Added SonicWall VPN firewall parser to existing SonicWall VPN configuration. This allows configuration to track network activity for active VPN sessions.
Report Templates
Added Bytes to VPN Heatmap metric options.
Updated Hits VPN Heatmap metric to use firewall connectivity information instead of just sessions logons and logoffs.
Corrections
Data Management – Import
Added catch for handling incorrect URL formats that was causing import to fail.
Setup – Restore
Fixed inability to properly upload Restore Point.
Log File Text Parser
Corrected byte storage from int to long to prevent parsing error when total bytes is greater than max int value causing record to be thrown out.
The metric “Visits” was missing from the selection in all the charts. Additionally, the Hits metric displaying “Visits” legend label. These are now corrected.
Added device OS, device Name, and VPN Server to VPN report template. Device OS and Device Name only available in Palo Alto VPN Configuration currently.
Upgraded the custom report header feature to not require a file to be selected, but instead provide an in-browser HTML editor for users to customize. A toggle button has also been added to enabled and disable this feature. Existing custom report header configuration will be retained in displayed in new HTML editor. The new screen is located in the menu under Settings – Reports – Custom Header.
User Management – Import Users
Added new Metric Server Sync option in the Manage screen to allow for usernames to be imported from the metric server to the product. This feature is enabled by default and will place usernames not currently in the product or being imported from AD or text file into the product in the group “Ungrouped IDs”.
Updated the behavior of “Inside the Product” configuration to now allow users that already exist in the product under the group “Ungrouped IDs” to be moved to their imported Group. Users that are in other groups will not be moved.
Policy Reports
Web Categories
Created new Blocked Web Categories Policy report located in the menu under System Status – Policy Reports – Web Categories that includes:
Blocked categories grouped by time frame filter id
White/Black Listing
Blocked YouTube videos
Groups and IDs
Added link from the Web Management – Application Controls and Filter – Categories screen to the new policy report.
The report includes the options to filter the content to only show:
Blocked content and No Groups and IDs or vice versa or both (Default)
Only policies that have Groups and IDs assigned to them.
Groups and IDs
Moved the Groups and IDs policy report from System Status – Policy Reports to User Management – View in the product menu.
Moved existing Policy Reports screen to System Status – Policy Reports – Other Policies.
Real-Time Monitors
Added option to only show blocked requests
Secure Interface
Created ability to generate Certificate Signature Request (CSR) to facilitate certificate generation for secure interface. This new feature is location in Settings – Secure Interface screen.
Corrections
Reports
Corrected issue preventing Cloud Services reports from running when the product was configured with list version 10.
Memory Configuration
Fixed upgrade issue that reset the product memory to minimum setting until the VM was rebooted. The memory setting will not be affected during this and future upgrades.
Cyfin customers that have syslog data configuration will now have a new feature to able to watch their syslog traffic in real-time. This new feature is located under Real-Time Monitors – Web.Users will have to option to filter the data they are looking at by:Groups and IDs
Categories
Blocked Requests only
Log Data source (if more than 1 syslog configured)
User Management – Import Users
Added new Metric Server Sync option in the Manage screen to allow for usernames to be imported from the metric server to the product. This feature is enabled by default and will place usernames not currently in the product or being imported from AD or text file into the product in the group “Ungrouped IDs”.
Updated the behavior of “Inside the Product” configuration to now allow users that already exist in the product under the group “Ungrouped IDs” to be moved to their imported Group. Users that are in other groups will not be moved.
Policy Reports
Groups and IDs
Moved the Groups and IDs policy report from System Status – Policy Reports to User Management – View in the product menu.
Custom Report Header
Upgraded the custom report header feature to not require a file to be selected, but instead provide an in-browser HTML editor for users to customize. A toggle button has also been added to enabled and disable this feature. Existing custom report header configuration will be retained in displayed in new HTML editor. The new screen is located in the menu under Settings – Reports – Custom Header.
Product Menu
Updated product to only display Reports – Dashboard – Palo Alto Traffic menu option if there is at least 1 Palo Alto data configuration.
Secure Interface
Created ability to generate Certificate Signature Request (CSR) to facilitate certificate generation for secure interface. This new feature is location in Settings – Secure Interface screen.
Product Menu
Removed Sample Reports from product menu.
User Interface Libraries
Updated jQuery library version to remove security vulnerabilities.
License
Updated license notification message to include number of days left in both the Dashboard screen and the Settings – License screen.
Corrections
Reports
Corrected issue preventing Cloud Services reports from running when the product was configured with list version 10.
Memory Configuration
Fixed upgrade issue that reset the product memory to minimum setting until the VM was rebooted. The memory setting will not be affected during this and future upgrades.
Log File Configurations
Corrected the parser for Fortigate 6.0 to correctly allow it to be imported.
Added new metric field App/Site to records. This metric is provided through the new version 10 list and applied during manual log import, syslog, or direct import.
Report Templates
Ability to select App/Site into top or audit report sections.
Dashboard
Added App/Site to Custom dashboard chart grouping and subgrouping.
Categorization – List Version
Added ability to toggle between new list 10 with app/site information or the previous list version 9 without.
Categorization – Check URL
Now returning App/Site information during URL lookup.
Metric Server
Added check to remove empty indices at startup and during import data delete.
Log File Configurations
Updated all Check Point log configurations to include the Drop action as a valid result code.
Correction
Updated JDBC connect method to properly set the catalog (database) upon instantiating new database connection.
Added option to disable password requirement for viewing interactive reports.
Hit/Visits
Enhanced hit/visit Algorithm
For log configurations with 3rd party categories, now still looking at Wavecrest categorization for hit/visit calculation.
Corrections
AD Import by Field
Corrected the order of the nested fields as this was inverted.
Filter is now case insensitive
Filter is applied to entire AD import path. eg. If you had a group called Wavecrest with a subgroup of Development and you filtered on Development, the Wavecrest parent group would be missing.
Encoding
Fixed library to proper handle unicode characters in json encodings.
Logon Accounts
Fixed the manner in which the logon accounts modifications where being submitted from the interface to prevent browser size limitation.
Added new metric field App/Site to records. This metric is provided through the new version 10 list and applied during manual log import, syslog, or direct import.
Report Templates
Ability to select App/Site into top or audit report sections.
Dashboard
Added App/Site to Custom dashboard chart grouping and subgrouping.
Categorization – List Version
Added ability to toggle between new list 10 with app/site information or the previous list version 9 without.
Categorization – Check URL
Now returning App/Site information during URL lookup.
Metric Server
Added check to remove empty indices at startup and during import data delete.
Log File Configurations
Updated all Check Point log configurations to include the Drop action as a valid result code.
Correction
Updated JDBC connect method to properly set the catalog (database) upon instantiating new database connection.