On 21 December, WatchGuard released Fireware v11.12 Update 1, a maintenance update for Fireware v11.12 that resolves several outstanding issues.For information about the issues resolved in the Update 1 release, see Enhancements and Resolved Issues. We have updated these release notes for Fireware v11.12 Update 1 but most information related to Fireware v11.12 remains the same.

 

Fireware 11.12 and WSM 11.12

WatchGuard is pleased to announce the release of Fireware v11.12 and WatchGuard System Manager v11.12. In addition to resolving many outstanding bugs, we’re pleased to announce these new features and functions for our Firebox users:

ConnectWise Integration

With Fireware v11.12, we deepen our integration capabilities with ConnectWise, a leading Professional Service Automation tool used by many managed service providers, to add support for the auto-synchronization of asset information, including subscription start and end dates, device serial numbers OS versions, etc., as well as closed-loop ticketing of system, security, and subscription events.

Threat Detection and Response

Built using technology acquired with Hexis, Threat Detection and Response (TDR) is our new cloud hosted security service that detects malware activity, correlates it with network events, and proactively responds to malware on endpoints. This release includes support for TDR, which is currently in Beta. Click here to join the TDR beta program.

Geolocation Service

With the Geolocation service, you can prevent malware communication and attacks from areas where you never have any need for legitimate business communication. Available as part of your Reputation Enabled Defense (RED) security subscription.

Dynamic VPN Tunnels to Azure

Hybrid cloud environments are becoming much more common, where companies have moved some workloads to cloud services such as AWS or Azure, but some key applications remain on premise. Secure VPN communication is needed between the on premise application and the cloud. Previously we supported only a single static or policy-based tunnel to Azure. Now we add the ability to have multiple tunnels, even with dynamic routes and failover between them.

IPv6 Support in Services and Proxies

WatchGuard firewalls have IPv6 Gold logo certification, but previously application proxies and the full set of security services were not supported. Now customers can apply full range of security services, including WebBlocker for content filtering and APT Blocker and Gateway AV to prevent malware in IPv6 environments.

Services and Proxies Enabled by Default

Customers that buy the appliance with Basic or Total Security Suite often neglect to turn on the security services that they have purchased. Now, services will be enabled by default during the initial setup wizard with a secure set of default settings to save time and simplify the initial setup for everyone.

Gateway Wireless Controller

This release introduces several updates to the Gateway Wireless Controller, including auto channel selection to enable smoother deployments without channel conflict, and a new repeater mode that allows access points to communicate over the air without a physical Ethernet connection.

FireCluster with DHCP on External Interface

If your ISP provides external-facing interface IP addresses by DHCP, you can now enable an active/passive FireCluster to provide high availability.

X-forwarded Information from Header in Logs and Dimension

If a company uses an explicit proxy service or a web gateway, like WebMarshal, all of the information in Dimension shows only the IP address for that proxy. Now we can go a level deeper and find the original source IP address and show this in Dimension, too.

The Release Notes include a comprehensive list of resolved issues, and the What’s New presentation provides a detailed review of the new enhancements.

Does This Release Pertain to Me?
The Fireware release applies to all Firebox T, Firebox M, and all XTM appliances, except XTM 21/21-W, 22/22-W, or 23/23-W.

Software Download Center
Firebox and XTM appliance owners with active support subscriptions can obtain this update without additional charge by downloading the applicable packages from the WatchGuard Software Download Center. Please read the Release Notes before you
upgrade to understand what’s involved.

Fireware 11.11.4 and WSM 11.11.4

WatchGuard is pleased to announce the General Availability (GA) of new updates for Fireware, WSM, available now at the software download site.  These releases include many important bug fixes, and some small enhancements:

• Support for Perfect Forward Secrecy (PFS) ciphers, which are the most secure options available for TLS protocols.
• Localization into French, Spanish, and Japanese languages.

The Release Notes include a comprehensive list of resolved issues, and the What’s New presentation provides a detailed review of the new enhancements.

Note: This release also adds support for new AP120 and AP320 wireless access points.Training and product launch
material will be available in early September.

Does This Release Pertain to Me?
The Fireware release applies to all Firebox T, Firebox M, and all XTM appliances, except XTM 21/21-W, 22/22-W, or 23/23-W.

Software Download Center
Firebox and XTM appliance owners with active support subscriptions can obtain this update without additional charge by downloading the applicable packages from the WatchGuard Software Download Center. Please read the Release Notes before you
upgrade to understand what’s involved.

The WatchGuard Team