Skip to content

Controller / UI Release: 22.10 - November 7, 2022

Features

  • Discover and Deploy
    • Multiple Gateway instance types (2-core, 4-core, 8-core)
    • Network Access Control List (NACL) discovery
  • Security and Segmentation Policy
    • Custom IPS/IDS and WAF rules
    • HTTP Keepalive support
    • Rename Anti-Virus to Anti-Malware
  • Miscellaneous
    • Performance improvements
    • Controller operation improvements
    • Bug fixes and stability improvements

Enhancements

  • Enhancement: Support for user-defined custom Network Intrusion (IDS/IPS) rules
  • Enhancement: Support for user-defined custom Web Protection (WAF) rules
  • Enhancement: Adds periodic and real-time asset discovery for Network Access Control Lists (NACLs)
  • Enhancement: Changes the name of the Anti-Virus Profile to Anti-Malware to better represent the benefits of the Profile in being able to detect transmission of Malware
  • Enhancement: Updates to Gateway settings view to show whether a Gateway setting can be modified or not
  • Enhancement: Updates to the UI when creating a Gateway in GCP to accommodate specifying an SSH key
  • Enhancement: Enhances the Setup workflow to allow a user to onboard more than one account
  • Enhancement: Ability to set an expiration duration in days for an API Key
  • Enhancement: Confirmed full support for Azure Qatar Central Location (region)
  • Enhancement: Updates to the Discover UI to accommodate display of discovered Network Access Control List (NACL) information
  • Enhancement: Updates to Gateway views to accommodate ability to select and change a Gateway instance type
  • Enhancement: Updates to the FQDN Filtering Profile page to accommodate displaying relationships between FQDN Filtering Groups and Standalone constitutes
  • Enhancement: Updates to the Network Intrusion (IDS/IPS) Profile view to accommodate enhancements to user-defined custom rules
  • Enhancement: Updates to the Web Protection (WAF) Profile view to accommodate enhancements to user-defined custom rules
  • Enhancement: Updates to Investigate -> Network Analytics -> Stats to accommodate enhancements related to HTTP Keepalive support
  • Enhancement: Adds support for specifying SSH Key when deploying a Gateway into GCP
  • Enhancement: Adds ability to deploy the Gateway as private (no public IP addresses to either Management or Datapath interfaces) when creating a Gateway using the UI. This capability has existed in Terraform.
  • Enhancement: Added support for assigning one or more Principals to a Gateway deployed in AWS to be applied to the Valtix-orchestrated GWLB and its Service Endpoint
  • Enhancement: Adds instance type information Gateway in table view
  • Enhancement: Adds a Gateway resource output to include the AWS GWLB Service Endpoint ID for the Valtix-orchestrated GWLB
  • Enhancement: Enhances the Gateway Status API to accommodate Gateway deletion status and error codes
  • Enhancement: Adds support for specifying an expiration date in # of days when creating an API Key
  • Enhancement: Adds a new System Log alerts clickable notification to the top navigation bar
  • Enhancement: Update to the REST API Gateway run endpoint API to reference the Datapath Interface as DATAPATH_INTERFACE rather than FRONTEND_INTERFACE
  • Enhancement: Adds an L4 Firewall Security Event showing the FQDN matched when a Policy Ruleset match occurs based on an FQDN-based Address Object
  • Enhancement: Adds LogType to System Logs and Audit Logs to accommodate easier filtering when sending and viewing in a SIEM

Fixes

  • Fix: Fixes the label for Address Object Group components to be clearer
  • Fix: Fixes a display issue for Address Object type of Service End Point
  • Fix: Fixes various issues related to DNS Discovery search filters
  • Fix: Fixes an issue where the UI could crash when performing an "Secure Application" action from the Inventory view
  • Fix: Fixes specifying an S3 Bucket when enabling Traffic Discovery to provide a dropdown list of all discovered S3 Buckets
  • Fix: Fixes a display issue in the Gateways detail view where the Upgrade Status always showed "To Be Upgraded"
  • Fix: Fixes an issue where the time was not specified in the certificate valid from and to fields of a Certificate
  • Fix: Fixes an issue where the Gateway deployment mode (EDGE, HUB) was not displayed in the Investigate -> Logs Table and JSON views
  • Fix: Fixes an issue where Investigate -> Logs search did not allow searching on VPC ID
  • Fix: Adds the Alert Profile name to the JSON for Alerts sent to 3rd-party systems
  • Fix: Fixes the description display wording for the Log Forwarding Profile configured for sending Logs to an S3 Bucket providing information on the required permissions needed for the S3 Bucket for the Gateway to write log files
  • Fix: Fixes an issue in the Alert Profile table view to show the Service Type as a column
  • Fix: Fixes the Details -> Rule set details -> View Rules selection to link to a Threat Research page that shows the Rules and their action as it relates to the Profile configuration. This applies to both IDS/IPS and WAF Profiles.
  • Fix: Fixes an issue with Service Object Port validation where it would allow a port that is greater than 65535
  • Fix: Fixes an issue with FQDN Filtering Profile row-count validation where it would allow creating more than 60 rows
  • Fix: Fixes an issue with the Controller validation for Rule names that would allow creating a Rule without a name
  • Fix: Fixes various display issues with the FQDN Filtering Profile view
  • Fix: Fixes various UI-related issues when creating and creating or modifying a GEOIP Address Object
  • Fix: Fixes the advanced search for Traffic Summary and Events that would cause improper results when searching on URIs that are long with a variety of characters
  • Fix: Fixes an issue with the REST API route process endpoint API to ensure proper error message is generated when specifying an incorrect route table name
  • Fix: Fixes an issue where the controller would not delete a network interface associated with the Gateway instance when the instance failed to come up
  • Fix: Fixes an issue with the Policy Ruleset status API to improve query speeds, especially for large-scale deployments that contain many Policy Rulesets.
  • Fix: Fixes a display issue with the Gateway -> Details -> Troubleshooting for Azure Gateway view. The Source and Destination addresses for the Management and Datapath Network Security Groups were not populated.