Today we've released UTM 9.601. The release will be rolled out in phases.
In phase 1 you can download the update package from our FTP server, in phase 2 we will spread it via our Up2Date servers.
WAF: TLS session tickets facilitate clients to speed up repeated TLS handshakes by re-using certain cipher parameters. This re-use of cipher parameters can cause encrypted connections to be less secure by impacting their perfect forward secrecy. To improve the overall security of the product, TLS session tickets are no longer enabled by the WAF.
@HanspeterHolzer: Cannot confirm this. 2 PPPoE Interfaces in a Cluster Env. working after the update to 9.601 again. While I must state, that it takes pretty long to reestablish connections after the failover. Did you raise a ticket?
9.601 still has a problem with more than two simultaneous PPPoE connections together with activated HA.
As soon as pppd-pppoe tries to establish the last PPPoE connection, we get a strange PPPOE Discovery session with dst ff:ff:ff:ff:ff:ff and shortly after that a node failover, which then turns in to a node failover loop.
With the update 9.601-5 we cannot set email server for notifications, because the WebAdmin reported missing usernames for authentication when authentication is not enabled.
Are there any known issues?
still on 9.510...
still no up2date availability for me. I just checked for up2date packages - no success.