What's new in the 9.2 release

Releases can introduce new features and enhancements or update platform support.

Note: McAfee® Web Gateway 9.2 was initially provided as a controlled release and is now provided as a main release. The transition was made when update 9.2.2 was released.

For upgrade information, see the McAfee Web Gateway Installation Guide.

Rule set to run next-hop proxies for cloud use

A rule set is provided on-premise for running next-hop proxies that can be enabled for cloud use.

For more information, see the Next-hop proxies section in the Supporting functions chapter of the McAfee Web Gateway Product Guide.

Rule to allow bypassing for MMCS traffic

A new rule has been added to an on-premise rule set that implements bypassing of HTTPS scanning. The rule applies if a connection originates from a mobile system using McAfee Mobile Cloud Security (MMCS) and the site that is involved is whitelisted.

For more information, see the HTTPS scanning section in the Web filtering chapter of the McAfee Web Gateway Product Guide.

More media types supported for filtering

To the media types that are detected and can be filtered on Web Gateway have been added:

  • application/dns-message
  • application/step

For more information on media type filtering, see the Media type filtering section in the Web filterrng chapter of the McAfee Web Gateway Product Guide.

File opener improved

The file opener on Web Gateway shows an improved behavior now with support for TTF fonts in PDF files.

For more information on file opening, see the File opening section in the Supporting functions chapter of the McAfee Web Gateway Product Guide.

Transparent Bridge mode restored

After resolving stability issues that had occurred in previous product versions, the Transparent Bridge mode has been restored as an option for setting up Web Gateway in a local network.

For more information, see the Transparent Proxy ... sections in the Proxies chapter of the McAfee Web Gateway Product Guide.

Options for CTD removed from user interface

The Tenant Info settings, which could be used to configure Cloud Threat Detection (CDT) on Web Gateway, have been removed from the user interface.

Number of concurrent client connections increased on WBG-5xxx-D appliances

Web Gateway has been improved to handle an increased number of concurrent connections on one appliance. This adds to the value of the appliance through better scalability.

The increase applies to a standard configuration where the solution known as normal forward proxy runs on Web Gateway. It does not apply when you have set up, for example, a High Availability (HA) proxy solution.

The following increase has been measured:

  • WBG-5000-D could handle 10% more client connections, resulting in 55,000 concurrent connections
  • WBG-5500-D could handle 101% more client connections, resulting in 100,500 concurrent connections

For more information, see the Advanced settings (for proxies) section in the Proxies chapter of the McAfee Web Gateway Product Guide.

New administrator roles for use in troubleshooting

New role options have been implemented for administrators who perform troubleshooting on Web Gateway.

For more information, see the Administrator role settings section in the Administrator accounts chapter of the McAfee Web Gateway Product Guide.

Monitoring of response times on GTI server connections

When queries are sent from a Web Gateway appliance to a Web Gateway appliance to a Global Threat Intelligence (GTI) server to retrieve information about URL categories and reputation scores, response times can be monitored.

Log messages are written when response times increase as well as when they return to normal.

For more information, see the URL Filter settings section in the Web filterrng chapter of the McAfee Web Gateway Product Guide.

More granular monitoring of system resources

Usage of system resources on a Web Gateway appliance can be monitored in a more granular way using the new - S threads-short command when creating core files for tracing the mwg-core process.

When this command delivers output, threads are identified by short names, so excessively CPU consuming threads and other that cause problems can be detected more easily.

ENA adapter supported

The Elastic Network Adapter (ENA) is now supported on Web Gateway for AWS instance types that also support it. This means that a particular kernel-crash dump feature is available for troubleshooting when running Web Gateway on those instance types.

To these have been added the C5 and M5 instance types.