Since October last year, I've been trying to get an upgrade of a 2860n from firmware 3.8.2.3BT to 3.8.4.x BT (first to 384BT, then 3841BT etc etc). In all cases, the following problems have been introduced:
1) the router (also logged to remote remote syslog server) now logs all DNS queries passing through the device whereas it didn't before, and I can't find any setting or reference to turning this off. It's not acceptable to do this. The last support ticket I had on this came back with 'turn off hardware acceleration' - it's off, and it's still logging DNS queries.
2) the router uses our own CA certificate which it happily uploaded, and an SSL cert for the LAN hostname keyed from that CA cert as its only SSL cert (both certs are sha256 signed). On 3.8.2 firmware the web admin interface worked fine with this and could be happily referenced by hostname as well as IP address. With 3.8.4X firmwares, accessing the web interface with https://<ip address> works (just about) happily with Firefox complaining about the hostname not matching - and a browser exception works around that - but web admin pages then load ok. Using https://<hostname> drops the connection immediately with a 'connection reset' error (browsers won't even allow an exception to be created).
Config outline: All traffic comes out of two switches LAN side into two vlanned ports, with port LAN1 on a separate management LAN. No connectivity issues anywhere, and performance seems ok passing through the router. All firmware upgrades have been done as a factory reset/fw upgrade/config (fro 3.8.2 backup) reload.
Anyone else had either of these two symptoms? Anyone have any ideas on resolving the problems?
Thanks in advance for any assistance,
Ian
