Skip to content

Notice

This guide is for the original release of AQtive Guard. For the current AQG SaaS platform, go to the AQtive Guard User Guide.

Network Analyzer changelog

This is the list of version numbers of the SandboxAQ Network Analyzer. Each version number is shown with a list of changes brought by that version.

1.6.0 - 2026-04-14

Added

  • Added protojson output format (--output-format=protojson).
  • Added support for building without live-capture capability.

Changed

  • Reduced default --max-tcp-streams from 1,000,000 to 70,000.
  • Reduced default --max-udp-streams from 1,000,000 to 10,000.
  • Reduced default --max-ip-defrag from 1,000,000 to 1,000.
  • Renamed --output-format=json to json-legacy (json remains as an alias).
  • Removed raw and stream output modes.
  • Removed --use-authv1 CLI option.

Fixed

  • Fixed CVE-2025-58160.

1.5.0 - 2025-11-12

Added

  • Added support for PostgreSQL custom TLS upgrade protocol.
  • Accept IPv4 packets whose total length header is bigger than the packet, which can happen when packets have been truncated.

1.4.4 - 2025-07-23

Added

  • Print a warning and exit 0 when analyzing a truncated pcap. Used to be an error and exit 1.

1.4.3 - 2025-07-22

Added

  • Only emit ANSI terminal escape code if stderr is a tty.
  • Do not emit ANSI terminal escape code when the NO_COLOR environment variable is set.

Fixed

  • Error when a pcap contains a packet larger than 65464 bytes (2^16 minus pcap header size).

1.4.2 - 2025-07-07

Added

  • Error detection for memory lock limits with specific EAGAIN error handling.
  • Detailed troubleshooting guide for memory lock limit errors in documentation.
  • Docker container configuration instructions with --ulimit memlock parameter.

1.4.1 - 2025-06-10

Added

  • Improved debugging visibility by adding more log messages for dropped handshakes.
  • Introduced tracing crate integration for enhanced error, warning and info message reporting.
  • Improved system reliability by adding support for network interface deletion handling.

Fixed

  • Improved fuzzer code quality by fixing clippy warnings.
  • Resolved clippy and fmt warnings across the codebase.
  • Removed Linux kernel socket receive buffer references for better compatibility

1.4.0 - 2025-04-25

Added

  • Added rx_ring library support.

1.3.0 - 2025-03-17

Bugfix:

  • Enhanced the API to retry requests indefinitely with exponential backoff, preventing the Network Analyzer from exiting prematurely due to exceeded send attempt limits.

1.2.1 - 2025-02-17

Bugfix:

  • Linux captures now support interfaces without a traditional Ethernet layer, such as those created by virtual private network (VPN) tools like Tailscale.

1.2 - 2025-01-29

Added

  • Added support for HTTP & HTTPS streaming output to AQG2 using the --api-url and --api-token CLI arguments.
  • Added the ability to pass a custom CA bundle using the --ca-file CLI argument.
  • Introduced the --api-session-renew CLI argument to allow for periodic renewal of a live session.
  • Added the option to define a custom slot_id using the --slot-id CLI argument.

Bugfix:

  • Resolved a recursive function issue that could potentially trigger a stack overflow.

1.1.1 - 2024-12-06

Fixed

  • Fixed TCP stream handling to ensure data is properly emitted when a connection terminates using FIN packets.

1.1.0 - 2024-11-25

Initial release.