Category Archives: 510

Watchguard XTM 1050, XTM 2050, XTM 2 Series, XTM 3 Series, XTM 5 Series, XTM 8 Series – Fireware XTM OS 11.6.1 – CSP3 Build # 354688

Watchguard XTM 1050, XTM 2050, XTM 2 Series, XTM 3 Series, XTM 5 Series, XTM 8 Series – Fireware XTM OS 11.6.1 – CSP3 Build # 354688

11.6.1 – CSP3 Build # 354688 Resolves the following issues:

BUG69616: The dynamic IP at peer side is not added into the local cache file at multi-wan

BUG69351: After reboot multiple Phase 1 one time outs occurred. Unable to build VPN tunnels

BUG69624: Limit rate of phase one auto start after reboot

BUG69377  Incorrect model number displayed with MODEL 505 license

BUG69625: iked crash sig 6, sig 11

BUG68554: Interface failing to route and not listing ‘inet addr’ in status report > interfaces

BUG68312: SIP proxy causes CFM restart due to memory cap violation

BUG67656: Process `cfm.5′ with pid: 1515 / tid: 1515 died unexpectedly on signal 6 (SIP)

BUG67479: CFM Stack traces using SIP after upgrading from 11.4.2 to 11.5.3U1 using existing setup

BUG67782: cfm.2 stacktrace, SIP (stack contents @ 0xbe836430), signal 6

BUG67001: BOVPN over 1:1 NAT fails with multiWAN causes one way traffic (inbound fails)

BUG68944: VPN 1:1 nat does not work when we use it on multiwan(3 pppoe and 1 dhcp)xtm box

BUG69090: VPN tunnel fails and stops passing traffic – xfrm_dst_cache value exceeded in slab info

BUG67819: memory leak causing xfrm_dst_cache value to increase and causing appliance to lockup

BUG69351: After reboot multiple Phase 1 one time outs occurred. Unable to build VPN tunnels XTM2050

You can request 11.6.1 – CSP3 Build # 354688 from Watchguard Support by logging a support case online, they should then be able to provide an ftp download link and appropriate credentials.

Please note that Watchguard CSP releases are cumulative so you should only need to apply the latest to ensure that you also have any previous fixes.

WatchGuard XTM Firewall SNMP OID and Value List

WatchGuard XTM Firewall SNMP OID and Value List

CPU Utilisation in last 5 seconds

OID: .1.3.6.1.4.1.3097.6.3.4.0

Return Value: Numeric (i.e. 234 = 2.34%)

CPU Utilisation in last 1 minute

OID: .1.3.6.1.4.1.3097.6.3.77.0

Return Value: Numeric (i.e. 234 = 2.34%)

CPU Utilisation in last 5 minutes

OID: .1.3.6.1.4.1.3097.6.3.78.0

Return Value: Numeric (i.e. 234 = 2.34%)

CPU Utilisation in last 15 minutes

OID: .1.3.6.1.4.1.3097.6.3.79.0

Return Value: Numeric (i.e. 234 = 2.34%)

Currently Active Connections

OID: .1.3.6.1.4.1.3097.6.3.80.0

Return Value: Numeric (i.e. 44 = 44 Active Connections)

Watchguard XTM 1050, XTM 2050, XTM 2 Series, XTM 3 Series, XTM 5 Series, XTM 8 Series – Fireware XTM OS 11.6.1 – CSP2 Build # 352335

Watchguard XTM 1050, XTM 2050, XTM 2 Series, XTM 3 Series, XTM 5 Series, XTM 8 Series – Fireware XTM OS 11.6.1 – CSP2 Build # 352335

11.6.1 – CSP2 Build # 352335 Resolves the following issues:

BUG68090: static routes lost, when PPPoE interface goes down

BUG68183: Multi-WAN Failover Mode PPPoE/Static not working. Default path missing + incorrect DNAT

BUG68986: the “Ip range” style for SSO exception doesn’t work

BUG68370: Cluster member crashes after several successive failovers

BUG68650: kernel Crash when test HTTP Packet filter + IPS and APP on XTM26

BUG69050: kernel crash and reboot EIP ec1c96cb EIP is at br_netfilter_fini+0x221/0x26e [bridge]

BUG65848: Customer’s active FTP is not working

BUG67666: AP scan (Rogue AP Detection “Scan Now”) crashes the kernel with Wireless WAN

BUG68298: Traffic be interrupted when wireless connection occurs on External

BUG66032: XTM2 Wireless will run 1 -2 hours then will lockup with Wireless WAN enabled

BUG68232: With multiwan, DHCP wan interface become down logically, PPPoE interface will down for 1mins

You can request 11.6.1 – CSP2 Build # 352335 from Watchguard Support by logging a support case online, they should then be able to provide an ftp download link and appropriate credentials.

Please note that Watchguard CSP releases are cumulative so you should only need to apply the latest to ensure that you also have any previous fixes.

Watchguard XTM 1050, XTM 2050, XTM 2 Series, XTM 3 Series, XTM 5 Series, XTM 8 Series – Fireware XTM OS 11.6.1 – CSP1 Build # 350391

Watchguard XTM 1050, XTM 2050, XTM 2 Series, XTM 3 Series, XTM 5 Series, XTM 8 Series – Fireware XTM OS 11.6.1 – CSP1 Build # 350391

11.6.1 – CSP1 Build # 350391 Resolves the following issues:

BUG66975: FSM traffic monitor shows blank due to log entries without seq attribute

BUG65521: unnecessary firewalld error message in appliance log

BUG66635: Unnecessary log message – 2012-05-02 11:25:56 firewall block_dump: Select timed out Debug

BUG65537: Change in Policy Schedule does not stop existing proxy session

BUG67116: MultiWAN – Outbound PBR failure with default settings – Interface not down

BUG68127: Cross site scripting vulnerability using login Failure from FW Auth Server on 4100 and SSLVPN

BUG68026: BUG66200: Slow Kernel Memory Leak caused by BOVPN

BUG68163: No BOVPN tunnel route due to probable iked failure to learn a new dynamic ip

BUG68188: BOVPN failure with dynamic IP site due to inconsistent DNS name resolution

BUG68237: iked crashes in ike_config_set_policy

BUG67961: iked died unexpectedly on signal 11

BUG66772: IKED stack trace occurring when disconnecting MoVPN IPSec (Safenet Client) connection

BUG68247: Tunnels may fail after upgrade

BUG68886: High CPU usage with high number of BOVPN tunnels

BUG67927: Active / Active mode cluster load balance does not work after health index is lower on one box

BUG67447: WebBlocker fails with logs “failed to send server-request”

BUG68344: SSO exceptions list will trigger when the last octet of the IP is in the exception

BUG65288: kernel crash and reboot

BUG66872: A/P Cluster Member reboots kernel BUG at /builds/utm-11_5_3/src/340457/ip_set.c:507 EIP e033af7d

BUG66809: A/P Cluster Master reboots kernel BUG at /builds/utm-11_5_3_csp/src/341451/EIP: ec2b9f59

BUG65179: Interface traffic stopped  EIP: <e02ac7b> EFLAGS: 00010246 CPU:3

BUG67994: loggered crash EIP: 0060:[<dff85f64>] box reboots

BUG67866: Kernel crash and reboot (EIP: e034df64)

BUG66670: XTM1050 reboot with crash log EIP:0060:[<dff64f7b>]EFLAGS:00010246 CPU:1

BUG68302: XTM8 locking up and rebooting

You can request 11.6.1 – CSP1 Build # 350391 from Watchguard Support by logging a support case online, they should then be able to provide an ftp download link and appropriate credentials.

Please note that Watchguard CSP releases are cumulative so you should only need to apply the latest to ensure that you also have any previous fixes.