IMPORTANT
SNS 3.x versions have reached End of Maintenance since July 1st, 2024.
We recommend that you update your SNS firewalls to a version with maintenance to guarantee the protection of your infrastructure.
New features in SNS 3.7.15 LTSB
System
Log out when idle
The super administrator can now restrict how long administrator accounts stay idle on the firewall. The administrators of these accounts can still define a timeout for their own accounts, but the duration cannot exceed the one defined by the super administrator.
High availability
NAT rules with ARP publication
In high availability configurations, firewalls may send a Gratuitous ARP for all their interfaces in order to maintain traffic routing, so that the network can be informed whenever the location of a MAC address changes.
This operating mode has been improved so that all virtual IP addresses from an ARP publication of a NAT rule will send a Gratuitous ARP during a switch.
Obsolete features
IPsec VPN - Obsolete authentication and encryption algorithms
As some algorithms are obsolete, vulnerable and will be phased out in a future version of SNS, a warning message now appears to encourage administrators to modify their configurations. The algorithms in question are:
- Authentication algorithms: md5, hmac_md5 and non_auth,
- Encryption algorithms: blowfish, des, cast128 and null_enc.
This message appears when these algorithms are used in the profiles of IPsec peers.