version 3.80.00 rev. 1 february 2017 -...

APSolute Vision

Release Notes

Version 3.80.00 Rev. 1 February 2017

Release Notes: APSolute Vision Version 3.80.00, Rev. 1, February 2017

TABLE OF CONTENTS

CONTENT ..................................................................................................................................................... 6

RELEASE SUMMARY .................................................................................................................................. 6

SUPPORTED PLATFORMS ........................................................................................................................ 6

ODS VL SPECIFICATION ........................................................................................................................... 7

OVA-DEPLOYMENT ................................................................................................................................... 7

BROWSER AND OS SPECIFICATIONS FOR WEB BASED MANAGEMENT .......................................................... 8

CAPACITY SPECIFICATIONS ....................................................................................................................... 9

System Capacity .............................................................................................................................. 9

APM Performance Notes ............................................................................................................... 11

SUPPORTED DEVICES AND VERSIONS ................................................................................................ 12

SUPPORTED ALTEON VERSIONS .............................................................................................................. 12

SUPPORTED APPWALL VERSIONS ........................................................................................................... 12

SUPPORTED LINKPROOF NG VERSIONS .................................................................................................. 13

SUPPORTED DEFENSEPRO VERSIONS ..................................................................................................... 13

SUPPORTED DEFENSEFLOW VERSIONS ................................................................................................... 14

SUPPORTED DEFENSEPIPE VERSIONS ..................................................................................................... 14

OBTAINING AND INSTALLING THE SOFTWARE................................................................................... 15

OBTAINING THE SOFTWARE ..................................................................................................................... 15

INSTALLING THE SOFTWARE .................................................................................................................... 15

UPGRADING THE SOFTWARE ................................................................................................................ 15

WHAT’S NEW IN 3.80.00 ........................................................................................................................... 16

RIGHT TO USE LICENSE MANAGEMENT .................................................................................................... 16

LOGICAL GROUPS OF DEVICES ................................................................................................................ 20

OPERATOR TOOLBOX DASHBOARD ENHANCEMENTS................................................................................. 16

SNMP ALERT REPORTING ...................................................................................................................... 22

NEW MULTI-DEVICE SERVICE STATUS DASHBOARD .................................................................................. 22

APSOLUTE VISION DEPLOYMENT ON MICROSOFT HYPER-V VIRTUAL MACHINE ......................................... 24

SUPPORT DEFENSEPRO MR PLATFORM .................................................................................................. 24

QUERY LIMITATION ON ONGOING ATTACKS TABLE AND ALERTS TABLE ...................................................... 24

AUTOMATION—REST API ...................................................................................................................... 24

MAINTENANCE FIXES .............................................................................................................................. 24

FIXED IN VERSION 3.80.00 (BUILD XXX) .................................................................................................. 25

APSolute Vision—General ............................................................................................................. 25

ADC Management .......................................................................................................................... 27

Security Management .................................................................................................................... 27


FIXED IN VERSION 3.70.01 (BUILD 894) ................................................................................................... 29


FIXED IN VERSION 3.70.00 (BUILD 862) ................................................................................................... 30


ADC Management .......................................................................................................................... 33


FIXED IN VERSION 3.60 (BUILD 1139) ...................................................................................................... 39


ADC Management .......................................................................................................................... 40




ADC Management .......................................................................................................................... 43




ADC Management .......................................................................................................................... 48


FIXED IN VERSION 3.20 (BUILD 1360) AND VERSION 3.30 ......................................................................... 50


FIXED IN VERSION 3.20 GA (BUILD 1334 AND BUILD 1360) ...................................................................... 51


ADC Management .......................................................................................................................... 51


FIXED IN VERSION 3.20 EA (BUILD 49) AND GA (BUILD 1334) .................................................................. 53


ADC Management .......................................................................................................................... 53


FIXED IN VERSION 3.00 GA (2256) .......................................................................................................... 55

APSolute Vision – General ............................................................................................................ 55

ADC Management .......................................................................................................................... 55


FIXED IN VERSION 3.00.00 BUILD EA (128) AND GA (2256)...................................................................... 56

APSolute Vision – General ............................................................................................................ 56

ADC Management .......................................................................................................................... 56



FIXED IN VERSION 2.40.00 ...................................................................................................................... 59


ADC Management .......................................................................................................................... 60


FIXED IN VERSION 2.30.00 ...................................................................................................................... 61


ADC Management .......................................................................................................................... 62


FIXED IN VERSION 2.15.10 ...................................................................................................................... 63


ADC Management .......................................................................................................................... 64


FIXED IN VERSION 2.15.00 BUILD 240 ...................................................................................................... 65


FIXED IN VERSION 2.15.00 BUILDS 195 AND 240 ...................................................................................... 66


ADC Management .......................................................................................................................... 66


FIXED IN VERSION 2.10.00 BUILD 745 ..................................................................................................... 68


ADC Management .......................................................................................................................... 68


FIXED IN VERSION 2.10.00 BUILD 740 ..................................................................................................... 68


ADC Management .......................................................................................................................... 69


KNOWN LIMITATIONS .............................................................................................................................. 71

APSOLUTE VISION—GENERAL ................................................................................................................ 72

ADC MANAGEMENT ................................................................................................................................ 75

DEVICE PERFORMANCE MONITORING (DPM) ........................................................................................... 77

APPLICATION PERFORMANCE MONITORING (APM) ................................................................................... 79

SECURITY MANAGEMENT ......................................................................................................................... 84

APSOLUTE VISION REPORTER (AVR) ...................................................................................................... 90

VDIRECT SERVICE ................................................................................................................................... 92


APSOLUTE VISION REPORTER (AVR)—MAINTENANCE FIXES AND FEATURES ............................ 95

AVR V2.1.1.11 RELEASED ON 19-MAY-2016 .......................................................................................... 95

AVR V2.1.1.10 RELEASED ON 7-APRIL-2016........................................................................................... 96

AVR V2.1.1.9 RELEASED ON 23-DECEMBER-2015 .................................................................................. 96

AVR V2.1.1.8 RELEASED ON 1-DECEMBER-2015 .................................................................................... 96

AVR V2.1.1.7 RELEASED ON 17-NOVEMBER-2015 .................................................................................. 96

AVR V2.1.1.6 RELEASED ON 4-NOVEMBER-2015 .................................................................................... 97

AVR V2.1.1.5 RELEASED ON 1-OCTOBER-2015 ...................................................................................... 97

AVR V2.1.1.1 RELEASED ON 8-JULY-2015 .............................................................................................. 97

AVR V2.1.1.0 RELEASED ON 18-JUNE-2015 ........................................................................................... 98

AVR V2.1.0.6 RELEASED ON 22-MAY-2015 ............................................................................................ 99

AVR V2.1.0.5 RELEASED ON 11-MAY-2015 ............................................................................................ 99

AVR V2.1.0.4 RELEASED ON 14-APRIL-2015......................................................................................... 100

AVR V2.1.0.3 RELEASED ON 10-APRIL-2015......................................................................................... 100



RELATED DOCUMENTATION ................................................................................................................ 102


Content

Radware announces the release of APSolute Vision version 3.80.00. These release notes

describe new features since the last released version of APSolute Vision, 3.70.01. This version

includes all bug fixes from previous versions.

Release Summary

Version 3.80.00 supports new features and bug fixes.

Build Number: 719

Supported Platforms

APSolute Vision version 3.80.00 runs as a physical appliance on the OnDemand Switch (ODS-

VL) platform and as a virtual appliance (VA) running on VMware vSphere ESXi 5.1, 5.5, or 6.0,

Virtual Machine version 8, or on KVM, or on Microsoft Hyper-V 6.3.

Deployment on KVM was tested running host OS Ubuntu 14 (version 14.04.2), RHL6, CentOS 6

and 7.

KVM version details:

Compiled against library libvirt 1.2.2

Using library libvirt 1.2.2

Using API QEMU 1.2.2

Running hypervisor QEMU 2.0.0

The following table lists the available deployments:

Deployment ODS-VL (Physical Appliance) VMware KVM Hyper-V

APSolute Vision

Full-scale

APSolute Vision

with APM Server

APSolute Vision

Demo-scale


ODS VL Specification

The specifications of the ODS VL are as follows:

8 GB RAM

Four CPUs

450 GB hard drive

Two NICs

OVA-Deployment

The specifications of the full-size APSolute Vision with APM server VA are as follows:

24 GB RAM

12 vCPUs

600 GB HD

Four defined virtual NICs

Maximum supported events-per-second per unit: 1000 (500 via management port)

Maximum distinct URLs per application: 100

The specifications of the full-size VA are as follows:

16 GB RAM

8 vCPUs

250 GB hard drive

Three defined virtual NICs

Note: For higher scale, you can allocate additional CPU and RAM in your virtual machine

settings.

Caution: Due to new architectural changes in APSolute Vision, the default specifications for a

full-size VA have changed in version 3.80 as per above. Radware recommends verifying the

specifications of your virtual machine before upgrading to version 3.80 or higher. Failing to

comply with the above specifications’ recommendation could result in scale degradation.

The specifications of the demo VA are as follows:

8 GB RAM

Four vCPUs

50 GB hard drive

Three defined virtual NICs


Browser and OS Specifications for Web Based Management

The following operating systems are supported for APSolute Vision Web Based Management:

Windows Server 2008R2 64-bit—Tested with Internet Explorer 11.0.9600.16438 (excluding

AVR), Chrome (excluding AVR and APM) 56.0.2924.87, Firefox (excluding AVR) 51.0.1

(32-bit) and 56.0.2924.87 (excluding AVR).

Windows 8.1 64-bit—Tested with Internet Explorer 11.0.9600.18500, Chrome (excluding

AVR) 56.0.2924.87 and Firefox 51.0.1 (32-bit).

Windows 7 Professional SP1 32-bit and 64-bit—Tested with Internet Explorer 11.0.9600.

18500, Chrome (excluding AVR) 56.0.2924.87 and Firefox 51.0.1 (32-bit).

Windows Server 2012R2 64-bit—Tested with Internet Explorer 11.0.9600.16438 (excluding

AVR), Chrome (excluding AVR) 56.0.2924.87 and Firefox 51.0.1 (32-bit).

Linux Ubuntu Desktop 14.04 LTS 64-bit—Tested with Chromium (excluding AVR)

56.0.2924.87 and Firefox 51.0.1 (64-bit).

Mac OS X—Tested with Firefox (excluding AVR) 51.0.1 (64-bit), Chrome (excluding AVR)

56.0.2924.8716 (64-bit) and Safari (excluding AVR) 10.0 (12602.1.50.0.10).

The following Web browsers are supported for launching the APSolute Vision Web-based

interface, the APSolute Vision Reporter (AVR), the Device Performance Monitor (DPM), and the

APM Web-based interface:

Mozilla Firefox 51

Chrome 56

Internet Explorer 11

Safari 10

Launching the APSolute Vision Reporter (AVR) requires Java Runtime Environment (JRE)

1.8.0_51-b16 or later.


Capacity Specifications

System Capacity

Interface Topic Capacity of Physical Appliance

Capacity of Full-Scale VA and VA with APM Server with 8 vCPUs and 16 GB RAM


Capacity of Demo-Scale VA

User

Management

User accounts Unlimited Unlimited Unlimited Unlimited

Concurrent

users

50 50 50 1

Device

Management

Maximum

managed Alteon

devices

(Standalone, VA,

ADC-VX, and

vADC)

1000 1000 1000 2

Maximum

managed

AppWall devices

(Standalone,

Cluster

Manager, or

Gateway) or

Alteon devices

with embedded

AppWall module

20 20 20 2

Maximum

managed

DefensePro

devices

40 40 40 2

Maximum total

managed

devices

1000 1000 1000 2






Security

Monitoring

Maximum total

number of

enabled Network

or Server

Protection

policies on all

managed

DefensePro

devices

200 1500 1500 Not

supported for

production

deployment

Maximum total

number of

profiles included

in enabled

Network or

Server

Protection

policies on all

managed

DefensePro

devices

680 4200 4200 Not

supported for

production

deployment

Attacks stored in

APSolute Vision

Reporter

100M 100M 100M Not

supported for

production

deployment

Device

Performance

Monitoring

(DPM)

Maximum total

number of Alteon

devices

monitored by

DPM

400 400 400 Not

supported for

production

deployment

Maximum total

number of

applications

(virtual services)

monitored by

DPM

2000 2000 2000 Not

supported for

production

deployment






Maximum total

number of real

servers

monitored by

DPM

5000 5000 5000 Not

supported for

production

deployment

Application

Performance

Monitoring

(APM)

Maximum

supported

events-per-

second

N/A 1000 1000 N/A

Maximum

distinct URLs per

application

N/A 100 100 N/A

Performance testing for Security Monitoring was done with the maximum supported enabled

Network Protection or Server Protection policies with the maximum supported profiles, under

100 constant concurrent attacks.

The scalability testing of Device Performance Monitoring (DPM) and Security Monitoring were

performed in isolated environments for each feature. The concurrent operation of DPM and

Security Monitoring can affect the actual performance.

APM Performance Notes

To achieve the best performance, route events to the G4 interface.

The APM performance limit through the G4 interface is 1000 events per second.

The APM performance limit through the G1 or G2 interface is 500 events per second.


Supported Devices and Versions

APSolute Vision version 3.80.00 supports Alteon, AppWall, LinkProof NG, and DefensePro

devices. DefenseFlow and DefensePipe are also supported.

Supported Alteon Versions

The following table lists the Alteon versions supported by the version:

Software Version Support

29.5.x Support for configuration and monitoring.






Supported AppWall Versions

The following table lists the AppWall versions supported by the version:


5.0.1 Supported by APSolute Vision Reporter (AVR) only.

Note: The device must be manually configured to send security

reporting syslog events to the APSolute Vision server.

6.4.1 Support for configuration, monitoring, real-time security monitoring, and

AVR.


reporting syslog events to APSolute Vision server. The Refine

functionality is not supported.


AVR.





AVR.






Supported LinkProof NG Versions

The following table lists the LinkProof NG versions supported by the version:





Supported DefensePro Versions

The following table lists the DefensePro versions supported by the version:


6.09.01 Support for configuration, monitoring, and security reporting.







6.14.x Support for configuration, monitoring, and security reporting.


















vDP 1.00.x Support for configuration, monitoring, and security reporting.

vDP 1.01.x Support for configuration, monitoring, and security reporting.

Supported DefenseFlow Versions

The following table lists the DefenseFlow versions supported by the version:


2.3.0 Support for standalone DefenseFlow deployment.

Support for configuration, real-time, and historical security monitoring

(AVR).



(AVR).



(AVR).

2.6.x Support for standalone DefenseFlow deployment.


(AVR).

Supported DefensePipe Versions

APSolute Vision can provide access to all DefensePipe versions.


Obtaining and Installing the Software

This section describes how to obtain and install the software for this version.

Obtaining the Software

Go to http://portals.radware.com/Customer/Home/ and log in if prompted.

Note: You must have a username and password before attempting to download a software

update. If you do not have a username and password, go to

https://portals.radware.com/Not-Logged-In/Customer-Registration-Form/ and complete and

submit the form.

On the Customer portal home page, do the following:

a. From Downloads, select the product family that you want.

b. For the product family you selected, select the product that you want.

c. Select the product version and platform.

d. For the product version you selected, select the Software Downloads tab. Select the

platform you want from the table.

For the release version and platform you want to update or recover, select the Download

Software icon, and download the relevant software update or recovery files to a server

within your own organization that is accessible using FTP or TFTP.

Installing the Software

For details on installation of the APSolute Vision server, refer to the APSolute Vision Installation

and Maintenance Guide.

Upgrading the Software

You can upgrade to this version from APSolute Vision version 3.40 and later, including fix

packs.

Following software upgrade, you should clean the Web UI browser cache or perform a deep

refresh (Ctrl+F5).

Additionally, following upgrade, make sure APSolute Vision is using the latest version of all

device drivers.

To make sure APSolute Vision is using the latest version of all device drivers

1. In APSolute Vision, select Settings ( ) > System > General Settings > Device Drivers.

2. Click the (Update All Drivers to Latest) button.

http://portals.radware.com/Customer/Home/

https://portals.radware.com/Not-Logged-In/Customer-Registration-Form/


What’s New in 3.80.00

The following sections describe the main new features and enhancements supported by

APSolute Vision version 3.80.00.

Operator Toolbox Dashboard Enhancements

Version 3.80 introduces a new look and feel of the Operator Toolbox dashboard, enabling you

to manage and customize contents of the panels in the Toolbox dashboard.

You can manage the contents of the category panels by adding, removing, or moving scripts.

Moving scripts is very easy. You can select a script in another category panel, or an unassigned

script, and simply drag and drop it to the selected panel.


Figure 1: Operator Toolbox Dashboard in APSolute Vision Version 3.80

Toolbox icon—Displays the Toolbox dashboard. Clicking Advanced icon displays the advanced

features of the Toolbox.

You can customize your view of the dashboard. You can drag and drop a script

from one category panel to another category panel. You can add scripts to the

Favorites panel.

You can hover over a script icon and click a button to configure a

scheduled task to run the script, delete the script from your view of

the dashboard, and run the script immediately.

Here is an example of a user-defined icon for a user-defined

script.

You can click this button to select a script in

another panel and move it to the currently selected

panel.


You can use the new Add Scripts dialog box to add one or multiple scripts to a panel in the

Toolbox dashboard.

Figure 2: Add Scripts Dialog Box

Type a string in this box to show only the

matching script names.

The Add Scripts dialog box displays only the

categories that are populated. Here, the

category lists are collapsed.

The Unassigned category contains the

scripts in the APSolute Vision server with the

Category value Unassigned. Here, the

category list is expanded, and it contains an

example of a user-defined icon for a user-

defined script.


Right to Use License Management

APSolute Vision has capacity limitations and limitations based on the right-to-use (RTU) license.

The total number of licenses is called the RTU license pool. The RTU license pool determines

the maximum number of supported physical and virtual devices that the APSolute Vision server

can manage.

In this version and later, APSolute Vision enforces RTU licenses when the system is in violation

of the RTU license—that is, when the number of devices managed by APSolute Vision exceeds

the number of permitted devices by the RTU license pool.

When a system is in violation of the RTU license:

APSolute Vision allows you to manage only the number of devices corresponding to the

RTU license pool.

The RTU License status of the devices that are not covered by the RTU license pool is

Invalid.

APSolute Vision randomly selects which managed devices have the Invalid status.

You cannot configure devices whose RTU License status is Invalid. In this context, configure

includes: Scheduler tasks, Operator Toolbox scripts, multi-device configuration, and multi-

device configuration with Logical Groups.

APSolute Vision notifies users with Administrator or Vision Administrator roles regarding license

expiration 90 days before the expiration date.

Caution: After upgrading from APSolute Vision versions earlier than 3.80, if there is an RTU-

license alert, there will be a grace period of 30 days. This grace period is intended to grant you

time to contact Radware Technical Support and purchase additional RTU licenses, as required.

After the grace period, APSolute Vision will support only the number of devices covered by the

RTU license pool.

Note: When removing a device from APSolute Vision that is covered by the RTU license pool,

the license portion returns to the pool. If there are managed devices that are not covered by the

pool, APSolute Vision randomly selects one of those devices, and allocates the license portion

to that device.

You can use the RTU Licenses table in the License Management pane (Settings > System >

Device Resources > Device Subscriptions) to help determine whether you exceed

scale/capacity specifications and whether you need to purchase additional RTU license.

The RTU Licenses table includes the following columns:

Number of Devices—The number of devices of the specific type that APSolute Vision is

managing.


Devices with No License—The number of devices of the specific type that have no RTU

license. A non-zero value indicates that the system is in violation of the RTU license.

Allocated Licenses—The number of devices of the specific type from the license pool that

are allocated (used).

License Pool—The total number of licenses in the pool.

Caution: If you receive any RTU license alert, contact Radware Technical Support to validate

your license.

Logical Groups of Devices

A Logical Group is a group of devices of the same type, which you manage as a single entity.

You can use a Logical Group of devices to help you define the scope of APSolute Vision users,

configure and monitor multiple devices in a single view, and more. When you change the set of

devices in a Logical Group, the features that use the group reflect the change dynamically.

The devices in a Logical Group do not need to be running the same software version, and the

same device can exist in more than one Logical Group, allowing you to manage your devices in

a more flexible manner, customized to your needs.

You can use a Logical Group to help you perform the following:

Define the scope of APSolute Vision users—The Scope value of a user’s RBAC

role/scope pair can be a Logical Group. The user’s scope dynamically updates, according to

the devices in the Logical Group.

Manage multiple devices simultaneously—When you configure the devices in a Logical

Group, you use the multi-device view to do the following:

View the Multiple Devices Summary table—The table contains all the relevant devices

and comprises the following columns: Lock State, Device Type, Device Name, IP

Address, Locked by User, and Status.

Lock multiple devices to configure them.

Make configuration changes to the lead device and apply the changes to the other

devices in the Logical Group—APSolute Vision dynamically chooses the lead device

of the Logical Group. After you make a valid change and click Submit All, APSolute

Vision attempts to change the value for the submitted parameter(s) on the lead device

and all the other devices in the Logical Group.

Run configuration-management actions for the relevant devices—You can run the

Apply or Revert actions on Alteon or LinkProof NG devices. You can run the Update

Policies action on multiple DefensePro devices.


Open the Security Monitoring perspective—In the multi-device view, the Security

Monitoring perspective displays the Dashboard View and Traffic Utilization tabs—with

the data aggregated for all the selected devices.

Specify devices for scheduled tasks—In addition to selecting individual devices, you can

specify one or more relevant Logical Groups.

Specify devices for Operator Toolbox scripts—In addition to selecting individual devices,

you can specify one or more relevant Logical Groups.

Specify devices for sending or deleting DefensePro configuration templates—In

addition to selecting individual devices, you can specify one or more Logical Groups of

DefensePro devices.

Specify devices for an Alert Profile—In addition to selecting individual devices, you can

specify one or more relevant Logical Groups.

Specify devices for the Alerts Table Filter—In addition to selecting individual devices, you

can specify one or more relevant Logical Groups.

Specify devices for REST API operations—For information on the REST API, see the

APSolute Vision REST API documentation.

Management of the logical groups of devices is done in a new Logical Groups tree, which was

added to the device pane. It contains user-defined Logical Groups and allows adding, editing,

and deleting groups:

Figure 3: Multi-Device Configuration Using a Logical Group


SNMP Alert Reporting

In addition to sending alert reports to a syslog server, or via e-mail, it is now possible to

configure APSolute Vision to send alert reports to multiple SNMP targets.

APSolute Vision displays and stores in the database all the alerts for APSolute Vision and for all

the managed Radware devices.

You can configure APSolute Vision to send SNMP alerts (traps) to external NMS systems

(SNMP servers or SNMP Alert Targets).

The APSolute Vision server can contain multiple SNMP Alert Rules. The configuration of an

SNMP Alert Rule includes one Alert Profile and one SNMP Alert Target.

Each alert profile allows you to select multiple values of the following: Severity, Module, and

Attack Category.

By selecting specific attack categories, you can select the threat types for which you would like

to get alerts.

APSolute Vision supports SNMPv2c and SNMPv3 for configuring the connection with the SNMP

targets. When you select SNMPv3, you can select the Privacy Protocol for encryption settings

(AES128 or DES) and Authentication Protocol (MD5 or SHA).

New Multi-Device Service Status Dashboard

The Service Status Dashboard is a quick and easy-to-view monitoring screen, which enables

you to view, in a single screen, configuration and status information of up to 10 managed Alteon

and LinkProof NG devices.

Notes:

This feature is available only with Alteon and LinkProof NG version 30.0 and later.

If there are more than 10 managed ADC devices, by default, the Service Status Dashboard

shows the first 10 devices.

Each monitored device can show the following ADC objects:

Virtual services

AppShape++ scripts

Content rules

Server groups

Real servers

WAN links


You can manage the set of devices that the Service Status Dashboard shows and filter objects

in the tree view using the filter dialog box, which includes the following filter criteria:

Free text—Free text that filters the results according to ID or other identifier.

Status—The status of the selected object type.

Type—The type of the ADC object.

Devices—The ADC devices that are configured on the APSolute Vision server.

By default, the information in the Service Status Dashboard refreshes every 15 seconds. You

can pause and resume the refresh of Service Status Dashboard display.

The Service Status Dashboard includes doughnut charts that show summary information and a

tree view with more detailed information.

The Service Status Dashboard includes doughnut charts show the following:

Virtual services—The total number of virtual services configured on the managed devices

and the percentage in each status (Up, Warning, Down, Admin Down, and Shutdown).

Server groups—The total number of server groups configured on the managed devices and

the percentage in each status (Up, Warning, Down, and Admin Down).

Real servers—The total number of real servers configured on the managed devices and the

percentage in each status (Up, Warning, Down, Admin Down, and Mixed). The Mixed status

indicates that the real server is associated with multiple server groups, and the statuses are

not the same.

Clicking a segment in a doughnut chart applies a filter to the corresponding objects in the status

tree.


APSolute Vision Deployment on Microsoft Hyper-V Virtual Machine

In addition to VMware or KVM virtual machines, in this version, you can install APSolute Vision

VA on a Microsoft Hyper-V infrastructure, which supports all the functionality of APSolute Vision.

Hyper-V Server is a dedicated stand-alone product that contains the hypervisor, Windows

Server driver model, virtualization capabilities, and supporting components.

Support DefensePro MR Platform

APSolute Vision version 3.80 and later supports the DefensePro on the MR platform.

Query Limitation on Ongoing Attacks Table and Alerts table

Caution: In this version, the Ongoing Attacks and Alerts tables are limited to 10,000 rows per

request. When exceeding this limit using APSolute Vision WBM, the user will be notified and

asked to refine the filter settings to get better results. Exceeding this limit using the APSolute

Vision REST API results in an error.

Automation—REST API

The APSolute Vision REST API documentation for version 3.80 is available on the Radware

website at

http://webhelp.radware.com/Vision/REST/3_80_00/index.html.

Maintenance Fixes

This section lists all fixed issues that were reported by field personnel or mentioned previously

as known limitations or bugs in versions starting with version 1.0. Later versions contain all fixes

of earlier versions unless otherwise noted.

The issues are arranged as follows:

General issues that relate to the general management of devices, APSolute Vision platform

issues such as RBAC, alert browser, APSolute Vision capacity, and so on.

Issues related to ADC management, such as specific Alteon configurations or monitoring,

Application Delivery view, APM, DPM, and so on.

Issues related to security management, such as specific DefensePro configuration,

monitoring, security monitoring, AVR, and so on.

http://webhelp.radware.com/Vision/REST/3_80_00/index.html


Fixed in Version 3.80.00 (Build 719)

Item Description Bug ID

APSolute Vision—General

This version resolves many security vulnerabilities, including the

following:

CVE-2016-8635, CVE-2016-7545, CVE-2016-7076, CVE-2016-

6313, CVE-2016-6306, CVE-2016-6304, CVE-2016-6302, CVE-

2016-5829, CVE-2016-5387, CVE-2016-5195, CVE-2016-4470,

CVE-2016-2183, CVE-2016-2182, CVE-2016-2181, CVE-2016-

2180, CVE-2016-2179, CVE-2016-2178, CVE-2016-2177, CVE-

2016-2143, CVE-2016-2109, CVE-2016-2108, CVE-2016-2107,

CVE-2016-2106, CVE-2016-2105, CVE-2016-1950, CVE-2016-

1583, CVE-2016-1248, CVE-2016-0799, CVE-2016-0797, CVE-

2016-0718, CVE-2016-0705, CVE-2016-0702, CVE-2015-7575,

CVE-2015-7181, CVE-2015-4000, CVE-2015-3216, CVE-2015-

3197, CVE-2015-3196, CVE-2015-3195, CVE-2015-3194, CVE-

2015-3183, CVE-2015-1792, CVE-2015-1791, CVE-2015-1790,

CVE-2015-1789, CVE-2015-1345, CVE-2015-0293, CVE-2015-

0292, CVE-2015-0289, CVE-2015-0288, CVE-2015-0287, CVE-

2015-0286, CVE-2015-0209, CVE-2015-0206, CVE-2015-0205,

CVE-2015-0204, CVE-2014-9680, CVE-2014-8275, CVE-2014-

8176, CVE-2014-3572, CVE-2014-3571, CVE-2014-3570, CVE-

2014-3567, CVE-2014-3566, CVE-2014-3513, CVE-2014-3511,

CVE-2014-3510, CVE-2014-3509, CVE-2014-3508, CVE-2014-

3507, CVE-2014-3506, CVE-2014-3505, CVE-2014-3470, CVE-

2014-0231, CVE-2014-0226, CVE-2014-0224, CVE-2014-0221,

CVE-2014-0198, CVE-2014-0195, CVE-2014-0160, CVE-2014-

0118, CVE-2014-0098

When upgrading APSolute Vision, configured with a syslog server

parameters, no exception will be displayed in the logs.

DE14528

When a user with an Administrator role creates a scheduled task of

a certain type, APSolute Vision displayed a different task type to

any user with a non-Administrator role. Issue has been resolved.

DE18897

On some rare scenarios, a user was not able to create username

with a password, receiving an error: "Server is unavailable. Please

contact your system administrator". Issue has been resolved.

prod00247388,

prod00247389,

DE19509


APSolute Vision did not generate an e-mail notification for

DefenseFlow new attack events. Issue has been resolved.

prod00249482,

prod00249483,

DE21303

An issue regarding a device disconnected from APSolute Vision and

required to re-register manually to Vision was resolved. APSolute

Vision will re-validate the credentials of the disconnected device

after 5 minutes, and if valid, the device will reconnect.

DE18372

Issues regarding untranslated labels of some AppShapes from

English to Chinese/Korean/Japanese were resolved. That is, when

clicking on the Add button in the AppShapes screen, to open the

“Create AppShape Instance” dialog box and selecting “Citrix

XenDesktop”, some of the labels in the “Citrix XenDesktop Instance”

and the “Load Balancing Settings” TABs, were not translated.

DE18686

The Generate Password Automatically checkbox determines

whether APSolute Vision generates the password automatically

after verifying that the device has a valid support agreement. The

checkbox is now selected by default.

DE18717

When trying to activate an APSolute Vision license, which is invalid

at the time of the installation and will only be valid in the future, a

more detailed and clear message will appear to the user.

DE18951

When trying to schedule an Operator Toolbox task with wrong date

and time, APSolute Vision will now display the correct detailed error

message.

DE19028

After setting the Minimal Log Level to Debug in System > General

Settings > Advanced, it was not possible to update any of the

parameters in System > General Settings > Alert Settings > Alert

Browser. Issue was resolved.

DE19768

After logging into APSolute Vision with a the correct password after

entering the wrong password first, sometimes the user was required

to click on the Log In button more than once in order to successfully

login. Issue was resolved.

DE20742

Issue regarding the long time it took for the Apply (Required) and

Save (Required) buttons to display an orange background to

indicate that the new configuration required an Apply or Save

operations. Issue was resolved.

DE20905

When using the “Generate Automatic Password” option to update

the device’s software, a blank message appeared when the MIS

server failed to generate password. Issue was resolved.

DE22233


APSolute Vision generates an alert indicating the software upgrade

process completed successfully. APSolute Vision displayed the

wrong user name instead of displaying the one with a Vision

Administrator role. Issue was resolved.

DE21257

Using the (“) character in an FTP password was not supported.

Issue was handled, and the password can now support the (")

character.

prod00250404,

prod00250408,

DE22091

ADC Management

Issues regarding quick links in Alteon’s Configuration > Welcome

screens were resolved.

DE19217

When using the Generate Automatic Password option to upgrade

the software of Alteon VA version 30.5 or higher, the operation

failed due to wrong MAC address parameter. Issue was resolved

when the correct MAC address was used.

DE19005

DPM

When a license for a DPM subscription has expired, the DPM will no

longer remain active.

DE19490

APM

When executing the Validate All APM Services script on the

Operator Toolbox dashboard after backing up and restoring

configuration, there will be no longer exceptions on the logs.

DE15806

Security Management

When a Protected Object in DefenseFlow Protected Networks

screen under Configuration > Security Settings > Protected

Objects, contains too many table entries, it is now possible to click

on the Next Page button and navigate to the table’s next page.

DE22491

When deleting an AppWall device from APSolute Vision’s Device

Tree, there is no longer a need to refresh the screen after the

deletion. Now, the screen is updated automatically.

DE8035

When upgrading a DefensePro version-6.14.x device using

APSolute Vision using the Operations > Update Software Version

button, the UI no longer displays a notification that uploading the file

has failed, although it has actually completed successfully.

DE8994


When upgrading the AppWall software and using automatic

password generation, the action will now succeed.

DE19006

When the same policy, with identical name, existed in multiple

devices and when selected by the user to be displayed in the Traffic

Utilization screens under the selected multiple DefensePro devices,

the traffic of the policies with an identical name were counted more

than once, creating duplications. Issue has been resolved.

DE19394

APSolute Vision could not handle approx. 8,000 terminated attacks

per hour without affecting the performance, causing the APSolute

Vision server slow down. Scaling performance optimized in order to

allow high rates of terminated attacks.

DE14817

An issue regarding a wrong status display during a policy update via

APSolute Vision was resolved. APSolute Vision no longer provides

an indication of a successful update before the policy-database-

update process is completed.

DE18013

Some messages in the APSolute Vision Alert Table regarding SUS

and RSA scheduled tasks’ statuses displayed question mark (?)

characters.

DE19431

APSolute Vision displayed an error message when a user tried to

modify, view active BWM policies. Issue was resolved.

prod00248889,

prod00248893,

DE20845

A user with limited access to only part of the policies was able to

view traffic utilization data when the scope included all policies,

including statistics of policies out of the scope. Issue was resolved

and now each user can only see the statistics of the permitted

policies.

DE19420

A safety mechanism was added to prevent from the Collector

service becoming unavailable, which resulted in no security alerts

and no traffic utilization data.

prod00250859,

prod00250860,

DE22548

AVR

None




Security Management

Traffic Monitoring and Attack dashboards screens will no longer

display No Data text after upgrading to APSolute Vision 3.70.00.

This issue has been resolved.

prod00248074,

DE20053






following:

CVE-2016-5699, CVE-2016-5696, CVE-2016-5387, CVE-2016-

5385, CVE-2016-4565, CVE-2016-4449, CVE-2016-4448, CVE-

2016-4447, CVE-2016-3705, CVE-2016-3627, CVE-2016-2550,

CVE-2016-2518, CVE-2016-2118, CVE-2016-2115, CVE-2016-

2112, CVE-2016-2111, CVE-2016-2110, CVE-2016-2109, CVE-

2016-2108, CVE-2016-2107, CVE-2016-2106, CVE-2016-2105,

CVE-2016-1908, CVE-2016-1840, CVE-2016-1839, CVE-2016-

1838, CVE-2016-1837, CVE-2016-1836, CVE-2016-1835, CVE-

2016-1834, CVE-2016-1833, CVE-2016-1762, CVE-2016-1550,

CVE-2016-1548, CVE-2016-1547, CVE-2016-1000, CVE-2016-

0799, CVE-2016-0772, CVE-2015-8767, CVE-2015-8543, CVE-

2015-8324, CVE-2015-7979, CVE-2015-7978, CVE-2015-7852,

CVE-2015-7703, CVE-2015-7702, CVE-2015-7701, CVE-2015-

7692, CVE-2015-7550, CVE-2015-6564, CVE-2015-6563, CVE-

2015-5370, CVE-2015-5352, CVE-2015-5219, CVE-2015-5195,

CVE-2015-5194, CVE-2015-5157, CVE-2015-5156, CVE-2015-

4644, CVE-2014-9653, CVE-2014-9620, CVE-2014-8134, CVE-

2014-8117, CVE-2014-8116, CVE-2014-7842, CVE-2014-3538,

CVE-2012-1571, CVE-2015-3194, CVE-2015-3195, CVE-2015-

3196, CVE-2015-4000, CVE-2003-1418

The loading times of Operator Toolbox scripts were significantly

reduced and a script loading status was added.

DE15439,

DE14928

APSolute Vision now supports the display of a protected object

with 10,000 protected networks. Issue of impact on performance

resulting in a long screen-load time and a Warning Unresponsive

Script notification has been resolved.

DE16278

Issues regarding access error notifications when sometimes trying

to add, edit, or delete a row in the SNMP section of a device were

resolved.

prod00228336,

prod00235948,

prod00245660,

DE3626,

DE3828,

DE6487


In a scenario that was not reproduced, APSolute Vision version

3.40 did not display any real-time information on any of the Traffic

Monitoring and AVR screens. This version has added defense

mechanisms to ensure performance and stability, along with new

logs to be generated in case of such a crash in the future.

prod00244419,

DE16891

It is now possible to edit Privacy Protocol in the device properties

when SNMPv3 is used, and change the value to DES. The

following error message is no longer displayed “Configuration Error

M_00481: Web api - Failed to parse DevicePojo object.”

prod00243294,

DE16067

Errors when setting the Default Display Language to Japanese

under System > General Settings were resolved.

DE14681

Scheduled Tasks now have an improved RBAC enforcement via

REST API.

DE16085

It is now possible to edit and update an existing APSolute Vision

Reporter Backup task without receiving a configuration error.

DE16134

Added pagination to the APSolute Vision User Statistics table. DE8602

Issues regarding untranslated messages from English to Chinese

were resolved. That is, the message “M_00259: User max now

locked out. Please contact your administrator in order to reset

password.” was shown in English when a user set the language to

Chinese and submitted a wrong password three times.

DE10221

Issues regarding partial translation of the AppShape screens from

English to any language were resolved. That is, when navigating to

the Common Web Application menu item, many of the fields

were displayed in English.

DE9601

Issues regarding alerts displaying empty messages were resolved.

Alerts displayed empty messages (“M_01054: ” (empty

message) when importing DefensePro templates.

DE11940

The user will no longer receive an error notification when trying to

change the scope of an existing user.

DE16123,

DE13026

When generating a tech-support file, APSolute Vision now collects

all the zipped logs into a single folder.

DE14413

When not all the devices are selected in Alert Filter tab when

configuring the Alert Table, Select All Devices was selected

unintentionally by default. This issue has been resolved and the

Select All Devices checkbox is cleared when at least one device

is filtered out.

DE15497


APSolute Vision now displays the accumulated traffic utilization

when multiple protected objects of a DefenseFlow device are

selected in the Security Monitoring > Traffic Monitoring >

Traffic Utilization pane.

DE12465

Issues regarding partial translation when selecting multiple devices

in the Security Monitoring > Traffic Monitoring > Traffic

Utilization pane from English to Japanese were resolved.

prod00244335,

prod00244347,

DE16797

In the APSolute Vision Service Status View dashboard, an

AppShape++ script is no longer displayed when not associated to

a virtual service.

DE16660

When a local user with the role User Administrator changes the

password for user Radware using the Web UI, the radware user

can now access CLI with the new password.

DE17156

The server became inaccessible via HTTP/HTTPs and did not

send syslog messages when there was a high load of Network

Protection policy with a high number of login sessions into

APSolute Vision.

prod00245182,

prod00245185,

DE17525

An issue regarding the device-platform temperature incompatibility

between Web UI and CLI has been resolved. That is, when the

temperature of an Alteon 5208 reached 70 degrees, the Web UI

classified this as high, while in CLI, it was classified as OK.

Platform temperature mapping table in Web UI has been updated,

and it is now aligned with the CLI.

prod00245495,

DE17805

Some messages in the APSolute Vision Alert Table displayed

question mark (?) characters.

prod00244213,

prod00244216,

DE16686

When selecting multiple devices, there were issues regarding

wrong translation of properties from English to Japanese.

prod00244332,

prod00244346,

DE16796

Issue regarding access to System > User Management > User

Statistics when Authentication Mode was set to LDAP was

resolved. When a user whose contact info was not set on LDAP

directory tried to access the User Statistics pane, the following

error notification was displayed:

Error in create object: class

com.radware.insite.model.user.management.LdapUser for

property: contactInfo

prod00245797,

prod00245796,

DE17991


The CLI help documentation now properly explains that the CLI

command system upgrade full includes another parameter

password, which is required only for a major version.

DE18152

Removed gender-biased pronouns from APSolute Vision. Now,

APSolute Vision displays gender-neutral pronoun when displaying

a notification of a user changing his/her password.

prod00246345,

prod00246346,

DE18517

An issue regarding auditing the correct parameters in the Alert

browser when adding a new user has been resolved. Now, the

Alert browser displays the user parameter instead of N/A values for

scope, role, and Network Protection policy.

DE10985

When executing the DefensePro Delete User Operator Toolbox

script, it was not possible to edit the User Name parameter without

displaying a configuration error message.

DE15129

An issue regarding an error notification indicating “M_00012: An

entry with same key already exists” when using LDAP

authentication and attempting to change the role in the object class

permission has been resolved. It is no longer required to delete the

whole class first.

DE15484

Sorting issues in AppWall Security Monitoring > Attack

Distribution > Top Attack Types by Source have been resolved.

DE15686

When executing an Operator Toolbox script that locks the device,

the lock is now released once the script completed, so other users

are not be blocked for long.

DE16237

ADC Management

Issues related to 'Trusted CA Group' dropdown list under add SSL

Policy screen when accessing through the vADC Web UI are now

resolved.

DE10506

In Alteon 30.5, when configuring using the Alteon Web UI, the

Quick Application Setup and trying to add a new QAS, clicking

Submit no longer fails.

DE13563

Issues regarding Certificate Repository management in Alteon’s

Configuration > Application Delivery > Certificate Repository

screens were resolved. That is, when duplicating a new certificate,

the Type field remained empty.

DE15085


It is now possible to delete an Authentication Policy when

accessing through APSolute Vision to Alteon’s Authentication

Policy pane (Configuration > Application Delivery >

Authentication Policy) without receiving a configuration error.

DE15906

Incompatibility issues in Alteon’s Service Status View pane

displaying an incorrect summary status Mixed instead of

Shutdown were resolved.

DE16427,

DE16564,

DE16555

The AppShape status under a virtual service is now displayed in

Alteon’s Service Status View pane.

DE16533

An incorrect error notification was displayed in the Web UI when

an IPv4 and IPv6 address were configured for PIP under the same

virtual service. The correct error notification is now displayed.

DE5522

When the CRL name includes underscore character, it can now be

shown in the Web UI when accessing the Alteon’s CRL screen

under Configuration > Application Delivery.

DE5886

When accessing Alteon’s Configuration > Application Delivery >

Filters and adding a URL ID to the Add Traffic Contract field, the

Traffic Contract field no longer displays a drop-down list

containing a null value.

DE9158

Alteon now deletes multiple selected Health-Check entries from

Alteon’s Configuration > Application Delivery > Health Check.

Instead of deleting only a single entry while selecting multiple, all

selected entries are deleted when clicking Submit.

DE10652

Added a missing warning notification when accessing LinkProof

NG using the Internet Explorer browser, and exporting a file, and

then selecting Include Private Keys without entering the

Passphrase. A warning message is now shown “Error:getcfg fail

passphrase too short please enter at least 4 bytes”.

DE11580

Issues regarding untranslated messages from English to other

languages in Alteon’s Configuration > Application Delivery >

Certificate Repository screens were resolved. That is, when

exporting a certificate, success indication messages no longer

contain values in English.

DE14346

Sometimes after upgrading APSolute Vision, wrong requests could

be sent to the Alteon device when trying to view Alteon’s real

servers and virtual servers. This was due to new columns, which

needed to be fetched. The issue resolved by fetching those new

columns.

DE14761


When selecting multiple LinkProof NG devices for configuration

and clicking on Revert after performing some changes, the action

would succeed, but the UI displayed the former value of the fields

to be reverted. This issue has been resolved, and now the UI

displays the correct values.

DE14958

Issues regarding deleting objects from both duplicated and original

table lines were resolved. When duplicating a virtual server using

the APSolute Vision Web UI, and then deleting a service from the

duplicated server before submitting, the service is deleted from the

original virtual server that was used for the duplication.

prod00245628,

prod00245629,

DE17894

To resolve an issue regarding the updated HA VRRP state of the

Alteon device when managed using APSolute Vision, a refresh

functionality was added to the Device pane and Device-properties

pane in the APSolute Vision Web UI.

prod00241873,

DE16299

Issues regarding the disappearance of the drop-down buttons from

Alteon’s Syslog Setting screens when using APSolute Vision were

resolved. That is, when navigating to Configuration > System >

Logging and Alerts > Syslog Settings, and modifying one of the

attributes (IP Version, IP Address Severity, Facility, and Module),

the drop-down buttons disappeared after clicking Submit.

prod00245172,

prod00245186,

DE17209

Pagination issues in Alteon’s Outbound LLB Rules tables were

resolved. When there were enough rules to add pagination to the

table, refreshing the table with the content of a specific table page

while table filters are being used could display the content of the

wrong page in the table.

prod00245291,

prod00245294,

DE17602

Issues regarding displaying fields as greyed out in Alteon’s

Configuration > Application Delivery > SSL > Certificate

Repository pane have been resolved. When clicking Import after

locking the device in APSolute Vision, the fields in the screen were

greyed out.

prod00245898,

prod00245899,

DE18109

The table in the LinkProof NG panes under Monitoring >

Application Delivery > LinkProof > WAN Link Groups are now

case-insensitive.

DE16400

Issues regarding bad values when duplicating lines in the

LinkProof NG Client Authentication Policy table under

Configuration > Application Delivery > SSL Policy > Client

Authentication Policy have been resolved.

DE16463


Multiple issues regarding wrong translation in multiple locations

within Alteon (Close tooltip, high-availability dashboard, vADC’s

View, Service Status View, WAN Links) were resolved.

DE13961,

DE13991,

DE14267,

DE14272,

DE14283,

DE14348

APSolute Vision VA and APSolute Vision with APM Server VA can

now be deployed on KVM running host OS rhel7 / centos 7.

prod00233043,

DE3219, 233043

DPM

None

APM

Executing the Validate All APM Services Operator Toolbox script

will not work on a virtual service of a vADC. Previously, the output

of the script included the following failure message saying:

“Connection array for device Alteon contains too few devices”.

DE15953

When upgrading from APSolute Vision 3.20 with route settings that

include the G4 interface used for APM, the G4 route settings will

no longer be deleted.

DE15900

An issue regarding the Applications tab in the APM Web UI was

resolved. When hovering over the Application tab and its sub-

menus, the correct menu item will now be highlighted in blue.

DE17600

Security Management

An SNMPv3 user can now be deleted by APSolute Vision. prod00241501,

prod00232229,

DE2194

Issues regarding the displayed error when trying to edit

Read/Write/Notify fields in the DefensePro Access table were

resolved.

prod00232233,

DE2215

It is now possible double-click on a user in the DefensePro SNMP

User table. The No-access error notification is no longer displayed.

prod00231577,

DE3931

Issues regarding configuration of Protected Entities of Alteon

devices were solved. When selecting multiple AppWall devices

and then adding Protected Entities, submitting the changes

sometimes did not get applied to all the selected devices.

DE14201


Performance issues related to MSSP connectivity were resolved.

In a high-scale MSSP environment, APSolute Vision can now

handle a massive bulk of MSSP requests with no impact on overall

performance.

DE15080

In DefensePro Signatures screen under Configuration > Network

Protection, filtering issues were resolved, and it is now possible to

filter by Signature Source Type.

DE16110

An issue regarding automatic refresh of the Security Events screen

in the Security Monitoring perspective of an AppWall device has

been resolved.

DE16201

Issues regarding a missing indication in the APSolute Vision Web

UI when an Update Policies action is required have been resolved.

The Web UI is now fully compatible with the CLI. Both provide an

indication when an Update Policies action is needed.

DE16372

A certain APSolute Vision user will no longer get configuration

error notifications when trying to create SNMP users with

authentication and/or privacy protocols different from the protocols

of the creating user.

prod00243082,

DE16422

Content text that includes special characters (that is, quotation

marks) is now supported in APSolute Vision allowing viewing filter

configuration in DefensePro’s screens.

DE16608

Performance issues in a high-scale configuration were resolved. In

a configuration with DefenseFlow and 40 DefensePro devices, and

all devices reporting attack events, it took the DefenseFlow

Security Dashboard more than 10 minutes to complete loading

before displaying the scope.

prod00233040,

DE3956

Issues regarding DefensePro filtering and filter cleaning were

resolved. In DefensePro templates screens, when uploading or

deleting a template, the policies list is now refreshed, without re-

opening the templates screen as a workaround.

DE7105

When exporting Network/Server Protection policy while the

DefensePro device remained unlocked, APSolute Vision will no

longer display the page’s elements as disabled and will enable all

options equally for locked and unlocked DefensePro devices.

DE11493

Issues regarding inability to search the DNS table in an AppWall

device under Configuration > Appliance > DNS were resolved.

Added support to look up according to an IP address.

DE11754

Resolved an issue of wrongly navigating to Packet Anomalies

when clicking on the Go to Policy link.

DE12471


Resolved issues of APSolute Vision trying to search for

unavailable fonts located in a Google site when accessing AppWall

monitoring screens.

DE14236

When using the AppWall Dashboard View for Monitoring Security

events in APSolute Vision, when clicking on a line to expand the

security event to show all the parameters, the request description

could get cut off if the description was too long. This issue has

been resolved.

DE15227

The following updates were added the APSolute Vision online

help:

Help information now refers correctly to the Connection-Rate

Report.

The selected period of display was fixed to the following

values: 10 Minutes, 20 Minutes, 30 Minutes, 1 Hour.

prod00245223,

prod00245224,

DE17545

Issue regarding an error notification indicating “M_00386: A role is

already defined for this scope of for one of its sub-scopes” after an

entry with the same key already exists, when duplicating a line in

DefensePro under Configuration > Network Protection >

Connection Limit Profile > Connection Limit Protections has

been resolved.

DE15470

AVR

The following issues were resolved when upgrading to version

3.70 and later, but not when upgrading to versions 3.30, 3.40 or

3.60:

When upgrading from APSolute Vision version 3.20 or earlier

to a later version, the AVR Attack Details by Latest Timestamp

report would not display data collected before the upgrade.

The Attacks by Source and Destination report and Top Attack

Sources Blocked appeared to have checkboxes cleared.

prod00244378,

prod00244382,

DE17495

References to the Setting Alert Permissions tab were removed

from the documentation.

prod00239677,

prod00239678,

DE11863

The Forensics report generated by the AVR module now shows

Mbits instead of Kbits, when sent via email or when being

exported.

prod00244250,

prod00244251,

DE16713


Fixed in Version 3.60 (Build 1139)




following:

CVE-2016-0774, CVE-2015-8104, CVE-2015-5307, CVE-2015-

7872, CVE-2015-7613, CVE-2015-2925, CVE-2016-0702, CVE-

2016-0705, CVE-2016-0797, CVE-2015-3197, CVE-2015-7575,

CVE-2015-3194, CVE-2015-3195, CVE-2015-3196, CVE-2015-

5600, CVE-2016-3115, CVE-2015-7547, CESA-2015:2549, CESA-

2015:2594, CESA-2016:0007, CESA-2015:2081, CESA-

2016:0008, CESA-2016:0012, CESA-2015:2636, CESA-

2016:0011.

The APSolute Vision User Guide was updated to show the correct

syntax for the CLI command system backup techSupport.

prod00239555,

prod00239534

APSolute Vision now provides the correct indication regarding

installed CA certificate for APSolute Vision event forwarding using

encrypted syslog.

prod00239646,

prod00239633

APSolute Vision now accepts special characters in the device

properties HTTP/S passwords.

prod00240466,

prod00240462

Errors in the REST API documentation were corrected. In multiple

locations, the REST API URLs wrongly included mgmt/. For

example, the URL for locking a device was specified as:

POST /mgmt/system/config/tree/mgmt/device/byip/{ip}/lock

instead of:

POST /mgmt/system/config/tree/device/byip/{ip}/lock

prod00242060,

prod00242058

Errors when updating the contact info of users in the APSolute

Vision local user table were resolved. Error: M_01170, which

prevented updating user contact info, no longer occurs.

prod00240052,

prod00240051

The APSolute Vision Roles table (Settings > User Management >

Roles) is no longer empty when a user with the role User

Administrator logs on. This issue affected the display of the table,

but did not affect APSolute Vision user management functionality.

DE10461


The first time a user with the role User Administrator logs in to

APSolute Vision the user no longer gets the

java.lang.NullPointerException exception.

DE10463

Issues were resolved regarding upgrading an APSolute Vision

server after an APSolute Vision server configuration file was

restored to it from an APSolute Vision server of a different

deployment type. For example, upgrading APSolute Vision server

after restore of a configuration file to a VA device that was

exported from a physical appliance and vice versa. The following

error message is no longer displayed: grubby fatal error:

unable to find a suitable template.

DE6694

ADC Management

Issues regarding the display of DefensePro clusters were resolved.

APSolute Vision now correctly displays DefensePro clusters in the

APSolute Vision tree, if they are defined on DefensePro devices

managed by APSolute Vision. Previously, some DefensePro

clusters were not displayed. This issue affected the APSolute

Vision tree display, but did not affect the DefensePro device

configuration or synchronization behavior.

prod00239605,

prod00239602

After upgrading an Alteon device from version 30.1.1.0 to

30.2.1.10, the device no longer appears as down in the APSolute

Vision device list. This behavior was caused by a bug in which

APSolute Vision loaded the wrong device driver for managing the

upgraded device. This bug affected APSolute Vision display, but

did not affect the Alteon device itself, which continued to function

correctly.

prod00240241,

prod00240240

DPM

None

APM

APM raw data is no longer deleted when APSolute Vision with

APM Server VA is updated from version 3.00.00, 3.20.00, or

3.30.00.

DE10633,

DE9841

System parameters (that is, persister service) settings are no

longer reset when upgrading APSolute Vision.

DE10756,

DE10814

Transformation rules settings can now be backed up and restored. DE10825


Geo IP: When adding new entries with IP ranges overlapping

existing IP address ranges, the APM UI now displays a correct

error notification.

DE11145

An Error condition in the Tomcat service caused an error when

trying to search for a specific transaction type in the APM search

UI. Restarting the Tomcat service is no longer required to avoid

such a notification, after upgrading the APSolute Vision from

version 3.30.

DE11546

The Performance Limit parameter in APSolute Vision Edit APM

Server screen was removed (Settings > System > General

Settings > APM Settings > Edit APM Server).

DE12375

APM’s Advanced Search UI now displays the correct value of the

End User SLA Bar column, aggregating the value of Data Center

time, End User network time, and End User rendering time, instead

of displaying only the Data Center time only.

DE12935

The Define Event Type Thresholds button in APM’s Settings

Application tab no longer produces error notification pop-up

messages when configuring event-type thresholds.

DE13433

There is no need to restart the APM server when setting a new

time in APSolute Vision. Now, APM is automatically updated.

DE13653

APM is now aligned with Alteon NG’s list of illegal characters for

service name, and supports a hyphen (-). Service names with a

hyphen can now be enabled with APM.

DE14109

Security Management

APSolute Vision database handling was optimized to prevent

cases where the real-time security monitoring stopped collecting

and displaying information.

prod00242485,

prod00242478

An issue with AVR alert mails was resolved. The To and CC fields

of the mail no longer display multiple unnecessary commas. This

issue affected the display fields (unneeded commas), but did not

affect other functionality.

prod00240457,

prod00240455,

DE13007

APSolute Vision no longer displays wrong parameters for

TCP/UDP/ICMP state when creating a DefensePro Anti-Scanning

profile.

prod00230812,

prod00230812


The AVR UG was updated to explain the behavior of the AVR

Dashboard zoom feature. The explanation is available in the

“Managing Dashboards” chapter, in the “Design Options in Default

Dashboard Panels” section, “Zoom” bullet.

prod00239556,

prod00239533,

DE11859

Issues regarding security monitoring for AppWall version 6.4.x and

6.5.x were resolved. Due to these issues, security monitoring for

AppWall devices was not available in version 3.40 for these device

versions. The issue did not affect AppWall version 6.6.x.

prod00240140,

prod00240139

APSolute Vision resolved an issue were DefensePro Configuration

Templates did not perform the Update Policies action on the

device, although the user specified that Update Policies should be

performed.

prod00241106,

prod00241089,

DE13745

Issues regarding the display of servers under the DefensePro

HTTP Protection Reports were resolved. The problem was caused

by an internal comparison that was case-sensitive, but should not

have been. This issue affected the APSolute Vision display, but did

not affect the DefensePro functionality.

prod00239045,

prod00239037,

DE11861

AVR

None





The APSolute Vision Installation and Maintenance Guide was

updated to specify the vision-files user in lowercase.

DE7130,

prod00236591

When a user provides an invalid update password, APSolute

Vision CLI now provides the following error message: Invalid

upgrade password.

DE7168

The documentation now explains that in table columns where

search is not supported, the search field below the column header

is disabled.

DE7615,

prod00236902

The alert on modifying the Device Lock Timeout setting now

specifies that the change was performed by the correct user name.

DE8618,

prod00237748

The APSolute Vision startup processes were reordered to prevent

cases where users were not able to log in to the WBM following

upgrade of APSolute Vision server. The processes now always

occur in the same order, to ensure successful login.

DE7666,

prod00236947

When the CPU utilization returns to normal, APSolute Vision stops

sending alerts on high CPU utilization. Previously, due to an error

in the code, once a high CPU utilization alert was sent, APSolute

Vision would continue sending alerts each time the CPU was lower

than the previous value.

DE9874,

prod00238654

The APSolute Vision Installation and Maintenance Guide was

updated to clarify how to get to the console screen during the

installation of APSolute Vision VA on KVM.

DE8220,

prod00237504

The APSolute Vision User Guide was updated to clarify the syntax

and usage of the CLI command for creating an APSolute Vision

technical support file.

prod00239555,

prod00239534

When selecting multiple devices, locking devices fails no longer

happen if the user has the Device Viewer role for one or more of

the devices.

226307,

DE3847

ADC Management


APSolute Vision is now able to create capture-file policies on

Alteon devices. The issue occurred due to an incorrect file path in

the device driver.

DE7913,

prod00237127

The scheduled task Device Configuration Backup now supports the

Passphrase field, instead of always using the hardcoded value

radware.

DE9001,

prod00238560,

prod00237734

Remote server groups that are created using the Alteon CLI are

now available in the WBM screen Application Delivery > Virtual

services > Server Groups. The issue was resolved in Alteon

version 30.1.1.0.

prod00235137

The WBM now allows submitting added or edited Alteon GSLB

Rules and GSLB Networks. Previously, the Submit button would

remain disabled. This was caused due to an error in determining

when the screen included modified fields in order to enable the

Submit button.

DE2453,

prod00231189

DPM

DPM now supports a stronger cipher, and can be accessed using

the Chrome and Firefox browsers.

DE6586

The DPM internal library was upgraded. The new library has

improved memory handling. When using the Chrome browser, the

DPM can now remain open for a few days without crashing.

174456

DPM Filter and Export options of a selected report now function

correctly when using the Chrome browser. This follows an internal-

library upgrade that supports new Chrome versions.

prod00234546,

DE4744

APM

The APM service is now active after installing the APM server

license. Previously, if a license was installed during the same time

interval that the server was checking for license existence, a wrong

result was returned, causing the APM service to remain down.

DE3951,

233520

In the APM setting/parameter, the maxAggr* values are now

validated.

DE3810,

232240


By changing Role Device configuration in DsrPredefinedRoleType,

a user with the following permissions can now launch the APM:

Certificate Administrator

ADC + Certificate Administrator

Device Operator

Vision Reporter

DE6406

If the APM Application’s description was in any way different from

the Application Name, no SLA data was displayed in the

Application SLA dashboard. Application description can now be

changed without impacting the displayed SLA data.

DE10191

The SLA dashboard displayed two identical service application

lines when an Alteon NG HA pair was used. Now, only the active

Alteon NG device is displayed.

DE7425

In a combination of APSolute Vision version 3.30 and Alteon

version 29.5.x, when APM was enabled, all requests sent from the

Alteon to the APM server were responded to with a ‘404 page not

found’ message, causing APM to fail due to missing JavaScript

files in the default configuration. APSolute Vision 3.40 includes the

missing JavaScript files.

238329,

DE9451

When using any value other than 443 for the APM port, saving and

then clicking Edit to update the port, the value 443 was displayed

again. The issue is now resolved.

233396,

DE3707

A link inside an "OK" APM Alert email message contained the

wrong URL, which is no longer displayed.

DE6337

Wrong APM Test Email: A user received a message that a test

email was sent successfully, while an email route was not

configured.

DE6341

It is now possible to recreate the same application name in APM

Setting after deletion.

DE7424

The Virtual Server IP column in the APM-Enabled Services table in

APSolute Vision Settings > APM Settings now displays IPv6

format when applicable.

DE8846

In APM’s Common Parameters screen (Settings > Parameters >

Common Parameters), after scrolling down the screen, not all

parameters were displayed. It is no longer required to scroll up

before switching to common parameters to avoid this.

DE9571

Security Management

https://rally1.rallydev.com/#/28863967553d/detail/defect/42120469910


APSolute Vision prevents performing a manual switchover on

DefensePro devices repetitively. Now, APSolute Vision does not

allow performing switchover if a previous switchover was

performed within the last five minutes.

DE4416,

prod00234277

APSolute Vision now receives security events even if the server

was previously down for 90 minutes or longer. The internal cleanup

tasks performed on system startup were reorganized so that they

do not interfere with handling new events.

DE4712

APSolute Vision now generates security alerts on new attacks, with

alert severity based on the attack risk. See the full feature

description Error! Reference source not found..

DE4943,

prod00234361

APSolute Vision now shows the correct IP addresses in the

DefensePro Network Classes pane (Classes > Networks).

Previously, wrong rows were shown in the table that included

internal search criteria data.

DE6520,

prod00236002

The Update Policies action now works correctly when multiple

devices are selected. Previously, the action would fail due to a

wrong internal procedure.

DE7612,

prod00236893

APSolute Vision now successfully opens the DefensePro IP Data

Route pane (Setup > Networking > IP Management > IP Data

Route) and does not issue the error message “server is

unavailable.” The issue was caused by improperly handling the

SNMP Get Next Request of a table that has indexes defined as

IPv6 but were handled as IPv4.

DE7919,

prod00235215,

prod00234689,

prod00234702,

prod00234689,

prod00235195

APSolute Vision now correctly handles creating Signature Profile

Rules where the Attribute values include the special ampersand

character (&). This character is now escaped and “unescaped”

when loading and setting the items of the combo box.

DE8125,

prod00237339

APSolute Vision now handles Network class names that have a

space before or after the name. Leading or trailing spaces are

deleted.

DE9385,

prod00238253

APSolute Vision now correctly displays packet captures when the

attack is in the “occurred” state. Previously, packet capture files for

this state were dropped.

DE8186,

prod00237406

APSolute Vision now supports the Reset Baseline action when

multiple devices are selected.

DE8198,

prod00237461


The documentation for the Security Monitoring BDoS Traffic

Monitoring Statistics Graph Report Legend was clarified to explain

that the DefensePro device reports Suspected Edge and Attack

Edge in Kbps only.

prod00235369

AVR

AVR forensics and attack details now show the correct action for

Anti-Scanning attacks. Previously, a wrong internal mapping of

numeric values to strings caused the wrong action to be displayed

for this attack type.

DE8959,

prod00237945

AVR now shows all graphs when exporting a report to HTML or

PDF. Previously, some of the graphs were not visible in the

exported report.

DE9118,

prod00238039

AVR now accepts special characters in the FTP username. DE10073,

prod00238833,

prod00238786,

prod00238773

AVR Forensics reports now export all enumeration values as

strings, including the BDoS states, the Action, and the Direction.

This fix is relevant for forensics reports exported as text or sent via

email.

DE7567,

DE7138,

DE7139,

prod00236875,

prod00227898,

prod00227904

The AVR dashboard now enforces RBAC by policy and only shows

data for policies that the user is allowed to see.

DE3691,

prod00227941,

prod00168811

AVR charts now correctly show Bytes in the Y-axis legend, for

reports that display bytes, instead of wrongly showing the legend

count.

DE9036,

prod00237995





RTU licenses can now be installed on APSolute Vision server. DE4244,

prod00234106

APSolute Vision KVM deployment on CentOS 6 is now supported. DE5417

APSolute Vision with APM server deployment now correctly

displays the MAC address of the APSolute Vision port G4.

DE5870

APSolute Vision configuration backup scheduled task does not

wrongly delete system files.

DE6438

ADC Management

The Real Servers pane (Monitoring > Application Delivery > Virtual

Service > Real Servers) now correctly displays the Server State.

DE4543,

prod00232507

Application Dashboard 24 Hour and 7 Day graphs are now

created.

233198

APM license allocations per vADC are now displayed correctly in

Alteon with the VX form factor (System > General Settings >

APM Enabled Devices).

231467,

DE3746

When creation of a new application name in APM server fails, an

error is presented to the user and the APM status of the virtual

service remains disabled.

N/A

Security Management

APSolute Vision now allows copying to clipboard of the footprint

field of attack details.

N/A

APSolute Vision now supports the x4420 platform. DE5542,

prod00235215

APSolute Vision now displays security monitoring attacks, following

upgrade of APSolute Vision server.

DE4974,

prod00234762

Issues regarding configuration of Server Cracking profile action

were resolved.

DE4797,

prod00234565


Issues with creating a DefensePro cluster when using a non-MNG1

port as default for synchronization have been resolved. APSolute

Vision will now allow creating a DefensePro cluster when using

other ports. Previously, only using MNG1 port was supported.

DE3858,

prod00232727

The multi-device view of the Security Monitoring perspective,

Traffic Utilization Report will now display the correct policy list

when policies on different devices use the same policy name, but

the user has a different RBAC assigned to each policy.

DE3907,

prod00232399

The Signatures table now displays the filtered signatures without

requiring manual refresh (Configuration > Network Protection >

Signature Protection > Signatures).

DE3964

The Attack Details pane for SYN Flood attacks now shows the

Average Attack Rate field.

DE4086

APSolute Vision will now correctly display the Base Mac Address

for DefensePro vDP devices (Setup > Global Parameters > Base

MAC Address). This issue was caused by wrong determination of

BASE MAC address. In other DefensePro platforms, the BASE

MAC address was the MAC address of the first interface in the

interface table. This was not the case for vDP, so a different logic

was implemented.

DE3082

Internal AVR log files (avr_monitoring.log and

process_monitoring.log) are now cycled correctly.

DE3523,

prod00233484

The Attack Details screen now supports exporting packet capture

for attacks of type Behavioral DoS and Out of State.

DE3854,

DE6547,

prod00232701

prod00232700,

prod00236026

The AVR now supports the UDP Frag controller BDoS baselines

reports.

prod00222195

A spelling mistake in the SNMP trap generated by AVR Alert was

fixed.

DE3857,

prod00232995

The AVR now correctly shows AppWall devices when their

management IP addresses has been modified.

DE7141,

prod00227888

AVR reports filtered by “Threat Category” will now show all relevant

data.

DE7137,

prod00227885


Fixed in Version 3.20 (Build 1360) and Version 3.30



APSolute Vision generates separate SSH keys for each

installation.

DE5419

Issues regarding APSolute Vision upgrade were resolved. Security

monitoring information will be available following upgrade.

DE4974

The hardware issue regarding ODS-VL PCI error “Card not present

on Slot(0)” was resolved.

DE4105

The following security vulnerabilities were resolved:

CESA-2015:0808

CESA-2015:0806

CESA-2015:0251

CESA-2015:0864

CESA-2015:0715

CESA-2015:0767

CESA-2015:0794


Fixed in Version 3.20 GA (Build 1334 and Build 1360)



The output of the CLI command system techsupport local

now correctly specifies the HTTPS protocol instead of HTTP.

prod00232298

APSolute Vision now supports non-default TACACS+ port

configuration.

prod00231647,

prod00231646

The following security vulnerabilities were resolved: CVE-2004-

0230, CVE-2010-4478, CVE-2010-4755, CVE-2010-5107, CVE-

2011-3389, CVE-2011-5000, CVE-2012-0814, CVE-2014-1692,

CVE-2014-2532, CVE-2014-2653, CVE-2014-3570, CVE-2014-

9293, CVE-2014-9294, CVE-2014-9295, CVE-2015-0204, CVE-

2015-0205, CVE-2015-0209, CVE-2015-0235, CVE-2015-0286,

CVE-2015-0287, CVE-2015-0288, CVE-2015-0289, CVE-2015-

0292, CVE-2015-0293

prod00232606,

prod00232585

Security vulnerabilities regarding access to the APSolute Vision

maintenance folder were resolved.

prod00233560

Issues regarding login to APSolute Vision server were resolved. prod00233503,

prod00233498

ADC Management

Filtering of the “Virtual Servers” table is now functioning correctly; a

“Configuration Error” will no longer be displayed.

prod00232350

Security Management

AVR now correctly displays physical ports of the x420 (HT)

platform, including traffic reports that are direction-specific reports

prod00185827,

prod00184568

AVR Forensics report with a specific "Set Criteria" Rule Name will

correctly find relevant matches, even when the policy name begins

with a digit.

prod00229535,

prod00220684

AVR will show traffic report if all values for all physical ports are

"0".

prod00227893,

prod00222975


A note was added to the "info" tab for DOS attack related to wrong

PPS data.

prod00230146,

prod00230137

Attack Details of an SSL SYN Flood attack are now correctly

reported.

prod00232729,

prod00232728


Fixed in Version 3.20 EA (Build 49) and GA (Build 1334)



Issues with the APSolute Vision upgrade process were resolved. prod00229195,

prod00229189,

prod00231658,

prod00231657

The configuration-download screen now closes after saving the

configuration.

prod00229412,

prod00229411

Windows 7 USB recovery procedure documentation was updated

to mention that it is required to execute the command prompt with

administrator rights.

prod00229550,

prod00229542

APSolute Vision now respects the TACACS+ port configuration. prod00231647,

prod00231646

ADC Management

In the APSolute Vision with APM Server deployment, after

performing system restore, the APM server component is

available.

prod00227095

APM can be enabled through Vision on a VIP when another virtual

service with the same IP and APM enabled exists. This is

supported for Alteon 30.0 and later versions.

Note that this limitation still exists for Alteon 29.5.

prod00230055,

prod00230052

DPM no longer moves devices to the deleted state unnecessarily. prod00228088,

prod00211897,

prod00228218,

prod00216093

DPM data retention was improved to prevent excessive CPU use. prod00228103,

prod00213991

Security Management

APSolute Vision now supports scrolling through all included

signatures in a signature profile.

prod00230315,

prod00230311


APSolute Vision now shows all matching signatures in a signature

profile.

prod00230530,

prod00230527

Filter details are now available for static signatures. prod00229784,

prod00229767,

prod00229783,

prod00229768,

prod00230314,

prod00230310

APSolute Vision now supports creating more than eight filters per

signature.

prod00228925,

prod00228921

DefensePro capture files now retain their original length and are

not padded to 1530 bytes.

prod00231571,

prod00197794

APSolute Vision now displays an error message if the user

attempts to export capture files but no files are available in the

APSolute Vision server.

prod00229416,

prod00229415

In the Current Attacks table and attack details, the terminology

(label) Bandwidth was changed to Volume.

prod00229944

The attack details tab is not wrongly displayed twice. prod00230147,

prod00230138

The traffic monitoring reports now correctly display information for

the ODS3 10G/XG ports.

prod00230173,

prod00230167,

prod00231650,

prod00231648

AVR will display Traffic Utilization reports. prod00230483,

prod00230482


Fixed in Version 3.00 GA (2256)


APSolute Vision – General

The following security vulnerability has been resolved: CVE-2014-

3566

prod00224811

Limitations regarding user RBAC by DefensePro policy that existed

in APSolute Vision 3.00 EA were resolved. The limitations did not

exist in earlier versions.

prod00223619,

prod00223149

When editing an APSolute Vision local user, the Scope drop-down

list now fully opens.

prod00215606

Accessing the APSolute Vision Web-based interface using a

hostname that is not FQDN (without a period) now works with all

supported browsers, including Internet Explorer.

prod00221072

APSolute Vision WBM and Alteon on-device WBM now do not get

stuck when using Chrome version 36.0.

prod00219233

Issues regarding the APSolute Vision server temperature sensor

were resolved. The numbering was updated and temperature

readings are now correct.

prod00223920,

prod00223907,

prod00223921,

prod00223870

ADC Management

When using APSolute Vision and the APM server VA, the IP

address of port G4 (SharePoint data) can now be defined on any

subnet, and the address does not need to be defined on a

separate subnet from the remaining APSolute Vision ports.

prod00206032

Enabling APM in a specific configuration now succeeds. prod00215318,

prod00215172

APM shows the correct transaction name. prod00221907,

prod00221904

Accessing the APM WBM now succeed as expected. This

limitation existed only in APSolute Vision 3.00 EA.

prod00226697,

prod00226686

Security Management


Limitations regarding Security Monitoring attacks of type Black List

that existed in APSolute Vision 3.00 EA were resolved. These

limitations existed only in Vision 3.00 EA.

prod00223357

A typo regarding protocol statistics enum was resolved (“ICMP”). prod00226521,

prod00226518

The Update Policies button now does not disappear from the

device toolbar. This limitation existed only in Vision 3.00 EA.

prod00224367

Updating a device driver while APSolute Vision is being accessed

by its hostname now succeeds. The limitation existed only in Vision

3.00 EA.

prod00221487

The APSolute Vision Reporter User Guide was enhanced to

include explanation regarding the total number of Kbits per attack

calculation.

prod00224615,

prod00224593

Signature creation now does not fail. This limitation existed only in

Vision 3.00 EA.

prod00226413

Fixed in Version 3.00.00 build EA (128) and GA (2256)


APSolute Vision – General

The following security vulnerabilities have been resolved: CVE-

2013-2566, CVE-2008-5161, CVE-2014-6277, and CVE-2014-

6278.

prod00216073,

prod00216072

APSolute Vision now correctly displays its platform: “Vision ODS-

VL” for the physical appliance, "Virtual" for the virtual appliance.

prod00208406,

prod00208404

ADC Management

None N/A




Security Management

The following AVR reports now display correct historical

information:

Traffic Reports—Traffic Reports – Kbps:

Traffic Utilization—Inbound (Kbps)

Traffic Utilization—Outbound (Kbps)

Traffic Utilization (Kbps)

Traffic Reports—Traffic Reports – PPS:

Traffic Utilization—Inbound (PPS)

Traffic Utilization—Outbound (PPS)

Traffic Utilization (PPS)

Importance: High

Occurrence: Consistent

Workaround: None.

The information displayed in the APSolute Vision client Security

Monitoring pane perspective Traffic Utilization reports can be used

for real-time traffic utilization monitoring.

prod00208141,

prod00185458,

prod00208147,

prod00178379




The AVR dashboard pane now displays full data, and does not

restart itself.

prod00207958,

prod00204535,

prod00208772

APSolute Vision now allows breaking a DefensePro cluster when

one or both of the devices in the cluster are down.

prod00208738,

prod00208737

The APSolute Vision Reporter User Guide was updated to include

information on the OIDs of SNMP traps generated by AVR. This is

included in Appendix B—AVR MIB.

prod00217534,

prod00217533

The AVR online help was updated to state that export packets to

the ethereal format is not supported for the Anomalies category.

prod00208140,

prod00202628

Discrepancies in AVR report APSolute Vision 2.00 - build 634 (Fix

pack) were resolved.

prod00207955,

prod00185491

On the Geo Map in APSolute Vision, “Panama” was mapping out

to “Ecuador”. Note that as the Geo Map feature is not supported by

APSolute Vision 3.00. This fix is planned to be available in a future

APSolute Vision version.

prod00194482,

prod00189629

AVR forensic reports now display the correct value for "Unknown,"

also when the data is exported.

prod00207954,

prod00196458

The APSolute Vision Reporter User Guide was updated to explain

the meaning of the “Action = Modified” value. The value Modified

is reserved for AppWall alerts.

prod00216273,

prod00216272

The documentation was updated to explain that if you open the

APSolute Vision client using an FQDN, AVR can open only if the

FQDN and the APSolute Vision system hostname match. APSolute

Vision administrators can modify the hostname using the system

hostname set command.

prod00215012,

prod00215010

Signature file update now functions correctly, and does not falsely

report a successful update when the update actually failed.

prod00219996,

prod00219993

APSolute Vision now displays the complete signature description

for DP-HTQ devices.

prod00222949,

prod00222948

Traffic Monitoring graphs now display correct information for multi-

device (including site) selection.

prod00209003,

prod00191183,

prod00191606




The AVR online help included in traffic reports now explains that

AVR reports by hour group information for specific hours across

the reporting period, even when the report period includes multiple

days.

prod00208390,

prod00208387

Default AVR alerts were changed to include “Event Type = Attack.”

Events whose action is “0,” which represent AppWall alerts, do not

trigger default alerts.

prod00209853,

prod00209850

AVR did not display a negative packet count value in forensic

reports.

prod00208143,

prod00196077

In the real-time Security Monitoring Protection Monitoring reports

“suspect” and “attack” edges were not updated when the BW

defined in the BDoS profile changed.

prod00221657,

prod00221644

Fixed in Version 2.40.00



When using the APSolute Vision with APM Server VA, after

performing a backup and restore of the APSolute Vision

configuration or a full APSolute Vision backup, the APM server

license was not retained.

prod00207127,

prod00207523

The following limitations regarding APSolute Vision with APM

Server (VA) were resolved:

The command net route set host is supported for all

ports.

The APSolute Vision full system restore restores the IP

address of all ports.

206007,

206005

The JBoss admin application is now disabled by default. prod00199473,

prod00195858




The following security vulnerabilities were resolved:

SSL ciphers weak encryption

SSL version 2 enabled

jmx-console security issue (CVE-2010-1428 and CVE-2010-0738)

prod00203756,

prod00195457

APSolute Vision will no longer wrongly display the message: "The

Data Reporting Destinations Table on the device is full.", when the

table is not full.

prod00205216,

prod00205213

When using the APSolute Vision with APM Server VA, after

performing a backup and restore of the APSolute Vision

configuration or a full APSolute Vision backup, the APM server

license was not retained.

prod00207127,

prod00207523

ADC Management

Changing the name of a Virtual Service that has APM enabled will

not cause the apply operation to fail.

206666

Security Management

AVR will allow the special characters "-" and "@" within the user

name of the SMTP Settings.

prod00199773,

prod00188804

The AVR applet was updated to use a new certificate, and now

supports the Java 7 update 51 mandatory security attributes.

prod00205305,

prod00204283

AVR traffic reports will correctly display data, and will no longer

truncate the data to display the last 10 days.

prod00199776,

prod00188342,

prod00208142





Issues regarding use of the UTC (Coordinated Universal Time)

timezone were resolved. In some cases, APSolute Vision security

monitoring time and date showed inaccurate date and time

information. The bug that was resolved occurred due to a Windows

and Java date/time issue for the specific timezone: UTC

(Coordinated Universal Time). Other UTC timezones (containing a

city name) functioned correctly (for example, UTC London or UTC

Casablanca).

prod00166056,

prod00164938,

prod00204373

After configuring an APSolute Vision IP address using the first-time

wizard, APSolute Vision sent unnecessary DHCP requests.

prod00198585,

prod00198782

If the default GW is not configured, APSolute Vision now blocks the

CLI command net nat set with a proper error message. This fix

prevents cases where the APSolute Vision server cannot start

because no route is available to the IP address configured using

the net nat command.

prod00186887,

prod00198318

APSolute Vision will prevent specifying a NAT hostname that

contains a period, except for the Vision hostname vision.radware.

prod00195101,

prod00194957

Changing the Vision Support password requires restarting

APSolute Vision server. The system will now prompt the user to

restart the system after changing the password.

prod00194814,

prod00190295

APSolute Vision now displays the correct SYS OK LED on the

APSolute Vision box.

prod00193580,

prod00193682

prod00193030

APSolute Vision now allows deleting a NAT name that contains an

underscore.

prod00194935,

prod00194966

Vision Client UI now correctly displays the APSolute Vision

management IP address.

prod00198187,

prod00172312

APSolute Vision reduced unneeded access attempts towards the

device, to prevent the user from getting locked out immediately, if

wrong credentials were supplied while adding the device to

APSolute Vision.

prod00195094,

prod00195027


If configuration of remote storage fails, the APSolute Vision server

reverts to use local storage.

prod00189046

The user guide was updated to provide additional information on

how to use the file-export CLI commands.

prod00195100,

prod00194983

The link for exporting a traffic capture file from APSolute Vision

server was fixed, and no longer displays a broken link.

prod00204967,

prod00204953

CVE-2010-1428 and CVE-2010-0738 were resolved. prod00198808,

prod00196950

The Tomcat management page will no longer be accessible over

port 9443 of the APSolute Vision server. This is also related to

NFR prod00189173.

prod00197079,

prod00195551,

prod00199471

APSolute Vision no longer allows /invoker/JMXInvokerServlet

without a password.

prod00203263

APSolute Vision Reporter supports the handling of AppWall

events.

prod00200274

ADC Management

When working with a large number of devices (800 real servers,

400 virtual servers, and 400 groups), using DPM on IE9, the

application no longer stops responding after 20–30 minutes.

prod00178192,

prod00186740

In the DPM VX dashboard, the Fan Status now refreshes

automatically on Alteon 6420.

prod00190884,

prod00190808,

prod00193967

After changing the DPM chart type and returning to the original

chart type, the display no longer has missing legends and values.

prod00185852,

prod00185285

An ADC Operator user no longer changes the Admin Status of the

Real instead of its Operational Status in the Server Group.

The Alteon Server Group operational status column now displays

correct information.

prod00194840,

prod00192626,

prod00194841,

prod00191636

Security Management

The timeout for the Update Policies command on x420 series

platforms was increased, to prevent unnecessary retransmissions.

Related to

prod00187173

The geo-location mapping was updated with correct coordinates

for Panama and Ecuador.

prod00194482,

prod00189629


APSolute Vision will correctly display attack capture files, sent by

DP devices.

prod00200861




The online help for the APSolute Vision server NTP command was

corrected. The correct option is prefer.

prod00193586,

prod00189634

The APSolute Vision UG was updated to specify that restoring

configuration/system/AVR can be performed from the CLI.

prod00190461

For upgrade from Vision 1.30 build 669 or earlier with Vision 2.00

build 605, the NTP service needed to be started using the

command system ntp service start.

Following upgrade to Vision 2.15.10, this is no longer necessary.

prod00190604

The APSolute Vision upgrade process could hang if NTP was

configured and the OS and HW clocks were out-of-sync.

prod00190919,

prod00190919

The tech-support password no longer reverts to the default

following upgrade. This fix is supported only after upgrade from

version 2.15.00 and later. For earlier versions, the tech-support

password still reverts to default after upgrade.

prod00191400

The APSolute Vision client no longer displays alerts specifying

"warning The time values from Vision server deviate from expected

values ..." when the client PC and server are in sync.

prod00193576,

prod00192842




The following security vulnerabilities were resolved by upgrading

the OS to Centos 6.4: CVE-2007-6514, CVE-2012-0053, CVE-

2012-4929, CVE-2012-4930, CVE-2013-1862 CVE-2012-3499,

CVE-2012-4558, CVE-2012-2687, CVE-2011-4317, CVE-2012-

0031, CVE-2011-3607, CVE-2011-3638, CVE-2011-3368, CVE-

2011-3348, CVE-2011-3192, CVE-2010-1452, CVE-2009-3555,

CVE-2009-3555, CVE-2005-3357, CVE-2005-3352, CVE-2005-

2700, CVE-2005-2728, CVE-2005-2088, CVE-2005-1268, CVE-

2004-2069, CVE-2011-5000, CVE-2012-0053, CVE-2011-3607,

CVE-2012-0031, CVE-2009-3555, CVE-2012-4929.

ADC Management

None

Security Management

APSolute Vision server now supports reporting for a larger number

of DefensePro policies and profiles. As a result, real-time

monitoring graphs no longer display gaps if the system is run

according to the scale limitations provided in the RN.

prod00193960,

prod00193916,

prod00195838,

prod00195831,

prod00194001,

prod00194116

The AVR traffic reports no longer display data for port "unknown". prod00195081,

prod00166804

The APSolute Vision User Guide was updated to provide more

information regarding RBAC per DefensePro policy. The real-time

monitoring limits data for the devices that are limited by a

DefensePro policy, and displays full data for all other devices.

prod00170222

The total number of sampled rows will now display the correct

value for the selected attack, and not the total number of sample

data rows in the system.

prod00187099,

prod00187042

The algorithm for generating the name of RSA filters was adjusted

to make sure unique names are generated for each filter. This

prevents failures to create the relevant DefensePro filter due to

non-unique name.

prod00190417,

prod00190261




APSolute Vision server now updates all internal clocks after

performing a full restore operation. In the process, the MySQL

server is restarted.

prod00194690,

prod00194688

APSolute Vision store DefensePro packet capture files up to a

length of 1530 bytes, instead of the previous 255 bytes.

Additionally, APSolute Vision now stores up to 10 packet capture

files per attack, every 10 minutes, for ongoing attacks, for which

DefensePro is forwarding packet capture files.

prod00175236,

prod00136354,

prod0013748,

prod00120669

Fixed in Version 2.15.00 build 240



The HTTP timeout for the AVR was updated to 3000 seconds. prod00192589

,

prod00193630

The 2.15.00 build 195 installation process wrongly notified that it

completed, prior to the actual completion of the upgrade process.

As a result the AVR did not function correctly. The upgrade

process of 2.15.00 build 240 was updated to provide clear

indication that the upgrade has completed for all of its

components.

prod00189478

,

prod00193244

,

prod00189227


Fixed in Version 2.15.00 Builds 195 and 240



APSolute Vision server will provide an error message if creating

a backup file fails. No temporary corrupted backup file will be

created.

prod00177939,

prod00164536

APSolute Vision VA will now be installable on an ESX machine

using an AMD CPU.

prod00175242,

prod00168032

The APSolute Vision database was optimized to prevent

database overload, which could result in the APSolute Vision

client failing to connect to the server.

prod00176940,

prod00170980

APSolute Vision client will now display the correct Requires

Reboot status, even if the device is rebooted external to the

client, for example from the CLI.

prod00178721,

prod00178563

Changes to the syslog configuration of APSolute Vision will now

be correctly applied.

prod00185522,

prod00184613

APSolute Vision server console will no longer display the

message "Server is running but not responding". When the

server is in the process of initialization and cannot yet determine

whether the initialization completed successfully, the user will be

notified with following: “The APSolute Vision Application Server

is now loading. Please check the server status in a short while,

using the command: 'system vision-server status', to verify

successful start-up.”

prod00185523,

prod00185018

ADC Management

The DPM multi-device dashboard will no longer display an error

message after remaining open for over an hour.

prod00177333,

prod00172757

The DPM database connection handling was improved to

prevent leaving unused open connections.

prod00176921,

prod00176673

DPM Dashboard—A timeout error will no longer appear after

modifying the device configuration.

prod00177338,

prod00177250

Memory widgets were removed from the DPM dashboard. prod00177498,

prod00177358




Virtual services associated with the SharePath server were

removed once a new device configuration is imported.

prod00178453

APSolute Vision Web Application AppShape template will no

longer create an SSL-related configuration when SSL is not

selected.

prod00185520,

prod00179419

The APSolute Vision AppShape Web Application will no longer

fail the verification process when the configuration is valid.

prod00185521,

prod00179520

DPM will display fractions, and not round values to zero for the

following reports:

Multi Device Dashboard Throughput Utilization graph

Network Performance per Real Server

Network Performance of Application per Real Server

Network Performance per Port

Total Usage of Resources per RS

prod00175260,

prod00185858

Security Management

AVR will now support export of PCAP files for attacks of type

Intrusion.

prod00175262,

prod00141880

AVR exported forensic reports will now correctly display the

device name, instead of the internal device identifier.

prod00169877,

prod00146499,

prod00169878,

prod00158570

AVR will now display the action field using the same values as

the real-time Current Attacks table values in the Security

Monitoring perspective. The action field values will no longer be

aggregated to Allowed/Denied.

prod00175252,

prod00157734,

prod00176670,

prod00167889,

prod00175243,

prod00172154

AVR Report creation will no longer display an endless progress

bar when the option Aggregate Data by Day is selected.

prod00169876,

prod00167701

The AVR graphs will no longer be cut and display inaccurate

information under the Y axis.

prod00176731,

prod00176370




Vision 2.15 adds AVR support for the DNS attack type, including

attack details.

prod00186130,

prod00186099

Fixed in Version 2.10.00 Build 745



APSolute Vision internal web server log file will be truncated when

it reaches 10 MB.

prod00178753

ADC Management

None

Security Management

None




APSolute Vision will no longer download corrupt device drivers

every 15 seconds. The corrupt status will be stored internally, and

APSolute Vision will cease retrying to download it.

prod00172266,

prod00172215,

prod00177101,

prod00177093




Database access permissions will not be overwritten during the

APSolute Vision upgrade procedure.

prod00173949,

prod00173866

Performing APSolute Vision Reporter data export will warn the

user that "If the database is large, this operation can take several

minutes." before beginning the export.

prod00171074,

prod00170178

APSolute Vision will correctly handle error messages when

performing APSolute Vision configuration backup using FTP.

prod00167714,

prod00167385

NMS IP address configuration in initial set-up will not prevent

APSolute Vision from being able to manage the device.

Appropriate error messages will be displayed to the user.

prod00165781,

prod00165736

An APSolute Vision server database table column size was

increased to handle IP addresses with additional characters.

prod00168294,

prod00157769

The output of the APSolute Vision system statistics CLI command

was changed to allow better understanding of the current system

state.

prod00168283,

prod00156991

When the system is configured to use non-standard font sizes,

APSolute Vision will now correctly display the layout of the client.

prod00165932,

prod00150763

APSolute Vision server firewall was modified to prevent the

vulnerability: CVE-1999-0524 (ICMP timestamp requests (icmp-

timestamp (322) Low Risk).

prod00174755

ADC Management

Issues regarding synchronizing an Alteon 5224 master to backup

were resolved.

prod00170923

AppShape SAP: The weight sent by the SAP server is ignored.

The weight is configured as "1", unless the weight is "0", in which

case, APSolute Vision disables the real server.

prod00167716,

prod00167494,

prod00167493,

prod00167715

Issues regarding the "Manage Device" menu item being disabled

were resolved.

prod00167709,

prod00166374




Security Management

Issues regarding Security Monitoring > HTTP Reports were

resolved. Data for newly added policies will be correctly displayed.

prod00173355,

prod00173257

A scheduled AVR backup now correctly indicates success or

failure when copying files to a remote directory.

prod00173356,

prod00172590

Security Monitoring > Traffic Monitoring reports are now available

both for RADIUS authentication and local authentication.

prod00171687,

prod00171575,

prod00171686,

prod00171574

The Current Attacks table Start Time column now displays date

and time, the same as the dashboard.

prod00171355

Issues regarding RBAC by DefensePro policy in the Security

Monitoring dashboard were resolved.

prod00171302,

prod00171238

APSolute Vision data collection was optimized, which will allow

APSolute Vision to perform better under stress, prevent the

database from filling up, and prevent cases where AVR could not

display attack details.

prod00171080,

prod00170931,

prod00167708,

prod00165755,

prod00165980,

prod00155891

The Traffic Monitoring graphs in the Security Monitoring

perspective now correctly indicate time points with missing data,

and will not link the points before and after the missing data.

prod00171076,

prod00170136,

prod00168574,

prod00168401

The default value for the Show Traffic field of the Traffic

Monitoring > Traffic Utilization graph was changed to Both.

prod00169431


Known Limitations

This section lists all known limitations for this release.




The Search functionality fails when the search field contains a

number sign (#) or ampersand (&).

Importance: Medium


Workaround: None.

214807,

214805

When changing the timezone for an existing APSolute Vision

server that already has data, some of the existing dates/times

are incorrectly shifted by a few hours.

Affected items:

Existing alerts

Scheduled tasks

Security real-time reports (last 24 hours)

Graphs for open attacks (in attack details)

Existing device backups

Importance: Medium


Workaround:

Alerts—Automatically get resolved with new alerts.

Scheduler—Task time needs to be manually fixed.

Security real-time reports—Automatically get resolved after

24 hours.

Attack graphs (in attack details)—Automatically get resolved

for new attacks.

131837

KVM Installation of APSolute Vision fails if the machine name

includes an open parenthesis or a close parenthesis (that is, a (

or a or ) symbol).

Importance: Medium


Workaround: Do not use these characters in a machine name.

DE3922,

233615



Software upgrade of managed devices may fail in networks with

high latency or when the software upgrade file is very large.

Importance: Medium

Occurrence: Intermittent

Workaround: Upgrade the device using the device Web-based

management or device CLI.

N/A

When a user was created with APSolute Vision, connecting to

devices using SNMPv3 with SHA authentication and encryption

sometimes fails.

Importance: Medium


Workaround: Create the user using the CLI or WBM, or create

an SHA user without encryption.

157174

When device SNMP settings in APSolute Vision change from

SNMPv2 to SNMPv3, the ADC instance in vDirect is not

modified accordingly.

Only the ADC container is configured with the new SNMPv3

settings.

Importance: Medium


Workaround: Modify the ADC instance connection info using the

vDirect interface.

vDirect #4000

Access to APSolute Vision with IE11 fails when using the

APSolute Vision server name.

Importance: Low


Workaround: Access APSolute Vision with the server IP address

instead of the server name.

DE4457,

234349

Creating or breaking a DefensePro cluster fails if the device

HTTPS credentials of either of the devices are incorrect. The

error message is not informative.

Importance: Low


Workaround: Correct the HTTPS credentials and try again.

219355,

219351



If the authentication mode is TACACS+ and the password for

the radware user has expired, you will not be able to update the

password for that user from the Login dialog box.

Importance: Low


Workaround: Use the CLI command to update the radware

password.

228370,

227438

After adding a single device to an APSolute Vision device list

with no other devices, and then deleting the device, the device

still appears in the device list until you manually refresh the

APSolute Vision WBM.

Importance: Very Low

Occurrence: Consistent, when the device list is empty

Workaround: Refresh the page.

231297

When changing a valid certificate to a self-signed certificate (with

a warning), login to APSolute Vision using an IE browser fails.

Importance: Low

Occurrence: Consistent, after changing the certificate

Workaround: Clear the browser cache.

DE17730

Radware registers all devices in the install base with their base

MAC address, which usually ends with the digit 0. A base MAC

address ending with the digit 1 is not supported for APSolute

Vision physical appliance.

Importance: Low

Occurrence: Consistent, when the base MAC address ends with

1

Workaround: Provide an upgrade password manually.

prod00248264,

prod00248311,

DE20277

The following characters are not supported in FTP passwords: ?,

&, and ' (question mark, ampersand, and single straight quote).

When these characters are used, the configuration backup task

fails.

Importance: Low


Workaround: None.

prod00250745,

prod00250811,

DE22513



When installing a new RTU license in the License Management

tab (APSolute Vision Settings view System perspective, General

Settings > License Management) and then clicking Submit,

the status icon of the affected devices is not automatically

refreshed.

Importance: Low


Workaround: Manually refresh the APSolute Vision Web page.

DE20915

Names of logical groups of devices (Logical Groups) cannot

include the following characters: ?, &, and ' (question mark,

ampersand, and single straight quote).

Importance: Low


Workaround: None.

DE22207

After upgrading APSolute Vision software, the Alert Table will be

empty for several minutes, with no alerts registered before the

upgrade.

Importance: Low


Workaround: None.

DE21290

In the AppShapes Service tab, if you enter a filter value in the

Device Name column, no results display.

Importance: Low


Workaround: None.

DE21462

ADC Management

When using APSolute Vision version 3.x with Alteon versions

earlier than 30.0.4.10, FastView screens are not displayed

correctly. This includes the edit FastView Web Application

screen and the Treatment Sets configuration screens.

Importance: Medium


Workaround: Upgrade to Alteon version 30.0.4.10 or later.

DE645



The name of a vADC displayed in the Organization tree may not

reflect the switch name (Configuration perspective, System >

SNMP > SNMP Settings > Switch Name) if the switch name is

modified after the vADC is added to the tree.

Importance: Medium


Workaround: None.

166008,

147376

In Alteon version 31.0 and later, site selection based on the Geo

Location allows configuring continent, country, and states.

However, when using special characters, for example, “Entre

Ríos Province” state under “South America” > “Argentina”, a

configuration error is displayed.

Importance: Medium


Workaround: None.

DE21625

In the Service Status Dashboard (APSolute Vision Settings view

Dashboards perspective > Service Status Dashboard), when

selecting specific devices for filtering and then clicking APPLY,

the selected devices are not be saved when the page is visited

again. Rather, the default, selected devices are shown as

selected.

Importance: Medium


Workaround: Apply the filter in Play mode.

DE22060

In the Service Status Dashboard (APSolute Vision Settings view

Dashboards perspective > Service Status Dashboard), filters

do not apply if you can change them while in Pause mode.

Importance: Low


Workaround: Apply filters in Play mode.

DE22136

Exporting an Alteon configuration using IE browser version 11 is

not supported.

Importance: Low


Workaround: None.

prod00249273,

DE21168



When the selected language is Chinese, in the Alteon

Configuration perspective, under Application Delivery > DNS

Authority, the label of the Service Down Response parameter

and the values of the drop-down list are not translated from

English into Chinese.

Importance: Low


Workaround: None.

DE19595

When using Alteon with an embedded AppWall module,

launching the AppWall applet screens requires a direct route

between the APSolute Vision WBM client and the Alteon device.

Device Performance Monitoring (DPM)

When using vADCs, when working with fewer than four (4) CUs,

sometimes the XML file is sent every 18 seconds.

Importance: Medium


Workaround: None.

173562,

174341

The DPM Total Statistics per Port report displays inaccurate

throughput information. Alteon adds 34 more bytes for each

session. For some outgoing packets, the TX adds 4 bytes more

than needed.

Importance: Medium


Workaround: None.

174590

The Network Performance per ADC - PPS report counts the

packets that entered and exited the data port instead of counting

only packets that entered the data ports.

Importance: Medium


Workaround: None.

176008



When the MP CPU utilization is high, sometimes Alteon sends

the reporting XML file to the Telnet port rather than port 3030.

Importance: Medium


Workaround: None.

176022

For all reports for FTP traffic, Alteon counts only the control

sessions and not the data.

Importance: Medium


Workaround: None.

176456

After upgrading to a new version of APSolute Vision, DPM fails

to open. The following error message displays: Failed to retrieve

user RBAC details.

Importance: Medium


Workaround: Clear the browser cache.

206035

In the DPM Dashboard (Application tab), a pie chart displays

incorrect status of the selected real servers.

Importance: Medium


Workaround: For Alteon version 30.2 and later, use the

Application Delivery View of the Alteon Dashboard, which

provides the same information.

232419,

DE3933

DPM does not display a session-expiration event when an

APSolute Vision Security Monitoring timeout occurs. Timeout is

enforced only after browser-reload or page-reconnect, displaying

the message: “You can launch the Device Performance Monitor

interface only through the APSolute Vision client.”

Importance: Medium


Workaround: None

233262,

DE3849



There is a slight inconsistency between the DPM Connections

and Bandwidth fields shown in Mbits under Report > Total

Usage per real server > Total Usage of Resources per Real

Server and the information displayed in the CLI.

Importance: Low


Workaround: None.

245431,

243405,

DE17765

When Alteon redirects to a URL string that is longer than 64

characters, the DPM dashboard does not display any data for

the Alteon device.

Importance: Medium


Workaround: Contact Radware support for a mitigation

procedure.

prod00249091,

prod00249092,

DE21006

Application Performance Monitoring (APM)

APM uses AppShape++ script index #16.

Importance: High


Workaround: Add the event disable_current command

under the if statement that includes the HTTP::respond

command. This forces Alteon to skip the next script, which is the APM script (relevant in cases that the APM script is not needed

when there is an HTTP::respond command, since Alteon

responds instead of the server)..

178705



Downloading a report from the Report Queue view does not

work, producing an error message, “The Webpage is not

available.”

Note: This limitation exists only when upgrading existing

installations.

Importance: High


Workaround: In APM, select Settings > Parameters > Show All

Parameters > reportsURL. Modify the value of the reportsURL

parameter to the format

https://<APSolute Vision management IP address

(usually G1)>/sharepath-reports-rad, and then, click

Save.

Note: This issue exists only when upgrading existing

installations.

232794

When disabling APM on a virtual service, the AppShape++ script

used for that service is not automatically deleted.

Importance: Medium

Occurrence: Consistent on Alteon 29.5 only

Workaround: Manually delete the script from the AppShape++

Repository in the Configuration Perspective, Application

Delivery > Virtual Services > AppShape++.

172617

Upgrading APSolute Vision with APM from version 3.20.00 to

3.30.00 may require manual reboot.

Importance: Medium

Occurrence: Rare

Workaround: If the upgrade procedure is stuck during the final

step of reboot, do the following to verify that the service has

started, and then, reboot manually. Log in as root and type the

following command service vz restart. If an error

message is received “can't load module xxxx” or “can't find

module xxxxx”, reboot the system.

N/A



GeoIP: When adding new entries to an existing database, new

entries with IP-address ranges overlapping existing IP-address

ranges are not inserted into the database.

Importance: Medium


Workaround: Use private IP-address-resolution and manually

delete the entries using the APM UI.

239337,

DE11141

After upgrading APSolute Vision from version 3.00.00, APM

stops sending mail notifications when exceeding the application

SLA.

Importance: Medium


Workaround: Perform an internal manual upgrade after the

upgrade is completed.

DE11367

Application SLA SMTP alerts can only be sent via the G4 port.

Importance: Medium


Workaround: None.

DE13752

Accessing an APM server from an external instance of APSolute

Vision (that is, an APSolute Vision instance running without an

embedded APM Server) fails.

Importance: Low


Workaround: Automatic authentication of APSolute Vision server

on the remote APM will fail. APSolute Vision displays a login

screen, for providing the remote APM user/password.

230460

The following limitation exists regarding APSolute Vision with

APM Server VA: A ping to addresses via the G4 port only

returns correct information from within the APM shell. When

performing a ping from the regular APSolute Vision shell, the

user receives a “no reply.”

Importance: Low


Workaround: None.

206004



When launching APM for the first time, login parameters are

required; the login is not done automatically.

Importance: Low


Workaround: Close the tab and click the APSolute Vision APM

button. APM launches automatically, without needing to log in

again.

230309,

DE17124

APSolute Vision does not list APM-enabled services defined on

Alteon version 29.5 with APM Server other than the one

configured in APSolute Vision.

Importance: Low


Workaround: None.

230957

The list of APM-enabled services that are monitored may be out-

of-date if the changed configuration is not applied. Note that it

may take a few seconds for the Apply is Required indication to

be displayed.

Importance: Low


Workaround: When changing the status of APM from enabled to

disabled or vice-versa on a virtual service, wait until the Apply

button is highlighted with a yellow background, before clicking

the Apply button.

N/A

Online help does not show relevant information when selected

from Advanced Search view.

Importance: Low


Workaround: Launch online help from any other view. Select the

search tab, and search for a “search” key word.

DE13314

When there are no APM enabled virtual services, only a user

with an Administrator role can access the APM server.

Importance: Low


Workaround: None.

DE15700



Free-text search in the APM Advanced Search screen operates

through the keyword pattern only. Searching according to any

text that is part of the transaction data does not work.

Importance: Low


Workaround: Use a specific keyword/parameter combination as

suggested in the UI example.

DE13058

Clicking Delete Application only hides the application.

Importance: Low


Workaround: Delete the application through Alteon.

DE14811

When a demo/evaluation license is installed, the APM functions

well, but the SLA dashboard does not show the data for the User

Experience SLA and for the Data Center SLA columns.

Importance: Low


Workaround: None.

prod00247478,

DE21488

When the Compatibility view settings is set in the end-user’s IE

browser, the beacon sent from the browser includes pure lower-

case header names, which are not processed by the APM

server.

Importance: Low


Workaround: Disable Compatibility view settings in the end-

user’s IE browser.

DE19725

In the APM server, in Monitoring - Applications >

Applications View > User Experience Information, when

clicking on a specific application, a menu pop-up shows a list of

view navigations available to the user. When the selection is

Locations SLA, a system error notification is shown due to an

incorrect path.

Importance: Low


Workaround: Manually navigate to Monitoring - Locations >

Locations View.

DE21690



When the APM server sends a mail alert due to an SLA breach

that includes a link to a realtime_compare_good_vs_bad report,

when clicking on the link, a system error notification is shown

due to an incorrect report path, preventing the user from viewing

the report.

Importance: Low


Workaround: Manually log in and navigate to Monitoring –

Applications > Application Dashboards > User Experience

Information and click on the columns in the Transaction Volume

graph.

DE21719

Security Management

When importing large configuration templates to a DefensePro

device, sometimes the process can take more maximum

supported session timeout. The APSolute Vision server will then

close the HTTP connection due to connection timeout.

Importance: High


Workaround: None.

DE7918

The Toolbox script DefensePro Export/Import Policies does not

support exporting a user-defined Signature Protection profile.

Importance: High


Workaround: Export manually using the DefensePro WBM.

DE17560

When a user has permission only to some of the defined

policies, when none of the policies are selected in the Traffic

Utilization Report pane under Traffic Monitoring > Traffic

Utilization Reporting, the displayed traffic is not subject to the

defined policies permission.

Importance: High


Workaround: None.

DE19420



Ongoing Attacks and Alerts tables are limited to 10,000 rows per

request, using APSolute Vision Web UI and REST API.

Importance: High


Workaround: Using the APSolute Vision Web UI, refine your

filter criteria. For REST API, use smaller time intervals.

DE21445

Starting with Chrome version 42 (released April 2015), Chrome

has disabled the standard way in which browsers support

plugins. This affects launching the AVR.

Importance: Medium


Workaround: Enable NPAPI in Chrome Version 42 and later.

As of Chrome Version 42, do the following to continue using

NPAPI plugins:

In the address box, enter chrome://flags/#enable-npapi

For the Enable NPAPI configuration option, click the Enable

link.

Click the Relaunch button that is displayed at the bottom of

the configuration page.

Developers and system administrators looking for alternative

ways to support users of Chrome can see:

https://blogs.oracle.com/java-platform-

group/entry/java_web_start_in_or, in particular, the “Running

Web Start applications outside of a browser” and “Additional

Deployment Options” sections.

N/A

APSolute Vision does not support creating DefensePro high-

availability clusters for DefensePro VA devices.

Importance: Medium


Workaround: Use CLI or WBM to create the clusters.

DE9536

https://blogs.oracle.com/java-platform-group/entry/java_web_start_in_or

https://blogs.oracle.com/java-platform-group/entry/java_web_start_in_or



You cannot add, edit, or view DefensePro profiles if the profile

name plus the name of the first rule is longer than 80 characters

(Network Protection > Signature Protection > Signature

Profiles).

Importance: Medium


Workaround: Use CLI or WBM to add or edit the profiles.

83357, 70732,

83302, 70730

APSolute Vision does not process SNMP traps and IRP

messages received on an interface that it did not use to register

in the device target table.

Importance: Medium


Workaround: Register in the device target table with the

APSolute Vision interface that is used to receive device traps

and IRP messages.

212642

AVR alerts may be triggered when the traffic is below the

configured threshold. This may occur if the threshold setting is

configured to an option other than Trigger this rule if it occurs

at all. The only recommended option to finalize the threshold

settings of AVR rules is Trigger this rule if it occurs at all.

Importance: Medium


Workaround: None.

DE6353,

232749

When upgrading from APSolute Vision 3.40, APSolute Vision

does not retain the DefensePro Configuration Template tasks

that were configured before the upgrade.

Importance: Medium


Workaround: None.

DE17541



For each AppWall device, the Device Subscriptions table

(APSolute Vision Settings view System perspective, Device

Resources > Device Subscriptions) does not show the real

values in the Valid Support Agreement, Valid SUS Agreement,

and Valid RSA Updates Agreement columns.

Importance: Medium


Workaround: None.

DE19964

When a Virtual DefensePro device is registered using its IP

address instead of its MAC address, the Device Subscriptions

table (APSolute Vision Settings view System perspective,

Device Resources > Device Subscriptions) does not show the

real values in the Valid Support Agreement, Valid SUS

Agreement, and Valid RSA Updates Agreement columns.

Importance: Medium


Workaround: None.

DE19965

If multiple DefensePro devices have policies with the same

name, and a user has RBAC for security monitoring information

for some of the policies, but not all of them, security-monitoring

information for all of the policies with the same name will be

available to them.

Importance: Low


Workaround: None.

232399

When creating or breaking a DefensePro cluster, if the device

HTTPS credentials are wrong, an inaccurate error message is

displayed, and the action fails.

Importance: Low


Workaround: Update the HTTPS user and password in the

device properties screen.

219351,

219355



When updating security signatures from RSA, sometimes the

Web UI displays that the status of the task as In Progress,

when actually, it has already completed successfully.

Importance: Low


Workaround: Refer to the RSA Signatures Last Update

timestamp in DefensePro under Monitoring > Operational

Status > Overview > Signature Update.

DE6000

When importing a DefensePro configuration file, sometimes the

Web UI indicates an incorrect status 503 (Service Temporarily

Unavailable), even though the action has actually completed

successfully.

Importance: Low


Workaround: None.

DE6379

Upgrading DefensePro version 7.41.00 build 51 to version

7.41.01 build 18 fails and displays the following error notification:

“M_00359: Http Protocol Error: 10.78.23.20:8443 failed to

respond.”

Importance: Low


Workaround: Upgrade using CLI or the DefensePro WBM.

236003,

DE6553

The Toolbox script DefensePro Export/Import Policies fails when

selecting a policy named [All], which represents all policies.

Importance: Low


Workaround: Select the Transfer All Policies checkbox.

DE18761



When upgrading to APSolute Vision 3.70.01 or later, if the Users

Must Change Password at First Login parameter in APSolute

Vision is enabled (System > User Management > User

Management Settings), the defenseflow user, in DefenseFlow

version 2.5 and later, might not be able to log in to APSolute

Vision without changing the defenseflow password.

Importance: Low


Workaround: Log in to APSolute Vision CLI as the defenseflow

user and change the user password. Log in to APSolute Vision

WBM as an Administrator user. Then, select System > User

Management > Local Users and change the password of

defenseflow user to defenseflow.

DE20804

In the Local Users table, the Password Expiration Date column

displays a date for the msspportal and defenseflow users.

However, the passwords of users with the System User role,

such as the msspportal and defenseflow users do not expire.

Importance: Low


Workaround: None. You can ignore the date in the Password

Expiration Date column for the msspportal and defenseflow

users.

DE21086

The default password of the defenseflow system user does not

match the APSolute Vision default password, so when resetting

the default passwords in APSolute Vision, the defenseflow

user’s password will be different.

Importance: Low


Workaround: Log in to APSolute Vision WBM as an

Administrator user. Then, select System > User Management >

Local Users and change the password of defenseflow user to

defenseflow.

DE21102



A DefenseFlow instance can successfully reconnect to APSolute

Vision after DefenseFlow is unregistered in the APSolute Vision

CLI.

Importance: Low


Workaround: Restart the all APSolute Vision services (system

vision –server stop, system vision –server

start).

DE21130

In the DefenseFlow Security Monitoring Current Attacks Table,

the Attack Protocol column does not include Non-IP.

Importance: Low


Workaround: None.

DE20766

APSolute Vision uses different time formats (24H and 12H) to

display the same attack event in Security Monitoring Ongoing

Attacks Monitor and Current Attacks Table.

Importance: Very low


Workaround: None.

prod00250448,

prod00250449,

DE22133

APSolute Vision Reporter (AVR)

AVR reports display incorrect data for reports regarding

outbound traffic for DefensePro devices in IP mode. The

displayed values are four times the actual values.

Importance: High


Workaround: None.

DE8197

AVR alerts are not triggered for DefenseFlow traffic events.

Importance: High


Workaround: None.

DE14015



When accessing the AVR for the first time, it may take a few

seconds for the dashboard components to display data.

Importance: Medium


Workaround: None.

N/A

AVR does not display the correct policy list per user if policy

names include a comma (,) a forward slash (/), or a backslash

(\).

Importance: Medium


Workaround: Do not use these characters in DefensePro policy

names.

222170

When the AVR database is large, creating an AVR backup using

the APSolute Vision server CLI can take a long time. During this

period, any character typed on the console is considered part of

the password and can cause the export action to fail.

Importance: Medium


Workaround: Wait for the backup creation to complete, and do

not type characters at the console during the operation.

186886

While defining a new report using the AVR wizard, one of the

steps displays a list of predefined report templates.

Occasionally, the template report list is empty, even though

there are existing report templates.

Importance: Low


Workaround: Click Back and then Next Step in the wizard.

137622,

135909

APSolute Vision server CPU consumption is very high when

APSolute Vision Reporter generates multiple reports at the same

time. This can cause the APSolute Vision client to respond

slowly.

Importance: Medium


Workaround: Do not schedule automatic generation of multiple

reports in parallel.

148055



When accessing APSolute Vision Reporter using Internet

Explorer, caching Web pages can cause obsolete data to be

displayed.

Importance: Low


Workaround: In Internet Explorer, select Tools > Internet

Options > General > Browsing history > Settings > Check

for newer versions of stored pages > Every time I visit the

webpage.

148746

When accessing the AVR, the values shown in Traffic Report >

Outbound IP Mode > Values are four times larger than real

values. The Bandwidth by Hour of Day(PPS) report presentation

and the Bandwidth by Hour of Day - Outbound(PPS) report

presentation display an inaccurate value.

Importance: Low


Workaround: None.

DE8197

When exporting a Forensics report, the report is generated in a

text format and is comma delimited, unlike a tabbed text format

of a scheduled task that is sent to an email.

Importance: Low


Workaround: None

238774,

238834,

DE10072

After configuring AVR to send alert mail in a rich text format, it is

sent in a regular text format instead.

Importance: Very low


Workaround: None

prod00248765,

prod00248768,

DE20729

vDirect Service



When executing an Operator Toolbox script in which the

selected targets include one or more logical groups of devices

(Logical Groups), the script fails if one of the devices in the

Logical Group is down or unresponsive. (Preferably, the script

should not fail; and the script should proceed to the next device

in the Logical Group.)

Importance: High


Workaround: None

DE22228,

DE20749

Managing two or more vADCs from different VXs causes both

ADCs to be registered under the last VX in vDirect.

Importance: Medium


Workaround: When integration with vDirect is required, use a

sequence of single operations, not bulk operations.

The APSolute Vision Lock operation on a device is not enforced

on vDirect. Each of the two subsystems can modify a device

configuration in parallel. This may cause conflicting

configurations.

Importance: Medium


Workaround: Implement use cases where only one subsystem

modifies the device configurations.

N/A

There are rare scenarios in which APSolute Vision loses

synchronization with the vDirect module.

Importance: Medium

Occurrence: Rare

Workaround: Do the following:

Run the following REST call:

POST/mgmt/system/config/tree/vdirectsync/devices

Run the following command to restart the vDirect service:

service vdirect restart

DE20390



Device-synchronization messages arriving from vDirect

regarding devices in the Maintenance status are not updated in

APSolute Vision.

Importance: Low


Workaround: None.

N/A

If a vADC is created in APSolute Vision but the vADC does not

belong to any VX physical container, vDirect erroneously

registers the ADC as a dedicated container.

Importance: Low


Workaround: Before creating a vADC in the Sites and Clusters

tab, create a physical device (VX form factor) in the Physical

Containers tab of the device tree in APSolute Vision.

N/A

Creating an APSolute Vision user named vDirect overrides the

existing special user, which APSolute Vision uses internally for

APSolute Vision-vDirect communication.

Importance: Low


Workaround: Do not create a user in APSolute Vision named

vDirect.

N/A

vDirect recognizes LinkProof NG devices as Alteon devices.

Importance: Low


Workaround: None.

DE14983

When accessing a device directly through vDirect and changing

the IP address of a device that is managed through APSolute

Vision, APSolute Vision will not be notified that the IP address

has changed and will lose connection with the device.

Importance: Low


Workaround: Restart APSolute Vision server.

DE17875



Incompatibility between APSolute Vision and AVR. Although the

source IP is included in Real Time Monitoring under Scan

Details, it is not shown in AVR’s Network Scan Attack footprint.

Importance: Low


Workaround: None.

245481,

245455,

DE17791

APSolute Vision Reporter (AVR)—Maintenance Fixes and Features

This section lists all feature and fixed issues that were added to the AVR reporting engine.

AVR v2.1.1.11 Released on 19-May-2016

Fixed the following new issues reported by Radware:

Issue: Copyright year displays as 2014 while generating forensic report and sending it by

mail.

Recommendation: Change copyright year to 2016.

Issue: In a fresh install environment, the new AVR keeps restarting.

Recommendation: Should not crash the AVR mainengine setup

prod00242846 Profiles vanished from the vision AVR:

Added the support to maintain back-up of the profile.xml whenever profile is

created/modified/deleted. The backup file will be in the same location as that of

profiles.xml. This back-up file will be in the format profiles.xml.YYYYMMDD_HHMMSS

Unnecessary back-up files have to be deleted manually.

Enabled the diagnostic logs to understand the behavior and record evidence if any.

In case this gets re-created again in the field, provide the following files/details for

diagnosis to EIQ. Meanwhile, customer can restore the profiles.xml from the most recent

backed up copy (profiles.xml.YYYYMMDD_HHMMSS)

o Latest backup copy of profiles.xml

o /var/avr/diaglogs/mainenginediag.log

o /var/avr/diaglogs/cgidiag.log

o /var/avr/logs/access.log and /var/avr/logs/access_<MM><DD><YYYY>.log

o /var/avr/Audit/<YYYY>/<MM>/<DD>/userAudit.log

o /var/avr/Audit/<YYYY>/<MM>/<DD>/userActivity.log


o Actions performed when loss of profiles was witnessed

o Time at which the loss of profiles happened.

AVR v2.1.1.10 Released on 7-April-2016

Added fixes for Radware newly reported issues:

Issue: Observed multiple commas on “To” and “CC” fields on Profile Alert mail sent by

Vision.

Recommendation: Remove multiple commas to ‘To’ and ‘CC’ list.

Issue: Copyright year displays as 2015.

Recommendation: Change copyright year to 2016.

AVR v2.1.1.9 Released on 23-December-2015

Added fix for Radware newly reported issue:

Issue: Traffic polling issue. If data is not available in the table

‘traffic_utilizations_per_policy’ then diaglogs and last collected orm id in Lastrecordsid.txt

are failed to update properly even though AVR collects the data from ‘traffic_utilizations’

table.

Recommendation: Collection would be considered as success, Update the last collected

orm id in Lastrecordsid.txt and update diaglog with proper event count if data is collected

from either of the table. Hence AVR always collects the traffic data in next collection

interval using last collection orm id (in Lastrecordsid.txt).

AVR v2.1.1.8 Released on 1-December-2015


Issue: Suspected bdos edge and suspected attack reports are not seen for DP and

LastRecordIDs.txt file has similar the last record Id for bdos_real_time_edge and

avr_df_bdos_real_time_edge.

Recommendation: Should show the DP BDOS reports and the last record ids should

update properly.

AVR v2.1.1.7 Released on 17-November-2015


Issue: Not allowing special character “-“in ftp username.

Recommendation: Allow “-“special character in ftp username.


AVR v2.1.1.6 Released on 4-November-2015


Issue: Y-axis in the graph is showing as ‘Bytes’ instead of ‘Count’ in the exported Count

based reports.

Recommendation: Y-axis in the graph should show as ‘Count’ in the exported Count

based reports.

Issue: Graphs are not displaying in the exported Appwall reports.

Recommendation: Graphs should display in the exported Appwall reports.

AVR v2.1.1.5 Released on 1-October-2015

DefenseFlow Device support:

Attack Reports.

Traffic Utilization Report.

Baseline Report.


Issue: Failed to Edit the report in Profiles.

Recommendation: Edit Report should work in Profiles.

Issue: Failed to Delete the report in Profiles.

Recommendation: Delete Report should work in Profiles.

Issue: Displaying the enum value 12 instead of string as ‘Bandwidth Management‘ for

the Threat Category.

Recommendation: Consider enum value ‘12’ as ‘Bandwidth Management‘ for Threat

Category.

Issue: Bandwidth translation problem from KB to MB. Rounds all values to whole

numbers. In case the value is less than 1 MB, AVR shows 0.

Recommendation: After translating the ‘Bandwidth’ from KB to MB, show the exact

amount of bandwidth, and not round to whole numbers, even if it’s a fraction of MB.

Issue: Enum values mapping problem at export Forensic to text.

Recommendation: Map the enums into string when exporting forensics details.

AVR v2.1.1.1 Released on 8-July-2015

Added support to four new action types in addition to the existing.

Issue: Have the issue with AVR if the users_view table has device_id/rule_name value in ‘[]’

as “[ALL]”.


Recommendation: If device_id/rule_name has leading and trailing brackets ‘[ ]’ in

users_view table then update these without ‘[ ]’ in AVR user store (UserManager.xml).

Issue: Disabling vision data collection if MySQL service is in down state after AVR

install/upgrade.

Recommendation: Don’t consider MySQL service status (stop/start) after AVR

install/upgrade and always enable the configuration parameter to collect vision data

Issue: Failed to upgrade the AVR at following cases:

If users_view table is empty.

If users_view table is not available.

If MySQL service is in down state

Recommendation: Do not change anything in the existing AVR user store

(UserManager.xml) and proceed with upgrade during the following cases with

corresponding log messages.

These messages would be printed on terminal and also updated to

/var/avr/diaglogs/cgidiag.log.

Case 1: If users_view table is empty.

Log message: [ZeroUserRecords] 'vision.users_view' table is empty. Hence, AVR user

store has not been modified.

Case 2: If users_view table is not available.

Log message: [DBQueryExecFailed] Error! Unable to execute query: <ErrorReason>

Case 3: If MySQL service is in down state.

Log message: [DBConnFailed] Error! Unable to connect to database 'vision':

<ErrorReason>

AVR v2.1.1.0 Released on 18-June-2015

R-2.4.3 Packet Capture for all Attack Types.

prod00207747: Forensics Reports include enum values instead of strings.

prod00202433: Forensic reports shows enum values instead of strings when sent by email.

prod00191144: AVR device list does not update Management IP of AppWall device, when it

changes.

Issue: Monitoring data is flushing whenever setUserPerms.cgi was called by Vision.

Recommendation: Whenever setUserPerms.cgi is called by Vision, will not automatically

flush the monitoring data. Alternatively, will check if the user permissions were changed

Resolved and only if the latter is true – data will be flushed.

Issue: The monitoring data is flushed if there is no call done to monitoring for one long hour.

Recommendation: The data would be flushed only if there is no call done to monitoring for

24 hours.


Issue: After deleting the device and if same IP is assigned to different device with a new

ORM id then reports are not updating.

Recommendation: All the ORM Ids listed against the IP would be considered irrespective of

the node active state. This would populate the data for an older node as well.

Issue: Deleted user is still shown for alerts (for radware user).

Recommendation: <No owner> is expected for deleted user in alerts.

Issue: Attack View for HTTP FLOOD shows enum value instead of string for ‘action’.

Recommendation: Attack View would show string value instead of enum for ‘action’.


Add ‘radware’ user if not available at AVR user store.

Return proper HTTP status code if session id is INVALID while adding the user.

Return proper HTTP status code if session id is INVALID while deleting the user.

DELETE USER can able to done before LOGOUT or after LOGOUT operation.


R-2.6.1 User Management (NFR prod00186451):

AddUser: Add user support is restricted for only Vision users. Appwall user adding

mechanism is same as AVR2.0.

Delete user support: In any case, if the permissions are shared across the users then,

users would see the entity marked as ‘<No Owner>’ in the owners column of the table.

Any user who edits this entity would then become the new owner.

User store upgrade script for vision users.

o Users existing in both the stores (AVR user store and Vision DB) are synced i.e.

AVR user store would be updated to have the correct permission set.

o Users existing in just AVR user store (not available in Vision DB) would be deleted

from AVR

o Users existing in just Vision DB would be added to AVR.

o AppWall users available in AVR user store at the time of upgrade would be retained

as is.

prod00170373: Alerts and monitors do not enforce RBAC by device and policy

prod00168811: The dashboard shows attacks blocked by policies the user is not allowed to

see.

prod00195834 - AVR: Profile reports disappeared from AVR view Vision 2.15.00

All of the items included in the AVR v2.1.0.4 released on 14-April-2015



R-2.6.1 User Management (NFR prod00186451) – Added support for:

Add User

Delete User

prod00170373: Alerts and monitors do not enforce RBAC by device and policy --

‘Permissions’ tab would be hidden in ‘Add/Edit’ GUI of ‘Alerts’

GUI Filter pane for ‘Policy Name’ field to show only the permitted policies – based on

intersection of the user permission set and the ‘device’ selection in the GUI wizard.



Changed the MySQL query to pull packet capture details from ‘Packet_Reports’ table.

This change was warranted because of different formats used for ‘Orm_Id’ field in the

Vision DB.

‘Security_Attacks’ report stored orm_id as “var_char(32)” in long format i.e. with leading

zeroes

But ‘Attack_Reports’ table stored orm_id as ‘BigInt’ – hence the leading zeroes got

truncated.

Dikla changed the MySQL query to use LPAD to accommodate the leading zeroes.


AVR v2.1.0.2 released on 10-April-2015

Fixed mainengine crash – surfaced due to the MySQL query change to address

prod00232157 ( AVR forensic report fails to export PCAP file in large scale setup)

The crash was because of wrong error handling when CHashTable2 lookup fails



Fixed prod00232157: AVR forensic report fails to export PCAP file in large scale setup




Below are delivered through AVR v2.1.0.

Category Priority Bug/RFE Description

Sustenance P0 prod00220684 Forensics filter by specific rule does not find

matches for existing data.

P0 prod00222975 Traffic Report shows no data, if all traffic

values are zero.

P2 prod00170373 Alerts and monitors do not enforce RBAC

by device and policy.

Port-Mapping P1 R-2.3.1 DefensePro ODS-HT - x420

(Bug ID prod00185827).

P1 R-2.3.2 DefensePro HTQe X4420

AVR will support the port definitions for the

display of the physical ports for the

DefensePro HTQe X4420 platform.

P1 R-2.3.3 DefensePro vDP

AVR will support the port definitions for

display of the physical ports for DefensePro

vDP platform in AVR.

Attack

Enhancements

P1 R-2.4.1 Attack Data - Source Port Field

P1 R-2.4.2 Attack Data – Bandwidth units to be in MB.

P1 R-2.4.4 IP Routing Mode.

Enum

Additions

P1 R-2.5.1 SYN Protection Enhancements.

P1 R-2.5.2 BDoS Baseline Reports Enhancements.

Additional

Features

P1 R-2.6.1 Provide API for ‘Delete User’ operation

(NFR prod00186451).

P1 R-2.6.2 Deleted Devices Management (NFR

prod0019061.

P1 R-2.6.3 Apache timeout should be increased.


Related Documentation

The following documentation is related to this version:

APSolute Vision Installation and Maintenance Guide

APSolute Vision User Guide

APSolute Vision Reporter User Guide

APM Installation and Troubleshooting Guide

APSolute Vision REST API

For details regarding AppWall usage, refer to the AppWall User Guide.

For the latest Radware product documentation, download it from

http://www.radware.com/Customer/Portal/default.asp.

North America International

Radware Inc. Radware Ltd.

575 Corporate Drive 22 Raoul Wallenberg St.

Mahwah, NJ 07430 Tel Aviv 69710, Israel

Tel: +1-888-234-5763 Tel: 972 3 766 8666

© 2017 Radware, Ltd. All Rights Reserved. Radware and all other Radware product and service names are registered trademarks of Radware in the U.S. and other countries. All other trademarks and names are the property of their respective owners. Printed in the U.S.A

http://www.radware.com/Customer/Portal/default.asp

version 3.80.00 rev. 1 february 2017 -...

Documents