More operational security and future-proofing for SD-WAN

LCOS 10.90 makes your SD-WAN even more powerful and secure. With the ability to configure up to eight Quality of Service queues (QoS queues), business-critical services will always receive the necessary bandwidth. At the same time, you are taking the first steps toward protecting against future threats from quantum computers: post-quantum preshared keys for IKEv2 help safeguard your VPN connections against potential attacks today. Additionally, MOBIKE for IKEv2 ensures seamless VPN stability when switching networks – without the need to reconnect. And VRRPv3 for IPv6 enables reliable router redundancy and guarantees maximum fail-safety even in mixed operation with IPv4 and IPv6.

Download of the current version

You will find the current LCOS release version as well as all active predecessor releases in our download portal. Simply enter your desired product and download the software free of charge!

To the download area

Feature highlights

Icon: Three square boxes with a horizontal line and stars on them, decreasing in number from top left to bottom right (three stars on the front left square; two stars on the middle square and one star on the bottom right square) incl. arrow pointing upwards

Ensuring business-critical applications with support for eight QoS queues

This feature allows you to configure up to eight different queues (service classes) with corresponding priority levels for network applications (e.g., "VoIP", "Gold", "Silver", or "Best Effort"). Your data packets are assigned to the appropriate Quality of Service (QoS) class through DSCP markings or firewall rules. The gateway then sorts the packets into the correct priority level and ensures that the respective services only use as much upload bandwidth as you have pre-configured for their class, either as a percentage or in Mbps. In this way, it is ensured that important services like VoIP or video calls always receive sufficient bandwidth, even when the network is heavily utilized.

Icon: Square with the letters “VPN” (bottom) and a two-sided, downward-curving arrow (top), whose arrowheads point to two small circles above the square; the circles above the square show a network availability bar on the left (typical cell phone symbol that indicates cell phone reception) and a WLAN symbol on the right (circle with three curved radio waves above it)

MOBIKE in the VPN for accelerated roaming

With the MOBIKE extension for IKEv2, VPN clients can seamlessly switch between different networks (e.g., from Wi-Fi to cellular) without having to re-establish the VPN tunnel. The LANCOM Advanced VPN Client or LANCOM Trusted Access Client sends an update message with its new IP address to the SD-WAN gateway when switching networks. For you, this means no interruptions during VPN roaming – the connection remains stable.

Icon: Key with data lines on it

Proactive against quantum computers: future-proof VPNs with post-quantum preshared keys

The ongoing advancement of quantum computers presents fundamental challenges for traditional encryption technologies, including VPNs. This makes it even more important to prepare accordingly. With post-quantum preshared keys (PQ-PSK or PPK) for IKEv2, you can take the first steps toward enhancing security. This technology adds additional security mechanisms to protect VPN encryption against potential quantum-computer attacks.

Looking ahead, future LCOS versions will successively provide more features to further secure your networks – ensuring full protection even if quantum computers should become capable of breaking traditional encryption methods.

More information about “post-quantum VPN security” can also be found in this white paper.

Icon: Two routers on top of each other with an alternating circle with arrows between them

Maximum reliability with VRRPv3 for dual-stack networks

VRRPv3 for IPv6 enables you to implement router redundancy in IPv6 networks or in dual-stack environments (simultaneous use of IPv4 and IPv6). This increases operational security, as if one router fails, another can automatically take over. This function is ideal for modern networks that support both IPv4 and IPv6, as it ensures seamless redundancy in both protocols.

Further features & improvements

  • With LCOS 10.90, the router can dynamically assign VLANs via RADIUS to IEEE 802.1X clients on the LAN. Complex physical infrastructure, such as dedicated switches, is not required to perform VLAN separation and assignment. Since the router handles the entire LAN security structure, this feature is ideal for small locations.
  • Many other improvements for the administration and operation of modern networks

LANCOM SD-WAN

Scalable, efficient, and secure networks thanks to LANCOM SD-WAN

The new LCOS version is designed for demanding enterprise scenarios with several WAN connections and applications. With a LANCOM SD-WAN you create the foundation for a comprehensive networking of distributed corporate sites. Discover how the LANCOM SD-Branch solution caters for an additional highly integrated approach for the orchestration of all network segments (routers – WAN, switches – LAN, access points – wireless LAN, firewalls – security) in branch infrastructures.

Further information

Software lifecycle management

With LANCOM Systems you have a manu­facturer at your side who offers unparalleled investment protection. The lifecycle policies from LANCOM also provide full transparency and reliable planning with regard to the firmware updates and product support for your LANCOM infrastructure.

Read more: Software Lifecycle Management

Overview of firmware versions

Keep track of our current operating systems versions of LCOS, LCOS LX, LCOS FX, and LCOS SX with our firmware version overview. It provides a comparison of the different versions and recommended usage, so that you are always well informed.

Click here for the firmware version overview

LANCOM release process

Our aim is the optimal preparation of our operating systems and other software, not only for its use in practice, but also to adapt it to the wishes of our customers. This is why we enter into active dialog with our customers even during the development phase as part of our release procedure.

Find out more about the LANCOM release process here

Note for LCOS download

Before any LCOS update, be sure to backup your current device configuration. Devices featuring the "Firmsafe" function have the option of an initial "test mode" firmware upload. The new firmware is activated permanently only if the device has been accessed with a log-in or for configuration purposes before the pre-set time period has expired. Otherwise, the device switches back to its former version.

To the download area

Documentation & links

Datasheet 10.90

Feature Notes LCOS 10.90

Release Notes LCOS 10.90 RU1

Release Notes LANtools 10.90 RU1

Installation Guide LCOS

White Paper: Post-quantum VPN security

Tech Paper: Advanced Mesh VPN

Tech Paper: High Scalability VPN

LANmonitor LCOS 10.90 RU1

LANconfig LCOS 10.90 REL

Addendum LCOS 10.90

Menu Reference LCOS 10.90

Reference Manual LCOS 10.90

Menu Reference LCOS (HTML)

Addendum LCOS (HTML)

Reference Manual LCOS (HTML)

Your direct line to us

Friendly sales staff with headset take customer call in office

Most questions can be resolved best in direct contact: We look forward to answering your questions and requests by phone or via the contact form.

Inside Sales International Team
+49 (0)2405 49936 122

Feel free to write us