New features and enhancements in SNS 4.7.5

Link aggregation - Support for broadcast mode

As of SNS version 4.7.5, packets can be sent and received over all links included in an aggregate (broadcast mode).

Do note that the device that is connected to the firewall's aggregated interfaces in broadcast mode must support such communications:

• Either by having one active interface and a second passive interface (main/backup),
• Or by ignoring frames that originate from one of the links.

This configuration can only be created by directly editing the firewall's ConfigFiles/network network configuration file, and setting the Laggmode token to broadcast, then confirming changes with the ennetwork command.

DCERPC protocol

UUIDs have been added to the list of known UUIDs in the DCERPC protocol analysis engine:

• '0b6edbfa-4a24-4fc6-8a23-942b1eca65d1': 'IRPCAsyncNotify',
• '1c1c45ee-4395-11d2-b60b-00104b703efd': 'IwbemFetchSmartEnum',
• '3dde7c30-165d-11d1-ab8f-00805f14db40': 'BackupKey',
• '423ec01e-2e35-11d2-b604-00104b703efd': 'IwbemWCOSmartEnum',
• 'ae33069b-a2a8-46ee-a235-ddfd339be281': 'IRPCRemoteObject',
• 'd4781cd6-e5d3-44df-ad94-930efe48a887': 'IwbemLoginClientID',
• 'f6beaff7-1e19-4fbb-9f8f-b89e2018337c': 'Eventlog'.

TLS protocol

Support reference 85368

TLS protocol analyses can now be disabled after setting up the connection, to improve performance when high volumes of traffic must be processed.

High availability - System node name

When a system node name has been set for members of a cluster, the name will be specified in brackets in the following selection fields:

• Configuration > System update tab > System update: Select the firewall to update field,
• Configuration > Configuration tab > Maintenance > Reboot/Shut down the firewall field,
• Configuration > Configuration tab > High availability > Make a firewall stay active.