Fortinet black logo

Release Notes

Home FortiProxy 7.2.6 Release Notes
7.2.6
7.4.3
7.4.2
7.4.1
7.4.0
7.2.10
7.2.9
7.2.8
7.2.7
7.2.6
7.2.5
7.2.4
7.2.3
7.2.2
7.2.1
7.2.0
7.0.17
7.0.16
7.0.15
7.0.14
7.0.13
7.0.12
7.0.11
7.0.10
7.0.9
7.0.8
7.0.7
7.0.6
7.0.5
7.0.4
7.0.3
7.0.2
7.0.1
7.0.0
2.0.14
2.0.13
2.0.12
2.0.11
2.0.10
2.0.9
2.0.8
2.0.7
2.0.6
2.0.5
2.0.4
2.0.3
2.0.2
2.0.1
2.0.0
1.2.13
1.2.12
1.2.11
1.2.10
1.2.9
1.2.8
1.2.7
1.2.6
1.2.5
1.2.4
1.2.3
1.2.2
1.2.1
1.2.0
1.1.6
1.1.5
1.1.4
1.1.3
1.1.2
1.1.1
1.1.0
1.0.7
1.0.6
1.0.5
1.0.4
1.0.3
1.0.2
1.0.1
1.0.0

What's new

What's new

The following sections describe new features, enhancements, and changes:

JSON log support

FortiProxy 7.2.6 supports sending JSON logs to the remote syslog server.

To configure the log format as JSON:
config log syslogd setting
  set format json
end

License usage history enhancement

The License Usage History widget adds support for the Browser Isolation and Content Analysis license types. You can now view license usage history data for both the Global or Local SWG Bundle License, Browser Isolation License, and Content Analysis License.

The diagnose wad license glob-usage <period> CLI command shows the total license usage history of the Security Fabric group. The period can be seconds, minutes, hour, day, week, month, or year.

For example:

# diagnose wad license glob-usage day
days:
        furl:
                min=0, max=1, average=0
        fnbi:
                min=0, max=0, average=0
        fcas:
                min=1, max=2, average=1

Changed options for Log HTTP Transaction

Under Policy & Objects > Policy, when you create or edit a profile, the options for Log HTTP Transaction changed from Enable and Disable to All, Security Profiles, Disable.

Under Proxy Settings > Web Proxy Setting, the Http Transaction field is renamed Log HTTP Transaction and the options changed from Enable and Disable to All, Security Profiles, Disable.

FNBI enhancements

FortiProxy 7.2.6 includes the following Browser Isolation (FortiNBI) enhancements:

  • Manual configuration enhancement—When using manual detection configuration, you can now specify a FortiProxy IP address without configuring any proxy on the client machine.

  • Default isolator profile—Under Policy & Objects > Isolator Setting > Setting, you can now configure the default isolator profile and/or configure the action to perform on isolator sessions that do not match any existing policies (unmatched-session) or have missing information (defective-session).

    Alternatively, use the new configure isolator setting command to configure these options.

  • Firefox support—You can now use the FortiNBI in Firefox. When you use the FortiNBI in Firefox for the first time, you will see a prompt page with instructions to enable browser permissions to access site data.

Refer to the FortiProxy 7.2 Browser Isolation Deployment Guide for more detailed information about deploying and using the FortiNBI.

CLI changes

FortiProxy 7.2.6 includes the following CLI changes:

  • configure isolator setting—Configure the action to perform on isolator sessions that do not match any existing policies (unmatched-session) or have missing information (defective-session).

  • config log syslogd setting—The set format command includes a new option json for setting the log format as JSON.

  • diagnose wad license glob-usage <period>—Show the total license usage history of the Security Fabric group.

  • config web-proxy global—This command has the following changes:

    • The policy-category-deep-inspect option is added to enable/disable application level category policy matching for deep inspection (default = enable).

    • The values of the set log-http-transaction option changed from [enable | disable] to [all | utm | disable].

  • config firewall policy—The values of the set http-transaction-log option changed from [enable | disable] to [all | utm | disable].

  • The extended-log option is removed from the following commands:

Previous
Next

What's new

The following sections describe new features, enhancements, and changes:

JSON log support

FortiProxy 7.2.6 supports sending JSON logs to the remote syslog server.

To configure the log format as JSON:
config log syslogd setting
  set format json
end

License usage history enhancement

The License Usage History widget adds support for the Browser Isolation and Content Analysis license types. You can now view license usage history data for both the Global or Local SWG Bundle License, Browser Isolation License, and Content Analysis License.

The diagnose wad license glob-usage <period> CLI command shows the total license usage history of the Security Fabric group. The period can be seconds, minutes, hour, day, week, month, or year.

For example:

# diagnose wad license glob-usage day
days:
        furl:
                min=0, max=1, average=0
        fnbi:
                min=0, max=0, average=0
        fcas:
                min=1, max=2, average=1

Changed options for Log HTTP Transaction

Under Policy & Objects > Policy, when you create or edit a profile, the options for Log HTTP Transaction changed from Enable and Disable to All, Security Profiles, Disable.

Under Proxy Settings > Web Proxy Setting, the Http Transaction field is renamed Log HTTP Transaction and the options changed from Enable and Disable to All, Security Profiles, Disable.

FNBI enhancements

FortiProxy 7.2.6 includes the following Browser Isolation (FortiNBI) enhancements:

  • Manual configuration enhancement—When using manual detection configuration, you can now specify a FortiProxy IP address without configuring any proxy on the client machine.

  • Default isolator profile—Under Policy & Objects > Isolator Setting > Setting, you can now configure the default isolator profile and/or configure the action to perform on isolator sessions that do not match any existing policies (unmatched-session) or have missing information (defective-session).

    Alternatively, use the new configure isolator setting command to configure these options.

  • Firefox support—You can now use the FortiNBI in Firefox. When you use the FortiNBI in Firefox for the first time, you will see a prompt page with instructions to enable browser permissions to access site data.

Refer to the FortiProxy 7.2 Browser Isolation Deployment Guide for more detailed information about deploying and using the FortiNBI.

CLI changes

FortiProxy 7.2.6 includes the following CLI changes:

  • configure isolator setting—Configure the action to perform on isolator sessions that do not match any existing policies (unmatched-session) or have missing information (defective-session).

  • config log syslogd setting—The set format command includes a new option json for setting the log format as JSON.

  • diagnose wad license glob-usage <period>—Show the total license usage history of the Security Fabric group.

  • config web-proxy global—This command has the following changes:

    • The policy-category-deep-inspect option is added to enable/disable application level category policy matching for deep inspection (default = enable).

    • The values of the set log-http-transaction option changed from [enable | disable] to [all | utm | disable].

  • config firewall policy—The values of the set http-transaction-log option changed from [enable | disable] to [all | utm | disable].

  • The extended-log option is removed from the following commands:

Previous
Next