{"id":2808,"date":"2017-04-16T17:04:19","date_gmt":"2017-04-16T15:04:19","guid":{"rendered":"https:\/\/www.boc.de\/watchguard-info-portal\/?p=2808"},"modified":"2017-06-27T14:37:34","modified_gmt":"2017-06-27T12:37:34","slug":"neues-software-release-fireware-11-12-2-und-wsm-11-12-2","status":"publish","type":"post","link":"https:\/\/wordpress.boc.de\/watchguard-info-portal\/2017\/04\/neues-software-release-fireware-11-12-2-und-wsm-11-12-2\/","title":{"rendered":"Neues Software Release Fireware 11.12.2 und WSM 11.12.2"},"content":{"rendered":"<h3>Seit wenigen Tagen ist das Fireware Release \u00a0v11.12.2 verf\u00fcgbar.<\/h3>\n<h4>Wichtig &#8211; zur Beachtung:<\/h4>\n<ul>\n<li>PFS bei TLS und HTTPS-DPI wurde nun auch f\u00fcr T10\/30\/50 &amp; XTM-33 konfigurierbar<\/li>\n<li>verbesserter Support f\u00fcr VPN zu Amazon AWS<\/li>\n<li>F\u00fcr APs wurde ein Truststore eingef\u00fchrt &#8211;\u00a0neue APs m\u00fcssen einzeln den &#8220;trusted&#8221; Status erhalten (Firebox System Manager =&gt; Gateway Wireless Controller =&gt; bei den Aktionen).<\/li>\n<li>L\u00e4ngere Mindest-L\u00e4nge der AP-Passphrases<\/li>\n<li>\u00c4nderungen bei Port 4100 Authentication Policy, bitte nach Update pr\u00fcfen, ob die Policy noch so eingetstellt ist, wie man Sie konfiguriert hat, insbesondere bei Verwendung von Any-External.<\/li>\n<\/ul>\n<p><!--more--><\/p>\n<h3>Enhancements and Resolved Issues in Fireware v11.12.2<\/h3>\n<h3>General<\/h3>\n<ul>\n<li value=\"1\">Single TCP stream now provides the expected throughput on a Firebox M440. <span class=\"NumContinued\">[FBX-380]<\/span><\/li>\n<li value=\"2\">This release includes improvements to reduce CPU usage when Management Tunnels are established over SSL. <span class=\"NumContinued\">[FBX-2087, FBX-2085, 93080]<\/span><\/li>\n<li value=\"3\">This release resolves an issue that caused IKED to crash after internal hash table corruption. <span class=\"NumContinued\">[FBX-1906, 92942]<\/span><\/li>\n<li value=\"4\">Various process crashes have been fixed in this release. <span class=\"NumContinued\">[92706, FBX-2751, 92684]<\/span><\/li>\n<li value=\"5\">ConnectWise now creates new tickets when a user removes the default &#8220;Quick Response\u201d priority type. <span class=\"NumContinued\">[FBX-1821]<\/span><\/li>\n<li value=\"6\">This release resolves a kernel crash that occurred after a FireCluster failover. <span class=\"NumContinued\">[92667, 92230]<\/span><\/li>\n<li value=\"7\">A Certd process crash has been fixed. <span class=\"NumContinued\">[FBX-1167, 92526]<\/span><\/li>\n<li value=\"8\">A problem that caused some websites to fail to load with a &#8220;content decoding error&#8221; has been resolved in this release. <span class=\"NumContinued\">[FBX-2410]<\/span><\/li>\n<li value=\"9\">Policies that include a VLAN name in the <b>From<\/b> or <b>To<\/b> field no longer fail after you change the VLAN name. <span class=\"NumContinued\">[92966]<\/span><\/li>\n<li value=\"10\">The Firebox XML-RPC agent no longer returns different responses to login requests that contain valid and invalid usernames. <span class=\"NumContinued\">[FBX-1654]<\/span><\/li>\n<li value=\"11\">This release resolves an issue that caused wgagent to crash while processing an invalid XML-RPC request. <span class=\"NumContinued\">[FBX-1765]<\/span><\/li>\n<\/ul>\n<h3>Proxies and Services<\/h3>\n<ul>\n<li value=\"1\">Perfect Forward Secrecy (PFS) ciphers are now available in HTTPS\u00a0and SMTP\u00a0proxies for Firebox T10, T30, T50, XTM 25\/26, and XTM 33 models. <span class=\"NumContinued\">[FBX-2020, 93045]<\/span><\/li>\n<li value=\"2\">The Blocked Sites Exceptions list now includes default FQDN exceptions for servers required for WatchGuard products and subscription services.\u00a0<span class=\"NumContinued\">[FBX-1416, 92658]<\/span><\/li>\n<li value=\"3\">The HTTP proxy process no longer crashes when inflating data from web pages with content-encoding set to gzip or deflate. <span class=\"NumContinued\">[93220, FBX-2729]<\/span><\/li>\n<\/ul>\n<h3>Authentication and Single Sign-On (SSO)<\/h3>\n<ul>\n<li value=\"1\">You can now configure lockout settings for all user accounts that use Firebox authentication to protect user accounts from brute force attempts to find the user account login credentials. <span class=\"NumContinued\">[FBX-417, 45021, 67544, 45551]<\/span><\/li>\n<li value=\"2\">You can now limit the number of devices that can connect to a Hotspot at the same time for each guest user account. <span class=\"NumContinued\">[FBX-433, 82879]<\/span><\/li>\n<li value=\"3\">The SSO\u00a0client for Mac OS now supports nested groups. <span class=\"NumContinued\">[FBX-1484, 92726]<\/span><\/li>\n<li value=\"4\">WatchGuard Single Sign-On and Terminal Services components are now officially supported on Windows Server 2016. <span class=\"NumContinued\">[FBX-1153, 92398]<\/span><\/li>\n<li value=\"5\">The SSO Client installer now creates a Windows firewall exception. <span class=\"NumContinued\">[FBX-1763, 91373]<\/span><\/li>\n<li value=\"6\">Terminal Services support for manual Single Sign-On authentication now includes Citrix XenApp 7.12. <span class=\"NumContinued\">[FBX-1628, 90170]<\/span><\/li>\n<li value=\"7\">When you associate a user with more than 256 authentication groups, the Firewalld process no longer crashes. <span class=\"NumContinued\">[93152, FBX-2681]<\/span><\/li>\n<\/ul>\n<h3>VPN<\/h3>\n<ul>\n<li value=\"1\">BOVPN Virtual Interface now supports an IPSec VPN tunnel to an Amazon AWS virtual private cloud (VPC). <span class=\"NumContinued\">[FBX-110, 41534]<\/span><\/li>\n<li value=\"2\">You can now specify a different pre-shared key for each gateway endpoint for the same branch office VPN gateway. <span class=\"NumContinued\">[FBX-1290, FBX-1292]<\/span><\/li>\n<li value=\"3\">In Fireware Web UI, the VPN Statistics System Status page has a new Statistics tab that shows bandwidth and tunnel statistics over time. <span class=\"NumContinued\">[FBX-1728]<\/span><\/li>\n<li value=\"4\">The Global VPN setting <b>Enable TOS for IPSec<\/b> is now correctly applied to BOVPN traffic configured to use a Virtual Interface (VIF). <span class=\"NumContinued\">[FBX-2349]<\/span><\/li>\n<li value=\"5\">Mobile VPN with IPSec no longer fails to reconnect after a non-graceful disconnection. <span class=\"NumContinued\">[92935, FBX-2195]<\/span><\/li>\n<li value=\"6\">The use of many BOVPN Virtual Interfaces no longer causes a kernel crash. <span class=\"NumContinued\">[93193, FBX-2755]<\/span><\/li>\n<li value=\"7\">This release resolves an issue with Mobile VPN with SSL that caused incorrect DNS resolution on Windows 10 clients. <span class=\"NumContinued\">[88918]<\/span><\/li>\n<li value=\"8\">This release updates the Mobile VPN\u00a0with IPSec client for Mac OS\u00a0X to add support for Mac OS Sierra.<\/li>\n<li value=\"9\">This release updates the Mobile VPN\u00a0with IPSec client to resolve an issue related to missing DNS\u00a0server IP\u00a0address information. <span class=\"NumContinued\">[90324]<\/span><\/li>\n<\/ul>\n<h3>Wireless<\/h3>\n<ul>\n<li value=\"1\">Gateway Wireless Controller now supports management of AP322 outdoor AP\u00a0devices. <span class=\"NumContinued\">[FBX-100, FBX-1270]<\/span><\/li>\n<li value=\"2\">The default wireless security mode for AP devices locally managed by a Gateway Wireless Controller and wireless-capable Firebox devices is now WPA2-only (PSK) with AES encryption. <span class=\"NumContinued\">[FBX-1974, 93047]<\/span><\/li>\n<li value=\"3\">This release includes several other important security-related enhancements to Gateway Wireless Controller. See the <a href=\"https:\/\/www.watchguard.com\/support\/release-notes\/fireware\/11\/en-US\/EN_ReleaseNotes_Fireware_11_12_2\/Content\/Fireware\/en-US\/upgrade_notes.html\">Upgrade Notes<\/a> topic for important information related to these enhancements. <span class=\"NumContinued\">[FBX-111]<\/span><\/li>\n<\/ul>\n<h3>Networking and Modem Support<\/h3>\n<ul>\n<li value=\"1\">In the Dynamic DNS\u00a0configuration, you can select to have DynDNS use the IP address from your router or NAT device. <span class=\"NumContinued\">[FBX-1998, 92780]<\/span><\/li>\n<li value=\"2\">You can now enable conditional DNS\u00a0forwarding from Fireware Web UI and Policy Manager. <span class=\"NumContinued\">[FBX-559, 58214]<\/span><\/li>\n<li value=\"3\">In Bridge Mode, you can now configure the Firebox to use DHCP to get an IP\u00a0address. <span class=\"NumContinued\">[FBX-375]<\/span><\/li>\n<li value=\"4\">This release includes support for two new USB modems:\n<ul>\n<li value=\"1\">Franklin U772 4G USB modem <span class=\"NumContinued\">[FBX-1232]<\/span><\/li>\n<li value=\"2\">NetGear Beam 3G\/4G USB\u00a0modem <span class=\"NumContinued\">[FBX-1676]<\/span><\/li>\n<\/ul>\n<\/li>\n<li value=\"5\">This release adds support for Spanning Tree Protocol support for VLAN interfaces. For specific information on supported scenarios, see Fireware Help or <a href=\"http:\/\/www.watchguard.com\/help\/docs\/fireware\/11\/en-US\/whats-new_Fireware_v11-12-2.pptx\" target=\"_blank\" rel=\"noopener noreferrer\">What&#8217;s New in Fireware v11.12.2<\/a>. <span class=\"NumContinued\">[FBX-753, 61035]<\/span><\/li>\n<li value=\"6\">This release add spanning tree protocol support in Bridge mode. <span class=\"NumContinued\">[FBX-991, 56764]<\/span><\/li>\n<li value=\"7\">A dynamic routing daemon crash has been fixed. <span class=\"NumContinued\">[92930, FBX-1744]<\/span><\/li>\n<li value=\"8\">The PPPoE daemon now remains stable when Link Monitor probing cannot resolve a domain name. <span class=\"NumContinued\">[92024]<\/span><\/li>\n<li value=\"9\">The BGP routing process no longer crashes when MD5 encryption is used. <span class=\"NumContinued\">[93038, FBX-1886]<\/span><\/li>\n<li value=\"10\">BGP routes are now added correctly to the routing table after a FireCluster failover. <span class=\"NumContinued\">[FBX-2749, 93095]<\/span><\/li>\n<\/ul>\n","protected":false},"excerpt":{"rendered":"<p>Seit wenigen Tagen ist das Fireware Release \u00a0v11.12.2 verf\u00fcgbar. Wichtig &#8211; zur Beachtung: PFS bei TLS und HTTPS-DPI wurde nun auch f\u00fcr T10\/30\/50 &amp; XTM-33 konfigurierbar verbesserter Support f\u00fcr VPN zu Amazon AWS F\u00fcr APs wurde ein Truststore eingef\u00fchrt &#8211;\u00a0neue APs m\u00fcssen einzeln den &#8220;trusted&#8221; Status erhalten (Firebox System Manager =&gt; Gateway Wireless Controller =&gt; bei den Aktionen). L\u00e4ngere Mindest-L\u00e4nge der AP-Passphrases \u00c4nderungen bei Port &hellip; <a href=\"https:\/\/wordpress.boc.de\/watchguard-info-portal\/2017\/04\/neues-software-release-fireware-11-12-2-und-wsm-11-12-2\/\" class=\"more-link\">Weiterlesen <span class=\"screen-reader-text\">Neues Software Release Fireware 11.12.2 und WSM 11.12.2<\/span> <span class=\"meta-nav\">&raquo;<\/span><\/a><\/p>\n","protected":false},"author":3,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[122],"tags":[],"class_list":["post-2808","post","type-post","status-publish","format-standard","hentry","category-watchguard-software-release-news"],"_links":{"self":[{"href":"https:\/\/wordpress.boc.de\/watchguard-info-portal\/wp-json\/wp\/v2\/posts\/2808"}],"collection":[{"href":"https:\/\/wordpress.boc.de\/watchguard-info-portal\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/wordpress.boc.de\/watchguard-info-portal\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/wordpress.boc.de\/watchguard-info-portal\/wp-json\/wp\/v2\/users\/3"}],"replies":[{"embeddable":true,"href":"https:\/\/wordpress.boc.de\/watchguard-info-portal\/wp-json\/wp\/v2\/comments?post=2808"}],"version-history":[{"count":3,"href":"https:\/\/wordpress.boc.de\/watchguard-info-portal\/wp-json\/wp\/v2\/posts\/2808\/revisions"}],"predecessor-version":[{"id":2877,"href":"https:\/\/wordpress.boc.de\/watchguard-info-portal\/wp-json\/wp\/v2\/posts\/2808\/revisions\/2877"}],"wp:attachment":[{"href":"https:\/\/wordpress.boc.de\/watchguard-info-portal\/wp-json\/wp\/v2\/media?parent=2808"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/wordpress.boc.de\/watchguard-info-portal\/wp-json\/wp\/v2\/categories?post=2808"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/wordpress.boc.de\/watchguard-info-portal\/wp-json\/wp\/v2\/tags?post=2808"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}