Virtualizor 3.2.9 — What's New
Virtualizor 3.2.9 is a significant release introducing full VPC networking, baremetal server management, and a range of improvements to security, API coverage, and platform stability.
Full Virtual Private Cloud (VPC) networking support has been added. Administrators can now create isolated virtual networks and assign VPS instances to specific subnets for enhanced network isolation.
Physical baremetal server management has been introduced. This allows administrators to manage physical hardware alongside their virtual inventory within the same panel.
A hide_virtualization flag has been added to plans and individual VMs. When enabled, Windows-based virtual machines will not display "Virtualization: Enabled" within the Guest OS Task Manager.
A Secure LDAP option (ldaps) has been introduced for LDAP authentication settings. This enables encrypted communication between Virtualizor and your directory service for improved security.
Administrators can now terminate running backup tasks directly. Additionally, a dedicated backup history page has been added to track and review all previous backup operations.
The API response for creating a firewall plan has been improved to return the new firewall plan ID (fwpid) upon success. This simplifies automation workflows that require immediate reference to the new plan.
A new consolidated resource view has been added to the server group page. Administrators can now see the total RAM, CPU, and Disk usage across all nodes in a selected group at a glance.
Advanced CPU topology configuration is now supported for Proxmox KVM virtual machines. A thread count option has been added to allow fine-grained control over virtual core presentation.
Support for multiple network interface cards (Multi-NIC) has been implemented. Virtual machines can now be configured with several independent network interfaces for complex routing requirements.
Internal IP assignment is now supported for virtual machines using DHCP-based network configurations. This allows internal networking to be provisioned automatically via DHCP.
The following event hooks have been integrated for developer use:
suspendvps— Fired when a VPS is suspendedunsuspendvps— Fired when a VPS is unsuspendedbefore_upgrade_virtualizor— Fired before system binary upgradebefore_upgrade_virtualizor_db— Fired before database migrationsafter_upgrade_virtualizor— Fired after system binary upgradeafter_upgrade_virtualizor_db— Fired after database migrations
Several capability flags have been added for Proxmox LXC containers to enable advanced kernel features:
keyctl— Enable key management systemlxc_nfs— Enable NFS mount supportsmb_cifs— Enable Samba/CIFS supportlxc_fuse— Enable FUSE filesystem supportmknod_devices— Enable device node creation
The networking stack is transitioning from ebtables to nftables for network filtering. This modernises the firewall infrastructure and ensures compatibility with current Linux distributions.
The setting previously known as "Disable ebtables" has been renamed to Disable Anti-Spoofing Config. This change clarifies the impact of the setting on network security.
The editippool API call has been corrected to properly accept sgid (Server Group ID) as an input parameter. Previously, this parameter was being ignored during API requests.
Resolved an issue where the KYC verification page was failing to display identity documents uploaded by users. Administrators can now view submitted IDs as expected.
Fixed an issue where attaching a second disk to a VM with an existing backup plan would trigger a full backup for every subsequent run. The system now correctly handles incremental backups for multi-disk configurations.
The disk detection logic has been fixed to correctly identify primary disks for VMs with hostnames containing numeric characters. Previously, these were sometimes misidentified as secondary disks.
Network configuration for internal IP addresses has been corrected for Windows-based virtual machines. Internal IPs will now function correctly within the guest operating system.
The end-user panel now correctly distinguishes between locked and suspended states. Locked VPS instances will no longer be incorrectly labelled as "Suspended".
Security has been improved by ensuring both Admin and End-user panels correctly prompt for the current password before allowing a password change. This prevents unauthorised changes if a session is left active.
Email verification links sent during user registration are now set to expire after 24 hours. This reduces the security risk associated with long-lived unverified account links.
Resolved networking issues related to DHCP assignment on hypervisor nodes running AlmaLinux 10 or newer. VMs will now obtain DHCP leases correctly on these platforms.
A hypothetical SQL injection vulnerability in the authentication callback handler has been patched. User input is now properly sanitised to prevent malicious database queries. NOTE : This could not be re-produced and hence we are giving it a very low score on security