Enhancement: Enhances the Gateway table view to add quick Filters to more easily filter the displayed list of Gateways. The filters can operate on all displayed fields, including Name and Region fields.
Enhancement: Enhances the dynamic User-Defined-Tag Address Object to accommodate periodic and real-time inventory updates for Security Group Tags when the Security Group is applied to Lambda Functions, ECS Fargate and other AWS Service Endpoints. The enhancement discovers the associated NICs and their configuration (IP addresses) to ensure the dynamic policy adapts to Security Group assignments and Tag changes.
Enhancement: Changes the default time range for Investigate pages (Logs, Events) to 1 hour to accommodate quicker load times and represent a more common initial time period display
Enhancement: Enhances the Gateway table view to allow for selection of all Gateways with a single checkbox selection. This helps accommodate multi-select operations like Gateway Upgrade in not having to select each Gateway individually.
Enhancement: Enhances the Gateway table view to display up to 50 Gateways. This helps to accommodate larger Gateway deployments such that the Search and Filter can operate on a larger displayed number of Gateways.
Enhancement: Enhances the Gateway and Traffic Summary Logs / Events table views to accommodate display of the Cloud Account Type for which the Gateway or Logs / Events is associated with. This enables the ability to filter the view to only Gateways or Logs / Events that are associated with a particular Cloud Account Type.
Enhancement: Enhances the DNS-based FQDN Address Object to accommodate IP Address caching. The enhancement provides a configurable set of Gateway settings related to DNS resolution frequency (update interval), IP Address TTL (entry TTL) and IP Address cache size (cache). These settings can be applied using Terraform only. When not applied, default values are: 60 (seconds) for DNS resolution frequency, 0 (seconds) for IP Address TTL (no caching), and 0 (address count) for IP Address cache size (no caching). (requires Gateway version 23.02 or later)
Enhancement: Enhances the Policy Ruleset and Policy Ruleset Group limits. The updated limits are 100 Policy Rulesets per Policy Ruleset Group and 2047 Rules per Policy Ruleset.
Enhancement: [Public Preview] Provides support for Terraform import of Valtix resources to create Terraform state to manage resources that have been created outside of Terraform or outside of the immediate Terraform pipeline
Enhancement: Corrects a policy change issue where the Anti-Malware security profile was being applied to small form factor (2-core and 4-core) instance types where Anti-Malware is only available in large form factor (8-core) instance types
Enhancement: Enhances the Gateway table view to accommodate search capabilities for additional fields. The search can operate on displayed fields to refine the Gateways displayed in the table view.
Enhancement: Enhances the Gateway table view to display additional Gateway configuration information as new fields. This allows the Search and Filter operations to operate on the information.
Enhancement: Enhanced the display of Gateway image selection for Azure Gateways to accommodate displaying the V3 and V5 instance types hierarchically. This applies to Gateway creation using Easy Setup, and advanced deployment and editing workflows.
Enhancement: Enhances the Egress/East-West Policy Ruleset Rule matching criteria to introduce a new variation of an FQDN Profile called an FQDN Match Profile. The FQDN Profile variant is a set of PCRE-defined FQDNs that can be applied to TLS encrypted traffic such that the policy can match on SNI. This enhances the segmentation policy with added flexibility for policies that need to have fine-grained control based on FQDNs. (requires Gateway version 23.02 or later)
Enhancement: Changes the workflow for deploying a Gateway in Azure to allow the selection of a VNet prior to selecting a Resource Group to use for the Gateway. For deployments where Valtix is not orchestrating and managing the VNet, the Resource Group for the VNet where the Gateway is deployed could be different from the Resource Group used for the Gateway itself. This enhancement accommodates separate Resource Groups for the VNet and Gateway.
Enhancement: Adds an Edit button to all resources when displaying the Details for the resource to quickly launch into an edit view without having to check the resource checkbox and select Actions -> Edit
Enhancement: Adds support for HTTP Connection Rate (requests per second) that helps accommodate a clearer understanding of HTTP sessions, especially when an application supports HTTP Keepalive or HTTP/2 multiplexing
Enhancement: Adds a new metering view to display Traffic Discovery VPC Flow Logs and DNS Query Logs volume and how it applies to standard and enhanced licensing. This view is similar to the Gateway metering view that helps to track Gateway consumption.
Enhancement: Adds Creation and Last Update date to all Valtix resources to help understand resource modification history
Enhancement: Provides a new Valtix Welcome page when a user logs in for the first time or logs in again where Valtix has not yet been configured. This new welcome page will help guide a new user to more quickly integrate Valtix into the CSP for discovery, and to quickly deploy and configure Valtix for application and workload protection.
Enhancement: Provides a new Investigate -> Network Analytics -> Stats view to accommodate an easier way to view Gateway performance statistics and how they factor into auto-scaling. This new view will not only offer a better way to view existing performance statistics, but will accommodate additional statistics in the future.
Enhancement: Enhances the Valtix Dashboard login to associate an email address or SSO domain with multiple tenants to accommodate multi-tenant login and tenant rotation. This applies to organizations who leverage multiple tenants. To enable this feature, please contact Valtix Support.
Enhancement: Enhances the Valtix Dashboard login SSO integration to allow the SSO to be used for user authentication and Valtix to be used for user authorization. Without any change, Valtix will continue to operate where both authentication and authorization are handled by the integrated SSO. With a minor change in the configuration of the SSO, Valtix will be used for user authorization, requiring an administrator of Valtix to manage the users and their permissions (authorization) within the Valtix Dashboard.
Fix: Removes the Recrawl button for Address Object as this operation no longer applies and is handled automatically by a display refresh
Fix: Fixes inconsistencies in the FQDN Filtering and URL Filtering limits to ensure that all limits are consistent, validated and well documented
Fix: Fixes an issue where the Health Check Rule for each Policy Ruleset associated with a Policy Ruleset Group was being displayed individually. When Policy Rulesets are grouped together, each individual Policy Ruleset Health Check Rule does not apply. Only a single Health Check Rule is used by the Gateway and should be displayed accordingly in the UI.
Fix: Fixes the error message that would be displayed in the Leave Page message when a user attempts to leave the Policy Ruleset Page that contains changes that have not yet been saved
Fix: Fixes an issue in the Rest API rungateway endpoint that would show an incorrect error if a SubnetID is specified incorrectly
Fix: Fixes a display issue in the Policy Ruleset Details view that shows a value of undefined when the Policy Ruleset is not applied to any Gateways
Fix: Fixes an issue when creating a Policy Ruleset Reverse Proxy Rule where the Target field was not being populated. The Target field was properly set as it comes from the selection of the Service, but the display was showing it as empty.
Fix: Fixes a display issue in the FQDN Filtering Profile where the checkboxes for the FQDN list entries were not properly aligned
Fix: Fixes a display issue in the Packet Capture Profile view where the information text was not being wrapped properly
Fix: Fixes an issue in the Dashboard page where the graph for WAF Threats would hide the count that displays the number of WAF Threats
Fix: Fixes an error message when configuring an FQDN or URL Filtering Profile where the limits of the Profile were exceeded. The error message displays the incorrect limits, although the error message was triggered properly based on the correct limits.
Fix: Fixes a display issue in the Cloud Accounts table view to fix an alignment issue
Fix: Fixes an issue with token refresh for Valtix tenants that are integrated into SSO using SAML. The token was not being expired and thus not being refreshed when users would logout and then login.
Fix: Fixes a display issue in Policy Rulesets table view to align the Policy Ruleset checkbox when Policy Rulesets are applied to a large number of Gateways
Fix: Fixes a display issue with a Service Object that uses Application ID where editing the object would not display the configured Application IDs
Fix: Fixes an issue with text display on bar charts in Discover and Investigate pages where the graphs would be cluttered with the text overlay
Fix: Fixes various display issues related to DNS and VPC Flow Logs graphs where data was not being displayed properly in Discover -> Discovery Summary page
Fix: Fixes an issue where old Gateway instances are removed from an NLB Target Group prior to the new Gateway instances being fully healthy
Fix: Fixes an issue where an unsuccessful attempt at sending Logs and Events to a 3rd-party SIEM using a Log Forwarding Profile would result in many reachable System Log messages once the connection to the SIEM is successful
Fix: Fixes various display issues related to the Advanced Settings for an AWS Gateway deployment in the Gateway deployment workflow
Fix: Fixes an issue where the Gateway IAM Role selected was resetting to the first available IAM Role when a user navigates forward and then back in the Gateway creation workflow.
Fix: Fixes various display issues with Discover -> Discovery Summary to better utilize real estate
Fix: Fully removes the Investigate -> Flow Logs from the UI. This feature has been deprecated for many releases, but was still represented in the UI. The Flow Logs have been incorporated into the Investigate ->Traffic Summary -> Logs Details view for each session.
Fix: Fixes an issue where a user would not be able to delete a VPC/VNet that no longer existed, but could not be deleted due to the Cloud Account being invalid and the VPC/VNet having managed Spoke VPCs/VNets. With this fix, a user can successfully delete the VPC/VNet no matter whether the Cloud Account is invalid or not.
Fix: Fixes a display issue with the FQDN list view when editing FQDN Filtering Profile. The FQDN list was not being displayed properly.
Fix: Fixes a display issue in the Gateway Details view where the configured Datapath Security Group and Subnet was not being shown
Fix: Fixes a display issue in WAF Advanced Settings for Rule event Filtering to view and configure the Type field
Fix: Fixes a display issue in IDS/IPS and WAF Profiles related to Advanced Settings
Fix: Removes the Diagnostics Profile from the Gateway Creation page as this capability has been deprecated. Generating a diagnostic bundle is available as part of the Gateway Details page.
Fix: Fixes various display issues for DNS and VPC Flow Log charts shown in the Discover dashboard
Fix: Fixes a display issue related to the copy operation of a generated Gateway CMEK policy, where the checkbox confirming successful copy was displayed next to FQDN Filtering
Fix: Fixes the error message for an FQDN Filtering Profile when no Policy (Action) is specified
Fix: Fixes an issue with the Network Intrusion Profile where the Action could not be set to Rule Default
Fix: Fixes an issue when cloning a GCP Service-based Address Object where the Regions where not available via the Region dropdown
Fix: Fixes an issue with the Source in the User Account table view. The source says whether the user is a Local user or an SSO user.
Fix: Fixes a display issue in the Dashboard Cloud Accounts view in large Gateway deployments
Fix: Fixes the policy generation to include the Valtix Controller Role ARN in the generated Gateway CMEK policy
Fix: Updates the default columns for FQDN and URL Filtering Events to show the Policy Name field
Fix: Fixes the FQDN Filtering Profile Details page to remove the Edit column. This column was there unnecessarily.
Fix: Fixes an issue with Terraform export of Network Intrusion (IDS/IPS) and Application Threat (WAF) resources
Fix: Fixes an issue where the Inventory Search dropdown did not operate properly
Fix: Fixes an issue with the Policy Rules Profile refresh button to ensure proper operation
Fix: Fixes a display issue with the Alert Rule table view to display the Alert Service for which the Alert Rule is associated
Fix: Fixes an issue with a Dynamic User-Defined-Tag policy where changes to the Tag of a Security Group was not being recognized by real-time inventory. It was only being recognized by periodic inventory refresh. With the fix, real-time inventory recognizes the Tag change to update the dynamic policy with the results of the change.
Fix: Fixes a display issue where the Deny Response field was not being displayed in the URL Filtering Details page
Fix: Fixes a return status error that would occur when attempting to display a Policy Ruleset that contains a large number of Rules
Fix: Fixes a Leave Page display issue that would be presented when the Policy Ruleset Rules page that contains a large number of Rules was actively being updated
Fix: Fixes a display issue in Manage -> Policy Ruleset view where the checkbox was not being displayed when a Policy Ruleset is applied to a large number of Gateways
Fix: Fixes a display issue in Discover -> VPC view where Top Countries was not showing data
Fix: Fixes the search in Discover -> DNS view where searching on Instance ID did not generate proper results
Fix: Fixes an order of magnitude display issue in Investigate -> Network Analytics -> Stats as part of the enhanced view
Fix: Fixes various UI-related issues when saving a Policy Ruleset with a large number of Rules
Fix: Fixes various UI-related issues for the Investigate -> Topology view to better accommodate Filters and Layers
Fix: Fixes various metrics display issues to accommodate proper display of Gateway statistics in the new Investigate -> Network Analytics -> Stats view
Fix: Fixes System Log and Audit Log Alert integration to send the Log information as a well-defined semi-structured JSON. Previously the Log information was sent as a JSON-formatted string.