Feature |
Description |
---|---|
FQDN address extraction from DNS packets |
Adds support to directly extract FQDN addresses from DNS packets that pass through, making policy match more accurate. |
Wildcard usage supported in FQDN objects |
Supports usage of the wildcard character (*) to fuzzily match a range of FQDN objects. |
Easy installation of SSL decryption certificate |
Allows you to configure an end-user certificate notification that instructs end users to download and install the SSL decryption certificate provided by Cloud Edge to get rid of the certificate warning displayed every time they visit HTTPS websites. |
IoT devices excluded for SSL traffic decryption |
Enables Cloud Edge to bypass the SSL traffic from IoT devices based on their categories since IoT devices always have difficulties to install the SSL decryption certificate of Cloud Edge. |
Support for gateway memos |
Allows partners to add and edit memo information to better manage Cloud Edge gateways. |
Feature |
Description |
---|---|
Support for Cloud Edge G3 devices |
New support added for third-generation devices |
Feature |
Description |
---|---|
Support for Bulk Settings |
Supports the following features to change settings through TMRM for specific partners:
|
Support for TDTS Application Group for SD-WAN |
Supports defining customized application groups and using them in SD-WAN rules. |
Application Identification Improvement |
Updates application identification engine to support more applications. |
Temporary Disabling of Security Scan for Troubleshooting |
During troubleshooting, security scan can be disabled due to the fact that it may interfere with troubleshooting. Disabling security scan makes traffic traverse the device without inspection. |
Factory Reset Package Version Update |
Enables/disables the schedule automatic factory reset package version update feature. The CE box will download a new version of factory reset package when it is enabled and has the related update rule configured in Cloud Edge Support Portal. Under Administration > Scheduled Updates, users can perform updates not only for firmware, but also for factory reset version. See Scheduling Updates. |
Support for Suspicious Objects |
This feature is now supported on all Cloud Edge gateways. The UI path is Policies > Suspicious Objects. See Suspicious Objects. |
Feature |
Description |
---|---|
Support for SD-WAN |
Under Gateways > (Selected Gateway) > SD-WAN, you can do the following:
|
Support for Multiple Registration of Cloud Edge Gateways |
On the Gateways > Gateway Management page, an Import Gateways button is added, which allows you to import multiple gateways. For details, refer to Importing Multiple Gateways. |
Support for RADIUS Authentication |
Under Administration > USER AUTHENTICATION > RADIUS Settings, users can perform authentication through Captive Portal or VPN Portal using RADIUS. You can also add users and groups in the settings and then create user-specific or group-specific policies with Cloud Edge. For details, refer to the following: |
Support for CLP Mode |
Because some enterprise customers wish to manage Cloud Edge by
themselves instead of by MSP partners, so some functions are no longer supported
in CLP mode. The following functions will become unavailable for CLP mode
customers:
|
UI naming change |
The Administration > USER AUTHENTICATION > User Type Settings > has now changed to Administration > USER AUTHENTICATION > Authentication Settings > . |
Accessing Cloud Edge On-Premises Console via domain name |
Users can access Cloud Edge On-Premises Console by using the website https://setup.cloudedge for Cloud Edge 6.0SP3 or later. For routing mode, any LAN, WLAN, VLAN and MGMT port can use the domain name to access Cloud Edge On-Premises Console. For bridge mode, only the MGMT port can access Cloud Edge On-Premises Console. If the user inputs http://setup.cloudedge, it will be redirected to https://setup.cloudedge. |
Feature |
Description |
---|---|
Support for Distributed Enterprise, new search boxes and scroll bars. |
On the Policies > Approved/Blocked Lists > Add > Add URLs > Selected Gateway Groups page. New search boxes and scroll bars are added under the following widgets and screens:
|
Device Categories Requiring Attention widget enhancements |
User the newly added search box to search for a Cloud Edge device. Click the More button to load and view more devices |
Specific gateway selection for raw log query |
On the following pages, if there are more than 20 gateways, you need to select a specific gateway name to query a raw log.
|
UserID Sync changes |
The following changes occur for the General Settings and LDAP settings under Gateway:
|
Enhanced backups and restores |
User Type Setting and LDAP setting is at the company level. These settings can now be backed up and restored. |
Feature |
Description |
---|---|
Support for endpoint device and network topology awareness |
In addition to scanning endpoint devices for vulnerabilities, you can discover, view, and manage endpoint devices using the Cloud Edge Cloud Console.
|
Support for HTTP/2 and QUIC protocol scanning |
|
Features previously only supported on Cloud Edge 50G2 gateways are now supported on all Cloud Edge gateways |
|
Support for Suspicious Objects |
|
Support for automatic rollback of an update when issues are encountered during a product update |
Cloud Edge automatically rolls back product updates when encountering issues during the update process |
Feature |
Description |
---|---|
Support for Smart Bypass and Trust Certificate Options in HTTPS Security Policy |
When configuring HTTPS security policies, you can enable or disable Smart Bypass and Trust Certificate options.
|
Support for Predictive Machine Learning in Anti-Malware Security Policy |
Starting with Cloud Edge 6.0 SP1, when configuring Anti-Malware security profiles, you can enable Predictive Machine Learning, which provides advanced scanning for web traffic.
|
Enhancements to Account Security |
The following enhancements have been made to account security:
|
Support for Gateway HA Groups |
You can configure two registered gateways as an HA Group to provide high availability access. If one gateway is down, then the other gateway will take over and ensure that the network traffic is not down. An HA Group can increase network traffic efficiency in addition to providing redundancy when a fatal error is encountered. |
High Availability Status Widget |
Adds the new widget High Availability Status to monitor status of HA Groups. |