New features and enhancements in SNS 4.6.0

Advanced antivirus - New antivirus engine

The advanced antivirus solution, which is accessible as an option on SNS firewalls, is now based on the Bitdefender antivirus engine.

The new antivirus database may take several minutes to download in the following cases:

  • When updating a firewall that uses the advanced antivirus from an SNS 3.x or 4.x version to SNS 4.6, except SNS 4.3 versions from version 4.3.13 onwards as the advanced antivirus is already based on Bitdefender,

  • When switching from ClamAV to the advanced antivirus on a firewall in SNS version 4.6,

  • When a passive firewall switches to active mode after the update of a firewall cluster using the advanced antivirus from an SNS 3.x or 4.x version to SNS 4.6, except SNS 4.3 versions from version 4.3.13 onwards as the advanced antivirus is already based on Bitdefender,

During this interval, the antivirus analysis will fail, and depending on the configuration of the SNS firewall, traffic may be blocked.

If the firewall is updated to a previous version, it will no longer have an antivirus engine. While the operation required to recover the former antivirus engine exists, it is not supported. You can perform it by following the procedure described in the article After a downgrade from a version using Bitdefender, I cannot enable Kaspersky (authentication required).

Telemetry - Antivirus

A new telemetry probe makes it possible to report the number of viruses that the advanced antivirus detected when it is enabled on the firewall.

By sending such data, which remains anonymous, you will be helping Stormshield to improve its future hardware platforms and SNS versions.

More information about telemetry.

Authentication - RADIUS

Support reference 84645

The argument BindMethodExternal was added to the CLI/Serverd command CONFIG AUTH ADVANCED, making it possible to specify which interface on the firewall must be used for sending RADIUS requests.
This configuration can be built by using the CLI/Serverd command sequence:

CONFIG AUTH ADVANCED BindMethodExternal=<interface>
CONFIG AUTH ACTIVATE