Known Issues

This section lists the current known limitations (and available workarounds) of SonicWall Cloud Secure Edge (formerly Banyan Security)

  • Updated on May 31, 2024

Ubuntu 24.04 uses a new architecture that prevents the Banyan app from running

Limitation:

The Banyan app does not currently support Ubuntu 24.04’s new architecture. During Ubuntu 24.04 installation, the Banyan app runs a command (sudo sysctl -w kernel.apparmor_restrict_unprivileged_userns=0) to remove Ubuntu’s new security restriction so that the app can run.

Banyan Component(s):

  • Banyan app versions 3.18+ (Banyan app versions <3.17 are not supported on Ubuntu 24.04)

Workaround:

No workaround.

Intermittent network disconnection on Ubuntu 22.04 when ITP is enabled

Limitation:

ITP relies on systemd to direct traffic or internal resources for Linux based systems, including Ubuntu 22.04. Banyan has identified times when internet connectivity is disrupted on Ubuntu 22.04 devices when rapidly switching between blocked sites (as configured by ITP policies) and non-blocked sites.

The root cause analysis determined that Ubuntu 22.04’s systemd is not the latest version of systemd, and this is a known issue with the version packaged with Ubuntu 22.04. A bug report has been filed here: https://bugs.launchpad.net/ubuntu/+source/systemd/+bug/2030505

Banyan Component(s):

  • Ubuntu 22.04 registered devices with ITP enabled.

Workaround:

Use Ubuntu 24.04


Fixed Issues

ITP initiation error in orgs that have DNS interceptors listening on their DNS port as well as ITP enabled

Limitation:

When admins who have ITP enabled in their org run DNS interceptors that listens on their DNS ports, ITP doesn’t initiate (i.e., the banyanwgs is unable to bind to its port and hence does not take over DNS on the device). Currently, there is no indication (in the logs or Healthcheck) that ITP isn’t working, and the ITP health check erroneously reports that it is working.

Workaround:

Ensure that the service that is using port 53 is not running when you start ITP.

Verify using the following command:

sudo lsof -i -P -n | grep ":53$"


Can’t find what you’re looking for?

We’re happy to help. Contact our team.