Skip to content

Gateway Release: 22.10

22.10-03 - November 21, 2022

  • Fix: Improves the stability of the Gateway for all use-cases across all CSPs

22.10-02 - November 9, 2022

  • Fix: Fixes an issue with metric calculation that could cause the datapath to self heal

22.10-01 - November 7, 2022

  • Enhancement: Adds support for HTTP Keepalives to accommodate HTTP session reuse and achieve high performance
  • Enhancement: Added an L4 Firewall Security Event showing the FQDN matched when a Policy Ruleset match occurs based on an FQDN-based Address Object
  • Fix: Fixes an issue with IDS/IPS where traffic containing a CSV/Formula injection is not being detected
  • Fix: Fixes an issue related to TLS 1.3 caching where the datapath would generate a TLS error with SNI is Empty when traffic contained a TLS Hello with valid SNI
  • Fix: Fixes an issue with L7 DOS Profile that would cause the datapath to restart when a URI was longer than 64 characters
  • Fix: Set HTTP Keeaplives as default enabled with a 5s session timeout
  • Fix: Support for using user-defined/imported custom rules in Web Protection (WAF) Profiles
  • Fix: Support for using user-defined/imported custom rules in Network Intrusion (IDS/IPS) Profiles
  • Fix: Fixes stability issues with the Gateway under various traffic and configuration scenarios
  • Fix: Fixes an issue where a Packet Capture (PCAP) generated by the Gateway for a decrypted session was not generating a decrypted packet capture
  • Fix: Fixes an issue where a Packet Capture (PCAP) is not generated when a traffic is passing through a Rule that does not have SNAT enabled or is not a Proxy Rule
  • Fix: Fixes an issue where the Gateway could complete a TLS handshake with a wrong certificate even if upstream session is closed via a TCP Reset
  • Fix: Fixes an issue where a GCP Gateway could crash if the datapath VPC contains a large number of subnets
  • Fix: Fixes an issue where Antivirus (AV) is not properly detecting malware in an unencrypted HTTP session
  • Fix: Fixes an issue where an AV detection was denying traffic properly, but was not reporting an action of Deny in the traffic summary
  • Fix: Fixes a stability issue specific to Azure Egress / East-West Gateways
  • Fix: Fixes an issue where TCP Reset on Deny was taking effect for Policies where Application ID or Malicious IP were denying traffic
  • Fix: Fixes an issue with Data Loss Prevention (DLP) where CC numbers are being detected as SWIFT bank account numbers
  • Fix: Fixes an issue where Reverse Proxy might not pass the SNI to the backend connection
  • Fix: Fixes an issue where datapath would restart twice when a manual restart is triggered
  • Fix: Fixes an issue where the Policy Update Status would show Updated when the update failed due to IAM permission issues