What's new in the 9.1 release

Releases can introduce new features and enhancements or update platform support.

Note: McAfee® Web Gateway 9.1 is provided as a controlled release. For upgrade information, see the McAfee Web Gateway Installation Guide.

Kernel updated

The Linux kernel has been updated to version 4.19.

Mitigation for CPU vulnerabilities added

Vulnerabilities affecting CPUs that use hyper-threading can be mitigated by starting appliances with hyper-threading disabled.

For more information, see the McAfee Web Gateway 9.1.x Installation Guide.

Secure communication filtering enhanced

Regarding secure communication, filtering under the TLS 1.3 protocol is also supported for post-handshake authentication.

For more information, see the McAfee Web Gateway 9.1.x Interface Reference Guide.

ICMP redirection default setting changed

ICMP redirection messages are no longer accepted by default to enhance web security. In case accepting these messages is still needed, suitable entries can be made in sysctl.conf using the options provided on Web Gateway for editing system files.

For more information, see the McAfee Web Gateway 9.1.x Product Guide.

Transparent Bridge mode removed

Web Gateway can presently not be run as a proxy in Transparent Bridge mode. This restriction is due to a change in the product architecture.

File opening for further inspection can also be performed now for PDF files with access restrictions.

For more information, see the McAfee Web Gateway 9.1.x Product Guide.

New properties

The following new properties can be used in web security rules:

  • Client.SystemInfo provides details about the endpoint as a JSON string relayed by the MCP client over the X-SWPS-SystemInfo header.
  • SSL.Server.SkypeForBusiness.IsByPassed checks whether the option for bypassing Skype in business traffic is enabled for HTTPS scanning.

For more information, see the McAfee Web Gateway 9.1.x Interface Reference Guide.

Hyper-V 2019 support

All Web Gateway versions now support use of a Windows 2019 server in a Hyper-V role.

For more information, see the McAfee Web Gateway 9.1.x Installation Guide.

Delivery of MMCS 2.0 supported

As the McAfee Mobile Cloud Security (MMCS) 2.0 solution is going to be applied to web security, both Web Gateway and Web Gateway Cloud Security (WGCS) will support this use of the product.

For more information, see the McAfee Web Gateway 9.1.x Product Guide.