F-Secure Internet Gatekeeper Virtual Appliance 5.30

Version 5.30.75 build 1 RTM

General

This document contains important information regarding F-Secure Internet Gatekeeper for Linux Virtual Appliance. We strongly recommend that you read the entire document before proceeding.

What’s in this document:

• Product contents
• Upgrading the Virtual Appliance
• Contact information and feedback

Product contents

F-Secure Internet Gatekeeper for Linux Virtual Appliance provides a simple method for deploying F-Secure Internet Gatekeeper on ESXi-based virtual environments. The virtual appliance image contains the CentOS 6.6 operating system and F-Secure Internet Gatekeeper version 5.30, ready for use after a few deployment steps.

The appliance has an easy-to-use Web User Interface for starting and stopping the various F-Secure Internet Gatekeeper proxy services.

See the F-Secure Internet Gatekeeper Virtual Appliance Administrator’s Guide for deployment steps.

New features

This release contains the following new features, bug fixes, and other changes that have been added in 5.22.14 build 4 release.

• The latest F-Secure Internet Gatekeeper 5.30.75 provides integration with F-Secure Security Cloud and many other bug fixes and improvements. For the full list of changes, visit https://help.f-secure.com/product.html#business/releasenotes-business/latest/en/fsigk_5_30-latest-en
• Fixed CSLP-1141: Incorrect SELinux security context prevents log file rotation in Virtual Appliance
• Fixed CSLP-1151: Updated glibc to version 2.12-1.166.el6_7.7; see https://lists.centos.org/pipermail/centos-announce/2016-February/021668.html for more details
• Updated openssl to version 1.0.1e-42.el6_7.4; see https://lists.centos.org/pipermail/centos-announce/2016-March/021712.html for more details

Changes in the previous releases

5.22.14 build 4:

• Fixed CSLP-1064: Updated openssl to the latest version 1.0.1e-42.el6_7.1 in CentOS 6

5.22.14 build 3:

• Fixed CSLP-371: Proxy services are not started on the system boot.
• Fixed CSLP-703: Truncate long URLs to 3 KB when writing access/detect log entries.

5.21.18 build 1:

• Fixed CSLP-467: Increase the maximum size of HTTP request
• Fixed CSLP-638: Updated openssl to the latest version 1.0.1e-30.7 in CentOS 6
• Disabled Management CIMOM server (ports 5488 and 5489) on ESXi platform

5.20.646 build 15:

• Fixed security vulnerability FSC-2015-2

5.20.646 build 13:

• Fixed CSLP-538: Update glibc in IGK VA for fixing GHOST vulnerability
• Updated VMWare tools to the latest available version 9.9.0

Upgrading the virtual appliance

New versions of the F-Secure Internet Gatekeeper Virtual Appliance will occasionally be released to add new features and fix security and other issues. For optimal protection, you should monitor relevant security advisories and release announcements, and apply upgrades as soon as feasible. Running the most recent version also guarantees that F-Secure supports your Virtual Appliance.

All updates are delivered as a full Virtual Appliance image that can be deployed and configured to replace the previous version.

Backing up the virtual appliance configuration

Replacing a deployed Virtual Appliance with a new one involves transferring the configuration from the old Virtual Appliance to the new one. This must be done when you either upgrade the product or install hotfixes. To download a package containing the necessary data for migration, open the product’s Web User Interface and select “Backup and restore” in the “System information” sub-menu. Click “Backup configuration” to download the archive.
The archive contains the following data for updating to a newer release of the Virtual Appliance:

• A backup of all settings configurable in the Web UI, including
  • F-Secure Internet Gatekeeper proxy settings
  • F-Secure Internet Gatekeeper virus scanning settings
• Proxy authentication settings
• Any modifications to virus detection templates
• Access, error and debug logs of proxies
• Virus database update logs

Importing the backed-up configuration to a new virtual appliance

Log in to the Web User Interface and select “Backup and restore” in the “System information” sub-menu. Click “Restore” and upload the previously saved archive. Click “Upload” to restore your configuration automatically.

Known issues

• The diag package contains only the most recent log files. As a workaround, download the individual log files from the webui separately.
• CSLP-492: Web UI does not work in Internet Explorer 7/8 browsers. As a workaround, use either Firefox or Chrome to configure the product.
• The following error message may appear during network configuration step. It is harmless and should be ignored: grep: /etc/sysconfig/network-scripts/ifcfg-eth0: Permission denied

Contact information and feedback

To provide feedback or report any issues you encounter, go to: http://www.f-secure.com/en/web/business_global/support/product-support

When reporting problems, please include at least the following information in your report:

• The virtualization host and other tools used and their versions.
• Description of the issues encountered, with screenshots of any error messages if possible.

Copyright © F-Secure Corporation. All rights reserved.

Source : Official F-Secure Brand
Editor by : BEST Antivirus KBS Team