On Monday January 28, 2019, Cisco Umbrella will release Umbrella Insights Virtual Appliance (VA) version 2.4.1 to the stage release track and the first wave of the production track.
The date of the release of version 2.4.1 to the second, third and final wave of the production track will be updated soon.
Customer VAs may upgrade over a period of days as opposed to consecutively upgrading one after another. To receive this upgrade, ensure that your firewall is configured to enable access to disthost.umbrella.com.
As a reminder, two VAs must be configured in order to upgrade automatically during these windows.
In accordance with Cisco policy, a list of open source software modules used in the VA is attached to these release notes. It contains licenses and notices for open source software used in this product.
CHANGE SUMMARY (2.3.1 to 2.4.1)
- The VA start menu is now read-only.
- Configuration changes on the VA now require authenticated access and can be made via the restricted shell (now called the Configuration Mode). More more information, see Configuration of the Virtual Appliance: Upcoming Changes.
- New ‘config’ commands in the restricted shell to enable configuration of the VA name, IP address, netmask, gateway and local DNS servers.
- Support for deploying VAs on Microsoft Azure and configuration over SSH.
- Support for remote configuration of an on-prem VA over SSH.
Note: For security, remote configuration is turned off by default and must be explicitly enabled through the restricted shell on each VA.
- Support for changing the password through the restricted shell.
- Support for resetting a forgotten password to the default password through the Umbrella dashboard.
- The ‘support’ commands in restricted shell for configuring SNMP, Anycast and setting up the support tunnel are now available as ‘config’ commands.
- Trusted Network Detection for the Umbrella Chromebook Client (UCC). For more information, see Umbrella Chromebook Client Release Notes.
- SNMP OIDs for system (220.127.116.11.2.1.1) are now exposed to enable compliance with monitoring systems that mandatorily need to read these OIDs.
- Fix for issue where ESXi 6.5.0 was showing vmwaretools as not running on the VA.
- Ping command in restricted shell now terminates after four attempts.
LIMITATIONS AND KNOWN ISSUES:
- Azure AD Domain Services is not supported.
- Dual-NIC support is not included in this release. Existing dual-NIC configurations will be retained but cannot be changed. Support for enabling dual-NIC and changing existing dual-NIC configurations will be added in an upcoming release.