Network Security Manager 2.6 On Premises Release Notes

Technical Documentation> SonicWall Network Security Manager 2.6 On-Premises> Version 2.6.0 On-Premises

SonicWall Network Security Manager 2.6 On-Premises

Version 2.6.0 On-Premises

December 2024

Important

Refer to the knowledge base article, How to Upgrade SonicCore and NSM in Closed Network for detailed instructions on upgrading NSM in closed network environment.
Refer to the knowledge base article, Upgrade NSM on-prem via System Update for detailed instructions on a system upgrade. Prior to update, you need to create a system backup of the NSM on-premises system in case you need to roll back to the prior version. Refer to Backup and Restore an NSM On-Prem System for detailed instructions.
Refer to knowledge base article, How to Upgrade On-Prem Network Security Manager firmware for detailed instructions on upgrading NSM firmware using SWI files.

Compatibility and Installation Notes

Most popular browsers are supported, but Google Chrome is preferred for the real-time graphics display on the Dashboard.
A MySonicWall account is required.

Capacity Requirements: The capacity requirements for an NSM On-Premises deployment have changed:

Platform	Platform Details	Number of Firewalls	Recommended Configuration
VMware	Supported versions: ESXi 7.0, 8.0	1-500 500-3000	4 Cores, 24 GB RAM 8 Cores, 48 GB RAM
Hyper-V	Windows 2019, 2022	1-500 500-3000	4 Cores, 24 GB RAM 8 Cores, 48 GB RAM
KVM	Linux Kernel 5.15 LTS	1-500 500-3000	4 Cores, 24 GB RAM 8 Cores, 48 GB RAM
Azure	Standard_D4_v2 Standard_D5_v2	1-500 500-3000	8 Cores, 28 GiB RAM 16 Cores, 56 GiB RAM

Upgrade Instructions:

NSM can be upgraded on VMWare, Hyper-V, KVM, and Azure platforms using system updates or .swi images. We have an available upgrade file for NSMOn-Premises 2.6.0 HF1, so we recommend upgrading to NSM 2.6.0 HF1. You must use the correct version of NSM before upgrading to NSM 2.6.0 HF1. Please refer to the table below before upgrading to NSM 2.6.0 HF1.

We strongly recommend upgrading to NSM 2.6.0 HF1 using a system update following the steps captured in the Upgrade Instructions without Upgrade Package.
If you have configured custom web certificates in NSM, please disable them before upgrading NSM and enable them after the NSM upgrade.

Current Build	Upgrade Path to 2.6.0 HF1
NSM 2.4.4-R7	2.4.4-R7 > 2.5.0 > 2.5.0 HF1 > 2.6.0 HF1
NSM 2.5.0	2.5.0 > 2.5.0 HF1 > 2.6.0 HF1
NSM 2.5.0 HF1	2.5.0 HF1 > 2.6.0 HF1

What's New

This release provides the following new features, usability enhancements and fixes for previously reported issues

Firewall Auto Synchronization: The NSM automatically synchronizes firewall configuration modifications performed from the local UI. This capability is turned off by default but can be enabled at the tenant level. Please refer to the NSM On-Premises Administration guide to understand the complete feature workflow.
Firewall Model-Specific Templates: Model-specific templates help administrators reliably deploy the same configuration on a fleet of firewalls.
Management of TZ80: The NSM On-premises 2.6.0 release supports the complete firewall management capability of the TZ80 device, including support for the new license model of TZ80 and firewall configuration.
Firewall Diagnostic Features: Starting NSM 2.6.0, users can use firewall diagnostic tools such as Check Network Settings and Connection TopX, the ability to look up domain or IP address (MX and Banner), check for IP reputation using GRID Check, check for URL reputation and perform Switch Diagnostics are available in the firewall view.
2FA Authentication for Super Admin: NSM On-premises 2.6.0 introduces 2FA authentication support for super admin users using email-based OTP.
Usability Enhancements: To better organize the NSM menu options and make NSM terminology intuitive, we have made the following changes in this release.
Terminology update:
- The firewall's On and Off status has been changed to Online and Offline in the NSM Dashboard.
- The firewall's Unmanaged and Managed status is changed to Out of Sync and In Sync status in the NSM Dashboard and Inventory.
- The firewall's Unassigned status changed to the Device group's unassigned status in the NSM Dashboard and Inventory.

Resolved Issues

Issue ID	Description
NSM-26754	NSM Firewall Group configuration view shows the following error: "Internal Server Error".
NSM-26334	IP column no longer appears for ZT units following the upgrade to NSM 2.5.0.
NSM-26254	Firewall Scheduled Backup for "All Devices" is only processing for a maximum limit of 200 devices.
NSM-26253	NSM 2.5.0 unable to edit user role when clicking the 'save' button.
NSM-26146	NSM On-Prem When the firewall is down, NSM still shows the firewall up, and the customer is not alerted.
NSM-26057	The dashboard Map shows firewall locations incorrectly, but the Firewall Inventory map shows them correctly.
NSM-24566	Static Network Configuration becomes DHCP enabled when exiting safe mode.
NSM-23575	Upgrading On-Prem to 2.3.5-1 via SWI fails for large configurations.

Known Issues

Issue ID	Description
NSM-27211	The session is expiring while updating the time and date.
NSM-27204	Restarting NSM throws an internal server error (proceeds with the reboot).
NSM-26960	The large backup file is not automatically copied to the SCP server when creating an on-demand backup.

Additional References

NSM-25574, NSM-25896, NSM-26075, NSM-26204, NSM-26821.

< Prev Section

Next Section >