Cisco
Login
Search
Software Multicloud Defense
Activity Cloud Deployment

Multicloud Defense Gateway Fixes and Enhancements Version 24.06 Version 24.06-08-a1 January 16, 2025

Last updated: May 29, 2025

Version 24.06-08-a1 January 16, 2025

This is a hotfix.

Fixes

The following fix is included in this hotfix:

  • Fixes an issue where a forwarding policy could not retrieve the Service Name Indication (SNI) from a TLS Client Hello message causing the Gateway to close the connection with a TCP RST. This is caused by a change made in Chrome in April 2024 to shift to Post-Quantum Cryptography. With this change, the Client Hello is larger than 1415 bytes, which can result in an inability to retrieve the SNI, which is used by the policy to match or filter by domain. The fix ensures the forwarding policy can support Client Hello sizes greater than 1415 bytes.

Previous topic Version 24.06-09 February 14, 2025 Next topic Version 24.06-08 January 16, 2024