6.4.1 EA Release

Netsweeper is pleased to announce the Netsweeper 6.4.1 EA release. This is the first release in the 6.4 release cycle.

Features in 6.4.1 EA include:

  • A new tab lets you see the effective permissions for a selected Account
  • DirSync can now synchronize to the same server multiple times in order to pull usernames based on different attributes or append different text for Groups or Clients
  • A new protocol ESNI has been added to detect Encrypted Server Name Information that allows users to block all ESNI traffic if they wish
  • Speeds are now increased when loading a List with many IP addresses or subnets
  • The API Version 6 has been added as the default version in WebAdmin Settings
  • Updated APIs:
  • An email_subject parameter has been added to report_clone, report_edit, report_add_scheduled and report_add_demand
  • A new description and report_type parameter has been added to report_clone
  • A ‘Description’ parameter has been added to report_add_scheduled, report_add_demand and report_edit

If you have any questions or concerns about planning an upgrade to this release, please contact Netsweeper Technical Support support@netsweeper.com.

See also:

Download

To download the latest release, please use the following links:

http://repo.netsweeper.com/netsweeper-el6-x86_64-6.4.1-1.iso (MD5) (ShA256)

Change Log 6.4.1

Ticket Description
21417 FEATURE: You can now see the final permissions for an Account.  There is a tab to edit and a tab to view permissions in a table for the selected Account.
22312 FEATURE: The APIs: report_clone, report_edit, report_add_scheduled and report_add_demand have a new email_subject parameter.  Report_clone also has a new description and report_type parameter.
22347 FEATURE: There is now the ability for DirSync to synchronize to the same server multiple times in order to pull usernames based on different attributes or append different text for Groups or Clients.
22358 FEATURE: A new protocol has been added to detect Encrypted Server Name Information.  This must be first enabled in the Protocol Patterns, but once enabled users will get esni://destIP:destPort events, instead of https://destIP:destPort events. This allows users who want to block all ESNI traffic to do so. If you do not want to block ALL ESNI traffic it is not recommended to enable this protocol as categorization is not performed.
22411 BUG: Some logging actions were classified as Type ‘Other’ in situations where a group was deleted.  If you disabled logging sections for the ‘Other’ type, the log for deleting a group would not be generated. We now also check the logging message type as well as the section to make sure we avoid the ‘Other’ type for Policy Events.
22444 BUG: The latest revision of QUIC was not being detected. The protocol pattern has been updated. Since QUIC is UDP, this will only be able to be blocked currently when Netsweeper is inline and able to drop packets.
22452 BUG: The default ARP table was limited to 128 entries. On large networks, or when many VLAN tags are used and many routes are present, it is possible for the default ARP table to fill up. The default settings have been increased.
22467 BUG: The NSProxy nfmark feature did not mark the source connection to NSProxy after the CONNMARK was looked up. It is possible, in certain configurations, that this is needed. We now set the socket mark on BOTH the connect to NSProxy and the connection from NSProxy.
22477 FEATURE: The API Version 6 has been added as the default version in WebAdmin Settings. A ‘Description’ parameter has been added to report: add, edit and clone APIs.
22478 BUG: A SysOp renaming a Group would get a ‘Permission Denied’ page.
22481 PERFORMANCE: Speeds are now increased when loading a List with many IP addresses or subnets.
22482 BUG: LDAPS connection for DirSync in 6.3.7 required a valid SSL Certificate for the LDAPS connection to succeed. This was caused by the Java upgrade to 1.8 u181. This security check has been disabled.
22495 BUG: Freshnsd would display an error if the Reporter was disabled.