Changes in default values
Firewall
The default profile for ssl-ssh-profile is changed from certificate-inspection to
no-inspection.
|
Previous releases |
6.2.1 release |
|---|---|
Config firewall policy
edit [Policy ID]
set ssl-ssh-profile certificate-inspection
next
end
|
Config firewall policy
edit [Policy ID]
set ssl-ssh-profile no-inspection
next
end
|
IPsec VPN
The default value for net-device option under dynamic(dialup) tunnel has changed from disable to enable.
|
Previous releases |
6.2.1 release |
|---|---|
config vpn ipsec phase1-interface
edit [Tunnel Name]
set type dynamic
set net-device disable
next
end
|
config vpn ipsec phase1-interface
edit [Tunnel Name]
set type dynamic
set net-device enable
next
end
|
Log & Report
The default value, minimum value, and maximum value for memory log is changed.
|
Previous releases |
6.2.1 release |
|---|---|
config log memory global-setting set max-size 65536 end |
config log memory global-setting set max-size [1% of total RAM] end |
Routing
The default SD-WAN health-check interval is changed from 1 to 500 and the unit is changed from seconds to milliseconds.
|
Previous releases |
6.2.1 release |
|---|---|
config system virtual-wan-link
config health-check
edit [Health Check Name]
set interval 1
next
end
end
|
config system virtual-wan-link
config health-check
edit [Health Check Name]
set interval 500
next
end
end
|
The default link-monitor interval is changed from 1 to 500 and the unit is changed from seconds to milliseconds.
|
Previous releases |
6.2.1 release |
|---|---|
config system link-monitor
edit [Link Monitor Name]
set interval 1
next
end
|
config system link-monitor
edit [Link Monitor Name]
set interval 500
next
end
|
The default maximum number of equal cost multi-path supported is increased from 10 to 255.
|
Previous releases |
6.2.1 release |
|---|---|
Config system setting set ecmp-max-paths 10 end |
Config system setting set ecmp-max-paths 255 end |
Switch Controller
The default value for FortiLink split interface is changed from disable to enable.
|
Previous releases |
6.2.1 release |
|---|---|
config system interface
edit [FortiLink Interface]
set fortilink enable
set fortilink-split-interface disable
next
end
|
config system interface
edit [FortiLink Interface]
set fortilink enable
set fortilink-split-interface enable
next
end
|
WiFi Controller
The default darrp interval is changed from 1800(s) to 86400(s).
|
Previous releases |
6.2.1 release |
|---|---|
config wireless-controller timers
set darrp-optimize 1800
end
|
config wireless-controller timers
set darrp-optimize 86400
end
|