github Ozark-Connect/NetworkOptimizer v1.10.5
on GitHub

7 hours ago

This release adds HTTPS reverse proxy support with automatic Let's Encrypt certificates, and fixes speed test uploads behind reverse proxies. See v1.10.0 for the major features in the v1.10 series.

What's New in v1.10

For users upgrading from an older version, here's what's been added since v1.10.0:

  • Threat Intelligence (v1.10.0) - IPS event analysis with exposure reports, attack sequence detection, geographic breakdowns, CrowdSec CTI integration, and MITRE ATT&CK technique mapping
  • Alerts & Scheduling (v1.10.0) - Automated speed tests and security audits on a schedule, with email/webhook notifications for audit score drops, speed degradation, and attack chain detection
  • Threat search (v1.10.4) - Search the full threat database by IP, CIDR, country, ASN, or org name
  • RADIUS/802.1X port security (v1.10.4) - Audit recognizes RADIUS MAC Authentication and 802.1X port profiles, eliminating false "No MAC" warnings
  • LAG aggregate speed (v1.10.4) - Path visualization shows combined LAG bandwidth (e.g., 2x10G = 20G)
  • Zone-based firewall isolation (v1.10.3) - Audit recognizes custom firewall zones with block rules as proper network isolation

HTTPS Reverse Proxy (Traefik)

  • Windows MSI: optional Traefik feature - The installer now includes an opt-in Traefik reverse proxy for automatic HTTPS with Let's Encrypt certificates via Cloudflare DNS-01. The installer prompts for your Cloudflare API token, ACME email, and hostnames. Traefik runs as a managed child process alongside nginx - no separate service or NSSM needed.
  • Docker/Linux: NetworkOptimizer-Proxy - A new companion repo (NetworkOptimizer-Proxy) provides a ready-to-use Traefik Docker Compose setup. The key feature: per-hostname TLS options force HTTP/1.1 for speed tests (HTTP/2 multiplexing skews throughput measurements) while keeping HTTP/2 for the main app - all on one port 443.

Fixes

  • Speed test uploads behind reverse proxies - Fixed ERR_CONNECTION_RESET when running browser speed tests behind Caddy, Traefik, or nginx reverse proxies. Uploads are now proxied through nginx to a local sink endpoint instead of being handled inline.
  • Simplified HTTPS configuration - Cleaned up the .env.example HTTPS settings documentation, replacing the complex mixed-content warning matrix with a straightforward true/false toggle.

Installation

Windows: Download the MSI installer below

Docker: 

docker compose pull && docker compose up -d

macOS (native, recommended for accurate speed tests vs Docker Desktop): 

git clone https://github.com/Ozark-Connect/NetworkOptimizer.git && cd NetworkOptimizer && ./scripts/install-macos-native.sh
# or if you already have it cloned
cd NetworkOptimizer && git pull && ./scripts/install-macos-native.sh

Proxmox: 

bash -c "$(curl -fsSL https://raw.githubusercontent.com/Ozark-Connect/NetworkOptimizer/main/scripts/proxmox/install.sh)"

For other platforms (Synology, QNAP, Unraid, native Linux), see the Deployment Guide.

Check out latest releases or
releases around Ozark-Connect/NetworkOptimizer v1.10.5

Don't miss a new NetworkOptimizer release

NewReleases is sending notifications on new releases.

Get notifications