New Features & Enhancements
- Upcoming Rollout of Socket v25: We are starting to gradually roll out Socket version 25 to all customers, including firmware for new features, enhancements, and bug fixes.
- No customer action is required
- Define Multiple Dynamic and Static IP Ranges for Cato Client IP Allocation: To better manage IP allocation for environments that require specific IP addresses across multiple offices, define multiple dynamic and static IP ranges to support user-level IP assignment. For example, call centers that service multiple accounts.
- Previously, only a single CIDR range could be defined
- Reset / Refresh Firewall Hit Counter: Reset and refresh Internet and WAN Firewall rule hit counters for up-to-date visibility. This lets you accurately measure rule effectiveness and immediately validate rule activity.
- Resetting the hit counter for a specific firewall rule returns the hit count to 0
- Refreshing the hit counter updates the hit count for all firewall rules
- Previously, rule hit counters were updated automatically only once every 24 hours
- Faster HA Failover for BGP-Connected Socket Sites: We've enhanced the resilience and responsiveness of Socket HA failover in BGP scenarios to minimize downtime.
- Reduces failover time with optimized BGP timers and BFD support
- Improves reliability when the primary Socket goes down mid-session
- Helps maintain session continuity and SLA targets for BGP-routed sites
- Supported from Socket v25 and higher
- Category for DEM Socket Probes in Network and Security Policies: For simplified and consistent policy enforcement across all relevant DEM probe types, we added the category DEM Socket Synthetic Probes. This category can be configured in Network and Security policies to control probe traffic.
- Supported from Socket v25 and higher
- New Fields for DNS and Apps Security Events: These events provide deeper visibility into request/response behavior, performance characteristics, and transaction details. You can use the data to improve troubleshooting and analytics.
- Duration (ms) - only DNS events
- Record Type
- Request Size
- Response Size
- Transaction Size
- HTTP Response Code
- Expanded Webhook Payloads: Webhook integrations include additional fields that give you more context for automation, monitoring, and troubleshooting, reducing the need for follow-up queries.
- Webhooks for Connectivity Health events:
- socketSerial
- Webhooks for XOps Site Operations stories:
- lastIncidentDescription
- storyStatus
- ISPName
- socketSerial, socketMacAddress, socketDescription
- secondarySocketSerial, secondarySocketMacAddress, secondarySocketDescription
- Webhooks for Connectivity Health events:
- Additional SSO Providers for Users: We added Hennge IdP and ForgeRock as SSO providers for authenticating users.
- Browser Extension v1.4: During the week of January 11, a new Browser Extension version 1.4 will be rolled out to users and available in the Chrome Web Store, and includes the following bug fix:
- Improved performance issues that caused increased browser CPU consumption
- CMA Enhancement - Data Protection Dashboard: The Inline Protection tab of the Data Protection Dashboard displays data violation events only. This lets you focus on potential data leaks.
- Previously, all App Security events were displayed
PoP Announcements
- Frankfurt, DE: A new range (159.117.236.0/24) is now available for the Frankfurt PoP location.
Note: Content described in this update is gradually rolled out to the Cato PoPs over a two-week period. In addition, new features are gradually activated in the Cato Management Application over the same two-week rollout period as the PoPs. For more information, see this article. See the Cato Status Page for more information about the planned maintenance schedule.
0 comments
Please sign in to leave a comment.