TMS zl Module Release Notes ST.1.2.100916
Table Of Contents
- Release Notes: Version ST.1.2.100916 Software for the HP ProCurve Threat Management Services zl Module
- Contents
- Software Management
- Download Documentation from the Web
- Software Updates
- Special Considerations Prior to Updating
- Clarifications
- Enhancements
- Enhancements in ST.1.2.100916
- ST.1.1.100430
- ST.1.1.100226
- Command Line Interface (CLI) control of VPN functionality
- RADIUS authentication for management logins
- RADIUS authentication for L2TP users
- Renaming zones
- 256 VLANs now supported, increased from 19 VLANs
- Enhanced sort and filter capabilities for displaying log files
- Improved SNMP Monitoring for network traffic and key system resources
- Software Fixes in Releases ST.1.0.090213 - ST.1.2.100916
- Known Issues
85
Known Issues
Release ST.1.0.090213
■ PR_8428 — Multicast routing is enabled after adding or editing multicast on a VLAN and
refreshing the screen. If multicast routing is going to be configured and disabled until a later
time, the user should always disable multicast routing as the last step, after configuring VLAN
Settings.
Example:
1. Launch the TMS zl Module’s Web browser interface.
2. Go to the Network section.
3. Select the Routing.
4. Go to the Multicast tab.
5. Under Multicast Settings, disable Multicast Routing by unchecking the box next to Enable
multicast routing.. Click the Apply My Changes button.
6. Multicast routing is disabled.
7. Add or edit a VLAN with Multicast enabled.
8. Refresh the Multicast page by pressing F5.
9. Multicast routing is now enabled (the box next to Enable multicast routing.. is checked).
Expected Result: Multicast routing should remain disabled.
■ PR_9404 — SSH Buffer errors are shown in logs with varying severity. These messages
represent temporary and recoverable conditions, but they should all be of the same severity.
Example log entries are as follows:
time="2008-09-30 22:14:25" severity=warning pri=5 fw=ProCurve-TMS-zl-Module
id=ssh msg="fatal: buffer_get_string: buffer error"
time="2008-09-30 22:14:25" severity=info pri=6 fw=ProCurve-TMS-zl-Module
id=ssh msg="fatal: buffer_get_string: buffer error"
time="2008-09-30 22:14:25" severity=minor pri=3 fw=ProCurve-TMS-zl-Module
id=ssh msg="fatal: buffer_get_string: buffer error"
■ PR_9486 — ICQ ALG does not allow two-way file transfer, but only one-way file transfer.
There is no workaround for this issue. An example of the problem is described below:
Using ICQ 5.1., configure the firewall to allow TCP 5190-5193, HTTP, HTTPS and DNS.
Chatting between ICQ clients works find, but when it comes to file transfer, transferring a
file from a client on the Internal Zone to the External Zone works, but one cannot transfer
a file from a client on the External Zone to the Internal Zone.
■ PR_10267 — The TMS zl Module detects the denial of service attack 'jolt2' as 'jolt' and does
not detect 'jolt'. This issue is described as follows:
There are 2 mode of operation for jolt2
• Invalidly fragmented ICMP ECHOs (pings)