2024 Release Notes

July 3, 2024

What's New:

  • Events Log: the events display has been revamped and is now easier to use. Selecting an event now displays a window with several sections: the most important data on the top, followed by one or more expandable sections with various categories of additional information.

  • Edge Functions: when a user defines custom Lua code, its syntax is now validated before being accepted.

  • Publishing: when a user submits configuration changes for NGINX, the changes are now validated before being accepted.

  • SSL policies: default policies for load balancers are now min tls 1.2 - modern (for GCP) and ELBSecurityPolicy-TLS13-1-2-2021-06 (for AWS). This change applies to new planets only.

Bug Fixes:

  • Analytics: in the Dashboard and Events Log, the preset time period selectors (e.g., "Last hour") were not being reset when the timeframe changed.

  • Backend services: when creating a new backend service, it was possible that an internal id would not be assigned correctly.

  • Content Filter Rules: when creating a new rule, it was possible that an internal id would not be assigned correctly.

  • Dynamic Rules: if a Rule's ID contained a hyphen, an internal error would occur, and the Rule would not be effectual.

  • Events Log: when a host name included a port, under certain conditions the port would be appended again.

  • Events Log: When a request included arguments, the "Copy as Curl" menu option was not composing curl commands correctly.

  • Events Log: When a request triggered a "Skip" action, under certain conditions it could be reported as a "Block reason".

  • Events Log: for data-heavy queries, there could be a significant delay between the query's completion and the UI's refresh.

  • Proxy Templates: when creating a new template, the header host was not being set correctly.

  • SSL Certificates: the Certificates page in the console would not load if its timeouts were exceeded.

  • SSL Certificates: all expiring certificates were being renewed. Now, unused certificates are not renewed.

  • SSL Certificates: under certain conditions, certificate replacements were being reported as having failed, even when they succeeded.

  • Swagger UI was not correctly accepting load balancer names in the Load Balancer DELETE/PUT API routes.

  • Tags: for short tags, it was difficult to click on the portion of the tag that opens the Tag Finder.

  • User accounts: an uncommon structure for email addresses was not being accepted.

  • UI cleanup: in a few places, long strings were not being displayed correctly. Some inconsistencies in capitalization, font colors, and spacing were corrected.

Known Limitations:

  • Events Log: when viewing events that occurred before this software version was deployed, incomplete "block reason" data will be shown for events blocked due to "general reasons" or "content filter rule" violations.

June 12, 2024

What's New:

  • Global Filters: Entries within a Global Filer's Rule can now be edited from within the table. (Previously, they had to be deleted and re-created.)

Bug Fixes:

  • Backend Services: under certain conditions, users could define multiple hosts in bridge mode.

  • Dashboard: retrieved data was not always being cleared between searches.

  • DNS Records: multiple values were concatenated in a single line. Now, they are displayed in separate rows.

  • Dynamic Rules: Target entry was not displayed correctly if it included an underscore.

  • Events Log: displayed keys and values could be vertically misaligned.

  • Events Log: large data files could overflow the text display.

  • Flow Control: arguments with long strings could overflow the input control.

  • Login screen: empty input fields were not displaying errors.

  • Tag Finder: could display incorrect tag usage.

  • Tag Finder: header row of tags table was too short.

  • Traffic data queries: certain inputs were not being validated for data types.

  • Traffic filtering: Headers with invalid (non-UTF) characters would throw runtime errors. Now, they are blocked with 400 response codes.

  • Web console: "User Guide" link was not pointing to the most recent version.

  • Web console: various minor issues with table column widths, redundant tooltips, and others.

May 21, 2024

What's New:

  • Traffic filtering: Headers larger than 64k are now supported.

  • Analytics: the date/time control for queries was accepting AM/PM time specifications. Now, for consistency with graphs and logs, it accepts 24-hour time specifications.

  • Content Filter Profiles: previously, the "Ignore Content Filter Tags" list accepted all types of tags, and there was different behavior when matches were found for CF tags versus non-CF tags. To improve consistency, this list now only accepts Content Filter Rule and libinjection tags.

  • Security entities: previously, selecting "New" would create an entity (e.g., a Global Filter) with default values that could be edited. This created friction if the selection of "New" was inadvertent, because the unwanted entity would then need to be deleted. Now, entities are not actually created until the user selects "Save".

Bug Fixes:

  • Dynamic Rules: when the Action of a Dynamic Rule was changed, any traffic sources currently in quarantine from the Rule did not have their action changed.

  • Edge Functions: the Edge Function Editor page was not displaying the function's Automatic Tag (edge-function).

  • Edge Functions: when multiple Edge Functions were assigned to the same path, the Events Log was not reporting all of their tags.

  • Security Policies: when a Policy did not include any Rate Limit Rules or Edge Functions, the console failed to display a "No data found" message.

  • SSL Certificates: When certificates were generated from a server group with multiple domains on “Match Host/Authority Headers”, Let's Encrypt was only generating a certificate for the last domain on the list.

Last updated