SonicWALL ha rilasciato la verisone 5.8.1.5 del SonicOS per le appliance di sicurezza NGFW. Questa release di manutenzione risolve alcunu problemi come: numero di domini limitato per il Sistema di Content Filtering, nuova aggiunta della lista di esclusione per Common Name sul motore DPI-SSL, duplicazione delle policy e caratteri extra nella gestione delle NAT policy, risoluzione di problematiche relative alla User Level Authentication e molto altro...
SonicWALL Firewalls interessati:
La release del SonicOS 5.8.1.5 è supportata sulle seguenti appliance NGFW:
SonicWALL E-Class NSA Series | SonicWALL NSA Series | SonicWALL TZ Series |
SonicWALL NSA E8500 |
SonicWALL NSA 5000 |
SonicWALL TZ 210 / 210 Wireless |
SonicWALL NSA E7500 |
SonicWALL NSA 4500 |
SonicWALL TZ 200 / 200 Wireless |
SonicWALL NSA E6500 |
SonicWALL NSA 3500 |
SonicWALL TZ 100 / 100 Wireless |
SonicWALL NSA E5500 |
SonicWALL NSA 2400 |
|
|
SonicWALL NSA 240 |
|
Resolved Issues in SonicOS 5.8.1.5
Content Filtering System
Symptom | Condition / Workaround | Issue |
Only the first 100 domains are filtered by the Content Filtering System (CFS), even though the Allowed List is set to 100+ domains |
Occurs when creating a custom CFS policy, setting the allowed domains to "Per Policy", and adding 100+ domains to the Allow List. Resolution: The user is now warned when 100 domains are exceeded, and a note has been added in the management interface to inform the user that the domain limit is 100. |
107969 |
DPI-SSL
Symptom | Condition / Workaround | Issue |
Newly added Common Name Exclusions are not populated in the DPI-SSL Common Name Exclusions list, or existing exclusions are lost. |
Occurs when adding or editing URLs in the DPI-SSL Common Name Exclusions list. |
98536 |
Networking
Symptom | Condition / Workaround | Issue |
The Network > NAT Policies page in the management interface can display duplicate policies and extra characters on some policy names. |
Occurs when enabling the Web Proxy feature with an IP on the WAN, then restarting the appliance. |
110091 |
Users
Symptom | Condition / Workaround | Issue |
The redirect for forced authorization by SonicWALL does not work with Internet Explorer 8 or 9 |
Occurs when using a User Level Authentication (ULA) rule to force authorization by SonicWALL on an interface in Layer 2 Bridge Mode. |
109762 |
Visualization
Symptom | Condition / Workaround | Issue |
The NetFlow EndTime timestamp results in 0.00000 for valid and allowed TCP packets. |
Occurs when the NetFlow collector's logging is enabled on Applicable Interfaces and Rules, and TCP traffic is sent to the allowed destination. Upon checking the packet capture details, the EndTime timestamp displays as 0.00000. |
107239 |
WAN Acceleration
Symptom | Condition / Workaround | Issue |
WFS Acceleration cannot be enabled and the error message "An error has occurred saving the hostname" displays. |
Occurs when disabling WFS Acceleration, upgrading or downgrading the WXA firmware version, then re-enabling WFS Acceleration. WXA hostnames were allowed to be edited after WFS Acceleration was disabled, causing the error message when trying to re-enable WFS Acceleration. |
110377 |
Wireless
Symptom | Condition / Workaround | Issue |
The SonicPoint Ne becomes unresponsive during an Intrusion Detection Services (IDS) scan. |
Occurs when configuring a SonicPoint Ne to an interface on the WLAN zone, then performing a manual IDS scan. This may also occur on boot up, when the appliance performs an initial scan. |
111914 |