5.1-2-3

Web-Proxy content-type filter
Access may now be blocked based on the type of object (e.g. "video/*").

Cluster connection take-over
Routet connections are no longer interrupted in case of a failover as the stateful inspection firewall's internal data is
now replicated to the other cluster node. Connections terminating or originating on a cluster node are still interrupted.

Cluster with shared Internet access
The two cluster nodes may now share the Internet connection (e.g. if only one ADSL line or only one Internet IP is available).
While the backup node is in passive state it will connect to the Internet via the master. In case of a failover, the backup
node will take the Internet connection.

New web proxy release with minor bugfixes
Minor bugfixes and improvements
5.1-2-2

gzip decompression tool
While decompressing a specially crafted gzip archive, an attacker was able to execute arbitrary code.

Processing of mail folders SPAM and HAM
The named folders are no longer renamed daily. Still the user will receive a daily report of new emails in these folders.
Also by default emails are still deleted after 8 days. This period of time may now be changed for each individual user.

FTP server access
Access to the anonymous FTP server and login with the accounts for web and ftp server maintenance failed since release 5.1-2.0.

Cluster failover due to clock drift
If there is a significant difference in the system time of the cluster systems, a failover occured when re-synchronizing the
clock. The cluster service will be updated to fix this problem.
![]() |
Attention!On a master node, the cluster service will be stopped after the update as the new and the old versions are not compatible. Please update the backup system soon afterwards. Then start the "Cluster service" in menu "Monitoring > Services" and don't forget to set its autostart option. |
If it is not possible to update the backup system soon, you might want to disable the "Cluster node" service on the backup
node an re-enable it on the master instead.

Cluster routing configuration
When syncing the configuration, network routes on the master system were overwritten by those of the backup.

Reduced memory consumption of F-Secure signature update
Minor bugfixes and improvements
5.1-2-1

SPAM filter signature database
In 2010 composed messages possibly marked as spam. This update fixes the problem with the actual signature database.



