Version 24.06-05 November 22, 2024
Enhancements
The following enhancement is included in this release:
-
Integrates the FIPs Teleport agent into the Gateway to accommodate both FIPS (FedRAMP) and non-FIPS (commercial) environments. Teleport is disabled by default. It can only be enabled by the customer when working in conjunction with Cisco Support for advanced troubleshooting.
Fixes
The following fixes are included in this release:
-
Fixes an issue where traffic processing on an Ingress Gateway could cause high CPU resulting in an unnecessary auto-scale. The high CPU is a result of moving from a policy that initially processes a connection using an unencrypted HTTP proxy and then moving to an encrypted TCP proxy due to an HTTP redirection.
-
Fixes an issue where an Egress Gateway Forward Proxy policy could get stuck in attempting to match traffic to the proper Policy Rule.
-
Fixes an issue where some long-lived active connections would not be properly actively reset (send a TCP RST).
-
Fixes a Gateway crash that is caused by detection of malware in an Ingress Gateway reverse proxy policy.
-
Fixes the recording of Stats related to Active Connections and Connection Rate where UDP sessions were not being properly counted.