Tag Archives: 21

Watchguard, XTM

Watchguard XTM 1050, XTM 2050, XTM 2 Series, XTM 3 Series, XTM 5 Series, XTM 8 Series – Fireware XTM OS 11.6.5 – CSP1 Build # 419019

Leave a comment

Watchguard XTM 1050, XTM 2050, XTM 2 Series, XTM 3 Series, XTM 5 Series, XTM 8 Series –Fireware XTM OS 11.6.5 – CSP1 Build # 419019

11.6.5 CSP1 Build # 419019 Resolves the following issues:

  • This release contains further improvements to efficacy of spamBlocker with Mailshell
  • [BUG71300] Resolved a Kernel crash which occurred when using FireCluster under high traffic conditions
  • [BUG71738] Resolved Memory leak when an external interface is configured for DHCP and the DHCP server is not responding
  • [BUG71589] Resolved issue causing the firewalld process to crash.
  • [BUG67075] SNMP “Get” now displays the accurate number of Branch Office VPN tunnels.
  • [BUG70202, BUG71732, BUG70342]: Resolved issue causing Branch Office VPN traffic to stop passing when using Firebox models XTM 330, XTM 3, XTM 25/26.
  • [BUG70491] The widsd process no longer uses excess CPU
  • [BUG71926] Fixed issue causing the loggerd process to use excessive CPU.
  • [BUG71871] Improved the HTTP Proxy MSS handling to allow for MTU to be adjusted independently for the in and out proxy channels. This improvement will prevent applications like Facebook from stalling.
  • [BUG69331] Interface link down/up behavior has been improved for XTM 21-23, XTM 25/56 and XTM 33.
  • [RFE71314] The Firebox serial number will now display in the HTTP proxy deny message.
  • [BUG70955] Resolved issue causing the SSID for guest network to stop broadcasting.
  • [BUG69132] Resolved issue causing the Wireless Guest interface status to show as down but the interface continues to function.
  • [BUG70318] When using wireless the log line “ath: phy0: failed to stop TX DMA, queue=0x005!” no longer occurs.
  • [BUG72586] The hostapd debug logs no longer appear when diagnostic logging is disabled.
  • [BUG68975, RFE64455] The Firebox DHCP server now properly sends a NACK reply for devices with an existing DHCP lease.
  • [BUG71323] Resolved issue which caused Branch Office VPN IPSec VPN to stop functioning after upgrade from 11.4.x to 11.6.x or 11.7.x.
  • [BUG69493, BUG65892] Resolved issue which caused the Intel Network Interface Cards to hang and stop passing traffic for short periods of time on XTM 5-series and above.
  • [BUG72048] Resolved Cross site scripting vulnerability on the SSLVPN authentication port related to an invalid login redirect.

You can request 11.6.5 – CSP1 Build # 419019 from Watchguard Support by logging a support case online, they should then be able to provide an ftp download link and appropriate credentials.

Please note that Watchguard CSP releases are cumulative so you should only need to apply the latest to ensure that you also have any previous fixes.

11.6.1, 11.6.1, 11.6.1, 11.6.1, 11.6.1, 11.6.1, 11.6.1, 11.6.1, 11.6.1, 11.6.1, 11.6.1, 11.6.1, 11.6.1, 11.6.1, 11.6.1, 11.6.1, 11.6.1, 11.6.1, 21, 22, 23, 25, 26, 33, 330, 505, 510, 515, 520, 525, 530, 535, 545, 810, 820, 830, CSP2, CSP2, CSP2, CSP2, CSP2, CSP2, CSP2, CSP2, CSP2, CSP2, CSP2, CSP2, CSP2, CSP2, CSP2, CSP2, CSP2, CSP2, Watchguard, XTM

Watchguard XTM 1050, XTM 2050, XTM 2 Series, XTM 3 Series, XTM 5 Series, XTM 8 Series – Fireware XTM OS 11.6.1 – CSP2 Build # 352335

Leave a comment

Watchguard XTM 1050, XTM 2050, XTM 2 Series, XTM 3 Series, XTM 5 Series, XTM 8 Series – Fireware XTM OS 11.6.1 – CSP2 Build # 352335

11.6.1 – CSP2 Build # 352335 Resolves the following issues:

BUG68090: static routes lost, when PPPoE interface goes down

BUG68183: Multi-WAN Failover Mode PPPoE/Static not working. Default path missing + incorrect DNAT

BUG68986: the “Ip range” style for SSO exception doesn’t work

BUG68370: Cluster member crashes after several successive failovers

BUG68650: kernel Crash when test HTTP Packet filter + IPS and APP on XTM26

BUG69050: kernel crash and reboot EIP ec1c96cb EIP is at br_netfilter_fini+0x221/0x26e [bridge]

BUG65848: Customer’s active FTP is not working

BUG67666: AP scan (Rogue AP Detection “Scan Now”) crashes the kernel with Wireless WAN

BUG68298: Traffic be interrupted when wireless connection occurs on External

BUG66032: XTM2 Wireless will run 1 -2 hours then will lockup with Wireless WAN enabled

BUG68232: With multiwan, DHCP wan interface become down logically, PPPoE interface will down for 1mins

You can request 11.6.1 – CSP2 Build # 352335 from Watchguard Support by logging a support case online, they should then be able to provide an ftp download link and appropriate credentials.

Please note that Watchguard CSP releases are cumulative so you should only need to apply the latest to ensure that you also have any previous fixes.

11.6.1, 11.6.1, 11.6.1, 11.6.1, 11.6.1, 11.6.1, 11.6.1, 11.6.1, 11.6.1, 11.6.1, 11.6.1, 11.6.1, 11.6.1, 11.6.1, 11.6.1, 11.6.1, 11.6.1, 11.6.1, 21, 22, 23, 25, 26, 33, 330, 505, 510, 515, 520, 525, 530, 535, 545, 810, 820, 830, CSP1, CSP1, CSP1, CSP1, CSP1, CSP1, CSP1, CSP1, CSP1, CSP1, CSP1, CSP1, CSP1, CSP1, CSP1, CSP1, CSP1, CSP1, Watchguard, XTM

Watchguard XTM 1050, XTM 2050, XTM 2 Series, XTM 3 Series, XTM 5 Series, XTM 8 Series – Fireware XTM OS 11.6.1 – CSP1 Build # 350391

Leave a comment

Watchguard XTM 1050, XTM 2050, XTM 2 Series, XTM 3 Series, XTM 5 Series, XTM 8 Series – Fireware XTM OS 11.6.1 – CSP1 Build # 350391

11.6.1 – CSP1 Build # 350391 Resolves the following issues:

BUG66975: FSM traffic monitor shows blank due to log entries without seq attribute

BUG65521: unnecessary firewalld error message in appliance log

BUG66635: Unnecessary log message – 2012-05-02 11:25:56 firewall block_dump: Select timed out Debug

BUG65537: Change in Policy Schedule does not stop existing proxy session

BUG67116: MultiWAN – Outbound PBR failure with default settings – Interface not down

BUG68127: Cross site scripting vulnerability using login Failure from FW Auth Server on 4100 and SSLVPN

BUG68026: BUG66200: Slow Kernel Memory Leak caused by BOVPN

BUG68163: No BOVPN tunnel route due to probable iked failure to learn a new dynamic ip

BUG68188: BOVPN failure with dynamic IP site due to inconsistent DNS name resolution

BUG68237: iked crashes in ike_config_set_policy

BUG67961: iked died unexpectedly on signal 11

BUG66772: IKED stack trace occurring when disconnecting MoVPN IPSec (Safenet Client) connection

BUG68247: Tunnels may fail after upgrade

BUG68886: High CPU usage with high number of BOVPN tunnels

BUG67927: Active / Active mode cluster load balance does not work after health index is lower on one box

BUG67447: WebBlocker fails with logs “failed to send server-request”

BUG68344: SSO exceptions list will trigger when the last octet of the IP is in the exception

BUG65288: kernel crash and reboot

BUG66872: A/P Cluster Member reboots kernel BUG at /builds/utm-11_5_3/src/340457/ip_set.c:507 EIP e033af7d

BUG66809: A/P Cluster Master reboots kernel BUG at /builds/utm-11_5_3_csp/src/341451/EIP: ec2b9f59

BUG65179: Interface traffic stopped  EIP: <e02ac7b> EFLAGS: 00010246 CPU:3

BUG67994: loggered crash EIP: 0060:[<dff85f64>] box reboots

BUG67866: Kernel crash and reboot (EIP: e034df64)

BUG66670: XTM1050 reboot with crash log EIP:0060:[<dff64f7b>]EFLAGS:00010246 CPU:1

BUG68302: XTM8 locking up and rebooting

You can request 11.6.1 – CSP1 Build # 350391 from Watchguard Support by logging a support case online, they should then be able to provide an ftp download link and appropriate credentials.

Please note that Watchguard CSP releases are cumulative so you should only need to apply the latest to ensure that you also have any previous fixes.

11.6, 11.6, 11.6, 11.6, 11.6, 11.6, 11.6, 11.6, 11.6, 11.6, 11.6, 11.6, 11.6, 11.6, 21, 22, 23, 25, 26, 33, 330, 505, 510, 520, 530, 810, 820, 830, CSP2, CSP2, CSP2, CSP2, CSP2, CSP2, CSP2, CSP2, CSP2, CSP2, CSP2, CSP2, CSP2, CSP2, FireBox, System Manager, Watchguard, WSM, XTM

Watchguard XTM 1050, XTM 2050, XTM 2 Series, XTM 3 Series, XTM 5 Series, XTM 8 Series – Fireware XTM OS 11.6 – CSP2 Build # 346090

Leave a comment

Watchguard XTM 1050, XTM 2050, XTM 2 Series, XTM 3 Series, XTM 5 Series, XTM 8 Series – Fireware XTM OS 11.6 – CSP2 Build # 346090

11.6 – CSP2 Build # 346090 Resolves the following issues:

BUG66240: CLI command “restore factory-default all” fails to restore factory default

BUG67367: the state of the interface of XTM23 become unstable when transfering one big file by FTP

BUG67310: A/P XTM8 fails over WARNING: utm-11_6/src/343405/dev.c:1871 skb_gso_segment 0xce/0x1ca

Potential fix for Kernel Crashes related to “scheduling while atomic” when using BOVPN

BUG64611: BUG: scheduling while atomic: ntpd/2446/0x10000200 on 11.5.1 XTM5

BUG67819: XTM2 memory leak causing xfrm_dst_cache value to increase and causing appliance to lockup

Potential fix for Kernel crash matching the following bugs:

BUG65288: kernel crash and reboot

BUG65179: Interface traffic stopped EIP: 0060: e02acf7b EFLAGS: 00010246 CPU: 3

BUG66670: XTM1050 rebooted itself and writing crash log EIP: 0060:[<dff64f7b>] EFLAGS: 00010246 CPU: 1

BUG66809: A/P Cluster Master reboots kernel BUG at /builds/utm-11_5_3_csp/src/341451/ EIP: ec2b9f59

BUG66872: A/P Cluster Member reboots kernel BUG at/builds/utm-11_5_3/src/340457/ip_set.c:507 EIP e033af7b

You can request 11.6 – CSP2 Build # 346090 from Watchguard Support by logging a support case online, they should then be able to provide an ftp download link and appropriate credentials.

Please note that Watchguard CSP releases are cumulative so you should only need to apply the latest to ensure that you also have any previous fixes.