Letzte Aktualisierung am 22.09.2019, 15:09:13 Uhr
Am 26.06.2014 erschien für Barracuda NG Firewall, Firmware 5.4.3 ein größeres CUP unter der Namen Hotfix 619.
Fixed Bug: BNNGF-23914
Case ID/s: –
Summary: Cumulative update package for 5.4.3
Affected Modules: Box, Network, Firewall, VPN, DNS, Dynamic Routing, Proxy, CC, Authentication
Installable Release: 5.4.3
Included in Patch: 5.4.4
Installation on single Boxes: yes
Installation on CC-administered Boxes: yes
Installation on CC-Boxes: yes
This cumulative hotfix-patch fixes the following issues:
– A statistics cooking issue causing high system I/O load. (BNNGF-20689)
– UMTS modem connection issues. (BNNGF-19722)
– DNS service stopped answering requests and logging file permission (/etc/rncd.key) warning messages. (BNNGF-21095)
– A potential security vulnerability in the Firewall Authentication service (fwauth). (BNNGF-23651)
– Issue with NG SSL VPN users being members of a large number of groups. (BNNGF-22806)
– The NG SSL VPN service occasionally got terminated. (BNNGF-23832)
– Rendering problems when accessing the NG SSL VPN service on Google Chrome browsers. (BNNGF-23768)
– An L2TP VPN NAT traversal (NAT-T) issue with MS Windows XP. (BNNGF-23219)
– An IPsec VPN (XAuth & PSK) NAT traversal (NAT-T) issue with devices sharing the same public IP address (NATed devices). (BNNGF-23910)
– Changes in the OSPF/RIP/BGP service could not be activated when entering OSPF Area IDs in dotted quad notation format. (BNNGF-23780)
– Fatal box crashes (‚pskb_expand_head+0xae/0x2c0‘). (BNNGF-20689)
– Several WANOPT related service issues. (BNNGF-22769, BNNGF-23439)
– A dead lock issue related with the Firewall’s IPS engine. (BNNGF-22914)
– The maximum password length for NG SSL VPN users was increased to 60 characters. (BNNGF-23783)
– Removed a debug message box in the ‚Access Rights Query‘ page of the NG SSL VPN configuration on a NG Control Center. (BNNGF-23812)
– BGP sessions got disconnected after changes in the BGP configuration. (BNNGF-21556)
– MS Active Directory authentication issue when authenticating with username and domain. (BNNGF-23605)
– Several OpenSSL vulnerabilities (BNNGF-23986)
– SSL inspection AV issues
– An OSPF active interface issue (BNNGF-23979)
– A BGP activate issue where a BGP neighbor was not added to the neighbors list (BNNGF-23995)
– Fixes content rewrite for Microsoft Sharepoint in SSL-VPN (BNNGF-22829)
– Fixes a rare crash related to ITV detection (BNNGF-24033)
– Fixes not working Microsoft product activation if SSL-Interception is active (BNNGF-24029)
Folgenden Hotfixes sind in diesem CUP enthalten:
1) 604 (dns-604-5.4.3-69577.tgz)
2) 606 (fwauth-606-5.4.3-69895.tgz)
3) 611 (phibs-611-5.4.3-70582.tgz)
4) 605 (sslvpn-605-5.4.3-69637.tgz)
5) 612 (sslvpn-612-5.4.3-70302.tgz)
6) 618 (OpenSSL-618-5.4.3-70917.tgz)
Hinweis: Nach der Hotfix Installation startet möglicherweise die Box automatisch.
Dem ist leider nicht so. Bei allen unseren F100b mussten die Boxen manuell neugestartet werden, da der DHCP-Service nicht mehr funktionierte.