Fortinet Document Library

Version:

Version:

Version:

Version:

Version:

Version:

Version:

Version:

Version:

Version:

Version:

Version:

Version:

Version:

Version:

Version:

Version:

Version:

Version:

Version:

Version:

Version:

Version:

Version:

Version:

Version:

Version:

Version:

Version:

Version:

Version:

Version:

Version:


Table of Contents

Built-in IPS engine

Resolved engine issues

Bug ID

Description

580391

Unable to create MAC address-based policies in NGFW mode.

638341

In some cases, IPS fails to get interface ID information that would result in IPS incorrectly dropping the session during static matching. This only affects NGFW mode.

676705

Custom IEC-104 application control signatures skipped after signature database update.

677834

HTTP traffic is dropped when custom proxy options are applied to a policy.

688888

BZIP2 file including EICAR is detected in the original direction of the flow mode firewall policy even though scan-bzip2 is disabled.

691196

One-arm IPS URL filter unable to block HTTPS websites.

695441

Not getting past block/override page or warning page when doing a web filter override in flow mode.

695774

Remote category flow and proxy mode wildcard matching difference

696753

Chassis has multiple IPS crashes and UTM web filter is impacted after enabling web filter content header.

696811

IPSA self test failed, disable IPSA! IPSA disabled: self test failed message appears in system event logs.

696819

IPS archive timestamp is dated from 1970.

702142

File filter monitor blocks files in flow AV if there is a scan error.

724400

Facebook.com website gives error in Firefox version 89 with flow mode and deep inspection.

Built-in IPS engine

Resolved engine issues

Bug ID

Description

580391

Unable to create MAC address-based policies in NGFW mode.

638341

In some cases, IPS fails to get interface ID information that would result in IPS incorrectly dropping the session during static matching. This only affects NGFW mode.

676705

Custom IEC-104 application control signatures skipped after signature database update.

677834

HTTP traffic is dropped when custom proxy options are applied to a policy.

688888

BZIP2 file including EICAR is detected in the original direction of the flow mode firewall policy even though scan-bzip2 is disabled.

691196

One-arm IPS URL filter unable to block HTTPS websites.

695441

Not getting past block/override page or warning page when doing a web filter override in flow mode.

695774

Remote category flow and proxy mode wildcard matching difference

696753

Chassis has multiple IPS crashes and UTM web filter is impacted after enabling web filter content header.

696811

IPSA self test failed, disable IPSA! IPSA disabled: self test failed message appears in system event logs.

696819

IPS archive timestamp is dated from 1970.

702142

File filter monitor blocks files in flow AV if there is a scan error.

724400

Facebook.com website gives error in Firefox version 89 with flow mode and deep inspection.