Skip to main content

Illumio Core What's New and Release Notes 22.5

VEN

  • [Centos 7] Connectivity blocked after VEN upgrade from 21.5.0 to 22.5.10 (E-100683)

    Upgrading the VEN to 22.5 could result in an incorrect policy rendering the workload unreachable. This issue is resolved.

  • Windows DC's PRF: Policy process high CPU on Platform Handler (E-100410)

    FQDN in the policy could result in high CPU usage by the VEN Platform Handler service. This issue is resolved.

  • Tampering events after upgrading VEN (E-100296)

    When upgrading from a previous version of the VEN on RHEL8 or its variants (CentOS/Oracle, Rocky, etc.), a tampering event might occur and be sent to the PCE. This is a false positive firewall tampering event and can safely be ignored. This issue is resolved.

  • Unauthorized VENs are causing frequent events related to interface_statuses/update (E-98612)

    When a VEN is unpaired from the PCE, it is possible for the VEN to not receive the unpair message. This can happen, for example, if the host is down for an extended time. When the host comes back up, VEN requests to the PCE are rejected, and the PCE emits request.authentication_failed events. This issue is resolved. The VEN no longer makes frequent requests to the PCE after receiving consistent authentication errors.

  • (Windows) Policy sync error (E-97013)

    Older endpoint VENs might not report PPP VPN adapters correctly, including Microsoft Always-On VPN. This issue is resolved.

  • venPlatformHandler error (E-96180)

    Sometimes, the Windows OS API (WTSQuerySessionInformationW) returns the session information with an invalid logon time. The invalid logon time made some runtime library functions fail. This issue is resolved. The invalid time is no longer passed into these runtime library functions.

  • Unauthorized VENs are causing frequent request.authentication_failed events (E-90627)

    When a VEN is unpaired from the PCE, it is possible for the VEN to not receive the unpair message. This can happen, for example, if the host is down for an extended time. When the host comes back up, VEN requests to the PCE are rejected, and the PCE emits request.authentication_failed events. This issue is resolved. The VEN no longer makes frequent requests to the PCE after receiving consistent authentication errors.