Skip to content

IP Fabric v7.8

Upgrade Version Policy

We support the following upgrade paths:

  • The latest version in the previous major line → any version in the current major line (for example: 6.10.77.3.25).
  • Any version in the current major line → any newer version in the current major line (for example: 7.0.157.3.25).
  • An upgrade to 7.5 can be only performed from version 7.3.25 or newer.
  • An upgrade to 7.9 can be only performed from version 7.5.14 or newer.

Clearing Browser Cache

After upgrading IP Fabric to a newer version, you should see the Your application has been updated and must be refreshed dialog in the main GUI.

It is usually sufficient to just click the Refresh button.

However, in case of issues with the main GUI or if you did not see the mentioned dialog, please force refresh your browser cache.

The key combination for doing this depends on your operating system. In your browser window with your IP Fabric appliance’s URL open, use one of the following key combinations:

  • Windows: Ctrl + F5
  • macOS: Command + Shift + R
  • Linux: Ctrl + F5

This will only affect the browser cache for the IP Fabric appliance.

Version 7.8 Availability

Version 7.8 was published but not promoted for upgrade or distributed via online updates.

Continue with the release notes for 7.9.

Known Issues

Google Cloud Platform (GCP)

  • For Interconnect paths, the Cloud Router (control plane) appears in the path lookup. This will be updated in a future release.
  • VPCs with subnets that share the same name across different regions show only one interface with that name in the table, and a Discovery Issue indicates that the interface is duplicated in the output. This will be updated in a future release.

v7.8.3 (December 17th, 2025; EA)

SHA256 (ipfabric-update-7-8-3+0.tar.zst.sig) = dd3962d602c8bcf21833ff49dc6b94a14c7d2a29343d6376eb4407d056542697
MD5 (ipfabric-update-7-8-3+0.tar.zst.sig) = 6dffeda7b199bd0b525188d32e5ee8e2
SHA256 (ipfabric-7-8-3+0.qcow2) = e4d3e4e4d02d97383e3316625baab8a02c90c00cc47dd141d0de53a1c0a2a3e7
MD5 (ipfabric-7-8-3+0.qcow2) = 77d6edbabed4a5f4962d39ca68f44b11
SHA256 (ipfabric-7-8-3+0.vmdk) = 06fc8bdbad31cf7e01c58536505f4ea9a8716c54b46c53134a2af5e8ee00a3d5
MD5 (ipfabric-7-8-3+0.vmdk) = da51db34bd0680faa4b0432de64a568e
SHA256 (ipfabric-7-8-3+0.vhdx.zst) = 5ed330ca8bf01ad0267730087ac1307fbc816175318bbc598c9b0f12ab0149ae
MD5 (ipfabric-7-8-3+0.vhdx.zst) = f789d46713c6610a060ab616ed1aff74
SHA256 (unsupported-ESXi6.7U2-ipfabric-7-8-3+0.ova) = 73686a4ce968eb85f4deb0cadec2f45d590d0eea1db7761b9ffa4b463d5bcb31
MD5 (unsupported-ESXi6.7U2-ipfabric-7-8-3+0.ova) = 6d7c11c84a967e7b13a9b243736ebd8c
SHA256 (unsupported-ESXi7.0-ipfabric-7-8-3+0.ova) = 0b2b300826a01bc766bac17ac10f4211ba1fe6551f0825c87d1350388c61cac8
MD5 (unsupported-ESXi7.0-ipfabric-7-8-3+0.ova) = 6d6ff9452d317c6cfac89f2e7c165b31
SHA256 (ESXi8.0-ipfabric-7-8-3+0.ova) = 5adfc5fcf03bcf8a1d9f01330432777b7a05136b0ffc01270584fe583ff69265
MD5 (ESXi8.0-ipfabric-7-8-3+0.ova) = 3708f83d0f4d322ca5912a98b501c699

New Features

  • Device Attributes Import/Export: Added the ability to bulk import and export device attributes using CSV files for easier management.
  • Added support for GCP multi-project environments. Available projects are fetched at the very beginning of the discovery.

System Upgrade via CLI

A new command-line tool /opt/ipf-system-upgrade/bin/cli now enables performing system upgrades in the same way as through the web interface.

Improvements

Major Snapshot Processing Performance Improvement

We resolved a major performance bottleneck affecting snapshot processing. Previously, each additional loaded snapshot could significantly increase post-discovery calculation time. With the new optimizations, the impact is now reduced to just ~0.5–1% per loaded snapshot, delivering a dramatic performance improvement.

API Logging

The ipf-api component now writes logs to /var/log/ipf/ipf-api/ instead of forwarding them to syslog.

Improved PostgreSQL Migration Process

We have addressed edge cases where PostgreSQL might not have been configured correctly during upgrades. Additional checks and safeguards now ensure consistent and reliable system configuration. The installation process has also been improved to better handle dependencies between the product and PostgreSQL.

Simplified TechSupport Exports

Logs from cloud-init are now excluded from TechSupport exports.

Additional Disk-space Checks During Upgrade

Added a pre-upgrade check for available disk space to prevent the appliance from running out of space during an upgrade.

Jumphost Logs Included in TechSupport Exports

The ipf-jumphost service, which has logged to /var/log/ipf/ipf-jumphost/ since release 7.0 to keep its logs separate from system logs, now includes these logs in TechSupport exports to assist with troubleshooting.

Upgraded Node.js to v22.19.0

All JavaScript-based services are now running on Node.js version v22.19.0.

Technology Tables

New Tables

GUI

  • An overview of active filters, with buttons to easily remove them, was added to all tables How Enhanced Filtering Works.
  • It is now possible to display interface descriptions on diagram edges in the form of line cap labels. Example can be seen on this page.

Path Lookup

Cloud
  • New device icons for the AWS and Azure clouds in network and path-lookup diagrams to improve navigation.

AWS icons

  • Added support for the Azure Firewall - classic rules and policy-based firewall, and support for network, application, and DNAT rules.
    • Limitations:
      • Application rules with FQDN tags are not supported.
      • DNAT rules with FQDN are not supported.
      • Azure Firewall deployed in vWAN is not supported.
  • Added support for GCP Partner Interconnect.
Meraki

Vendor Support and Improvements

  • Palo Alto
    • Now supports AAA, NTP, SNMP, Syslog, OSPFv3 tasks and IPv4 and IPv6 route summary tables.
  • Fortinet
    • Now supports IPv4 and IPv6 route summary tables.
  • Meraki
    • Now supports switchports on LAN side for firewalls, port-channel and management interface for switches.
    • Corrected xDP interface numbering for firewalls.
  • Cisco
    • Now supports IPv6 AAA, ACL, SNMP and Syslog tasks on NX-OS and IPv6 route summary tables on ASA, ACI, IOS XR, NX-OS.
  • Aruba IAP - AOS 10+
    • Virtual Controllers are no longer created as devices in IP Fabric due to architectural changes introduced in AOS 10.
    • The cluster group name is now displayed in a new column, AP Cluster Name, within the table: Technology/Wireless/Access points.

API Changes

  • Introduced a new API error code: API_VENDOR_CONNECTION_TEST_FAILED. Updated the AWS API connection tester to use this new error code instead of the previous API_URL_NOT_REACHABLE.

Endpoint Payload Size Limit

The payload size limit has been introduced with a default of 20 MB, except for the following endpoints with their respective limits:

  • /appliance-configuration/import -> 100 MB
  • /extensions/docker-image -> 2 GB
  • /extensions/docker-zip -> 10 GB
  • /licenses/upload -> 5 MB
  • /snapshots/upload -> 10 GB
  • /graphs/vsdx -> 25 MB
  • /os/upload-nimpee-cert -> 5 MB
  • PATCH /settings -> 100 MB

Miscellaneous

  • BGP AS number format can be changed to ASplain using a Configuration Flag.
  • Discovery and API system logs are now available under separate journald namespaces.
  • The system status page is now accessible only after login.
  • The license upload endpoint is now protected by authentication and accessible only to admin users.
  • When a user changes their password, all active sessions for that user are invalidated.
  • Session token is now invalidated upon logout.
  • The default RabbitMQ guest account has been removed.
  • The built-in Role-Based Access Control (RBAC) policy previously named others (ID: read) has been renamed for improved clarity.
    • Despite its ID, this policy also permits write operations for saved filters and graphs. The rename helps better reflect its actual permissions and avoid confusion between read-only and read/write capabilities.