Fortinet black logo

Known issues

Known issues

The following issues have been identified in FortiGate-6000 and FortiGate-7000 FortiOS v6.0.4 build 8405. For inquires about a particular bug, please contact Customer Service & Support.

Bug ID

Description

523521 The Security Fabric widget does not indicate which FPC or FPM is the primary (master).

539081

SSL VPN can't listen on LACP LAG interfaces.

550313 Virtual servers with SSL offloading generate TLS errors and do not forward traffic.
495029 Tunnel mode SSL VPN is not working when using ip-range as the tunnel address pool.
513701 Local out traffic from the management board (for example a ping request) is not send from the management board to an IPsec tunnel.
513928 IPsec tunnels using Secondary IPs do not start up.
506732 On the FortiGate-6301F and 6501F, config antivirus quarantine does not allow saving quarantine files to disk.
530765 The miglogd process sometimes crashes due to a segmentation fault, recording a signal 11 error message
548305 During some testing involving UDP traffic, log messages are not recorded for dropped packets..
538851 In some configurations, outgoing packets have incorrect VLAN tags.
546813 Traffic interface status is sometimes not correctly synchronized from FIMs to FPMs.
541234 The FortiGate-7060E only shows the status of power supplies in PSU slots 1 to 4.
548923 CLI commands can show incorrect transceiver stats.
547481 EMAC VLANs do not work as expected.
549983 474410 Cannot establish management connections to FortiGate-6000 or 7000 traffic interfaces.
491439 The HA route-ttl option is not available.
475169 The updated process crashes when performing antivirus and IPS updates.
459424 The statistics appearing on the VDOM GUI page are not accurate.
551239 For a FortiGate-6000 or 7000 HA cluster with uninterruptable upgrade enabled, some sessions that should be synchronized after a firmware upgrade are not.
550664 Interface Bandwidth dashboard widgets sometimes show excessive bandwidth usage.
510818 Traffic from internal hosts to an SD-WAN health-check server is forwarded even when all WAN links are down.
510522 When one of the links in an SD-WAN interface goes down and comes up, duplicate default routes appear on the management board Routing Monitor.
511091 SD-WAN load balancing rules based on packet-loss, jitter, or latency do not work correctly.
549127 Fragmented traffic does not pass through IPsec tunnels.
514361 Outgoing IPsec VPN clear-txt traffic is sometimes load-balanced to the wrong FPCs or FPMs.
549166 BGP SNMP queries to the management IP address do not work unless connect to an individual FPC or FPM using the special management port numbers.
549806 The configuration of the dashboard may be lost after upgrading from FortiOS 5.6.6 to 6.0.4.
549567 On FortiGate-7000 platforms, the diagnose hardware deviceinfo psu command does not display any information.
550945 Upgrading the firmware from a USB key may flag the upgrade as a firmware downgrade.

Known issues

The following issues have been identified in FortiGate-6000 and FortiGate-7000 FortiOS v6.0.4 build 8405. For inquires about a particular bug, please contact Customer Service & Support.

Bug ID

Description

523521 The Security Fabric widget does not indicate which FPC or FPM is the primary (master).

539081

SSL VPN can't listen on LACP LAG interfaces.

550313 Virtual servers with SSL offloading generate TLS errors and do not forward traffic.
495029 Tunnel mode SSL VPN is not working when using ip-range as the tunnel address pool.
513701 Local out traffic from the management board (for example a ping request) is not send from the management board to an IPsec tunnel.
513928 IPsec tunnels using Secondary IPs do not start up.
506732 On the FortiGate-6301F and 6501F, config antivirus quarantine does not allow saving quarantine files to disk.
530765 The miglogd process sometimes crashes due to a segmentation fault, recording a signal 11 error message
548305 During some testing involving UDP traffic, log messages are not recorded for dropped packets..
538851 In some configurations, outgoing packets have incorrect VLAN tags.
546813 Traffic interface status is sometimes not correctly synchronized from FIMs to FPMs.
541234 The FortiGate-7060E only shows the status of power supplies in PSU slots 1 to 4.
548923 CLI commands can show incorrect transceiver stats.
547481 EMAC VLANs do not work as expected.
549983 474410 Cannot establish management connections to FortiGate-6000 or 7000 traffic interfaces.
491439 The HA route-ttl option is not available.
475169 The updated process crashes when performing antivirus and IPS updates.
459424 The statistics appearing on the VDOM GUI page are not accurate.
551239 For a FortiGate-6000 or 7000 HA cluster with uninterruptable upgrade enabled, some sessions that should be synchronized after a firmware upgrade are not.
550664 Interface Bandwidth dashboard widgets sometimes show excessive bandwidth usage.
510818 Traffic from internal hosts to an SD-WAN health-check server is forwarded even when all WAN links are down.
510522 When one of the links in an SD-WAN interface goes down and comes up, duplicate default routes appear on the management board Routing Monitor.
511091 SD-WAN load balancing rules based on packet-loss, jitter, or latency do not work correctly.
549127 Fragmented traffic does not pass through IPsec tunnels.
514361 Outgoing IPsec VPN clear-txt traffic is sometimes load-balanced to the wrong FPCs or FPMs.
549166 BGP SNMP queries to the management IP address do not work unless connect to an individual FPC or FPM using the special management port numbers.
549806 The configuration of the dashboard may be lost after upgrading from FortiOS 5.6.6 to 6.0.4.
549567 On FortiGate-7000 platforms, the diagnose hardware deviceinfo psu command does not display any information.
550945 Upgrading the firmware from a USB key may flag the upgrade as a firmware downgrade.