The following Trellix Intrusion Prevention System software are now available:
- IPS Manager / Central Manager – 11.1.7.97 [Windows, MLOS]
- VM-series Sensors/vIPS – 11.1.7.98 [VM5000, VM600]
- NS-Series Sensors – 11.1.5.98 [NS3600, NS9500, NS9300, NS9200, NS9100, NS7500, NS7350, NS7300, NS7200, NS7250, NS7150, NS7100, NS5200, NS5100, NS3500, NS3200, NS3100]
- NS-Series Sensors – 11.1.5.99 [NS 7600]
- Controller/Probe – 2.6.2 (AWS, Azure)
The release offers new capabilities including:
- Azure GWLB for vIPS - Operational simplicity using Azure Cloud by removing the need for agent/probe deployment
- Supporting DNS tunnelling machine learning detections in NDR by streaming DNS Layer 7 metadata to NDR module
- Stream large (>8KB) syslog notifications to syslog servers, SIEMs, etc as single messages.
- Automatic Reconnection to Syslog Servers, ensuring that alerts are delivered after connection reset by nodes such as FWs
- Support use of certificate files > 2046 bytes between IPS sensor and manager
For more details and complete list of changes refer to Release Notes:
IPS 11.1.7.97-11.1.5.98-11.1.5.99 Manager NS-series Release Notes
IPS 11.1.7.97-11.1.7.98-11.1.7.98 Manager Virtual-IPS Release Notes