SonicOS 7.0.1 Release Notes

Version 7.0.1-5065 April 2022

April 2022

This version of SonicOS 7.0.1 is a maintenance release for existing platforms and resolves issues found in previous releases.

Supported Platforms

The platform-specific versions for this unified release are all the same:

Platform Firmware Version
TZ Series 7.0.1-5065
NSa Series 7.0.1-5065
NSv Series 7.0.1-5065
NSsp Series 7.0.1-5065
  • NSa 2700
  • NSa 3700
  • NSa 4700
  • NSa 5700
  • NSa 6700
  • NSsp 10700
  • NSsp 11700
  • NSsp 13700
  • TZ270 / TZ270W
  • TZ370 / TZ370W
  • TZ470 / TZ470W
  • TZ570 / TZ570W
  • TZ570P
  • TZ670
  • NSv 270
  • NSv 470
  • NSv 870

SonicOS NSv deployments are supported on the following platforms:

  • AWS (BYOL and PAYG)
  • Microsoft Azure (BYOL)
  • VMware ESXi
  • Microsoft Hyper-V
  • Linux KVM

Resolved Issues

Issue ID Issue Description
GEN7-19015 Cannot connect to Layer Two Tunneling Protocol (L2TP) with packets dropped as the packet does not match traffic selectors if the L2TP clients are behind a network address translation (NAT) IP address assignment.
GEN7-19520 An error may be displayed when accessing the Topology view when a large number of client systems are connected.
GEN7-24141 New devices may not be acquired by Network Security Manager (NSM) that have settings for VoIP are imported from an older (pre-2020) device.
GEN7-26188 The LED for LAN bypass does not work as expected.
GEN7-26488 Native Bridge Mode Pair causes IP traffic drops from and between the paired VLAN interfaces and causes the firewall web management interface to become inaccessible.
GEN7-26726 Purge option to delete log files from storage cannot be selected if two or more files are selected.
GEN7-28690 In a High Availability configuration, a reboot may be seen due to a segmentation fault in DP-engine-1.
GEN7-28776 The Virtual Office Bookmark tab is not visible when a MGMT-Only privilege is added to the SSLVPN Services group by adding a group, enabling Members go straight to the management UI on web login, and then removing the new group.
GEN7-28888 An SNMP query fails over a site-to-site VPN when network address translation (NAT) is enabled.
GEN7-29012 When using external storage, the system logs file location changes from secondary storage to primary storage after the network security appliance is rebooted.
GEN7-29058 A wildcard FQDN object will not resolve subdomains unless a www FQDN object is also created.
GEN7-29162 When using migrated settings, the Path Selection Profile interface status displays Not Qualified for SD-WAN Group interfaces when using the default SLA class object.
GEN7-29210 Unable to add 10 GB SFP+ interfaces for Port Mirroring.
GEN7-29376 SonicWall Switches managed using a network security appliance and connected on a Trunk port are not receiving a DHCP IP address from its native Interface.
GEN7-29535 Console prints tTimerTask stacktrace about every 1 hour. There is no functional effect.
GEN7-29547 Slow response times may be experienced when accessing a RDP session using a Virtual Office bookmark.
GEN7-29552 Unbinding the Time-based one-time password (TOTP) key from the User Login Status page did not work if the user password does not meet the complexity constraints.
GEN7-29603 A WAN Group VPN shared secret is displayed incorrectly when administering the network security appliance using Network Security Manager (NSM).
GEN7-29650 When trying to set up Quota limit for Radius or LDAP users, the message script is missing one or more "exit" commands may be displayed.
GEN7-29853 Settings are not saved when importing LDAP users and assigning the user quota on the Import page.
GEN7-29867 Trying to add an All Deny access rule on the WAN > WAN page maybe display the error Rule Blocks Management Rule(s).
GEN7-29872 Server DPI-SSL, the error message The server is not sending intermediate certificate may be displayed.
GEN7-29904 The Test LED is not blinking on the Standby unit in a High Availability pair.
GEN7-29990 The RDP SSL VPN Virtual Office bookmark setting Automatically login, Use SSL-VPN account credentials has been removed due to security concerns.
GEN7-30015 TCP traffic fails to pass through the WAN zone native bridge interfaces when the destination IP address is not in the same subnet with the client system.
GEN7-30040 Allocation of resources without limits or throttling can potentially result in HTTP DoS via the Content Filtering Service (CFS).
GEN7-30063 When a Guest user is included in a group membership of "Guest Administrator": The message Auto- Generate password" feature for isn't working according to the assigned Guest profile may be displayed. When trying to export the user list, the button does not work. When using the Print icon, the password is not displayed on the paper.
GEN7-30334 When saving the configuration of an LDAP user in Local Users & Groups, the message script is missing one or more "exit" command might be displayed.
GEN7-30418 Not able to change the Default target IP under WAN failover and Load balancing Probe settings if using 0.0.0.0.
GEN7-30590 Importing settings fail and trigger a trace indicating a post file HTTP issue through the API.
GEN7-30620 The VPN category is missing from the Category list in Application Control when trying enable a block for the VPN category.
GEN7-30681 The packet monitor settings on the standby firewall display the primary configuration instead of the runtime configuration.
GEN7-30698 The Local User display can be very slow to refresh. Searching for local users causes the Local Users interface to become unresponsive when a large number of configured users are present.
GEN7-30716 When importing settings for High Availability, the error Failed to create cloned ifList is displayed because of a synchronization issue .
GEN7-30743 The network security appliance may reboot when a command-line interface (CLI) stage was destroyed unexpectedly while accessing data.
GEN7-31049 When the Trusted Relay Agent Check is enabled, the Global VPN Client (GVC) client may become unresponsive in Acquiring IP status and the firewall fails to offer DHCP IP addresses.
GEN7-31069 The SNMP Manager may be unable to get responses from an idle firewall in a High Availability pair over a VPN.
GEN7-31215 The Suppress Automatic Access Rules Creation for a VPN Policy is not available.
GEN7-31244 When trying to create decryption policy using an LDAP imported group, the error Cannot read properties of undefined (reading 'success') is displayed.
GEN7-31260 The network security appliance may reboot when TSR is pulled on units in High Availability.
GEN7-31313 In WAN Load Balancing, the default gateway cannot be used as the default target IP address when all targets are set to 0.0.0.0.
GEN7-31334 Log files stored on external storage cannot be deleted.
GEN7-31358 NSA 6700 only: The LACP configuration fails on the 40GB Interface (X33).
GEN7-31361 Unable to add or edit an WLAN interface when Only allow traffic generated by a SonicPoint/SonicWave is disabled. The error Command 'no auto-discovery' does not match is displayed.
GEN7-31420 When the rendering of the BGP neighbor status exceeds approximately 32k bytes, the Settings page does not display correctly.
GEN7-31746 Enabling Mirror LDAP user groups locally does not display the imported mirrored groups.
GEN7-31987 Potential exposure of Wireless Access Point (WAP) sensitive information via SNMP.
GEN7-31988 Potential exposure of sensitive information to an unauthorized user via SNMP.
GEN7-32041 When AppFlow is enabled, CP core usage will spike and many fields report that CP core CPU usage remains at 100% for an extended period of time.
GEN7-32225 The OpenSSL library can enter an infinite loop when parsing an invalid certificate, potentially resulting in Denial-of-Service (DoS).

Additional References

The following additional resolved issues in this release are listed here for reference:

GEN7-19015, GEN7-19520, GEN7-24141, GEN7-26188, GEN7-26488, GEN7-26726, GEN7-28690, GEN7-28776, GEN7-28888, GEN7-29012, GEN7-29058, GEN7-29162, GEN7-29210, GEN7-29376, GEN7-29535, GEN7-29547, GEN7-29552, GEN7-29603, GEN7-29650, GEN7-29853, GEN7-29867, GEN7-29872, GEN7-29904, GEN7-29990, GEN7-30015, GEN7-30040, GEN7-30063, GEN7-30334, GEN7-30418, GEN7-30590, GEN7-30620, GEN7-30681, GEN7-30698, GEN7-30716, GEN7-30743, GEN7-31049, GEN7-31069, GEN7-31215, GEN7-31244, GEN7-31260, GEN7-31313, GEN7-31334, GEN7-31358, GEN7-31361, GEN7-31420, GEN7-31746, GEN7-32041

Known Issues

Issue ID Issue Description
GEN7-31588 On the Device > Log > Settings page the toggle buttons to disable or apply to all categories whether a log is sent to a given resource does not work as expected.
GEN7-31724 When using a custom authentication partition, it displays a user in the Unauthenticated Users list. If the partition is disabled or using the default authentication partition, it displays the user on the Active Users list.
GEN7-31820 Link Aggregation Control Protocol (LACP) does not function as expected on interfaces above X32.
GEN7-31926 A SonicWall Switch becomes unreachable after its DHCP lease expires when added to a Dedicated Uplink topology.
GEN7-32258 When the MSSP license is expired, the network security appliance always prompts that the system needs to restart.
GEN7-32311 DPI-SSL does not works properly when an interface is in Layer 2 bridge mode and when the Never route traffic on this bridge-pair option is disabled.
GEN7-32411 Network Security Manager (NSM) reports that the network security appliance is unregistered in MSSP mode, even when appliance is registered.
GEN7-32602 DNS packets may be dropped when UDP Flood Protection is running.
GEN7-32696 As an administrator, closing the aggregator port in a L2 Link Aggregation Group (LAG) which uses DHCP causes traffic to fail to pass through.A

Was This Article Helpful?

Help us to improve our support portal

Techdocs Article Helpful form

  • Hidden
  • Hidden

Techdocs Article NOT Helpful form

  • Still can't find what you're looking for? Try our knowledge base or ask our community for more help.
  • Hidden
  • Hidden