IMPORTANT
SNS 3.x versions have reached End of Maintenance since July 1st, 2024.
We recommend that you update your SNS firewalls to a version with maintenance to guarantee the protection of your infrastructure.
New features and enhancements in SNS 3.11.18
System
Synchronization of the object database with DNS servers
Support reference 66537
The automatic synchronization of the object database with DNS servers configured on the SNS firewall can now be enabled/disabled or modified in terms of synchronization frequency.
These operations can only be performed using the following CLI/serverd commands:
- CONFIG OBJECT SYNC STATE=<0|1> to disable/enable synchronization respectively,
- CONFIG OBJECT SYNC UPDATE period=<period> to change how frequently updates will be launched, between one minute and one day inclusive (e.g., period=6h5m4s).
These changes must be confirmed with the command CONFIG OBJECT SYNC ACTIVATE to be applied.
Intrusion prevention
Multicast IP addresses presented as source addresses
Support reference 84041
A new alarm "Multicast IP src packet" (alarm ip:755), which makes it possible to block by default packets that present a multicast address as a source address, has been added to the intrusion prevention engine.