Issues Resolved
- Last Updated: November 7, 2023
- LoadMaster
- LoadMaster GA
- Documentation
| PD-18853 | Logging - ESP CEF Format Logs: Fixed various issues that could cause incorrect information to be displayed in the ESP Common Event Format (CEF) format logs. |
| PD-18852 | Console Security: Addressed security issues in the console interface that could allow an authenticated user to gain access to a privileged shell. |
| PD-18831 | Let's Encrypt: Fixed errors that caused domain names to be compared in a case-sensitive manner, instead of case-insensitive. |
| PD-18784 | Logging - ESP Performance: Addressed issues with date calculations that could cause ESP logging to consume significant CPU resources. |
| PD-18737 | HTTP/2 Performance: Fixed issues related to clients that are accepting data slower than real servers are sending data that could negatively affect HTTP/2 performance. |
| PD-18727 |
Access Control Lists (ACLs): In previous releases, an ACL entry that denies access to a Virtual Service would be ignored (and access allowed) under these conditions:
This issue has been fixed. |
| PD-18597 | Statistics for Client Limiting: Fixed an issue that resulted in no limiting statistics being displayed after activating "generate limiter statistics". |
| PD-18594 | HTTP/2 File Access: Customers reported HTTP/2 failures when accessing files using either a MAC client using Safari or Linux clients using the curl command, where the real server reports a broken pipe. The workaround was to disable HTTP/2. This bug has been fixed. |
| PD-18525 | WAF: Fixed an issue where enabling WAF on a Virtual Service did not enable statistics to be displayed. |
| PD-18479 | WAF: Fixed a bug that resulted in the counters for Top 10 Countries being reset when WAF is enabled/disabled and stop displaying data. |
| PD-18478 | WAF: Fixed a bug that caused response rules to not be processed properly, resulting in WAF not blocking attacks that should have been blocked. |
| PD-18469 | Kubernetes Ingress Controller: Moved internal logs that occur under some circumstances to the debug log. |
| PD-18466 | WAF: Fixed issues that could cause a segmentation fault or reboot when the WAF configuration is modified while there is traffic passing through the WAF engine. |
| PD-18454 | ESP Post-Pass Authentication: Fixed a bug that broke the "Post-Pass" authentication method (and hence broke preauthentication for Citrix Workspace App deployments). |
| PD-18448 | Health Checking: Fixed a bug that broke the Show Headers button for the HTTP Protocol and HTTPS Protocol Real Server Check Methods. |
| PD-18440 | WAF: Addressed an issue with connection timeouts that caused the log message "Hit connection limit 64000" to appear and WAF processing to stop when a remote real server fails. |
| PD-18437 | API V2 (JSON): Fixed an issue with the addvs command that caused a segmentation fault when an invalid configuration is supplied. |
| PD-18423 | API V2 (JSON): Fixed issues with several commands where the JSON output returned was either incorrect or empty. |
| PD-18295 | WAF: Modified the permitted characters for custom WAF rule and data files to also include period and dash characters. The full set of supported characters includes: all alphanumeric characters, period (.), dash (-), and underscore (_). |
| PD-18292 | SNMP: Fixed an issue that could cause the SNMP daemon to exit when many real servers are configured. |
| PD-18268 | HTTPS Virtual Services: In previous releases, users become unable to connect to an HTTPS Virtual Service and messages like this appear in the LoadMaster log: "kernel: L7: Error binding socket -98.". This issue has been fixed. |
| PD-18244 | Virtual Service UI: Fixed issues associated with missing UI controls after converting a VS from Generic to HTTP-HTTP/2-HTTPS. |
| PD-18202 | LDAP UI Access: Fixed an issue that could allow an invalid user to get UI access. |
| PD-18144 | GEO Clustering: Fixed an issue that caused GEO cluster checks to fail with the log message "logger: error receiving the file from the remote LM". |
| PD-18140 | Logging - ESP: Added ESP user logs when flushing the SSO cache. |
| PD-18137 | WAF: Fixed a bug in Custom Rules selection that required selecting 'drupal' to enable any custom rules. |
| PD-18098 | WAF PowerShell API: Added the AlertThreshold parameter to the addvs command. |
| PD-18043 | Real Servers: Fixed an issue where LoadMaster failed to pass data to a Real Server with an Elliptical Curve (EC) certificate. |
| PD-18041 | SubVS Multiple Connect: In previous releases, when Enable Multiple Connect is turned on for a SubVS, some connections will close if the server response body was empty. This issue has been fixed. |
| PD-18028 | WUI Login: In previous releases, certificate based login will fail unless the CN (Common Name) in the certificate includes an emailAddress attribute. This bug has been fixed. |
| PD-18021 | Content Rule UI: Display is incorrect when the 'Ignore case' option is enabled. |
| PD-17973 | Single Sign On - LDAP: Fixed issues associated with LDAP SSO no longer working after an upgrade to LMOS 7.2.53. The issues appeared in conjunction with log messages like the following:ssomgr: ... Couldn't bind: [LDAP-AD] [ip-addresses-omitted]: 32, No such objectssomgr: do_sso_ldap_check: Could not get ldap_result for (credentials-omitted): 32 [No such object] |
| PD-17947 | IPv6 and Packet Filtering: Fixed an issue that prevented IPv6 traffic from a Real Server (acting as a client) was not forwarded by the LoadMaster when packet filtering was enabled. |
| PD-17934 | QoS / Client Limiting: Fixed an issue that could cause client limiting to thrash between limiting and not limiting a client. |
| PD-17931 | Content Response Rules: Fixed an issue that caused performance issues when attempting to apply a response rule to an empty file. |
| PD-17876 | QoS/Limiting: Fixed an issue that could cause a kernel panic when limiting UDP traffic. |
| PD-17867 | Historical Graphs UI: Addressed an issue that caused some graphs to disappear from the page following upgrade to v7.2.53. |
| PD-17719 | RADIUS Health Checks: Fixed an issue where RADIUS health checks with very long re-authentication times stop working after upgrade to LMOS 7.2.52. |
| PD-17601 | Syslog CEF Logging: Fixed issues where Common Event Format logging is enabled and some user logs are improperly merged because of spurious characters (%5c) in the login string. |
| PD-17451 | API V2 (JSON): Fixed an issue where the listfqdns API V2 was returning and invalid JSON response with duplicate keys. The parameters are now properly wrapped inside an array. |
| PD-16140 | GEO: Fixed an issue that caused TXT records to be blank after 1024 IP addresses are added to an FQDN. |
| PD-15585 | TLS Handshake: For some applications (e.g., IOS Mail App or Android 10 Skype App), LoadMaster does not properly downgrade the TLS version used when TLS 1.3 is requested but is not configured on the Virtual Service. This bug has been fixed. |