Fortinet Document Library

Version:

Version:

Version:

Version:

Version:

Version:


Table of Contents

Resolved issues for build 6145

The following issues have been fixed in FortiGate-6000 and FortiGate-7000 FortiOS v6.0.4 build 6145. For inquires about a particular bug, please contact Customer Service & Support.

Bug ID

Description

525063 Incorrectly configuring HA with only one heartbeat interface now displays an error message.
525612 Resolved an issue that prevented IPv6 traceroute and ping from working when logged into an FIM console.
525619 Ping and traceroute sessions initiated from an FIM or FPM CLI can now be stopped.
526030 HA nodes no longer failover when processes were restarted after an antivirus database update.
526252 Resolved an issue that caused the updated process to use extra memory.
526387 The source-ip is now available when configuring per-vdom log settings.
526393 The per-vdom log override-setting option now works as expected.
526396 The source option of the execute traceroute-option command is once again available when logged into the CLI of an FIM.
527206 The execute ping-option command now works as expected from an FIM CLI.
526531 Resolved an issue that displayed Network is unreachable messages in ADVPN BFD debug messages.
543009 Resolved an issue caused by the slbd process starting out of sequence.
543382 NAT session synchronization is now enabled correctly when session-pickup is enabled for FGCP HA.
543967 The diagnose load-balance switch stats clear <eid> command no longer clears all switch stats.
545686 The diagnose load-balance switch stats clear command now successfully clears all switch stats.
544160 Resolved an issue that caused Signal 11 crashes related to long VDOM names.
544748 In an HA configuration, the backup chassis can now connect to the configured NTP server if the NTP configuration includes a source-ip setting.
545112 542562 Resolved multiple issues that sometimes prevented the configuration from being restored correctly from a backup file.
545125 Resolved an issue that blocked connections to the mgmt interface.
545601 Resolved a configuration synchronization issues with cross-FIM LAG DP ingress-trunk-mapping.
545670 Resolved an RSYNC loop that generated extra sessions.
527369 Fixed errors that occurred when generating the TAC report using the execute tac report command.
527549 Improvements to FortiGate-7000 licensing.
527709 Resolved issues that caused problems after master FPC failover.
527995 The diagnose sys confsync diffcsum command now displays information.
528704 Resolved a zombie kernel thread issue.
528760 Resolved an issue that prevented FortiToken activations.
529497 Web-proxy traffic logs now include the utmref field as expected.
531260 The diagnose sys session6 filter command can now include a policy ID.
532390 Resolved an issue that sometimes displayed error messages similar to cwEncryptKeyRstHandler failed to generate vdom xxx key.
533051 The FortiGate-7000 System Information dashboard widget no longer shows the primary FIM serial number instead of the FortiGate-7000 chassis serial number.
533124 Resolved an HA issue that incorrectly synchronized Cross-FIM LAG DP Peer-SYNC sessions between chassis.
533453 Resolved an issue that incorrectly caused an HA failover after restarting an FPM on the primary chassis when board-failover-tolerance is set to 1.
533949 Diagnose command options and output that only apply to FortiGate-7000 HA have been removed from FortiGate-6000.
534766 Resolved an issue that caused LAG ports to drop PDQ_OSW_EHP sessions.
535397 The Antivirus quarantine configuration no longer defaults to quarantine to disk.
535457 Resolved an issue caused by setting some interface speeds to 1000auto.
535549 Resolved an issue that could interrupt communication between chassis in an HA configuration after a firmware upgrade.
537732 Resolved an issue that caused the system time to be incorrect after being set manually from the CLI.
538335 After restoring the configuration of a VDOM on the management board or primary FIM, the restored VDOM configuration is now successfully synchronized to all FPCs, or FIMs and FPMs.
539876 Resolved an issue that incorrectly caused the diagnose debug flow filter command output to be broadcast.
540123 The Policy & Objects and Security Profiles pages have been removed from mgmt-vdom GUI.
540256 Resolved an issue that caused policy counters to remain zero on the FIM GUI firewall policy page.
540668 Resole several issues that caused errors when restoring the configuration from a backup file.
540848 Resolved an issue that caused the diagnose test application hatalk command to display incorrect information.
541049 Resolved an issue related to enabling scanning outgoing connections to botnet sites that caused sessions to reset.
541670 The diagnose hardware deviceinfo psu command no longer returns error messages.
547220 Resolved an issue that caused the DP processor session count to incorrectly increase because of fragmented ICMPv4 traffic.
548497 Resolved an issue that displayed ha_shm_mutex_enter error messages when enabling active-passive HA.
548969 For the FortiGate-6300, 6500 and all 7000 platforms, the crash log size has been increased to 800k.
550134 Resolved an issue that caused the hatalk process to use excessive amounts of CPU time when enabling or disabling an individual FPC or FPM.
550687 Resolved an issue that sometimes caused a disabled FPM to become the primary FPM.

Resolved issues for build 6145

The following issues have been fixed in FortiGate-6000 and FortiGate-7000 FortiOS v6.0.4 build 6145. For inquires about a particular bug, please contact Customer Service & Support.

Bug ID

Description

525063 Incorrectly configuring HA with only one heartbeat interface now displays an error message.
525612 Resolved an issue that prevented IPv6 traceroute and ping from working when logged into an FIM console.
525619 Ping and traceroute sessions initiated from an FIM or FPM CLI can now be stopped.
526030 HA nodes no longer failover when processes were restarted after an antivirus database update.
526252 Resolved an issue that caused the updated process to use extra memory.
526387 The source-ip is now available when configuring per-vdom log settings.
526393 The per-vdom log override-setting option now works as expected.
526396 The source option of the execute traceroute-option command is once again available when logged into the CLI of an FIM.
527206 The execute ping-option command now works as expected from an FIM CLI.
526531 Resolved an issue that displayed Network is unreachable messages in ADVPN BFD debug messages.
543009 Resolved an issue caused by the slbd process starting out of sequence.
543382 NAT session synchronization is now enabled correctly when session-pickup is enabled for FGCP HA.
543967 The diagnose load-balance switch stats clear <eid> command no longer clears all switch stats.
545686 The diagnose load-balance switch stats clear command now successfully clears all switch stats.
544160 Resolved an issue that caused Signal 11 crashes related to long VDOM names.
544748 In an HA configuration, the backup chassis can now connect to the configured NTP server if the NTP configuration includes a source-ip setting.
545112 542562 Resolved multiple issues that sometimes prevented the configuration from being restored correctly from a backup file.
545125 Resolved an issue that blocked connections to the mgmt interface.
545601 Resolved a configuration synchronization issues with cross-FIM LAG DP ingress-trunk-mapping.
545670 Resolved an RSYNC loop that generated extra sessions.
527369 Fixed errors that occurred when generating the TAC report using the execute tac report command.
527549 Improvements to FortiGate-7000 licensing.
527709 Resolved issues that caused problems after master FPC failover.
527995 The diagnose sys confsync diffcsum command now displays information.
528704 Resolved a zombie kernel thread issue.
528760 Resolved an issue that prevented FortiToken activations.
529497 Web-proxy traffic logs now include the utmref field as expected.
531260 The diagnose sys session6 filter command can now include a policy ID.
532390 Resolved an issue that sometimes displayed error messages similar to cwEncryptKeyRstHandler failed to generate vdom xxx key.
533051 The FortiGate-7000 System Information dashboard widget no longer shows the primary FIM serial number instead of the FortiGate-7000 chassis serial number.
533124 Resolved an HA issue that incorrectly synchronized Cross-FIM LAG DP Peer-SYNC sessions between chassis.
533453 Resolved an issue that incorrectly caused an HA failover after restarting an FPM on the primary chassis when board-failover-tolerance is set to 1.
533949 Diagnose command options and output that only apply to FortiGate-7000 HA have been removed from FortiGate-6000.
534766 Resolved an issue that caused LAG ports to drop PDQ_OSW_EHP sessions.
535397 The Antivirus quarantine configuration no longer defaults to quarantine to disk.
535457 Resolved an issue caused by setting some interface speeds to 1000auto.
535549 Resolved an issue that could interrupt communication between chassis in an HA configuration after a firmware upgrade.
537732 Resolved an issue that caused the system time to be incorrect after being set manually from the CLI.
538335 After restoring the configuration of a VDOM on the management board or primary FIM, the restored VDOM configuration is now successfully synchronized to all FPCs, or FIMs and FPMs.
539876 Resolved an issue that incorrectly caused the diagnose debug flow filter command output to be broadcast.
540123 The Policy & Objects and Security Profiles pages have been removed from mgmt-vdom GUI.
540256 Resolved an issue that caused policy counters to remain zero on the FIM GUI firewall policy page.
540668 Resole several issues that caused errors when restoring the configuration from a backup file.
540848 Resolved an issue that caused the diagnose test application hatalk command to display incorrect information.
541049 Resolved an issue related to enabling scanning outgoing connections to botnet sites that caused sessions to reset.
541670 The diagnose hardware deviceinfo psu command no longer returns error messages.
547220 Resolved an issue that caused the DP processor session count to incorrectly increase because of fragmented ICMPv4 traffic.
548497 Resolved an issue that displayed ha_shm_mutex_enter error messages when enabling active-passive HA.
548969 For the FortiGate-6300, 6500 and all 7000 platforms, the crash log size has been increased to 800k.
550134 Resolved an issue that caused the hatalk process to use excessive amounts of CPU time when enabling or disabling an individual FPC or FPM.
550687 Resolved an issue that sometimes caused a disabled FPM to become the primary FPM.