If you use incontrol2 to build your vpn’s between devices, it does not allow you to turn off backwards comptability mode. This mode keeps TLS 1.0 enabled which is considered a major vulnerability and creates an automatic failure during a compliance scan.
This option to disable backwards compatability (for interop with v5 firmware) has been in the standalone version for quite a while. I am surprised that this is not available with incontrol2.
On the network level pepvpn management pages, you should now see an ‘advanced settings’ option.
Selecting this will allow you to disable backward compatibility for the pepvpn configurations of that network.
Let us know if you have any further issues/requests
I am so used to manufacturer’s never listening to their customers that I was actually shocked when I saw this email. I am, and my customer(s) are super grateful for taken the time to listen and respond so quickly for something we needed.