Product Updates for 25.8.0

Released: 2025-08-19

We’re happy to announce the immediate release of Forward Enterprise version 25.8.0.

See the full Forward Enterprise 25.8.0 release notes for more details.

What’s New

Integrations – DNS Zone Transfer

Forward Enterprise now supports DNS zone transfers, allowing authoritative hostname records to be imported directly from organizational DNS servers. Fully qualified domain names (FQDNs) are stored in snapshots and can be used in search results, path checks, and intent verifications, making analysis clearer and reducing confusion in networks with overlapping IP ranges. The integration supports secure transfers across multiple DNS zones, follows the DNS server’s update schedule, and gives administrators control over which zones are imported or cleared.

Security – Vulnerability Analysis with CWE and KEV Data

Vulnerability analysis now incorporates Common Weakness Enumeration (CWE) and Known Exploited Vulnerabilities (KEV) information in CVE details and key metrics. KEV data is sourced primarily from CISA and may also include vendor advisories, helping teams assess exploitation risks more accurately and prioritize remediation work.

Security – STIGs for Arista Devices

Automated verification of DISA STIG controls for Arista devices, introduced in 25.7, is now complete. This ensures consistent policy enforcement and compliance checks across Arista platforms.

Modeling – Alkira Cloud Support

Forward Enterprise can now model Alkira cloud exchange points and services, providing visibility into Alkira-based multi-cloud and hybrid network environments.

Modeling – Segment Routing v6 for Cisco IOS-XR

Modeling support now includes Segment Routing v6 (SRv6) on Cisco IOS-XR platforms, allowing more accurate representation of advanced routing designs in snapshots and path analyses.