Secure Web Gateway 11.2.x Release Notes
New Features in the 11.2 Release
This release provides the following new features. For resolved issues in this release and the update releases, see further below.
NOTE: Secure Web Gateway 11.2 is provided as a main release.
For information about how to install this release, see the Upgrading to a New Version - Controlled Release. If you are installing the Secure Web Gateway appliance software for the first time, see Installing Secure Web Gateway for the First Time.
New Properties for Web Policy Rules
When configuring rules for your web policy, you can use these new items:
- A new property to expose encrypted archive directory listings.
- A new property to store the rule and rule set names or IDs that were processed at the end of the request and response filtering cycles.
GTI Data Included in Feedback File
Data that is collected by the GTI diagnosis script of the operating system is included in the output feedback file.
TCP Dump Options Enhanced
TCP dump options have been enhanced by adding a packet tracing feature.
More Flexibility for HTTP Proxy Port Configuration
When configuring an HTTP Proxy Port, you can disable the Enable FTP over HTTP option. The option is enabled by default.
SSL Tap Configuration Enhanced
The following enhancements have been added to SSL Tap configuration:
- The destination port number is not overwritten by default when tapped packets are created.
- The destination MAC address can be customized when tapped packets are broadcast.
- SSL tapping now supports HTTP2 on Secure Web Gateway.
Detection of Excel 4 Macros Added
Excel 4 macros are now detected in media type filtering.
IP Spoofing Supported for HTTP(S) in Proxy Configuration
IP spoofing is supported for HTTP(S) when setting up proxies in Explicit Proxy or L2 Transparent mode.
What's new in update 11.2.5
Enhancements have been introduced as follows in this release.
Skyhigh Rebranding Changes
- Icons, and logos are rebranded from McAfee to Skyhigh Secure Web Gateway.
Known Issues and their Patches
For a list of issues that are known, but not resolved yet, see the table below.
|Fix Version||Found Version||Description|
Issue: After you update a central management cluster from 10.2.x to 11.2.x (specifically 11.2.4 or earlier), you see one of the following issues:
Workaround: Run the following commands on each cluster node via CLI:
service mwg-core stop
After the service restart, a new list is created automatically.
Issue: 11.2.3 uses an updated version of Tomcat.
Issue: After you reboot, the kdump service fails to start.
Issue: Your Browser response page shows corrupted text. No errors are seen in the SWG logs.
Issue: Your browser triggers a file download, which is a text file named "f.txt." No errors are seen in the SWG logs.
Issue: Memory-leak leads to one or more of the following issues:
Resolution: This issue is fixed in version 11.1.4
Resolved issues in update 11.2.8
This release resolves known issues.
NOTE: Secure Web Gateway 11.2.8 is provided as a main release.
For information about how to upgrade to this release, see Upgrading to a new version – Main Release.
JIRA issue numbers are provided in the reference columns
SWG Release version 11.2.7 was rolled back due to an identified performance Issue. Therefore, the List of Issues fixed in the aforementioned Version is available as resolved in the Current Release Version.