What's New
The following table summarizes the new features and enhancements in this release.
Feature |
Description |
---|---|
Email Continuity |
(FEEC license required) When FortiMail runs in gateway or transparent mode, end user can still interact with the incoming email when the protected mail server is not reachable. |
User Account Synchronization |
Periodically synchronize user accounts from the LDAP servers and MS365 servers to keep the mailbox accounting statistics up-to-date. |
HA Synchronization Control | (CLI only) New CLI commands to control which settings will not be synchronized from the primary unit to the secondary unit. |
HA Synchronization Status |
Display HA sync status on the dashboard, centralized monitor, and HA settings. |
Cousin Domain Detection |
The method checks for the domain names that may be deliberately misspelled, either by character removal, substitution, and/or transposition, in order to make emails look as though they originate from trusted internal sources. |
Admin Access Profile Enhancement |
More detailed controls in the administrator access profiles. |
DANE Support |
Add DANE support to TLS profiles. |
Sender Rewriting Scheme (SRS) Support | SRS is used to rewrite the envelope sender of an email address, so that emails may be forwarded by an MTA if necessary without being rejected by the receiving server which may have a strict SPF policy in place. |
Larger Maximum Values |
(MSSP license required) If licensed, the customer can have a larger number of domains, users, IP pools, and other controlled values. |
Domain Quarantine Support |
(MSSP license required) In a multi-tenant environment, a tenant can manage the quarantined messages for the specific domains. |
ACL Receive Action | To combine or enforce TLS profile for inbound email, ACL Receive action is added. |
Disclaimer Exclusion List Enhancement |
Support IP addresses in disclaimer exclusion lists. |
Block/Safe List Enhancement |
Track and display blocklist and safelist statistics. |
Bypass Safelist for SPF/DKIM/DMARC Check Failure |
(CLI only) New command to control bypassing of safelisted senders for SPF/DKIM/DMARC check failure. When disabled, if the scan result of SPF, DKIM, or DMARC is a failure, and the sender is safelisted, the result of SPF, DKIM, and DMARC takes precedence. config antispam settings set safelist-bypass-sender-auth enable (default enable) end |
TLS Versions |
Add TLS versions to TLS profiles. |
Custom Message Enhancement |
Add Message-ID variable to the disclaimer insertion message template and attachment filtering message template. |
Trusted CA Certificate Download | Trusted certificate authorities certificate will be downloaded from FortiGuard. They are used to validate and sign other certificates in order to indicate to third parties that those certificates may be trusted and are authentic. |
FortiSandbox and CDR Workflow Enhancement | Add more controls in CDR settings to better interact with FortiSandbox. |
Email Deferral Archive | Archives the deferred email for spam outbreak, antivirus outbreak, and FortiSandbox. |
Email Deferral Display |
The dashboard displays the statistics of the deferred email by spam outbreak, virus outbreak, and FortiSandbox scan. |
Oldest Email Archive |
(CLI only) New command (diagnose maildir archive) to archive the oldest email in the user mailbox to improve performance and accessibility. |
Log Search Enhancement | Add more search criteria when doing log search; allow to create log search tasks running at the backend for time consuming search tasks. |
Quarantine Search Enhancement |
Add more search criteria when doing system quarantine search. |
DKIM Option in Antispam Profile |
With this option, an action can be specified for DKIM check failures. |
Pipelining Control |
New CLI and GUI control for session pipeline. |
Oracle Cloud Infrastructure (OCI) Support | New OCI platform support. |
FortiSandbox Cloud Regions |
Support four region settings: Global, Europe, Japan, and US. |
Queue History |
Add Queue History widget to the dashboard. |
Sender Alignment Enhancement |
Before 7.0 release, Sender Alignment checks for a Header From and Envelope From mismatch. Starting from 7.0 release, it will also check for a Header From and Reply-To mismatch. |
Text File Fingerprints |
Add support to text file fingerprints in DLP. |
Block/Safe List Enhancement |
Three block/safe list entry types are now supported: email, IP/netmask, and reverse DNS. For details, see the online help or administration guide. |
Subscription-based Pricing |
Released subscription-based FortiMail VM S-Series. The SKUs are available starting from v7.0.0 release and onwards. |