...
Bug Id | Summary | Last Updated | Read more |
---|---|---|---|
Bug Id | Summary | Last Updated | Read more |
---|---|---|---|
961684 | When DoS policies are used and the system is under stress conditions, BGP might go down. | 2024-04-04 00:00:00 | Read more |
947935 | When web applications traffic is heavy the FortiOS offload CP hardware can be interrupted. | 2024-04-04 00:00:00 | Read more |
984696 | Network usage is not accurately reported by the get system performance status command. | 2024-04-04 00:00:00 | Read more |
1001938 | Support Kazakhstan time zone change to a single time zone, UTC+5. | 2024-04-04 00:00:00 | Read more |
1001498 | On FortiGate, TCP and UDP traffic cannot pass through with dos-offload enabled. | 2024-04-04 00:00:00 | Read more |
901296 | An error case occurs in WAD while handling the HTTP requests for an explicit proxy policy. | 2024-03-14 00:00:00 | Read more |
1001700 | If explicit webproxy uses SAML authentication and the PAC file is enabled at the same time, the browser will report a too many redirects error when trying to visit any websites. | 2024-03-14 00:00:00 | Read more |
994241 | On FortiGate 7000F using FGSP and FGCP, when TCP traffic takes an asymmetric path, the TCP ACK and data packets might be dropped in NP7. | 2024-03-14 00:00:00 | Read more |
1003879 | Incorrect SLBC traffic-related statistics may be displayed on the FortiGate 6000 or FortiGate 7000 GUI (for example, in a dashboard widgets). This can occur if an FPC or FPM is not... | 2024-03-14 00:00:00 | Read more |
957441 | A Cannot determine mkey for cmdb source entry error is received when viewing the Firmware & Registration page. | 2024-03-14 00:00:00 | Read more |
996379 | The address objects page is not loading the content. | 2024-03-14 00:00:00 | Read more |
999972 | Edits that are made to IP Exemptions in IPS Signatures and Filters more than once on the Security Profiles > Intrusion Prevention page are not saved. | 2024-03-14 00:00:00 | Read more |
825380 | When workspace configuration save mode is set to manual in the System > Settings, configuration changes made on the primary unit and then saved do not synchronize with the secondar... | 2024-03-14 00:00:00 | Read more |
998004 | When the HA management interface is set a LAG, it is not synchronized to newly joining secondary HA devices. | 2024-03-14 00:00:00 | Read more |
994019 | Hairpin is not working. | 2024-03-14 00:00:00 | Read more |
1001583 | The GUI is slow and reverts the input when multiple ports are added to a filter for destination ports. | 2024-03-14 00:00:00 | Read more |
859680 | In an HA setup with vCluster, a CMDB API request to the primary cluster does not synchronize the configuration to the secondary cluster. | 2024-03-14 00:00:00 | Read more |
1004136 | Unable to fetch more than 1000 logs using an REST API GET request. | 2024-03-14 00:00:00 | Read more |
924693 | On the Network > SD-WAN > SD-WAN Rules page, member interfaces that are down are incorrectly shown as up. The tooltip on the interface shows the correct status. | 2024-03-14 00:00:00 | Read more |
1003756 | When creating a rule on the Network > Routing Objects page, the Prefix-list is set to 0.0.0.0 0.0.0.0 when an incorrect format is entered in the Prefix field. | 2024-03-14 00:00:00 | Read more |
958429 | The webhook request header does not contain Content-type: application/json when using the JSON format. This causes Microsoft Teams to reject the request. | 2024-03-14 00:00:00 | Read more |
905050 | SSL VPN users are dropped due the samld process stopping. | 2024-03-14 00:00:00 | Read more |
947351 | The FortiSwitch topology is not loading correctly on the GUI. | 2024-03-14 00:00:00 | Read more |
951721 | The FortiGate GUI shows incorrect port statuses for managed FortiSwitches. | 2024-03-14 00:00:00 | Read more |
961142 | An interface in FortiLink is flapping with MCLAG with DAC on an OPSFPP-T-05-PAB transceiver. | 2024-03-14 00:00:00 | Read more |
1000663 | The switch-controller managed-switch ports' configurations are getting removed after each reboot. | 2024-03-14 00:00:00 | Read more |
782710 | Traffic going through a VLAN over VXLAN is not offloaded to NP7. | 2024-03-14 00:00:00 | Read more |
882862 | LAG interface members are not shutting down when the remote end interface (one member in the LAG) is down. | 2024-03-14 00:00:00 | Read more |
925554 | On the Network > Interfaces page, hardware and software switches show VLAN interfaces as down instead of up. The actual status of the VLAN interface can be verified using the comma... | 2024-03-14 00:00:00 | Read more |
1003405 | When there are over 5000 firewall users, the minimized Firewall Users widget on the dashboard does not display the donut chart or number of users. Expanding the widget to full scre... | 2024-03-14 00:00:00 | Read more |
1004985 | The webfilter cookie override trigger process had no issue observed and an override entry was created in the FortiGate, but client access was kept blocked by the old profile and th... | 2024-03-14 00:00:00 | Read more |
993785 | When logged in as an administrator with Security Fabric access permissions set to none, trying to creating a new antivirus profile on the Security Profiles > Antivirus page shows a... | 2024-03-14 00:00:00 | Read more |
980752 | Applications on the BOX cannot be started through proxy. | 2024-03-14 00:00:00 | Read more |
983897 | Traffic that should not be matching a policy is incorrectly matching an allow policy or a deny policy. | 2024-03-14 00:00:00 | Read more |
997787 | When accessing multiple destinations, received ERR_TOO_MANY_REDIRECTION error. | 2024-03-14 00:00:00 | Read more |
667201 | Moving a policy and then changing the view page will cause a blank grouping label to be displayed. | 2024-03-14 00:00:00 | Read more |
969255 | On the Policy & Objects > Services page, administrators with firewall read-write permission cannot delete service entries. | 2024-03-14 00:00:00 | Read more |
970179 | Unrelated route changes will cause the existing session to be marked dirty. | 2024-03-14 00:00:00 | Read more |
972473 | WAD crashes when using load balancing with SSL offloading. | 2024-03-14 00:00:00 | Read more |
973388 | TCP state of a session was not updated properly. | 2024-03-14 00:00:00 | Read more |
976713 | A Hello Retry Request message is not sent from the FortiGate during an SSL offload by config firewall ssl-server. | 2024-03-14 00:00:00 | Read more |
987397 | When creating or editing an entry on the Policy & Objects > Virtual IPs page in the GUI, if a subnet source filter is added after an IP range source filter in the Optional Filters ... | 2024-03-14 00:00:00 | Read more |
941524 | On the FortiView Web Sites page, the Category filter does not work in the Japanese GUI. | 2024-03-14 00:00:00 | Read more |
955836 | The firewall users widget is missing the Show all FSSO Logons button. | 2024-03-14 00:00:00 | Read more |
961576 | GUI issue when moving a policy between groups. | 2024-03-14 00:00:00 | Read more |
963028 | On the Log & Report > Forward Traffic page, the tooltip shown when hovering over a device in the Device column does not show all of the information about the device. | 2024-03-14 00:00:00 | Read more |
951292 | Security profiles created on the primary FortiGate in an HA environment are not visible on the secondary unit when switching between VDOMs. | 2024-03-14 00:00:00 | Read more |
962491 | Some long lasting TCP established sessions expire on the HA secondary unit earlier than on the primary unit. | 2024-03-14 00:00:00 | Read more |
972163 | Under heavy traffic, some sessions are not fully synchronized to the FGCP secondary unit. | 2024-03-14 00:00:00 | Read more |
972896 | No configuration error when restoring a configuration with incorrect config firewall wildcard-fqdn custom entries, resulting in an HA-unsync status. | 2024-03-14 00:00:00 | Read more |
974749 | TCP/SCTP sessions count mismatch in an HA pair in A-P mode. | 2024-03-14 00:00:00 | Read more |
985237 | Output is missing from the diagnose sys ha vlan-hb-monitor command. | 2024-03-14 00:00:00 | Read more |
564920 | IPsec VPN fails to connect if ftm-push is configured. | 2024-03-14 00:00:00 | Read more |
965915 | After an HA failover, static gateway IPsec routing fails. | 2024-03-14 00:00:00 | Read more |
966085 | IKEv2 authorization with an invalid certificate can cause tunnel status mismatch. | 2024-03-14 00:00:00 | Read more |
982599 | When a NAT port is changed between two static IPsec endpoints, the new port cannot be applied on the tunnel. | 2024-03-14 00:00:00 | Read more |
996625 | Unable to create a FortiClient dial-up VPN with certificate authentication because a peer CA certificate cannot be selected. | 2024-03-14 00:00:00 | Read more |
915404 | Proxyd did not account for all RFC-compliant SMTP pipelining cases. | 2024-03-14 00:00:00 | Read more |
955990 | Captive portal reappears repeatedly in the browser after importing user credentials. | 2024-03-14 00:00:00 | Read more |
792512 | The dashboard Session widget cannot display the correct IPv6 session count per VDOM. | 2024-03-14 00:00:00 | Read more |
943333 | When SD-WAN health-check is configured, the IPv6 interface IP address of shortcut fails to be pinged. | 2024-03-14 00:00:00 | Read more |
969671 | GRE tunnel is stuck using a non-existing devindex. | 2024-03-14 00:00:00 | Read more |
977215 | SD-WAN health check with state = dead moves between 100% and 0% packet loss while the state stays the same. | 2024-03-14 00:00:00 | Read more |
978204 | BFD/BGP dropping when outbandwidth is applied. | 2024-03-14 00:00:00 | Read more |
985539 | SD-WAN health check logs are not generated for ADVPN shortcuts. | 2024-03-14 00:00:00 | Read more |
968621 | Erroneous memory allocation resulting in unexpected behavior in csfd after upgrading. | 2024-03-14 00:00:00 | Read more |
976049 | The external threat feed connection status is Unavailable in a non-VDOM enabled FortiGate. | 2024-03-14 00:00:00 | Read more |
980595 | When there are about 40 or more extension devices connected to the Security Fabric, the Security Fabric > Fabric Connectors page is slow and unresponsive. | 2024-03-14 00:00:00 | Read more |
985198 | The IP address threat feed connection status indicates an Other Error. | 2024-03-14 00:00:00 | Read more |
988526 | Address object changes from the CLI of the root FortiGate in Security Fabric are not synchronized with downstream devices. | 2024-03-14 00:00:00 | Read more |
821240 | SSLVPNVD 11 signal failure due to attempt to read out of bounds memory. | 2024-03-14 00:00:00 | Read more |
965482 | FortiGate 200F experiences poor performance due to Marvell switch HOL mode. | 2024-03-14 00:00:00 | Read more |
981310 | Multiple VPNSSL disconnections triggered by sslvpnd failure. | 2024-03-14 00:00:00 | Read more |
899414 | On the WiFi & Switch Controller > WiFi maps page Diagnostics and Tools panel, and on the WiFi & Switch Controller > FortiSwitch Clients page, the status of the LACP interface is in... | 2024-03-14 00:00:00 | Read more |
950379 | The diagnostics of online FortiAPs shows Link Down in the trunk port Connected Via field when the FortiAP has an LACP connection to a FortiSwitch. | 2024-03-14 00:00:00 | Read more |
984404 | After upgrading the version 7.4.2, the FortiSwitch shows as not registered in the GUI. | 2024-03-14 00:00:00 | Read more |
989015 | The SWC switch port does not have all of the speed options compared to FortiSwitch. | 2024-03-14 00:00:00 | Read more |
880271 | Aggregate interface (LAG) dropping traffic. | 2024-03-14 00:00:00 | Read more |
882131 | PPPoE interface with SFP does not recover after a connectivity failure. | 2024-03-14 00:00:00 | Read more |
883606 | FortiOS allows customers to enable or disable the INDEX extension that appends the VDOM or interface index in RFC tables. | 2024-03-14 00:00:00 | Read more |
920349 | Connectivity was lost after creating new VDOM and NPU_VLINK. | 2024-03-14 00:00:00 | Read more |
929896 | Unable to configure a 9600 baud-rate on DNP3-Proxy. | 2024-03-14 00:00:00 | Read more |
930803 | Unable to monitor DSL parameters and the get sys dsl status command shows errors. | 2024-03-14 00:00:00 | Read more |
938449 | In the 4.19 kernel, when a neighbor's MAC is changed, the session and IPsec tunnel cannot be flushed from the NPU. | 2024-03-14 00:00:00 | Read more |
948490 | Changing address object setting triggers a 30 second CPU usage spike. | 2024-03-14 00:00:00 | Read more |
952284 | A FortiGate with 2G of memory enters conserve mode when a node uses 20% of the memory. | 2024-03-14 00:00:00 | Read more |
954529 | The diagnose npu sniffer stop command can lead to a traffic outage. | 2024-03-14 00:00:00 | Read more |
960643 | IP addresses with an expired quarantine period might not be removed from quarantine. | 2024-03-14 00:00:00 | Read more |
966187 | Unable to set a static ARP entry on the EMAC VLAN interface. | 2024-03-14 00:00:00 | Read more |
968134 | FortiGate 200F experiences poor performance due to Marvell switch HOL mode. | 2024-03-14 00:00:00 | Read more |
975496 | FortiGate 200F slow download and upload speeds when traversing from a 1G to a 10G interface. | 2024-03-14 00:00:00 | Read more |
977740 | Transparent-mode VDOM system switch-interface and Firewall policies deleted after a power cycle. | 2024-03-14 00:00:00 | Read more |
981685 | On the FortiGate 4400F, high CPU usage by random CPU cores in the system space. | 2024-03-14 00:00:00 | Read more |
982200 | FortiGate enters into conserve mode due to excessive memory usage by Slabs. | 2024-03-14 00:00:00 | Read more |
982651 | Security mode 802.1X authentication happens every hour on a hardware switch on with 7.2 code. | 2024-03-14 00:00:00 | Read more |
986698 | The NP7 should use the updated MAC address from the ARP table to forward traffic to the destination server. | 2024-03-14 00:00:00 | Read more |
988528 | With NGFW mixed traffic, the CPU usage goes to 99%. | 2024-03-14 00:00:00 | Read more |
995395 | Typo in the set ipv6-allow-local-in-slient-drop command. | 2024-03-14 00:00:00 | Read more |
995965 | Ports 15 and 16 are directly connected but are unable to ping each other. | 2024-03-14 00:00:00 | Read more |
1003503 | Optimizing federated auto-firmware upgrade with FortiGate, FortiSwitch, and FortiAP. | 2024-03-14 00:00:00 | Read more |
934313 | Password and Token concatenation for remote RADIUS users does not work as expected. | 2024-03-14 00:00:00 | Read more |
971641 | Issue sending activation code for FortiToken in a multi-VDOM environment with remote user authentication. | 2024-03-14 00:00:00 | Read more |
975299 | When MFA is enabled on a user and the authentication type is FortiToken, searching for a part of or the full serial number on the User & Authentication > User Definition page does ... | 2024-03-14 00:00:00 | Read more |
976338 | RADIUS accounting packet with acct-input-octets and acct-output-octets sometimes shows inconsistent behavior. | 2024-03-14 00:00:00 | Read more |
930381 | FortiGate VM heartbeat authentication fails during the upgrade to 7.2.4 or 7.2.5 when HA authentication and encryption is enabled. | 2024-03-14 00:00:00 | Read more |
951787 | On a FortiGate VM on Azure, a deadlock between pci-recovery and mlx5-recovery stalls a number of mlx5-txrxq recovery tasks. | 2024-03-14 00:00:00 | Read more |
954076 | A FortiGate VM on ESXi with FGCP clustering is unable to do VLAN traffic in DPDK mode. | 2024-03-14 00:00:00 | Read more |
977271 | After enabling DPDK on the VM, return traffic to the VLAN interface is dropped. | 2024-03-14 00:00:00 | Read more |
983705 | The Azure SDN Connector does not retrieve all of the virtual networks if the results are paginated. | 2024-03-14 00:00:00 | Read more |
999599 | On FortiGate AWS, the IPsec configuration goes missing after an upgrade due to an inconsistent table-size. | 2024-03-14 00:00:00 | Read more |
917475 | The FortiGuard category threat feed is not working as expected in proxy mode. | 2024-03-14 00:00:00 | Read more |
994749 | The urlfilter fails to block TP HTTPS traffic with an IP address hostname. | 2024-03-14 00:00:00 | Read more |
883021 | Is the FortiGate 100F RFC 2865 compliant and, if yes, why does the FortiGate not always re-authenticated after the Session-Timeout value? | 2024-03-14 00:00:00 | Read more |
957543 | The collected FortiGate syntax is missing channels for 11AX6. | 2024-03-14 00:00:00 | Read more |
965695 | Join/leave is repeated between FortiAP 421E and FortiGate 100E at multiple sites. | 2024-03-14 00:00:00 | Read more |
977351 | The SASE portal is unable to authorize a FortiAP if it initially connects to a secondary VM. | 2024-03-14 00:00:00 | Read more |
985265 | HA setup hostapd issue during stress test. | 2024-03-14 00:00:00 | Read more |
1014624 | On the FortiGate 1800F, the 40G interface's status is DOWN after upgrading to 7.2.8. | 2024-03-14 00:00:00 | Read more |
1012337 | Administrator authentication using RADIUS is not working with Cisco ACS. | 2024-03-14 00:00:00 | Read more |
1012518 | Some FortiGate models on NP6 platforms experience kernel panics due to certain traffic conditions after upgrading to 7.2.8. | 2024-03-14 00:00:00 | Read more |
940541 | A permanent MAC address is used instead of an HA virtual MAC address during automation. | 2024-03-14 00:00:00 | Read more |
988944 | On the Fabric Management page, the HA Secondary lists both primary and secondary FortiGate units. | 2024-03-14 00:00:00 | Read more |
1006024 | On FortiOS, administrator accounts using upd-read-write cannot open the FortiGuard page. | 2024-03-14 00:00:00 | Read more |
1025652 | On the FortiGate 7000E platform, after upgrading firmware from 7.2.8 to 7.4.x, the CLI of the secondary FIM and the FPMs in the secondary chassis of an FGCP cluster may display Thi... | 2024-03-14 00:00:00 | Read more |
789237 | Use the loopback IP address as source for Security Fabric connections. | 2024-03-14 00:00:00 | Read more |
987501 | On FortiGate, the GRE tunnel stops sending traffic after an upgrade. | 2024-03-14 00:00:00 | Read more |
968421 | IPsec experiences traffic loss when inbound-dscp-copy and npu-offload are enabled on FFW-4401F. | 2024-03-14 00:00:00 | Read more |
974746 | Changing interface settings causes the cluster to reboot and an error condition occurs in the kernel. | 2024-03-14 00:00:00 | Read more |
983102 | FortiGate uses one core causing CPU usage to go to 99%. | 2024-03-14 00:00:00 | Read more |
983019 | HA synchronization issue with FortiAP causes connectivity flapping when managed by a secondary VM. | 2024-03-14 00:00:00 | Read more |
989429 | FortiOS6.0.18 is no longer vulnerable to the following CVE Reference:CVE-2024-21762 | 2024-02-07 00:00:00 | Read more |
993323 | FortiOS7.0.14 is no longer vulnerable to the following CVE Reference: CVE-2024-23113 | 2024-02-07 00:00:00 | Read more |
990868 | Wireless client connection fails with 4-way handshake invalid 2/4 message. | 2024-02-07 00:00:00 | Read more |
1001104 | Some FortiAP 231F units show join/leave behavior after the FortiGate is upgraded to 7.2.7. | 2024-02-07 00:00:00 | Read more |
872493 | Disk logging files are cached in the kernel, causing high memory usage. | 2024-02-07 00:00:00 | Read more |
1000001 | A secondary HA unit may go into conserve mode when joining an HA cluster if the FortiGate's configuration is large. | 2024-02-07 00:00:00 | Read more |
984478 | The SD-WAN Rules GUI page keeps loading. | 2024-02-07 00:00:00 | Read more |
979811 | The ZTNA channel is not cleaned when overwriting old lls entries. | 2024-02-07 00:00:00 | Read more |
978473 | Explicit proxy policy function issues when matching external-threat feed categories. | 2024-02-07 00:00:00 | Read more |
977641 | In transparent mode, multicast packets are not forwarded through the bridge and are dropped. | 2024-02-07 00:00:00 | Read more |
969101 | Administrators with custom permissions cannot load the Managed FortiAP page, even if they have WiFi read-write permissions. | 2024-02-07 00:00:00 | Read more |
949352 | The user.radius checksum is the same in both HA units, but the GUI shows a different checksum on the secondary and the HA status is out of sync. | 2024-02-07 00:00:00 | Read more |
962681 | In a three member A-P cluster, the dhcp lease list (execute dhcp lease-list) might be empty on secondary units. | 2024-02-07 00:00:00 | Read more |
984852 | The HA/AUX ports are not enabled on boot up when using the NPU path option. | 2024-02-07 00:00:00 | Read more |
950012 | IPsec tunnels stuck on NP6XLite spoke drop the ESP packet. | 2024-02-07 00:00:00 | Read more |
968218 | When the IPsec tunnel destination MAC address is changed, tunnel traffic may stop. | 2024-02-07 00:00:00 | Read more |
954565 | Although there is enough disk space for logging, IPS archive full message is shown. | 2024-02-07 00:00:00 | Read more |
967692 | The received traffic counter is not increasing when the traffic is HTTPS with webfilter. | 2024-02-07 00:00:00 | Read more |
987261 | In the webfilter content block UTM log in proxy inspection mode, sentbyte and rcvdbyte are zero. | 2024-02-07 00:00:00 | Read more |
956423 | In HA, the primary unit may sometimes show a blank GUI screen. | 2024-02-07 00:00:00 | Read more |
937065 | On the WiFi & Switch Controller > FortiSwitch Ports page, FortiSwitch ports that are exported to non-root VDOMs are incorrectly shown as down.This is a GUI issue that does not affe... | 2024-02-07 00:00:00 | Read more |
960707 | Egress shaping does not work on NP when applied on the WAN interface. | 2024-02-07 00:00:00 | Read more |
962153 | A port that uses a copper-transceiver does not update the link status in real-time. | 2024-02-07 00:00:00 | Read more |
1000108 | Guest-management administrators cannot see or print guest user passwords in plain text; the password is masked as ENC XXXX string. | 2024-02-07 00:00:00 | Read more |
982156 | The URL local/user category rating result has only one best match category (longest URL pattern match), and other matched local/user categories cannot be chosen even if the categor... | 2024-02-07 00:00:00 | Read more |
986656 | On the HA primary unit, the npu-session list shows many sessions, but the npu-session state shows 0. | 2024-02-07 00:00:00 | Read more |
940511 | In some cases, carrier-grade NAT is dropping traffic. | 2024-02-07 00:00:00 | Read more |
888655 | FortiGate queries system DNS for A <Root> and AAAA <Root> servers. | 2024-02-07 00:00:00 | Read more |
925801 | Custom Images are not seen on Web Filter block replacement page for HTTP traffic in flow mode. | 2024-02-07 00:00:00 | Read more |
927360 | Fnbamd CA cache is not refreshed when Fortinet_Wifi_CA changes, which causes some websites can not be visited under proxy mode. | 2024-02-07 00:00:00 | Read more |
1011674 | Upgrading from 7.0.14 GA to 7.2.8 GA from an HA secondary node fails with BIOS security level 2. The new image is unrecognized as un-certified and aborts the upgrade process. The H... | 2024-02-07 00:00:00 | Read more |
989929 | An error condition occurs in the kernel on FWF-40F/60F models when WiFi stations connect to SSID on the local radio. | 2024-02-07 00:00:00 | Read more |
1000884 | SCM tools prevent users from logging into FortiGate using SSH after an upgrade. | 2024-02-07 00:00:00 | Read more |
959918 | FortiOS7.0.14 is no longer vulnerable to the following CVE Reference: CVE-2023-38545 | 2023-12-20 00:00:00 | Read more |
937375 | Unable to delete malware threat feeds using the CLI. | 2023-12-20 00:00:00 | Read more |
781163 | FortiView Sources page is unable to display historical data from FortiAnalyzer due to Fail to retrieve FortiView data error. | 2023-12-20 00:00:00 | Read more |
939013 | SNMP walk of the entire MIB fails when the configuration has split-port and a large number of interfaces. | 2023-12-20 00:00:00 | Read more |
977634 | FortiOS High Security Alert block page reference URL is incorrect. | 2023-12-20 00:00:00 | Read more |
934197 | Selected applications will disappear after searching or filtering for other applications in override. | 2023-12-20 00:00:00 | Read more |
760292 | The date in the graph of Last 7 Days traffic statistics for the policy is incorrect. | 2023-12-20 00:00:00 | Read more |
959065 | Once a traffic shaper is applied to a traffic shaping firewall policy, the counters should not clear when deleting or creating a traffic shaper. | 2023-12-20 00:00:00 | Read more |
966466 | On an FG-3001F NP7 device, packet loss occurs even on local-in traffic. | 2023-12-20 00:00:00 | Read more |
981283 | NAT64/46 HTTP virtual server does not work as expected in the policy. | 2023-12-20 00:00:00 | Read more |
787604 | Transceiver information in unavailable for FPM/FIM2 ports in the GUI. | 2023-12-20 00:00:00 | Read more |
969530 | Blade unexpected reboot occurs on FG-5001D. | 2023-12-20 00:00:00 | Read more |
885427 | Suggest showing the SFP status information on the faceplate of FGR-60F/60F-3G4G devices. | 2023-12-20 00:00:00 | Read more |
925388 | After updating, the CMDB may not start up properly. This issue causes problems with both the GUI and CLI. | 2023-12-20 00:00:00 | Read more |
964386 | GUI dashboards show all the IPv6 sessions on every VDOM. | 2023-12-20 00:00:00 | Read more |
966702 | List of security profiles it is not displayed correctly in the GUI. | 2023-12-20 00:00:00 | Read more |
972887 | On the Policy & Objects > Firewall Policy page, searching for automatically created addresses that have IP addresses does not show any matching results. | 2023-12-20 00:00:00 | Read more |
975403 | FortiGate removes the ? from custom replacement messages. | 2023-12-20 00:00:00 | Read more |
979508 | The Operation Technology category cannot be turned on or off from the GUI. The option to enable/disable the Operational Technology category on application control profiles when hov... | 2023-12-20 00:00:00 | Read more |
983422 | A GTP profile cannot be applied to policy using the GUI.Workaround: use the CLI to apply the GTP profile. | 2023-12-20 00:00:00 | Read more |
989512 | When the number of users in the Firewall User monitor exceeds 2000, the search bar is no longer be displayed. | 2023-12-20 00:00:00 | Read more |
971075 | The last interface belonging to the non-root management VDOM is not visible when accessing the GUI using the HA management interface. | 2023-12-20 00:00:00 | Read more |
850252 | Restoring a specific VDOM configuration from the GUI does not restore the complete configuration. | 2023-12-20 00:00:00 | Read more |
975264 | Hyperscale should not support threat feed addresses with the negate option. | 2023-12-20 00:00:00 | Read more |
976972 | New primary can get stuck on failover with HTTP CC sessions. | 2023-12-20 00:00:00 | Read more |
977376 | FG-4201F has a 10% performance drop during a CPS test case with DoS policy. | 2023-12-20 00:00:00 | Read more |
981918 | Hyperscale policy loses the cgn-log-server-grp setting with log mode per-mapping when the system reboots. | 2023-12-20 00:00:00 | Read more |
782966 | IPS sensor GUI shows All Attributes in the filter table when IPS filters with default values are selected in the CLI. | 2023-12-20 00:00:00 | Read more |
866413 | Traffic over GRE tunnel over IPsec tunnel, or traffic over IPsec tunnel with GRE encapsulation is not offloaded on NP7-based units. | 2023-12-20 00:00:00 | Read more |
897871 | GRE over IPsec does not work in transport mode. | 2023-12-20 00:00:00 | Read more |
944600 | CPU usage issues occurred when IPsec VPN traffic was received on the VLAN interface of an NP7 vlink. | 2023-12-20 00:00:00 | Read more |
970703 | FortiGate 6K and 7K models do not support IPsec VPN over vdom-link/npu-vlink. | 2023-12-20 00:00:00 | Read more |
1003830 | IPsec VPN tunnel phase 2 instability after upgrading to 7.4.2 on the NP6xlite platform.Workaround: disable replay detection on the phase 2 interface on both sides of the IPsec VPN:... | 2023-12-20 00:00:00 | Read more |
900546 | DNS proxy may resolve with an IPv4 address, even when pref-dns-result is set to IPv6, if the IPv4 response comes first and there is no DNS cache. | 2023-12-20 00:00:00 | Read more |
910678 | CPU usage issue in WAD caused by a high number of devices being detected by the device detection feature. | 2023-12-20 00:00:00 | Read more |
922093 | CPU usage issue in WAD caused by source port exhaustion when using WAN optimization. | 2023-12-20 00:00:00 | Read more |
933002 | Memory usage issue in WAD caused by a rare error condition. | 2023-12-20 00:00:00 | Read more |
965966 | An error condition occurred in WAD due to heavy HTTP video traffic when using a video filter profile with deep inspection enabled. | 2023-12-20 00:00:00 | Read more |
964424 | REST API GET /ips/sensor/{name} adds extra space to locations, severity, protocol, os, and application field values. | 2023-12-20 00:00:00 | Read more |
974921 | When creating or editing a rule on the Network > Routing Objects page, if the weight is set to 0 the changes are not saved. | 2023-12-20 00:00:00 | Read more |
989840 | Issue with PIM neighborship over an IPSec tunnel with NP offload. | 2023-12-20 00:00:00 | Read more |
966740 | On the Security Fabric > Security Rating page, the format of the Unused Policies test Last Used date is incorrect. | 2023-12-20 00:00:00 | Read more |
968585 | The automation stitch triggered by the FortiAnalyzer event handler does not work as expected. | 2023-12-20 00:00:00 | Read more |
972921 | The comments are not working as expected in the threat feed list for the domain threat feed. | 2023-12-20 00:00:00 | Read more |
951827 | SSL VPN client certificate verification failed after importing the VDOM user peer CA certificate into the global VDOM. | 2023-12-20 00:00:00 | Read more |
955550 | Unexpected behavior in cu_acd and fortilinkd is causing the CPU to handle the majority of the traffic instead of the NPU. | 2023-12-20 00:00:00 | Read more |
988335 | If a user's network has more than 20 MAC addresses in a NAC environment, it is possible for the CAPWAP to come down. | 2023-12-20 00:00:00 | Read more |
910364 | CPU usage issue in miglogd caused by constant updates to the ZTNA tags. | 2023-12-20 00:00:00 | Read more |
921604 | On the FortiGate 601F, the ports (x7) have no cables attached but the link LEDs are green. | 2023-12-20 00:00:00 | Read more |
953692 | SNMP stops working when a second server is added. The FortiGate stops answering SNMP requests to both servers. | 2023-12-20 00:00:00 | Read more |
956697 | On NP7 platforms, the FortiGate maybe reboot twice when upgrading to 7.4.2 or restoring a configuration after a factory reset or burn image. This issue does not impact FortiOS func... | 2023-12-20 00:00:00 | Read more |
964465 | Administrator with read-write permission for WiFi and read permission for network configuration cannot create SSIDs. | 2023-12-20 00:00:00 | Read more |
968618 | After the upgrade to 7.4, the NP7 L2P is dropping packets at the L2TI module. | 2023-12-20 00:00:00 | Read more |
971404 | Session expiration does not get updated for offloaded traffic between a specific host range. | 2023-12-20 00:00:00 | Read more |
971466 | FGR 60F faces packet loss with a Cisco switch directly connected to it. | 2023-12-20 00:00:00 | Read more |
977231 | An error condition occurred in fgfm caused by an out-of-band management configuration. | 2023-12-20 00:00:00 | Read more |
952828 | The automatic patch upgrade feature overlooks patch release with the Feature label. Consequentaly, a FortiGate running 7.4.2 GA does not automatically upgrade to 7.4.3 GA.Workaroun... | 2023-12-20 00:00:00 | Read more |
999324 | FortiGate Pay-As-You-Go or On-demand VM versions cannot upload firmware using the System > Firmware & Registration > File Upload page.Workaround: Use the Latest Firmware or All Upg... | 2023-12-20 00:00:00 | Read more |
967146 | Upon expiration, the SSL certificate is removed from GUI but not from the CLI. | 2023-12-20 00:00:00 | Read more |
972391 | RADIUS group is not properly displayed as used. | 2023-12-20 00:00:00 | Read more |
975689 | On the User & Authentication > Guest Management page, the Print option does not work if the Guest User Print Template replacement message has been customized. | 2023-12-20 00:00:00 | Read more |
982573 | Dashboard > Assets & Identities page shows devices and interfaces from all VDOMs. | 2023-12-20 00:00:00 | Read more |
938382 | OpenStack Queens FortiGate VM HA heartbeat on broadcast is not working as expected. | 2023-12-20 00:00:00 | Read more |
967134 | An interrupt distribution issue may cause the CPU load to not be balanced on the FG-VM cores. | 2023-12-20 00:00:00 | Read more |
977110 | Interface disappears after enabling unicast-status on HA. | 2023-12-20 00:00:00 | Read more |
978021 | VNI length is zero in the GENEVE header when in FTP passive mode. | 2023-12-20 00:00:00 | Read more |
634781 | Unable to customize replacement message for FortiGuard category in web filter profile. | 2023-12-20 00:00:00 | Read more |
883938 | Flooded wireless STA traffic seen in L2 tunneled VLAN (FG-1800F). | 2023-12-20 00:00:00 | Read more |
949682 | Intermittent traffic disruption observed in cw_acd caused by a rare error condition. | 2023-12-20 00:00:00 | Read more |
964757 | Clients randomly unable to connect to 802.1X SSID when FortiAP has a DTLS policy enabled. | 2023-12-20 00:00:00 | Read more |
972093 | RADIUS accounting data usage is different between the bridge and tunnel VAP. | 2023-12-20 00:00:00 | Read more |
998578 | On FortiGate devices running 7.4.2 or 7.4.3, managed FortiAP-W2 devices might randomly go offline.Workaround: Reboot the FortiAP-W2 device, or use version 7.4.1 or earlier on the F... | 2023-12-20 00:00:00 | Read more |
827497 | Unsupported file samples are submitted to FortiSandbox for analytics. | 2023-12-20 00:00:00 | Read more |
845954 | Flow AV does not have a limit of how much memory it can use when buffering files for scanning. | 2023-12-20 00:00:00 | Read more |
911872 | When connecting to FortiGate Cloud Sandbox, the connection status takes a long time to update and shows as unreachable. | 2023-12-20 00:00:00 | Read more |
921175 | Make improvements to the AV engine when handling outbreak prevention queries. | 2023-12-20 00:00:00 | Read more |
948182 | FortiSandbox side panel statistics only shows only statistics for root/management VDOM. | 2023-12-20 00:00:00 | Read more |
948371 | Scanunit should no longer submit known infected files to FortiSandbox. | 2023-12-20 00:00:00 | Read more |
961077 | Advanced Threat Protection Statistics dashboard is not increasing counters (AV). | 2023-12-20 00:00:00 | Read more |
962261 | Send Files to FortiSandbox for Inspection AV profile setting does not work as expected. | 2023-12-20 00:00:00 | Read more |
820481 | For firewall policies using inspection-mode proxy, some HTTP/2 sessions may be invalidly detected as unknown application. | 2023-12-20 00:00:00 | Read more |
952307 | FG-400F sees increased packet loss when using an application list in the policy. | 2023-12-20 00:00:00 | Read more |
911830 | DLP file type "AND" sensor cannot block the file when it is a DOCX file. | 2023-12-20 00:00:00 | Read more |
922311 | DLP sensor cannot block MS-Office XML files, but can block MS-Office files when setting the profile type as message. | 2023-12-20 00:00:00 | Read more |
926592 | Outlook cannot connect to the Exchange server once the DLP profile protocol is set to MAPI. | 2023-12-20 00:00:00 | Read more |
782713 | Value overflow in destination interface of WAD traffic log. | 2023-12-20 00:00:00 | Read more |
926178 | Post-upgrade, explicit proxy policies may mismatch when an HTTP CONNECT request or TLS SNI of a HTTPS session partially matches to a policy with deep inspection enabled. | 2023-12-20 00:00:00 | Read more |
665662 | Using the append command to add entries to a policy object that mixes the use of wildcard and regular entries can result in an error to the policy during reboot. This applies to in... | 2023-12-20 00:00:00 | Read more |
786317 | The service field in the traffic log shows the configured custom service name, even for traffic that does not match the FQDN configured in the custom service. | 2023-12-20 00:00:00 | Read more |
865137 | After enabling the ssl-http-location-conversion option in the virtual server, it does not take effect. | 2023-12-20 00:00:00 | Read more |
921658 | SD-WAN IPsec egress traffic shaping is not working when traffic offloading is enabled on an NP7 unit. | 2023-12-20 00:00:00 | Read more |
924588 | Unable to access a real server using VIP with a custom cipher. | 2023-12-20 00:00:00 | Read more |
925630 | Unable to unset http-supported-max-version to start using HTTP/2. | 2023-12-20 00:00:00 | Read more |
929109 | Exported firewall policy is missing the negate option for source, destination, and service fields. | 2023-12-20 00:00:00 | Read more |
939734 | When there are two to seven thousand addresses on the Policy & Objects > Virtual IPs page, clicking Suggestions in the Map to field makes the GUI unresponsive. | 2023-12-20 00:00:00 | Read more |
940360 | FortiGate adds deleted tcp-portrange and udp-portrange after a reboot. | 2023-12-20 00:00:00 | Read more |
942605 | FortiGate accepts the ha-mgmt-intf-only local-in policy from FortiManager, even though the ha-mgmt-status is not enabled. | 2023-12-20 00:00:00 | Read more |
950775 | Traffic matches incorrect central SNAT rule when performing NAT46 in NGFW policy mode. | 2023-12-20 00:00:00 | Read more |
950889 | Session clashes occur when incoming traffic matches an expected session and undergoes SNAT, but the SNAT port is already occupied by another session. | 2023-12-20 00:00:00 | Read more |
951684 | The maximum size of the server certificate for virtual server should be displayed. | 2023-12-20 00:00:00 | Read more |
952552 | When using HTTP1, the TLS handshake from the proxy to the real server does not include the SNI. | 2023-12-20 00:00:00 | Read more |
952761 | BGP and other traffic is getting dropped when IPv4 and IPv6 access lists are applied. | 2023-12-20 00:00:00 | Read more |
953907 | Virtual wire pair interface drops all packet if the prp-port-in/prp-port-out setting is configured under system npu-setting prp on FG-101F. | 2023-12-20 00:00:00 | Read more |
957749 | An action=accept should not be shown in a traffic log when UDP traffic dropped by IPS. The utmaction field is also missing in this scenario. | 2023-12-20 00:00:00 | Read more |
962984 | Server load balancing health monitor does not work with Patroni (PostgreSQL cluster) when content matching is configured. | 2023-12-20 00:00:00 | Read more |
963071 | Drops in multicast traffic, caused by a change in multicast routing (PIM), may occur at the start of multicast communication after upgrading. | 2023-12-20 00:00:00 | Read more |
886287 | The IPsec ESP error log is generated with the wrong interface. | 2023-12-20 00:00:00 | Read more |
892600 | IPv6 static route is removed from the management VDOM. | 2023-12-20 00:00:00 | Read more |
938475 | Memory usage issue occurs when multiple threads try to access a VLAN group. | 2023-12-20 00:00:00 | Read more |
939119 | Statistics displayed in the Session Rate dashboard widget do not match the statistics displayed from the command line. | 2023-12-20 00:00:00 | Read more |
939171 | The Global Sessions does not match the CLI output. | 2023-12-20 00:00:00 | Read more |
941971 | Dashboard widgets for CPU, Memory, Session, and Session Rate show usage as 0% on root and non-root VDOMs. | 2023-12-20 00:00:00 | Read more |
947570 | In an FGCP cluster, the secondary unit cannot reply to the SNMP query while using the management IP. | 2023-12-20 00:00:00 | Read more |
651648 | When a large number of addresses are present (over 17 thousand), searching for an object on the Policy & Objects > Addresses page takes around 20 to 30 seconds to display results. | 2023-12-20 00:00:00 | Read more |
900818 | The GUI should not show the interface speed in the SSL VPN interface tooltip. | 2023-12-20 00:00:00 | Read more |
924159 | A time difference is noticed in the FortiGate GUI and command line when the GUI is refreshed or when logged in on a new tab. | 2023-12-20 00:00:00 | Read more |
926410 | While creating new address from firewall policy, the address slide takes around five seconds to open up. | 2023-12-20 00:00:00 | Read more |
940183 | No IP results appear when using the search bar of the Assets & Identities dashboard. | 2023-12-20 00:00:00 | Read more |
940592 | Dashboard > IPsec Monitor column selections are not saved across a page refresh. | 2023-12-20 00:00:00 | Read more |
941723 | An error occurred when attempting to perform interface migration from a physical interface containing a VLAN interface to an aggregate interface. | 2023-12-20 00:00:00 | Read more |
945221 | The GUI does not show any transceiver information until running get system interface transceiver in the CLI. | 2023-12-20 00:00:00 | Read more |
954356 | When connected to the FortiGate GUI on a mobile phone, the table content on some pages like Network > Interfaces, Policy & Objects > Firewall Policy, and WiFi & Switch Controller >... | 2023-12-20 00:00:00 | Read more |
904117 | When walking through the session list to change the ha_id, some dead sessions could be freed one more time. | 2023-12-20 00:00:00 | Read more |
924671 | FG-200F in HA's management interface is not responding after a reboot. | 2023-12-20 00:00:00 | Read more |
925269 | Configuration is out-of sync when external feed connectors are applied to a policy. | 2023-12-20 00:00:00 | Read more |
929156 | Asymmetric traffic through one of the FGSP members is allowed, even when the session is in a TCP SYN sent state. | 2023-12-20 00:00:00 | Read more |
937246 | An error condition occurred while forwarding over a VRRP address, caused by the creation of a new VLAN. | 2023-12-20 00:00:00 | Read more |
940400 | SCTP traffic is not forwarded back to the session owner (FGSP asymmetric traffic with IPS , NAT mode, and SCTP). | 2023-12-20 00:00:00 | Read more |
942504 | Temporary network interruption occurs after disabling standalone-config-sync. | 2023-12-20 00:00:00 | Read more |
949230 | Unable to send a file to a remote HA member when synchronizing a configuration. | 2023-12-20 00:00:00 | Read more |
953202 | The hasync process is stuck at 99.9% on one or both cluster members after a failover. | 2023-12-20 00:00:00 | Read more |
954098 | The set auto-firmware-upgrade disable setting is not synchronized between FGCP members. | 2023-12-20 00:00:00 | Read more |
955555 | Unexpected traffic flow occurs after FGSP is enabled between clusters. | 2023-12-20 00:00:00 | Read more |
963951 | Unable to modify the pingserver-flip-timeout once vcluster is enabled. | 2023-12-20 00:00:00 | Read more |
965938 | Standalone configuration synchronization fails to synchronize because of interface subnet firewall address objects. | 2023-12-20 00:00:00 | Read more |
907259 | High CPU usage due to the IPS engine, causing high latency on the network. | 2023-12-20 00:00:00 | Read more |
916175 | Make improvements to the IPS engine when handling a rare buffer overflow case. | 2023-12-20 00:00:00 | Read more |
949662 | Interface policy logs show the external facing IP instead of the actual source. | 2023-12-20 00:00:00 | Read more |
897867 | IPsec VPN between two FortiGates (100F and 60F) experiences slow throughput compared to the available underlay bandwidth. | 2023-12-20 00:00:00 | Read more |
926002 | Incorrect traffic order in IPsec aggregate redundant member list after upgrade. | 2023-12-20 00:00:00 | Read more |
926052 | For DHCP-over-IPsec, sometimes the client does not send a delete after the DHCP SA. | 2023-12-20 00:00:00 | Read more |
930278 | Setting loopback-asymroute disable in the phase 1 configuration pushes down the loopback interface index as tunnel's bound_if, causing traffic route lookup failure. | 2023-12-20 00:00:00 | Read more |
942495 | IKEv2 connection issue related to the order of policies using different user groups. | 2023-12-20 00:00:00 | Read more |
945367 | Disabling src-check (RPF) on the parent tunnel is not inherited by ADVPN shortcuts. | 2023-12-20 00:00:00 | Read more |
945873 | Inconsistency of mode-cfg between phase 1 assigned IP address and destination selector addition. | 2023-12-20 00:00:00 | Read more |
950445 | After a third-party router failover, traffic traversing the IPsec tunnel is lost. | 2023-12-20 00:00:00 | Read more |
951765 | Shortcut created from parent tunnel interface does not inherit MSS value and may face fragmentation. | 2023-12-20 00:00:00 | Read more |
954911 | IPv6 firewall address IP prefix object is invisible on accessible networks in the GUI. | 2023-12-20 00:00:00 | Read more |
955552 | Split DNS not pushed because the split tunnel is not recognized. | 2023-12-20 00:00:00 | Read more |
957412 | Authentication fails since the EAP proxy cannot get groups by the hostname of FortiGate in the NAS-ID RADIUS attribute. | 2023-12-20 00:00:00 | Read more |
958516 | Acct-Output-Octets are wrapped to 32-bit on RADIUS accounting stop. | 2023-12-20 00:00:00 | Read more |
960212 | IPsec traffic is unidirectional when vpn-id-ipip and offloading are enabled, and the tunnel VRF is greater than 63. | 2023-12-20 00:00:00 | Read more |
961305 | FortiGate is sending ESP packets with source MAC address of port1 HA virtual MAC address. | 2023-12-20 00:00:00 | Read more |
961992 | The buffer and description queue limitation of Marvell switch ports causes a performance limitation. | 2023-12-20 00:00:00 | Read more |
903841 | When an administrator login fails, the event log shows that the login was successful. | 2023-12-20 00:00:00 | Read more |
905849 | The log settings disk usage graph should show the usage data in the legend's format. | 2023-12-20 00:00:00 | Read more |
920376 | Content disarm and reconstruction (CDR) files are not consistent in the log view. | 2023-12-20 00:00:00 | Read more |
931924 | SSL VPN web mode login history entries are not seen when logs are being sent to FortiAnalyzer. | 2023-12-20 00:00:00 | Read more |
933650 | When the DNS server does not provide the IPv6 (AAAA record) for the NTP server FQDN, FortiGate NTP shows that the IPv6 server is unresolved -- unreachable, which is not true. | 2023-12-20 00:00:00 | Read more |
938396 | The following intrusion was observed: in the alert mail refers to another field in the anomaly log. | 2023-12-20 00:00:00 | Read more |
945287 | Cloud logging settings are not retained when the FortiGate language setting is Japanese. | 2023-12-20 00:00:00 | Read more |
949001 | The quarantine-log enable setting changed to disable after restoring a backup configuration. | 2023-12-20 00:00:00 | Read more |
950768 | When a GUI login fails due to exceed_limit, logged in successfully appears in the system event log. | 2023-12-20 00:00:00 | Read more |
952509 | The UUID is used instead of the external resource name in the Threat feed updated system event log. | 2023-12-20 00:00:00 | Read more |
953667 | Override setting under multi-VDOM mode may cause the FortiGate to stop sending logs to FortiAnalyzer or syslog after switching to non-VDOM mode. | 2023-12-20 00:00:00 | Read more |
961244 | Icons in logs evaluations and policies are no longer displayed. | 2023-12-20 00:00:00 | Read more |
967100 | When FortiAnalyzer Cloud is chosen as log location, archived data cannot be downloaded for intrusion prevention. | 2023-12-20 00:00:00 | Read more |
970412 | Virus/Botnet AV log for machine learning detection hyperlink returns Object Moved Permanently. | 2023-12-20 00:00:00 | Read more |
806556 | Unexpected behavior in WAD when the ALPN is set to http2 in the ssl-ssh-profile. | 2023-12-20 00:00:00 | Read more |
919781 | Unexpected behavior in WAD when there are multiple LDAP servers configured on the FortiGate. | 2023-12-20 00:00:00 | Read more |
938502 | Original source IP is not preserved for transparent proxy rule after upgrading. | 2023-12-20 00:00:00 | Read more |
940149 | Inadvertent traffic disruption caused by WAD when it receives an HTTP2 data frame payload on a dead stream. | 2023-12-20 00:00:00 | Read more |
943998 | Unble to access website ( https://ec***.qu***.com/me***) when using a proxy with DPI. | 2023-12-20 00:00:00 | Read more |
947359 | The newly implemented one-way server will set its port to null when closing. | 2023-12-20 00:00:00 | Read more |
947814 | Too many redirects on TWPP after the second KRB keytab is configured. | 2023-12-20 00:00:00 | Read more |
955006 | SNI check is not working when set to inspect all ports. | 2023-12-20 00:00:00 | Read more |
958464 | Unexpected behavior in WAD when building a debug URL. | 2023-12-20 00:00:00 | Read more |
971489 | When cloud-communication is disabled, WAD still connects to productapi.fortinet.com. | 2023-12-20 00:00:00 | Read more |
974307 | An error condition occurs in WAD while coping a file directory. | 2023-12-20 00:00:00 | Read more |
944723 | The /firewall/vip API does not recognize custom SSL cipher suites. | 2023-12-20 00:00:00 | Read more |
951384 | API responses for PBR provides incorrect value if address groups are used in PBR. | 2023-12-20 00:00:00 | Read more |
951411 | Inconsistent handling of web filter profile actions in API transactions. | 2023-12-20 00:00:00 | Read more |
894795 | MP-BGP EVPN source address shows 127.0.0.1, while the loopback interface is with a different address. | 2023-12-20 00:00:00 | Read more |
897918 | When the local traffic is using SD-WAN and the reply is coming on a different interface, the reply is ignored. | 2023-12-20 00:00:00 | Read more |
926525 | Routing information changed log is being generated from secondary in an HA cluster. | 2023-12-20 00:00:00 | Read more |
932092 | API call returns recursive next-hop for the gateway address. | 2023-12-20 00:00:00 | Read more |
934273 | Support GR helper mode (peer) for BGP. | 2023-12-20 00:00:00 | Read more |
935370 | SD-WAN performance SLA tcp-connect probes clash with user sessions. | 2023-12-20 00:00:00 | Read more |
935886 | SD-WAN packet duplication feature in force mode suddenly stops duplicating and starts to duplicate again once the FortiGate is rebooted. | 2023-12-20 00:00:00 | Read more |
938500 | Status of OSPF adjacency is Loading on spokes while Full on the hub side. | 2023-12-20 00:00:00 | Read more |
944351 | When using the policy match tool, the Incoming Interface dropdown does not list SD-WAN member interfaces. | 2023-12-20 00:00:00 | Read more |
946783 | Unable to set OSPF interface IP in the GUI. | 2023-12-20 00:00:00 | Read more |
951397 | Inconsistent GUI output with unusual characters showing up in the SD-WAN rule list settings and the edit SD-WAN rule page. | 2023-12-20 00:00:00 | Read more |
952543 | Reply TCP traffic for inbound local session uses a different egress interface than the originating traffic | 2023-12-20 00:00:00 | Read more |
952908 | Locally originated type 5 and 7 LSAs' forward address value is incorrect. | 2023-12-20 00:00:00 | Read more |
953744 | Connected VLAN routes are getting removed after an HA failover. | 2023-12-20 00:00:00 | Read more |
954100 | Packet loss status in SD-WAN health check occur after an HA failover. | 2023-12-20 00:00:00 | Read more |
957049 | If the router community-list type is expanded and changed to standard, this causes a community-list error. | 2023-12-20 00:00:00 | Read more |
957627 | Learned BGP through routes are not withdrawn on the spoke after the EBGP neighborship is down between the hub and third party device. | 2023-12-20 00:00:00 | Read more |
963561 | When establishing an IPsec tunnel between FortiGate peers using OSPF to exchange routes, the FortiGate sends a stub LSA with a 32-bit netmask. | 2023-12-20 00:00:00 | Read more |
964182 | IPsec traffic with vpn-id-ipip is egressing with the wrong VRF when offloading is enabled. | 2023-12-20 00:00:00 | Read more |
965752 | After HA monitored interface fails over, SD-WAN intermittently does not follow route-map-preferable. | 2023-12-20 00:00:00 | Read more |
908489 | When one of the downstream FortiGate VM's license is invalid, the root FortiGate will be automatically logged out from accessing the Firmware & Registration page. | 2023-12-20 00:00:00 | Read more |
932935 | External connector to VMware 8.0 with verify certificate enabled will fail. | 2023-12-20 00:00:00 | Read more |
938980 | HTTP 400 errors observed using SDN connector to query AKS clusters if local administrator is disabled. | 2023-12-20 00:00:00 | Read more |
947634 | Security Fabric widget shows the serial number instead of the hostname for a secondary FortiGate in HA. | 2023-12-20 00:00:00 | Read more |
950624 | Renaming conflicted Fabric objects on the root FortiGate does not synchronize the changed Fabric objects to the downstream FortiGate. | 2023-12-20 00:00:00 | Read more |
958396 | The number of log IDs under one automation trigger is limited to 16. | 2023-12-20 00:00:00 | Read more |
968749 | The GUI is slow when editing or trying to authorize devices in the Security Fabric section. | 2023-12-20 00:00:00 | Read more |
975393 | Security Fabric messages change after upgrading. | 2023-12-20 00:00:00 | Read more |
923518 | When SSL VPN web mode is disabled, SAML external browser login requests should be blocked. | 2023-12-20 00:00:00 | Read more |
941676 | Japanese key input does not work correctly during RDP in SSL VPN web mode. | 2023-12-20 00:00:00 | Read more |
957406 | OS checklist for SSL VPN in FortiOS does not include macOS Sonoma 14. | 2023-12-20 00:00:00 | Read more |
958430 | If the password renew template is modified with a non-default password renew policy, FortiClient cannot read the HTML page correctly, and returns the error, Server may not be reach... | 2023-12-20 00:00:00 | Read more |
703374 | Long DAC-type cable is added to default media type on 10G port on FG-100F. | 2023-12-20 00:00:00 | Read more |
816790 | Console printed DSL related error messages when disconnecting the managed FortiSwitch and connecting to the FortiGate again. | 2023-12-20 00:00:00 | Read more |
904834 | FortiGate and FortiManager have different definitions for the value of poe-detection-type on S108EF platform. | 2023-12-20 00:00:00 | Read more |
931694 | Enhance FortiLink event logs for FortiGate-FortiSwitch event log translation. | 2023-12-20 00:00:00 | Read more |
945779 | FortiGate CPU VM increases due to the FortiLink process. | 2023-12-20 00:00:00 | Read more |
949377 | NAC policy cannot match the MAC address with a specific VLAN. The NAC policy needs to be deleted and re-createed for it to work again. | 2023-12-20 00:00:00 | Read more |
953918 | FortiGate nac_segment is not showing assigned dynamic VLAN on FortiSwitch ports. | 2023-12-20 00:00:00 | Read more |
961997 | Unable to get interface descriptions for the FortiLink ports by using OID 1.3.6.1.2.1.2.2.1.2. | 2023-12-20 00:00:00 | Read more |
699379 | Host protection engine (HPE) enchantments should be applied to NP6XLite platforms. | 2023-12-20 00:00:00 | Read more |
860460 | On a redundant interface, traffic may drop with some NPU-offload enabled policies when the interface is not initialized properly. | 2023-12-20 00:00:00 | Read more |
893143 | SFP interfaces that are set to 1000auto are not negotiating on the secondary device. | 2023-12-20 00:00:00 | Read more |
900663 | Refactor the time zone feature to use the IANA time zone database. | 2023-12-20 00:00:00 | Read more |
900791 | The X1 port is always up with FCLF8522P2BTLFTN transceiver. | 2023-12-20 00:00:00 | Read more |
907657 | FortiGate does not perform a disk scan automatically when autorun-log-fsck is enabled. | 2023-12-20 00:00:00 | Read more |
908831 | Unable to set upstream interface without setting the delegated IAID first for IPv6 interface under delegated mode. | 2023-12-20 00:00:00 | Read more |
910829 | Degraded traffic bandwidth for download passing from 10G to 1G interfaces. | 2023-12-20 00:00:00 | Read more |
912092 | FortiGate does not send ARP probe for UDP NP-offloaded sessions. | 2023-12-20 00:00:00 | Read more |
915585 | Optimize memory usage, which causes the SLAB memory to increase, in kernel 4.19. | 2023-12-20 00:00:00 | Read more |
916493 | Fail detection function does not work properly on X1 and X2 10G ports. | 2023-12-20 00:00:00 | Read more |
923473 | Sometimes, the configuration cannot be backed up to an FTP server. | 2023-12-20 00:00:00 | Read more |
926546 | ICMP and UDP traffic over GRE is not offloaded on NP7 platforms. | 2023-12-20 00:00:00 | Read more |
931604 | The FortiGate checksum changes and the FortiManager Backup Mode device status becomes out-of-sync. | 2023-12-20 00:00:00 | Read more |
934115 | Administrator can no longer view or edit the VPN settings in the GUI with system:none permissions. | 2023-12-20 00:00:00 | Read more |
938174 | ARP issue with VXLAN over IPsec and Soft Switch. | 2023-12-20 00:00:00 | Read more |
938539 | The cmdbsvr process is stuck, and is not pushing configurations made in the GUI or CLI. | 2023-12-20 00:00:00 | Read more |
939935 | High CPU usage caused by DHCP packets. | 2023-12-20 00:00:00 | Read more |
939947 | FG-1100E SFP interface of port 23 and 24 with transceiver status is down after upgrading. | 2023-12-20 00:00:00 | Read more |
940504 | Loading of the Toss Bank application is delayed or gets stuck on iPhones with hyperscale CGNAT (NAT64). | 2023-12-20 00:00:00 | Read more |
940752 | FortiGate does not allow tagged VLAN 0 packets. | 2023-12-20 00:00:00 | Read more |
942893 | When DHCP IP reservation is edited from the DHCP dashboard widget, the changes are not retained. | 2023-12-20 00:00:00 | Read more |
943026 | Changes to per-IP shaper settings are not reflected on offloaded sessions in NP7 platforms. | 2023-12-20 00:00:00 | Read more |
943090 | Buffer and description queue limitation of Marvell switch port will cause a performance limitation. | 2023-12-20 00:00:00 | Read more |
943615 | When cmdbsvr receives a request to update the version number, it also receives a copy of the query, but this copy is not freed. | 2023-12-20 00:00:00 | Read more |
943948 | FortiGate as L2TP client is not working with Cisco ASR as L2TP server. | 2023-12-20 00:00:00 | Read more |
945426 | FortiGate ports are not in a configured state after the connected switch reboots. | 2023-12-20 00:00:00 | Read more |
946413 | Temperature sensor value missing for FG-180xF, FG-420xF, and FG-440xF platforms. | 2023-12-20 00:00:00 | Read more |
946714 | Unexpected reboot caused by a rare error condition for FG-VM. | 2023-12-20 00:00:00 | Read more |
947127 | Kernel TCP sessions do no timeout after receiving a legitimate RST and the system goes into conserve mode. | 2023-12-20 00:00:00 | Read more |
949481 | The tx_collision_err counter in the FortiOS CLI keeps increasing on both 10G SFP+ X1 and X2 interfaces. | 2023-12-20 00:00:00 | Read more |
949975 | SNMP value for OID 1.3.6.1.4.1.12356.101.12.2.2.1.5 returns the wrong value. | 2023-12-20 00:00:00 | Read more |
952279 | The TCP handshake is interrupted when any of the UTM profiles are enabled. | 2023-12-20 00:00:00 | Read more |
954439 | SNMP does not respond if a VRF is set on the interface. | 2023-12-20 00:00:00 | Read more |
955021 | When signal 11 is sent to httpsd process using diagnose sys kill 11 <PID>, httpsd does not restart. The GUI displays a Service unavailable message. GUI access can be restored by re... | 2023-12-20 00:00:00 | Read more |
955074 | MSS clamping is not working on VXLAN over IPsec after upgrading. | 2023-12-20 00:00:00 | Read more |
955798 | Interface LED from panel indicates the wrong status. | 2023-12-20 00:00:00 | Read more |
955998 | The traffic is dropped when auto-asic-offload is enabled and passing through a VLAN associated with a 10G redundant interface. | 2023-12-20 00:00:00 | Read more |
956391 | On FG-10xE, when using ports 13 to 16 as virtual switch LAN ports, auto speed is not supported. | 2023-12-20 00:00:00 | Read more |
956413 | FG-1101E ports with AVAGO AFBR-5710PZ transceiver failed to come up after upgrading. | 2023-12-20 00:00:00 | Read more |
956980 | Batch lastlog does not show any errors for password-policy misconfiguration. | 2023-12-20 00:00:00 | Read more |
957147 | FortiGate as DNS server does not resolve domains in the local database on new VDOM. | 2023-12-20 00:00:00 | Read more |
957714 | Memory usage issue occurs when multiple threads try to access a VLAN group. | 2023-12-20 00:00:00 | Read more |
957846 | High CPU usage caused by DHCP packets. | 2023-12-20 00:00:00 | Read more |
958157 | The GeoIP file should close appropriately after opening or using mmap to share memory. | 2023-12-20 00:00:00 | Read more |
960563 | An error condition occurred in the kernel caused by a rare condition while using the GRE tunnels. | 2023-12-20 00:00:00 | Read more |
963597 | Multiple configuration settings are missing after restoring the VDOM. | 2023-12-20 00:00:00 | Read more |
966761 | SNMP OID 1.3.6.1.2.1.4.34.1.5 ipAddressPrefix is not fully implemented. | 2023-12-20 00:00:00 | Read more |
969230 | FEC does not take effect on X5 - X8 ports when running at 25G ULL mode on FG-601F. | 2023-12-20 00:00:00 | Read more |
871181 | FG-3401E link is not coming up using DAC cables after upgrading. | 2023-12-20 00:00:00 | Read more |
896937 | Port channel is down after upgrading the FG-1101E. | 2023-12-20 00:00:00 | Read more |
907169 | WPA2-Enterprise SSID should support EAP-TLS authentication for PKI users that are configured with multi-factor authentication through a RADIUS server. | 2023-12-20 00:00:00 | Read more |
915998 | FortiToken mobile push with ACME gives an untrusted certificate in iOS application. | 2023-12-20 00:00:00 | Read more |
932989 | In some cases, the HA connection is removed and its memory is freed, but it is still read/written in the following process. | 2023-12-20 00:00:00 | Read more |
947299 | Global DH parameter does not modify the SSH connection key exchange. | 2023-12-20 00:00:00 | Read more |
955939 | PKI users should pass certificate-based authentication over WPA2-Enterprise SSID. | 2023-12-20 00:00:00 | Read more |
961496 | CPU usage issue caused by signature update for device identification. | 2023-12-20 00:00:00 | Read more |
903037 | A false positive SSL VPN login token error message is generated after a successful connection. | 2023-12-20 00:00:00 | Read more |
950235 | IPv6 multicast packets are triggering a hardware checksum failure error message on the console. | 2023-12-20 00:00:00 | Read more |
953760 | FG-VM is unable to respond to the load balancer's health probe correctly. | 2023-12-20 00:00:00 | Read more |
956460 | FortiGate cannot detect a log disk in some new Azure instances. | 2023-12-20 00:00:00 | Read more |
957299 | On a FortiGate ARM-OCI, after adding more than one network interface card and rebooting, the interface cards are not kept in order. | 2023-12-20 00:00:00 | Read more |
957886 | GCP OS log in integration issues occur in FortiGate deployment. | 2023-12-20 00:00:00 | Read more |
959859 | FG-VM64-AZURE SDN connector does not retry requests to management.azure.com if they fail. | 2023-12-20 00:00:00 | Read more |
965668 | Interfaces are brought down by azd, and traffic is disrupted until manually disabling and enabling the interfaces on the Azure VM. | 2023-12-20 00:00:00 | Read more |
968740 | Unexpected behavior in awsd caused by tags with an empty value on AWS instances while adding a new AWS Fabric connector. | 2023-12-20 00:00:00 | Read more |
970201 | Unexpected reboot caused by a rare error condition for FG-VM. | 2023-12-20 00:00:00 | Read more |
954541 | In WANOpt transparent mode, WAN optimization does not keep the original source address of the packets. | 2023-12-20 00:00:00 | Read more |
923548 | Newly added local URL filter entry cannot be moved using drag-and-drop. | 2023-12-20 00:00:00 | Read more |
945011 | URL filter IP address block is not honored by the enhanced policy lookup tool. | 2023-12-20 00:00:00 | Read more |
947676 | Web filter profile setting changes the order of FortiGuard web filter categories. | 2023-12-20 00:00:00 | Read more |
801730 | The move function in the CLI does not work for mpsk-profile and mpsk-group. | 2023-12-20 00:00:00 | Read more |
896104 | An error condition occurred in the kernel when the FortiAP and SSID are in the same software switch. | 2023-12-20 00:00:00 | Read more |
938840 | Excessive MEM POOLuse_up_cnt observed on secondary unit in an HA environment. | 2023-12-20 00:00:00 | Read more |
941691 | Managed FortiSwitch detects multiple MACs using the same IP address. | 2023-12-20 00:00:00 | Read more |
949857 | Captive portal appears each time after a channel change or if roaming performed (Cisco ISE with FortiGate and FortiAP). | 2023-12-20 00:00:00 | Read more |
951792 | Clients connected to certain FortiAPs do not have internet access. | 2023-12-20 00:00:00 | Read more |
952889 | PMKID should be removed when an Android device is disconnected by the RADIUS CoA DM request with Acct-Session-Id. | 2023-12-20 00:00:00 | Read more |
958314 | AeroScout agent is not working. | 2023-12-20 00:00:00 | Read more |
967158 | WPA2-Enterprise with a Windows NPS server is not working after upgrading the firmware to FortiOS 7.4.1. | 2023-12-20 00:00:00 | Read more |
973935 | On the WiFi & Switch Controller > Managed FortiAPs page, there is an error when changing from a single 5G profile to a dual 5G profile on the FortiAP 831F. | 2023-12-20 00:00:00 | Read more |
918279 | Traffic does not match a simple ZTNA firewall policy when the external interface configured on a ZTNA server is a member of a SD-WAN zone being used in the same ZTNA firewall polic... | 2023-12-20 00:00:00 | Read more |
956553 | FortiOS6.4.15 is no longer vulnerable to the following CVE Reference: CVE-2024-23112 | 2023-12-20 00:00:00 | Read more |
956107 | On the FortiGate 400F and 600F, the buffer and description queue limitation of the Marvell switch port causes a performance limitation. | 2023-12-20 00:00:00 | Read more |
964415 | FortiOS7.0.14 is no longer vulnerable to the following CVE Reference:CVE-2023-44487 | 2023-12-20 00:00:00 | Read more |
966706 | FortiOS7.2.8 is no longer vulnerable to the following CVE Reference:CVE-2023-48784 | 2023-12-20 00:00:00 | Read more |
956473 | A split brain condition occurs in an HA cluster when failover-hold-time is enabled. | 2023-12-20 00:00:00 | Read more |
951373 | Traffic shaping does not match the correct queue for outbound traffic when the class-id range exceeds the [2, 7] limit, which applies to egress shaping. | 2023-10-26 00:00:00 | Read more |
943949 | The GUI does not allow parentheses, (), to be used in the interface description. | 2023-10-26 00:00:00 | Read more |
950868 | Traffic is not forwarded on L2 peer to keep FGSP with an available L2 connection. | 2023-10-26 00:00:00 | Read more |
953167 | Access to console and SSH is lost due to a specific configuration. | 2023-10-26 00:00:00 | Read more |
952270 | IPS logs for VIP traffic shows external IP as a destination for some signatures. | 2023-10-26 00:00:00 | Read more |
922064 | Firewall becoming unresponsive to DPD/IKE messages, causing IPsec VPNs to drop. | 2023-10-26 00:00:00 | Read more |
949086 | Policy route is not matching ESP traffic. | 2023-10-26 00:00:00 | Read more |
954614 | IPsec phase 2 negotiation fails with failed to create dialup instance, error 22 error message. | 2023-10-26 00:00:00 | Read more |
906896 | Make OSPFv3 update the translator role and translated Type-5 LSA when the ASBR table is updated. | 2023-10-26 00:00:00 | Read more |
928152 | FortiGate generates two OSPF stub entries for the same prefix after upgrading from 6.4 to 7.0. | 2023-10-26 00:00:00 | Read more |
920391 | Non-management VDOM is not allowed to set a source-ip for config system external-resource. | 2023-10-26 00:00:00 | Read more |
950157 | SSL VPN connected/disconnected endpoint event log can be in the wrong sequence. | 2023-10-26 00:00:00 | Read more |
952860 | During a handshake when FortiClient sends a larger-than-MTU hello message, the packet is fragmented by IP layer and dropped by the FortiGate. | 2023-10-26 00:00:00 | Read more |
859393 | SNMP poll for fgExplicitProxyRequests returns 0. | 2023-10-26 00:00:00 | Read more |
925647 | Memory usage issue caused by repetitive log messages. Affected platforms: FG-100xF. | 2023-10-26 00:00:00 | Read more |
948460 | Enabling NP7 offloading is causing packet drops when using a shaping profile. | 2023-10-26 00:00:00 | Read more |
950010 | Alarm for high PECI temperature observed despite less CPU activity. | 2023-10-26 00:00:00 | Read more |
940126 | Upgrading a FGT-3401E generates BPDUs, which cause the switch to disable the port. | 2023-10-26 00:00:00 | Read more |
868994 | FortiGate receives FSSO user in the format of HOSTNAME$. | 2023-10-26 00:00:00 | Read more |
932085 | In an Azure cluster, the NTP source-ip6 (IPv6) is synchronized while the source-ip (IPv4) is not. | 2023-10-26 00:00:00 | Read more |
929110 | The strict option for sni-server-cert-check is behaving the same as if it is set to enable, and logs are not generated upon SNI mismatch with the CN or SAN. | 2023-10-26 00:00:00 | Read more |
945871 | DNAT does not work on software switch in explicit mode. | 2023-10-26 00:00:00 | Read more |
863665 | Denied explicit proxy keeps using the Fortinet_CA_SSL default certificate, even if the configured certificate is different. | 2023-10-26 00:00:00 | Read more |
892207 | Unable to authorize a newly discovered FortiAP from the WiFi Controller > Managed FortiAPs page. | 2023-10-26 00:00:00 | Read more |
916236 | GUI policy table cannot display sequence grouping section titles correctly if they are duplicated in the global label. | 2023-10-26 00:00:00 | Read more |
932112 | EAP in IKEv2 dialup IPsec connection does not work with two firewall polices, each using both the IKEv2 interface and user group. | 2023-10-26 00:00:00 | Read more |
903908 | Unexpected behavior in forticron process when restoring a VDOM configuration. | 2023-10-26 00:00:00 | Read more |
890912 | FortiLink VLAN interface should be renamed from default to _default after upgrading to 7.0.10. | 2023-10-26 00:00:00 | Read more |
920223 | An error condition occurred post-upgrade due to an invalid filter log ID. | 2023-10-26 00:00:00 | Read more |
950899 | Unexpected behavior after upgrading Azure FortiGate to 7.0.11, leading to continuous rebooting. | 2023-10-26 00:00:00 | Read more |
952029 | FortiOS7.0.13 is no longer vulnerable to the following CVE Reference: CVE-2023-46717 | 2023-10-26 00:00:00 | Read more |
958311 | Firewall address list may show incorrect error for an unresolved FQDN address. This is purely a GUI display issue; the FQDN address can be resolved by the FortiGate and traffic can... | 2023-09-28 00:00:00 | Read more |
638799 | The DHCPv6 client does not work with vcluster2. | 2023-09-28 00:00:00 | Read more |
941944 | CPU usage data displayed in the FortiGate 6000 GUI is actually CPU usage data for the management board. CPU usage data displayed in the FortiGate 7000 GUI is actually the CPU usage... | 2023-09-28 00:00:00 | Read more |
946943 | On 6K and 7K platforms, the management VDOM GUI should not show the WiFi & Switch Controller menu. | 2023-09-28 00:00:00 | Read more |
948388 | On the FortiGate 6000s, missing image update command in the CLI: execute load-balance update image. | 2023-09-28 00:00:00 | Read more |
948750 | When EMAC VLAN interfaces are removed spontaneously from the configuration, TCP traffic through their underlying VLAN interface fails. | 2023-09-28 00:00:00 | Read more |
949175 | During FIM failover from FIM2 to FIM1, the NP7 PLE sticks on a cache invalidation, stopping traffic. | 2023-09-28 00:00:00 | Read more |
949240 | SLBC special ports do not match the local-in policy's management path. | 2023-09-28 00:00:00 | Read more |
951193 | SLBC for FortiOS 7.0 and 7.2 uses different FGCP HA heartbeat formats. Because of the different heartbeat formats, you cannot create an FGCP HA cluster of two FortiGate 6000s or 70... | 2023-09-28 00:00:00 | Read more |
954881 | Image synchronization failure happened after a factory reset on FortiGate 7000E/F . | 2023-09-28 00:00:00 | Read more |
978241 | FortiGate does not honor worker port partition when SNATing connections using a fixed port range IP pool. | 2023-09-28 00:00:00 | Read more |
950582 | Traffic not passing across the VDOM link. | 2023-09-28 00:00:00 | Read more |
958066 | Observed TCP sessions timing out with a single hyperscale VDOM configuration after loading image from BIOS. | 2023-09-28 00:00:00 | Read more |
901621 | Setting the interface configuration inbandwidth or outbandwidth commands stops traffic flow. | 2023-09-28 00:00:00 | Read more |
947240 | FortiGate is not able to resolve ARPs of few hosts due to their ARP replies not reaching the primary FPM. | 2023-09-28 00:00:00 | Read more |
963600 | SolarWinds is unable to negotiate encryption. A Negotiation failed: no matching host key type found error message appears in the log. | 2023-09-28 00:00:00 | Read more |
967171 | The speed 1000auto setting on ports X1 to X4 disappears after upgrading from 7.2.5 to 7.2.6. Affected platforms: FG-40xF and FG-60xF. | 2023-09-28 00:00:00 | Read more |
967436 | DAC cable between FortiGate and FortiSwitch stops working after upgrading from 7.2.6 to 7.2.7. | 2023-09-28 00:00:00 | Read more |
977281 | After the FortiGate in an HA environment is upgraded using the Fabric upgrade feature, the GUI might incorrectly show the status Downgrade to 7.2.X shortly, even though the upgrade... | 2023-09-28 00:00:00 | Read more |
897048 | FortiOS should support EMS 7.2.1 auth API status code changes. | 2023-09-28 00:00:00 | Read more |
913324 | GUI repeated calls to the EMS API, which can cause EMS to not authorize the FortiGate correctly. | 2023-09-28 00:00:00 | Read more |
934094 | Some websites through explicit proxy randomly getting blocked after upgrade. | 2023-09-28 00:00:00 | Read more |
909160 | The FortiGate 7000E and 7000F platforms do not support GTP and PFCP load balancing. | 2023-09-28 00:00:00 | Read more |
914273 | SNMP query to fgVdEntSesRate returns a 0 value. | 2023-09-28 00:00:00 | Read more |
947936 | On the FortiGate 7060E, only four of six PSUs are shown sometimes. | 2023-09-28 00:00:00 | Read more |
950137 | FortiView Application widget cannot show data for explicit proxy traffic. | 2023-09-28 00:00:00 | Read more |
904817 | Changing the IPv4/IPv6 version in the dropdown of one widget will also impact other Session Rate widgets. | 2023-09-28 00:00:00 | Read more |
919390 | Disabling gui-wireless-controller on the root VDOM impacts other VDOMs (unable to add or show WiFi widgets on first load). | 2023-09-28 00:00:00 | Read more |
931004 | FortiGate GUI issues on mobile phone's browser. | 2023-09-28 00:00:00 | Read more |
931486 | Unexpected behavior in httpsd when the user has a lot of FQDN addresses. | 2023-09-28 00:00:00 | Read more |
902945 | Lost management connectivity to the standby node via in-band management. | 2023-09-28 00:00:00 | Read more |
946878 | When configuring an HA management interface, the GUI does not allow the same interface to be used for multiple management interfaces. | 2023-09-28 00:00:00 | Read more |
934015 | RSH subsession timeout when IPS is enabled. | 2023-09-28 00:00:00 | Read more |
914418 | File transfer stops after a while when offloading is enabled. | 2023-09-28 00:00:00 | Read more |
928774 | IPsec VPN connection should allow % in FortiClient Connect REG_PASSWD field. | 2023-09-28 00:00:00 | Read more |
865794 | Log Viewer: filter by Date/Time does not show correct result. | 2023-09-28 00:00:00 | Read more |
879446 | diagnose sys logdisk smart does not work for NVME disk models. | 2023-09-28 00:00:00 | Read more |
940814 | Administrators without read permissions for the threat weight feature cannot see the event log menu. | 2023-09-28 00:00:00 | Read more |
883504 | Emails are blocked when proxy-based policy with either AntiVirus or Email Filter security profiles enabled. | 2023-09-28 00:00:00 | Read more |
948356 | An error condition occurs in HTTPSD when a REST API request is sent with invalid parameters. | 2023-09-28 00:00:00 | Read more |
820407 | Auto-link fails if the FortiGate device initiating the FGFM connection is using an interface with a VRF not set to the default, 0. | 2023-09-28 00:00:00 | Read more |
941673 | FortiSwitch event log displays serial number under name when CAPWAP is up or down. | 2023-09-28 00:00:00 | Read more |
862519 | FortiGate 40F-3G4G WWAN connection unstable on Verizon Carrier. | 2023-09-28 00:00:00 | Read more |
906964 | DST changes not reflected for timezone 16. The dates are incorrect on the DST for this specific timezone (Santiago-Chile). | 2023-09-28 00:00:00 | Read more |
909225 | ISP traffic is failing with the LAG interfaces on upstream switches. | 2023-09-28 00:00:00 | Read more |
910700 | Ports are flapping and down on the FortiGate 3980E. | 2023-09-28 00:00:00 | Read more |
913355 | GUI and CLI time mismatch for Central America (Mexico) time zone. | 2023-09-28 00:00:00 | Read more |
922458 | Administrator with read-only access to management permissions cannot perform a configuration backup in the GUI. | 2023-09-28 00:00:00 | Read more |
924654 | MAC flapping on switch when UDP packets passthrough VWP multiple times with ASIC offload. | 2023-09-28 00:00:00 | Read more |
929904 | When L3 or L4 hashing algorithm is used, traffic is not forwarded over the same aggregate member after being offloaded by NP7. | 2023-09-28 00:00:00 | Read more |
930329 | LTE modem is missing after upgrading to 7.4. | 2023-09-28 00:00:00 | Read more |
937887 | Unable to load SNMP page with SSO Admin. | 2023-09-28 00:00:00 | Read more |
939411 | Multiple spawns of hotplug process consuming high CPU resources. | 2023-09-28 00:00:00 | Read more |
936493 | Fas daemon crashing on FortiGate. | 2023-09-28 00:00:00 | Read more |
939517 | On the System > Replacement Messages page, the guest user email template cannot restore to the to default value. | 2023-09-28 00:00:00 | Read more |
943087 | After creating a new guest user, the administrator cannot view the user's password in plaintext in the GUI. | 2023-09-28 00:00:00 | Read more |
946116 | On a FortiGate managed by FortiManager, when a guest administrator logs in with read-only permissions, the administrator can still create and edit the guest user. | 2023-09-28 00:00:00 | Read more |
939380 | User cannot set the match ALL pattern to deny traffic for the web application firewall profile in the GUI. | 2023-09-28 00:00:00 | Read more |
887699 | Web filter override expiry date in the GUI may be one hour off if daylight saving time (DST) is observed. | 2023-09-28 00:00:00 | Read more |
875382 | When accessing the Managed FortiAP/Switch view with a large number of devices in the topology, the page would take a long time to load. | 2023-09-28 00:00:00 | Read more |
891804 | After initial packets, FG-101F stops forwarding wired traffic over FAP-23JF LAN tunneled with a dynamic VLAN VAP. | 2023-09-28 00:00:00 | Read more |
945356 | FortiOS fails to get all of the configured MAC ACL entries. | 2023-09-28 00:00:00 | Read more |
892775 | FortiOS7.2.6 is no longer vulnerable to the following CVE Reference:CVE-2023-36555 | 2023-09-28 00:00:00 | Read more |
943578 | FortiOS7.2.6 is no longer vulnerable to the following CVE Reference:CVE-2023-44250 | 2023-09-28 00:00:00 | Read more |
968367 | IPS engine high memory usage can cause FortiOS to go into conserve mode. | 2023-09-28 00:00:00 | Read more |
937500 | FortiOS does not accept an installation script from FortiManager when creating an extender-profile with login-password-change is set to yes. | 2023-09-28 00:00:00 | Read more |
983236 | Under normal conditions, a FortiGate 6000 or 7000 may generate event log messages due to a known issue with a feature added to FortiOS 7.2 and 7.4. The feature is designed to creat... | 2023-09-28 00:00:00 | Read more |
896333 | The diagnose span-sniffer packet CLI command does not work on SLBC platforms. | 2023-09-28 00:00:00 | Read more |
953921 | GUI does not display the configured parameters for traffic shaping policies when editing a policy with an SD-WAN zone. | 2023-08-31 00:00:00 | Read more |
954862 | Graceful upgrade from 7.0.12 to 7.2.6 or 7.2.7, or from 7.0.12 to 7.4.2 or 7.4.3 will fail on the FortiGate 6501F/6500F, FortiGate 7060E with slot6 occupied, and FortiGate 7121F wi... | 2023-08-31 00:00:00 | Read more |
961796 | When administrator GUI access (HTTPS) is enabled on SD-WAN member interfaces, the GUI may not be accessible on the SD-WAN interface due to incorrect routing of the response packet.... | 2023-08-31 00:00:00 | Read more |
973432 | When editing an SD-WAN rule with more than one destination, some destinations are automatically removed. | 2023-08-31 00:00:00 | Read more |
896203 | The parse error, NPD-0:NPD PARSE ADDR GRP gmail.com MEMBER ERR, appears after rebooting the system. | 2023-08-31 00:00:00 | Read more |
936747 | Connections per second (CPS) performance of SIP sessions accepted by hyperscale firewall policies with EIM and EIF disabled that include overload with port block allocation (PBA) G... | 2023-08-31 00:00:00 | Read more |
949188 | ICMP reply packets are dropped by FortiOS in a NAT64 hyperscale policy. | 2023-08-31 00:00:00 | Read more |
965247 | FortiGate syslog format in reliable transport mode is not compliant with RFC 6587. | 2023-08-31 00:00:00 | Read more |
790426 | An error case occurs in WAD while redirecting the web filter HTTPS sessions. | 2023-08-31 00:00:00 | Read more |
954104 | An error case occurs in WAD when WAD gets the external authenticated users from other daemons. | 2023-08-31 00:00:00 | Read more |
903444 | The diagnose ip rtcache list command is no longer supported in the FortiOS 4.19 kernel. | 2023-08-31 00:00:00 | Read more |
949623 | DNS over TCP does not work when interface-select-method is set to sdwan in the DNS setting, and the corresponding SD-WAN rule is restricted to the TCP protocol only. | 2023-08-31 00:00:00 | Read more |
933985 | FortiGate as SSL VPN client does not work on NP6 and NP6XLite devices. | 2023-08-31 00:00:00 | Read more |
947210 | Application sslvpnd *** code requested backtrace *** was observed during graceful upgrade. | 2023-08-31 00:00:00 | Read more |
899279 | NP7 did not offload jumbo packet, but get NPU INFO: offload=9/9 in the console output. | 2023-08-31 00:00:00 | Read more |
939110 | DHCP server on LAN interface is lost after rebooting or restoring the configuration file. | 2023-08-31 00:00:00 | Read more |
942502 | Kernel panic occurs when creating EMAC VLAN interfaces based on an aggregate interface with new kernel 4.1.9. | 2023-08-31 00:00:00 | Read more |
948322 | After deauthorizing a downstream FortiGate from the System > Firmware & Registration page, the page may appear to be stuck to loading. Workaround: perform a full page refresh to al... | 2023-08-31 00:00:00 | Read more |
948448 | A super_admin administrator is unable to log in after restoring the VDOM configuration on the admin VDOM and rebooting the FortiGate. | 2023-08-31 00:00:00 | Read more |
884462 | NTLM authentication does not work with Chrome. | 2023-08-31 00:00:00 | Read more |
949699 | Administrator single sign-on login with SAML does not work after upgrading the firmware 7.4.1 due to the SAML entity-id field being incorrectly reset to being empty. | 2023-08-31 00:00:00 | Read more |
946796 | The eap_proxy daemon may keep reloading randomly due to failing to bind a port. This will cause an IKE and WiFi authentication failure. | 2023-08-31 00:00:00 | Read more |
939011 | All transparent VDOMs cannot synchronize because of switch-controller.auto-config.policy. | 2023-08-31 00:00:00 | Read more |
870052 | Error condition in scanunitd occurs when email filter profile and proxy inspection are applied to a firewall policy. | 2023-08-31 00:00:00 | Read more |
911332 | When UTM status is enabled and the AV profile has no configuration, all SLL traffic is dropped and there is no WAD output. | 2023-08-31 00:00:00 | Read more |
923883 | The FortiGate may display an error log in the crash log due to AV delta update. In case of failure, a full successful AV update is done. | 2023-08-31 00:00:00 | Read more |
913529 | The firewall policy dialog should show the no-inspection profile and the warning should be consistent with the policy list. | 2023-08-31 00:00:00 | Read more |
939565 | can not query meta rules list seen on graceful/non-graceful upgrade. | 2023-08-31 00:00:00 | Read more |
931998 | DNS filter flow external domain AAAA query can still check the default category but not the remote category. | 2023-08-31 00:00:00 | Read more |
933819 | Two FortiGates deregistered from EMS on special build 8844. | 2023-08-31 00:00:00 | Read more |
859693 | Sessions between the explicit proxy and server stay in SYN_SENT state when using IP pools in the explicit proxy policy for source NAT, even though the sessions have established. Tr... | 2023-08-31 00:00:00 | Read more |
889300 | Wrong source IP address used for packets through explicit proxy routed to a member of SD-WAN interface. | 2023-08-31 00:00:00 | Read more |
908989 | The Enabled On should display the listening interfaces rather than None in explicit proxy policy on the GUI. | 2023-08-31 00:00:00 | Read more |
923302 | Cannot send picture through web explicit proxy. | 2023-08-31 00:00:00 | Read more |
872312 | Unable to add more MAC addresses once the MAC address group object for a VWP policy referenced. | 2023-08-31 00:00:00 | Read more |
909763 | Wrong TOS field value in NetFlow report when there is no traffic. | 2023-08-31 00:00:00 | Read more |
912089 | Optimize CPU usage caused by a rare error condition which leads to no data being sent to the collector. | 2023-08-31 00:00:00 | Read more |
914939 | UDP fragments dropped due to DF being set. Only the set honor-df global option. | 2023-08-31 00:00:00 | Read more |
926029 | New sessions are created and evaluated after a certain number of UDP packets, even if set block-session-timer 300 is set. | 2023-08-31 00:00:00 | Read more |
928896 | set fixedport enable in a firewall policy does not preserve the source port for SNAT with IP pool. | 2023-08-31 00:00:00 | Read more |
758078 | After system synchronization, primary blades' reboot command did not take effect on the secondaries. | 2023-08-31 00:00:00 | Read more |
913040 | Multiple IP pools in SSL VPN is not supported. | 2023-08-31 00:00:00 | Read more |
894957 | On FortiView Websites, the real time view is always empty if disk logging is disabled. | 2023-08-31 00:00:00 | Read more |
920241 | GUI shows Failed to retrieve FortiView data while accessing FortiView Sources and FortiView Destination. | 2023-08-31 00:00:00 | Read more |
863126 | In an environment where the Security Fabric is enabled and there are more than 100 firewall object conflicts between the root and downstream FortiGates, the Firewall Object Synchro... | 2023-08-31 00:00:00 | Read more |
892364 | Incorrect interface is being selected in the SD-WAN Rules GUI page, but the correct one is displayed in the CLI. | 2023-08-31 00:00:00 | Read more |
903856 | When using configuration save mode with VDOMs, the GUI still shows unsaved changes after another administrator commits their changes with SSH. | 2023-08-31 00:00:00 | Read more |
703614 | HA secondary synchronization fails and keeps rebooting when the primary has a split port configuration. | 2023-08-31 00:00:00 | Read more |
771316 | Platforms in an HA environment get stuck in a reboot loop while attempting to synchronize configurations that differ in split ports. | 2023-08-31 00:00:00 | Read more |
893041 | Cannot access out-of-band IPv6 address on HA secondary unit. | 2023-08-31 00:00:00 | Read more |
901292 | When entering the psksecret under config system standalone-cluster, no verifications are done against the password policy IPsec preshared key. | 2023-08-31 00:00:00 | Read more |
904318 | FortiGate sent ARP request with loopback IP address as the source address. | 2023-08-31 00:00:00 | Read more |
906367 | When upgrading a cluster of four FortiGate 2200E devices, each secondary forms a cluster with the primary only and causes an outage. | 2023-08-31 00:00:00 | Read more |
908062 | FortiGate VM Azure HA cluster goes out-of-sync due to dynamic firewall address type. | 2023-08-31 00:00:00 | Read more |
916216 | When adding a new interface, some other interfaces have the wrong virtual MAC address. | 2023-08-31 00:00:00 | Read more |
919005 | Heartbeat packet loss issue at random times. | 2023-08-31 00:00:00 | Read more |
920233 | The System > HA page is missing from the GUI on 5K models. | 2023-08-31 00:00:00 | Read more |
931724 | HA events not synchronizing between members, leading to unexpected HA status. | 2023-08-31 00:00:00 | Read more |
935448 | Hardware session synchronization is showing as out-of-sync on primary and secondary. | 2023-08-31 00:00:00 | Read more |
854933 | The IPv6 neighbor cache configuration is missing after executing a reboot or flush command. | 2023-08-31 00:00:00 | Read more |
919977 | First-time HA failover after upgrading causes long service interruption to NAT44. | 2023-08-31 00:00:00 | Read more |
920405 | Problem with synchronizing a high amount of routes to NP7 for hyperscale firewall. | 2023-08-31 00:00:00 | Read more |
924196 | Device is rebooting randomly when driver processes exception packets. | 2023-08-31 00:00:00 | Read more |
932317 | Hyperscale firewall creates a separate session and uses a different source port for IP fragment packets. | 2023-08-31 00:00:00 | Read more |
933063 | LPM daemon is being killed. | 2023-08-31 00:00:00 | Read more |
823583 | Failover on clustered web application using keepalived daemon does not work seamlessly. | 2023-08-31 00:00:00 | Read more |
860315 | Unexpected behavior in IPS engine when executing diagnose test application ipsmonitor 44. | 2023-08-31 00:00:00 | Read more |
874877 | IPS engines do not release memory after stopping traffic more than one hour. | 2023-08-31 00:00:00 | Read more |
892302 | Constant reloading of the external domain table is causing high CPU due to lock contention when reloading the table. | 2023-08-31 00:00:00 | Read more |
872769 | Proxy ARP stops working for a client connected to a dialup IPsec when the previous VPN was established and is deleted. | 2023-08-31 00:00:00 | Read more |
883138 | VM running FIPS cipher mode does not show AES-CBC ciphers when configuring IPsec in the GUI. | 2023-08-31 00:00:00 | Read more |
898872 | IPsec performance drops after upgrade on AWS. | 2023-08-31 00:00:00 | Read more |
921691 | In FGSP, IKE routes are not removed from the kernel when secondary-add-ipsec-routes is disabled. | 2023-08-31 00:00:00 | Read more |
926048 | Traffic through a shortcut got dropped after an HA failover. | 2023-08-31 00:00:00 | Read more |
831441 | The forward traffic log show exabytes of data being sent and received from external to external IP addresses in multiple VDOMs. | 2023-08-31 00:00:00 | Read more |
902797 | IPS alert email not being sent when IPS attack event has triggered. | 2023-08-31 00:00:00 | Read more |
908856 | Traffic log can show exabytes of data sent and received when generating log task is triggered from userspace. | 2023-08-31 00:00:00 | Read more |
929338 | Secondary FortiGate log cannot be viewed from primary FortiGate in HA. | 2023-08-31 00:00:00 | Read more |
932817 | Forward traffic log has unexpected symbols in the end for some logs. | 2023-08-31 00:00:00 | Read more |
820096 | CPU usage issue in Proxyd caused by the absence of TCP Teardown. | 2023-08-31 00:00:00 | Read more |
897347 | Memory usage issue caused by the WAD user info process while authenticating the LDAP users. | 2023-08-31 00:00:00 | Read more |
904386 | Unable to upload file to the application server in server-load-balance setup. | 2023-08-31 00:00:00 | Read more |
932487 | Memory usage issue caused by WAD while using access proxy. | 2023-08-31 00:00:00 | Read more |
775752 | link-down-failover does not bring the BGP peering down. | 2023-08-31 00:00:00 | Read more |
892704 | SD-WAN performance SLA statistics on secondary unit's GUI section are not synchronized with the primary and has stale data. | 2023-08-31 00:00:00 | Read more |
896891 | With ICMP asymmetric routing enabled, ICMP local-in/local-out reply packets will still only return through the original path, in order to maintain the ping SLA. | 2023-08-31 00:00:00 | Read more |
899827 | Speed test result is not accurate. | 2023-08-31 00:00:00 | Read more |
900226 | High CPU due to PIMD/NSM and multicast session not being offloaded. | 2023-08-31 00:00:00 | Read more |
900770 | DHCP relay fails after a period of time with SD-WAN. | 2023-08-31 00:00:00 | Read more |
900941 | config redistribute routing subsections cannot be configured when in workspace mode. | 2023-08-31 00:00:00 | Read more |
909835 | Search broken on SD-WAN Rules tab's Source/Destination omniselect. | 2023-08-31 00:00:00 | Read more |
913338 | FortiGate removing SD-WAN routes when network address is specified as the gateway of an SD-WAN member. | 2023-08-31 00:00:00 | Read more |
914497 | SD-WAN rules list in the GUI should show the interface members in priority order instead of alphabetical order. | 2023-08-31 00:00:00 | Read more |
914815 | FortiGate 40F-3G4G not adding LTE dynamic route to route table. | 2023-08-31 00:00:00 | Read more |
922491 | Static routes are installed on hub FortiGate with add-route disabled in ADVPN scenario. | 2023-08-31 00:00:00 | Read more |
874822 | In a configuration with a connected FortiAP-U, the FortiAP & FortiAP-S & FortiAP-W2 & FortiAP-U Command Injection in CLI security rating test fails and suggests an upgrade to 7.0.4... | 2023-08-31 00:00:00 | Read more |
907819 | Advanced GCP connector does not resolve if one element does not exist. | 2023-08-31 00:00:00 | Read more |
912592 | Allow comments and IP addresses to be on the same line for external IP address threat feeds. | 2023-08-31 00:00:00 | Read more |
912917 | Send Fabric API calls with pagination filter. | 2023-08-31 00:00:00 | Read more |
917024 | Unexpected behavior in Security Fabric daemon (CSFD) caused by triggering HA failover while using Security Fabric. | 2023-08-31 00:00:00 | Read more |
918230 | Threat feeds with name starting with "g-" are not allowed on non-VDOM FortiGate. | 2023-08-31 00:00:00 | Read more |
922896 | Azure SDN connector always uses HA management port for DNS resolve. This might not work on premises where the HA management port does not have a public IP address assigned. | 2023-08-31 00:00:00 | Read more |
926202 | Unable to authorize downstream FortiGate with the Security Fabric after upgrade. | 2023-08-31 00:00:00 | Read more |
833934 | SSL VPN fails to connect to graph.microsoft.com when doing Azure auto-login. | 2023-08-31 00:00:00 | Read more |
843756 | Customer bookmark (*.tr***.pt) is not accessible when using SSL VPN web mode. | 2023-08-31 00:00:00 | Read more |
851976 | PC cannot get IP from DHCP server due to find duplicate ip and causes the dialup SSL VPN to fail. | 2023-08-31 00:00:00 | Read more |
878833 | Decrease in download speeds observed for SSL VPN users when over 2000 users are connected. | 2023-08-31 00:00:00 | Read more |
881268 | Disconnecting from SSL VPN using the SSL-VPN widget does not disconnect the SSL VPN tunnel. | 2023-08-31 00:00:00 | Read more |
884869 | Web mode bookmark showing blank page due to JS rewrite. | 2023-08-31 00:00:00 | Read more |
885978 | Some buttons in URL are not working in SSL VPN web mode. | 2023-08-31 00:00:00 | Read more |
887345 | When a user needs to enter credentials through a pop-up window, the key events for modification key detected by SDL were ignored. | 2023-08-31 00:00:00 | Read more |
889736 | The HPE iLO 5 web server is not able to load properly from the SSL VPN portal. | 2023-08-31 00:00:00 | Read more |
895120 | SSL VPN web portal not loading internal web page. | 2023-08-31 00:00:00 | Read more |
896396 | SSL VPN web portal HTTP bookmark forwarded site throws Java error. | 2023-08-31 00:00:00 | Read more |
897385 | Internal website keeps asking for credential with SSL VPN web mode. | 2023-08-31 00:00:00 | Read more |
897665 | The external DHCP server is not receiving hostnames in SSL VPN and DHCP relay. | 2023-08-31 00:00:00 | Read more |
904919 | DHCP option 12 hostname needed for SSL VPN with external DHCP servers. | 2023-08-31 00:00:00 | Read more |
906756 | Update SSL VPN host check logic for unsupported OS. | 2023-08-31 00:00:00 | Read more |
927475 | SSL VPN tunnel down log message not generated when an IP address is disassociated before the old tunnel times out. | 2023-08-31 00:00:00 | Read more |
848632 | Upon upgrade, the link to FortiSwitch stays down with QSFP. | 2023-08-31 00:00:00 | Read more |
893405 | One discovery one transmit buffer was allocated and was not released on connection terminations. | 2023-08-31 00:00:00 | Read more |
902338 | WiFi & Switch Controller > FortiSwitch Ports page does not show VLANs exported to another tenant VDOM, which results in the VLAN being removed if saved from the GUI. | 2023-08-31 00:00:00 | Read more |
920231 | FortiGate loses QoS ip-dscp-map configuration after reboot. | 2023-08-31 00:00:00 | Read more |
936081 | The vlan-optimization {enable | disable} and vlan-all-mode all configuration options disappear after upgrade or reboot. | 2023-08-31 00:00:00 | Read more |
656138 | GUI shows conflicts error message when configuring a secondary IP address after allow-subnet-overlap is enabled. | 2023-08-31 00:00:00 | Read more |
708964 | CPU usage issue is observed caused by reloading the system when the system has cfg-save set to revert. | 2023-08-31 00:00:00 | Read more |
820559 | When backing up the configuration to a USB disk, if the file name is the same as specified under System > Settings > Start Up Settings > USB auto-install, an Invalid file name erro... | 2023-08-31 00:00:00 | Read more |
836748 | FG-100F fails to boot when FortiOS image binary is larger than 94 MB. | 2023-08-31 00:00:00 | Read more |
845079 | DAC cable support is unstable on the FortiGate 1101E. | 2023-08-31 00:00:00 | Read more |
866437 | CPU usage issue caused by the new Linux kernel. | 2023-08-31 00:00:00 | Read more |
869726 | When an IPsec tunnel is configured with a different VRF than the underlying physical interface, and traffic is offloaded, the session expires even when traffic is flowing through i... | 2023-08-31 00:00:00 | Read more |
881060 | Host TX dropped counter incrementing and connections failing when throughput reaches 40 Gbps. | 2023-08-31 00:00:00 | Read more |
885823 | Sensor showing temperature of 0.00 Celsius. | 2023-08-31 00:00:00 | Read more |
885837 | Traffic dropped as the matching SessionID is being deleted from session table in 20 seconds. | 2023-08-31 00:00:00 | Read more |
893305 | Interface could not be brought up if it was part of a virtual switch. | 2023-08-31 00:00:00 | Read more |
894202 | Incorrect temperature calculation appears in sensor list on FG-8xF, FWF-8xF, FG-9xE, FG-10xE, FG-20xE, and FG-14xE. | 2023-08-31 00:00:00 | Read more |
895967 | FortiGate 1801F in transparent mode cannot reply to an SNMP query. | 2023-08-31 00:00:00 | Read more |
897905 | IPv6 addresses configured on EMAC VLAN interfaces showing FTP flag after upgrade. | 2023-08-31 00:00:00 | Read more |
903049 | execute sensor list has blank lines in output. | 2023-08-31 00:00:00 | Read more |
904414 | Port speed 1000auto could not link up with a Cisco switch. | 2023-08-31 00:00:00 | Read more |
904485 | The crashlog might show a Node.JS restarted error, Failed to fetch web-ui.node-exports: Error: connect ECONNREFUSED, if the HTTPSD is being killed during conserve mode, stuck in so... | 2023-08-31 00:00:00 | Read more |
907339 | dnsproxy process aborts due to stack buffer overflow being detected upon function return. | 2023-08-31 00:00:00 | Read more |
910269 | Unexpected behavior caused by the Linux Out of Memory (OOM) killer when memory is very low. | 2023-08-31 00:00:00 | Read more |
910273 | Last reboot reason: power cycle after rebooting due to a kernel panic is misleading. | 2023-08-31 00:00:00 | Read more |
910616 | When a non-zero DSCP copied from ingress to egress packet for NAT64, the IP checksum is calculated incorrectly. | 2023-08-31 00:00:00 | Read more |
910677 | Transparent mode FortiGate does not reply to SYN ACK when communicating with FortiManager. | 2023-08-31 00:00:00 | Read more |
911396 | High system CPU and multiple daemons enter D state on the FortiGate 4401F. | 2023-08-31 00:00:00 | Read more |
917029 | DNS does not respond to short name queries. | 2023-08-31 00:00:00 | Read more |
919901 | For FIPS-CC mode, the strict check for basic constraints should be removed for end entity certificates. | 2023-08-31 00:00:00 | Read more |
920085 | CPU usage issue observed in dnsproxyd caused by unused wildcard FQDN. | 2023-08-31 00:00:00 | Read more |
922920 | When performing factoryreset2, the IP addresses on "a" and "b" are set to default. | 2023-08-31 00:00:00 | Read more |
922965 | CPU usage issue observed in hasync daemon when session count is large. | 2023-08-31 00:00:00 | Read more |
922982 | FortiGate does not respond to ARP requests for the IP address on the WAN port when the interface is configured as EMAC. | 2023-08-31 00:00:00 | Read more |
923834 | The DSL modem on the firewall does not work after the device starts. | 2023-08-31 00:00:00 | Read more |
924395 | IPv6 local-in ping6 to management interface failed when newly configured. | 2023-08-31 00:00:00 | Read more |
925657 | After a manual system administrator password change, the updated password-expire is not received by the FortiManager auto-update. | 2023-08-31 00:00:00 | Read more |
925966 | Running diagnose sniffer filter with blank or empty quotation marks ("" or " ") is not working. | 2023-08-31 00:00:00 | Read more |
926035 | On D-series FortiGates, a false alarm during system integrity check failure causes the firewall to reboot. | 2023-08-31 00:00:00 | Read more |
926817 | Review the temperature sensor for the SoC4 system. | 2023-08-31 00:00:00 | Read more |
928858 | Traffic over vpn-id-ipip tunnel is blocked when npu-offload is disabled in the VPN phase 1 interface and the policy has UTM enabled. | 2023-08-31 00:00:00 | Read more |
929821 | An error condition occurred in httpsd and newcli when trying to generate a TAC report from the GUI and CLI, respectively. | 2023-08-31 00:00:00 | Read more |
935562 | NAT port is out of range, causing the PBA index to be out of range. | 2023-08-31 00:00:00 | Read more |
940571 | Memory usage issue caused by excessive log files. | 2023-08-31 00:00:00 | Read more |
872814 | The SAML assertion is truncated in samld when the payload size is huge. | 2023-08-31 00:00:00 | Read more |
899852 | FortiGate is sending Class(25) AVP with wrong length in RADIUS accounting when using 2FA with PUSH or external tokens. | 2023-08-31 00:00:00 | Read more |
900591 | When generating guest users according to the settings in the guest group, the expiration time of guest users will automatically add an extra two hours. | 2023-08-31 00:00:00 | Read more |
915192 | Device detection sometimes does not identify the correct IP addresses of devices. | 2023-08-31 00:00:00 | Read more |
922345 | CA bundle (CRDB) to support DigiCert second-generation (G2) full CA and intermediate CA chain. | 2023-08-31 00:00:00 | Read more |
901920 | AWS external account list supports regional endpoints. | 2023-08-31 00:00:00 | Read more |
913696 | In the periodic status check of the OCI VM status, too many API calls caused a lot of 429 errors. | 2023-08-31 00:00:00 | Read more |
916027 | Copy of files between a physical server and Windows Server is slow. | 2023-08-31 00:00:00 | Read more |
918818 | Traffic drops in FortiGate HA A-A, AutoScale in Azure. | 2023-08-31 00:00:00 | Read more |
927323 | Event log alert Write Permission Violation to read-only file on VMware after taking snapshot. | 2023-08-31 00:00:00 | Read more |
928952 | VPN errors after upgrade: Malformed Packets, AUTHENTICATION_FAILED messages, and INVALID_KE_PAYLOAD. | 2023-08-31 00:00:00 | Read more |
933003 | FortiGate-VM KVM with MLX5 not responding to ARP in RHEL environment. | 2023-08-31 00:00:00 | Read more |
935086 | VLAN interface is not reachable on FortiGate-VM running on KVM with SR-IOV interface. | 2023-08-31 00:00:00 | Read more |
873086 | In a policy-based VDOM, changes are not applied when adding an external threat feed category in the URL Category field. | 2023-08-31 00:00:00 | Read more |
916140 | An error condition occurs in WAD caused by the mismatch between the SNI host and CNAME. | 2023-08-31 00:00:00 | Read more |
877609 | RADIUS CoA does not work in some cases. | 2023-08-31 00:00:00 | Read more |
905406 | In auth-logon and auth-logout logs, Wi-Fi users with random public IP addresses are observed. | 2023-08-31 00:00:00 | Read more |
920189 | Intermittent behavior in Hostapd caused by enabling/disabling fast-bss-transition. | 2023-08-31 00:00:00 | Read more |
921456 | FAP-431F is deauthenticating clients after roaming when DHCP enforcement is enabled on the SSID, even when the client gets IP from DHCP. | 2023-08-31 00:00:00 | Read more |
926676 | Enable DFS channels on wtp-profile for FortiAP 431G and FortiAP 433G in region A/S/N(No-Brazil). | 2023-08-31 00:00:00 | Read more |
937826 | An error case occurs in CAPWAP when the SSID interface, which has a VLAN interface over it, is deleted. | 2023-08-31 00:00:00 | Read more |
889994 | After client device information is updated, the session is closed even though all information from the session still matches the policy. | 2023-08-31 00:00:00 | Read more |
923804 | ZTNA logs are showing the log message Denied: failed to match a proxy-policy when client device information matches the policy. | 2023-08-31 00:00:00 | Read more |
911617 | FortiOS7.0.13 is no longer vulnerable to the following CVE Reference: CVE-2023-37935 | 2023-08-31 00:00:00 | Read more |
919392 | FortiOS7.0.13 is no longer vulnerable to the following CVE Reference: CVE-2023-36641 | 2023-08-31 00:00:00 | Read more |
780297 | IKE debug log filtering functionality exhibits inaccuracies, resulting in the possibility of displaying unmatched logs when filters are set. | 2023-08-31 00:00:00 | Read more |
930275 | Firewall policy is not allowing the all destination address with a split-tunneling portal. | 2023-08-31 00:00:00 | Read more |
857718 | Return Email DNS Check in the email filter profile is case sensitive. | 2023-08-31 00:00:00 | Read more |
914533 | The DLP sensor does not block EXE files. | 2023-08-31 00:00:00 | Read more |
907365 | DNS proxy caches DNS responses with only one CNAME record. | 2023-08-31 00:00:00 | Read more |
808737 | FortiOS should pull new avatar API from EMS and handle the avatar status on the FortiGate. | 2023-08-31 00:00:00 | Read more |
890776 | The GUI-explicit-proxy setting on the System > Feature Visibility page is not retained after a FortiGate reboot or upgrade. | 2023-08-31 00:00:00 | Read more |
909328 | Forward matching is applied to check the group name for SAML Authentication with Proxy Policy. | 2023-08-31 00:00:00 | Read more |
708229 | ACL feature is incorrectly dropping fragmented UDP packets. | 2023-08-31 00:00:00 | Read more |
847715 | A VIP group having members of the FQDN and static NAT VIP types cannot be created using the GUI (Policy & Objects > Virtual IPs page). | 2023-08-31 00:00:00 | Read more |
898938 | NAT64 does not recover when the interface changes. | 2023-08-31 00:00:00 | Read more |
907763 | The diffserv-copy option in the config firewall policy command cannot be configured. | 2023-08-31 00:00:00 | Read more |
917495 | When editing a VLAN ID, the FortiGate deletes firewall policies but does not recreate them again if the interface is in a zone. | 2023-08-31 00:00:00 | Read more |
929138 | The Edit Address page does not load if the address name contains has special characters ([ ]). | 2023-08-31 00:00:00 | Read more |
935034 | The clock skew tolerance is not reflected. | 2023-08-31 00:00:00 | Read more |
933541 | IPV4 DNS/ICMP fragment traffic testing issues even when ip-reassembly diabled on the NPU. | 2023-08-31 00:00:00 | Read more |
808384 | Real-time FortiView Traffic Shaping monitor shows 0 bandwidth for active FTP traffic. | 2023-08-31 00:00:00 | Read more |
562570 | System > FortiGuard page's License Information table does not show the updated IPS engine version. | 2023-08-31 00:00:00 | Read more |
894499 | The FortiGate GUI displays only the most recent 100 entries on CRL view. | 2023-08-31 00:00:00 | Read more |
914176 | GUI should allow user to skip the Migration Config with FortiConverter step without having to wait for a server connection. | 2023-08-31 00:00:00 | Read more |
920881 | Improve the policy list performance. | 2023-08-31 00:00:00 | Read more |
930960 | GUI pages that use the security rating fail to load on an iPhone. | 2023-08-31 00:00:00 | Read more |
858683 | FortiGate in A-P HA mode with admin-restrict-local enabled allows the local administrator to log in to the passive host, even if LDAP is available. | 2023-08-31 00:00:00 | Read more |
912665 | FGCP primary-secondary cluster only uses one session-sync-dev, in spite of having multiple session-sync-dev. | 2023-08-31 00:00:00 | Read more |
916286 | The execute ha failover set <vcluster number> command only support two vclusters, even when mutiple vclusters exist. | 2023-08-31 00:00:00 | Read more |
922435 | Interfaces for the root VDOM are displayed in the GUI when different VDOM is selected on the HA secondary. | 2023-08-31 00:00:00 | Read more |
929486 | When Configuration save mode is set to Manual, any firewall policy change will make the cluster out-of-sync. | 2023-08-31 00:00:00 | Read more |
931965 | Do not automatically enable LLDP transmission on an HA management port with LLDP reception enabled. | 2023-08-31 00:00:00 | Read more |
862830 | [?Q?ci_" sekret=] causes the parser to create a new field, "sekret=". | 2023-08-31 00:00:00 | Read more |
882593 | HTTPS traffic slows when IPS with NTurbo is used over a virtual wire pair. | 2023-08-31 00:00:00 | Read more |
923393 | IPS logs show incorrect source and destination IP addresses and policy IDs, and the ports are zeros. | 2023-08-31 00:00:00 | Read more |
664828 | L2TP VPN not working when offloading is enabled. | 2023-08-31 00:00:00 | Read more |
898757 | Support IKEv2 split DNS mode-cfg (RFC 8598). | 2023-08-31 00:00:00 | Read more |
898961 | diagnose traffictest issues with dynamic IP addresses and loopback interfaces. | 2023-08-31 00:00:00 | Read more |
920725 | IPsec tunnels that have external DHCP services for IP assignment have an extra selector added after upgrading to 7.0.11. | 2023-08-31 00:00:00 | Read more |
839934 | Destination interface in traffic log does not match the SD-WAN quality description in the log details. | 2023-08-31 00:00:00 | Read more |
881262 | When a session starts on one interface and refreshes after a policy or routing change to use a new interface, information displayed in the logs is not updated properly. | 2023-08-31 00:00:00 | Read more |
929269 | After disabling an event under the event filter, the system events summary page still shows event logs for that event. | 2023-08-31 00:00:00 | Read more |
733258 | Support HTTP3 for web proxy and ZTNA web service. | 2023-08-31 00:00:00 | Read more |
863132 | Proxy mode inspection is slow when testing a single TCP stream from fast.com, which causes bandwidth slowness on FG-100F and FG-200F devices. | 2023-08-31 00:00:00 | Read more |
912116 | Website (li***.cz) is not working in proxy inspection mode with deep inspection and web filter applied. | 2023-08-31 00:00:00 | Read more |
922286 | WAD traffic to globalvideoquery.fortinet.net does not follow the FortiGuard interface-select-mode. | 2023-08-31 00:00:00 | Read more |
934547 | FortiGate is not sending the certificate chain in proxy-based firewall policy mode. | 2023-08-31 00:00:00 | Read more |
920260 | SD-WAN interfaces should be denoted in the interface statistics API. | 2023-08-31 00:00:00 | Read more |
808190 | When ip-fragmentation is set to pre-encapsulation, the VPNv4's VRF information cannot pass fragment traffic. | 2023-08-31 00:00:00 | Read more |
849988 | The Network > SD-WAN > SD-WAN Rules page does not show a red exclamation mark for addresses that have dst-negate enabled. This is cosmetic; users can use the CLI to confirm that th... | 2023-08-31 00:00:00 | Read more |
888210 | On the Network > SD-WAN page, the Performance SLAs tab is slow to load when there is a large number (~4000) of VPN tunnels, and shortcut tunnels created by ADVPN. | 2023-08-31 00:00:00 | Read more |
890954 | The change of an IPv6 route does not mark sessions as dirty nor trigger a route change. | 2023-08-31 00:00:00 | Read more |
896090 | SD-WAN members can be out-of-sla after some retrieve times. | 2023-08-31 00:00:00 | Read more |
897666 | Issue with SD-WAN rule for FortiGuard. | 2023-08-31 00:00:00 | Read more |
910656 | Router information in the BGP summary still shows removed BGP neighbor/peer configuration. | 2023-08-31 00:00:00 | Read more |
930749 | IPv6 traffic was no longer forwarded according to route list and neighbor-cache list after upgrading from 7.2.4 to 7.2.5. | 2023-08-31 00:00:00 | Read more |
934803 | Synchronized kernel VPNv4 routes are not used in an HA failover. | 2023-08-31 00:00:00 | Read more |
876422 | After adding a 20 MB blocklist file, a FortiGate with 2 GB RAM goes to conserve mode when viewing the Security Fabric > External Connectors page. | 2023-08-31 00:00:00 | Read more |
876588 | External Connectors can cause a FortiGate internal error when the configuration name has invalid characters. | 2023-08-31 00:00:00 | Read more |
830068 | SSL VPN stops listening on IPv6 interface after a reboot. | 2023-08-31 00:00:00 | Read more |
835014 | Webpage keeps loading when customer accesses an internal webpage in the SSL VPN web portal. | 2023-08-31 00:00:00 | Read more |
845817 | Jira application is not loading properly when connecting through SSL VPN web mode. | 2023-08-31 00:00:00 | Read more |
854607 | In SSL VPN web mode, the page keeps loading after logging in. | 2023-08-31 00:00:00 | Read more |
859275 | Issues with accessing an internal site using SSL VPN web mode and bookmark. | 2023-08-31 00:00:00 | Read more |
883903 | FortiGate does not identify users on SSL VPN as 2FA users if the user and token are put together in the same field (concatenated). | 2023-08-31 00:00:00 | Read more |
896492 | When using RDP bookmarks in SSL web mode, some keys stopped working, | 2023-08-31 00:00:00 | Read more |
926612 | The SSL VPN log shows users having been disconnected from SSL VPN for unknown reason. | 2023-08-31 00:00:00 | Read more |
929001 | An invalid user name entered in FortiClient could cause two factor PKI user login to crash sslvpnd after the client certificate checking passed. | 2023-08-31 00:00:00 | Read more |
861227 | On the WiFi & Switch Controller > FortiSwitch Ports page, the Device Information column lists the same device multiple times. | 2023-08-31 00:00:00 | Read more |
801481 | Download speed issue through WAN configured with PPPoE on FortiGate. | 2023-08-31 00:00:00 | Read more |
802932 | CPU usage issue caused by clearing BGP dampened prefixes. | 2023-08-31 00:00:00 | Read more |
816579 | User loses GUI/SSH access on FG-1500D while running one-arm sniffer. | 2023-08-31 00:00:00 | Read more |
828557 | FortiGate as DHCP relay is not showing a DHCP decline in the debugs when there is an IP conflict in the network. | 2023-08-31 00:00:00 | Read more |
855515 | Hardware csum failure message keeps repeating on Azure 7.0.8. | 2023-08-31 00:00:00 | Read more |
885057 | Add 100G speed option on the FortiGate 1800F. | 2023-08-31 00:00:00 | Read more |
903362 | SNMP OID, fgFwPolLastUsed (1.3.6.1.4.1.12356.101.5.1.2.1.1.4), does not show the correct information about the last time a specific policy was used. | 2023-08-31 00:00:00 | Read more |
911906 | Enable auto-upgrade by default on the FortiGate 40F and 40G. | 2023-08-31 00:00:00 | Read more |
913732 | Without any traffic, memory usage of FG-1800F keeps increasing slowly over time. | 2023-08-31 00:00:00 | Read more |
917827 | Delay sending LACPDU in kernel 4.19. | 2023-08-31 00:00:00 | Read more |
929135 | Interactive CLI commands, like purge, cannot be cut and pasted into the console and exits the script. The purge command in a console puTTy session stops and waits for a y confirmat... | 2023-08-31 00:00:00 | Read more |
931167 | IPv6 suffixes configured on an interface are not reflected after a reboot. | 2023-08-31 00:00:00 | Read more |
933277 | The npu-vdom-link cannot forward the traffic after the first two packets. | 2023-08-31 00:00:00 | Read more |
938981 | The virtual server http-host algorithm is redirecting requests to an unexpected server. | 2023-08-31 00:00:00 | Read more |
943033 | Enabling vdom-dns causes the VDOM DNS certificate to be blank instead of the default value. | 2023-08-31 00:00:00 | Read more |
944581 | Checksum on FortiOS is different from md5sum.txt file on the InfoSite when upgrading from previous GA build. | 2023-08-31 00:00:00 | Read more |
891068 | Guest administration management does not show all groups for multiple VDOMs assigned to a guest administrator account. | 2023-08-31 00:00:00 | Read more |
896739 | SSO administrator configuration breaks with Azure Cloud due to config system saml having a trailing slash in the metadata link. | 2023-08-31 00:00:00 | Read more |
922133 | Unable to view authorization page on FortiGate pop-up when the pre-login and post-login banner are set on FortiGate while using OAuth authorization. | 2023-08-31 00:00:00 | Read more |
929112 | RADUIS server dialog in the GUI incorrectly changes the custom RADUIS port to 0. | 2023-08-31 00:00:00 | Read more |
933622 | The FortiGate does not send the user's IP address to the TACACS+ server during an authorization request. | 2023-08-31 00:00:00 | Read more |
903798 | When send-deny-packet enabled or ident-accept disabled, sending out responding packets (such as TCP RST or ICMP) triggers a restart. | 2023-08-31 00:00:00 | Read more |
921168 | Restore operation overwrite passive configuration in AZURE A-P deployment based on SDN connector. | 2023-08-31 00:00:00 | Read more |
923061 | IPsec tunnels on AWS have TX errors incremented every 30 seconds. | 2023-08-31 00:00:00 | Read more |
930981 | FortiGate VM heartbeat authentication failed during the upgrade to 7.2.4 or 7.2.5 when HA authentication and encryption is enabled. | 2023-08-31 00:00:00 | Read more |
915879 | Add web filter categories for artificial intelligence technology (category 100) and Cryptocurrency (category 101). | 2023-08-31 00:00:00 | Read more |
941045 | Local rating chooses the wrong category if the URL path falsely matches to a longer local rating URL. | 2023-08-31 00:00:00 | Read more |
896128 | Some 5 GHz weather channels should not be allowed in certain countries. | 2023-08-31 00:00:00 | Read more |
905789 | FortiAP 431G is unable to join AC due to no response to cfg_request. | 2023-08-31 00:00:00 | Read more |
922838 | Usage of the cw_acds process increases and drops the FortiAP connection, which forces the FortiAP to restart in an FSM state when FortiAP settings are changed. | 2023-08-31 00:00:00 | Read more |
923530 | Add support for 6 GHz band for DARRP, wlac -c rf-analysis, and BG scan period. | 2023-08-31 00:00:00 | Read more |
926999 | An error condition occurred for the EAP proxy while sending the RADIUS Access-Request. | 2023-08-31 00:00:00 | Read more |
930130 | MPSK keys are not loaded completely in the wpad daemon after applying a VAP with an MPSK profile selected on a FortiAP. | 2023-08-31 00:00:00 | Read more |
931592 | CAPWAP offloading does not work with more than 12,000 VAP entries. | 2023-08-31 00:00:00 | Read more |
938525 | Wi-Fi clients failed roaming from one FortiAP to another on the bridge SSID with dynamic VLAN assignment by RADIUS-based MAC authentication. | 2023-08-31 00:00:00 | Read more |
934708 | The cmdbsvr could not secure the var_zone lock due to another process holding it indefinitely. | 2023-08-31 00:00:00 | Read more |
941521 | On the FortiView Web Sites page, the Category filter does not work in the Japanese GUI. | 2023-06-08 00:00:00 | Read more |
848660 | Read-only administrator may encounter a Maximum number of monitored interfaces reached error when viewing an interface bandwidth widget for an interface that does not have the moni... | 2023-06-08 00:00:00 | Read more |
934644 | When the FortiGate is in conserve mode, node process (GUI management) may not release memory properly causing entry-level devices to stay in conserve mode. | 2023-06-08 00:00:00 | Read more |
960661 | FortiAnalyzer report is not available to view for the secondary unit in the HA cluster on the Log & Report > Reports page.Workaround: view the report directly in FortiAnalyzer. | 2023-06-08 00:00:00 | Read more |
902344 | When there are over 30 downstream FortiGates in the Security Fabric, the root FortiGate's GUI may experience slowness when loading the Fabric Management page and prevents the user ... | 2023-06-08 00:00:00 | Read more |
931299 | When the URL filter requests the FortiGuard (FGD) rating server address using DNS, it will try to get both A (IPv4) and AAAA (IPv6) records. | 2023-06-08 00:00:00 | Read more |
937982 | High CPU usage might be observed on entry-level FortiGates if the cache size reaches 10% of the system memory. | 2023-06-08 00:00:00 | Read more |
819987 | SMB drive mapping made through a ZTNA access proxy is inaccessible after rebooting. | 2023-06-08 00:00:00 | Read more |
942612 | Web proxy forward server does not convert HTTP version to the original version when sending them back to the client. | 2023-06-08 00:00:00 | Read more |
906481 | FortiGate 6000 GUI becomes unresponsive, and may work sometimes after a reboot. | 2023-06-08 00:00:00 | Read more |
918795 | An uncertified warning appears only on the secondary chassis' FIM02 and FPMs. | 2023-06-08 00:00:00 | Read more |
920925 | Graceful upgrade from 7.0.12 to 7.2.5 fails sometimes due to the primary chassis not being switched over. | 2023-06-08 00:00:00 | Read more |
921452 | After an SNMP HA failover, the SNMP trap continues to work. | 2023-06-08 00:00:00 | Read more |
951135 | Graceful upgrade of a FortiGate 6000 or 7000 FGCP HA cluster is not supported when upgrading from FortiOS 7.0.12 to 7.2.5.Upgrading the firmware of a FortiGate 6000 or 7000 FGCP HA... | 2023-06-08 00:00:00 | Read more |
907041 | Network > SD-WAN > SD-WAN Zones and SD-WAN Rules pages do not load if a shortcut tunnel is triggered. | 2023-06-08 00:00:00 | Read more |
974988 | FortiGate GUI should display a license expired notification due to an expired FortiManager Cloud license if it still has a valid account level FortiManager Cloud license (function ... | 2023-06-08 00:00:00 | Read more |
853258 | Packets drop, and different behavior occurs between devices in an HA pair with ECMP next hop. | 2023-06-08 00:00:00 | Read more |
920228 | NAT46 NPU sessions are lost and traffic drops when a HA failover occurs. | 2023-06-08 00:00:00 | Read more |
932537 | If Security Rating is enabled to run on schedule (every four hours), the FortiGate can unintentionally send local-out traffic to fortianalyzer.forticloud.com during the Security Ra... | 2023-06-08 00:00:00 | Read more |
907386 | BGP neighbor group configured with password is not working as expected. | 2023-06-08 00:00:00 | Read more |
879329 | Destination address of SSL VPN firewall policy may be lost after upgrading when dstaddr is set to all and at least one authentication rule has a portal with split tunneling enabled... | 2023-06-08 00:00:00 | Read more |
906036 | Secondary blade hostname and mgmt1 IP were changed after a restored configuration on the primary blade. | 2023-06-08 00:00:00 | Read more |
886685 | IPS daemon usage issue when notifying device vulnerability information to WAD. | 2023-06-08 00:00:00 | Read more |
867663 | The FEC configuration under the interface is not respected when port23 and port24 are members of an LACP and the connection is 100G. Affected platforms: FGT-340xE, FGT-360xE. | 2023-06-08 00:00:00 | Read more |
895950 | Critical log message, Fortigate mmdb signature is missing, is generated on a unit without an AVDB contract. | 2023-06-08 00:00:00 | Read more |
861981 | Traffic drops between two back-to-back EMAC VLAN interfaces. | 2023-06-08 00:00:00 | Read more |
898386 | Browser returns a blank page after logging in to the GUI with an IPv6 address. | 2023-06-08 00:00:00 | Read more |
795443 | The execute reboot script does not work in HA due to a HA failover before the script running is done. | 2023-06-08 00:00:00 | Read more |
855841 | In an HA A-P environment, an old administrator user still exists in the system after restoring the backup. | 2023-06-08 00:00:00 | Read more |
832924 | Timeouts occur when accessing the Migros Bank e-banking application and https://www.gs***.ch/ when the session is offloaded. | 2023-06-08 00:00:00 | Read more |
810783 | The number of IPS sessions is higher than kernel sessions, which causes the FortiGate to enter conserve mode. | 2023-06-08 00:00:00 | Read more |
849515 | ADVPN dynamic tunnel is picking a tunnel ID that is within another VPN interface IP range. | 2023-06-08 00:00:00 | Read more |
899822 | IPsec dialup tunnel interface does not appear in the Interface dropdown of a Dashboard > Status > Interface Bandwidth widget. | 2023-06-08 00:00:00 | Read more |
795272 | Local out DNS traffic is generating forward traffic logs with srcintf "unknown-0". | 2023-06-08 00:00:00 | Read more |
906888 | Free-style filter not working as defined under config fortianalyzer override-filter. | 2023-06-08 00:00:00 | Read more |
886012 | The MTU value on an interface cannot be set using the interface REST API. | 2023-06-08 00:00:00 | Read more |
841364 | Cisco APIC SDN update times out on large datasets. | 2023-06-08 00:00:00 | Read more |
907172 | Automation stitch with FortiDeceptor Fabric connector event trigger cannot be triggered. | 2023-06-08 00:00:00 | Read more |
719740 | The No SSL-VPN policies exist warning is displayed when an SSL VPN zone having an SSL VPN tunnel interface is used in a policy. The warning can be ignored; it does not affect the S... | 2023-06-08 00:00:00 | Read more |
818897 | The value of SNMP OID IP-MIB (RFC 4293) is inaccurate. | 2023-06-08 00:00:00 | Read more |
828129 | A disabled EMAC VLAN interface is replying to a ping. | 2023-06-08 00:00:00 | Read more |
876874 | The Dashboard > Status > Sensor Information widget does not load. | 2023-06-08 00:00:00 | Read more |
894045 | Sensor information widget continuously loading. | 2023-06-08 00:00:00 | Read more |
909345 | An error condition occurs caused by receiving ICMP redirect messages. | 2023-06-08 00:00:00 | Read more |
837185 | Automatic certificate name generation is the same for global and VDOM remote certificates, which can cause certificates to exist with the same name. | 2023-06-08 00:00:00 | Read more |
902816 | An error condition occurs after a failover on the HA cluster deployed on an FG-VM64-AZURE. | 2023-06-08 00:00:00 | Read more |
912184 | An error condition is observed after deploying an FG-VM64-AZURE in Standard_DS4_v2 size. | 2023-06-08 00:00:00 | Read more |
807277 | Video filter function does not block YouTube stream after accessing some allowed channels. | 2023-06-08 00:00:00 | Read more |
887307 | CPU usage issue in WAD caused by checking authentication group member information. | 2023-06-08 00:00:00 | Read more |
875854 | FortiOS7.0.13 is no longer vulnerable to the following CVE Reference: CVE-2023-28001 | 2023-06-08 00:00:00 | Read more |
892978 | FortiOS7.2.5 is no longer vulnerable to the following CVE Reference:CVE-2023-33301 | 2023-06-08 00:00:00 | Read more |
894168 | FortiOS6.2.15 is no longer vulnerable to the following CVE Reference:CVE-2023-29183 | 2023-06-08 00:00:00 | Read more |
894631 | FortiOS7.0.12 is no longer vulnerable to the following CVE Reference:CVE-2023-29178 | 2023-06-08 00:00:00 | Read more |
896403 | IPS Engine 6.00160 is no longer vulnerable to the following CVE Reference: CVE-2023-40718 | 2023-06-08 00:00:00 | Read more |
899434 | FortiOS7.0.12 is no longer vulnerable to the following CVE Reference:CVE-2023-41841 | 2023-06-08 00:00:00 | Read more |
918991 | FortiOS6.2.16 is no longer vulnerable to the following CVE Reference: CVE-2023-36639 | 2023-06-08 00:00:00 | Read more |
941784 | Hardware session synchronization does not work on FG-480xF devices in hyperscale. | 2023-06-08 00:00:00 | Read more |
872686 | Configuration backup on standby unit fails when using SFTP. | 2023-06-08 00:00:00 | Read more |
898456 | NP7 devices become unresponsive until power cycle with rcu_sched self-detected stall on CPU because phase 2 is not initiating rekey at soft limit timeout. | 2023-06-08 00:00:00 | Read more |
893022 | Proxy ARP returns no response. | 2023-06-08 00:00:00 | Read more |
925130 | If the FortiGate manages a FortiSwitch with a FortiSwitch port exported to a tenant VDOM, the Status dashboard on the tenant VDOM cannot load due to an issue with the Security Fabr... | 2023-06-08 00:00:00 | Read more |
920157 | When using Guest Management and creating a new guest user where the User ID is set to Specify, the GUI does not allow administrators to configure the User ID.Workaround: use the Em... | 2023-06-08 00:00:00 | Read more |
867614 | Multiple and recurrent WAD crashes are causing platform instability and conserve mode after upgrading to 6.4.11 because the Unix stream might be null in some scenarios. | 2023-06-08 00:00:00 | Read more |
798724 | FortiSwitch exported ports in tenant VDOM are gone after rebooting the FortiGate. | 2023-06-08 00:00:00 | Read more |
828070 | CLI displays pipe() failed error messages when sending the sensor value to SMC. | 2023-06-08 00:00:00 | Read more |
868002 | FortiGate is unable to resolve DNS from the DNS database for local out traffic (ICMP and access to RADIUS server). | 2023-06-08 00:00:00 | Read more |
688065 | When using the group-override-attr-type class option in a RADIUS configuration, two extra characters are added at the end of the group name. | 2023-06-08 00:00:00 | Read more |
922971 | A mode-cfg hub traffic issue occurs after the phase 1 rekey in FortiOS 6.4.13. It only affects IPv4 mode-cfg dialup configurations with a configured remote-ip . | 2023-06-08 00:00:00 | Read more |
1001497 | FortiGate may enter conserve mode when posting a non or invalid HTTP date through web proxy. | 2023-06-08 00:00:00 | Read more |
948393 | Policy lookup should not get result with policy_action: deny for non-TCP protocols and non-80/443 TCP ports. | 2023-05-11 00:00:00 | Read more |
967205 | Changing the destination in the policy replaces applied services with service, ALL. | 2023-05-11 00:00:00 | Read more |
790464 | Existing ARP entries are removed from all slots when an ARP query of a single slot does not respond. | 2023-05-11 00:00:00 | Read more |
885205 | IPv6 ECMP is not supported for the FG-6000F and FG-7000E platforms. IPv6 ECMP is supported for the FG-7000F platform. | 2023-05-11 00:00:00 | Read more |
887946 | UTM traffic is blocked by an FGSP configuration with asymmetric routing. | 2023-05-11 00:00:00 | Read more |
891642 | FortiGate 6000 and 7000 platforms do not support managing FortiSwitch devices over FortiLink. | 2023-05-11 00:00:00 | Read more |
896758 | Virtual clustering is not supported by FortiGate 6000 and 7000 platforms. | 2023-05-11 00:00:00 | Read more |
905450 | SNMP walk failed to get the BGP routing information. | 2023-05-11 00:00:00 | Read more |
907140 | Authenticated users are not synchronized to the secondary FortiGate 6000 or 7000 chassis when the secondary chassis joins a primary chassis to form an FGCP cluster. | 2023-05-11 00:00:00 | Read more |
907695 | The FortiGate 6000 and 7000 platforms do not support IPsec VPN over a loopback interface or an NPU inter-VDOM link interface. | 2023-05-11 00:00:00 | Read more |
910824 | On the FortiGate 7000F platform, fragmented IPv6 ICMP traffic is not load balanced correctly when the dp-icmp-distribution-method option under config load-balance is set to dst-ip.... | 2023-05-11 00:00:00 | Read more |
910883 | The FortiGate 6000s or 7000s in an FGSP cluster may load balance FTP data sessions to different FPCs or FPMs. This can cause delays while the affected FortiGate 6000 or 7000 re-ins... | 2023-05-11 00:00:00 | Read more |
911244 | FortiGate 7000E IPv6 routes may not be synchronized correctly among FIMs and FPMs. | 2023-05-11 00:00:00 | Read more |
937879 | FortiGate 7000F chassis with FIM-7941Fs cannot load balance fragmented IPv6 TCP and UDP traffic. Instead, fragmented IPv6 TCP and UDP traffic received by the FIM-7941F interfaces i... | 2023-05-11 00:00:00 | Read more |
973407 | FIM installed NPU session causes the SSE to get stuck. | 2023-05-11 00:00:00 | Read more |
817562 | NPD/LPMD cannot differentiate the different VRF's, considers as VRF 0 for all. | 2023-05-11 00:00:00 | Read more |
852051 | Unexpected condition in IPsec engine on SoC4 platforms leads to intermittent IPsec VPN operation. | 2023-05-11 00:00:00 | Read more |
845361 | A rare error condition occured in WAD caused by compounded SMB2 requests. | 2023-05-11 00:00:00 | Read more |
907622 | GUI is missing DDNS Domain text field box when creating a new DDNS entry. | 2023-05-11 00:00:00 | Read more |
912383 | FGR-70F and FGR-70F-3G4G failed to perform regular reboot process (using execute reboot command) with an SD card inserted. | 2023-05-11 00:00:00 | Read more |
921134 | GUI is inaccessible when using a SHA1 certificate as admin-server-cert. | 2023-05-11 00:00:00 | Read more |
944465 | On the WiFi & Switch Controller > Managed FortiAPs page of a non-management VDOM, the Register button is unavailable in the Device Registration pane. | 2023-05-11 00:00:00 | Read more |
888447 | In some cases, the FortiGate 7000F platform cannot correctly reassemble fragmented packets. | 2023-05-11 00:00:00 | Read more |
897629 | The FortiGate 6000 and 7000 platforms do not support EMAC VLANs. | 2023-05-11 00:00:00 | Read more |
901695 | On FortiGate 7000F platforms, NP7-offloaded UDP sessions are not affected by the udp-idle-timer option of the config system global command. | 2023-05-11 00:00:00 | Read more |
908576 | On a FortiGate 7000F, after a new FPM becomes the primary FPM, IPsec VPN dynamic routes are not synchronized to the new primary FPM. | 2023-05-11 00:00:00 | Read more |
908674 | Sessions for IPsec dialup tunnels that are configured to be handled by a specific FPC or FPM may be incorrectly sent to a different FPC or FPM, resulting in traffic being blocked. | 2023-05-11 00:00:00 | Read more |
916903 | When an HA management interface is configured, the GUI may not show the last interface entry in config system interface on several pages, such as the interface list, policy list, a... | 2023-05-11 00:00:00 | Read more |
915796 | With an enabled hyperscale license, in some cases with exception traffic (like ICMP error traverse), the FortiGate may experience unexpected disruptions when handling the exception... | 2023-05-11 00:00:00 | Read more |
926639 | Constant reloading of the shared memory external domain table is causing high CPU usage due to lock contention when reloading the table. | 2023-05-11 00:00:00 | Read more |
893199 | The FortiGate does not generate deallocate/allocate logs of the first IP pool when the first IP pool has been exhausted. | 2023-05-11 00:00:00 | Read more |
783549 | An error condition occurs in WAD caused by multiple outstanding requests sent from client to server with UTM enabled. | 2023-05-11 00:00:00 | Read more |
899358 | Proxy-based deep inspection connection issue occurs. | 2023-05-11 00:00:00 | Read more |
922446 | SSL VPN service over PPPoE interface does not work as expected if the PPPoE interface is configured with config system pppoe-interface.config system pppoe-interface edit <name> ... | 2023-05-11 00:00:00 | Read more |
842159 | FortiGate 200F interfaces stop passing traffic after some time. | 2023-05-11 00:00:00 | Read more |
904486 | The FortiGate may display a false alarm message and subsequently initiate a reboot. | 2023-05-11 00:00:00 | Read more |
923364 | System goes into halt state with Error: Package validation failed... message in cases where there are no engine files in the FortiGate when the BIOS security level is set to 2. | 2023-05-11 00:00:00 | Read more |
923164 | EAP proxy daemon may keep reloading after updating the certificate bundle. | 2023-05-11 00:00:00 | Read more |
924689 | FortiGate VMs in an HA cluster deployed on the Hyper-V platform may get into an unresponsive state where multiple services are impacted: GUI management, CLI commands, SSL VPN sessi... | 2023-05-11 00:00:00 | Read more |
911291 | TheFortiGate does not parse the entries of the sensor from DLP signature package properly, and therefore cannot block files matching a sensor as expected. | 2023-05-11 00:00:00 | Read more |
910068 | On the Policy & Objects > Firewall Policy page, if any of the interface names contain a space, the page does not load when Interface Pair View is selected. | 2023-05-11 00:00:00 | Read more |
912740 | On a FortiGate managed by FortiManager, after upgrading to 7.0.13, the Firewall Policy list may show separate sequence grouping for each policy because the global-label is updated ... | 2023-05-11 00:00:00 | Read more |
919418 | On the Policy & Objects > Firewall Policy page, when the interface name used in a virtual wire pair is a substring of interfaces used in a firewall policy, such policies are not di... | 2023-05-11 00:00:00 | Read more |
888310 | The FortiGate 6000 or 7000 front panel does not appear on the Network > Interfaces and System > HA GUI pages. | 2023-05-11 00:00:00 | Read more |
888873 | The FortiGate 7000E and 7000F platforms do not support GTP and PFCP load balancing. | 2023-05-11 00:00:00 | Read more |
891430 | The FortiGate 6000 and 7000 System Information dashboard widget incorrectly displays the management board or primary FIM serial number instead of the chassis serial number. Use get... | 2023-05-11 00:00:00 | Read more |
899905 | Adding a FortiAnalyzer to a FortiGate 6000 or 7000 Security Fabric configuration from the FortiOS GUI is not supported. | 2023-05-11 00:00:00 | Read more |
902545 | Unable to select a management interface LAG to be the direct SLBC logging interface. | 2023-05-11 00:00:00 | Read more |
905692 | On a FortiGate 6000 or 7000, the active worker count returned by the output of diagnose sys ha dump-by group can be incorrect after an FPC or FPM goes down. | 2023-05-11 00:00:00 | Read more |
905788 | Unable to select a management interface LAG to be the FGSP session synchronization interface. | 2023-05-11 00:00:00 | Read more |
910095 | FGCP session synchronization may not synchronize all sessions on FortiGate 6000 and 7000 models. | 2023-05-11 00:00:00 | Read more |
905200 | When logged in to the GUI of a non-management VDOM and trying to complete the Migrate Config with FortiConverter step in the startup menu, the page does not update and the loading ... | 2023-05-11 00:00:00 | Read more |
905795 | Random FortiSwitch is shown as offline on the GUI when it is actually online. | 2023-05-11 00:00:00 | Read more |
873391 | If the FortiGate is added to FortiManager using the IPv6 address and tunnel is down for some reason, the FortiGate will not reconnect to FortiManager since fmg under system central... | 2023-05-11 00:00:00 | Read more |
828917 | Unexpected behavior in WAD when there are multiple LDAP servers configured on the FortiGate. | 2023-05-11 00:00:00 | Read more |
848593 | After spam mail is detected by the email filter, the X-ASE-REPORT does not insert into the mail header of the spam mail. | 2023-05-11 00:00:00 | Read more |
851706 | Nothing is displayed in the Advanced Threat Protection Statistics dashboard widget. | 2023-05-11 00:00:00 | Read more |
863461 | Scanunit displays unclear warnings when AV package validation fails. | 2023-05-11 00:00:00 | Read more |
879946 | An incorrect warning is shown for antivirus flow: Setting a proxy profile in a flow policy. Proxy features will not work. | 2023-05-11 00:00:00 | Read more |
857632 | Unable to access to some websites when application control with deep inspection is enabled. | 2023-05-11 00:00:00 | Read more |
901166 | Unable to connect to any site when application control is enabled with proxy-based or certificate inspection. | 2023-05-11 00:00:00 | Read more |
893697 | DLP is not blocking VME video files. | 2023-05-11 00:00:00 | Read more |
871854 | DNS UTM log still presents unknown FortiGuard category even when the DNS proxy received a rating value. | 2023-05-11 00:00:00 | Read more |
878674 | Forward traffic log is generated for allowed DNS traffic if the DNS filter is enabled but the policy is set to log security events only. | 2023-05-11 00:00:00 | Read more |
861316 | A system object tagging entry is hindering the FortiGate's ability to process ZTNA tags. | 2023-05-11 00:00:00 | Read more |
878713 | The hit count and bytes of the implicit deny rule does not increase on the proxy policy. | 2023-05-11 00:00:00 | Read more |
880361 | Transparent web proxy policy has no match if the source or destination interface is the same and member of SD-WAN. | 2023-05-11 00:00:00 | Read more |
882867 | Proxy policy match resolves IP to multiple internet service application IDs. | 2023-05-11 00:00:00 | Read more |
888078 | Enabling http-ip-header on virtual server changes the log produced for transparent web proxy. | 2023-05-11 00:00:00 | Read more |
901239 | Unexpected behavior in WAD caused by deploying virtual servers in non-server pool mode. | 2023-05-11 00:00:00 | Read more |
901614 | Firewall schedule does not work as expected with a proxy policy. | 2023-05-11 00:00:00 | Read more |