What's New in Version 4.0.0

Feature Description
BFD Settings Enables to configure BFD to detect route failures between two connected entities. See Configure BFD.
Configure Lifetime of ARP Table Entries Allows an Enterprise user to configure the lifetime of an ARP entry from the Orchestrator. See Configure Layer 2 Settings for Profiles.
Crypto Algorithm Enhancements Describes the following new Crypto algorithms: SHA-384 and SHA-512, DH groups 15 and 16, and PFS DH group 14,15, and16. See the following sections for more information:
SD-WAN Orchestrator Data Retention New SD-WAN Orchestrator default data retention values are available with the 4.0 release. See SD-WAN Orchestrator Data Retention for more information. To configure retention values for flow statistics, system properties must be enabled. For more information, see List of System Properties section in the VMware SD-WAN Operator Guide.
Default Edge Authentication A new default option to authenticate Edges associated with a customer is available named Certificate Acquire. See the following:
Edge Hardening Enables Edge access through Physical Console (Serial Port or Video Graphics Array (VGA) Port). See Configure Edge Access.
Edge Software Image Management at Enterprise Level Provides Enterprise Super Users the ability to upgrade SD-WAN Edge firmware without relying on VMware Support or the Partner. See Edge Software Image Management.
Enterprise Reports Allows to generate Enterprise reports that can be used to analyze the network information. See Enterprise Reports.
Firewall Enhancement to support FQDNs Provides customers the ability to apply Firewall and Business Policy rules based on the Fully Qualified Domain Names (FQDNs). See:
Firewall/Business Policy with Interface option support Provides customers the ability to match a rule to an interface or sub-interface while creating a Business Policy or Firewall rule. See:
HA Interface Enhancements The HA Interface that connects to an Active Standby Pair is selected automatically based on the Edge platforms. See Enable High Availability.
HA support for Security VNF Allows to configure security VNF on Edges with High Availability to provide redundancy. See Configure Security VNF with HA.
Hot Standby Link Hot Standby link an enhanced backup link, for the WAN links of an Edge, with pre-established VCMP tunnels. When the active links are down, Hot Standby link enables immediate switchover by using the pre-established VCMP tunnels. See Configure Hot Standby Link.
Improve remote diagnostics responsiveness from SD-WAN Orchestrator Remote Diagnostics uses a bi-directional WebSocket connection instead of the live-mode heartbeat mechanism to improve the responsiveness of the Remote Diagnostics in the SD-WAN Orchestrator. See Remote Diagnostics.
New Monitoring Dashboard Allows an Enterprise user to monitor the events and services in a new redesigned portal. See Monitor Enterprise using New Orchestrator UI.
NTP Server on an Edge Allows an enterprise user to configure a time source for the SD-WAN Edge to set its own time accurately by configuring a set of upstream NTP Servers to get its time from. Once the Edge's own time source is properly configured, the user can configure the SD-WAN Edge to act as an NTP Server to its own clients. See Configure NTP Settings for Profiles.
Role Customization Allows an Enterprise Superuser to customize the existing set of privileges for the user roles. The customization is applied to all the users available within the Enterprise. See Role Customization.
Stateful Firewall Enhancement to support Network and Flood Protection Allows the customers to configure stateful firewall settings, network and flood protection settings through Orchestrator and thereby improve network security. See:
Support Direct IPSec (NVS) from Edge VMware allows the Enterprise users to define and configure a Non VMware SD-WAN Site instance and establish a secure IPSec tunnel directly from a SD-WAN Edge to a Non VMware SD-WAN Site. See Configure a Non SD-WAN Destinations via Edge.

Previous VMware SD-WAN Versions

To get product documentation for previous VMware SD-WAN versions, contact your VMware representative.