Fortinet Document Library

Version:

Version:

Version:

Version:

Version:

Version:

Version:

Version:

Version:

Version:

Version:

Version:

Version:

Version:

Version:

Version:

Version:

Version:

Version:

Version:

Version:

Version:

Version:

Version:

Version:

Version:

Version:

Version:

Version:

Version:

Version:

Version:

Version:


Table of Contents

Built-in IPS engine

Resolved engine issues

Bug ID

Description

645848

FortiOS is providing self-signed CA certificate intermittently with flow-based SSL certificate inspection.

678890

IPS engine stalled, and alarm clock crash occurs at pat_search_nocase.

687885

Inconsistent system performance with RFC 2544 Ixia BreakingPoint testing.

691338

Performance issue with download dropping to 0 Kbps and slow website access after firmware upgrade.

709968

FortiGate drops UDP port 5440 traffic after rebooting both FortiGates.

712352

Firewall goes into conserve mode and IPS consumes high memory (6.00071).

720943

UTM does not work when the GRE session is created by a specific direction.

721435

Download breaks when the policy is flow-based with deep inspection, and the NCP application is used on the host.

728492

Unable to load instagram.com from Chrome browser without changing TLS Post-Quantum Confidentiality flag from default to enable.

729249

Web filter categorizes private IP address and local URLs as Newly Observed Domain.

730137

Unable to access website using policy in flow-based mode with web filter enabled.

731459

In NGFW policy mode, disabling a security policy does not stop the current traffic from passing through the firewall.

735893

After the Chrome 92 update, in FOS 6.2, 6.4, or 7.0 running an IPS engine older than version 5.00246, 6.00099, or 7.00034, users are unable to reach specific websites in proxy mode with UTM applied. In flow mode everything works as expected.

736906

The default np-accel-mode basic seems to cause sporadic HTTPS deep inspection transaction failures with application control.

738144

The UTM function only works for a few seconds in a GRE session.

741643

Traffic may be incorrectly blocked or match the wrong security policy in NGFW policy mode.

744352

Some websites open very slow in flow mode with SSL deep inspection (5.0245 and 5.0246).

744888

FortiGate drops Server Hello when accessing a website using a flow-based policy with SSL deep inspection.

745163

The ad.doubleclick.net website is not able to open in flow mode with deep packet inspection and a security profile in Chrome.

Built-in IPS engine

Resolved engine issues

Bug ID

Description

645848

FortiOS is providing self-signed CA certificate intermittently with flow-based SSL certificate inspection.

678890

IPS engine stalled, and alarm clock crash occurs at pat_search_nocase.

687885

Inconsistent system performance with RFC 2544 Ixia BreakingPoint testing.

691338

Performance issue with download dropping to 0 Kbps and slow website access after firmware upgrade.

709968

FortiGate drops UDP port 5440 traffic after rebooting both FortiGates.

712352

Firewall goes into conserve mode and IPS consumes high memory (6.00071).

720943

UTM does not work when the GRE session is created by a specific direction.

721435

Download breaks when the policy is flow-based with deep inspection, and the NCP application is used on the host.

728492

Unable to load instagram.com from Chrome browser without changing TLS Post-Quantum Confidentiality flag from default to enable.

729249

Web filter categorizes private IP address and local URLs as Newly Observed Domain.

730137

Unable to access website using policy in flow-based mode with web filter enabled.

731459

In NGFW policy mode, disabling a security policy does not stop the current traffic from passing through the firewall.

735893

After the Chrome 92 update, in FOS 6.2, 6.4, or 7.0 running an IPS engine older than version 5.00246, 6.00099, or 7.00034, users are unable to reach specific websites in proxy mode with UTM applied. In flow mode everything works as expected.

736906

The default np-accel-mode basic seems to cause sporadic HTTPS deep inspection transaction failures with application control.

738144

The UTM function only works for a few seconds in a GRE session.

741643

Traffic may be incorrectly blocked or match the wrong security policy in NGFW policy mode.

744352

Some websites open very slow in flow mode with SSL deep inspection (5.0245 and 5.0246).

744888

FortiGate drops Server Hello when accessing a website using a flow-based policy with SSL deep inspection.

745163

The ad.doubleclick.net website is not able to open in flow mode with deep packet inspection and a security profile in Chrome.