The update file contains the latest FRITZ!OS (Firmware) for the FRITZ!Box 6820 LTE v2. **Attention:** This update file is only intended for use with FRITZ!Box 6820 LTE v2! Please follow the instructions at the end of this file to install the update. ``` Product: FRITZ!Box 6820 LTE v2 Version: FRITZ!OS 7.29 Language: German, English, French, Italian, Polish, Spanish Release date: 12/03/2021 ``` **Top functions of FRITZ!OS** ------------------------------------------------------------ - Priority for working from home - Easy to enable prioritization of a computer for internet access - Improved SMS function - Send function for SMS and Journal for received and sent SMS - Easy internet access steering - Convenient enabling and disabling of internet access for specific devices - More comfort for guests - Public Wi-Fi for guests with encrypted data (OWE) - More Wi-Fi security - Support for the new WPA3 encryption - Optimized mesh function - Better Wi-Fi performance with mesh steering and mesh autochanel ------------------------------------------------------------ With each FRITZ!OS update, AVM also updates its security functions. Therefore we recommend performing the update for all devices. ------------------------------------------------------------ Note: Instructions for configuring and using Mesh functions are presented at en.avm.de/mesh-faq Below you find a complete list and descriptions of the new functions in the latest FRITZ!OS, along with a list of further improvements in this version. --- # New functions of FRITZ!OS 7.27 ## Mobile Communications: - **NEW** Send function for SMS and Journal for received and sent SMS (Internet/Internet access/SMS) - **NEW** Shifting of the forced disconnection into any hour of the day supported ## Internet: - **NEW** Prioritization of a network device above all others; this property can be enabled in the "Details" of the device in the home network - **NEW** Convenient enabling and disabling of internet access for specific devices - **NEW** With parental controls enabled, settings and ticket entry for the device to be accessed are displayed when the user interface is opened - **NEW** Support for encrypted resolution from domain names to IP addresses (DNS over TLS) ## Wireless: - **NEW** Encryption according to the new WPA3 standard (including Wi-Fi guest access, connections to Mesh Repeaters and internet access via Wi-Fi with SAE) - **NEW** An open Wi-Fi network can be offered at the Wi-Fi guest access, in which only data are transmitted in encrypted form (Enhanced Open/Opportunistic Wireless Encryption, OWE) ## Mesh: - **NEW** Better Wi-Fi performance with mesh steering and mesh autochanel - **NEW** Mesh auto-channel: Accounts for the wireless environment of the Mesh Repeater in selecting the best Wi-Fi channel for the entire Mesh ## Home Network: - **NEW** Mark of network devices with blocked internet access (device lock or parental controls) in the entire user interface - **NEW** Network passwords for the powerline network can now be changed on FRITZ!Powerline devices connected directly (via LAN) System: - **NEW** Change visibility of password during assignment and entry (eye icon) - **NEW** NEW - Users supported in becoming acquainted with FRITZ!Box functions with welcome page - **NEW** Time period for automatic updates can be defined ------------------------------------------------------------ # Additional improvements in FRITZ!OS 7.29 ## Mobilfunk: - ** Fixed ** No 3G data connectivity since the update to FRITZ!OS 7.27 if CS Voice is blocked on the network side - ** Fixed ** No LTE connection if there is an error in the SMS memory on the SIM card ## Internet: - **Improved** List of trusted certification authorities updated - **Improved** When internet access to storage media via FTP/FTPS is enabled, the randomly preselected port number is displayed ------------------------------------------------------------ # Further improvements in FRITZ!OS 07.27 ## Mobile Communications: - **Improved** New software for the mobile modem with improved stability of the mobile connection - **Improved** Push service for SMS now also supports sent SMS - **Improved** Optimizations for mobile radio in the diagnosis - **Improved** Better stability and interoperability - **Improved** MTU size can be configured for the mobile connection - **Improved** Specification of the bandwidth for UMTS / HSPA connections optimized - **Change** "Reconnect" forces the acquisition of a new IPv6 address - **Fixed** Start of the diagnosis sometimes leads to the reconnect of the mobile connection - **Fixed** After the mobile connection was broken, there was sometimes no automatic attempt to re-establish the connection - **Fixed** Avoidance of failures of certain SIM cards that use a SIM toolkit with low error resistance - **Fixed** No mobile connection for SIM cards with tariffs without LTE support via UMTS / HSPA + possible - **Fixed** Received SMS messages were listed in the push service and in messages in "System / Events" partly without text and partly with an incorrect time stamp - **Fixed** Not all settings could be changed for the push service of received SMS messages - **Fixed** Sporadic incorrect display of the bandwidth of the Internet connection - **Fixed** In rare cases the FRITZ! Box hangs when starting with the SIM card inserted - **Fixed** No LTE connection in the Telenor / Vodafone network Sweden with APN m2mc.simservices - "ESM attach error - Missing or unknown APN" ## Internet: - **Improved** Management of tickets in parental controls - **Improved** Device status (active/not active) is displayed in the selection of devices for port sharing - **Improved** Clearer display of port sharing overview on mobile devices - **Improved** Assignment to devices added to the access profile settings in the parental controls - **Improved** Optimized retry function for DNS over TLS (DoT) - **Improved** Port sharing allowed when the requesting IP address and destination IP are not the same but reference the same physical device - **Improved** Event message when port 80 temporarily released for sharing in order to issue certificate for letsencrypt.org - **Improved** DNS over TLS (DoT) more robust for remote sites that are missing or do not respond - **Improved** DNS over TLS (DoT) more robust through less frequent latency measurement - **Improved** Improved stability for name resolution in the internet (DNS), especially in the case of sudden connection losses by the remote site - **Improved** Improved stability for encrypted name resolution in the internet (DNS over TLS, DoT) - **Improved** VPN interoperability improved on DS Lite/CG NAT connections - **Improved** Optimization of error handling (retransmit) for incorrect DNS responses to DNS over TLS (DoT) - **Improved** Email notification about successful update was not sent to the MyFRITZ! email address (myfritz.net) - **Improved** Optimized resolution of PTR queries in the DNS - **Fixed** Formatting errors occured in the configuration of IPv6 routes - **Fixed** VPN connections via L2TP (e.g. in Windows 10) were unexpectedly slow - **Fixed** Display corrected in the port sharing overview - **Fixed** Device could not be reached in the home network under the device name (host name); device name now replaced by DNS name - **Fixed** Servers for encrypted name resolution in the internet (DNS over TLS, DoT) that were shut down in case of error were not always reactivated - **Fixed** During configuration of a VPN tunnel for selected LAN ports of the FRITZ!Box no internet connection for devices connected to these ports - **Fixed** Unexpected restriction on reaching certain websites when blacklist enabled - **Fixed** Display problems in the port sharing overview - **Fixed** During configuration of MyFRITZ! internet access no NAS rights were granted for already existing users - **Fixed** Remote access via HTTPS/MyFRITZ! led to occasional interruptions due to invalid session - **Fixed** After reboot it was not possible to reset additional protection for MyFRITZ! (myfritz.net) - **Fixed** Inconsistencies in display of times blocked by parental controls eliminated - **Fixed** Incorrect warning about diverted or multiply opened ports - **Fixed** VPN connection to a FRITZ!Box with older version of FRITZ!OS was not always possible - **Fixed** "Blocked" icon for parental controls was displayed erroneously when certain settings were configured for the "Guest" profile - **Fixed** After rebooting, all prioritization rules for a network application were deleted except the first prioritization rule - **Fixed** No internet access possible when a VPN connection used with a smartphone - **Fixed** After import of a VPN configuration, the changed configuration was not enabled - **Fixed** In certain operation modes, the Online Monitor showed no upload traffic - **Fixed** VPN problems in special scenarios - **Fixed** Settings page for privider services was not displayed ## Wireless: - **Improved** Optimized performance - **Improved** Better stability - **Improved** New information presented when "WPA2 + WPA3" encryption selected on the "Wi-Fi / Security" page - **Improved** Reworked "Wi-Fi / Wi-Fi Channel" page - **Improved** Improved messages on Wi-Fi under "System / Event Log" - **Improved** Detection of multiple parallel WPS activations improved - **Improved** Naming of Wi-Fi guest access (SSID, preassigned) depends on selected language - **Improved** Better stability - **Change** Base stations with hidden SSID cannot be displayed - **Fixed** Vulnerabilities in the processing of incoming fragmented frames and aggregated MPDUs (A-MPDU) fixed ("Fragatttack") - **Fixed** No picture could be added for the WLAN pre-switch page - **Fixed** Under "Wi-Fi / Wi-Fi Network / [wireless device] / Properties", the "Wi-Fi property (2.4-GHz)" was shown twice for wireless repeaters - **Fixed** Settings for Wi-Fi schedule could not be changed - **Fixed** Problems with activation of the Wi-Fi guest access ## Mesh: - **Improved** Better stability - **Fixed** The combination of Wi-Fi settings "Mixed Mode" and "PMF" was not applied correctly in the Mesh - **Fixed** Data rates of FRITZ!Repeaters' LAN connections were not displayed ## Home Network: - **Improved** Faster display of network connections in very large networks - **Improved** When leaving the device details a message concerning changed device names is displayed only if the name was actually changed - **Improved** Layout corrections to the device details for prioritization - **Fixed** The section for blocking devices was displayed in the device details of guest devices even though this function is reserved for home network devices - **Fixed** Changed IP settings of the FRITZ!Box were not offered for printing - **Fixed** Graphics error for certain options in the device details ## System: - **Improved** Configuration wizard can be interrupted and resumed - **Improved** A password can be made visible during entry ("eye") in the user interface - **Improved** Various improvements in the First Configuration wizard - **Improved** Query when leaving a website after changing settings - **Improved** After a dispatch of support data to AVM is concluded, a second displatch can be started immediately without any wait time - **Improved** Reworked error handling when the ?Access from the internet allowed? option was enabled and an invalid password was entered - **Improved** Corrected details in the functional diagnostics in the Mesh area - **Improved** Update process more robust when DNS problems arise - **Improved** Improved evaluation of Wi-Fi connection in "Diagnostics / Function" - **Improved** Rendering of blocked devices in the user interface completed - **Improved** Corrected details in the user interface - **Improved** Better stability - **Change** Push Service: Various corrections to content of "Change notice" email - **Change** Offer to switch to "Level III: Notify me about new versions of FRITZ!OS and install new versions automatically (recommended)" appears after updating only when "Level II: Notify me about new versions of FRITZ!OS and install necessary updates automatically" is configured - **Change** The option to log in to a FRITZ!Box (user interface) without a password, which was not recommended, is no longer supported *1 - **Change** If "only with the FRITZ!Box password" was set up for logging in to the user interface, a FRITZ!Box user with the name "fritz" and a random four-digit number together with the FRITZ!Box password will be created automatically. To log in to the user interface in the home network, entering the FRITZ!Box password is still sufficient *2 - **Fixed** FRITZ!Box users could not be sorted in the overview - **Fixed** Incorrect display of dispatch ID for support data - **Fixed** Missing display of evaluation for password assignment - **Fixed** Empty page in the statistics of the "Online Monitor" if langage was set to "Italian" - **Fixed** Incorrect display of the "Password" field under "System / Backup" - **Fixed** Incorrect connection status for repeaters shown under "Diagnostics / Function" on the Mesh Master - **Fixed** Deletion of app rights was not successful - **Fixed** Error when exiting the First Configuration wizard - **Fixed** Fax sending triggered a delivery error for push service, although push service was not enabled - **Fixed** When maximum number of users reached, an empty page was displayed when the settings were opened under "System / FRITZ!Box Users" - **Fixed** Incomplete test for minimum password security *1. The home network login mode without a password, which is not recommended, is no longer supported. For the initial access to the user interface after the FRITZ!OS update, the user needs to assign a FRITZ!Box password (additional confirmation required) *2. Automatic generation of a user according to the naming structure fritz and a random four-digit number if login before the update took place only with the FRITZ!Box password. Important information for developers of apps that would like to register with FRITZ!Box can be found at https://avm.de/fileadmin/user_upload/Global/Service/Schnittstellen/AVM_Technical_Note_-_Session_ID_deutsch_Dez2020.pdf ------------------------------------------------------------ # New Features in FRITZ!OS 7.13 ## Mobile network: - **NEW** Push Service for received SMS ## Mesh: - **NEW** Mesh WiFi steering can automatically direct devices (smartphones or computers, for instance) to the best Mesh WiFi Repeater (access point steering) ## Home network - ** NEW** Graphic display of home network connections when editing the connection of a network device ## System: - **NEW** FRITZ!Box sends information on certain events to the email address of your MyFRITZ! account - **NEW** Display of the available updates for the FRITZ! products connected in the home network on the Overview page ------------------------------------------------------------ With each FRITZ!OS update, AVM also updates its security functions. Therefore we recommend performing the update for all devices. ------------------------------------------------------------ # Further improvements in FRITZ!OS 07.13 ## LTE: - **Fixed** No connection to the mobile network possible if a SIM card is used that the provider only has enabled for the UMTS network and if automatic network selection is activated (including LTE) - **Fixed** SMS reception service not working for alphanumeric sender IDs and when using certain codes - **Fixed** Mail address for SMS push service cannot be changed ## WLAN: - **Fixed** Add Image for captive portal in Wireless guest access not possible ## System: - **Fixed** Option to deactivate the LEDs without function ------------------------------------------------------------ # Further improvements in FRITZ!OS 07.12 ## Mobile network: - **Improved** New software for the mobile modem with various optimizations for establishing a connection and for improved stability of the mobile connection - **Improved** Calls to the mobile phone number of the SIM card no longer lead to a change from LTE to UMTS (please have in mind that FRITZBox 6820 LTE does not support the mobile phone number of the SIM card) - **Improved** APN updated in provider profile Vodafone Italia - **Fixed** DNSv6 servers were not persisted ## Internet: - **Improved** Now domain names can be specified for VPN connections that are resolved via the tunnel - **Improved** For VPN connections, the remote network is displayed in the network even after the connection has been cleared - **Improved** Now any names can be specified for VPN connections - **Improved** A VPN connection can now transfer the entire network traffic (VPN full tunneling, default route via VPN tunnel) - **Improved** Better VPN connection negotiation - **Improved** VPN LAN-LAN linkup of a FRITZ!Box on a DS Lite connection possible to IPv4 remote sites - **Improved** Various changes for importing a VPN settings file - **Improved** More devices possible in the guest access (and wireless hot spot): assigned IP addresses now reserved for only 6 hours (DHCP lease time, configurable) - **Improved** FRITZ!Box no longer repeats an attempt to register with MyFRITZ! if the confirmation link sent by email was not clicked - **Change** For activation of internet access to the FRITZ!Box via HTTPS, TCP number selected randomly - **Fixed** "Standard" and "Guest" access profiles, configurable under Filters, contained a budget setting that was not supported - **Fixed** Settings from the window for VPN settings could not be copied - **Fixed** Under port sharing it was not possible to enter the IPv6 interface ID 0:0:0:0:* - **Fixed** Releasing a port on a dual-stack connection (IPv4 and IPv6) for sharing with a device configured only for IPv4 sometimes failed . **Fixed** In rare cases a device in the wireless guest access via a repeater was not assigned an IP address - **Fixed** Misleading message úpon disabling internet access to the FRITZ!Box via HTTPS - **Fixed** Port sharing for destination IP addresses in the form 192.168.*.127 was not possible - **Fixed** Port sharing for IPv6 could not be enabled for internet connections with a prefix length /64 - **Fixed** VPN LAN-LAN linkup to fixed IP addresses did not work (IKE error 0x2005) - **Fixed** Additional characters transmitted during download of the FRITZ!Box certificate under FRITZ!Box services - **Fixed** Registration with MyFRITZ! could be instable when upper-case letters were used in the email address of the MyFRITZ! account - **Fixed** Guest network block was not applied in individual access profiles configured in parental controls - **Fixed** FRITZ!Box does not receive DNS servers with existing LTE connection to Omnitel Pronto Italia / Vodafone (other providers with identical network configuration were also affected) ## Wireless: - **Improved** The wireless radio network table of known wireless devices was reworked - **Change** The radio channel settings option for automatic steering of wireless devices now also offers Mesh WiFi steering - **Fixed** "Wireless LAN coexistence" option now works reliably again (2.4 GHz) - **Fixed** Line breaks on the captive portal for the wireless guest access were not saved - **Fixed** Wireless LAN settings (channel, wireless standard, etc.) no longer selectable when disabled ## Mesh: - **Improved** Display of important notifications for secure, reliable operation on all FRITZ!OS products in the Mesh (with red "Info"' LED and on start page) - **Improved** Information on Mesh proved in the FRITZ!Box push service mail - **Improved** Notice on Mesh Overview about FRITZ!Repeaters or FRITZ!Powerline devices that can still be integrated into the Mesh - **Improved** Home network access of the FRITZ!Repeater 3000 optimized for performance in wireless bridge mode - **Improved** The name assigned to a Mesh Repeater in the Mesh or Network Overview is applied as its "Repeater name". The user interface of the Mesh Repeater can then be accessed with http://assigned_name - **Change** Mesh designation of the Powerline devices without wireless function that participate in the Mesh - **Change** Device names of FRITZ!OS devices in the Mesh are adopted from the Mesh Master as push service sender names - **Fixed** Distribution of wireless LAN settings in the Mesh erroneous in rare situations ## Home network - **Improved** Change to radio network name now optional when setting the FRITZ!Box name - **Fixed** Failure to set up a home network connection for certain interfaces in the MyFRITZ!App - **Fixed** Problem with DNS resolution of local home network devices when using DHCP without host name ## System: - **Improved** Browser compatibility optimized for saving table renderings locally - **Improved** User interface permanently saves the desired sorting of a table by column - **Change** Push service sends important messages from the FRITZ!Box only to the recipient of the FRITZ!Box Info mail - **Change** Updated the TR-064 programming interface. See http://www.avm.de/schnittstellen - **Fixed** Update with FRITZ!OS file could fail with an IPv6 connection to the FRITZ!Box ## Security - **Change** Support of outdated TLS 1.0 standard to secure FRITZ!OS services in the server role switched off - **Change** Length of DH parameter extended to 2048 bit for FRITZ!OS services in the server role ___________________________________________________________ Initial firmware version upon product launch: 07.01 ___________________________________________________________ ------------------------------------------------------------- ##Features for Mesh ------------------------------------------------------------- General information on Mesh is presented at en.avm.de/mesh-networking. ------------------------------------------------------------- **Enabling the Mesh Function** To check whether a FRITZ! product is enabled for Mesh, see the Mesh Overview of the FRITZ!Box (the Mesh Master) under "Home Network / Mesh". Here the products in the Mesh are designated with a corresponding "Mesh active" symbol. A FRITZ!WLAN Repeater or FRITZ!Powerline Adapter with FRITZ!OS 6.90 or higher installed can be enabled for Mesh in various ways: - If the product has the factory settings configured and is being connected with the FRITZ!Box for the first time, it will be automatically enabled for Mesh. - If the product is already connected, but not enabled for Mesh, it is added to the Mesh by pressing a button on the product to be integrated and a button on the FRITZ!Box. On the FRITZ!Box, use the button that initiates WPS (depending on the model, press the "Connect" or "WPS" button briefly, or the "WLAN/WPS" button for 6 seconds) Detailed instructions, additional information and the answers to frequently asked questions about Mesh are presented at en.avm.de/mesh-faq. ------------------------------------------------------------- **Configuring a second FRITZ!Box as a Mesh Repeater with the press of a button** Requirements: - Your existing FRITZ!Box supports Mesh (FRITZ!OS 6.90 or higher). This box is the Mesh Master. - The FRITZ!Box to be deployed as a Mesh Repeater has been updated to FRITZ!OS 7.0 and you have restored its factory settings. This box is to become the Mesh Repeater. Here's how: - Connect the LAN 1 port of the Mesh Repeater with the Master using a LAN cable - Initiate the Connect function on both boxes (7590: press the "Connect" button briefly; 7490: press and hold down the "WLAN/WPS" button for 6 seconds) After the connection procedure is concluded, the second FRITZ!Box is ready for operation as a Mesh Repeater. (It is operating in "IP client" mode and, as a Mesh Repeater, adopts the wireless LAN settings and other important settings from the FRITZ!Box). Please note that this function can be used only if the second FRITZ!Box is permanently connected with the first box by LAN cable. If you've received the second FRITZ!Box from your internet provider this feature may not work in some cases. Please configurate this FRITZ!Box as a mesh repeater by visit the FRITZ!Box GUI manually. Instructions for configuring a FRITZ!Box connected via wireless LAN as a Mesh Repeater are presented at en.avm.de/mesh-faq ___________________________________________________________ ___________________________________________________________ We recommend every update for reasons of security as well. Further improvements to increase security with this version of FRITZ!OS are presented at http://www.en.avm.de/guide/security in the area "Updates increase security". ___________________________________________________________ Instructions for installing an update: Use the update function offered in the user interface to install the update. This automatically offers you the right FRITZ!OS. Click "Wizards", select "Update" and then follow the instructions on the screen. ___________________________________________________________ © AVM GmbH 2004?2021. All rights reserved. This AVM firmware package contains files that are propagated under different licenses, in particular under a license held by AVM or under an open-source license (namely the GNU General Public License, GNU Lesser General Public License or FreeBSD License). For details on the various licenses, see the "license.txt" file (https://download.avm.de/fritzbox/license.txt). The source code of the files propagated as open source files can be obtained upon a written request to fritzbox_info@avm.de. AVM grants the non-exclusive right to use this AVM firmware package, which is supplied exclusively in object code format. Licensee shall be entitled to make a copy exclusively reserved for personal backup purposes (backup copy). AVM reserves all intellectual property rights except as expressly granted herein. Without previous approval in writing, and except for in cases permitted by law, it is particularly forbidden for this AVM firmware packet to be - copied, propagated, or in any other manner made publicly accessible, or - processed, disassembled, reverse engineered, translated, decompiled or in any other manner "opened" and subsequently copied, propagated or made publicly accessible in any other manner. TVI 2021/12/03