Illumio Core What's New and Release Notes 21.5

Qualys vulnerability reports failing to import when using the CLI Tool (E-85068)

Qualys vulnerability reports could fail to upload into the PCE when using the CLI (ILO) Tool. This issue occurred when the scan reports in the XML file had overly long names. This issue is resolved. In this release, the CLI Tool successfully uploads Qualys vulnerability reports even when scan reports in the XML file have long names.

Deleted labels from proposed ruleset page showing in rules (E-85046)

While working with enforcement boundaries, users observed that the deleted labels from the proposed ruleset page are showing in rules along with new labels. This issue is resolved and the deleted labels do not show together with new labels anymore.

Explorer queries could return zero results when searching by FQDNs that had wildcard characters (E-85032)

This issue occurred because of the way that the PCE supported FQDNs with wildcard characters. It didn't support FQDNs with wildcard characters in IP lists at all. In user-specified FQDNs, the PCE supported wildcards in domain names but only when the wildcards appeared at the beginnings or ends of the domain names; for example, *.wns.windows.com was supported but foo.*.bar wasn't supported. This issue is resolved for both cases. Explore queries that search by FQDNs that have wildcard characters correctly return results.

High latency could impact Illumination map display in PCE web console (E-84816)

When a user viewed the Illumination map, the PCE web console always refreshed map data regardless of currentness. This behavior could impact performance. This issue is resolved. In this release, the PCE web console will display cached data in the Illumination map when the map has less than 200 workloads (controlled by the user's workload RBAC permissions).

Database backup could fail with an error message that illumio/tmp subdirectory already exists (E-84731)

When the ephemeral_data directory was universally writable, backing up traffic and reporting databases could fail and return a confusing error message. This issue is resolved. In this release, the PCE checks whether the ephemeral_data directory is universally writable before the backup runs and, if it is writable, returns an informative error message.

Top Detected Processes of a Core Service shows empty results (E-84618)

IP is detected as a core service but Explorer returns no results. This issue is resolved and the feature works as expected.

Legend wasn't clear in Executive Summary Reports (E-84343)

In Executive Summary reports, you view data over a time range. These sections include a legend on the left that displays data for the report time range only. The right side displays the data in stacked bar graphs each time the recurring report is run. When the report was run daily, the legend didn't include a date so it appeared that data was aggregated across all recurring reports, which isn't correct. This issue is resolved. In this release, the legend includes the date for the data. Additionally, the following fields in the feature have clearer values:

Add Report > Time Range: "Last 24 Hours" changed to "Last Day"

Report PDF > Top Summary > Time Range: "1 day" changed to "Last 1 day"

Sorting for Unknown IP Detected Core Services not working (E-84070)

Sorting on the Server column for Unknown IP Detected Core Services is not working properly and both the ascending and descending sorting show the same values. However, sorting for Workloads works properly. This issue is resolved and the feature works as expected.

A deleted unmanaged workload of an accepted core service is still listed in the Accepted tab (E-84067)

The deleted unmanaged workload is showing under the Accepted Tab with the Server IP. This issue is resolved and the feature works as expected.

Global Explorer queries could fail at least half of the time (E-83921)

When the Supercluster leader was deployed in a split data center, Global Explorer queries could fail 50% of the time. This issue is resolved.

Unexpected and Incorrect "Permission Denied" alert in the GUI (E-83445)

A user who doesn't have Global Org Owner permissions gets the 'Permission Denied' error when he/she tries to use to Explorer page. However, the user was able to perform the required action despite the error. This issue is resolved and the incorrect error was removed.

Killed/timeout query doesn't show in Explorer result (E-83338) After an Explorer query was killed or timed out, this query would disappear on the results page, making it impossible to track a failed query. This issue is resolved.