This topic describes the changes in this minor release of IPsec for VMware Tanzu.
For product versions and upgrade paths, see Upgrade Planner.
Release Date: June 7, 2024
Rename openssl package to avoid package name collision when deployed on redis service VMs.
Fixes: Compatibility with Redis for VMware Tanzu Application Service.
Release Date: April 16, 2024
Release Date: February 23, 2024
Release Date: January 10, 2024
Release Date: November 2, 2023
Release Date: September 7, 2023
Release Date: July 3, 2023
Release Date: June 2, 2023
Release Date: April 12, 2023
route_registrar
, nats-tls-healthcheck
, nats-tls-wrapper
, and nats-wrapper
to fail. This causes the BOSH deployment to fail. VMware recommends using IPsec with Jammy stemcell v1.93 and later. For more information, see the VMware Tanzu Support documentation.Release Date: January 11, 2023
swanctl.conf
replaces the legacy ipsec.conf
There are no known issues in this release.
Release Date: November 11, 2022
There are no known issues in this release.
Release Date: April 13, 2022
There are no known issues for this release.
Release Date: November 1, 2021
Maintenance changes in this release:
There are no known issues for this release.
Release Date: April 9, 2021
Maintenance changes in this release:
There are no known issues for this release.
Release Date: February 24, 2021
This release fixes the following issue:
There are no known issues for this release.
Release Date: December 4, 2020
New features and changes in this release:
This release fixes the following issue:
ipsec
job now runs an ip xfrm state flush
immediately after starting the charon process.This release has the following issue:
Release Date: June 2, 2020
New features and changes in this release:
There are no known issues for this release.
Release Date: October 17, 2019
New features and changes in this release:
Release Date: August 14, 2019
New features and changes in this release:
There are no known issues for this release.
Release Date: November 19, 2018
New features and changes in this release:
This release fixes the following issues:
There are no known issues for this release.
Release Date: August 23, 2018
New features and changes in this release:
This release fixes the following issues:
Failed logging on Windows 2012 R2: On Windows 2012 R2 where scheduled logging could not be created for the enablement of the following alerts: certificate expiration and optional IPsec enforcement.
Subsequent deployments of IPsec did not start due to existing stale process IDs.
Release Date: June 28, 2018
New features and changes in this release:
Starting with BOSH Director v265.1.0, the BOSH job lifecycle includes a post-stop
phase. The charon
IPsec daemon job is now stopped in the BOSH post-stop
lifecycle phase instead of the BOSH stop
lifecycle phase. The stop
phase is now a no-op. This ensures the network remains available and secure while all other BOSH jobs perform their stop processing.
Updates smoke tests to check connectivity using TCP protocol requests on port 22, rather than issuing an ICMP ping request to the remote host. This ensures that the smoke test produces an accurate result, even when ICMP is not enabled.
Updates smoke tests to skip the connectivity check on localhost, because strongSwan does not create a transform when the source and destination addresses are equal.
To view the release notes for another product version, select the version from the drop-down menu at the top of this page.