Schedule for next AsyncOS release

Unanswered Question
Jan 10th, 2008


I have read in one reply that some "issues" are fixed now with AsyncOS 5.5. Any information as to when this version will be released?

Thank you!

I have this problem too.
0 votes
  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
gsc_ironport Fri, 01/11/2008 - 08:15

Aren't you mixing up Web Security with Email Security? 5.5.1 is available for Email Security, however not (yet) for Web Security where 5.2.0 is the latest available version. Right?

jowolfer Fri, 01/11/2008 - 15:31

5.5.0 is available, but is a very limited release, being that it just finished the Beta process.

We currently do not yet have an ETA on a fully public release.

markfisher1 Sat, 02/09/2008 - 01:25

What does 5.5.0 fix from the current version? What new features does it enable? Thank you.

Jason_ironport Sat, 02/09/2008 - 02:28

The list of resolved bugs will continually evolve until the general release of 5.5.0 (probably sometime in Q2 CY08).

As far as new features, the most notable new feature in 5.5.0 will be the addition of HTTPS traffic inspection.


ezekiel_ironport Thu, 03/20/2008 - 14:40

Dear Jason,

Can you briefly explain how does WSA perform HTTPS termination and inspection?


jowolfer Fri, 03/21/2008 - 17:05


The short explanation is that the WSA executes a typical man in the middle SSL attack.

The WSA initiates SSL sessions with both the client and the server. After receiving the certificate from the server, the WSA generates it's own certificate and serves it to the client.

Since the certificate used to generate server certs is not trusted by the browsers, the browser will receive a trust warning. You can get around this by loading the CA cert into the clients on your network.

Jason_ironport Fri, 03/21/2008 - 19:48

Just to make that a little more visual:

Client <- SSL Conn 1 -> WSA <- SSL Conn 2 -> Web Server

Since the WSA is in the middle of these SSL connections, it can see the traffic unencrypted, but you still maintain SSL security across the Internet and LAN.

For any sites with highly sensitive information (such as financial sites), you will also have the ability to set these categories to Pass-Through, so the WSA will not decrypt these connections.



This Discussion