|
Change:
|
Simplified
IPsec configuration
|
|
Change:
|
Dialog
for adding switchroutes has been changed
|
|
Change:
|
Two
new default proposal lists added
|
|
Problem solved:
|
Netobject groups can
not be included when creating a new netobject
group
|
|
Problem solved:
|
CRL
setting for CA certificates overwritten by manager
|
|
Problem solved:
|
Real-time
Logger and Remote Console may crash in Firewall Manager.
|
|
Problem solved:
|
The
firewall manager crashes if a user clicks in the authentication column for
a IPsec tunnel
|
|
Problem solved:
|
Firewall
Manager cannot remove integrity algorithms from proposal lists
|
|
Problem solved:
|
It
is not possible to add routes to the "core" interface
|
|
Problem solved:
|
IPSec/IKE Proposals are written
down to configuration file in the wrong order
|
|
Problem solved:
|
Problems
with switchroutes in PBR tables
|
|
Problem solved:
|
Erroneous
warning displayed
|
|
Problem solved:
|
IPsec Config
Mode pools in global namespace does not work
|
|
Problem solved:
|
Not
possible to configure null encryption in IPsec proposals
|
|
Change:
|
Transparent
Mode implemented
|
|
Change:
|
Server
Load Balancing implemented
|
|
Change:
|
Radius
Accounting support implemented
|
|
Change:
|
Support
for server-side IKE Configuration Mode
|
|
Change:
|
Misc.
IPsec changes
|
|
Change:
|
Conn
command modified
|
|
Change:
|
ARP
timeout setting limit decreased
|
|
Change:
|
New
synrelayer available
|
|
Change:
|
New
"routemon" console command
|
|
Change:
|
HTTP
ALG now allows compressed data
|
|
Change:
|
Packets
with disallowed source Ethernet addresses are now dropped when using
Transparent Mode
|
|
Change:
|
New
advanced settings for forwarded ARP traffic when Transparent Mode is used
|
|
Change:
|
RADIUS
Interim Accounting supported
|
|
Change:
|
GRE
session keys supported
|
|
Change:
|
IPSec NAT-traversal behaviour changed
|
|
Problem solved:
|
HTTP
ALG might cause the Firewall to crash in some situations
|
|
Problem solved:
|
Interfaces
are taken down during reconfiguration
|
|
Problem solved:
|
IPsec: Compatibility issue with
MS IPsec NAT Traversal
|
|
Problem solved:
|
HA:
Shared MAC addresses are not unique on all interfaces
|
|
Problem solved:
|
Multiple
entries may be added in the layer 3 cache for a host if Transparent Mode is
configured
|
|
Problem solved:
|
L2TP
client/server does not send a unique hostname during negotiations
|
|
Problem solved:
|
SLB
monitoring problems
|
|
Problem solved:
|
Promiscuous
mode is enabled by default on all interfaces
|
|
Problem solved:
|
Calling
the shutdown console command does not always restart the core
|
|
Problem solved:
|
Transparent
Mode feature can cause memory leakage
|
|
Problem solved:
|
ARP
handling in Transparent Mode incompatible with Microsoft Network Load
Balancing
|
|
Problem solved:
|
Filtered
"conn" console command displays wrong
number of not shown connections
|
|
Problem solved:
|
The
"ping" command will ignore the interface PBR setting when the
"-r " parameter is used
|
|
Problem solved:
|
Problems
administrating a Firewall over netcon on a
virtual router interface
|
|
Problem solved:
|
Problems
terminating a L2TP session inside a virtual router
|
|
Problem solved:
|
L2TP
server may stop to listen for incoming connection attempts
|
|
Problem solved:
|
The
L2TP engine may use 0 as session ID, which is not allowed according to RFC
1661
|
|
Problem solved:
|
IPsec engine runs out of internal
states
|
|
Problem solved:
|
IPSec Config
Mode IP pool problem
|
|
Problem solved:
|
Problems
with reconfiguration when using a license allowing only a few IPSec tunnels
|
|
Problem solved:
|
Certificate
setting to not validate with CRL is lost after reconfiguration
|
|
Problem solved:
|
MTU
problems over IPSec interfaces
|
|
Problem solved:
|
Problems
sending LDAP traffic over IPSec tunnels
|
|
Problem solved:
|
IPSec keepalive
does not work
|
|
Problem solved:
|
IPSec tunnels using ID-lists may
fail to be re-authenticated after being taken down
|
|
Problem solved:
|
Firewall
does not complain if private key file is not understood
|
|
Problem solved:
|
IPSec re-keying fails
|
|
Problem solved:
|
IPSec re-configuration problems
|