WatchGuard–Nouveau firmware 11.9.4

Ca y est le nouveau firmware 11.9.4 de WatchGuard est sorti. Parmi les nouveautés, un élément est interessant pour ceux qui veulent se servir du XTMv ( version vmware ou hyperv) avec des dédibox de chez Online ou de OVH. Le support des adresses IP en /32 pour les interfaces externe fonctionne. Donc à nous les IP Failover sur Watchguard.

Autre bonne nouvelle le portail captif avec la génération de ticket. Ce qui permet pour un hotel ou un restaurant de facilement donner l’accès à ses clients.

La news officielle est ci-dessous:

Fireware XTM 11.9.4 and WSM 11.9.4 
Fireware OS 11.9.4 and WSM 11.9.4 are now available. This maintenance release includes many bug fixes and several new enhancements. The Release Notes list all resolved issues and new enhancements in the software.
Key Highlights:

  • New Guest Services capability enables the creation of temporary accounts for hotspot access. Ideal for hotels and retail stores to provide internet access for their visitors and customers. A new guest administrator role and user interface enable front line staff to manage and create the accounts.
  • Selective inspection or bypass of encrypted web traffic (HTTPS DPI) via domain name or web category. Administrators now have more flexibility, allowing them to bypass DPI inspection of known good sites that need to remain private, such as online banking or financial applications.
  • Diagnostic report output of Branch Office VPN configurations helps with quick troubleshooting and fixing of any tunnel issues.
  • SSLv3 is disabled by default to protect against man in the middle attacks that could exploit the Poodle vulnerability (CVE-2014-3566).
  • Many bug fixes to improve the scalability and reliability of Single Sign-On.
  • Support for /31 and /32 subnets on external interfaces, which are commonly used in regions with shortages of IPv4 IP addresses.
  • WSM support for the new Firebox M400 and M500 models.

Full details of all changes including screenshots of new user interface are provided in the What’s New in 11.9.4 presentation.

Does This Release Pertain to Me?

This release applies to all Firebox and XTM appliances, except XTM 21/21-W, 22/22-W, or 23/23-W appliances.

New Software Download Center!

Firebox and XTM appliance owners can obtain this update without additional charge by downloading the applicable packages from the new and improved WatchGuard Software Download Center. No login is required to download the software, but you must have active LiveSecurity on the appliance to apply the upgrade. Please read the Release Notes before you upgrade, to understand what’s involved. Known issues are now listed in the Knowledge Base when accessed through the WatchGuard Portal. You must log in to see Known Issues.

WatchGuard Firebox M440

Découvrez en avant-première les caractéristiques du WatchGuard M440

Disponible à partir du 22 octobre pour la France

25 ports 1Gb/s et ports pour SFP 10Gb/s

Et 8 ports PoE qui sont  idéals pour alimenter les point d’accès AP100, AP102, AP200

WatchGuard M440, Frequently Asked Questions:

Q: What is the WatchGuard Firebox M440?

A: The Firebox M440 is a new mid-range appliance from WatchGuard that offers a wide multi-port configuration that is not available on other WatchGuard models. It includes 25 1 Gb ports and 2 SFP+ 10 Gb fiber ports with integrated switch that supports full layer 2 bridge between ports. It can be purchased with just LiveSecurity, as a NGFW, or with full UTM services.

Q: Are there any other new capabilities?

8 of the ports support Power over Ethernet, making it an ideal platform to act as a Gateway Wireless Controller that can also provide power to WatchGuard Access Points.

Q: Does the M440 have redundant power?

All of the standard SKUs ship with a single power supply. A second power supply is available as an optional accessory so the appliance can run with two redundant power supplies. Rack rails are included with the second power supply to support the additional weight.

Q: What other accessories are available?

SFP+ transceivers are not included with the appliance. They can be purchased independently or from WatchGuard as an optional SKU.

Q: What are expected deployment scenarios?

M440 is ideal for Small and Mid-size enterprises to use as a wireless controller, or in environments where there are many VoIP accessories. It can save companies the expense and management overhead of purchasing another switch. The wide range of ports supports a comprehensive network segmentation for security.

Q: What security functionality is offered on the Firebox M?

A: The Firebox M440 supports all of the WatchGuard security services, including Application Control, IPS, GAV, Webblocker, spamBlocker, RED, DLP, and APT Blocker.

Q: In which countries is the Firebox M440 available?

A: The Firebox T10-W is available and certified for use in the United States, Canada, countries in the EU, Japan, Australia and New Zealand.

Q. Is Firebox M440 compatible with XTM devices?

A. XTM models and the Firebox M440 run the same Fireware OS, and are managed using the same tools including WatchGuard System Manager, the management servers, and WatchGuard Dimension.

Q: What support offerings are available?

A: The M440 includes all of the same support options as the existing XTM mid-range appliances. The NGFW and Security Suites include 24×7 LiveSecurity. Upgrades to LiveSecurity Gold are available.

Q: Is the Firebox M440 available on the Pay-by-Points program for Managed Security Service Providers (MSSP)?

A: Yes.

Q: When will it be available?

A: The First Customer Shipment (FCS) of the M440 in the United States will be on October 8th 2014. The M440 will be available to ship internationally to Canada, European Union, Australia, New Zealand and Japan on Oct 22nd.

A press release announcing the M440 will be released on October 6th. The website will be updated to include M440 on October 6th, including a full datasheet including throughput specifications.

 

Voici la liste des références associées

WatchGuard Firebox M440 MSSP Appliance MSS440000
WatchGuard Firebox M440 1-yr Premium 4hr Replacement WG020018
WatchGuard Firebox M440 with 3-yr Security Suite WGM44033
WatchGuard Firebox M440 with 1-yr Security Suite WGM44031
WatchGuard Firebox M440 with 3-yr NGFW Suite WGM44633
WatchGuard Firebox M440 with 1-yr NGFW Suite WGM44631
WatchGuard Firebox M440 with 3-yr LiveSecurity WGM44003
WatchGuard Firebox M440 with 1-yr LiveSecurity WGM44001
WatchGuard Firebox M440 High Availability with 3-yr LiveSecurity WGM44073
WatchGuard Firebox M440 High Availability with 1-yr LiveSecurity WGM44071
WatchGuard Security Suite Renewal/Upgrade 3-yr for Firebox M440 WG019995
WatchGuard Security Suite Renewal/Upgrade 1-yr for Firebox M440 WG019996
WatchGuard NGFW Suite Renewal/Upgrade 3-yr for Firebox M440 WG019997
WatchGuard NGFW Suite Renewal/Upgrade 1-yr for Firebox M440 WG019998
WatchGuard LiveSecurity 24×7 Renewal 3-yr for Firebox M440 WG019999
WatchGuard LiveSecurity 24×7 Renewal 1-yr for Firebox M440 WG020000
WatchGuard LiveSecurity Renewal 3-yr for Firebox M440 WG020001
WatchGuard LiveSecurity Renewal 1-yr for Firebox M440 WG020002
WatchGuard Upgrade to LiveSecurity Gold 3-yr for Firebox M440 WG020003
WatchGuard Upgrade to LiveSecurity Gold 1-yr for Firebox M440 WG020004
WatchGuard WebBlocker 1-yr for Firebox M440 WG020005
WatchGuard Gateway AntiVirus 1-yr for Firebox M440 WG020006
WatchGuard spamBlocker 1-yr for Firebox M440 WG020007
WatchGuard Intrusion Prevention Service 1-yr for Firebox M440 WG020008
WatchGuard Reputation Enabled Defense 1-yr for Firebox M440 WG020009
WatchGuard Application Control 1-yr for Firebox M440 WG020010
WatchGuard Data Loss Prevention 3-yr for Firebox M440 WG020011
WatchGuard Data Loss Prevention 1-yr for Firebox M440 WG020012
WatchGuard APT Blocker 3-yr for Firebox M440 WG020013
WatchGuard APT Blocker 1-yr for Firebox M440 WG020014
Redundant Power Supply and Rack-Mount Rails Kit for WatchGuard Firebox M440 WG8582
Transceiver 10Gb Short-Range SFP+ for WatchGuard Firebox M440 WG8583