Release Notes v2.7.0

1. Introduction

This release focuses on delivering meaningful improvements across usability, performance, and security visibility, ensuring a more reliable and efficient experience for administrators and security teams.

Version v2.7.0 introduces multiple enhancements designed to refine existing workflows, improve system responsiveness, and strengthen security monitoring and management capabilities within the WAF Dashboard.

2.Release Highlights

19 Enhancements aimed at:

• Introducing new and improved features

• Optimizing existing workflows for better operational efficiency

• Enhancing system performance and stability

• Improving visibility and control over security events and configurations

DDoS Attack Page: Optimize and Enhance DDoS Attack Page

Enhancements include full-data search capabilities (including IP and request URI) and improved performance for smoother user experience, especially for 'Prophaze Enterprise' users.

Logs & Reporting : Enhanced CSV Log Download

Updated the CSV log download feature on Traffic and Explore Attacks pages to include all data available under “Show Details” or “Show” buttons. Users can now download comprehensive logs, ensuring no critical information is omitted, improving data analysis and reporting capabilities.

Enhance Off-Canvas Side Nav with Dynamic Actions and Explore Options

Updated the side navigation by replacing the single Explore button with a dropdown containing Explore IP, Explore Referrer, and Explore Request URI. Added popover icons for quick exploration, and dynamically display Block/Allow IP and Block/Allow Country buttons. Ensures action buttons remain visible at the bottom for improved usability and faster access to key actions.

Dashboard : Interactive Pie Chart on Home Page

Enhanced the home page pie chart to be interactive. Clicking on any section of the attack-type chart now displays the full list of attack logs corresponding to that type, enabling faster insights and streamlined investigation of specific attacks.

Dashboard : Attack Log Filtering by Type

Introduced filtering on attack logs by attack type, allowing users to quickly view specific attack categories such as SQL Injection. This enhancement improves data analysis efficiency and enables faster identification of relevant threats.

Dashboard : Refine Low Severity Alerts and Improve Section Layout

Removed “Suspicious traffic” and “Suspicious traffic - Header” from Low Severity alerts to reduce clutter and focus on actionable alerts. Updated alert layout to display request headers and body in separate sections, improving clarity and supporting more efficient alert investigation.

Attack Analytics: Enhanced Attack Type Display with +X

Updated the Attack Analytics table and off-canvas panel to display the first attack type followed by +X when multiple attack types exist. Hovering shows a tooltip with additional attack types, and clicking +X opens the off-canvas panel on the Rule Triggered section. This provides a concise overview while maintaining easy access to detailed attack information.

Dashboard : Add Flag Icons to Top 10 Country Graphs

Enhanced the "Top 10 Attack Originating Countries" and "Top 10 User Originating Countries" graphs by adding small flag icons next to country names. This improves visual clarity and quick identification of countries while maintaining layout integrity and cross-browser compatibility.

Dashboard : Domain Name Validation

Implemented validation for the domain_name field in False Positive API requests to ensure that only existing domains in the database are accepted. This prevents invalid data entries and improves the accuracy and reliability of API operations.

Dashboard : Dual Dashboard System for API Security Enabled Applications

Introduced a dual dashboard system allowing users to access both App Security and API Security dashboards for applications with API security enabled. Users can switch between views and set their preferred default, providing flexible access to multiple security perspectives.

Dashboard : Empty State Message for Exceptions Table

Added a clear message (“No exceptions added yet”) when the exceptions table is empty. This improves user experience by providing context and feedback, preventing confusion when no data is available.

WAF Policies: Auto-Generated Names for Unnamed Rules in Activity Log

Ensures that rules created without a user-provided name are assigned an auto-generated name based on rule attributes. This name is consistently displayed in the custom WAF policies UI and logged in the activity log, improving traceability and rule identification.

Attack page: Search Icons for Alert Types

Enhanced the Explore Attack page by adding search icons next to each alert type in the Show Details off-canvas. Clicking the icon allows users to quickly filter attacks of the same type, improving workflow efficiency and attack analysis.

Dashboard: Display Application Version

Added visibility of the application version on the dashboard, allowing users to quickly identify the current running version for easier tracking, troubleshooting, and support reference.

Explore Attacks: Enhanced CSV Download with Additional Data

Improved the CSV export on the Explore Attacks page by removing the non-informative Action column and adding additional data fields for richer insights. This enhancement ensures exported logs are more meaningful and useful for analysis and reporting.

Explore Attacks: Filter Options in Additional Details Off-Canvas

Enhanced the Additional Details off-canvas by adding filter (funnel) icons to applicable fields. Users can now apply field-level filters without clearing existing filters, while the explore icon opens a new tab pre-filtered with the selected value. This improves flexibility and efficiency during attack investigation.

Traffic & Attacks : Dynamic Filter Dropdown Updates

Improved filter behavior on Traffic and Attack pages by dynamically refreshing filter dropdown options whenever filters are added or removed. This ensures only relevant and valid options are displayed based on the current dataset, providing a more accurate and consistent filtering experience.

Dashboard: Improved Data Table Stability and Maintainability

Enhanced the dashboard data handling to improve overall stability and consistency across the dashboard. This ensures smoother interactions, reliable data display, and easier future enhancements without impacting existing functionality.

Dashboard: Terminology Update: Cluster to Region

Updated user-facing terminology across the dashboard by replacing “Cluster” with “Region” to improve clarity and align with product direction. This change enhances user understanding while keeping functionality unchanged, with the term “Cluster” retained only where technically relevant.

Known Limitations (If Any)

• This update does not introduce any known limitations and works as expected.

Impact & Compatibility

• No customer action is required.

• This release is backward compatible with existing configurations.

• Existing rules, policies, and integrations remain unaffected.