Unified Threat Management - Support | GTA, Inc.

		                         

                        GB-OS FIREWALL SOFTWARE
                            VERSION 5.1.0
                            RELEASE NOTES

Author:     Global Technology Associates, Inc.
Product:    GB-OS version 5.1.0
Date:       16 June 2008

-------------------------------------------------------------------------
GB-OS version 5.1.0 includes updated versions of the following GTA
products and utilities:

    GB-OS                       5.1.0

Release notes are located on the installation CD and on GTA's Web site.

For more about upgrading related software, see individual product
release notes.

-------------------------------------------------------------------------
CONTENTS
Release Notes sections are categorized first by feature addressed, then
by the type of change.

1.  INSTALL NOTES

2.  SYSTEM

3.  NETWORK

4.  ACCOUNTS

5.  ACTIVITY

6.  SERVICES

7.  THREAT MANAGEMENT

8.  CONFIGURATION

9.  OPERATING SYSTEM

10. RELEASE NOTES HISTORY

-------------------------------------------------------------------------

1.  INSTALL NOTES

    1.1 Entering New Activation Codes
    
        If upgrading from 5.0.x or below, new activation codes must be
        entered. GB-OS version 5.1.0 is available at no charge to
        customers with a GTA support contract or annual maintenance
        agreement. Other users should contact their local GTA channel
        partner or email sales@gta.com for information and pricing of
        upgrade options.

        
    1.2 Upgrade Notes   
        
      1.2.1 Error Messages Upon Initial Reboot
    
            Upon rebooting after successful installation, the GTA
            Firewall UTM Appliance may display errors when accessed
            using the Web interface.  This is expected, these errors are
            generated because the browser's cache is trying to access
            files and locations that no longer apply. Click OK to any
            displayed errors and refresh the browser window to access
            GB-OS 5.1. If the error messages persist, clear your
            browser's cache.
            

    1.3 SSL Certificate Replacement

        GB-OS version 5.1 will install a new default security/SSL
        certificate. Some browsers, including Netscape and Mozilla,
        will not recognize the new certificate if the original has
        never been replaced. If you are unable to log on to the
        firewall after upgrading, delete the browser's cached security
        certificate, then close and restart your browser before
        reattempting remote access to your firewall.


2.  SYSTEM

    2.1 New Features
        
        2.1.1   Support added for virtualized hosts. 
                GBOS5100004965
                
        2.1.2   LBA mode is now accessible from disk when installing GB-Ware.
                GBOS5100004997
    
    2.2 Enhancements
    
        2.2.1   Improved performance for remote Web administration.
                GBOS5100005153
    
    2.3 Modifications
    
        2.3.1   Updated IPS engine. 
                GBOS5100005151, GBOS5100005636
                
        2.3.2   GTA appliances, when running GB-OS software in demonstration
                mode, are now disabled when demonstration time expires.
                GBOS5100005021
                
        2.3.3   Updated SNMP service.
                GBOS5100005026
                
        2.3.4   Updated Network Time Protocol.
                GBOS5100005052
                
        2.3.5   Updated XML schema for 5.1.0
                GBOS5100005175
                
        2.3.6   Default time zone and country are now determined by the user's 
                Web browser language setting.
                GBOS5100005211


3.  NETWORK
    
    3.1 New Features
    
        3.1.1   Border Gateway Protocol (BGP) support has been added to GB-OS 
                routing protocols for GB-2000, GB-3000, and GB-Ware. 
                GBOS5100002309, GBOS5100005486
                
        3.1.2   Open Shortest Path First Protocol (OSPF) support has been added
                to GB-OS routing protocols.
                GBOS5100004633
    
    3.2 Enhancements
    
        3.2.1   Time groups have been added to tunnels.
                GBOS5100002376
                
        3.2.2   Trusted Networks option added to the DNS server.
                GBOS5100003914
                
        3.2.3   Added option to specify the inbound tunnel's source address.
                GBOS5100005150
                
        3.2.4   Added ability to disable interfaces defined in network settings. 
                GBOS5100005231

        3.2.5   Added abilitiy to statically map addresses based on service
                groups.
                GBOS5100005140 
    
    3.3 Modifications
    
        3.3.1   Basic Setup wizard automatically defaults the external 
                connection to PPP when only one NIC is present.
                GBOS5100003865
                
        3.3.2   Bridged option is hidden when setting DHCP for an interface.
                GBOS5100004538
                
        3.3.3   When email alarms are disabled, unsuccessful email messages are
                dropped.
                GBOS5100004769  
    
    3.4 Bug Fixes
    
        3.4.1   Firewall properly uses gateway polices for sharing when sharing
                is enabled.
                GBOS5100005426
        
        3.4.2   Firewall now properly handles arp requests when updating VLANs.
                GBOS5100005611
        
        3.4.3   System remains operational when using NAT-T and VPN accelerator 
                cards are installed.
                GBOS5100005766
                
        3.4.4   GSM Modem and USB connections remain operational after editing 
                the network settings.
                GBOS5100005816


4.  ACCOUNTS

    4.1 New Features
    
        4.1.1   Added ability to force log off authenticated users.
                GBOS5100003523
                
        4.1.2   Active Directory Single Sign-On has been added as an
                authentication method.
                GBOS5100005077
                
        4.1.3   Added support for SSL LDAP authentication.
                GBOS5100005248
    
    4.2 Enhancements
    
        4.2.1   Added option to configure valid duration for authenticated 
                users. 
                GBOS5100004871
                
        4.2.2   Added ability to disable GBAuth keep alives.
                GBOS5100004871
                
        4.2.3   LDAP/RADIUS user group has been added to Account Groups.
                GBOS5100005083
                
    4.3 Bug Fixes
    
        4.3.1   RADIUS authentication remains operational with pre-shared 
                secrets larger than 20 characters.
                GBOS5100003092


5.  ACTIVITY
    
    5.1 New Features
    
        5.1.1   SMS message support has replaced pager support.
                GBOS5100005020, GBOS5100005023
                
    5.2 Enhancements
    
        5.2.1   Improved support for SNMP Trap messaging.
                GBOS5100000250
                
        5.2.2   Added filter options for the display of active connections based
                on source, destination, and service.
                GBOS5100002755
                
        5.2.3   Added option to flush active connections.
                GBOS5100002755
                
        5.2.4   Added log section to view warnings and errors.
                GBOS5100005057
                
        5.2.5   Added option to receive email notifications of gateway status.
                GBOS5100005133
    
    5.3 Bug Fixes
    
        5.3.1   Firewall now attempts email notifications a maximum of five 
                retries before logging the failure.
                GBOS5100004947, GBOS5100005936
                
        5.3.2   Firewall now properly attempts to connect to secondary MX upon 
                primary MX failure.
                GBOS5100002296


6.  SERVICES
    
    6.1 Enhancements
    
        6.1.1   Added additional configuration options for High Availability 
                interfaces.
                GBOS5100004606
                
        6.1.2   Added ability to enable or disable automatic policies for 
                High Availability.
                GBOS5100004890
    
    6.2 Modifications
    
        6.2.1   High Availability has been moved from Services to Interfaces in
                the main tree menu.
                GBOS5100004777
                
        6.2.2   Dynamic routing (RIP, OSPF, BGP) is now disabled on High 
                Availability systems when in Init and Standby mode.
                GBOS5100005135, GBOS5100005461
    
    6.3 Bug Fixes
    
        6.3.1   High Availability now restarts when interfaces are edited and
                saved.
                GBOS5100004395


7.  THREAT MANAGEMENT
    
    7.1 Enhancements
    
        7.1.1   Time groups can now be used with Surf Sentinel Content 
                Filtering.
                GBOS5100000260
                
        7.1.2   Added statistics page for Surf Sentinel.
                GBOS5100003327
                
        7.1.3   Added tuning options for the IPS Proxy.
                GBOS5100004752
                
        7.1.4   Surf Sentinel traditional proxy now supports persistent 
                connections.
                GBOS5100004980
                
        7.1.5   Added caching for Surf Sentinel content filtering ratings.
                GBOS5100004164
                
    
    7.2 Modifications
                
        7.2.1   Improved Anti-Spam processing.
                GBOS5100005225
                
        7.2.2   Improved display of Mail Sentinel statistics.
                GBOS5100005711


8.  CONFIGURATION
    
    8.1 Enhancements
    
        8.1.1   Added option for switching between live/test mode when 
                applying/copying the configuration. 
                GBOS5100003288, GBOS5100003376
                
        8.1.2   Added the option to preserve the Activation Codes section when 
                importing configurations.
                GBOS5100003808
                
        8.1.3   Added the ability to compress and encrypt configurations when 
                exporting from the firewall.
                GBOS5100004595, GBOS5100005366
    
    8.2 Modifications
    
        8.2.1   Audit events option has been added to configuration emails.
                GBOS5100003809
                
        8.2.2   Hyperlinks have been removed from configuration emails.
                GBOS5100003995
                
        8.2.3   Improved support for configuration conversion from 
                3.7.x to 5.x.x.
                GBOS5100005631
    

9.  OPERATING SYSTEM 
    
    9.1 New Features
    
        9.1.1   Added feature enabling the network diagnostics user interface to
                remember the most recent host and binding interface for the 
                session.
                GBOS5100005018
                
        9.1.2   Support for Camellia encryption algorithm added.
                GBOS5100005027
        
        9.1.3   Added  the ability to request an evaluation of Mail Sentinel 
                Anti-Virus, Mail Sentinel Anti-Spam, and/or Surf Sentinel via 
                the Web interface.
                GBOS5100005169
                
        9.1.4   Added user logout option to the GB-OS Web interface.
                GBOS5100005701
        
        9.1.5   Email notifications are consolidated into the new Notifications
                section.
                GBOS5100005250
                                
        9.1.6   Added abilitiy to configure connection limits for total and per 
                host connections.
                GBOS5100005040
    
    9.2 Enhancements
    
        9.2.1   FWCC status has been added to System Overview.
                GBOS5100000767
                
        9.2.2   Added gateway policy status.
                GBOS5100004751
                
        9.2.3   Added option to switch to English on Hint tab when using a 
                non-English locale.
                GBOS5100005192
                
        9.2.4   Added priorities to audit events.
                GBOS5100005346
    
    9.3 Modifications
    
        9.3.1   Improved system configuration verification.
                GBOS5100002557, GBOS5100005301, GBOS5100005376, GBOS5100005411, 
                GBOS5100005661, GBOS5100005671, GBOS5100004950, GBOS5100003884
                GBOS5100005981, GBOS5100006076
                
        9.3.2   Copy/Paste option has been removed from address objects, service
                objects, time groups and account groups.
                GBOS5100004048
                
        9.3.3   Service object list has been updated to include BGP, OSPF, IMAP,
                IMAPS, and SNPP.
                GBOS5100005016
                
        9.3.4   System Overview/Information layout is now retained across login
                sessions.
                GBOS5100005108
        
        9.3.5   Tree menu now displays tool tips for verification warnings 
                and/or errors.
                GBOS5100005171
        
        9.3.6   Time based inactive policies are now displayed with a red 
                asterisk.
                GBOS5100005288
        
        9.3.7   Active connection is mapped to service object with the Protocol 
                column replaced with Service. 
                GBOS5100005294
        
        9.3.8   Size of the audit event records has been increased to 500 lines.
                GBOS5100005306
                
        9.3.9   Disabled VLANs are now displayed on in the System Overview 
                window.
                GBOS5100005591
        
        9.3.10  All automatic policies are now displayed with either an Enabled 
                or Disabled status.
                GBOS5100005676 
                
        9.3.11  Revised handling of large numbers of connections to a 
                single site.
                GBOS5100005055
                       
        9.4.12  Firewall now flushes old connections upon change to an external 
                interface's IP address.
                GBOS5100004826
                
        9.4.13  Improved display of statistics page.
                GBOS5100005991
                
    9.4 Bug Fixes
                
        9.4.1   Centralized VPN hub now properly supports spoke output from hub 
                to external.
                GBOS5100005195
                
        9.4.2   Display of the install prompt screen is now correct when 
                updating activation codes.
                GBOS5100005571
                
        9.4.3   GTA licensing server now only checks when firewall is running 
                licensed services. 
                GBOS5100005961
                
        9.4.4   ARP timeouts are now properly removed.
                GBOS5100005846
 
 
10.  RELEASE NOTES HISTORY

    10.1    Previous Release Notes
            These notes cover the 5.1.0 release of GB-OS. Release notes 
            for previous versions can be found at GTA's Web site, 
            http://www.gta.com.

-------------------------------------------------------------------------
Global Technology Associates, Inc.
3505 Lake Lynda Drive, Suite 109
Orlando, Florida 32817
www.gta.com
407.380.0220


		



Copyright © 2014 Global Technology Associates, Inc. All rights reserved.

'GB-OS' and 'GB-Ware' are registered trademarks of Global Technology Associates, Incorporated.
'Global Technology Associates' and 'GTA' are service marks of Global Technology Associates, Incorporated.