Fortinet white logo
Fortinet docs logo DOCUMENT LIBRARY
Fortinet white logo
Fortinet docs logo DOCUMENT LIBRARY
Products Best Practices Hardware Guides Products A-Z
Summary
By Solution
By 4D Pillars
By Cloud
Secure Networking
Unified SASE
Security Operations
Secure SD-WAN
Secure Access Service Edge (SASE)
ZTNA
LAN Edge
Identity and Access Management
Next Generation Firewall
Public Cloud
Private Cloud
FortiCloud
Secure Networking
  • Hybrid Mesh Firewall
  • NOC Management
  • LAN
  • WAN
    • More >>
    Unified SASE
  • Single Vendor SASE
  • Cloud Network Security
  • Secure Endpoint Connectivity
  • Web Application / API Protection
    • More >>
    Security Operations
  • Security Operations Automation
  • Identity
  • Early Detection & Prevention
    • More >>
    Secure Networking
  • Hybrid Mesh Firewall
  • NOC Management
  • LAN
  • WAN
  • Communication & Surveillance
    • Unified SASE
  • Single Vendor SASE
  • Secure Endpoint Connectivity
  • Cloud Network Security
  • Cloud-Native Security
  • Web Application / API Protection
    • Security Operations
  • Security Operations Automation
  • Endpoint
  • Data Protection
  • Identity
  • Email
  • Early Detection & Prevention
  • Expert Services
  • Edge Firewall
  • Orchestration & management
  • SD Branch
  • Application Delivery
  • Single Vendor SASE
  • Secure Endpoint Connectivity
  • Secure Private Access
  • Thin Edge
  • Identity
  • Application Gateway
  • Enterprise Asset Management
  • Endpoint Agent
  • Agentless Security Posture
  • Identity
  • Wireless
  • Switching
  • Identity
  • Privilege Acccess Management
  • Next Generation Firewall
  • Orchestration & management
  • Expert Services
  • All
  • All
  • Account Management
  • SAAS Management
  • SAAS Application Security
  • Managed Services
  • Platform as a service (PAAS)
  • Other SAAS Services
    • 4D Resources
    Solution Hubs
  • 4D Pillars
  • Cloud
  • Popular Solutions

    • FortiGate-6000 and FortiGate-7000 Release Notes

    Home FortiGate / FortiOS 6.4.2 FortiGate-6000 and FortiGate-7000 Release Notes
    6.4.2
    7.0.16
    7.0.15
    7.0.14
    7.0.13
    7.0.12
    7.0.10
    7.0.5
    6.4.15
    6.4.14
    6.4.13
    6.4.12
    6.4.10
    6.4.8
    6.4.6
    6.4.2
    6.2.16
    6.2.15
    6.2.13
    6.2.12
    6.2.11
    6.2.10
    6.2.9
    6.2.7
    6.2.6
    6.2.4
    6.2.3
    6.0.18
    6.0.17
    6.0.16
    6.0.15
    6.0.14
    6.0.13
    6.0.12
    6.0.10
    6.0.9
    6.0.8
    6.0.6
    6.0.4
    5.6.14
    5.6.12
    5.6.11
    5.6.7

    Resolved issues

    Resolved issues

    The following issues have been fixed in FortiGate-6000 and FortiGate-7000 FortiOS 6.4.2 Build 1749. For inquires about a particular bug, please contact Customer Service & Support. The Resolved issues described in the FortiOS 6.4.2 release notes also apply to FortiGate-6000 and 7000 FortiOS 6.4.2 Build 1749.

    Bug ID

    Description
    607772

    Resolved an issue that caused FortiGate-6000 FPCs to enter kernel conserve mode when handling a high rate of LDAP user logins.
    611666

    Resolved issues that caused problems with displaying the FortiGate faceplate on the System > HA GUI page of the primary FortiGate of an operating cluster.
    642920

    The Network > Interfaces GUI page now correctly displays information about all supported transceivers.
    643032

    Corrected the path used by FPCs and FPMs in the secondary FortiGate-6000 or 7000 in an HA cluster to connect to FortiSandbox.

    646660

    To make sure that ICMP echo requests and reply packets always go to the same FPC or FPM, the FortiGate-6000 and 7000 now always send DP ICMP packets to the DP processor, regardless of the dp-load-distribution setting.

    647259

    Resolved an issue that caused the Cluster Status dashboard to stop updating.

    650683

    The command execute ha disconnect now works as expected.

    653682

    The command get system interface transceiver now works as expected.

    660032

    The FortiGate-6000 and 7000 startup process has been optimized to avoid data heartbeat failure during system startup.

    660989

    The command diagnose hardware ipmitool raw can now be used to factory reset the SMCs in a FortiGate-6000 or 7000.

    663706

    Resolved an issue that sometimes caused all FortiGate-6000 or 7000 interfaces to start flapping simultaneously on both chassis in an HA configuration.

    665487

    Resolved an issue the prevented a FortiGate-6000 or 7000 from initiating IPsec VPN tunnels when IPsec VPN load balancing is enabled.

    669211

    In an HA configuration, log handling allows the secondary FortiGate-6000 management board and FPCs, or FortiGate-7000 FIMs and FPMs to connect directly to remote syslog servers.

    Common vulnerabilities and exposures

    Visit https://fortiguard.com/psirt for more information.

    Bug ID

    CVE references

    645622

    FortiOS 6.4.2 for FortiGate-6000 and 7000 series is no longer vulnerable to the following CVE Reference:

    • CVE-2021-26110
    Previous
    Next

    Resolved issues

    Resolved issues

    The following issues have been fixed in FortiGate-6000 and FortiGate-7000 FortiOS 6.4.2 Build 1749. For inquires about a particular bug, please contact Customer Service & Support. The Resolved issues described in the FortiOS 6.4.2 release notes also apply to FortiGate-6000 and 7000 FortiOS 6.4.2 Build 1749.

    Bug ID

    Description
    607772

    Resolved an issue that caused FortiGate-6000 FPCs to enter kernel conserve mode when handling a high rate of LDAP user logins.
    611666

    Resolved issues that caused problems with displaying the FortiGate faceplate on the System > HA GUI page of the primary FortiGate of an operating cluster.
    642920

    The Network > Interfaces GUI page now correctly displays information about all supported transceivers.
    643032

    Corrected the path used by FPCs and FPMs in the secondary FortiGate-6000 or 7000 in an HA cluster to connect to FortiSandbox.

    646660

    To make sure that ICMP echo requests and reply packets always go to the same FPC or FPM, the FortiGate-6000 and 7000 now always send DP ICMP packets to the DP processor, regardless of the dp-load-distribution setting.

    647259

    Resolved an issue that caused the Cluster Status dashboard to stop updating.

    650683

    The command execute ha disconnect now works as expected.

    653682

    The command get system interface transceiver now works as expected.

    660032

    The FortiGate-6000 and 7000 startup process has been optimized to avoid data heartbeat failure during system startup.

    660989

    The command diagnose hardware ipmitool raw can now be used to factory reset the SMCs in a FortiGate-6000 or 7000.

    663706

    Resolved an issue that sometimes caused all FortiGate-6000 or 7000 interfaces to start flapping simultaneously on both chassis in an HA configuration.

    665487

    Resolved an issue the prevented a FortiGate-6000 or 7000 from initiating IPsec VPN tunnels when IPsec VPN load balancing is enabled.

    669211

    In an HA configuration, log handling allows the secondary FortiGate-6000 management board and FPCs, or FortiGate-7000 FIMs and FPMs to connect directly to remote syslog servers.

    Common vulnerabilities and exposures

    Visit https://fortiguard.com/psirt for more information.

    Bug ID

    CVE references

    645622

    FortiOS 6.4.2 for FortiGate-6000 and 7000 series is no longer vulnerable to the following CVE Reference:

    • CVE-2021-26110
    Previous
    Next