Each month we publish numerous new articles and known issues to the WatchGuard Knowledge Base. Here is the new content published in July:

Articles

• Why is the VPN throughput number on the Firebox T55 and T70 datasheets lower than expected?

Known Issues

• Email
...Read more

Summary: We will be performing maintenance on our website which will prevent authentication to www.watchguard.com

When: Friday, 2 August, 1:00 AM to 3:00 AM UTC

Maintenance Window: 2 hours

Expected Impact Duration: 2 hours, during which time a maintenance window page will be presented intermittently to users attempting to login to all WatchGuard websites.

Contact Information: For Sales or Support questions, you can find phone numbers for your region online. If you contact...Read more

Each month we publish numerous new articles and known issues to the WatchGuard Knowledge Base. Going forward, as requested by many of our Partners, we will publish a monthly digest of new Knowledge Base content to this blog so you can easily review it.

Here is the new content published in June:

Vulnerabilities

• TCP SACK PANIC – Kernel Vulnerabilities (CVE-2019-11477, CVE-2019-11478, CVE-2019-11479)
   
...Read more

This notice impacts Fireware v12.1 and earlier. Fireware versions 12.1.1 and later are not affected.

This year, WatchGuard will upgrade the engine used to power the Gateway AntiVirus (GAV) service. To continue to use Gateway AV, you must upgrade your Firebox to the latest version of Fireware (or a minimum of Fireware v12.1.1). WatchGuard recommends you upgrade to Fireware v12.4.1 for all the latest updates.

What is Gateway AntiVirus?
Gateway AntiVirus is WatchGuard’s first line of defense against known malware. It leverages a combination of...Read more

The AuthPoint identity provider certificate will expire soon for some early adopters of the product. If your account is affected, and you do not replace this certificate before it expires, your AuthPoint users will not be able to authenticate to any of your SAML resources.

What is the AuthPoint IdP certificate used for?

The AuthPoint certificate is used to provide your SAML resources with the information necessary to identify AuthPoint as a trusted identity provider.

What happens when the certificate expires?

When the certificate expires, users...Read more

Summary: We will be performing maintenance on our website which will prevent authentication to www.watchguard.com

When: Friday, 3 August, 3:00 AM to 8:00 AM UTC

Maintenance Window: 5 hours

Expected Impact Duration: 1 – 5 hours during which time a maintenance window page will be presented to users attempting to login to all WatchGuard websites.

Contact Information: For Sales or Support questions, you can find...Read more

When: Sunday, May 20, 2018 at 12AM PDT / 7AM UTC
 
Maintenance Window: 1 hour
 
Expected Impact/Duration: During the maintenance window, users will not be able to log into to the WatchGuard.com website and will receive a maintenance notification page in lieu of the authentication page. 

Customers who are already logged into the website prior to the start of maintenance may receive an error page upon navigating to a new portal page.

Affected Services:

• Deployment Services
...Read more

Summary:
WatchGuard had an issue with Gateway Antivirus (GAV) signatures on February 7th , 2018 that affected M300, M200, and T35 appliances running firmware version 12.0 and later. An error in the signature file resulted in scan errors on the appliance. Depending on the appliance configuration, the Firebox may have prevented access to files received by email.

Root Cause
The issue was specific to PowerPC processor with 64-bit architectures (i.e., Firebox M300, M200, and T35/T35-W) running firmware version 12.0 and later with the...Read more

WebBlocker Incident Report
Users of the WebBlocker service in Europe experienced an outage late Thursday night that lasted into Friday morning, January 25 – 26, 2018. WatchGuard has worked closely with our partner Forcepoint over the last few days to analyze the failure and to put processes in place to ensure that events like this do not happen again. We are sharing details here so our partners and users are confident that we have addressed this issue.

Background
WebBlocker uses the Forcepoint ThreatSeeker Cloud URL database for web...Read more

AV Signatures in 11.x releases

With the release of 12.0, WatchGuard introduced a new GAV engine to take advantage of new AV industry technology and would discontinue support for older AVG engines in Fireware 11.x by January 2018. GAV signature support for 11.10.7 and above will remain in place until April 2018.

As of December 31, 2017, appliances running 11.10.5 and earlier Fireware versions may be experiencing scan errors and observing the following messaging in the log files:

01-02 13:41:58 scand license init failed(The license has expired.)       ...Read more