Fortinet black logo

Hyperscale Firewall Release Notes

Home FortiGate / FortiOS 7.2.1 Hyperscale Firewall Release Notes
7.2.1
7.2.4
7.2.3
7.2.2
7.2.1
7.0.11
7.0.10
7.0.9
7.0.8
7.0.7
7.0.6
7.0.5
6.4.12
6.4.11
6.4.10
6.4.9
6.4.8
6.4.6
6.2.9
6.2.7
6.2.6

Resolved issues

Resolved issues

The following issues have been fixed in Hyperscale firewall for FortiOS 7.2.1 Build 1254. For inquires about a particular bug, please contact Customer Service & Support. The Resolved issues described in the FortiOS 7.2.1 release notes also apply to Hyperscale firewall for FortiOS 7.2.1 Build 1254.

Bug ID

Description
805808 Resolved an issue on FortiGates with NP7 processors that could cause TCP packets to be dropped because of how packet fragmenting was handled for sessions with proxy inspection and antivirus.
810025 EIF now supports hairpinning for NAT64 sessions.
812844 Multiple default routes are now handled as expected by Hyperscale firewall VDOMs.
818811 Resolved an issue with NTurbo that caused FortiGates with NP7 processors to crash when offloading SSL mirror traffic to NP7 processors.
821799 Resolved an issue with how NP6 and NP7 processors handle IPsec VPN ID with IPIP encapsulation tunnels. This issue could cause traffic failure for IPsec VPN tunnels between two FortiGates that are both using NP6 or NP7 processors to offload the IPsec VPN traffic. This problem would only occur when VPN ID with IPIP encapsulation causes the NP6 or NP7 processor to perform pre-IPsec packet fragmentation.
825622 In a Hyperscale firewall VDOM, you can no longer change the CGN IP pool type to be incompatible with the IP pool configuration. In previous releases, it was possible that changing to an CGN IP pool type that is not compatible with the configuration of the IP pool would cause the npd process to crash and possibly restart the FortiGate.
Previous
Next

Resolved issues

The following issues have been fixed in Hyperscale firewall for FortiOS 7.2.1 Build 1254. For inquires about a particular bug, please contact Customer Service & Support. The Resolved issues described in the FortiOS 7.2.1 release notes also apply to Hyperscale firewall for FortiOS 7.2.1 Build 1254.

Bug ID

Description
805808 Resolved an issue on FortiGates with NP7 processors that could cause TCP packets to be dropped because of how packet fragmenting was handled for sessions with proxy inspection and antivirus.
810025 EIF now supports hairpinning for NAT64 sessions.
812844 Multiple default routes are now handled as expected by Hyperscale firewall VDOMs.
818811 Resolved an issue with NTurbo that caused FortiGates with NP7 processors to crash when offloading SSL mirror traffic to NP7 processors.
821799 Resolved an issue with how NP6 and NP7 processors handle IPsec VPN ID with IPIP encapsulation tunnels. This issue could cause traffic failure for IPsec VPN tunnels between two FortiGates that are both using NP6 or NP7 processors to offload the IPsec VPN traffic. This problem would only occur when VPN ID with IPIP encapsulation causes the NP6 or NP7 processor to perform pre-IPsec packet fragmentation.
825622 In a Hyperscale firewall VDOM, you can no longer change the CGN IP pool type to be incompatible with the IP pool configuration. In previous releases, it was possible that changing to an CGN IP pool type that is not compatible with the configuration of the IP pool would cause the npd process to crash and possibly restart the FortiGate.
Previous
Next