Resolved Issues in 22.5.32-VEN
Generating an individual maintenance token failed (E-111662)
When the Agent Tampering Detection feature was enabled and a user generated a token for a specific VEN (not tokens for all VENs), in some cases it wasn't possible to perform a protected
illumio-ven-ctlaction such asstop(example shown below):PS C:\Program Files> .\Illumio\illumio-ven-ctl.ps1 stop --maintenance-token <token for a specific VEN> Failed to verify maintenance tokenC-VENs failed to synchronize policy (E-108536, E-111490)
C-VENs running 21.5.33 showed "Error" for the Policy Sync state with the message "Failed to load policy line." Concurrent threads (
MsgHandleranddownloadPolicyFromPCE) caused a race condition because of shared variables. This issue is resolved.VEN failed to process FQDN rules and caused blocked traffic (E-111486, E-108639)
After upgrading VENs from version 19.3.5 to version 22.5 and greater, some VENs failed to process FQDN rules, causing traffic to be blocked. Due to a transient error, the VEN may fail to detect the DNS server(s) on the workload and fail to program FQDN rules correctly. This issue is resolved. Now VENs will continue trying to detect a DNS server after the initial detection fails.