Attention AirLink® Router Users:
We are issuing a critical advisory regarding the ALEOS 4.18.0 update for AirLink® MP70, RV50X, RV55, LX40, and LX60 routers. While this update was originally released to introduce new features, security enhancements, and bug fixes, a serious issue has been identified, and we strongly advise customers to halt any upgrades to ALEOS 4.18.0 immediately.
Overview of ALEOS 4.18.0 Update
On its initial release, ALEOS 4.18.0 introduced several key improvements, including:
- Enhanced Security Measures: Changes in password handling for improved protection.
- Bug Fixes & Stability Improvements: Addressing various known issues.
- Potential Deprecation of Legacy Features: Updates affecting SNMP, OpenVPN configurations, and AAF Developer Studio.
However, a significant issue has been discovered post-release that impacts all in-production ALEOS-powered routers, necessitating an immediate pause on upgrades
Identified Issues & Impact
Shortly after deployment, critical faults were reported that may lead to:
- System instability
- Connectivity issues
- Potential security risks
Due to the severity of these issues, Semtech has advised all customers to cease upgrading their devices until further notice. If you have already upgraded, do not attempt to downgrade without first reviewing the rollback process outlined below.
Important Notes on ALEOS 4.18.0 Password Changes
- Password Handling Modifications:
- The password management system has changed, affecting authentication methods for ACEmanager, ALMS, and AMM.
- Users running ALMS with MSCI communication must follow specific steps to reset admin credentials before modifying passwords.
- Downgrade restrictions: If your router is using ALEOS 4.18.0, you may need to adjust security settings before attempting a rollback.
- ALMS Protocol Considerations:
- If LWM2M is not enabled, migration is recommended before upgrading.
- Some refurbished routers may have incorrect IMEIs, requiring re-registration in ALMS before switching communication protocols.
If you are impacted by the password changes and experiencing login difficulties, please consult the ALEOS 4.18.0 Password Changes Application Note for step-by-step guidance.
Rollback Process for ALEOS 4.18.0
Manual Downgrade via ACEmanager
- Log into ACEmanager.
- Verify your current admin credentials (as password authentication changes may affect login).
- Navigate to the firmware update section and attempt to install a prior stable version.
- Ensure you have proper credentials before proceeding to prevent lockout.
Remote Downgrade via ALMS (LWM2M Users)
- Ensure "Support Firmware Downgrade to Version Before 4.18.0" is enabled under ALMS settings.
- Apply downgrade template with password reset configurations.
- Execute downgrade and validate connectivity post-rollout.
Rollback Considerations for MSCI Users
- Unlike LWM2M users, MSCI users must first modify MSCI credentials before attempting a rollback.
- Each device must be manually updated (bulk operations are not supported).
Downgrade Not Supported in AMM
- Users managing devices through AMM must rely on ALMS or ACEmanager for rollbacks.
Next Steps
✔ If you have not yet upgraded to ALEOS 4.18.0, do not proceed with the update.
✔ If you have already installed ALEOS 4.18.0, follow the rollback instructions to restore a stable firmware version.
✔ Stay tuned for further communications from Semtech regarding an updated release.
For immediate assistance, contact MCA support or refer to the official ALEOS documentation.
📢 Stay informed & ensure your networks remain stable!
About MCA and Our CNS Team
MCA is one of the largest and most trusted integrators in the United States, offering world-class voice, data, and security solutions that enhance the quality, safety, and productivity of customers, operations, and lives. More than 65,000 customers trust MCA to provide carefully researched solutions for a safe, secure, and more efficient workplace.
Our Cellular Networking Solutions (CNS) team (formerly known as USAT) is made up of certified experts in designing and deploying fixed and mobile wireless data connectivity solutions for public and private enterprises nationwide - complete with implementation, training, proof of concept (POC), system auditing, and on-site RF surveying services with optional engineering maintenance contracts.
Our extensive Ericsson catalog of world-class routers, gateways, and software designed for remote monitoring and management in even the harshest environments allows us to deliver a full suite of reliable technologies capped with a service-first approach.
Share this Post
