SonicOS/X 7.0.1 Release Notes

Version 7.0.1-5065 April 2022

April 2022

This version of SonicOS/X 7.0.1 is a maintenance release for existing platforms and resolves issues found in previous releases.

Supported Platforms

The platform-specific versions for this unified release are all the same:

PlatformFirmware Version
TZ Series7.0.1-5065
NSa Series7.0.1-5065
NSv Series7.0.1-5065
NSsp Series7.0.1-5065
  • NSa 2700
  • NSa 3700
  • NSa 4700
  • NSa 5700
  • NSa 6700
  • NSsp 10700
  • NSsp 11700
  • NSsp 13700
  • TZ270 / TZ270W
  • TZ370 / TZ370W
  • TZ470 / TZ470W
  • TZ570 / TZ570W
  • TZ570P
  • TZ670
  • NSv 270
  • NSv 470
  • NSv 870

SonicOS/X NSv deployments are supported on the following platforms:

  • AWS (BYOL and PAYG)
  • Microsoft Azure (BYOL)
  • VMware ESXi
  • Microsoft Hyper-V
  • Linux KVM

Resolved Issues

Issue IDIssue Description
GEN7-19015Cannot connect to Layer Two Tunneling Protocol (L2TP) with packets dropped as the packet does not match traffic selectors if the L2TP clients are behind a network address translation (NAT) IP address assignment.
GEN7-19520An error may be displayed when accessing the Topology view when a large number of client systems are connected.
GEN7-24141New devices may not be acquired by Network Security Manager (NSM) that have settings for VoIP are imported from an older (pre-2020) device.
GEN7-26188The LED for LAN bypass does not work as expected.
GEN7-26488Native Bridge Mode Pair causes IP traffic drops from and between the paired VLAN interfaces and causes the firewall web management interface to become inaccessible.
GEN7-26726Purge option to delete log files from storage cannot be selected if two or more files are selected.
GEN7-28690In a High Availability configuration, a reboot may be seen due to a segmentation fault in DP-engine-1.
GEN7-28776The Virtual Office Bookmark tab is not visible when a MGMT-Only privilege is added to the SSLVPN Services group by adding a group, enabling Members go straight to the management UI on web login, and then removing the new group.
GEN7-28888An SNMP query fails over a site-to-site VPN when network address translation (NAT) is enabled.
GEN7-29012When using external storage, the system logs file location changes from secondary storage to primary storage after the network security appliance is rebooted.
GEN7-29058A wildcard FQDN object will not resolve subdomains unless a www FQDN object is also created.
GEN7-29162When using migrated settings, the Path Selection Profile interface status displays Not Qualified for SD-WAN Group interfaces when using the default SLA class object.
GEN7-29210Unable to add 10 GB SFP+ interfaces for Port Mirroring.
GEN7-29376SonicWall Switches managed using a network security appliance and connected on a Trunk port are not receiving a DHCP IP address from its native Interface.
GEN7-29535Console prints tTimerTask stacktrace about every 1 hour. There is no functional effect.
GEN7-29547Slow response times may be experienced when accessing a RDP session using a Virtual Office bookmark.
GEN7-29552Unbinding the Time-based one-time password (TOTP) key from the User Login Status page did not work if the user password does not meet the complexity constraints.
GEN7-29603A WAN Group VPN shared secret is displayed incorrectly when administering the network security appliance using Network Security Manager (NSM).
GEN7-29650 When trying to set up Quota limit for Radius or LDAP users, the message script is missing one or more "exit" commands may be displayed.
GEN7-29853Settings are not saved when importing LDAP users and assigning the user quota on the Import page.
GEN7-29867Trying to add an All Deny access rule on the WAN > WAN page maybe display the error Rule Blocks Management Rule(s).
GEN7-29872Server DPI-SSL, the error message The server is not sending intermediate certificate may be displayed.
GEN7-29904The Test LED is not blinking on the Standby unit in a High Availability pair.
GEN7-29990The RDP SSL VPN Virtual Office bookmark setting Automatically login, Use SSL-VPN account credentials has been removed due to security concerns.
GEN7-30015TCP traffic fails to pass through the WAN zone native bridge interfaces when the destination IP address is not in the same subnet with the client system.
GEN7-30040Allocation of resources without limits or throttling can potentially result in HTTP DoS via the Content Filtering Service (CFS).
GEN7-30063When a Guest user is included in a group membership of "Guest Administrator": The message Auto- Generate password" feature for isn't working according to the assigned Guest profile may be displayed. When trying to export the user list, the button does not work. When using the Print icon, the password is not displayed on the paper.
GEN7-30334When saving the configuration of an LDAP user in Local Users & Groups, the message script is missing one or more "exit" command might be displayed.
GEN7-30418Not able to change the Default target IP under WAN failover and Load balancing Probe settings if using 0.0.0.0.
GEN7-30590Importing settings fail and trigger a trace indicating a post file HTTP issue through the API.
GEN7-30620The VPN category is missing from the Category list in Application Control when trying enable a block for the VPN category.
GEN7-30681The packet monitor settings on the standby firewall display the primary configuration instead of the runtime configuration.
GEN7-30698The Local User display can be very slow to refresh. Searching for local users causes the Local Users interface to become unresponsive when a large number of configured users are present.
GEN7-30716When importing settings for High Availability, the error Failed to create cloned ifList is displayed because of a synchronization issue .
GEN7-30743The network security appliance may reboot when a command-line interface (CLI) stage was destroyed unexpectedly while accessing data.
GEN7-31049When the Trusted Relay Agent Check is enabled, the Global VPN Client (GVC) client may become unresponsive in Acquiring IP status and the firewall fails to offer DHCP IP addresses.
GEN7-31069The SNMP Manager may be unable to get responses from an idle firewall in a High Availability pair over a VPN.
GEN7-31215The Suppress Automatic Access Rules Creation for a VPN Policy is not available.
GEN7-31244When trying to create decryption policy using an LDAP imported group, the error Cannot read properties of undefined (reading 'success') is displayed.
GEN7-31260The network security appliance may reboot when TSR is pulled on units in High Availability.
GEN7-31313In WAN Load Balancing, the default gateway cannot be used as the default target IP address when all targets are set to 0.0.0.0.
GEN7-31334Log files stored on external storage cannot be deleted.
GEN7-31358NSA 6700 only: The LACP configuration fails on the 40GB Interface (X33).
GEN7-31361Unable to add or edit an WLAN interface when Only allow traffic generated by a SonicPoint/SonicWave is disabled. The error Command 'no auto-discovery' does not match is displayed.
GEN7-31420When the rendering of the BGP neighbor status exceeds approximately 32k bytes, the Settings page does not display correctly.
GEN7-31746Enabling Mirror LDAP user groups locally does not display the imported mirrored groups.
GEN7-31987Potential exposure of Wireless Access Point (WAP) sensitive information via SNMP.
GEN7-31988Potential exposure of sensitive information to an unauthorized user via SNMP.
GEN7-32041When AppFlow is enabled, CP core usage will spike and many fields report that CP core CPU usage remains at 100% for an extended period of time.
GEN7-32225The OpenSSL library can enter an infinite loop when parsing an invalid certificate, potentially resulting in Denial-of-Service (DoS).

Additional References

The following additional resolved issues in this release are listed here for reference:

GEN7-19015, GEN7-19520, GEN7-24141, GEN7-26188, GEN7-26488, GEN7-26726, GEN7-28690, GEN7-28776, GEN7-28888, GEN7-29012, GEN7-29058, GEN7-29162, GEN7-29210, GEN7-29376, GEN7-29535, GEN7-29547, GEN7-29552, GEN7-29603, GEN7-29650, GEN7-29853, GEN7-29867, GEN7-29872, GEN7-29904, GEN7-29990, GEN7-30015, GEN7-30040, GEN7-30063, GEN7-30334, GEN7-30418, GEN7-30590, GEN7-30620, GEN7-30681, GEN7-30698, GEN7-30716, GEN7-30743, GEN7-31049, GEN7-31069, GEN7-31215, GEN7-31244, GEN7-31260, GEN7-31313, GEN7-31334, GEN7-31358, GEN7-31361, GEN7-31420, GEN7-31746, GEN7-32041

Known Issues

Issue IDIssue Description
GEN7-31588On the Device > Log > Settings page the toggle buttons to disable or apply to all categories whether a log is sent to a given resource does not work as expected.
GEN7-31724When using a custom authentication partition, it displays a user in the Unauthenticated Users list. If the partition is disabled or using the default authentication partition, it displays the user on the Active Users list.
GEN7-31820Link Aggregation Control Protocol (LACP) does not function as expected on interfaces above X32.
GEN7-31926A SonicWall Switch becomes unreachable after its DHCP lease expires when added to a Dedicated Uplink topology.
GEN7-32258When the MSSP license is expired, the network security appliance always prompts that the system needs to restart.
GEN7-32311DPI-SSL does not works properly when an interface is in Layer2 bridge mode and when the Never route traffic on this bridge-pair option is disabled.
GEN7-32411Network Security Manager (NSM) reports that the network security appliance is unregistered in MSSP mode, even when appliance is registered.
GEN7-32602DNS packets are dropped when UDP Flood Protection is running.
GEN7-32696As an administrator, closing the aggregator port in a L2 Link Aggregation Group (LAG) which uses DHCP causes traffic to fail to pass through.A

Was This Article Helpful?

Help us to improve our support portal

Techdocs Article Helpful form

Techdocs Article NOT Helpful form

  • Still can't find what you're looking for? Try our knowledge base or ask our community for more help.