BLOCKBIT UTM version 1.4.6 - 12/03/2018

The following table exhibits the improvements made in the release of BLOCKBIT UTM version 1.4.6

 

UTM-25

Correction applied to Samba LDAP server authentication.

UTM-26

Correction on sending the firewall logs to remote syslog.

UTM-27

Correction on policies that use objects with IP groups.

UTM-28

Correction on reading period/date objects by proxy.

UTM-29

New feature: HTTP / HTTPS option for same port in proxy, use accepted only in explicit mode.

UTM-84

New feature: CLI command to display the license number.

UTM-85

New feature: CLI command to display the version number.

UTM-86

New feature: CLI command to execute the product registration.

UTM-117

Correction on session synchronism and removal of the temporary script on the H.A.

UTM-140

Correction on the CLI command for syslog configuration.

BLOCKBIT UTM version 1.4.3 - 05/29/2018

The following table exhibits the improvements made* in the release of BLOCKBIT UTM version 1.4.3

 

BB-3060 Correction applied to the “LDAP” authentication system that wasn’t validating without domain information.
BB-12172 Correction applied to “WEB” policies in “HTTP” services different from those of standard ports, configured in the “Proxy” module.
BB-12224 Improvements made in the summarization of reports of the module “IPS”.
  BB-12230 Correction applied to “Live Sessions” “Monitor” for established connections.
BB-12238* Improvements made to a comprehensive inspection of packages, integrating ATP with IPS in the same sensor.
BB-12242 BB-12243 Improvements made in BLOCKBIT GSM’s integration API, with support for “Group” synchronisms.
BB-12320 Correction applied to changes in the portal settings, in the service responsible for the WEB interface.
BB-12322 Correction applied to the summarized “IPS” module that wasn’t generating reports correctly.
BB-12046 Correction applied to APP configurations of the “ATP” module when enabling integration with IPS.
BB-12324 Correction applied to the exhibition of blocked data in the “ATP” Report.
BB-12330 Correction applied to “IPS” initialization when enabled blocked type signatures.
BB-12338 Correction applied to changes of the value of the field “Gateway” in the general network settings.
BB-12342 Correction applied to the translation of the screen “Multiple Threat Edition” to English.
BB-12349 Correction applied to the summarization of the module “IPS”, which was looping.
BB-12353 Correction applied to the scanner’s SSL files from the “Antimalware” module.
BB-12393 Change applied to the default system security policies for a new default action of the rule.
BB-12396 Correction applied to the command “upgrade-blockbit”.
BB-12401 Correction applied to the SSO agent installed on the Windows Server 2016 version.
BB-12402 Improvements made to the process of securing the communication between the interface and the operating system.
BB-12403 Correction applied to restore when storage was configured via “SSH”.

*Firewall system will be reloaded, restarting all active connections.

BLOCKBIT UTM version 1.4.0 - 07/17/2017

The following table exhibits the improvements made in the release of BLOCKBIT UTM version 1.4.0

 

IPv6 Support – Address Objects
Added support for registration of IPv6 type address objects.
IPv6 Support – SSH and WEB Management
Added access to the WEB and CLI management interface with IPv6 support.
IPv6 Support – Static addressing
Added registration of physical type interface with IPv6 Support.
IPv6 Support – Dynamic addressing
Added Registration of Dynamic type interface wit IPv6 Support.
IPv6 Support – Virtual Addressing
Added Registration of virtual type interface with IPv6 Support.
IPv6 Support – NAT 66
Added NAT 66 over IPv6 Support.
IPv6 Support – NAT 64
Added NAT 64 over IPv6 Support.
IPv6 Support – NAT 46
Added NAT 46 over IPv6 Support.
IPv6 Support – DHCPv6
Added DHCP with IPv6 Support.
IPv6 Support – ICMPv6
Added ICMP protocol with IPv6 Support.
IPv6 Support – IGMPv3
Added IGMPv3 protocol with IPv6 Support.
IPv6 Support – Dynamic ports for FTP/ H323/SIP protocols
Added IPv6 support for FTP/H323/SIP protocols.
IPv6 Support – Static Routing
Added Static routing registration with IPv6 Support.
IPv6 Support – Dynamic routing (OSPFv3/RIP/BGP)
Added Dynamic routing registration with IPv6 Support.
IPv6 Support – Multicast Routing (PIM-SM)
Added Multicast routing (PIM-SM) registration with IPv6 Support.
IPv6 Support – Router Advertisement
Added Router advertisement feature for IPv6.
IPv6 Support – Packet routing and filtering
Added IPv6 support for routing and packet filtering.
IPv6 Support – Content Filter
Added IPv6 support for the content filter.
IPv6 Support – QoS & Traffic Shapping
Added IPv6 support for QoS & traffic shapping.
IPv6 Support – TCP MSS
Added IPv6 Support for TCP MSS.
VPN SSL Site-to-Site
Added Site-to-site SSL VPN feature.
VPN SSL Remote Access
Added VPN SSL Remote Access feature.
VPN SSL Clientless Access
Added VPN SSL Clientless Access feature.
VPN IPsec RAS Integrated with DHCP server
Added VPN IPsec RAS integrated with DHCP server with IPv6 Support.
VPN IPsec RAS Integrated with RADIUS server
Added VPN IPsec RAS integrated with RADIUS server to provide authentication.
VPN IPsec RAS access control by user group
Added VPN IPsec RAS access control by group or user.
IPsec Compression Support
VPN IPsec compression support.
Support for simultaneous tunnels per user (uniqueids)
VPN IPsec RAS support for simultaneous tunnels per user.
IPv6 Support – Site-to-Site IPv6 over IPv6 VPN
IPv6 Support at VPN site-to-site IPv6 over IPv6.
IPv6 Support – Site-to-Site IPv4 over IPv6 VPN
IPv6 Support at VPN site-to-site IPv4 over IPv6.
IPv6 Support – Site-to-Site IPv6 over IPv4 VPN
IPv6 Support at VPN site-to-site IPv6 over IPv4.
Jumbo Frames Support
Added Jumbo frames support
Tunnel type interface
Added Tunnel interface support.
Bridge type interface
Added Bridge interface support.
PCAP packets Capture
Added Monitor to capture network traffic through WEB interface with possibility of download in PCAP format.
SMTP and SMTPS proxy with antivirus scan support
Added SMTP Proxy and SMTPS features with antimalware analysis support.
Proxy POP3 and POP3S with antivirus scan support
Added Proxy POP3 and POP3S with antimalware analysis support.
FTP Proxy with antivirus scan support
Added FTP Proxy feature with antimalware analysis support. 
Invalid certificate verification
Added Feature that validates invalid certificates by policy.
IP Reputation Filters by Policy
Added Feature that allows definition “IP Reputation” filters by policy.
Geolocation Filters by Policy
Added Feature that allows definition of “Geolocation” filters by policy.
Security protection filters by Policy
Added Feature that allows definition of security protection filters by policy.
Transparent and passive IPS sensor
Added Support for IPS feature for analysis in transparent and passive mode.

TCP Flood, UDP Flood and IP Spoofing protections

Added Firewall feature for protections (TCP Flood, UDP Flood and IP Spoofing).

Social Captive Portal
Added Users Portal Feature that allows authentication via social captive (Facebook, Google and Twitter).
Captive Portal Customization
Added User portal customization feature.
Lock Page Customization
Added “Web Filter” blocking page customization feature.
2FA per digital certificate
Added Digital certificate Two-factor authentication.
Verification of valid certificates through revocation lists
Added Revocation list of certificates for validation of certificates.
User Alert Notification Service
Added Alert notification feature for the user.
Firewall and VPN authentication agent
Added Firewall, SSL VPN and IPsec VPN Authentication Agents.
Management of Certification Authorities
Added new resource to manage Certification Authorities.
Logical object grouping
Added support for logical objects grouping, to create rules;
Integration with GSM Analyzer
Added new feature for integration with BLOCKBIT GSM.
Monitor for System events and alerts via Syslog and SNMP
Monitor of system events and alerts implemented, sent via syslog and SNMP.
Backup Storage via SSH
Added feature for backup storage via SSH protocol added.
Feature Select
Added feature that allows the administrator to enable or disable system services.
Centralized update management
Added feature that allows the administrator to update every UTM connected to Manager.