This is a general release for the SV1800, SV2800, and SV3800. It also introduces the SV800 platform. It adds support for the Luna SP HSM, and adds a new Traffic Classes policy feature, as well as a number of other features and enhancements. Seven issues were resolved.Blue Coat strongly recommends upgrading all systems to this release.
Enhancements in SSL Visibility Appliance 3.8.0
SV800 Platform Introduced
The new SV800 hardware platform is introduced with this release. The platform is available in two models, the SV800-500M-C and the SV800-250M-C.
Full information Blue Coat Systems SV800 & SV1800 Getting Started Guide for hardware information; the Blue Coat Systems SV800 & SV1800 Administration and Deployment Guide for general administration
Luna SP HSM Support
Enables the SSL Visibility Appliance to use the networked Luna SP HSM to store resigning CA keys and to perform digital signature operations.
Full information Blue Coat Systems SV800 & SV1800/SV2800 & SV3800 Administration and Deployment Guide - Using the Luna SP HSM section
BCHSM Agent v1.1 Introduced
With Blue Coat's HSM Agent (BCHSM and accompanying CLI Installed on a SafeNet Luna SP (v3.0) network-based HSM appliance, the HSM can interoperate with Blue Coat's SSL Visibility and ProxySG appliances, accepting requests from them to sign certificates for SSL interception. The BCHSM Agent 1.1 for the Luna SP Installation and Operations Guide is also available.
Full information BCHSM Agent 1.1 for the Luna SP Installation and Operations Guide
IPv6 Support on the Management Network Port
IPv6 is now supported for use on the management network port. IPv4 and IPv6 may be configured concurrently on the management network.
Full information Blue Coat Systems SV800 & SV1800/SV2800 & SV3800 Administration and Deployment Guide – Configuring Management Network Settings and Management Network sections
Meeting the STIG V-3013 requirements, a notice and consent login banner may be configured. The banner is presented to the user before login, and must be accepted in order for the login to proceed.
Full information Blue Coat Systems SV800 & SV1800/SV2800 & SV3800 Administration and Deployment Guide – Login Banner section
Access Control Lists
ACLs may be configured to authorize or restrict access to incoming connections on the management network. Independent ACLs are available for IPv4 and IPv6 traffic. This feature meets STIG V-19076 requirements.
Full information Blue Coat Systems SV800 & SV1800/SV2800 & SV3800 Administration and Deployment Guide – IPv4 and IPv6 Access Control List Panels Section
Traffic Class Lists
Traffic Class Lists may be used to construct policy which decides whether or not to intercept an SSL flow based on QoS bytes, including but not limited to DiffServ values.
Full information Blue Coat Systems SV800 & SV1800/SV2800 & SV3800 Administration and Deployment Guide – Traffic Classes Lists Section
The Dashboard panel graphic for the SV1800 now reflects the -C or -F connectors appropriate for the appliance in use.
An Uptime indicator now appears on the Dashboard, indicating the length of time since the appliance was last restarted or reset. The supporting CLD command uptime is also available.
The Change Selected Categories window in the Host Categorization feature now includes an Invert button; use it to quickly select or deselect all categories.
The SSL Visibility Appliance license may now be exported from the License window.
The SSL Visibility Appliance now has a Blue Coat root OID:
n 14501.12 = Blue Coat SSL Visibility Product Family