CyberEdge Version 0.15
0.15.3
Available 12th September, 2023
Enhancements
Feature |
Description |
|---|---|
| Safe Search | Safe Search now applies to the Microsoft Edge sidebar search function |
| High Availability | Improvements to the CyberEdge cluster join process, reducing the time taken to create a cluster and increase reliability of the operation |
| High Availability | The default CyberEdge HA fail back delay configuration has been increased to 60 seconds to reduce unnecessary fail back events. HA fail back behavior is configurable via System > Nodes > High Availability Settings |
| Authentication | Improved the performance of authentication provider groups listing for networks with very large group numbers |
| Generated Reports | The username has been added to all CyberEdge default reports. When no username is available, the source IP address will be listed |
| LiveZone | The CyberEdge inspection CA download link within LiveZone now provides a .crt file format to allow improved compatibility for client operating systems |
| LiveZone | Small UI updates to the LiveZone MFA setup page |
| Reporting | Small improvements to the CyberEdge reporting user interface and YouTube analytics to support improved readability of event data |
| LiveZone | LiveZone database enhancements in preparation for the upcoming Classroom Control feature enhancement |
Resolutions
Feature |
Description |
|---|---|
| Authentication | Improvements to the RADIUS pass-through service to increase the performance for authentication session creation in large networks |
| Network Tools | Resolved an issue when displaying the Connection name in network tools |
| LiveZone | Resolved an issue with the LiveZone certificate checker that could result in it incorrectly determining if the inspection CA is installed correctly |
| LiveZone | Resolved an issue with LiveZone where some users could not log in where they had been given permissions to query large numbers of user groups |
0.15.2
Available 30th August, 2023
Enhancements
Feature |
Description |
|---|---|
| Reporting | Improvements to the reporting event viewer user interface |
| LiveZone | Improvements to the LiveZone user interface |
| LiveZone | LiveZone now displays the reason a user was restricted for users with relevant permissions |
| LiveZone | Device restriction events created by LiveZone are now listed in a new data source |
| Notifications | Email notifications are now sent to the system administrator when the reporting event database storage is low |
| Authentication | The Microsoft Active Directory (AD) provider group import function has been improved to better facilitate group imports from directories containing very large numbers of groups |
| Authentication | A new FortiGate Pass-through Authentication plugin has been introduced allowing user authentication sessions to be created automatically when a user successfully authenticates against a FortiGate NGFW |
Resolutions
Feature |
Description |
|---|---|
| Reporting | Resolved an issue when selecting a "ban action" in the IP Ban data source query |
| Reporting | Resolved an issue in reporting event views where column sorting did not always apply correctly |
| Reporting | Resolved an issue with report generation that could prevent reports from being created and sent as intended |
| Notifications | Resolved an issue with the update failure email for invalid Custom Categories failing to provide details on the affected Categories |
| Firewall | Resolved an issue with New Connection Rate Limiting counting for connections were scanned by IPS |
| Client VPN | Resolved an issue with the Client-to-Site VPN configuration file not importing into the VPN client version 3.4.0 or greater |
0.15.1
Available 25th July, 2023
Major Enhancements
Feature |
Description |
|---|---|
| Client VPN | Multi-Factor (MFA) authentication has been added to the Client to Site VPN, utilizing a OTP code generated by an Authenticator App. Recommended Authenticator Apps include Microsoft Authenticator, Google Authenticator and Authy. When MFA is enabled, it applies globally to all users requiring Client to Site VPN Access. To enable MFA go to Networks > Client to Site VPN > Enable MFA |
| Client VPN | A network administrator can view and reset users MFA account via Status > MFA Users |
| RoamSafe VPN | Roamsafe iPadOS VPN has been added to support Apple's iPadOS Always on VPN (L2TP). To enable and configure go to Roamsafe > iPadOS VPN |
| LiveZone | LiveZone has been enhanced with a new "Profile" option allowing a user to setup the MFA Authenticator. To setup MFA, go to https://live.localnetwork.zone > Profile and follow the setup process |
Enhancements
Feature |
Description |
|---|---|
| IPSec | Additional IPsec status information has been added to provide more details for IPsec connections |
| IPSec | IPsec cipher upgrade to support NIST ECP ciphers for DH groups and PFS settings to provide better integration with Azure, AWS and Oracle services |
| Notifications | Automated email notifications are now sent when CyberEdge licensing is due to expire |
| Client VPN | Client to Site VPN Access controls can now be configured by a user's group |
| MTP relay test and log viewing has been added. To view SMTP logs go to Status > Log Viewer | |
| Reporting | Reporting UI enhancements to allow columns to be resized and re-ordered |
| Generated Reports | Leadership overview report has been enhanced with additional data and improved formatting |
| Web Filtering | Web categorization now has improved handling for very long and invalid domain names |
| Management UI | Reporting configuration has been relocated to a new sidebar menu item to provide improved user experience |
| Management | Report scheduling has been moved to Reporting > Scheduled Reports |
| Management UI | Reporting application access controls have been moved from System > General to Reporting > General |
| Management UI | Reporting event data can now be better managed by the network administrator. To view go to Reporting > Storage. Note; for long term storage of events, remote log forwarding should be configured via System > Log Forwarding |
| Management UI | Reporting event data can now be cleared manually by the network administrator if required |
| LiveZone | LiveZone Device restriction has been added, allowing users with permissions the ability to restrict device access as needed |
| LiveZone | New event data is now available to review user, device and the reason devices that have been restricted |
| Networking | Added support for VRRP IP's to be configured in port forward and IPsec configurations |
| LiveZone | A new restricted block page has been added, allowing users to clearly identify being blocked by an active intentional restriction rather than a system defined Access Policy |
| Certificates | Added support for the CyberEdge to trust certificates of upstream proxies to facilitate upstream HTTPS inspection. To configure a certificate for use go to Security Centre > General |
| High Availability | Improvements to the HA cluster join process |
| Performance | Improved network performance for CyberEdge HR, HR2 and HR3 series appliances with 10G and 40G network connections |
Resolutions
Feature |
Description |
|---|---|
| Firewall | Improved validation on custom categories domain list inputs and updated existing entries to the correct format |
| Firewall | Improved the performance of firewall fast path rules when extremely large GEO IP lists have been configured in a policy |
| DHCP Server | Validation has been added to DHCP configuration to ensure only one DHCP pool can be configured per connection |
| SafeSearch | Resolved a caching issue for YouTube Restricted Mode and SafeSearch that could prevent group exclusions being respected as intended |
| Management UI | Resolved an issue with password fields resetting to empty while entering a password |
| High Availability | Resolved an issue that could result in the Client to Site VPN Service not starting correctly after a HA node failover event |
| Routing | Resolved an issue with SNAT rules when a connection has static routes defined |
| Networking | Resolved an issue with PPPoE connections within Balance and Failover not displaying its current status correctly |