Fortinet white logo
Fortinet docs logo DOCUMENT LIBRARY
Fortinet white logo
Fortinet docs logo DOCUMENT LIBRARY
Products Best Practices Hardware Guides Products A-Z
Summary
By Solution
By 4D Pillars
By Cloud
Secure Networking
Unified SASE
Security Operations
Secure SD-WAN
Secure Access Service Edge (SASE)
ZTNA
LAN Edge
Identity and Access Management
Next Generation Firewall
Public Cloud
Private Cloud
FortiCloud
Secure Networking
  • Hybrid Mesh Firewall
  • NOC Management
  • LAN
  • WAN
    • More >>
    Unified SASE
  • Single Vendor SASE
  • Cloud Network Security
  • Secure Endpoint Connectivity
  • Web Application / API Protection
    • More >>
    Security Operations
  • Security Operations Automation
  • Identity
  • Early Detection & Prevention
    • More >>
    Secure Networking
  • Hybrid Mesh Firewall
  • NOC Management
  • LAN
  • WAN
  • Communication & Surveillance
    • Unified SASE
  • Single Vendor SASE
  • Secure Endpoint Connectivity
  • Cloud Network Security
  • Cloud-Native Security
  • Web Application / API Protection
    • Security Operations
  • Security Operations Automation
  • Endpoint
  • Data Protection
  • Identity
  • Email
  • Early Detection & Prevention
  • Expert Services
  • Edge Firewall
  • Orchestration & management
  • SD Branch
  • Application Delivery
  • Single Vendor SASE
  • Secure Endpoint Connectivity
  • Secure Private Access
  • Thin Edge
  • Identity
  • Application Gateway
  • Enterprise Asset Management
  • Endpoint Agent
  • Agentless Security Posture
  • Identity
  • Wireless
  • Switching
  • Identity
  • Privilege Acccess Management
  • Next Generation Firewall
  • Orchestration & management
  • Expert Services
  • All
  • All
  • Account Management
  • SAAS Management
  • SAAS Application Security
  • Managed Services
  • Platform as a service (PAAS)
  • Other SAAS Services
    • 4D Resources
    Solution Hubs
  • 4D Pillars
  • Cloud
  • Popular Solutions

    • FortiOS Release Notes

    Home FortiGate / FortiOS 7.6.1 FortiOS Release Notes
    7.6.1
    7.6.1
    7.6.0
    7.4.5
    7.4.4
    7.4.3
    7.4.2
    7.4.1
    7.4.0
    7.2.10
    7.2.9
    7.2.8
    7.2.7
    7.2.6
    7.2.5
    7.2.4
    7.2.3
    7.2.2
    7.2.1
    7.2.0
    7.0.16
    7.0.15
    7.0.14
    7.0.13
    7.0.12
    7.0.11
    7.0.10
    7.0.9
    7.0.8
    7.0.7
    7.0.6
    7.0.5
    7.0.4
    7.0.3
    7.0.2
    7.0.1
    7.0.0
    6.4.15
    6.4.14
    6.4.13
    6.4.12
    6.4.11
    6.4.10
    6.4.9
    6.4.8
    6.4.7
    6.4.6
    6.4.5
    6.4.4
    6.4.3
    6.4.2
    6.4.1
    6.4.0
    6.2.16
    6.2.15
    6.2.14
    6.2.13
    6.2.12
    6.2.11
    6.2.10
    6.2.9
    6.2.8
    6.2.7
    6.2.6
    6.2.5
    6.2.4
    6.2.3
    6.2.2
    6.2.1
    6.2.0
    6.0.18
    6.0.17
    6.0.16
    6.0.15
    6.0.14
    6.0.13
    6.0.12
    6.0.11
    6.0.10
    6.0.9
    6.0.8
    6.0.7
    6.0.6
    6.0.5
    6.0.4
    6.0.3
    6.0.2
    6.0.1
    6.0.0
    5.6.14
    5.6.13
    5.6.12
    5.6.11
    5.6.10
    5.6.9
    5.6.8
    5.6.7
    5.6.6
    5.6.5
    5.6.4
    5.6.3
    5.6.2
    5.6.1
    5.6.0
    5.4.13
    5.4.12
    5.4.11
    5.4.10
    5.4.9
    5.4.8
    5.4.7
    5.4.6
    5.4.5
    5.4.4
    5.4.3
    5.4.2
    5.4.1
    5.4.0
    5.2.15
    5.2.14
    5.2.13
    5.2.12
    5.2.11
    5.2.10
    5.2.9
    5.2.8
    5.2.7
    5.2.6
    5.2.5
    5.2.4
    5.2.3
    5.2.2
    5.2.1
    5.2.0
    5.0.14
    5.0.13
    5.0.12
    5.0.11
    5.0.10
    5.0.9
    5.0.8
    5.0.7
    5.0.6
    5.0.5
    5.0.4
    5.0.3
    5.0.2

    Known issues

    Known issues

    Known issues are organized into the following categories:

    To inquire about a particular bug or report a bug, please contact Customer Service & Support.

    New known issues

    The following issues have been identified in version 7.6.1.

    Hyperscale

    Bug ID

    Description

    1013892

    On FortiGate's in an HA pair, the npd process do not work as expected when trying to manually update the threat feed.

    Intrusion Prevention

    Bug ID

    Description
    1076213

    FortiGate's with 4GB memory might enter conserve mode during the FortiGuard update when IPS or APP control is enabled.

    Workaround: Disable the proxy-inline-ips option under config ips settings.

    Existing known issues

    The following issues have been identified in a previous version of FortiOS and remain in FortiOS 7.6.1.

    Endpoint Control

    Bug ID

    Description

    1019658

    On FortiGate, not all registered endpoint EMS tags are displayed in the GUI.

    1038004

    FortiGate may not display the correct user information for some FortiClient instances.

    Firewall

    Bug ID

    Description

    959065

    On the Policy & Objects > Traffic Shaping page, when deleting or creating a shaper, the counters for the other shapers are cleared.

    990528

    When searching for an IP address on the Firewall Policy page, the search/filter functionality does not return the expected results.

    FortiGate 6000 and 7000 platforms

    Bug ID

    Description

    653335

    SSL VPN user status does not display on the FortiManager GUI.

    790464

    After a failover, ARP entries are removed from all slots when an ARP query of single slot does not respond.

    936320

    When there is a heavy traffic load, there are no results displayed on any FortiView pages in the GUI.

    950983

    Feature Visibility options are visible in the GUI on a mgmt-vdom.

    994241

    On FortiGate 7000F using FGSP and FGCP, when TCP traffic takes an asymmetric path, the TCP ACK and data packets might be dropped in NP7.

    998615

    When doing a GUI-packet capture on FortiGate, the through-traffic packets are not captured.

    1006759

    After an HA failover, there is no IPsec route in the kernel.

    1014826

    SLBC does not function as expected with IPsec over TCP enabled.

    FortiView

    Bug ID

    Description

    1034148

    The Application Bandwidth widget on the Dashboard > Status page does not display some external applications bandwidth data.

    GUI

    Bug ID

    Description

    853352

    When viewing entries in slide-out window of the Policy & Objects > Internet Service Database page, users cannot scroll down to the end if there are over 100000 entries.

    1047146

    After a firmware upgrade, a VLAN interface used in IPsec, SSL VPN, or SD-WAN is not displayed on the interface list or the SD-WAN page and cannot be configured in the GUI.

    HA

    Bug ID

    Description

    851743

    When running the diag sys ha checksum cluster command, a previous line result is added further down in the output instead of new line result when a FortiGate is configured with several VDOMs .

    Hyperscale

    Bug ID

    Description

    1030907

    With a FGSP and FGCP setup, sessions do not show on the HA secondary when the FGSP peer is in HA.

    1042011

    On FortiGate, an login error message displays in the event log after completing an automation.

    1093287

    Using fixed-allocation IP Pools may cause NP7 NSS/PRP modules to become stuck, potentially disrupting traffic. Other PBA IP pools do not have this issue.

    IPsec VPN

    Bug ID

    Description

    735398

    On FortiGate, the IKE anti-replay does not log duplicate ESP packets when SA is offloaded in the event log.

    944600

    CPU usage issues occurred when IPsec VPN traffic was received on the VLAN interface of an NP7 vlink.

    995912

    After a firmware upgrade, some VPN tunnels experience intermittent signal disruptions causing traffic to be re-routed.

    1042371

    RADIUS authentication with EAP-TLS does not work as expected through IPsec tunnels.

    Log & Report

    Bug ID

    Description

    611460

    On FortiOS, the Log & Report > Forward Traffic page does not completely load the entire log when the log exceeds 200MB.

    Proxy

    Bug ID

    Description

    1023054

    After an upgrade on a 2GB FortiGate device, the firewall policy does not switch from Proxy-based to Flow-based in the Inspection mode field.

    REST API

    Bug ID

    Description

    938349

    Unsuccessful API user login attempts do not get reset within the time specified in admin-lockout-threshold.

    993345

    The router API does not include all ECMP routes for SD-WAN included in the get router info routing-table command.

    1051870

    After a firmware upgrade, some vlan interfaces attached to LAG interface are not displayed in the GUI.

    Security Fabric

    Bug ID

    Description

    1011833

    FortiGate experiences a CPU usage issue in the Node.js daemon when there multiple administrator sessions running simultaneously.

    1019844

    In an HA configuration, when the primary FortiGate unit fails over to a downstream unit, the previous primary unit displays as being permanently disconnected.

    1040058

    The Security Rating topology and results does not display non-FortiGate devices.

    Switch Controller

    Bug ID

    Description

    961142

    An interface in FortiLink is flapping with an MCLAG FortiSwitch using DAC on an OPSFPP-T-05-PAB transceiver.

    System

    Bug ID

    Description

    947982

    On NP7 platforms, DSW packets are missing resulting in VOIP experiencing performance issues during peak times.

    971466

    FortiGateRugged 60 models may experience packet loss when directly connected to Cisco switch.

    1041726

    Traffic flow speed is reduced or interrupted when the traffic shaper is enabled.

    1046484

    After shutting down FortiGate, the system automatically boots up again.

    1047085

    The FortiOS GUI is unresponsive due to a CPU usage issue with the csfd and node processes.

    1058256

    On FortiGate, interfaces with DAC cables remain down after upgrading to version 7.4.4.

    Upgrade

    Bug ID

    Description

    1043815

    Upgrading the firmware for a large number (100+) of FortiSwitch or FortiAP devices at the same time may cause performance issues with the GUI and some devices may not upgrade.

    Workaround: pace out the upgrade schedule and upgrade devices in smaller batches.

    User & Authentication

    Bug ID

    Description

    802089

    User groups from FortiManager are not synchronized across all units except the MBD.

    1021719

    On the System > Certificates page, the Create Certificate pane does not function as expected after creating a new certificate.

    1082800

    When performing LDAP user searches from the GUI against LDAP servers with a large number of users (more than 100000), FortiGate may experience a performance issue and not operate as expected due to the HTTPSD process consuming too much memory. User may need to stop the HTTPSD process or perform a reboot to recover.

    Workaround: Perform an LDAP user search using the CLI.

    Web Filter

    Bug ID

    Description

    1040147

    Options set in ftgd-wf cannot be undone for a web filter configuration.

    1058007

    Web filter custom replacement messages in group configurations cannot be edited in FortiGate.
    Previous
    Next

    Known issues

    Known issues

    Known issues are organized into the following categories:

    To inquire about a particular bug or report a bug, please contact Customer Service & Support.

    New known issues

    The following issues have been identified in version 7.6.1.

    Hyperscale

    Bug ID

    Description

    1013892

    On FortiGate's in an HA pair, the npd process do not work as expected when trying to manually update the threat feed.

    Intrusion Prevention

    Bug ID

    Description
    1076213

    FortiGate's with 4GB memory might enter conserve mode during the FortiGuard update when IPS or APP control is enabled.

    Workaround: Disable the proxy-inline-ips option under config ips settings.

    Existing known issues

    The following issues have been identified in a previous version of FortiOS and remain in FortiOS 7.6.1.

    Endpoint Control

    Bug ID

    Description

    1019658

    On FortiGate, not all registered endpoint EMS tags are displayed in the GUI.

    1038004

    FortiGate may not display the correct user information for some FortiClient instances.

    Firewall

    Bug ID

    Description

    959065

    On the Policy & Objects > Traffic Shaping page, when deleting or creating a shaper, the counters for the other shapers are cleared.

    990528

    When searching for an IP address on the Firewall Policy page, the search/filter functionality does not return the expected results.

    FortiGate 6000 and 7000 platforms

    Bug ID

    Description

    653335

    SSL VPN user status does not display on the FortiManager GUI.

    790464

    After a failover, ARP entries are removed from all slots when an ARP query of single slot does not respond.

    936320

    When there is a heavy traffic load, there are no results displayed on any FortiView pages in the GUI.

    950983

    Feature Visibility options are visible in the GUI on a mgmt-vdom.

    994241

    On FortiGate 7000F using FGSP and FGCP, when TCP traffic takes an asymmetric path, the TCP ACK and data packets might be dropped in NP7.

    998615

    When doing a GUI-packet capture on FortiGate, the through-traffic packets are not captured.

    1006759

    After an HA failover, there is no IPsec route in the kernel.

    1014826

    SLBC does not function as expected with IPsec over TCP enabled.

    FortiView

    Bug ID

    Description

    1034148

    The Application Bandwidth widget on the Dashboard > Status page does not display some external applications bandwidth data.

    GUI

    Bug ID

    Description

    853352

    When viewing entries in slide-out window of the Policy & Objects > Internet Service Database page, users cannot scroll down to the end if there are over 100000 entries.

    1047146

    After a firmware upgrade, a VLAN interface used in IPsec, SSL VPN, or SD-WAN is not displayed on the interface list or the SD-WAN page and cannot be configured in the GUI.

    HA

    Bug ID

    Description

    851743

    When running the diag sys ha checksum cluster command, a previous line result is added further down in the output instead of new line result when a FortiGate is configured with several VDOMs .

    Hyperscale

    Bug ID

    Description

    1030907

    With a FGSP and FGCP setup, sessions do not show on the HA secondary when the FGSP peer is in HA.

    1042011

    On FortiGate, an login error message displays in the event log after completing an automation.

    1093287

    Using fixed-allocation IP Pools may cause NP7 NSS/PRP modules to become stuck, potentially disrupting traffic. Other PBA IP pools do not have this issue.

    IPsec VPN

    Bug ID

    Description

    735398

    On FortiGate, the IKE anti-replay does not log duplicate ESP packets when SA is offloaded in the event log.

    944600

    CPU usage issues occurred when IPsec VPN traffic was received on the VLAN interface of an NP7 vlink.

    995912

    After a firmware upgrade, some VPN tunnels experience intermittent signal disruptions causing traffic to be re-routed.

    1042371

    RADIUS authentication with EAP-TLS does not work as expected through IPsec tunnels.

    Log & Report

    Bug ID

    Description

    611460

    On FortiOS, the Log & Report > Forward Traffic page does not completely load the entire log when the log exceeds 200MB.

    Proxy

    Bug ID

    Description

    1023054

    After an upgrade on a 2GB FortiGate device, the firewall policy does not switch from Proxy-based to Flow-based in the Inspection mode field.

    REST API

    Bug ID

    Description

    938349

    Unsuccessful API user login attempts do not get reset within the time specified in admin-lockout-threshold.

    993345

    The router API does not include all ECMP routes for SD-WAN included in the get router info routing-table command.

    1051870

    After a firmware upgrade, some vlan interfaces attached to LAG interface are not displayed in the GUI.

    Security Fabric

    Bug ID

    Description

    1011833

    FortiGate experiences a CPU usage issue in the Node.js daemon when there multiple administrator sessions running simultaneously.

    1019844

    In an HA configuration, when the primary FortiGate unit fails over to a downstream unit, the previous primary unit displays as being permanently disconnected.

    1040058

    The Security Rating topology and results does not display non-FortiGate devices.

    Switch Controller

    Bug ID

    Description

    961142

    An interface in FortiLink is flapping with an MCLAG FortiSwitch using DAC on an OPSFPP-T-05-PAB transceiver.

    System

    Bug ID

    Description

    947982

    On NP7 platforms, DSW packets are missing resulting in VOIP experiencing performance issues during peak times.

    971466

    FortiGateRugged 60 models may experience packet loss when directly connected to Cisco switch.

    1041726

    Traffic flow speed is reduced or interrupted when the traffic shaper is enabled.

    1046484

    After shutting down FortiGate, the system automatically boots up again.

    1047085

    The FortiOS GUI is unresponsive due to a CPU usage issue with the csfd and node processes.

    1058256

    On FortiGate, interfaces with DAC cables remain down after upgrading to version 7.4.4.

    Upgrade

    Bug ID

    Description

    1043815

    Upgrading the firmware for a large number (100+) of FortiSwitch or FortiAP devices at the same time may cause performance issues with the GUI and some devices may not upgrade.

    Workaround: pace out the upgrade schedule and upgrade devices in smaller batches.

    User & Authentication

    Bug ID

    Description

    802089

    User groups from FortiManager are not synchronized across all units except the MBD.

    1021719

    On the System > Certificates page, the Create Certificate pane does not function as expected after creating a new certificate.

    1082800

    When performing LDAP user searches from the GUI against LDAP servers with a large number of users (more than 100000), FortiGate may experience a performance issue and not operate as expected due to the HTTPSD process consuming too much memory. User may need to stop the HTTPSD process or perform a reboot to recover.

    Workaround: Perform an LDAP user search using the CLI.

    Web Filter

    Bug ID

    Description

    1040147

    Options set in ftgd-wf cannot be undone for a web filter configuration.

    1058007

    Web filter custom replacement messages in group configurations cannot be edited in FortiGate.
    Previous
    Next