely through an intuitive interface available in the Domotz Pro App and WebApp. Network and Device reboots, Zone Info and controls on the Zones, System Info, Streaming Services list and more is now available Blacklist of devices: some Devices may have problems when scanned with network monitoring tools. Although not common, this is typically related to scanned devices that have legacy firmware. It is now possible to blacklist a Device from being monitored by Domotz Pro agent Improvements: Device Rediscovery: it is now possible to delete an online device, to allow the Domotz Pro service to re-discover it. This is very useful if the user want to clean-up all the previously discovered data for a specific device Power activity logs: Reboot, on/off and software restart activites of supported devices (through PDUs, PoE and supported drivers) are now tracked and listed into the "Reports & Logging" tile Ruckus - new firmware support: Ruckus Zone Director with firmware 10.1+ is now supported with Advanced Plan Remote Connections on Public Hostname/IP: it is now possible to create Remote Connections/TCP Tunnel to Public Hostname/IP using the Domotz Agent (Advanced Plan) TCP Tunnel Endpoints: When creating an Open TCP Tunnel, random endpoints (host:port) can be copied directly from the App/WebApp Dummy Device removal: it is now possible to remove Dummy devices Important Devices can be blocked: it is now possible to configure an Important Device as "blockable" by an end-customer (through Violet - Customer Facing App) See Blocked Devices: Domotz Pro user can now see if a device has been blocked or if it has a scheduled block configured in Violet - Customer Facing App Serial Number: some devices are now reporting the Serial Number directly into Domotz Pro FIX: Control4 firmware version was not retrieved for some newer versions Dummy Devices could not be controlled through Violet Long Community String (SNMP) could not be edited from the Mobile App Known limitations: Eyes configured for deleted devices affect the total counting of Eyes Devices with multiple network interfaces (multiple MAC address) can't be merged into single device Field Operators can't set alerts on Domotz Eyes (SNMP Custom OID and TCP Services monitoring) Static IP address on the Domotz Box cannot be configured before configuring the Agent External monitoring of public and private subnets might not work properly on Raspberry Pi installations Multiple Devices logically connected to a Managed Switch Port: in case of WiFi AP connected to a switch port, the information is not available at the WiFi AP info