Fortinet white logo
Fortinet docs logo DOCUMENT LIBRARY
Fortinet white logo
Fortinet docs logo DOCUMENT LIBRARY
Products Best Practices Hardware Guides Products A-Z
Summary
By Solution
By 4D Pillars
By Cloud
All Products
Secure Networking
Unified SASE
Security Operations
Secure SD-WAN
Secure Access Service Edge (SASE)
ZTNA
LAN Edge
Identity and Access Management
Next Generation Firewall
Web Application Firewall
Public Cloud
Private Cloud
FortiCloud
Secure Networking
  • Hybrid Mesh Firewall
  • NOC Management
  • LAN
  • WAN
    • More >>
    Unified SASE
  • Single Vendor SASE
  • Cloud Network Security
  • Secure Endpoint Connectivity
  • Web Application / API Protection
    • More >>
    Security Operations
  • Security Operations Automation
  • Identity
  • Early Detection & Prevention
    • More >>
    Secure Networking
  • Hybrid Mesh Firewall
  • NOC Management
  • LAN
  • WAN
  • Communication & Surveillance
    • Unified SASE
  • Single Vendor SASE
  • Secure Endpoint Connectivity
  • Cloud Network Security
  • Cloud-Native Security
  • Web Application / API Protection
    • Security Operations
  • Security Operations Automation
  • Endpoint
  • Data Protection
  • Identity
  • Email
  • Early Detection & Prevention
  • Expert Services
  • Edge Firewall
  • Orchestration & management
  • SD Branch
  • Application Delivery
  • Single Vendor SASE
  • Secure Endpoint Connectivity
  • Secure Private Access
  • Thin Edge
  • Identity
  • Application Gateway
  • Enterprise Asset Management
  • Endpoint Agent
  • Agentless Security Posture
  • Identity
  • Wireless
  • Switching
  • Identity
  • Privilege Acccess Management
  • Next Generation Firewall
  • Orchestration & management
  • Expert Services
  • Web Application / API Protection
  • All
  • All
  • Account Management
  • SAAS Management
  • SAAS Application Security
  • Managed Services
  • Platform as a service (PAAS)
  • Other SAAS Services
    • 4D Resources
    Solution Hubs
  • 4D Pillars
  • Cloud
  • Popular Solutions
    • All Products

    Release Notes

    7.2.1
    7.2.2
    7.2.1

    Known Issues

    Known Issues

    The following issues have been identified in Container FortiOS 7.2.1. For inquires about a particular bug or to report a bug, please contact Customer Service & Support.

    Bug ID

    Description

    1027392

    Container FortiOS fails to block FortiGuard sample files using DPI and AV.
    1027058 Status in config system autoupdate schedule is ignored.
    1026239 When configuration restoration fails, the previous configuration is not kept. Instead the default configuration is loaded.

    1025710

    		 Container FortiOS does not translate VIP when utm-status is enabled but without any feature set on firewall policy.

    1023047

    		 dia test application restapi 127.0.0.1 443 returns ERROR: Error: socket hang up.
    1020326 Adding a new IPsec phase1 interface entry brings established tunnel down and up.
    1017298 Add schedule to config firewall policy in NGFW profile mode.
    1013833 In NGFW policy mode, sometimes the URL category rating is not set for traffic which should be blocked by implicit deny policy.

    1002122

    Operation with multiple dataplanes fails (multus).

    977762

    Container FortiOS does not learn settings in config system dns.

    973816

    VIP configured on Container FortiOS will not reach the firewall policy engine and traffic passes through.

    966694

    iptables v1.8.7 (legacy): multiple -p flags not allowed error in Docker container startup log.

    963766

    HTTP/HTTPS traffic to VIP address cannot pass when service on firewall policy is not ALL.

    947623

    Custom application control replacement message group does not take effect.

    941912

    Site to site VPN traffic does not trigger Container FortiOS to bring up the tunnel after manually bringing it down from FortiGate.

    939520

    With static NAT VIP configured, eicar in HTTPS download is not blocked by antivirus.

    925802

    Only the first VIP in firewall policy dstaddr works.

    877408

    With other-application-log enabled, sometimes utmaction in traffic log is allow when Twitter is blocked.

    876660

    Facebook and Instagram are not blocked when action for Social.Media is set to block in application list.

    850619

    Interface name in packet sniffer output is always wan.

    846255

    set logtraffic all does not log non-security events.

    843686

    IPS and traffic log have srcintf/dstintf exchanged.

    824457

    Replacement message and AV log show file quarantined when quarantine feature is not supported.

    805909

    WebFilter remote URL category match fails.

    803998

    HTTP traffic with non-default port is blocked by wildcard policy with enforce-default-app-port enabled.

    767061

    HTTP POST is not blocked according to webfilter profile config in NGFW policy mode.

    766932

    NGFW policy mode: application match is failed until ipsmonitor restart.

    766577

    SSL profile in server cert replace mode, address exempt does not work.
    Previous
    Next

    Known Issues

    Known Issues

    The following issues have been identified in Container FortiOS 7.2.1. For inquires about a particular bug or to report a bug, please contact Customer Service & Support.

    Bug ID

    Description

    1027392

    Container FortiOS fails to block FortiGuard sample files using DPI and AV.
    1027058 Status in config system autoupdate schedule is ignored.
    1026239 When configuration restoration fails, the previous configuration is not kept. Instead the default configuration is loaded.

    1025710

    		 Container FortiOS does not translate VIP when utm-status is enabled but without any feature set on firewall policy.

    1023047

    		 dia test application restapi 127.0.0.1 443 returns ERROR: Error: socket hang up.
    1020326 Adding a new IPsec phase1 interface entry brings established tunnel down and up.
    1017298 Add schedule to config firewall policy in NGFW profile mode.
    1013833 In NGFW policy mode, sometimes the URL category rating is not set for traffic which should be blocked by implicit deny policy.

    1002122

    Operation with multiple dataplanes fails (multus).

    977762

    Container FortiOS does not learn settings in config system dns.

    973816

    VIP configured on Container FortiOS will not reach the firewall policy engine and traffic passes through.

    966694

    iptables v1.8.7 (legacy): multiple -p flags not allowed error in Docker container startup log.

    963766

    HTTP/HTTPS traffic to VIP address cannot pass when service on firewall policy is not ALL.

    947623

    Custom application control replacement message group does not take effect.

    941912

    Site to site VPN traffic does not trigger Container FortiOS to bring up the tunnel after manually bringing it down from FortiGate.

    939520

    With static NAT VIP configured, eicar in HTTPS download is not blocked by antivirus.

    925802

    Only the first VIP in firewall policy dstaddr works.

    877408

    With other-application-log enabled, sometimes utmaction in traffic log is allow when Twitter is blocked.

    876660

    Facebook and Instagram are not blocked when action for Social.Media is set to block in application list.

    850619

    Interface name in packet sniffer output is always wan.

    846255

    set logtraffic all does not log non-security events.

    843686

    IPS and traffic log have srcintf/dstintf exchanged.

    824457

    Replacement message and AV log show file quarantined when quarantine feature is not supported.

    805909

    WebFilter remote URL category match fails.

    803998

    HTTP traffic with non-default port is blocked by wildcard policy with enforce-default-app-port enabled.

    767061

    HTTP POST is not blocked according to webfilter profile config in NGFW policy mode.

    766932

    NGFW policy mode: application match is failed until ipsmonitor restart.

    766577

    SSL profile in server cert replace mode, address exempt does not work.
    Previous
    Next