Fortinet white logo
Fortinet docs logo DOCUMENT LIBRARY
Fortinet white logo
Fortinet docs logo DOCUMENT LIBRARY
Products Best Practices Hardware Guides Products A-Z
Summary
By Solution
By 4D Pillars
By Cloud
All Products
Secure Networking
Unified SASE
Security Operations
Secure SD-WAN
Secure Access Service Edge (SASE)
ZTNA
LAN Edge
Identity and Access Management
Next Generation Firewall
Web Application Firewall
Public Cloud
Private Cloud
FortiCloud
Secure Networking
  • Hybrid Mesh Firewall
  • NOC Management
  • LAN
  • WAN
    • More >>
    Unified SASE
  • Single Vendor SASE
  • Cloud Network Security
  • Secure Endpoint Connectivity
  • Web Application / API Protection
    • More >>
    Security Operations
  • Security Operations Automation
  • Identity
  • Early Detection & Prevention
    • More >>
    Secure Networking
  • Hybrid Mesh Firewall
  • NOC Management
  • LAN
  • WAN
  • Communication & Surveillance
    • Unified SASE
  • Single Vendor SASE
  • Secure Endpoint Connectivity
  • Cloud Network Security
  • Cloud-Native Security
  • Web Application / API Protection
    • Security Operations
  • Security Operations Automation
  • Endpoint
  • Data Protection
  • Identity
  • Email
  • Early Detection & Prevention
  • Expert Services
  • Edge Firewall
  • Orchestration & management
  • SD Branch
  • Application Delivery
  • Single Vendor SASE
  • Secure Endpoint Connectivity
  • Secure Private Access
  • Thin Edge
  • Identity
  • Application Gateway
  • Enterprise Asset Management
  • Endpoint Agent
  • Agentless Security Posture
  • Identity
  • Wireless
  • Switching
  • Identity
  • Privilege Acccess Management
  • Next Generation Firewall
  • Orchestration & management
  • Expert Services
  • Web Application / API Protection
  • All
  • All
  • Account Management
  • SAAS Management
  • SAAS Application Security
  • Managed Services
  • Platform as a service (PAAS)
  • Other SAAS Services
    • 4D Resources
    Solution Hubs
  • 4D Pillars
  • Cloud
  • Popular Solutions
    • All Products

    Release Notes

    7.4.4
    7.6.4
    7.6.3
    7.6.2
    7.6.1
    7.6.0
    7.4.6
    7.4.5
    7.4.4
    7.4.3
    7.4.2
    7.4.1
    7.4.0
    7.2.9
    7.2.8
    7.2.7
    7.2.6
    7.2.5
    7.2.4
    7.2.3
    7.2.2
    7.2.1
    7.2.0
    7.0.9
    7.0.8
    7.0.7
    7.0.6
    7.0.5
    7.0.4
    7.0.3
    7.0.2
    7.0.1
    7.0.0
    6.2.5

    Special Notices

    Special Notices

    This section highlights the special notices that should be taken into consideration before upgrading your platform.

    Communication between HA secondary units

    Due to the introduction of primary backup in active-active HA in FortiMail 7.4.0, communication between the secondary units is also required. In config-only HA before FortiMail 7.4.0, it was not required.

    HA heartbeat and DHCP

    If you upgrade from FortiMail 7.4.2 or earlier, and if the HA heartbeat's network interfaces have dynamic addresses such as DHCP, then you must either:

    • before the upgrade, use static IP addresses instead

    • after the upgrade:

      1. Immediately log in to all units in the cluster.

      2. Re-configure the heartbeat interfaces with their current IP addresses from the DHCP server.

      3. Reset the primary/secondary role if necessary, so that only one unit is the primary.

    Cloud deployments (such as on Microsoft Azure) may commonly or by default use DHCP, requiring this setting change or procedure.

    TFTP firmware install

    Using TFTP via the serial console to install firmware during system boot time will erase all current FortiMail configurations and replace them with factory default settings.

    Monitor settings for the GUI

    To view all objects in the GUI properly, Fortinet recommends setting your monitor to a screen resolution of at least 1280 x 1024.

    SSH connection

    For security reasons, starting from FortiMail 5.4.2, FortiMail does not support SSH connections with plain-text password authentication. Instead, a challenge/response should be used.

    FortiGuard web filtering category v10 update

    Fortinet has updated its web filtering categories to v10, which includes two new URL categories for AI chat and cryptocurrency web sites. In order to use the new categories, customers must upgrade their Fortinet products to one of the versions below.

    • FortiMail 7.0.7, 7.2.5, 7.4.1 or later
    Previous
    Next

    Special Notices

    Special Notices

    This section highlights the special notices that should be taken into consideration before upgrading your platform.

    Communication between HA secondary units

    Due to the introduction of primary backup in active-active HA in FortiMail 7.4.0, communication between the secondary units is also required. In config-only HA before FortiMail 7.4.0, it was not required.

    HA heartbeat and DHCP

    If you upgrade from FortiMail 7.4.2 or earlier, and if the HA heartbeat's network interfaces have dynamic addresses such as DHCP, then you must either:

    • before the upgrade, use static IP addresses instead

    • after the upgrade:

      1. Immediately log in to all units in the cluster.

      2. Re-configure the heartbeat interfaces with their current IP addresses from the DHCP server.

      3. Reset the primary/secondary role if necessary, so that only one unit is the primary.

    Cloud deployments (such as on Microsoft Azure) may commonly or by default use DHCP, requiring this setting change or procedure.

    TFTP firmware install

    Using TFTP via the serial console to install firmware during system boot time will erase all current FortiMail configurations and replace them with factory default settings.

    Monitor settings for the GUI

    To view all objects in the GUI properly, Fortinet recommends setting your monitor to a screen resolution of at least 1280 x 1024.

    SSH connection

    For security reasons, starting from FortiMail 5.4.2, FortiMail does not support SSH connections with plain-text password authentication. Instead, a challenge/response should be used.

    FortiGuard web filtering category v10 update

    Fortinet has updated its web filtering categories to v10, which includes two new URL categories for AI chat and cryptocurrency web sites. In order to use the new categories, customers must upgrade their Fortinet products to one of the versions below.

    • FortiMail 7.0.7, 7.2.5, 7.4.1 or later
    Previous
    Next