What’s New in Dimension v2.1.1
What’s New in Dimension v2.1.1 New Dimension Administrator user role Integration with WatchGuard Wi-Fi Cloud X-forwarded detail in proxy headers shows client IP addresses in log messages Localization of Dimension v2.1 UI Support for Firebox T70
Dimension Administrator
Dimension Administrator New Dimension Administrator user role User privileges are restricted to monitoring and management of the Dimension system Cannot see or manage devices, VPNs, or servers that are connected to Dimension Cannot see reports or log messages from devices, VPNs, or servers that are connected to Dimension Does not have access to anonymized data From Networking/Interface page add a custom DHCP Option
Wi-Fi Cloud Integration
Wi-Fi Cloud Integration From Dimension, you can connect directly to your instance of WatchGuard Wi-Fi Cloud You can see log messages and reports about your AP devices in Dimension, and then click the direct Wi-Fi Cloud link on the Dimension Home page to connect to Wi-Fi Cloud and manage your AP devices After you click the Wi-Fi Cloud link, if you are not already logged in to the WatchGuard website, you are prompted for your WatchGuard account credentials
Wi-Fi Cloud Integration
See X-Forwarded Details in Proxy Headers X-forwarded information from the proxy header includes the IP addresses of clients behind a proxy policy
See X-Forwarded Details in Proxy Headers Log messages and Dimension reports can now show the IP addresses of clients behind proxy policies The Firebox sends the IP address of the proxy server (for example, Squid, Webmarhal, and XCS) and the client IP address in the X-forwarded information from the header, which can now be found in the log messages in the ori_src detail
See X-Forwarded Details in Proxy Headers
See X-Forwarded Details in Proxy Headers Example log message shows the ori_src detail: <ProxyMatch d="2016-09-02T10:54:35" orig="gary_xtmv" cname="" proc_id="http-proxy" pri="6" rc="594" seq="276" disp="Deny" msg_id="1AFF-0028" src_intf="1-Trusted" dst_intf="0-External" policy="HTTP-proxy-00" src_ip="10.0.1.2" dst_ip="100.100.100.3" src_port="41208" dst_port="80" pr="http/tcp" msg="ProxyDrop: HTTP Virus found" proxy_act="HTTP-Client.Standard.1" ori_src="1.1.1.1" virus="Object tmp/scan_03.UTvg4d detected as PUP (Potentially Unwanted Program)" host="100.100.100.3" path="/ss/0db44a8f3bffa0488793e15e1076efcc7b6d77f5bc436ffe6bf6f65cfb5e2 0a9" log_type="tr"/> <ProxyHTTPReq d="2016-09-02T10:54:35" orig="gary_xtmv" cname="" proc_id="http-proxy" pri="6" rc="525" seq="277" disp="Allow" msg_id="1AFF-0024" src_intf="1-Trusted" dst_intf="0-External" policy="HTTP-proxy-00" src_ip="10.0.1.2" dst_ip="100.100.100.3" src_port="41208" dst_port="80" pr="http/tcp" msg="HTTP request" proxy_act="HTTP-Client.Standard.1" ori_src="1.1.1.1" op="GET" dstname="100.100.100.3" arg="/ss/0db44a8f3bffa0488793e15e1076efcc7b6d77f5bc436ffe6bf6f65cfb5e20 a9" sent_bytes="233" rcvd_bytes="2406296" elapsed_time="0.026119 sec(s)" reputation="-1" reason="262184" action="drop" log_type="tr"/>
See X-Forwarded Details in Proxy Headers When you review log messages and reports, instead of the IP address of the proxy server, you now see the real IP address of the client where the traffic originated Available for log messages and reports from Fireboxes that run Fireware OS v11.12 and higher (Fireware OS v11.12 will be available in November 2016)
Other Enhancements
Other Enhancements Localization of Dimension v2.1 UI The v2.1.1 release includes localization of the v2.1 Dimension UI content and v2.1 Dimension Help Support for Firebox T70 Firebox T70 is now supported in Dimension v2.1.1 The Firebox image and icon now appear on the Device page The Device Friendly Name is now added when you add a T70 to Dimension
Thank You!