CyberEdge Version 0.14
0.14.4
Available 8th June, 2023
Enhancements
Feature |
Description |
|---|---|
| Reporting | Improved reporting permission names and order listing to improve user experience when configuring roles |
| System | Introduced HTTP to HTTPS redirects for the Management UI, Reporting and LiveZone |
| Reporting | Updates to the Reporting user interface to improve user experience |
| LiveZone | Updates to the LiveZone user interface to improve user experience on desktop and mobile view |
| Firewall | Improvements to the CyberEdge new connection rate limit system |
| Notifications | An email notification, including resolution information, is now sent to system administrators if firmware updates cannot be completed successfully due to configuration errors |
| System | Improved handling on reporting data storage utilization. Network traffic events older than 6 week will be dropped when free space reaches 10%. Note; Customers requiring long term storage of event data are encouraged to utilize log forwarding. To enable log forwarding go to System > Log Forwarding and configure a remote syslog target. In addition, longer retention periods can be achieved on the CyberEdge by reviewing Access Policy logging configurations and disable event logging on policies blocking common things, such as Ads or app stores |
| Authentication | Improved stability of the Zone Access Authentication system |
Resolutions
Feature |
Description |
|---|---|
| Reporting | Updated IPS event logging to correctly show Block events and not Pass events |
| Reporting | Resolved an issue in Reporting that could result in data not being shown correctly when switching between preset and custom time ranges |
| Firewall | Resolved an issue that could incorrectly result in IP's being banned due to hitting connection rate limits. Note system administrators should go to Security Centre > General > New Connection Rate Limits and update the configuration. Recommended: New Connection rate limit 8000, Initial time to ban 1min and Repeat time to ban 10 mins |
| Authentication | Resolved an issue that could significantly limit the number of users supported using local providers |
| Notifications | Content scanning email notifications now include the term searched by the user. The full URL has been removed from the email to simplify data and reduce issues caused by the email client. Note, full URL data is available via Reporting |
| LiveZone | Resolved an issue that could prevent LiveZone being published on a customer port and being restricted to configured networks or zones |
| System | Resolved an issue that could prevent updates from working after a failed update due to a system administrator configuration error |
| Authentication | Resolved an issue with user authentication session timeouts that could result in user data not being stored against reporting event |
| Permissions | Resolved an issue with reporting permissions that would prevent users from having access to event types allowed by the assigned permissions |
0.14.3
Available 15th May, 2023
Major Features
Feature |
Description |
|---|---|
| LiveZone | A new LiveZone portal has been introduced allowing a dashboard view of internet usage of permitted users |
| LiveZone | LiveZone access can now be configured to utilise Microsoft Azure or Google Single Sign On. For information on how to configure SSO, go here |
| LiveZone | SpeakUp has been added to the LiveZone portal allowing users to submit welfare issues for review |
| Reporting | Reporting has been enhanced to include SpeakUp data as a new event source to allow the improved analysis of welfare issues |
Enhancements
Feature |
Description |
|---|---|
| Reporting | The reporting application now provides additional query conditions, allowing more flexibility when querying event data within the system |
| Permissions | Roles based permissions have been added to control access to the LiveZone portal, users and groups |
| Networking | Added support for VLANs on bonded adapters |
| Reporting | Fast path policies with allow or reject actions will now have their actions correctly recorded in access policy events |
Resolutions
Feature |
Description |
|---|---|
| DHCP | Resolved an issue where DNS settings were not being pushed correctly for DHCP static leases |
| Log Forwarding | Log forwarding now handles setting up duplicate destinations with identical host and port settings |
Known Issues
- LiveZone is not accessible on non-local connections, and must not be configured to share a custom port with Reporting. This will be fixed in the next upcoming release
0.14.2
Available 12th April, 2023
Resolutions
Feature |
Description |
|---|---|
| Reporting | Resolved an issue with reporting database that could cause missing data |
| System | Resolved an issue where new zone names including special characters could prevent configuration changes being applied correctly |
| Management UI | Update to the graphing library for CyberEdge reporting application |
0.14.1
Available 11th April, 2023
Enhancements
Feature |
Description |
|---|---|
| System | System administrators can now purge archived log data at any time via the CyberEdge CLI. Note, this does not affect reporting events data |
| System Logging | Zone Access authentication logs have been enhanced to provide better visibility on user logins and passthrough authentication attempts to the network |
| System Logging | Access logs for the Management, Reporting and LiveZone applications are now consolidated into UI Access Logs (renamed from HTTP Service). To view UI Access Logs go to Status > Log Viewer > UI Access Logs |
| Log Forwarding | Log forwarding has been updated to reflect the log changes. Users should check log forwarding configurations. To configure log forwarding go to System > Log Forwarding |
Resolutions
Feature |
Description |
|---|---|
| System Updates | Resolved an issue that could affect automatic update jobs from executing as intended |
| Management UI | Resolved an issue with the Management UI Dashboard widgets that resulted in excessive memory use of the client machine |
| Proxy | Improvements to the proxy service that significantly reduces memory utilization |
| Proxy | Improvements to the proxy service to enhance overall performance of the CyberEdge |
| Proxy | Improvements to the proxy service to reduce intermittent TLS connection failures |
| Reporting | Resolved an issue in reporting event data where changes to the full name of a user in local providers was not being updated correctly |
0.14.0
Available 11th April, 2023
MAJOR RELEASE
Major Features
Feature |
Description |
|---|---|
| Firewall | A new Access Policy sub action has been added to allow network administrators to ban devices that match policies by IP |
| Firewall | Fast Path policies now allow the specification of domain names, which are automatically resolved via DNS to the respective IP |
| Firewall | A new application signature has been added NAPLAN |
| System Logging | Added the ability for network administrators to run ping and packet captures within the management user interface |
| Reporting | A new data source has been added to the _reporting_user interface to display banned devices. Data includes IPs banned by both connection rate limiting and access policies |
| Generated Reports | Added the new Leadership Overview Report to provide enhanced reporting detail |
| Authentication | Added support for Google SSO. Google SSO can be used to authenticate users to the network via the captive portal and control access to the reporting user interface |
| Authentication | Added support for Microsoft Azure SSO. Microsoft Azure SSO can be used to authenticate users to the network via the captive portal and control access to the reporting user |
| Authentication | Added support for Google LDAP as an Authentication Provider |
| Web Filtering | Added the ability for network administrators to run domain categorization checks |
| Reporting | new YouTube analytics data source has been added to provide enhanced reporting on YouTube traffic |
Note
- When YouTube analytics is enabled, YouTube content will be automatically HTTPS inspected. As a result, some devices may need to be bypassed from HTTPS inspection which can be done by Zone or Network. You should ensure that HTTPS inspection certificates have been deployed prior to enabling YouTube analytics
- CyberEdge's automatic update system does not install major releases. Network administrators can schedule a major release update via System > Updates
Enhancements
Feature |
Description |
|---|---|
| Authentication | Added a verify button to test various Passthrough authentication methods |
| Authentication | Added an option to enable/disable nested group resolution where it is not required, which improves group resolution speed significantly |
| UI Updates | UI enhancements to the captive portal with added support for Google and Microsoft SSO |
| Firewall | GeoIP database distribution process has been improved to ensure faster updates |
| High Availability | Improved user feedback around joining and leaving a HA cluster |
| Reporting | The reporting user interface is now serialized to the page URL, allowing for sharing links to reporting data more easily |
| Reporting | Reporting has been enhanced to add a user's full name to all data sources where it is recorded |
| Reporting | Enhanced report styling to provide better feedback to the user on data |
| Firewall | General performance improvements to the firewall packet processing engine and authentication system |
Resolutions
Feature |
Description |
|---|---|
| Management UI | Resolved an issue to prevent network administrators creating a management interface subnet too small to connect to |
| Management UI | Added validation to ensure Port Forwards are not overlapping protected CyberEdge systems |
| Reporting | Resolved an issue where user group information was not being recorded for IPS events |
| Proxy | Resolved issues connecting to HTTP/2 only web servers |