GB-OS FIREWALL SOFTWARE
VERSION 5.1.4
RELEASE NOTES
Author: Global Technology Associates, Inc.
Product: GB-OS version 5.1.4
Date: 23 March 2009
-------------------------------------------------------------------------
GB-OS version 5.1.4 includes updated versions of the following GTA
products and utilities:
GB-OS 5.1.4
Release notes are located on the installation CD and on GTA's Web site.
For more about upgrading related software, see individual product
release notes.
-------------------------------------------------------------------------
CONTENTS
Release Notes sections are categorized first by feature addressed, then
by the type of change.
1. INSTALL NOTES
2. SYSTEM
3. NETWORK
4. THREAT MANAGEMENT
5. SERVICES
6. ACTIVITY
7. OPERATING SYSTEM
8. RELEASE NOTES HISTORY
-------------------------------------------------------------------------
1. INSTALL NOTES
1.1 Entering New Activation Codes
If upgrading from 5.0.x or below, new activation codes must be
entered. GB-OS version 5.1.4 is available at no charge to
customers with a GTA support contract or annual maintenance
agreement. Other users should contact their local GTA channel
partner or email sales@gta.com for information and pricing of
upgrade options.
1.2 Upgrade Notes
1.2.1 Error Messages Upon Initial Reboot
Upon rebooting after successful installation, the GTA
Firewall UTM Appliance may display errors when accessed
using the Web interface. This is expected, these errors are
generated because the browser's cache is trying to access
files and locations that no longer apply. Click OK to any
displayed errors and refresh the browser window to access
GB-OS 5.1.4. If the error messages persist, clear your
browser's cache.
1.3 SSL Certificate Replacement
GB-OS version 5.1.4 will install a new default security/SSL
certificate. Some browsers, including Netscape and Mozilla,
will not recognize the new certificate if the original has
never been replaced. If you are unable to log on to the
firewall after upgrading, delete the browser's cached security
certificate, then close and restart your browser before
reattempting remote access to your firewall.
1.4 Mail Sentinel Anti-Virus
Since the release of GB-OS version 5.1.2, Mail Sentinel Anti-Virus is
no longer available as a separate subscription option. Mail Sentinel
Anti-Virus is included as a standard feature with vaild support
contracts.
2. SYSTEM
2.1 Modifications
2.1.1 Updated IPS engine.
GBOS5140010146
2.1.2 Upgraded SNMP.
GBOS5140008701
2.1.3 Upgraded bind.
GBOS5140009231
2.1.4 Added USB keyboard support for GB-Ware.
GBOS5140002155
2.1.5 Updated XML configuration schema.
GBOS5140010791
2.1.6 Added BlackBerry service object.
GBOS5140010996
2.2 Bug Fixes
2.2.1 Users are properly expired when client is disconnected.
GBOS5140007836, GBOS5140008061, GBOS5140009461
2.2.2 Firewall remains operational when using mail proxy with slow
mail servers.
GBOS5140009816
2.2.3 Firewall now properly tests for IP spoofs when generating
ICMP TTL exceeded messages.
GBOS5140009441
2.2.4 Runtimes install correctly on legacy products.
GBOS5140010576, GBOS5140010601
2.2.5 Console login prompt properly reloads upon logging out.
GBOS5140010841
3. NETWORK
3.1 Modifications
3.1.1 The Interfaces Tool now assigns up/down statuses based upon NIC.
GBOS5140010311
3.2 Bug Fixes
3.2.1 Inbound traffic is no longer double NATed if interface is
bridged.
GBOS5140008286
3.2.2 Bytes sent and received are now correctly recorded for large,
single connection transfers.
GBOS5140010626
3.2.3 ICMP limits are properly enforced for inbound and outbound
tunnels.
GBOS5140009691
3.2.4 Mapping based upon service no longer fails for non TCP and
UDP protocols.
GBOS5140010576
3.2.5 IKE remains operational when no VPN certificate is selected.
GBOS5140010576
3.2.6 Connections properly idle out.
GBOS5140008906
3.2.7 Static routes properly take priority over gateways.
GBOS5140010766
3.2.8 System CPU no longer spikes when firewall reaches maximum
number of email connections.
GBOS5140010866
4. THREAT MANAGEMENT
4.1 Modifications
4.1.1 Improved Anti-Spam processing.
GBOS5140010621
4.1.2 Correctly enforce limits for maximum email connections.
GBOS5140009821
4.2 Bug Fixes
4.2.1 Mail Sentinel policy summary no longer displays MAPS object
when the object is not enabled.
GBOS5140008121
4.2.2 Grey listing option no longer requires that Mail Sentinel
Anti-Spam categorization is enabled.
GBOS5140009831
4.2.3 Mail Sentinel Anti-Virus and Mail Sentinel Anti-Spam have
been removed from the default deny policy.
GBOS5140008036
4.2.4 Surf Sentinel now properly handles multiple policies
referencing the same address object.
GBOS5140009261
4.2.5 Mail Sentinel and Surf Sentinel now recover automatically upon
updating DNS.
GBOS5140009466
5. SERVICES
5.1 Modifications
5.1.1 High Availability interfaces has been removed from the
Interfaces drop down list under security policies.
GBOS5140007191
5.1.2 Authentication valid time will default to one minute if zero
is entered.
GBOS5140008496
5.1.3 Support added for importing/exporting the GTA SSOAuth binding
interface in XML configuration.
GBOS5140011046
5.2 Bug Fixes
5.2.1 GTA SSO-Auth now properly allows the use of a SSO server and/or
certificate only once.
GBOS5140010531
5.2.2 NTP is properly restarted after HA state changes.
GBOS5140007016
5.2.3 Security policies requiring authentication properly work with
embedded groups.
GBOS5140010046
6. ACTIVITY
6.1 Modifications
6.1.1 Added log messages for invalid reset packets.
GBOS5140010041
6.2 Bug Fixes
6.2.1 Improved HTML emails of firewall configurations.
GBOS5140010481
6.2.2 Log option is now properly displayed for bridged protocols.
GBOS5140009861
6.2.3 Policy blocks properly generate one SNMP trap notification per
occurrence.
GBOS5140009736
6.2.4 OSPF configuration report properly displays all authentication
information.
GBOS5140008046
6.2.5 Security policies no longer require notification alarms
to be enabled for SNMP traps to work.
GBOS5140009731
6.2.6 Notification section is no longer upgraded when data is not
in the XML configuration.
GBOS5140010366
6.2.7 Email addresses are properly validated before generating
alarm notifications.
GBOS5140010746
7. OPERATING SYSTEM
7.1 Modfications
7.1.1 Improved system configuration verification.
GBOS5140003491, GBOS5140007851, GBOS5140007936,
GBOS5140010606, GBOS5140009951, GBOS5140010091
7.1.2 Dsbl.org has been removed from the available server list.
GBOS5140009001
7.1.3 Improved configuration reports.
GBOS5140010526
7.1.4 Updated hints throughout the web interface.
GBOS5140007306
7.1.5 Time groups with no ending time now default to end of day.
GBOS5140009486
7.1.6 Increased bandwidth counter for network statistics.
GBOS5140010076
7.1.7 PPP configuration retry count is now dynamically displayed or
hidden, depending on PPP connection type.
GBOS5140010886
7.1.8 Improved consistency of system error messaging.
GBOS5140010826
7.2 Bug Fixes
7.2.1 Copy function no longer resets changes made to an entry.
GBOS5140010166
7.2.2 Firewall address object limits are properly enforced.
GBOS5140009776
7.2.3 Firewall now properly searches for enabled objects before
referencing disabled duplicate objects.
GBOS5140010556, GBOS5140010561
7.2.4 All contact information is properly displayed in the system
summary.
GBOS5140009551
7.2.5 Authentication summary now properly displays all fields.
GBOS5140008066
7.2.6 Bandwidth is properly displayed under Network Statistics.
GBOS5140010776
7.2.7 XML is now properly exported when an interface is disabled.
GBOS5140010796
8. RELEASE NOTES HISTORY
8.1 Previous Release Notes
These notes cover the 5.1.4 release of GB-OS. Release notes for
previous versions can be found at GTA's Web site, http://www.gta.com.
-------------------------------------------------------------------------
Global Technology Associates, Inc.
3505 Lake Lynda Drive, Suite 109
Orlando, Florida 32817
www.gta.com
407.380.0220
|
