Product Documentation for the Leeds Release
To aid organizational GDPR (General Data Protection Regulation) compliance, GDPR functionality has been added in the Smoothwall Leeds release. The Smoothwall Extract personal data report enables extraction of data containing a required user name or email address. Once generated, the report can then be previewed and downloaded. For further details see Generating Reports and Creating Custom Report Templates
The Smoothwall GDPR (General Data Protection Regulation) toolset, enabling the extraction and removal of user data, is now available via a SSH command line interface. For further information on the GDPR toolset please contact Smoothwall support.
A Transport Layer Security (TLS) encryption option has been added to Smoothwall’s SMTP clients, enabling connection to SMTP servers which require such encryption. The Smoothwall output setting Enable SMTP TLS option allows the users to enable/disable TLS encryption in SMTP clients. See Configuring Output to Email for further information.
SSL Login configuration Services > Authentication > SSL login now provides a HTTPS inspection option that, if selected, enables the display of a link to the HTTPS Interception page. See Customizing the SSL Login Page for further information.
To support connections to Azure VPN endpoints and to enable alignment with Cisco recommended VPN settings. The following changes have been applied to IPSec VPN support. See Creating an IPSec Subnet VPN for further information.
|||IKEv2 — Internet Key Exchange version 2 protocol added. IKEv2 is required when selecting an elliptic curve group Diffie-Hellman Group for Phase 2.|
|||MTU — Maximum Transmission Unit (MTU) field added. This represents the maximum size of a packet communicated through the tunnel.|
|||Diffie-Hellman Groups (Phase1/2) — Diffie-Hellman options added, used when establishing the VPN connection.|
Note: When upgrading from a previous Smoothwall release, changes applied to an existing IPSec Tunnel configuration will require the selection of explicit Diffie-Hellman Group settings. See Creating an IPSec Subnet VPN.
|||Nat Traversal — Selection of the Nat Traversal option has been removed, Nat Traversal is now support by default.|
To maintain network security, OpenSSH has been updated to OpenSSH version 7.4.
IDex Client multiple proxy functionality has been added with the Leeds release of Smoothwall enabling multiple upstream Smoothwall proxies to be defined.
In addition, State reflection functionality enables the IDex Client to determine whether a proxy can be contacted, if it fails, the service will cease listening on that port and, if appropriate configuration is in place, will failover to the next proxy. See the knowledge base article Enabling IDex Multiple Proxy Support for further information.
|||Support provided for HTTP/1.1 features in Guardian. This improvement will stop the need to downgrade headers to HTTP/1.0.|
Tip: The knowledge base article Which features of HTTP/1.1 does the Smoothwall UTM / SWG support? provides further information on supported HTTP/1.1 features.
|||Additional Web proxy options added for Guardian content filtering:|
|•||Via header option to omit Smoothwall in the Via header, used to trace which proxies a connection has been through.|
|•||X-Forwarded-For option to enable identification of the originating IP address of a client connecting to a web server through an HTTP proxy.|
For further details see Configuring the Web Proxy
Spotted a problem? Please log a support ticket