Skip to main content

Check out Interactive Visual Stories to gain hands-on experience with the SSE product features. Click here.

Skyhigh Security

Client Proxy 4.6.0 Release Notes -windows

  1. Last updated
  2. Save as PDF

 

This release focuses on enhancements for Skyhigh Private Access, Cloud Firewall features, and resolves issues on Windows only. For more information about Private Access, see Skyhigh Private Access

Note: Some Client Proxy features require specific minimum versions of the Trellix Agent. For information about the minimum compatible versions, see Compatible Versions of Trellix Agent.

Enhancements

Supports Cloud Firewall 

Configure Client Proxy to support Cloud Firewall key capabilities. For more information, see Skyhigh Cloud Firewall.

  • Perform a deeper level inspection of network traffic and protect against malicious traffic. 
  • Enforce Cloud Firewall policy based upon IP address, processes, ports, and domains to filter your network traffic

Logging Events in Human Readable Format

The Client Proxy events like connectivity check failures, redirection errors, auto-policy-download failures, policy change, network change, captive portal check are now logged in a scp.loglog file in a human readable text. The log files are located in the C:\ProgramData\Skyhigh\SCP\Logs\Scp.log folder. This is supported only for Windows.

User Group Header Validation

Client Proxy running on Windows now validates and logs a failure message if the group header exceeds the maximum limit. The maximum header limit for the traffic redirection is 7186 bytes. 

Enforce Time-based Policy 

You can enforce a policy for a specific time range on the Windows systems. This means you can restrict web access during a particular period of the day to efficiently monitor and manage network resources. For example, you can block all social media sites for all users across the world during work hours (9 a.m. to 4 p.m.).

VSCore for DNS Interception

Replaced NTK drivers with VSCore for DNS interception to avoid network disruption while installing or uninstalling Client Proxy.

Resolved Issues (Windows only)

Reference Issue Description
MCP-4807 When the application or browser contains the standard port 80 with the host name, Client Proxy now removes the standard port 80 from the URL to normalize as per RFC 3986. 
MCP-5184 The About SCP Window now shows PA Status as Connected when secure channel is enabled on port 443.
MCP-5230 Failed to delete the multiple catalogs that were generated within the Common Catalog under certain circumstances. This issue is now resolved.
MCP-5231 Do not start Captive portal check if the Egress IP prefixed Domain Name is NULL.
MCP-5301 Client Proxy client failed to validate the Private Access policy and logged weird error messages.
  1. Back to top
  • Was this article helpful?

Recommended articles

  1. Article type
    Topic
  2. Tags
    This page has no tags.