Gateway Release: 22.09¶

22.09-02 - October 17, 2022¶

Fix: Fixes an issue related to TLS 1.3 caching where the datapath would generate a TLS error with SNI is Empty when traffic contained a TLS Hello with valid SNI
Fix: Fixes an issue with L7 DOS Profile that would cause the datapath to restart when a URI was longer than 64 characters
Fix: Fixes an issue where an AV detection was denying traffic properly, but was not reporting an action of Deny in the traffic summary
Fix: Fixes an issue where AV was not detecting HTML-based malware present in an unencrypted HTTP session
Fix: Fixes an issue where a Policy Update Status shows as successfully updated, but the Gateway has failed to load a certificate used in a Policy Ruleset

Enhancement: Adds support for HTTP Keepalives to accommodate HTTP session reuse and achieve high performance
Fix: Fixes stability issues with the Gateway under various traffic and configuration scenarios
Fix: Fixes an issue where a Packet Capture (PCAP) generated by the Gateway for a decrypted session was not generating a decrypted packet capture
Fix: Fixes an issue where a Packet Capture (PCAP) is not generated when traffic is passing through a Rule that does not have SNAT enabled or is not a Proxy Rule
Fix: Fixes an issue where the Gateway could complete a TLS handshake with a wrong certificate even if the upstream session is closed via a TCP Reset
Fix: Fixes an issue where URL Filtering Rules might produce incorrect URL matching
Fix: Fixes an issue where Antivirus (AV) is not properly detecting malware in an unencrypted HTTP session
Fix: Fixes an issue where TCP Reset on Deny is not taking effect for AppID and Malicious IP denies
Fix: Fixes an issue with Data Loss Prevention (DLP) where CC numbers are being detected as SWIFT bank account numbers
Fix: Fixes an issue where Reverse Proxy might not pass the SNI to the backend connection