FireCloud Release Notes

FireCloud is a managed cloud-based firewall-as a-service. FireCloud protects your remote users against Internet-based security threats.

For more information about new features, go to the What's New in FireCloud PowerPoint. For a full description of FireCloud features and functionality, see FireCloud Help.

Latest FireCloud Update 12 June 2025
Release Notes Revision Date 12 June 2025
WatchGuard Connection Manager 1.3.9.769

Latest Release

Release Date: 12 June 2025

Enhancements

  • On the Usage Report, the Blocked Applications and Destinations tiles now only show hits as a value. [SASE-3592]
  • When you edit a FireCloud template, you can now successfully clear the Apply to Subscribed Accounts check box for HTTPS Decryption Exceptions. [SASE-3639]
  • Resolved an issue that caused new FireCloud templates to display the blocked icon by default even though all services are enabled. [SASE-3632]
  • WatchGuard Cloud operators with ReadOnly permissions can now successfully navigate to the Client Download page and download the installer. [SASE-3644]
  • On the Log Search page, you can no longer add duplicate fields. [SASE-3189]
  • Resolved an issue that caused Log Search fields to default to the value of the previous field. [SASE-3190]
  • Minor bug fixes and enhancements. [SASE-3610, SASE-3347, SASE-3611, SASE-3349, SASE-2172]

Previous Releases

New Features

Improve Language Localization Accuracy for Web Browsers

Some FireCloud users connect to a FireCloud Point of Presence with an egress IP address of a different country, which can cause browsers to show a different language than the user expects.

With this feature, you can configure FireCloud to include the XFF header to help websites display the correct language. The XFF header includes the public IP address of the end-user, and web browsers use this IP address for language localization. This enhances the accuracy of language localization for end-users and improves the FireCloud experience. [SASE-2468]

Enhancements

  • FireCloud log search now requires a value before you can run a search. [SASE-3165]
  • When you make changes to the content filtering settings in a FireCloud template, the audit logs now correctly include the text "Update Template" for clarity. [SASE-3193]
  • Minor bug fixes and enhancements. [SASE-3090, SASE-3228]

Enhancements

  • On the Usage Report page, the Devices Connected to FireCloud graph now displays the correct times for devices connected to FireCloud. [SASE-3369]
  • Minor bug fixes and enhancements. [SASE-3368]

Enhancements

  • In the Users tile of the Usage Report, the horizontal bars in the graph are now properly aligned. [SASE-3130]
  • When you delete a Log Search value, the Value text box label no longer disappears. [SASE-3187]
  • When you download a .CSV file for Log Search results, the download now waits until the search is complete. [SASE-3125]
  • For Log Search, you can now successfully add all security services and log message fields. [SASE-3191]
  • Minor Log Search improvements. [SASE-3188, SASE-2353]
  • Minor style changes to the appearance of buttons. [SASE-3098, SASE-2998]

New Features

FireCloud Always On Functionality

With this feature, FireCloud administrators can now configure access rules to control which end-users are allowed to manually disconnect from FireCloud (by default, access rules allow users to disconnect from FireCloud). This enables FireCloud administrators to make sure end-users are always protected. [SASE-1603]

Enhancements

  • Access rules are now shown on their own page. [SASE-3163]
  • When the Usage Report loads, the Devices Connected to FireCloud graph now shows an empty placeholder until the graph appears. [SASE-3236]
  • For the Usage Report, the Devices Connected to FireCloud graph now shows 20 minute intervals when the report time range is set to the last 24 hours. [SASE-3283]
  • On the FireCloud configuration overview, the Settings tile now shows the IP addresses custom DNS servers. [SASE-3151]
  • The Usage Report now shows the correct data based on the selected time range. [SASE-3294]
  • Minor bug fixes and improvements. [SASE-3285]

Enhancements

  • On the Usage Report page, the Protected Devices line graph has been changed to a bar graph that is called Devices Connected to FireCloud. [SASE-2895]
  • On the Usage Report page, the column header labels on the Devices tab have been changed. The Device Status column is now called FireCloud Connection, and the status values are Active and Inactive. When you view data for a single user, the Session Events section is now called FireCloud Connection Events. [SASE-2896]
  • On the Usage Report page, when a user disconnects from FireCloud, the device status now updates in real time. You do not have to refresh the page for the report to show the updated status. [SASE-2982]
  • Operators with read-only permissions for FireCloud can no longer complete the FireCloud setup wizard. [SASE-2940]
  • On the Log Search page, the cursor only displays as a hand when you hover over fields that are selectable. [SASE-2803]
  • For Service Providers, when you customize the columns on the Usage Report and then switch to view data for another account, the customized columns no longer persist in the Usage Report for the new account. [SASE-2802]
  • On the Log Search page, the example searches have been updated to be more useful. [SASE-2799]
  • On the Log Search page, you can now sort results by date and time. [SASE-2706]
  • On the Log Search page, when you view details for a specific log message, the window now has arrows so that you can click to view the next or previous log message. [SASE-2369, SASE-2322]
  • Minor style changes to the appearance of buttons. [SASE-3096, SASE-3088, SASE-3102, SASE-3117, SASE-3116, SASE-3115, SASE-3114, SASE-3113]
  • Minor bug fixes and improvements. [SASE-3100]

Enhancements

  • For the Usage Report page, the Customize Columns window no longer closes when you click outside of the window. [SASE-3085]
  • For the Usage Report, the Customize Columns window no longer gains a scrollbar when you change the order of the columns. [SASE-3084]
  • For the Usage Report, when you customize the columns in the list and then change the width of a column, the list now displays correctly. [SASE-3074]
  • For accounts that have an expired FireCloud trial, when you start a new trial or activate a license, the account now shows the correct license quantity. [SASE-2980]
  • For FireCloud audit logs, changes to template settings now include the text "Update Template" for clarity. [SASE-2726, SASE-2727, SASE-2728, SASE-2729]

Enhancements

  • The option to log out a user from the FireCloud Usage Report is no longer available for users that have no devices connected to FireCloud. [SASE-3034]
  • When you log out a specific user or device, the Usage Report no longer shows all devices as Not Protected. [SASE-3033]
  • When you log specific devices out of FireCloud from the Usage Report, the Logout Devices window no longer shows devices that are not protected. [SASE-3019]
  • When you log specific devices out of FireCloud from the Usage Report, the Logout Devices window no longer retains your selections after you cancel and close the window. [SASE-3036]
  • WatchGuard Cloud operators with the Analyst role can now successfully log out FireCloud users and devices from the Usage Report. [SASE-3083]
  • Minor bug fixes and improvements. [SASE-3103, SASE-3020]

Enhancements

  • The WatchGuard Connection Manager has been updated to version 1.3.9.769.
    • Resolved an issue that caused the Connection Manager to take more than 5 minutes to disconnect from FireCloud when in an unhealthy state. [SASE-2565]
    • Resolved memory leak issues. [SASE-2765]
    • The Connection Manager now correctly layers multiple windows on top of each other. This resolves an issue where the login window always appeared in front of other windows. [SASE-2891]
    • Updated text on the About page. [SASE-2808]
    • Minor bug fixes and enhancements. [SASE-2634, SASE-2742, SASE-2857, SASE-2924]

Enhancements

  • In the Access Rules page, you now enable security services on a new Internet Access tab. [SASE-2711, SASE-2712]
  • You can now customize which columns appear in the Usage Report. [SASE-2773]
  • In the Usage Report, you can now drill down to see log messages for specific blocked attacks, blocked malware, and zero-day malware. [SASE-2359]
  • The Usage Report for a specific user includes a new Back button. [SASE-2771]
  • The Traffic section of the Usage Report now sorts traffic by bytes by default. [SASE-2256]

Resolved Issues

  • The name of the .CSV file you download from the Log Search page now reflects the date and time of the log messages. [SASE-2722]
  • The Usage Report now retains the selected date range after you leave and return to the page. [SASE-2848]
  • When you change the Usage Report date range, the selected user no longer changes to All Users. [SASE-2804, SASE-2903]
  • Minor bug fixes and improvements. [SASE-2800, SASE-3013, SASE-3027]

Enhancements

  • For the Geolocation widget in the Usage Report, countries with no hits appear gray. [SASE-2270]
  • When you view the configuration details for a FireCloud template, the Content Filtering widget now displays the correct number of allows applications and content categories. [SASE-2316]
  • As a Service Provider, when you go to the Configure FireCloud Overview page and enter the search term "never", search now returns results. [SASE-2810]
  • Filters that you apply to the Usage Report now work correctly. [SASE-2660]
  • The Usage Report now correctly shows connected devices when you select a specific user. [SASE-2775]
  • As a Service Provider, when you go to the FireCloud Client Download page and then select a different managed account from Account Manager, the Copy Installer URL now updates immediately. This resolves an issue where the installer URL from the initial managed account persisted until the page finished loading. [SASE-2936]
  • When you add an exception with an MD5SUM, the value is no longer case-sensitive. [SASE-2597]
  • For FireCloud audit logs, changes to templates now include the text "Update Template" for clarity. [SASE-2730]
  • Configuring FireCloud Geolocation actions can no longer block other WatchGuard products and services. [SASE-2897]
  • Minor bug fixes and improvements. [SASE-2390, SASE-2870]

Enhancements

  • FireCloud audit log improvements. [SASE-2821, SASE-2822]
  • Minor bug fixes and improvements.

New Features

FireCloud Internet Access

A new WatchGuard product, FireCloud Internet Access, is now available to beta test. FireCloud is a managed cloud-based firewall-as a-service. FireCloud protects your remote users against Internet-based security threats.

With FireCloud, you can configure these security settings to protect your users:

Content Scanning

Scanning engines protect against spyware, viruses, malicious applications, spam email, and data leakage.

Network Blocking

You can use FireCloud to monitor and block common security threats, such as botnets, spyware, SQL injections, cross-site scripting, and buffer overflows.

Geolocation

Geolocation is a security service that enables FireCloud to detect the geographic locations of connections to and from your protected devices. In FireCloud, you can enable and configure Geolocation to block access to and from specific locations.

Content Filtering

Content filtering uses the WebBlocker and Application Control security services to block specific content categories and applications.

You configure FireCloud in the WatchGuard Cloud platform, and end-users connect to the service with the WatchGuard Connection Manager. When end-users are connected to FireCloud, FireCloud protects them from threats so that they can safely use their computer and browse the Internet.

To get started, go to Quick Start — Set Up FireCloud and explore the FireCloud help documentation.