Better exception reporting: When a next generation firewall (NGFW) without the TFO option is detected, a connection report is issued for the connection between the processing unit (PU) and an external network.
Enable TFO discovery by default: TCP Fast Open discovery is now enabled by default and you don’t need to provide any additional parameters to the Enforcer during installation.
: Only Refresh PUs for necessary Enforcer profile changes.
: Enforcer sends tokens as GET parameters instead of cookies.
: Enforcer profile update triggers two event calls.
: Nfqueue alarm during Enforcer upgrade.
: Not all Enforcer cgroups are monitored for tampering.