Unified Threat Management - Support | GTA, Inc.

		

                         GB-OS FIREWALL SOFTWARE
                            VERSION 5.1.4
                            RELEASE NOTES

Author:     Global Technology Associates, Inc.
Product:    GB-OS version 5.1.4
Date:       23 March 2009

-------------------------------------------------------------------------
GB-OS version 5.1.4 includes updated versions of the following GTA
products and utilities:

    GB-OS                       5.1.4

Release notes are located on the installation CD and on GTA's Web site.

For more about upgrading related software, see individual product
release notes.

-------------------------------------------------------------------------
CONTENTS
Release Notes sections are categorized first by feature addressed, then
by the type of change.

1.  INSTALL NOTES

2.  SYSTEM

3.  NETWORK

4.  THREAT MANAGEMENT

5.  SERVICES

6.  ACTIVITY

7.  OPERATING SYSTEM

8.  RELEASE NOTES HISTORY

-------------------------------------------------------------------------

1.  INSTALL NOTES

    1.1 Entering New Activation Codes
    
        If upgrading from 5.0.x or below, new activation codes must be
        entered. GB-OS version 5.1.4 is available at no charge to
        customers with a GTA support contract or annual maintenance
        agreement. Other users should contact their local GTA channel
        partner or email sales@gta.com for information and pricing of
        upgrade options.

        
    1.2 Upgrade Notes   
        
        1.2.1 Error Messages Upon Initial Reboot
    
            Upon rebooting after successful installation, the GTA
            Firewall UTM Appliance may display errors when accessed
            using the Web interface.  This is expected, these errors are
            generated because the browser's cache is trying to access
            files and locations that no longer apply. Click OK to any
            displayed errors and refresh the browser window to access
            GB-OS 5.1.4. If the error messages persist, clear your
            browser's cache.
            

    1.3 SSL Certificate Replacement

        GB-OS version 5.1.4 will install a new default security/SSL
        certificate. Some browsers, including Netscape and Mozilla,
        will not recognize the new certificate if the original has
        never been replaced. If you are unable to log on to the
        firewall after upgrading, delete the browser's cached security
        certificate, then close and restart your browser before
        reattempting remote access to your firewall.
    
    
    1.4 Mail Sentinel Anti-Virus 
    
        Since the release of GB-OS version 5.1.2, Mail Sentinel Anti-Virus is 
        no longer available as a separate subscription option. Mail Sentinel 
        Anti-Virus is included as a standard feature with vaild support 
        contracts.


2.  SYSTEM

    2.1 Modifications
        
        2.1.1   Updated IPS engine.
                GBOS5140010146
                
        2.1.2   Upgraded SNMP.
                GBOS5140008701
                
        2.1.3   Upgraded bind.
                GBOS5140009231
                
        2.1.4   Added USB keyboard support for GB-Ware.
                GBOS5140002155
                
        2.1.5   Updated XML configuration schema.
                GBOS5140010791
                
        2.1.6   Added BlackBerry service object.
                GBOS5140010996
                
    2.2 Bug Fixes
    
        2.2.1   Users are properly expired when client is disconnected.
                GBOS5140007836, GBOS5140008061, GBOS5140009461
                
        2.2.2   Firewall remains operational when using mail proxy with slow 
                mail servers.
                GBOS5140009816
                
        2.2.3   Firewall now properly tests for IP spoofs when generating 
                ICMP TTL exceeded messages.
                GBOS5140009441
                
        2.2.4   Runtimes install correctly on legacy products.
                GBOS5140010576, GBOS5140010601
                
        2.2.5   Console login prompt properly reloads upon logging out.
                GBOS5140010841

    
3.  NETWORK

    3.1 Modifications
     
        3.1.1   The Interfaces Tool now assigns up/down statuses based upon NIC.
                GBOS5140010311
    
    3.2 Bug Fixes
                
        3.2.1   Inbound traffic is no longer double NATed if interface is 
                bridged.
                GBOS5140008286
                
        3.2.2   Bytes sent and received are now correctly recorded for large,
                single connection transfers.
                GBOS5140010626
                
        3.2.3   ICMP limits are properly enforced for inbound and outbound 
                tunnels.
                GBOS5140009691
                
        3.2.4   Mapping based upon service no longer fails for non TCP and 
                UDP protocols.
                GBOS5140010576
                
        3.2.5   IKE remains operational when no VPN certificate is selected.
                GBOS5140010576
                
        3.2.6   Connections properly idle out.
                GBOS5140008906
                
        3.2.7   Static routes properly take priority over gateways.
                GBOS5140010766
                
        3.2.8   System CPU no longer spikes when firewall reaches maximum 
                number of email connections.
                GBOS5140010866

           
4.  THREAT MANAGEMENT

    4.1 Modifications
    
        4.1.1   Improved Anti-Spam processing.
                GBOS5140010621
                
        4.1.2   Correctly enforce limits for maximum email connections.
                GBOS5140009821
    
    4.2 Bug Fixes
        
        4.2.1   Mail Sentinel policy summary no longer displays MAPS object 
                when the object is not enabled.
                GBOS5140008121
                
        4.2.2   Grey listing option no longer requires that Mail Sentinel 
                Anti-Spam categorization is enabled.
                GBOS5140009831
                
        4.2.3   Mail Sentinel Anti-Virus and Mail Sentinel Anti-Spam have 
                been removed from the default deny policy.
                GBOS5140008036
                
        4.2.4   Surf Sentinel now properly handles multiple policies 
                referencing the same address object.
                GBOS5140009261
                
        4.2.5   Mail Sentinel and Surf Sentinel now recover automatically upon 
                updating DNS.
                GBOS5140009466
    
               
5.  SERVICES

    5.1 Modifications
    
        5.1.1   High Availability interfaces has been removed from the 
                Interfaces drop down list under security policies.
                GBOS5140007191
                
        5.1.2   Authentication valid time will default to one minute if zero 
                is entered.
                GBOS5140008496
                
        5.1.3   Support added for importing/exporting the GTA SSOAuth binding 
                interface in XML configuration.
                GBOS5140011046
               
    5.2 Bug Fixes   
        
        5.2.1   GTA SSO-Auth now properly allows the use of a SSO server and/or
                certificate only once.
                GBOS5140010531
                
        5.2.2   NTP is properly restarted after HA state changes.
                GBOS5140007016
                
        5.2.3   Security policies requiring authentication properly work with 
                embedded groups.
                GBOS5140010046
                

6.  ACTIVITY

    6.1 Modifications
    
        6.1.1   Added log messages for invalid reset packets.
                GBOS5140010041
    
    6.2 Bug Fixes
    
        6.2.1   Improved HTML emails of firewall configurations.
                GBOS5140010481
                
        6.2.2   Log option is now properly displayed for bridged protocols.
                GBOS5140009861
                
        6.2.3   Policy blocks properly generate one SNMP trap notification per
                occurrence.
                GBOS5140009736
                
        6.2.4   OSPF configuration report properly displays all authentication 
                information.
                GBOS5140008046
                
        6.2.5   Security policies no longer require notification alarms 
                to be enabled for SNMP traps to work.
                GBOS5140009731
                
        6.2.6   Notification section is no longer upgraded when data is not 
                in the XML configuration.
                GBOS5140010366
                
        6.2.7   Email addresses are properly validated before generating 
                alarm notifications.
                GBOS5140010746


7.  OPERATING SYSTEM

    7.1 Modfications
    
        7.1.1   Improved system configuration verification.
                GBOS5140003491, GBOS5140007851, GBOS5140007936, 
                GBOS5140010606, GBOS5140009951, GBOS5140010091
                
        7.1.2   Dsbl.org has been removed from the available server list.
                GBOS5140009001
                
        7.1.3   Improved configuration reports.
                GBOS5140010526
                
        7.1.4   Updated hints throughout the web interface.
                GBOS5140007306
                
        7.1.5   Time groups with no ending time now default to end of day.
                GBOS5140009486
                
        7.1.6   Increased bandwidth counter for network statistics.
                GBOS5140010076
                
        7.1.7   PPP configuration retry count is now dynamically displayed or 
                hidden, depending on PPP connection type.
                GBOS5140010886
                
        7.1.8   Improved consistency of system error messaging.
                GBOS5140010826   
        
    7.2 Bug Fixes
    
        7.2.1   Copy function no longer resets changes made to an entry.
                GBOS5140010166
                
        7.2.2   Firewall address object limits are properly enforced.
                GBOS5140009776
                
        7.2.3   Firewall now properly searches for enabled objects before 
                referencing disabled duplicate objects.
                GBOS5140010556, GBOS5140010561
                 
        7.2.4   All contact information is properly displayed in the system 
                summary.
                GBOS5140009551
                
        7.2.5   Authentication summary now properly displays all fields.
                GBOS5140008066
        
        7.2.6   Bandwidth is properly displayed under Network Statistics.
                GBOS5140010776
                
        7.2.7   XML is now properly exported when an interface is disabled.
                GBOS5140010796


8.  RELEASE NOTES HISTORY

    8.1   Previous Release Notes
          These notes cover the 5.1.4 release of GB-OS. Release notes for 
          previous versions can be found at GTA's Web site, http://www.gta.com.

-------------------------------------------------------------------------
Global Technology Associates, Inc.
3505 Lake Lynda Drive, Suite 109
Orlando, Florida 32817
www.gta.com
407.380.0220
		



Copyright © 2014 Global Technology Associates, Inc. All rights reserved.

'GB-OS' and 'GB-Ware' are registered trademarks of Global Technology Associates, Incorporated.
'Global Technology Associates' and 'GTA' are service marks of Global Technology Associates, Incorporated.