SNS version 4.8.15 LTSB bug fixes

System

GRE tunnels - Maximum Segment Size (MSS) value

Support reference TAC-1214

TCP packets that pass through a GRE tunnel now have the correct MSS value.

Report database backup

Support reference TAC-1028

Backing up the report database may be slow if the database exceeds 25 MB, which can block the firewall update process. A 60-second expiry period has been added to the backup mechanism, to stop penalizing firewall updates.

Proxy - Antivirus

Support reference TAC-1257

Antivirus analysis on messages that use specific headers created by some mail clients, such as Fetchmail, now function properly.

URL classification

Support reference TAC-1356

Shutting down the URL classification engine while URLs are pending classification no longer causes the unexpected disruption of connections that were set up through the proxy.

Logs

Support references TAC-1250 - TAC-1277

Memory corruption issues have been fixed to prevent the log management mechanism from unexpectedly freezing when sending telemetry data.

Active Updates

Support reference TAC-1151

Global objects found on Active Update servers no longer prevent the update mechanism from functioning properly.

Network - Interfaces

Support reference TAC-1320

A DHCP-configured interface that has been disabled no longer appears among the objects derived from the interface: Firewall_interface_name, Firewall_all.

Monitoring - Certificates, CAs and CRLs deployed through SMC

Support reference TAC-1399

The Monitoring module now shows expiry alerts for certificates, CAs and CRLs when they were deployed through SMC.

Hardware

SNi20 - Disk-On-Module storage with SATA interface (SATADOM)

Support reference TAC-1263

To prevent any malfunctions, a firmware update of SATADOMs on SNi20 model firewalls is automatically applied when these firewalls are updated to SNS version 4.8.15.