Fireware 11.12 and WSM 11.12
WatchGuard is pleased to announce the release of Fireware v11.12 and WatchGuard System Manager v11.12. In addition to resolving many outstanding bugs, we’re pleased to announce these new features and functions for our Firebox users:
With Fireware v11.12, we deepen our integration capabilities with ConnectWise, a leading Professional Service Automation tool used by many managed service providers, to add support for the auto-synchronization of asset information, including subscription start and end dates, device serial numbers OS versions, etc., as well as closed-loop ticketing of system, security, and subscription events.
Threat Detection and Response
Built using technology acquired with Hexis, Threat Detection and Response (TDR) is our new cloud hosted security service that detects malware activity, correlates it with network events, and proactively responds to malware on endpoints. This release includes support for TDR, which is currently in Beta. Click here to join the TDR beta program.
With the Geolocation service, you can prevent malware communication and attacks from areas where you never have any need for legitimate business communication. Available as part of your Reputation Enabled Defense (RED) security subscription.
Dynamic VPN Tunnels to Azure
Hybrid cloud environments are becoming much more common, where companies have moved some workloads to cloud services such as AWS or Azure, but some key applications remain on premise. Secure VPN communication is needed between the on premise application and the cloud. Previously we supported only a single static or policy-based tunnel to Azure. Now we add the ability to have multiple tunnels, even with dynamic routes and failover between them.
IPv6 Support in Services and Proxies
WatchGuard firewalls have IPv6 Gold logo certification, but previously application proxies and the full set of security services were not supported. Now customers can apply full range of security services, including WebBlocker for content filtering and APT Blocker and Gateway AV to prevent malware in IPv6 environments.
Services and Proxies Enabled by Default
Customers that buy the appliance with Basic or Total Security Suite often neglect to turn on the security services that they have purchased. Now, services will be enabled by default during the initial setup wizard with a secure set of default settings to save time and simplify the initial setup for everyone.
Gateway Wireless Controller
This release introduces several updates to the Gateway Wireless Controller, including auto channel selection to enable smoother deployments without channel conflict, and a new repeater mode that allows access points to communicate over the air without a physical Ethernet connection.
FireCluster with DHCP on External Interface
If your ISP provides external-facing interface IP addresses by DHCP, you can now enable an active/passive FireCluster to provide high availability.
X-forwarded Information from Header in Logs and Dimension
If a company uses an explicit proxy service or a web gateway, like WebMarshal, all of the information in Dimension shows only the IP address for that proxy. Now we can go a level deeper and find the original source IP address and show this in Dimension, too.
The Release Notes include a comprehensive list of resolved issues, and the What’s New presentation provides a detailed review of the new enhancements.
Does This Release Pertain to Me?
The Fireware release applies to all Firebox T, Firebox M, and all XTM appliances, except XTM 21/21-W, 22/22-W, or 23/23-W.
Software Download Center
Firebox and XTM appliance owners with active support subscriptions can obtain this update without additional charge by downloading the applicable packages from the WatchGuard Software Download Center. Please read the Release Notes before you
upgrade to understand what’s involved.