• Articles
    • Editorial Articles
    • Research Articles
    • WatchGuard Articles
  • The 443 Podcast
  • Threat Landscape
  • About
    • About Us
    • Contact Us
    • Contribute to Secplicity

Secplicity - Security Simplified

Powered by WatchGuard Technologies

WatchGuard XCS 9.2 Update 5 Now Available:

April 2, 2013 By Corey Nachreiner

Quarantine, Anti-Spoofing, and Web Proxy Enhancements, Plus Security and Functionality Improvements

As part of our ongoing efforts to improve the effectiveness of WatchGuard XCS appliances to protect from data loss, new viruses, and malware, and to enable organizations to customize their environments, WatchGuard is pleased to announce the availability of XCS 9.2 Update 5.

Highlights of this maintenance release include:

  • Custom Quarantines – You can now create your own custom quarantine areas for specific types of quarantined messages. For example, you can create a quarantine specifically for messages quarantined because of a virus, or messages quarantined because they violate a Data Loss Prevention (DLP) policy rule. When you create a custom quarantine, each message security feature that supports the quarantine option provides a quarantine action for the primary system quarantine and any defined custom quarantines. A Tiered Administrator with the appropriate permissions can manage custom quarantines. This allows you to assign administrators for specific quarantine areas. For example, for compliance purposes, you can assign a user the role of administrator for the DLP quarantine.
  • DKIM (DomainKeys Identified Mail) Support – DKIM (DomainKeys Identified Mail) is an enhanced version of DomainKeys that provides a means for authenticating the source of an email by querying the sending domain’s DNS records and authenticating a unique domain name identifier. As an enhancement to DomainKeys, DKIM offers additional parameters to the signing mechanism for enhanced security and spoofing protection, and allows authorized third-party signing of messages for a domain independent from the message author. DKIM signing can be applied independently to outbound messages based on policies.
  • Allowed HTTPS Proxy Ports List – You can now configure a list of non-standard HTTPS Proxy ports that are allowed through the Web Proxy. This option is available on the HTTP/S Proxy configuration page at Security > Configuration > HTTP/S Proxy. The standard HTTPS port 443 is included by default.
  • Web Proxy IP Authentication Redirect – When you use the Web Proxy IP Proxy or Portal Authentication modes, you can now choose to redirect to the authentication page using the hostname or IP address of the Web Proxy.
  • Download Problem Report – The Problem Report feature allows you to send important configuration and log information via email to WatchGuard Technical Support to help troubleshoot an existing support incident. You can now download a local copy of the report from the Problem Reporting configuration.
  • Pattern Filter ID Number Search in Message History – The advanced Message History search now allows you to search by Pattern Filter ID numbers when you select the “only show messages where PBMF is…” option.
  • XCSv Upgrade from an Evaluation – You can now perform an upgrade from an evaluation XCSv installation to a production model XCSv without having to reinstall the system.

For more details, see the Release Notes.

Does This Release Pertain to Me?

XCS 9.2 Update 5 runs on all XCS appliances, from the 170 all the way to the 1180. Although we announced the End-of-Life of our previous BSP appliances, Update 5 also runs on BSP 460, 560, 860, and 1060 devices (64-bit platforms).

XCS 9.2 Update 5 is a maintenance release that contains a number of enhancements and bug fixes, including security fixes. If you manage any of the aforementioned appliances, and you want the latest software enhancements and security fixes, you should install this update. In fact, because of the security fixes we strongly advised you update at your earliest convenience. Please read the Release Notes before you upgrade, to understand what is involved.

How Do I Get the Release?

Your XCS appliance will automatically download the XCS 9.2 Update 5 software. However, it will NOT automatically install the update. You must manually install software updates by going to Administration > Software Updates > Updates. You can also manually download the update from the Articles and Support section of WatchGuard’s Support Center. We highly recommend you thoroughly review the Installation Instructions section of the Release Notes before applying this update.

For a more detailed description of this update, please visit the WatchGuard Support Center at http://www.watchguard.com/support/.

If you need support, please enter a support incident online or call our support staff directly. When you contact Technical Support, please have your registered Product Serial Number, LiveSecurity Key, or Partner ID available.

  • U.S. End Users: 877.232.3531
  • International End Users: +1.206.613.0456
  • Authorized WatchGuard Resellers: +1.206.521.8375

Share This:

Related

Filed Under: WatchGuard Articles Tagged With: firmware, Updates and patches, XCS

Comments

  1. lsmoldinc says

    April 2, 2013 at 6:13 am

    How do I know if this XCS update applies to my specific Watchguard unit?

    Mike Rannow
    LS Mold Inc.
    616-392-5926 x102

    Reply
    • Corey Nachreiner says

      April 3, 2013 at 10:29 am

      Thanks for the question, I have updated the text in the “Does this Release Pertain to Me” section to better detail affected appliances. Essentially, if you have any of our XCS appliances, this release is for you. If you are a legacy BSP customer, this release can only run on our 64-bit platforms… here is the added text:

      XCS 9.2 Update 5 runs on all XCS appliances, from the 170 all the way to the 1180. Although we announced the End-of-Life of our previous BSP appliances, Update 5 also runs on BSP 460, 560, 860, and 1060 devices (64-bit platforms).

      Reply
  2. Alan Cornish says

    April 2, 2013 at 8:05 am

    Is this applicable to us?

    Regards
    Alan Cornish
    Chief Financial Officer – The Acorn Group
    Acorn
    T: +44 20 8663 4441
    E: [email protected]

    Reply
    • Corey Nachreiner says

      April 3, 2013 at 10:32 am

      Alan, depends on if you are a WatchGuard customer, or just one of our security blog readers (the blog is open to all). Though this blog is primarily a general InfoSec blog, where we post about security incidents and vulnerabilities you should be aware of. We do also occasionally post our product software update annoucements here too.

      If you are not a WatchGuard customer, you can ignore these announcements. If you are a customer, this update is only applicable to XCS appliance owners (not XTM or SSL appliance owners). If you are wondering which XCS appliances, see my or Roger’s replies in the other comments here.

      Reply
  3. Roger B.A. Klorese says

    April 2, 2013 at 1:58 pm

    As product manager, I’ll clarify.

    XCS 9.2 Update 5 will run on all the currently supported hardware; namely:

    – XCS 170, 280, 370, 570, 580, 770, 770R, 970, 1170
    – XCSv (all editions)

    XCS 9.2 Update 5 will also run on the BSP 460, 560, 860, and 1060.

    Reply
    • Corey Nachreiner says

      April 3, 2013 at 10:29 am

      Oops… just notived our XCS PM already answered. Thanks Roger! ^_^

      Reply
  4. Rob Cunningham says

    August 23, 2013 at 1:15 pm

    Are the updates cumulative, or do I have to install all previous updates first? I have an XCS at 9.2 Update 2. Do I have to apply update 3, then 4, then 5, or can I just install 5?

    Thanks.

    Reply

Leave a Reply Cancel reply

Your email address will not be published. Required fields are marked *

The 443 Podcast

A weekly podcast featuring the leading white-hat hackers and security researchers. Listen Now
the 443 podcast

Threat Landscape

Filter and view Firebox Feed data by type of attack, region, country, and date range. View Now
threat landscape

Top Posts

  • Cybersecurity News: Free Cybersecurity Training, TrickBot Group Exposed, Major GoDaddy Breach, and Russia to Legalize cybercrime?!
  • US National Cybersecurity Strategy
  • Here Come The Regulations
  • Cybersecurity’s Toll on Mental Health

Email Newsletter

Sign up to get the latest security news and threat analysis delivered straight to your inbox

By signing up you agree to our Privacy Policy.


The views and opinions expressed on this website are those of the authors and do not necessarily reflect the policy or position of WatchGuard Technologies.

Stay in Touch

Recent Posts

  • Cybersecurity News: LastPass Incident Revealed, White House Issues Cybersecurity Strategy, FBI Purchases Leaked USHOR PII Data, and a Slew of Other Breaches
  • An Update on Section 230
  • Here Come The Regulations
  • US National Cybersecurity Strategy
  • Cybersecurity News: Free Cybersecurity Training, TrickBot Group Exposed, Major GoDaddy Breach, and Russia to Legalize cybercrime?!
View All

Search

Archives

Copyright © 2023 WatchGuard Technologies · Cookie Policy · Privacy Policy · Terms of Use