Fortinet black logo

Release Notes

Home FortiMail 7.0.0 Release Notes
7.0.0
7.4.2
7.4.1
7.4.0
7.2.6
7.2.5
7.2.4
7.2.3
7.2.2
7.2.1
7.2.0
7.0.7
7.0.6
7.0.5
7.0.4
7.0.3
7.0.2
7.0.1
7.0.0
6.2.5

What's New

What's New

The following table summarizes the new features and enhancements in this release.

Feature

Description

Email Continuity

 (FEEC license required) When FortiMail runs in gateway or transparent mode, end user can still interact with the incoming email when the protected mail server is not reachable.

User Account Synchronization

 Periodically synchronize user accounts from the LDAP servers and MS365 servers to keep the mailbox accounting statistics up-to-date.
HA Synchronization Control (CLI only) New CLI commands to control which settings will not be synchronized from the primary unit to the secondary unit.

HA Synchronization Status

 Display HA sync status on the dashboard, centralized monitor, and HA settings.

Cousin Domain Detection

 The method checks for the domain names that may be deliberately misspelled, either by character removal, substitution, and/or transposition, in order to make emails look as though they originate from trusted internal sources.

Admin Access Profile Enhancement

More detailed controls in the administrator access profiles.

DANE Support

Add DANE support to TLS profiles.

Sender Rewriting Scheme (SRS) Support SRS is used to rewrite the envelope sender of an email address, so that emails may be forwarded by an MTA if necessary without being rejected by the receiving server which may have a strict SPF policy in place.

Larger Maximum Values

(MSSP license required) If licensed, the customer can have a larger number of domains, users, IP pools, and other controlled values.

Domain Quarantine Support

(MSSP license required) In a multi-tenant environment, a tenant can manage the quarantined messages for the specific domains.

ACL Receive Action To combine or enforce TLS profile for inbound email, ACL Receive action is added.
Disclaimer Exclusion List Enhancement

Support IP addresses in disclaimer exclusion lists.

Block/Safe List Enhancement

Track and display blocklist and safelist statistics.

Bypass Safelist for SPF/DKIM/DMARC Check Failure

(CLI only) New command to control bypassing of safelisted senders for SPF/DKIM/DMARC check failure. When disabled, if the scan result of SPF, DKIM, or DMARC is a failure, and the sender is safelisted, the result of SPF, DKIM, and DMARC takes precedence.

config antispam settings

set safelist-bypass-sender-auth enable (default enable)

end

TLS Versions

Add TLS versions to TLS profiles.

Custom Message Enhancement

Add Message-ID variable to the disclaimer insertion message template and attachment filtering message template.

Trusted CA Certificate Download Trusted certificate authorities certificate will be downloaded from FortiGuard. They are used to validate and sign other certificates in order to indicate to third parties that those certificates may be trusted and are authentic.
FortiSandbox and CDR Workflow Enhancement Add more controls in CDR settings to better interact with FortiSandbox.
Email Deferral Archive Archives the deferred email for spam outbreak, antivirus outbreak, and FortiSandbox.

Email Deferral Display

 The dashboard displays the statistics of the deferred email by spam outbreak, virus outbreak, and FortiSandbox scan.
Oldest Email Archive

(CLI only) New command (diagnose maildir archive) to archive the oldest email in the user mailbox to improve performance and accessibility.

Log Search Enhancement Add more search criteria when doing log search; allow to create log search tasks running at the backend for time consuming search tasks.

Quarantine Search Enhancement

 Add more search criteria when doing system quarantine search.
DKIM Option in Antispam Profile

With this option, an action can be specified for DKIM check failures.

Pipelining Control

New CLI and GUI control for session pipeline.

Oracle Cloud Infrastructure (OCI) Support New OCI platform support.

FortiSandbox Cloud Regions

Support four region settings: Global, Europe, Japan, and US.

Queue History

Add Queue History widget to the dashboard.

Sender Alignment Enhancement

Before 7.0 release, Sender Alignment checks for a Header From and Envelope From mismatch. Starting from 7.0 release, it will also check for a Header From and Reply-To mismatch.

Text File Fingerprints

Add support to text file fingerprints in DLP.

Block/Safe List Enhancement

Three block/safe list entry types are now supported: email, IP/netmask, and reverse DNS. For details, see the online help or administration guide.

Subscription-based Pricing

Released subscription-based FortiMail VM S-Series. The SKUs are available starting from v7.0.0 release and onwards.

Previous
Next

What's New

The following table summarizes the new features and enhancements in this release.

Feature

Description

Email Continuity

 (FEEC license required) When FortiMail runs in gateway or transparent mode, end user can still interact with the incoming email when the protected mail server is not reachable.

User Account Synchronization

 Periodically synchronize user accounts from the LDAP servers and MS365 servers to keep the mailbox accounting statistics up-to-date.
HA Synchronization Control (CLI only) New CLI commands to control which settings will not be synchronized from the primary unit to the secondary unit.

HA Synchronization Status

 Display HA sync status on the dashboard, centralized monitor, and HA settings.

Cousin Domain Detection

 The method checks for the domain names that may be deliberately misspelled, either by character removal, substitution, and/or transposition, in order to make emails look as though they originate from trusted internal sources.

Admin Access Profile Enhancement

More detailed controls in the administrator access profiles.

DANE Support

Add DANE support to TLS profiles.

Sender Rewriting Scheme (SRS) Support SRS is used to rewrite the envelope sender of an email address, so that emails may be forwarded by an MTA if necessary without being rejected by the receiving server which may have a strict SPF policy in place.

Larger Maximum Values

(MSSP license required) If licensed, the customer can have a larger number of domains, users, IP pools, and other controlled values.

Domain Quarantine Support

(MSSP license required) In a multi-tenant environment, a tenant can manage the quarantined messages for the specific domains.

ACL Receive Action To combine or enforce TLS profile for inbound email, ACL Receive action is added.
Disclaimer Exclusion List Enhancement

Support IP addresses in disclaimer exclusion lists.

Block/Safe List Enhancement

Track and display blocklist and safelist statistics.

Bypass Safelist for SPF/DKIM/DMARC Check Failure

(CLI only) New command to control bypassing of safelisted senders for SPF/DKIM/DMARC check failure. When disabled, if the scan result of SPF, DKIM, or DMARC is a failure, and the sender is safelisted, the result of SPF, DKIM, and DMARC takes precedence.

config antispam settings

set safelist-bypass-sender-auth enable (default enable)

end

TLS Versions

Add TLS versions to TLS profiles.

Custom Message Enhancement

Add Message-ID variable to the disclaimer insertion message template and attachment filtering message template.

Trusted CA Certificate Download Trusted certificate authorities certificate will be downloaded from FortiGuard. They are used to validate and sign other certificates in order to indicate to third parties that those certificates may be trusted and are authentic.
FortiSandbox and CDR Workflow Enhancement Add more controls in CDR settings to better interact with FortiSandbox.
Email Deferral Archive Archives the deferred email for spam outbreak, antivirus outbreak, and FortiSandbox.

Email Deferral Display

 The dashboard displays the statistics of the deferred email by spam outbreak, virus outbreak, and FortiSandbox scan.
Oldest Email Archive

(CLI only) New command (diagnose maildir archive) to archive the oldest email in the user mailbox to improve performance and accessibility.

Log Search Enhancement Add more search criteria when doing log search; allow to create log search tasks running at the backend for time consuming search tasks.

Quarantine Search Enhancement

 Add more search criteria when doing system quarantine search.
DKIM Option in Antispam Profile

With this option, an action can be specified for DKIM check failures.

Pipelining Control

New CLI and GUI control for session pipeline.

Oracle Cloud Infrastructure (OCI) Support New OCI platform support.

FortiSandbox Cloud Regions

Support four region settings: Global, Europe, Japan, and US.

Queue History

Add Queue History widget to the dashboard.

Sender Alignment Enhancement

Before 7.0 release, Sender Alignment checks for a Header From and Envelope From mismatch. Starting from 7.0 release, it will also check for a Header From and Reply-To mismatch.

Text File Fingerprints

Add support to text file fingerprints in DLP.

Block/Safe List Enhancement

Three block/safe list entry types are now supported: email, IP/netmask, and reverse DNS. For details, see the online help or administration guide.

Subscription-based Pricing

Released subscription-based FortiMail VM S-Series. The SKUs are available starting from v7.0.0 release and onwards.

Previous
Next