Advisory: Support Portal Maintenance. Login is currently unavailable, more info available here.
Today we've released UTM 9.601. The release will be rolled out in phases.
In phase 1 you can download the update package from our FTP server, in phase 2 we will spread it via our Up2Date servers.
WAF: TLS session tickets facilitate clients to speed up repeated TLS handshakes by re-using certain cipher parameters. This re-use of cipher parameters can cause encrypted connections to be less secure by impacting their perfect forward secrecy. To improve the overall security of the product, TLS session tickets are no longer enabled by the WAF.
9.601 still has a problem with more than two simultaneous PPPoE connections together with activated HA.
As soon as pppd-pppoe tries to establish the last PPPoE connection, we get a strange PPPOE Discovery session with dst ff:ff:ff:ff:ff:ff and shortly after that a node failover, which then turns in to a node failover loop.