Change log
Date |
Change description |
---|---|
September 26, 2024 |
Changes to Hyperscale firewall policy engine limitations and mechanics. Moved the former section "CGN resource allocation firewall policy source and destination address limits" to Per hyperscale policy limits. Hyperscale firewall VDOMs do not support the FortiOS Internet Service Database (ISDB), IP Reputation Database (IRDB), and IP Definitions Database (IPDB) features, see Hyperscale firewall 7.2.9 incompatibilities and limitations. |
September 9, 2024 |
New section: Overload PBA resource quota limitation. |
August 23, 2024 |
If your FortiGate has multiple NP7 processors, depending on whether or not you are enabling EIF in hyperscale firewall policies, you may want to use the You should not operate DoS protection in monitor mode on a FortiGate licensed for hyperscale firewall, for more information in this limitation, see Hyperscale firewall 7.2.9 incompatibilities and limitations. |
August 15, 2024 |
FortiOS 7.2.9 document release. |
July 29, 2024 |
New section: Overload PBA port-reuse limitation for traffic between a single source and destination IP address. Changes to Recommended NP7 traffic distribution for optimal CGNAT performance. Corrections to the information in this document about ALG support. Added information about limitations of the |
May 29, 2024 |
Corrected information about firewall VIP support for hyperscale firewall VDOMs in Hyperscale firewall 7.2.9 incompatibilities and limitations. |
May 27, 2024 |
New section Configuring NP7 processors describes all of the options of the Updated What's new for hyperscale firewall for FortiOS 7.2.8 with some new features that were missing from this document. |
March 20, 2024 |
Changes to Recommended NP7 traffic distribution for optimal CGNAT performance. New section Carrier-Grade NAT Architecture Guide. Per-session hardware logging is not compatible with session-count DoS anomalies, see Hyperscale firewall 7.2.9 incompatibilities and limitations for more information. |
March 14, 2024 |
FortiOS 7.2.8 document release. |
February 8, 2024 |
FortiOS 7.2.7 document release. |
December 22, 2023 |
Added information about the FortiGate 4800F and 4801F and hyperscale hardware logging, see Enabling hyperscale firewall features and Configuring hardware logging. More information added to Hardware logging and Configuring hardware logging. |
September 28, 2023 |
FortiOS 7.2.6 document release. |
August 25, 2023 |
New section: Hyperscale and standard FortiOS CGNAT feature comparison. |
June 27, 2023 |
Added information about hardware logging sending multiple session start log messages if |
June 8, 2023 |
FortiOS 7.2.5 document release. |
March 20, 2023 |
Added a note about ACL policy changes made to a hyperscale firewall VDOM that is processing traffic may take longer than expected to become effective, see Hyperscale firewall 7.2.9 incompatibilities and limitations. Added more information about the NP7 |
March 3, 2023 |
NP7 hardware logging must use interfaces connected to NP7 processors to communicate with the remove log servers. This information was added to Configuring hardware logging. |
February 8, 2023 |
Improvements to Displaying IP pool usage information. |
January 31, 2023 |
FortiOS 7.2.4 document release. Corrections to SNMP queries for hardware session counts. |
November 18, 2022 |
Corrections to Creating hyperscale firewall VDOMs. |
November 10, 2022 |
FortiOS 7.2.3 document release. |
October 4, 2022 |
FortiOS 7.2.2 document release. More information and explanation added to Hyperscale firewall policy engine limitations and mechanics. |
September 28, 2022 |
FortiOS 7.2.9 Hyperscale firewall VDOMs support consolidated firewall policies. The statement about Hyperscale firewall VDOMs not supporting consolidated firewall policies has been removed from Hyperscale firewall 7.2.9 incompatibilities and limitations. |
August 17, 2022 |
Changes to the following sections to reflect that FortiOS 7.2.1 FGSP supports HA hardware session synchronization: New sections: FGSP HA hardware session synchronization and Basic FGSP HA hardware session synchronization configuration example. Changes to FGCP HA hardware session synchronization. |
August 4, 2022 |
Changes to Recommended interface use for an FGCP HA hyperscale firewall cluster and Configuring FGCP HA hardware session synchronization. Revised information about using the FortiGate-4200F/4201F and 4400F/4400F HA1, HA2, AUX1 and AUX2 interfaces. Using the following command is no longer recommended. Instead seeRecommended interface use for an FGCP HA hyperscale firewall cluster. config system npu config port-path-option set ports-using-npu {ha1 ha2 aux1 aux2} end |
August 4, 2022 |
FortiOS 7.2.1 document release. FortiOS 7.2.1 includes main branch support for FortiGates with NP7 processors and hyperscale firewall features. New sections: |