What's new
The following sections describe new features, enhancements, and changes:
JSON log support
FortiProxy 7.2.6 supports sending JSON logs to the remote syslog server.
To configure the log format as JSON:
config log syslogd setting
set format json
end
License usage history enhancement
The License Usage History widget adds support for the Browser Isolation and Content Analysis license types. You can now view license usage history data for both the Global or Local SWG Bundle License, Browser Isolation License, and Content Analysis License.
The diagnose wad license glob-usage <period>
CLI command shows the total license usage history of the Security Fabric group. The period can be seconds, minutes, hour, day, week, month, or year.
For example:
# diagnose wad license glob-usage day days: furl: min=0, max=1, average=0 fnbi: min=0, max=0, average=0 fcas: min=1, max=2, average=1
Changed options for Log HTTP Transaction
Under Policy & Objects > Policy, when you create or edit a profile, the options for Log HTTP Transaction changed from Enable and Disable to All, Security Profiles, Disable.
Under Proxy Settings > Web Proxy Setting, the Http Transaction field is renamed Log HTTP Transaction and the options changed from Enable and Disable to All, Security Profiles, Disable.
FNBI enhancements
FortiProxy 7.2.6 includes the following Browser Isolation (FortiNBI) enhancements:
-
Manual configuration enhancement—When using manual detection configuration, you can now specify a FortiProxy IP address without configuring any proxy on the client machine.
-
Default isolator profile—Under Policy & Objects > Isolator Setting > Setting, you can now configure the default isolator profile and/or configure the action to perform on isolator sessions that do not match any existing policies (unmatched-session) or have missing information (defective-session).
Alternatively, use the new
configure isolator setting
command to configure these options. -
Firefox support—You can now use the FortiNBI in Firefox. When you use the FortiNBI in Firefox for the first time, you will see a prompt page with instructions to enable browser permissions to access site data.
Refer to the FortiProxy 7.2 Browser Isolation Deployment Guide for more detailed information about deploying and using the FortiNBI.
CLI changes
FortiProxy 7.2.6 includes the following CLI changes:
-
configure isolator setting
—Configure the action to perform on isolator sessions that do not match any existing policies (unmatched-session) or have missing information (defective-session). -
config log syslogd setting
—Theset format
command includes a new optionjson
for setting the log format as JSON. -
diagnose wad license glob-usage <period>
—Show the total license usage history of the Security Fabric group. -
config web-proxy global
—This command has the following changes:-
The
policy-category-deep-inspect
option is added to enable/disable application level category policy matching for deep inspection (default = enable). -
The values of the
set log-http-transaction
option changed from[enable | disable]
to[all | utm | disable]
.
-
-
config firewall policy
—The values of theset http-transaction-log
option changed from[enable | disable]
to[all | utm | disable]
. -
The
extended-log
option is removed from the following commands: