IMPORTANT
SNS 3.x versions have reached End of Maintenance since July 1st, 2024.
We recommend that you update your SNS firewalls to a version with maintenance to guarantee the protection of your infrastructure.
New features in SNS 3.11.3 LTSB
Firewalls must not be upgraded from SNS in version 3.10.x or 3.11.x LTSB to a 4.0.x version. This operation is not supported.
For further information, refer to Recommendations.
System
Log out when idle
The super administrator can now restrict how long administrator accounts stay idle on the firewall. The administrators of these accounts can still define a timeout for their own accounts, but the duration cannot exceed the one defined by the super administrator.
IPSEC VPN - System events
The SNS firewall can now generate a system event when the VPN tunnel fails to set up due to a network issue. This event can be exported through SNMP traps.
Obsolete features
IPsec VPN - Obsolete authentication and encryption algorithms
As some algorithms are obsolete, vulnerable and will be phased out in a future version of SNS, a warning message now appears to encourage administrators to modify their configurations. The algorithms in question are:
- Authentication algorithms: md5, hmac_md5 and non_auth,
- Encryption algorithms: blowfish, des, cast128 and null_enc.
This message appears when these algorithms are used in the profiles of IPsec peers.