GTA released GNAT Box System Software version 3.4 patch level 2 (version
3.4.2) on February 13, 2004. This patch release contains minor
functionality enhancements and addresses several issues that have been
identified since the release of version 3.4.1.
The primary issues addressed in version 3.4.2 include updating DNS server
to version 8.4.4, PPPoE will now allow use of two providers via one access
line, and resolution of other issues. Please refer to the release notes
below for full details.
Additionally, GTA has renamed all references to our centralized firewall
management product to GB-Commander including installers for GB-Commander
version 1.0.1. There are no functionality changes to GB-Commander version
1.0.1.
GNAT Box System Software version 3.4 patch level 2 is available for
download through the GTA online support center. Customers whose firewalls
are currently registered through GTA's online support center and have
version 3.4.x or a current support contract, may download the latest
update at no charge. Other customers should contact GTA sales or their
authorized GTA channel partner for purchase options for the version 3.4.2
upgrade.
--------------------------------------------------------------------
Release342.txt
--------------------------------------------------------------------
Global Technology Associates, Inc.
Title: GTA Firewall Systems Release Notes
Product: GNAT Box System Software version 3.4.2
Date: 12 February 2004
RELEASE NOTES HISTORY
These notes cover the 3.4.2 patch release of GNAT Box System Software.
Release notes for previous versions can be found at GTA's website,
www.gta.com.
-------------------------------------------------------------------------
GNAT Box System Software version 3.4.2 includes the following versions of
GTA products and utilities:
GNAT Box System Software 3.4.2
GBAdmin 3.4.2
GBAuth (Windows only) 3.4.2
GBAuth (Java) 1.0.1
GTAsyslog 1.0.4
DBmanager 1.0.4
LogView 1.0.0
-------------------------------------------------------------------------
UPGRADE NOTES
For more about upgrading, see individual product text files.
Default SSL Encryption Settings
----
If upgrading from a version previous to 3.2.2, SSL will be disabled and the
default port set to 80. To enable SSL encryption, copy the current web Remote
Access Filter, change the port to 443 and enable it. Save the section. Next,
auto-configure (default) the Remote Admin/Authentication function and save the
section. This will enable all encryption and change the server port to 443.
Delete the old filter.
Netscape/Mozilla
----
Version 3.4.2 installs a new default security certificate. Some browsers,
including Netscape and Mozilla, will not recognize the new certificate if
the original has never been replaced. If you are unable to log on to the
GTA Firewall after upgrading, delete the browser security certificate, then
exit and restart.
Surf Sentinel Feature Activation Code
----
Before upgrading to 3.4.2, Surf Sentinel customers upgrading from a version
previous to 3.3.4 must enter a new feature activation code to accommodate
Cerberian Web Filter version 2.0. The new code is available in the GTA support
center under View Registered Products. Delete the old feature code, enter the
new code and save, then upgrade the firewall.
-------------------------------------------------------------------------
KNOWN ISSUES
Internet Explorer 5 for Macintosh
----
Internet Explorer 5 for Macintosh will not allow you to accept or install
the SSL security certificate. SSL must be disabled to use this combination.
Internet Explorer 5 Export Version, No Patch
----
The export version of IE 5 improperly implements SSL version 3.0, so to use
SSL 3.0, you must have installed the IE security patches.
Security Vulnerabilities in SSL Version 2.0
----
Due to security vulnerabilities in SSL 2.0, support for it has been
removed in GNAT Box System Software.
-------------------------------------------------------------------------
Release Notes include following enhancements, modification and bug fix
sections:
1. SYSTEM SOFTWARE
2. SERVICES
3. CFG LIBRARY
4. ALL USER INTERFACES
5. GBADMIN (Windows Only)
6. WEB
7. CONSOLE
8. CONTENT FILTERING
9. INSTALLERS
10. GTASYSLOG (Windows Only)
11. DBMANAGER (Windows Only)
12. GBAUTH (Windows Only)
------------------------------------------------------------------------
1. SYSTEM SOFTWARE
1.1 Enhancements
1.2 Modifications
1.3 Bug Fixes
1. XDM sessions successfully open and close at expected intervals.
GB3421434
2. Packets arriving on a second external interface and exiting using
the first external interface are no longer dropped as spoofs.
GB3421440
3. Only the XDM target host can connect to the XDM server that
initiated the connection. GB3421433
4. On GB-Pro systems, PPP services are successful, no longer prompting
a "memory limit reached" error message. GB3421337
5. System now counts the number of associations correctly and allows
licensed number of VPN SAs to be configured. GB3421338
6. The maximum number of tunnels supported by a product can be created.
GB3421463
2. SERVICES
2.1 Enhancements
2.2 Modifications
1. Upgrade DNS server to BIND version 8.4.4. GB3421320
2. Lines added to the email header by email proxy are preceded by
"X-GB-". Added: X-GB-From; X-GB-To; and X-GB-Received. GB3421381
2.3 Bug Fixes
1. PPPoE can be configured using two providers via one access line.
GB3421262
2. The serial number instead of the host name uses the "fw" tag in log
messages; e.g., fw="11111111". GB3421191, GB3421285
3. Firewall is always able to resolve DNS when the DNS proxy is turned
on. GB3421373
4. Modify line wrapping in email proxy.
* Reject lines in header greater than 998 bytes.
* Wrap lines in header to be less than 78 bytes.
* Wrap lines in body to be less than 256 bytes in length.
GB3421523
3. CFG LIBRARY
3.1 Enhancements and Changes
3.2 Modifications
3.3 Bug Fixes
NONE
4. ALL USER INTERFACES
4.1 Enhancements
4.2 Modifications
4.3 Bug Fixes
NONE
5. GBADMIN (Windows Only)
5.1 Enhancements
5.2 Modifications
5.3 Bug Fixes
1. When using GBAdmin, runtimes upload without interruption by network
traffic. GB3421529
2. Once a runtime has been uploaded, a message reflects that the
firewall is completing the update process: "Waiting on firewall to
update..." GB3421535
3. GBAdmin properly saves HASH settings. GB3421315
4. NICs can now be edited on any firewall after a configuration merge
using GBAdmin. GB3420765
5. Configuration files are correctly saved when the directory path
contains a period. GB3421316
6. All sections are populated correctly when loading a configuration,
even if an incorrect product has been selected using the dropdown
box in GBAdmin. GB3421270
6. WEB
6.1 Enhancements
6.2 Modifications
6.3 Bug Fixes
NONE
7. CONSOLE
7.1 Enhancements
7.2 Modifications
7.3 Bug Fixes
NONE
8. CONTENT FILTERING
8.1 Enhancements
8.2 Modifications
8.3 Bug Fixes
1. Content filter cache resized to not exceed ram disk. GB3421339
2. Content Filtering recovers automatically when reconnecting to Lookup
Appliances. GB3420984
9. INSTALLERS
9.1 Enhancements
9.2 Modifications
9.3 Bug Fixes
NONE
10. GTASYSLOG (Windows Only)
10.1 Enhancements
10.2 Modifications
10.3 Bug Fixes
1. GTAsyslog properly writes data for filters and nat_close to the
database. GB3421422
11. DBMANAGER (Windows Only)
11.1 Enhancements
11.2 Modifications
11.3 Bug Fixes
NONE
12. GBAUTH (Windows Only)
12.1 Enhancements
12.2 Modifications
12.3 Bug Fixes
NONE
--------------------------------------------------------------------
Global Technology Associates, Inc.
3505 Lake Lynda Drive, Suite 109
Orlando, Florida 32817
www.gta.com
407.380.0220
------------------------------------------------------
To unsubscribe: [EMAIL PROTECTED]
For additional commands: [EMAIL PROTECTED]
Archive: http://archives.gnatbox.com/gb-users/
