Issues Resolved in Fireware XTM v11.7.4 Update 1
Update 1 resolves an issue that caused the Gateway AntiVirus scand process to fail on some devices after a signature update. [75621]


- Proxies and Subscription Services
This release offers improved site name detection when you use WebBlocker with the HTTPS proxy. [63273 65667]
The HTTPS proxy now correctly handles Multiple-Domain Certificates. [73271]
HTTP proxy transfer encoding types ebinaryf, egzipf and edeflatef have been added for better compatibility with websites. [71334]
This release resolves an issue that caused the spamd process to crash. [73517]
This release resolves an SMTP proxy crash. [73861]


- WatchGuard System Manager
This release resolves an issue that prevented configuration saves from WSM v11.7.2 or v11.7.3 to v11.6.x when a hotspot is configured. [72831]
An issue has been resolved that prevented you from opening a v10.x configuration file on a management computer on which both WSM v10.x and v11.x was installed. [71065]
This release resolves an issue that caused the installation of WSM servers to trigger a reboot without warning to the administrator. [72653]
This release resolves an issue that caused Traffic Monitor to show no data due to invalid characters in an IPS signature match log message. [73043]
This release resolves an issues that caused Traffic Monitor to not show data after a configuration save. [71953]


- Centralized Management and the Management Server
This release resolves an issue causing the Management Server Apache process to crash. [70716]
You can now correctly schedule OS upgrades for multiple devices. [72729]
This release resolves an issue that caused the Management Tunnel to be disabled if configured on the Management Server before the device has connected to the Management Server. [73277]
When you use the Management Server to apply changes to a v11.6.x device, you can now successfully change the WebBlocker Uncategorized Settings to allow. [74463]


- WatchGuard AP
This release resolves an issue that caused the time on the AP 100/200 to revert to an older time when the NTP server was unavailable. [72972]


- Networking
The ability to apply DCHP options 66, 67 and 150 is now available for VLANs. [71444]
This release resolves a memory leak that occurred when DHCP is enabled on the external interface but the DHCP server is not responding. [71738]
The ability to support 3G/4G modem failover is now available on XTM 330 and XTM 5 Series devices. [73047]
After a modem failover, traffic is no longer sent out using the IP address of the failed external interface. [71085]
This release resolves an issue that prevented DHCP server from working on an XTM device configured in Drop-In mode. [72805]
You can now correctly add weights and ping probe targets when you configure multi-WAN on XTMv, XTM 5 Series, and all XTM 2 Series devices without a Fireware XTM Pro feature key. [70479]


- FireCluster
This release resolves a CPU spike with the wgif static process on the FireCluster Backup Master. [71278]
A new alarm notification has been added to alert when a member of the FireCluster is unavailable. [70407]
The show cluster sync CLI command no longer reports a certificate mismatch for third-party certificates. [70322]


- Authentication
When you configure the web server to use for hotspot external guest authentication, you can now specify the session timeout and idle timeout values for user hotspot sessions. [73338]
This release resolves an issue that caused authentication failure when using the TO Agent if the user authenticating is in too many Active Directory groups (resulting in very long group string). [72652]


- VPN
The ability to download the OVPN file for use with the iOS and Andriod OpenVPN app is now available. [72237]
The authentication page to download the Mobile VPN with SSL client now sends a gdo not remember passwordh message to the browser. Note that not all browsers honor this message. [73644]
The correct source IP address is now shown in the log file when a Mobile VPN with IPSec user authenticates. [71951]
This release resolves an issue that caused Mobile VPN with IPSec connections to fail to pass traffic due to incomplete route deletion. [72115]
This release resolves an issue that caused Branch Office VPN tunnels to fail after a Multi-WAN failover event when host-based 1-to-1 NAT is also configured. [72480]
This release resolves a crash in the IKED process. [70577]
The option to enable TOS for IPSec now works correctly. [72975]
This release resolves an issue that prevented the XTM 800, XTM 1500, and XTM 2500 Series devices from correctly using the IPSec encryption chipset under certain conditions. [74785]