TCPware v5.8 Features

Features	Description
FTP over TLS	FTP has been enhanced for higher security allowing for encryption of the communication between the FTP server and client. This is accomplished via support of RFC 4217.
BIND 9.4.1p Server	BIND 9 supports Multiple Views (also referred to as Split DNS). A common practice for organizations is to run servers for internal use separately from those for external use. But in many instances, both internal and external clients use both servers. And if the organization uses network address translation (NAT), the servers must be accessible from two different IP addresses. In the split DNS infrastructure administrators can create two zones for the same domain. One of the zones is used by internal network clients and the other zone is used by external network clients. The benefit of using split DNS is that it provides easier access management. Administrators need to manage the database in one location and not in multiple locations. Other enhancements made in the BIND 9 server include improved security in DNSSEC (signed zones) and TSIG (signed DNS requests), improved standard conformance for over 25 RFCs, and some BIND 9 tools (DIG, NSUPDATE, HOST, RNDC, and more).
NTP v4.2	NTP is a protocol designed to synchronize the clocks of computers over a network. This release replaces DES with MD5 and includes various bug fixes.
SSH Upgrade	SSH has been upgraded and includes the following new features: The CERTTOOL utility is used to manipulate X.509 certificates. It can create PKCS#10 requests and allow users to create a PKCS#12 package containing any number of private keys and certificates. SSH provides single sign-on access to LDAP, RSA SecurID, and RADIUS authentication when used with Process Software’s VMS Authentication Module (VAM) software. The system administrator can specify which IP addresses are used or restrict directory access for certain users. File operations that a user performs can be restricted. Messages about the operations that a user performs can be logged to a variety of OPCOM classes. Improved handling of expired passwords.
FTP support for VAM	Users can be authenticated with Process Software’s VMS Authentication Module (VAM) which provides secure authentication via SecurID, LDAP, and Radius.
Performance Enhancements	Alpha and Integrity systems have an improved connection hash that uses a larger table with an algorithm that has a more uniform distribution. This will reduce the time it takes to process incoming packets and provide increased performance especially for systems with large numbers of TCP connections. Support for jumbo packets on gigabit Ethernet allow more data to be contained in a packet.
SNMP Update	A trap receive program has been added. TCPware has improved its reporting capability by displaying traps supplied by other programs.
Improved third-party software compatibility	Packets larger than 65535 bytes can be sent via the CRTL.