Skip to content

LLRN 7.11

These are low-level release notes for IP Fabric release branch 7.11. Please note, that this page contains very low-level information about the actual release, which can lead to false conclusions if you don’t have access to the tickets. On the other hand, it can provide valuable information, if you are looking for a particular detail. This release branch contains a total of 191 fixed issues.

7.11.3

Bugs

Anything that we considered an incorrect behavior. Something that was not working as expected or turned out that did not meet customers’ demand.

  • NIM-23254 – High – Part 2 - Prompt not detected in Check Point Maestro after using clish

7.11.2

Bugs

Anything that we considered an incorrect behavior. Something that was not working as expected or turned out that did not meet customers’ demand.

  • NIM-21578 – Highest – PaloAlto login issues
  • NIM-22420 – Highest – Worker restart can cause a stuck discovery
  • NIM-22968 – Medium – GCP - No Cloud NAT in path lookup
  • NIM-23005 – Highest – Discovery workers use a large amount of RAM and never release it until they are stopped
  • NIM-23038 – High – F5OS-A API discovery does not work with RADIUS and needs a local user
  • NIM-23054 – Highest – Palo Alto vWires not all showing
  • NIM-23057 – High – PE route lookup doesn’t seem to filter based on route targets
  • NIM-23237 – High – Nokia - Missing / inaccurate VRF information
  • NIM-23257 – Medium – IOS-XR virtual VRF management address not gathered
  • NIM-23298 – High – Broken backup restore functionality
  • NIM-23363 – High – Vendor API connectivity tester - logging level change
  • NIM-23415 – Medium – Mismatched RBAC for default positions
  • NIM-23427 – Medium – Azure - Service Tag “AzureDNS” definition wasn’t found
  • NIM-23429 – Medium – Azure - Could not find the VNET for the Load Balancer “capp-svc-lb”
  • NIM-23444 – Medium – F5OS-C - Summary of Issues - ‘in-broadcast-pkts`
  • NIM-23476 – Highest – Azure - Default rule not applied
  • NIM-23488 – Medium – D-Link DGS1250 - Unable to validate LLDP neighbor - capabilities
  • NIM-23490 – Medium – Azure VirtualNetworkGateway - cannot read routes (IPv6)
  • NIM-23500 – High – Devices cannot be deleted from snapshot
  • NIM-23525 – High – Very slow PSQL query getUnscannedPrefixes causing discovery issues
  • NIM-23526 – High – Juniper - Missing details (Zone Firewall / NAT44)
  • NIM-23535 – Medium – Config sanitization issue on Mikrotik - SNMP trap community not redacted
  • NIM-23596 – Medium – ABParseError: Couldn’t validate route “::/0”, Couldn’t normalize the IPv6 address “B”

Tasks

Task may be associated into Epics or Stories to form complex features.

  • NIM-23532 – Highest – Increase the default heartbeat interval from 60s to 10min

7.11.1

Epics

Epics are high-level features, that may consist of many tasks.

  • NIM-22249 – Medium – Cloud load balancers - Azure/AWS SSL certificates [7.11]
  • NIM-22944 – Medium – [PE] MCP server responses optimization [8.0]
  • NIM-23079 – Medium – [PE] MCP - Integrate MCP server into product [7.11]
  • NIM-23090 – Medium – [PE] Remote and Secure MCP [7.11]

Stories

Stories are high-level features, that may consist of many tasks. These would typically cover extensive functionality in IP Fabric

  • NIM-22886 – Medium – [PE] Improve MCP server packaging

Bugs

Anything that we considered an incorrect behavior. Something that was not working as expected or turned out that did not meet customers’ demand.

  • NIM-23295 – High – Broken site separation
  • NIM-23414 – Medium – [PE] MCP - Broken configure link in status page
  • NIM-23418 – High – MCP server restart fails
  • NIM-23420 – Medium – Switch UI component disabled state malfunction
  • NIM-23421 – Medium – ApplicationGateway - Request failed with status code 400

Tasks

Task may be associated into Epics or Stories to form complex features.

  • NIM-17566 – Highest – Move discovery to the new @ipfabric/logger
  • NIM-23279 – Medium – [PE] MCP - Setup debian package distribution

7.11.0

Epics

Epics are high-level features, that may consist of many tasks.

  • NIM-22215 – Medium – Meraki - add SD-WAN support [7.11]
  • NIM-22586 – Medium – [PL] Discovery data contract basic design [7.10]
  • NIM-22639 – Medium – [DP] Implement discovery data contract [7.11]
  • NIM-22644 – Medium – Phase 1a: Get cloud resources using collector - routeTables [7.11]
  • NIM-22645 – Medium – Azure - Virtual WAN (vWAN) - ExpRoute & VPN gateways [7.11]
  • NIM-22658 – Medium – Phase 1a: Get cloud resources using collector - subnets [7.11]
  • NIM-22909 – Medium – GCP - support for classic VPN gateways [7.11]
  • NIM-23068 – Medium – Meraki - IPSec support [7.11]
  • NIM-23118 – Medium – D-Link support - DGS-1250 Series [7.11]
  • NIM-23218 – Medium – Prepare environment for enforcement of data contract for tasks/ Validation migration to JSON Schema [7.11]

Bugs

Anything that we considered an incorrect behavior. Something that was not working as expected or turned out that did not meet customers’ demand.

  • NIM-19843 – High – Missing Unmanaged Neighbors
  • NIM-21578 – Highest – PaloAlto login issues
  • NIM-22047 – High – Disabling discovery tasks for specific serial number does not work for API vendors
  • NIM-22176 – Highest – Path Lookup Failing - Fortigate
  • NIM-22274 – Medium – H2GW lookup fails - port not defined as Edge
  • NIM-22682 – Medium – GCP - Firewall evaluation is incorrect in certain scenarios
  • NIM-22686 – Highest – Failed discovery, Error during publishing to scanner queue - Knex: Timeout acquiring a connection
  • NIM-22696 – Highest – Multiple attempts required for ipf-backend-cli-tools create-admin-user after a techsupport is loaded
  • NIM-22819 – High – PaloAlto Mapping failures
  • NIM-22831 – High – Arista VXLAN [1193].vlanId must be less than or equal to 4095
  • NIM-22839 – Medium – Minor frontend validation error in Extensions form
  • NIM-22866 – High – Transceiver - Disabled Discovery Task - keep using disabled command
  • NIM-22872 – High – Fabric Path lookup issue
  • NIM-22885 – High – Ambiguous command on ISR2900 and C800 [show vlan brief]
  • NIM-22906 – Medium – Connected route sends traffic to transit
  • NIM-22921 – Highest – Failed Tasker calculations due to two comma-separed VLANs in Device JSON’s switchport access VLAN
  • NIM-22929 – High – Only a small percentage of host inventory are DNS resolved
  • NIM-22941 – Medium – GCP - VPC Peering imported routes not discovered by IPF
  • NIM-22970 – High – Prompt not detected in Check Point Maestro after using clish
  • NIM-22975 – High – Meraki - “ARP table took too long to load, for device…”
  • NIM-22998 – Medium – Arista - NTP - unable to parse offset 8.7e-05
  • NIM-23000 – Medium – Velocloud - interface ‘GE1’ - unexpected duplex
  • NIM-23024 – High – Check Point - Missing Zone Firewall Application object information
  • NIM-23034 – High – F5OS attempted CLI discovery can take a long time due to show system
  • NIM-23039 – Highest – 7.3.25 config export does not deduplicate sysDevInventory and 7.9 does not tolerate duplicates upon import
  • NIM-23047 – Highest – API service not watching for changes in dev mode
  • NIM-23051 – High – IPSec path lookups AWS to GCP
  • NIM-23052 – Highest – Memory leak on Syslog worker
  • NIM-23067 – Medium – GCP IPv6 routes from cloud router can get added into VPC IPv4 routes
  • NIM-23073 – Highest – Snapshot migrations to account for possibly two comma-separated VLANs in Device JSONs
  • NIM-23086 – High – Palo Alto OSPF neighbor / interface commands are wrong and do not work when pagination is disabled
  • NIM-23096 – High – AWS - Can’t log. The requested logger is not set yet
  • NIM-23097 – Medium – Loading snapshot - building topology takes forever
  • NIM-23102 – Medium – ipf-discovery-worker terminates with non-zero exit code on service stop
  • NIM-23157 – Highest – Disk filling up during techsupport generation due to journalctl export of discovery services logs
  • NIM-23162 – High – Full backup restore functionality breaks appliance
  • NIM-23164 – High – Palo Alto - BGP neighbourship information missing
  • NIM-23190 – High – Network diagram - Cloud site containers -> UNHANDLED PROMISE REJECTION: API_NOT_FOUND
  • NIM-23204 – Medium – ABParseError: check parsing - maybe interface on row: ‘25GE1/0/1 Force-Up 10GE 32768 3 12865 10100010 1’
  • NIM-23205 – Medium – ABParseError: Unexpected state: ‘down(transceiver type mismatch)’ (down used)
  • NIM-23206 – Highest – Checkpoint VSX - all contexts/VDOMS try to be discovered at same time
  • NIM-23207 – Highest – [PL] Fix incorrect memory limitation for an API process
  • NIM-23228 – Medium – “value” is not allowed to be empty
  • NIM-23231 – High – Parsing issues Alcatel
  • NIM-23238 – Medium – Could not validate Azure Container: Cannot read properties of null (reading ‘minReplicas’)
  • NIM-23240 – Medium – Disabling discovery tasks for specific serial number does not work for API vendors when using API+CLI
  • NIM-23245 – Medium – Azure - could not find image details for AKS gallery images
  • NIM-23247 – Medium – Azure - Could not find VNet where the NAT Gateway belongs to
  • NIM-23248 – Medium – Azure - Could not find the subnet CIDR
  • NIM-23252 – Medium – Meraki - SD-WAN - missing RBAC migration
  • NIM-23253 – Medium – Meraki - Incorrect interface labels with dual WAN link on MX
  • NIM-23256 – Highest – Very slow PSQL query getUnscannedPrefixes causing discovery issues
  • NIM-23263 – High – Huawei OS version detection failure on CE5882-48T4S-F
  • NIM-23265 – High – LDAP or SSO admin user cannot change the password of a local user
  • NIM-23266 – Medium – sys-resize-disk.sh cannot do pvresize on NVMe drives
  • NIM-23280 – High – Parsing issue : tasks/nat44
  • NIM-23284 – Medium – Bad icon for editing Device Credentials
  • NIM-23286 – High – Incorrect parsing on Cisco IOS-XE of an Extreme EXOS neighbor.
  • NIM-23320 – High – commands/paloalto/_panos/showConfigMerged DHCP relay cannot handle a subnet mask (/32) in server IP
  • NIM-23328 – Medium – Tables in new Discovery Settings are not stretched
  • NIM-23338 – Medium – Meraki - ABMapResultError: Client (id: zac12b212): “bssid” is required
  • NIM-23347 – Medium – Meraki - ABTaskMapResultError: Cannot read properties of undefined (reading ‘split’)
  • NIM-23390 – Medium – MCP error on multiple requests
  • NIM-23394 – Medium – Azure - VirtualHubConnections - request failed
  • NIM-23410 – Medium – [PE] MCP - Replace terms of service placeholder
  • NIM-23419 – High – MCP server - missing save notification and questionable UX
  • NIM-23435 – High – commands/paloalto/_panos/showConfigMerged DHCP relay cannot handle a subnet mask (/32) in server IP - Part 2
  • NIM-23440 – Medium – Fix D-link logo in feature-matrix

Tasks

Task may be associated into Epics or Stories to form complex features.

  • NIM-17738 – Low – Redesign Global Configuration layout
  • NIM-17767 – Medium – Azure - ExpressRoute in vWAN (ExpRoute Cct <-> GW) - add support
  • NIM-19422 – Medium – Add ssh1 package
  • NIM-19760 – Low – Azure/GCP - PathLookup towards VM public IP
  • NIM-19787 – Medium – Azure - ExpressRoute Gateway (vWAN-specific) - extend support
  • NIM-20372 – Medium – Convert all SCSS files in frontend related packages to pure CSS + Tailwind CSS directives
  • NIM-21117 – Medium – Disable tmpfs for /tmp in Debian 13 based appliance
  • NIM-22136 – Medium – Collect all routeTables under collector - AWS
  • NIM-22156 – Medium – Collect all subnets under collector - AWS
  • NIM-22190 – Medium – Collect SSL certificates for Azure App Gateway
  • NIM-22220 – Medium – Meraki SD-WAN - support
  • NIM-22244 – Medium – Collect SSL certificates for AWS Application & Net Load Balancer
  • NIM-22328 – Medium – joi2zod - commands/fortinet (116/3267) - SPLIT?
  • NIM-22338 – Medium – joi2zod - commands/paloalto (63/2087)
  • NIM-22355 – High – [DP] Add support for path-lookup via SDWAN
  • NIM-22523 – Medium – Collect all routeTables under collector - Azure
  • NIM-22524 – Medium – Collect all routeTables under collector - GCP
  • NIM-22535 – Medium – Collect all subnets under collector - Azure
  • NIM-22536 – Medium – Collect all subnets under collector - GCP
  • NIM-22583 – Medium – Azure - VPN Gateway (vWAN-specific) - improve support
  • NIM-22723 – Highest – [PL] Move device storing code from updater into the backend (API)
  • NIM-22724 – Medium – [PL] Create a module to interact with the Object Storage
  • NIM-22729 – Medium – [PL] Implement Discovery API service
  • NIM-22751 – Medium – [PL] Update configuration management trigger to be used via Discovery API
  • NIM-22775 – Medium – [PE] Search field in new Discovery Settings
  • NIM-22858 – Medium – Appliance upgrade UI should allow independent updates of platform and discovery
  • NIM-22881 – Medium – [PL] Create Kafka connector module
  • NIM-22908 – Medium – Restrict barrel imports from backend-shared
  • NIM-22910 – Medium – GCP Add support for classic VPN gateways
  • NIM-22919 – Medium – Introspect API token to check accessible endpoints
  • NIM-22925 – Medium – [PL] Move updater queues related to scanworker and traceworker to tasker
  • NIM-22985 – Medium – [PP] Make contract JSON schemas available in products
  • NIM-22986 – Medium – [PP] Move tasks manipulation to Tasker
  • NIM-22995 – Low – [PP] Manage Kafka topics configuration through code
  • NIM-23009 – Medium – [PP] Synchronize artifacts and events topics for consumers
  • NIM-23011 – Medium – [PP] Handle discovery finished event in Platform
  • NIM-23014 – Medium – Create pathlookup testing tool in UI
  • NIM-23048 – Medium – Update codeowners file to approve pathlookup-analyze-cli package
  • NIM-23053 – Medium – Update Disabled Discovery Tasks to new design
  • NIM-23071 – Medium – Extend Azure client to support Key Vault API requests
  • NIM-23075 – Medium – Update Manual Links to new design
  • NIM-23078 – Medium – Meraki - IPSec - implementation
  • NIM-23081 – Medium – MCP - Migrate repository from experiments
  • NIM-23082 – Medium – [PP] conditional db ingestion in updater
  • NIM-23083 – Medium – [PP] Produce life-cycle events in tasker into event-log
  • NIM-23088 – High – EOL intent checks no longer available in topology view
  • NIM-23113 – Medium – [PE] Auth strategies
  • NIM-23115 – Medium – MCP - Run Qwiet over the codebase regularly
  • NIM-23119 – Medium – D-Link DGS-1250 - Init
  • NIM-23120 – Medium – D-Link DGS-1250 - Device info
  • NIM-23121 – Medium – D-Link DGS-1250 - Basic Networking Part 1
  • NIM-23122 – Medium – D-Link DGS-1250 - Basic Networking Part 2
  • NIM-23123 – Medium – D-Link DGS-1250 - Basic Network Management
  • NIM-23144 – Medium – [09] Device Credentials - NoCredentialsBox design update
  • NIM-23155 – Medium – Make path lookup debug log more reliable
  • NIM-23178 – Medium – zod v3 to v4 - commands/aws
  • NIM-23180 – Medium – [PP] Make snapshot load work with the new flow
  • NIM-23184 – Medium – [PP] Move trace cache calculation to Tasker
  • NIM-23198 – Medium – [PP] Discovery History
  • NIM-23209 – Medium – [PP] Process wlcApList in Tasker
  • NIM-23249 – Medium – [DP] Meraki - IPSec - pathlookup/diagrams
  • NIM-23251 – Medium – Upgrade ipf-kafka to v4.2.0
  • NIM-23258 – Medium – Update dex to v2.45.1
  • NIM-23259 – Medium – Investigate CVEs
  • NIM-23260 – Medium – [PP] Read snapshot load data for specific snapshot
  • NIM-23264 – Medium – MCP - Add Qwiet security scanning to GitLab CI
  • NIM-23273 – Medium – Add Biome rule to prevent the usage of Winston in discovery tasks/commands
  • NIM-23275 – Medium – Fix prerequisites in readme file of backend-testing
  • NIM-23332 – Medium – [PP] Create a CI pipeline that validates Kafka-related package updates
  • NIM-23356 – Medium – D-Link DGS-1250 - Enable mode
  • NIM-23361 – Medium – [DP] make sure contracts NPM package can be installed in pipelines
  • NIM-23370 – Medium – MCP - Solve Qwiet security issues
  • NIM-23375 – Medium – [PE] Add UI page to IPF to enable MCP server after agreeing to license
  • NIM-23385 – Medium – Draft AIM data model specification