Fortinet white logo
Fortinet docs logo DOCUMENT LIBRARY 2.5.0
Fortinet white logo
Fortinet docs logo DOCUMENT LIBRARY
Products Best Practices Hardware Guides Products A-Z
Summary
By Solution
By 4D Pillars
By Cloud
All Products
Secure Networking
Unified SASE
Security Operations
Secure SD-WAN
Secure Access Service Edge (SASE)
ZTNA
LAN Edge
Identity and Access Management
Next Generation Firewall
Web Application Firewall
Public Cloud
Private Cloud
FortiCloud
Secure Networking
  • Hybrid Mesh Firewall
  • NOC Management
  • LAN
  • WAN
    • More >>
    Unified SASE
  • Single Vendor SASE
  • Cloud Network Security
  • Secure Endpoint Connectivity
  • Web Application / API Protection
    • More >>
    Security Operations
  • Security Operations Automation
  • Identity
  • Early Detection & Prevention
    • More >>
    Secure Networking
  • Hybrid Mesh Firewall
  • NOC Management
  • LAN
  • WAN
  • Communication & Surveillance
    • Unified SASE
  • Single Vendor SASE
  • Secure Endpoint Connectivity
  • Cloud Network Security
  • Cloud-Native Security
  • Web Application / API Protection
    • Security Operations
  • Security Operations Automation
  • Endpoint
  • Data Protection
  • Identity
  • Email
  • Early Detection & Prevention
  • Expert Services
  • Edge Firewall
  • Orchestration & management
  • SD Branch
  • Application Delivery
  • Single Vendor SASE
  • Secure Endpoint Connectivity
  • Secure Private Access
  • Thin Edge
  • Identity
  • Application Gateway
  • Enterprise Asset Management
  • Endpoint Agent
  • Agentless Security Posture
  • Identity
  • Wireless
  • Switching
  • Identity
  • Privilege Acccess Management
  • Next Generation Firewall
  • Orchestration & management
  • Expert Services
  • Web Application / API Protection
  • All
  • All
  • Account Management
  • SAAS Management
  • SAAS Application Security
  • Managed Services
  • Platform as a service (PAAS)
  • Other SAAS Services
    • 4D Resources
    Solution Hubs
  • 4D Pillars
  • Cloud
  • Popular Solutions
    • All Products

    Sensor Release Notes

    Home FortiNDR Cloud Sensors Sensor Release Notes

    Resolved issues

    Resolved issues

    The following issues have been fixed. To inquire about a particular bug, please contact Customer Service & Support.

    2.5.0

    Missing partition

    Addressed an issue where after upgrading a cloud sensor, a non-essential partition was missing.

    Sensor pause

    Resolved an issue where in some condition, sensor would not go to the pause state

    Security

    Addressed multiple vulnerabilities to improve system security.

    2.4.0

    Upgrade Stability

    Fixed upgrade-related issues affecting DPI rules, Suricata configuration, ensuring proper retention and reload behavior.

    Service Reliability

    Ensured engine services shut down cleanly when sensord exits and resolved connectivity loss after Zeek service restarts.

    NetFlow Stability & Performance

    Resolved NetFlow configuration inconsistencies, missing logs in shared subnets, low-disk handling, and improved performance on all sensors.

    Provisioning

    Fixed provisioning and status reporting issues when monitoring interfaces are not connected.

    Diagnostics

    Fixed diagnostics failures when a proxy is enabled.

    Cloud platforms

    Resolved GCP-specific logging and syslogd restart issues.

    Security

    Addressed multiple vulnerabilities to improve system security.

    2.3.0

    GCP TAP Interfaces

    		 Fixed an issue where IPs were not flushed from additional TAP interfaces.

    Proxy Connectivity

    		 Corrected sensor scans so they now route through the configured proxy.

    Decommissioning Swap

    		 Resolved an issue where swap was lost after decommission and reboot.

    DHCP Configuration

    		 Fixed an issue where DHCP changes were not applied automatically on some platforms.

    Interface Configuration

    		 Changes to network interfaces now take effect automatically without requiring manual reboot.

    KVM TAP Interface

    		 Corrected TAP interface MTU to remain at 9000 instead of 1500.

    500G/900G Platforms

    		 Fixed excessive ACPI Error and Failed log messages.

    Security

    		 Addressed multiple vulnerabilities to improve system security.

    2.2.0

    Fixed an issue where sensor upgrades under certain conditions could cause the sensor service to reboot unexpectedly.

    Resolved an issue where disabling the proxy would delete the existing proxy configuration.

    Addressed multiple Suricata security vulnerabilities.

    2.1.0

    Addressed an interface packet drop issue on some platforms.

    Resolved a problem with Zeek falsely showing excessively increasing drops at boot.

    Resolved an issue where after container upgrade, the version was not reflected in the Portal.

    Addressed an issue with sensor state transitioning into incorrect state when no TAP interface is present.

    Resolved an issue where during reboot after an upgrade, the boot menu would show 2 previous versions instead of one.

    A number of Suricata security vulnerabilities were addressed.

    2.0.0

    Addressed a rare crash condition in the metric exporter.
    Resolved an issue with log redirects following the upgrade.
    Resolved a partitioning problem that occurred after the Debian upgrade.
    Addressed an issue with Suricata fast logs consuming excessive disk space.
    Resolved a problem where Suricata logs grew beyond the upload limit under certain conditions.
    Resolved an issue where certain DHCP packets caused the DHCP to exceed the allowed size.
    Resolved a problem where Zeek logs would not upload under certain conditions.

    1.12.0

    Resolved an issue where sensor would send NTP requests through the management port.
    Resolved an issue related to Suricata rules not being applied at runtime.

    Resolved an issue related to DHCP lease not being renewed .

    Resolved an issue related to Suricata path not getting updated after upgrade

    Resolved an issue related to Suricata log rotation after upgrade.
    Resolved an issue related to Suricata version 6.0.13 on external source of rules.
    Addressed an intermittent issue where an invalid memory address was observed at sensor daemon initialization.

    1.11.0

    Resolved issues related to VPN connection errors to the VPN end point .

    Resolved an issue related to syslog traffic causing high disk usage

    Various fixes related to the PCAP feature

    OpenSSH and curl vulnerability patches.

    Several bugs addressed in the sensor upgrade area.

    Addressed a problem with metadata logs not getting uploaded through the s3 proxy.

    Resolved an issue related to the sensor in a specific scenario reporting incorrect status to the portal .

    1.10.0

    Resolved an issue related to MIME types not correctly being identified
    Various optimizations

    1.9.0

    Updated device drivers.
    Kernel optimizations.
    Resolved issues with port media type display in the portal.
    Resolved the issue related to incorrect disk size being displayed.

    1.8.1

    An issue in the Suricata EXTERNAL_NET field cause some Suricata rules to not be processed.

    A bug in the PCAP feature caused packet capture to produce empty PCAP files in some scenarios.

    PCAP log files improved.

    An issue setting the ring buffers and MTU on the monitoring interfaces is corrected.

    An issue with VPN fallback when the primary gateway is unavailable is corrected.

    Various optimizations are applied to the network interfaces .
    Previous
    Next

    Resolved issues

    Resolved issues

    The following issues have been fixed. To inquire about a particular bug, please contact Customer Service & Support.

    2.5.0

    Missing partition

    Addressed an issue where after upgrading a cloud sensor, a non-essential partition was missing.

    Sensor pause

    Resolved an issue where in some condition, sensor would not go to the pause state

    Security

    Addressed multiple vulnerabilities to improve system security.

    2.4.0

    Upgrade Stability

    Fixed upgrade-related issues affecting DPI rules, Suricata configuration, ensuring proper retention and reload behavior.

    Service Reliability

    Ensured engine services shut down cleanly when sensord exits and resolved connectivity loss after Zeek service restarts.

    NetFlow Stability & Performance

    Resolved NetFlow configuration inconsistencies, missing logs in shared subnets, low-disk handling, and improved performance on all sensors.

    Provisioning

    Fixed provisioning and status reporting issues when monitoring interfaces are not connected.

    Diagnostics

    Fixed diagnostics failures when a proxy is enabled.

    Cloud platforms

    Resolved GCP-specific logging and syslogd restart issues.

    Security

    Addressed multiple vulnerabilities to improve system security.

    2.3.0

    GCP TAP Interfaces

    		 Fixed an issue where IPs were not flushed from additional TAP interfaces.

    Proxy Connectivity

    		 Corrected sensor scans so they now route through the configured proxy.

    Decommissioning Swap

    		 Resolved an issue where swap was lost after decommission and reboot.

    DHCP Configuration

    		 Fixed an issue where DHCP changes were not applied automatically on some platforms.

    Interface Configuration

    		 Changes to network interfaces now take effect automatically without requiring manual reboot.

    KVM TAP Interface

    		 Corrected TAP interface MTU to remain at 9000 instead of 1500.

    500G/900G Platforms

    		 Fixed excessive ACPI Error and Failed log messages.

    Security

    		 Addressed multiple vulnerabilities to improve system security.

    2.2.0

    Fixed an issue where sensor upgrades under certain conditions could cause the sensor service to reboot unexpectedly.

    Resolved an issue where disabling the proxy would delete the existing proxy configuration.

    Addressed multiple Suricata security vulnerabilities.

    2.1.0

    Addressed an interface packet drop issue on some platforms.

    Resolved a problem with Zeek falsely showing excessively increasing drops at boot.

    Resolved an issue where after container upgrade, the version was not reflected in the Portal.

    Addressed an issue with sensor state transitioning into incorrect state when no TAP interface is present.

    Resolved an issue where during reboot after an upgrade, the boot menu would show 2 previous versions instead of one.

    A number of Suricata security vulnerabilities were addressed.

    2.0.0

    Addressed a rare crash condition in the metric exporter.
    Resolved an issue with log redirects following the upgrade.
    Resolved a partitioning problem that occurred after the Debian upgrade.
    Addressed an issue with Suricata fast logs consuming excessive disk space.
    Resolved a problem where Suricata logs grew beyond the upload limit under certain conditions.
    Resolved an issue where certain DHCP packets caused the DHCP to exceed the allowed size.
    Resolved a problem where Zeek logs would not upload under certain conditions.

    1.12.0

    Resolved an issue where sensor would send NTP requests through the management port.
    Resolved an issue related to Suricata rules not being applied at runtime.

    Resolved an issue related to DHCP lease not being renewed .

    Resolved an issue related to Suricata path not getting updated after upgrade

    Resolved an issue related to Suricata log rotation after upgrade.
    Resolved an issue related to Suricata version 6.0.13 on external source of rules.
    Addressed an intermittent issue where an invalid memory address was observed at sensor daemon initialization.

    1.11.0

    Resolved issues related to VPN connection errors to the VPN end point .

    Resolved an issue related to syslog traffic causing high disk usage

    Various fixes related to the PCAP feature

    OpenSSH and curl vulnerability patches.

    Several bugs addressed in the sensor upgrade area.

    Addressed a problem with metadata logs not getting uploaded through the s3 proxy.

    Resolved an issue related to the sensor in a specific scenario reporting incorrect status to the portal .

    1.10.0

    Resolved an issue related to MIME types not correctly being identified
    Various optimizations

    1.9.0

    Updated device drivers.
    Kernel optimizations.
    Resolved issues with port media type display in the portal.
    Resolved the issue related to incorrect disk size being displayed.

    1.8.1

    An issue in the Suricata EXTERNAL_NET field cause some Suricata rules to not be processed.

    A bug in the PCAP feature caused packet capture to produce empty PCAP files in some scenarios.

    PCAP log files improved.

    An issue setting the ring buffers and MTU on the monitoring interfaces is corrected.

    An issue with VPN fallback when the primary gateway is unavailable is corrected.

    Various optimizations are applied to the network interfaces .
    Previous
    Next