Fortinet white logo
Fortinet docs logo DOCUMENT LIBRARY
Fortinet white logo
Fortinet docs logo DOCUMENT LIBRARY
Products Best Practices Hardware Guides Products A-Z
Summary
By Solution
By 4D Pillars
By Cloud
All Products
Secure Networking
Unified SASE
Security Operations
Secure SD-WAN
Secure Access Service Edge (SASE)
ZTNA
LAN Edge
Identity and Access Management
Next Generation Firewall
Web Application Firewall
Public Cloud
Private Cloud
FortiCloud
Secure Networking
  • Hybrid Mesh Firewall
  • NOC Management
  • LAN
  • WAN
    • More >>
    Unified SASE
  • Single Vendor SASE
  • Cloud Network Security
  • Secure Endpoint Connectivity
  • Web Application / API Protection
    • More >>
    Security Operations
  • Security Operations Automation
  • Identity
  • Early Detection & Prevention
    • More >>
    Secure Networking
  • Hybrid Mesh Firewall
  • NOC Management
  • LAN
  • WAN
  • Communication & Surveillance
    • Unified SASE
  • Single Vendor SASE
  • Secure Endpoint Connectivity
  • Cloud Network Security
  • Cloud-Native Security
  • Web Application / API Protection
    • Security Operations
  • Security Operations Automation
  • Endpoint
  • Data Protection
  • Identity
  • Email
  • Early Detection & Prevention
  • Expert Services
  • Edge Firewall
  • Orchestration & management
  • SD Branch
  • Application Delivery
  • Single Vendor SASE
  • Secure Endpoint Connectivity
  • Secure Private Access
  • Thin Edge
  • Identity
  • Application Gateway
  • Enterprise Asset Management
  • Endpoint Agent
  • Agentless Security Posture
  • Identity
  • Wireless
  • Switching
  • Identity
  • Privilege Acccess Management
  • Next Generation Firewall
  • Orchestration & management
  • Expert Services
  • Web Application / API Protection
  • All
  • All
  • Account Management
  • SAAS Management
  • SAAS Application Security
  • Managed Services
  • Platform as a service (PAAS)
  • Other SAAS Services
    • 4D Resources
    Solution Hubs
  • 4D Pillars
  • Cloud
  • Popular Solutions
    • All Products

    Release Notes

    Home FortiADC 8.0.0 Release Notes
    8.0.0
    8.0.2
    8.0.1
    8.0.0
    7.6.5
    7.6.4
    7.6.3
    7.6.2
    7.6.1
    7.6.0
    7.4.9
    7.4.8
    7.4.7
    7.4.6
    7.4.5
    7.4.4
    7.4.3
    7.4.2
    7.4.1
    7.4.0
    7.2.8
    7.2.7
    7.2.6
    7.2.5
    7.2.4
    7.2.3
    7.2.2
    7.2.1
    7.2.0
    7.1.5
    7.1.4
    7.1.3
    7.1.2
    7.1.1
    7.1.0
    7.0.6
    7.0.5
    7.0.4
    7.0.3
    7.0.2
    7.0.1
    7.0.0
    6.2.6
    6.2.5
    6.2.4
    6.2.3
    6.2.2
    6.2.1
    6.2.0
    6.1.6
    6.1.5
    6.1.4
    6.1.3
    6.1.2
    6.1.1
    6.1.0
    6.0.4
    6.0.3
    6.0.2
    6.0.1
    6.0.0
    5.4.4
    5.4.4
    5.4.3
    5.4.2
    5.4.1
    5.4.0
    5.3.7
    5.3.6
    5.3.5
    5.3.4
    5.3.3
    5.3.2
    5.3.1
    5.3.0
    5.2.8
    5.2.7
    5.2.6
    5.2.5
    5.2.4
    5.2.3
    5.2.2
    5.2.1
    5.2.0
    5.1.7
    5.1.6
    5.1.5
    5.1.4
    5.1.3
    5.1.2
    5.1.1
    5.1.0
    5.0.4
    5.0.3
    5.0.2
    5.0.1
    5.0.0
    4.8.8
    4.8.7
    4.8.6
    4.8.5
    4.8.4
    4.8.3
    4.8.2
    4.8.1
    4.8.0
    4.7.4
    4.7.3
    4.7.2
    4.7.1

    Resolved issues

    Resolved issues

    The following issues have been resolved in FortiADC 8.0.0 release. For inquiries about particular bugs, please contact Fortinet Customer Service & Support.

    Bug ID

    Description
    1151892 Adaptive Learning related crash when processing HTTP2 requests.
    1145394 Configured DNS settings are overridden by default nameserver in AWS.
    1131903 FortiADC returns <MISSING> in the SNMP response for sysinfo queries, resulting in incomplete system information retrieval.
    1127125 IPv6 fragments from real server (RS) responses are reassembled at the virtual server (VS) but are not re-fragmented when forwarded to the client, causing transmission failure due to MTU checks. This creates a directional inconsistency, as fragmentation is not supported on the VS-to-client path.
    1122454 Certificates are incorrectly deleted from the Local Certificate group when ACME encounters group members with missing or invalid IDs.
    1120679 Oracle health check stops working due to a memory leak caused by unfreed lists and buffers after pthread_kill, leading to resource exhaustion over time.
    1120666 After upgrading from 7.4.x to 7.6.1, the GUI incorrectly displays the hardware license status as "Unknown support (Expires: Unknown)", despite valid licensing.
    1120243 FortiADC 1200F reports incorrect traffic and packet counter values in SNMP and CLI due to improper interface name handling, leading to discrepancies in monitoring data.
    1119257 HA fails to establish between FortiADC nodes on firmware version 7.4.7 B0378 due to heartbeat message decoding errors, preventing synchronization between FortiADC-1 and FortiADC-2 KVM nodes.
    1117823 The "Timeout UDP Session" field is incorrectly shown in the GUI when Stateless mode is enabled for a UDP Application Profile.
    1116520 HTTP/2 requests to a specific URL result in timeouts, whereas HTTP/1.1 works without issue. This is due to delays in data transmission caused by HTTP/2 waiting for window updates. Internal adjustments to httproxy's send-state flags were made to improve alignment with HTTP/2 flow control, reducing the likelihood of transmission stalls due to insufficient window size.
    1116460 Memory issue due to unfreed LDAP structures before each check, leading to incremental memory usage increase and process termination.
    1115210 Remote LDAP authentication fails when accessing via ConsolePort, as the admin_auth function is not triggered during login.
    1112914 FortiADC attempts to connect to 8.8.8.8 on port 53 when the DNS is configured to 0.0.0.0, despite the DNS setting being invalid.
    1112580 The ssl_client utility in BusyBox does not function correctly for real server health checks due to missing system entropy. This prevents successful SSL handshakes during checks.
    1106109 Connected route not displaying in HA-VRRP due to insufficient rtmd receiving buffer size configuration.
    1103348 FortiADC AntiVirus does not block the EICAR file during upload (HTTP PUT), but can block it during download (HTTP GET) due to lack of support for scanning HTTP PUT traffic.
    1096464 FortiADC's SSH server public key length is insufficient. The recommended minimum RSA public key length is 2048 bits or greater.
    1093020 REST-API allows token brute-force attacks and does not log failed login attempts, leading to potential security vulnerabilities.
    1091639 Local certificate import fails when the passphrase for the private key contains a backslash (), which is not handled properly.
    1091469 Health check status is not properly updated on the secondary device after an HA failover. When the secondary device is promoted to primary, the status in the logical topology is not reflected correctly, leading to a lack of visibility on service availability and no alerts for service changes.
    Previous
    Next

    Resolved issues

    Resolved issues

    The following issues have been resolved in FortiADC 8.0.0 release. For inquiries about particular bugs, please contact Fortinet Customer Service & Support.

    Bug ID

    Description
    1151892 Adaptive Learning related crash when processing HTTP2 requests.
    1145394 Configured DNS settings are overridden by default nameserver in AWS.
    1131903 FortiADC returns <MISSING> in the SNMP response for sysinfo queries, resulting in incomplete system information retrieval.
    1127125 IPv6 fragments from real server (RS) responses are reassembled at the virtual server (VS) but are not re-fragmented when forwarded to the client, causing transmission failure due to MTU checks. This creates a directional inconsistency, as fragmentation is not supported on the VS-to-client path.
    1122454 Certificates are incorrectly deleted from the Local Certificate group when ACME encounters group members with missing or invalid IDs.
    1120679 Oracle health check stops working due to a memory leak caused by unfreed lists and buffers after pthread_kill, leading to resource exhaustion over time.
    1120666 After upgrading from 7.4.x to 7.6.1, the GUI incorrectly displays the hardware license status as "Unknown support (Expires: Unknown)", despite valid licensing.
    1120243 FortiADC 1200F reports incorrect traffic and packet counter values in SNMP and CLI due to improper interface name handling, leading to discrepancies in monitoring data.
    1119257 HA fails to establish between FortiADC nodes on firmware version 7.4.7 B0378 due to heartbeat message decoding errors, preventing synchronization between FortiADC-1 and FortiADC-2 KVM nodes.
    1117823 The "Timeout UDP Session" field is incorrectly shown in the GUI when Stateless mode is enabled for a UDP Application Profile.
    1116520 HTTP/2 requests to a specific URL result in timeouts, whereas HTTP/1.1 works without issue. This is due to delays in data transmission caused by HTTP/2 waiting for window updates. Internal adjustments to httproxy's send-state flags were made to improve alignment with HTTP/2 flow control, reducing the likelihood of transmission stalls due to insufficient window size.
    1116460 Memory issue due to unfreed LDAP structures before each check, leading to incremental memory usage increase and process termination.
    1115210 Remote LDAP authentication fails when accessing via ConsolePort, as the admin_auth function is not triggered during login.
    1112914 FortiADC attempts to connect to 8.8.8.8 on port 53 when the DNS is configured to 0.0.0.0, despite the DNS setting being invalid.
    1112580 The ssl_client utility in BusyBox does not function correctly for real server health checks due to missing system entropy. This prevents successful SSL handshakes during checks.
    1106109 Connected route not displaying in HA-VRRP due to insufficient rtmd receiving buffer size configuration.
    1103348 FortiADC AntiVirus does not block the EICAR file during upload (HTTP PUT), but can block it during download (HTTP GET) due to lack of support for scanning HTTP PUT traffic.
    1096464 FortiADC's SSH server public key length is insufficient. The recommended minimum RSA public key length is 2048 bits or greater.
    1093020 REST-API allows token brute-force attacks and does not log failed login attempts, leading to potential security vulnerabilities.
    1091639 Local certificate import fails when the passphrase for the private key contains a backslash (), which is not handled properly.
    1091469 Health check status is not properly updated on the secondary device after an HA failover. When the secondary device is promoted to primary, the status in the logical topology is not reflected correctly, leading to a lack of visibility on service availability and no alerts for service changes.
    Previous
    Next