WatchGuard: Neue Fireware Version 12.4 CSP1

[Blog] Watchguard: Neue Fireware Version 12.4 CSP1

Mit der neuen Version wurden die TLS-Probleme behoben. Im Release Fireware 12.4 konnte es zu Problemen bei den Zugriffen auf die vereinzelten Websites geben. Es wurden noch nicht alle möglichen TLS-Cipher-Varianten unterstützt, wodurch es vereinzelt Abbrüche geben kann – genau dann, wenn die Website eines der nicht unterstützten Ciphers verwendet. Die neue Version bereinigt dieses Problem.

Details:

Resolved Issues in Fireware v12.4 CSP 1 (Fireware Build 592447, WSM Build 592565)

  • This release resolves an issue that caused websites to fail to load through the HTTPS Proxy when messages are split over multiple TLS records. [FBX-16195]
  • The pxyassist process no longer crashes when PDF files are analyzed. [FBX-16197]
  • Fireware CSP Release Notes 2

 

  • This release adds additional PFS grade ciphers for better compatibility with HTTPS webservers when using content inspection in the HTTPS Proxy. [FBX-16227]
  • The Inspect when a URL is uncategorized option in the HTTPS Proxy now works when you also use an On-Premise WebBlocker server. [FBX-15847]
  • Proxy traffic for 1-to-1 NAT hosts now use the correct NAT Base IP address. [FBX-16234]  
  • The Fireware Web UI Front Panel now loads correctly for all users. [FBX-15555]
  • This release resolves several issues that caused websites fail to load through the HTTPS Proxy with content inspection disabled. [FBX-16143, FBX-16203]
  • When content inspection is disabled, the HTTPS Proxy can now correctly handle Client Authentication during the SSL handshake. [FBX-15916]
  • An appliance kernel lockup issue was resolved. [FBX-15247]
  • Policy Manager now correctly handles the configuration of BOVPN Virtual Interface settings in pre-Fireware v12.0 configurations. [FBX-16291]
  • In Policy Manager, the default route for a VLAN External interface is now correctly added to the Firebox routing table. [FBX-16358]
  • This release resolves an issue that prevented Management Server Policy Templates from saving to a Firebox when they included FQDNs. [FBX-16237]

 

Ihr Ansprechpartner in der SIEVERS-GROUP: Thomas Runte, ICT Security

Das könnte Sie auch interessieren