Take 50 - General Availability

List of Resolved Issues and New Features

Note - This Take contains all fixes from all earlier Takes.

ID

Product

Description

Take 50

Released on 3 September 2019 and declared as General Availability on 24 September 2019

-

General

Added support for Gaia kernel 3.10.

-

General

Added support for Check Point 26000 and 16000T model appliances and CloudGuard IaaS products AWS, Azure, GCP.

PRJ-2300

Security Management

Added Management support for 16000 and 26000 appliances.

  • GUI support was added in R80.30 Jumbo HotFix Take 71.

PRJ-5065,
PRJ-3101

Multi-Domain Management

Import of Multi-Domain Management Server fails when Jumbo HotFix is installed on the target machine and the source machine is R77.x.
Refer to sk162032.

PRHF-3248,
PRJ-823,
PRJ-2737

Security Gateway

In a rare scenario, Security gateway freezes when Priority Queue is enabled. Refer to sk149413.

PRJ-3736,
PRJ-3737,
PMTR-40259

Security Gateway

In some scenarios, when a connection is accelerated and ICMP packet is sent from a server to a client, it is being dropped by Security gateway.

PMTR-25703,
PRJ-2694

Security Gateway

In a rare scenario, when configured as a proxy/ICAP client, a Security gateway may crash when using HTTPS Policy Categorization.

  • Fix is relevant for Gaia 3.10 only.

PRJ-5028

Threat Prevention

In a rare scenario, R80.30 Security gateway managed by R80.30 Management crashes when running a Threat Prevention Software Blade with the Forensics feature enabled. Refer to sk161812.

PRJ-2891,
PMTR-31316

Logging

  • In some scenarios with low disk space and customized retention configuration, logs and indexes may be deleted contrary to the configuration.
  • In some cases, logs are not forwarded when log forwarding in enabled on a Log server machine.

PRJ-2896,
PRJ-748

Logging

In a rare scenario, cannot open new tab in SmartView after exporting data using a relative time filter.

PRJ-1825,
PRHF-3890

SSL Inspection

Added support of RDP over SSL inspection as part of Inbound HTTPS Inspection Blade. (Relevant for Remote Desktop Protocol Vulnerability CVE-2019-0708.)

  • Supported only on Gaia 3.10.

PRHF-4193,
PRJ-2733

CoreXL

"fwmutlik_do_sequence_accounting_on_entry: bad dir" errors are mistakenly printed in dmesg output. Refer to sk158312.

  • Fix is relevant for Gaia 3.10 only.

PMTR-35350,
PRJ-2735

CoreXL

In some scenarios, VPN connection's records remain in the Global connections table even after the connection expires. Refer to sk155332.

  • Fix is relevant for Gaia 3.10 only.

PRJ-2734,
PMTR-36031

CoreXL

In a rare scenario, Security gateway may freeze when "Drop Templates" or "DOS rate" feature is enabled.

  • Fix is relevant for Gaia 3.10 only.

PRJ-2668,
PRJ-2358

Gaia OS

CVE-2019-11477, CVE-2019-11478 and CVE-2019-11479: TCP SACK PANIC - Linux Kernel vulnerabilities. Refer to sk156192.

PRJ-1981,
GAIA-5576

Gaia OS

IPv6 address configured on VLAN interfaces is missing after reboot.

  • Fix is relevant for Gaia 3.10 only.

PRJ-2579,
GAIA-5563

Gaia OS

Status of newly created VLAN interface is "off".

  • Fix is relevant for Gaia 3.10 only.

PRJ-2561,
GAIA-5815

Gaia OS

When adding more than 256 bridge interfaces, CPD process unexpectedly exits, bringing down SIC.

  • Fix is relevant for Gaia 3.10 only.

PRJ-2782,
GAIA-5512

CPView

The SMT Status is "Unknown" instead of "Enabled" in CPView.

  • Fix is relevant for Gaia 3.10 only. The SMT Status is removed from CPView on Gaia 3.10 kernel as there is no soft-disable of Hyper-Threading on this kernel version anymore.

PRJ-4055,
GAIA-6172

VSX

In some scenarios, a new hotfix installation via CPUSE fails on VSX. Refer to sk159713.

  • Fix is relevant for Gaia 3.10 only.

PMTR-39868,
PRJ-3528,
PRJ-3671

VSX

In some scenarios, traffic is dropped on VSX. Refer to sk160352.