LM-1817 Kubernetes Ingress Controller: Fixed an issue that caused Real Servers to not be added to a SubVS when scaling pods or when creating a new virtual service.
LM-1803 Kubernetes Ingress Controller: Fixed an issue that occurred when creating a new namespace -- pods from the default namespace are listed in the output, despite the new name space being the only namespace selected for watching.
LM-1507 ACME Certificates: The UI and API limit for the TLD (top level domain) part of an email address was limited to 4 characters. An email address such as “user@domain.cloud” would be rejected as invalid. This limit has been increased to 24.
LM-1503 GEO: Fixed an issue with high CPU consumption on units with a free license and GEO enabled.
LM-1449 Content Switching and Client Certificates: Fixed and issue where enabling content rules caused headers added during client certificate processing to be removed.
LM-1278 Debug logging: Fixed a customer-reported issue where log lines were being inappropriately split into two lines, violating the related standard.
LM-1143 High Availability: Fixed a customer issue where a failover occurs and (when the configuration is set to anything exceptNo Preferred Server) the two units both attempt to assume the active role, which causes connection loss.
LM-1140 Logging: Customers complained of repeated error-level logs of the form “set LOG_LEVEL for 'kernel: L7: Got a bad wkday” message. Since the message cannot be prevented and is common in some configurations, it was changed to a debug level log.
LM-1134 GEO EDNS Client Subnet (ECS): It has been observed that with ECS enabled and an FQDN with the default private/public behavior selected, a private-network client may receive a non-routable DNS response in certain scenarios. This issue has been addressed as described in the following section: Change Notices.
LM-1047 OCSP Stapling: In previous releases, no stapled response is sent when an attempt is made to refresh the cache and the OCSP server is not reachable -- it then drops the cached staple. OCSP behavior has been modified to contact the OCSP server to refresh the stapled response; until this refresh is successful, the existing cached staple is not dropped.
LM-1035 Backup/Restore: Fixed an issue that causes a backup import to fail when the backup archive contains specific strings.
LM-1001 LDAP Authentication: Starting with LMOS 7.2.56, LDAP authentication fails if a user has a Remote User Group configured that is defined in a domain and logs in using a username defined in a sub-domain of that domain. This issue has been fixed.
LM-913 User Interface: Fixed a bug in the Intermediate Certificates UI where, when re-encryption is disabled, changes made in the UI are not set.
LM-868 Admin Login LDAP Authentication Format: Fixed issues associated with logging in using the domain/username or username-only formats, when groups are also configured.
LM-864 GEO Performance: Starting with LMOS 7.2.55.0, a performance degradation has been seen where Queries per Second (QPS) can be up to 50% lower than with version 7.2.54 and previous releases. This issue has been addressed and performance levels have been returned to the levels stated in the data sheet.
LM-821 Kerberos Constrained Delegation (KCD): Fixed an issue where a user can login with an invalid domain and password under specific circumstances.
LM-738 WAF: Fixed an issue where an error in custom rules could cause the WAF engine to restart.
LM-139 Backup/Restore: Fixed an issue where a backup cannot be restored when the file name filename contains specific strings.
LM-81 WAF: Fixed an issue where a configuration change under heavy load could cause the WAF engine to restart.
LM-79 WAF: Fixed an issue where the WAF engine could restart because of an error in libapr.