We are pleased to announce Gibraltar release 2.6. It will be the last version based on kernel 2.4, the next Gibraltar release 3.0 will use kernel 2.6.

Major new features in this release include official support for "Snort" as intrusion detection system and full integration of the Puresight Enterprise variant for advanced user-based authorization and reporting.

All Gibraltar versions up to 2.5 ship with openssl libraries older (0.9.6 and

0.9.7) than the earliest version that was affected by the Debian bug (0.9.8).

Therefore, key pairs and certificates created on any Gibraltar version should be secure and no updates will be necessary. However, any key pairs or certificates created on a Debian or Ubuntu host that used a vulnerable openssl version and that were - in any way - copied to or used on a Gibraltar firewall must still be replaced. This includes X.509 certificates for IPSec authentication and ssh keys for public-key login, among others.

Improved traffic shaping and bandwidth management, a professional web filter and integration of OpenVPN are the highlights of the new release. Additionally, an integrated user management on the basis of LDAP has been developed and so the configuration of many services has been simplified.
The new release of Gibraltar is available since September 10, 2007. After developing and testing longer than a year we were able to make Gibraltar more reliable than ever and we integrated many new features. Apart from many small innovations the highlights of the new version are:

• Dynamic web filter powered by PureSight
• OpenVPN for an easy configuration of client VPN connections
• Clientless SSL VPN on the basis of SSL-Explorer^TM
• User management on the basis of LDAP or Active Directory
• Captive portal with form based authentication