Resolved issues
The following issues have been fixed in FortiProxy 7.0.5. For inquiries about a particular bug, please contact Customer Service & Support.
Bug ID |
Description |
---|---|
728311 |
FPX bypassed FTP MODE command when protocol option configuration was set to block. |
752001 |
Route entry removal when |
781891 |
The LDAP search filter is lost after upgrading from FortiProxy 2.x to 7.0. |
781943 |
Disable Default Firewall Policy Action for Explicit Proxy on ZTNA rules. |
784338 |
OVF files contain FortiGate-VM references. |
785885 |
Make ZTNA deny traffic log supplies the specific reason (specific tag name, certificate wrong) when a deny happens. |
785912 |
Some fields, such as UTM features, should be hidden according to the policy type, and the
|
787895 |
WAD crash when updating traffic statistic counters. |
787977, 805228 |
Issues related to the |
789422 |
Missing ICAP request for CONNECT. |
792065 |
DLP blocks an email with multiple attachments via MAPI, but the log does not show all the blocked files. |
794165 |
TAINTED_SCALAR found in WanOpt_Explicit_Proxy |
796019 |
Access issue with Application Control or IPS. |
797270 |
|
797809 |
Super_admin is not prompted to select between RO and RW access. |
798118 |
WAD process crashes at |
799718 |
When |
800013, 802841, 807653, 808091, 808203, 808454, 817881, 817995 |
GUI issues. |
800262 |
When the |
801174 |
Add multiple HTTP request headers and extract .tar.gz file for external resource. |
801492 |
Normal ICAP suddenly becomes abnormal, instantly disconnecting all users. If the ICAP remote server is abnormal, the service connected through FortiProxy will be abnormal. |
802222 |
FSSO traffic log has group information but no user information. |
802303 |
When health check is enabled for a remote ICAP server and then IP address of the remote ICAP server is changed, FortiProxy still does the health check for the old IP address. |
802333 |
When an HTTPS connection policy match fails, it offers an
implicit deny or allow policy that does not have a |
802842 |
Remove |
802866 |
Fix certificate HA synchronization related issues. |
803159 |
The AV UTM log does not cache the correct information when FPX blocks uncompressed oversize file. |
803217 |
When multiple category proxy-address configured in one policy, the URL matches only one destination address category. |
803380 |
When converting explicit web HTTP session to captive portal session, original HTTP session not destroyed, and a new HTTP session is created after handshake. |
803452 |
Fast match flag is changed from enable to disable after changing settings of |
803794 |
Custom upgrade code to handle the loss of local certificate data during upgrade |
804689 |
ICAP |
804853 |
SSL traffic occasionally fails. |
805210 |
NTLM agentless authentication fails due to user-restriction after FSSO service down. |
805819 |
FPX as explicit web proxy did not block file transfer via ftp-over-http that had the same hash value from ems-threat-feed. |
806066 |
Avoid syncing |
806130 |
Proxy-address with host-regex match does not match all IP host URLs. |
806224 |
|
807280 |
Proxy certificate error when no policy matched. |
807332 |
When HTTP server returns a response header without second CRLF then closes the connection, WAD cannot flush the received data to client. |
808040 |
WAD could not parse the |
808043 |
Explicit proxy policy disclaimer page redirecting to incorrect URL. |
808074 |
Allow content-encoding: UTF-8 passthrough. |
808769 |
Prevent HA syncing of |
809813 |
When doing prefetching, the default 'no inspection' profile is used. In SSL URL filter, a request is exempted when the exempt check is not set. |
809813 |
Prefetch URLsreport crawl for http://www.<whatever>.com failed. |
809832 |
FPX misses local-in rules for NTP server mode. |
810179 |
Traffic shapers applied to the interface are not working as expected. |
810570, 811995 |
Web cache issues. |
810571 |
SSL exempt check condition for non-transparent policies. |
811259 |
Fix WAD leak on IPS session objects. |
812897 |
Remove unused HA session sync ( |
813261 |
When |
813317 |
In transparent mode, |
813348 |
Fail to access HTTPS virtual server after the flow control in SSL port improved. |
813693 |
Eventtype |
813769 |
WAD memory leak after enabling ICAP |
814266 |
TP policy displays explicit proxy service list, and vice-versa. |
814569 |
Communication between rlogd and miglogd uses a non-standard Netlink protocol. |
815203 |
Masquerade configuration is ignored when L7 address is used in transparent proxy. |
815313 |
WAD crash on |
816057 |
Upgrade code for |
816205 |
Uninitialized |
816913 |
Source interface in SNAT entry list is empty when it is set to |
817173 |
IP tables might not be installed properly when the SNAT table contains an FQDN with a wildcard *. |
817703 |
|
817722 |
When trying to prefetch the same URL twice, the first try succeeds with status code = 0, but the second try fails with status code = 4. |
817750 |
WAD crash when |
817979 |
When the global web-proxy configuration is changed, the |
818406 |
304 response if a cached object is generated with Vary headers and is expired. |