Fortinet white logo
Fortinet docs logo DOCUMENT LIBRARY 7.2.11
Fortinet white logo
Fortinet docs logo DOCUMENT LIBRARY
Products Best Practices Hardware Guides Products A-Z
Summary
By Solution
By 4D Pillars
By Cloud
All Products
Secure Networking
Unified SASE
Security Operations
Secure SD-WAN
Secure Access Service Edge (SASE)
ZTNA
LAN Edge
Identity and Access Management
Next Generation Firewall
Web Application Firewall
Public Cloud
Private Cloud
FortiCloud
Secure Networking
  • Hybrid Mesh Firewall
  • NOC Management
  • LAN
  • WAN
    • More >>
    Unified SASE
  • Single Vendor SASE
  • Cloud Network Security
  • Secure Endpoint Connectivity
  • Web Application / API Protection
    • More >>
    Security Operations
  • Security Operations Automation
  • Identity
  • Early Detection & Prevention
    • More >>
    Secure Networking
  • Hybrid Mesh Firewall
  • NOC Management
  • LAN
  • WAN
  • Communication & Surveillance
    • Unified SASE
  • Single Vendor SASE
  • Secure Endpoint Connectivity
  • Cloud Network Security
  • Cloud-Native Security
  • Web Application / API Protection
    • Security Operations
  • Security Operations Automation
  • Endpoint
  • Data Protection
  • Identity
  • Email
  • Early Detection & Prevention
  • Expert Services
  • Edge Firewall
  • Orchestration & management
  • SD Branch
  • Application Delivery
  • Single Vendor SASE
  • Secure Endpoint Connectivity
  • Secure Private Access
  • Thin Edge
  • Identity
  • Application Gateway
  • Enterprise Asset Management
  • Endpoint Agent
  • Agentless Security Posture
  • Identity
  • Wireless
  • Switching
  • Identity
  • Privilege Acccess Management
  • Next Generation Firewall
  • Orchestration & management
  • Expert Services
  • Web Application / API Protection
  • All
  • All
  • Account Management
  • SAAS Management
  • SAAS Application Security
  • Managed Services
  • Platform as a service (PAAS)
  • Other SAAS Services
    • 4D Resources
    Solution Hubs
  • 4D Pillars
  • Cloud
  • Popular Solutions
    • All Products

    Release Notes

    Home FortiProxy 7.2.11 Release Notes
    7.2.11
    7.6.6
    7.6.5
    7.6.4
    7.6.3
    7.6.2
    7.6.1
    7.6.0
    7.4.13
    7.4.12
    7.4.11
    7.4.10
    7.4.9
    7.4.8
    7.4.7
    7.4.6
    7.4.5
    7.4.4
    7.4.3
    7.4.2
    7.4.1
    7.4.0
    7.2.16
    7.2.15
    7.2.14
    7.2.13
    7.2.12
    7.2.11
    7.2.10
    7.2.9
    7.2.8
    7.2.7
    7.2.6
    7.2.5
    7.2.4
    7.2.3
    7.2.2
    7.2.1
    7.2.0
    7.0.23
    7.0.22
    7.0.21
    7.0.20
    7.0.19
    7.0.18
    7.0.17
    7.0.16
    7.0.15
    7.0.14
    7.0.13
    7.0.12
    7.0.11
    7.0.10
    7.0.9
    7.0.8
    7.0.7
    7.0.6
    7.0.5
    7.0.4
    7.0.3
    7.0.2
    7.0.1
    7.0.0
    2.0.14
    2.0.13
    2.0.12
    2.0.11
    2.0.10
    2.0.9
    2.0.8
    2.0.7
    2.0.6
    2.0.5
    2.0.4
    2.0.3
    2.0.2
    2.0.1
    2.0.0
    1.2.13
    1.2.12
    1.2.11
    1.2.10
    1.2.9
    1.2.8
    1.2.7
    1.2.6
    1.2.5
    1.2.4
    1.2.3
    1.2.2
    1.2.1
    1.2.0
    1.1.6
    1.1.5
    1.1.4
    1.1.3
    1.1.2
    1.1.1
    1.1.0
    1.0.7
    1.0.6
    1.0.5
    1.0.4
    1.0.3
    1.0.2
    1.0.1
    1.0.0

    What's new

    What's new

    The following sections describe new features, enhancements, and changes in FortiProxy 7.2.11:

    Changed options for Log HTTP Transaction

    The options for Log HTTP Transaction changed from All, Security Profiles, Disable to Enable and Disable in the following locations:

    Changes to logging behavior for HTTP CONNECT

    In FortiProxy 7.2.11, HTTP transaction log no longer exists for HTTP CONNECT. UA, rawdata, and status code information is now merged into the HTTPS log for cert-inspect HTTPS traffic.

    "204 allow" and "Preview" headers support for ICAP servers

    FortiProxy 7.2.11 adds support for "204 allow" and "Preview" headers for ICAP servers.

    For preview headers, the maximum preview data length is 4096 bytes. You can enable or disable message preview using the new set message-preview subcommand under config icap local-server.

    FortiNBI enhancement

    FortiProxy 7.2.11 automatically installs the FortiNBI application after a new FortiNBI installer is uploaded from the cloud into FortiProxy. You no longer need to manually download or install the FortiNBI application for an upgrade.

    CLI changes

    FortiProxy 7.2.11 includes the following CLI changes:

    • config system automation-action—Use the new set password subcommand to script password to replace %%PASSWD%% tag in the script. Use cases include replacing a password tag for sftp/ftp server password.

    • config authentication setting—Use the new set log-auth-request [enable|disable] subcommand to configure whether to enable logging of authentication requests.

    • config firewall policy—The values of the set log-http-transaction option changed from [all | utm | disable] to [enable | disable].

    • diagnose firewall fqdn6—Use this new command to retrieve IPv6 FQDN information. The following arguments are supported:

      Argument

      Description
      list Displays the list of IPv6 FQDNs.
      get

      Displays one IPv6 FQDN.
      flush

      Flushes IPv6 information of FQDN.
      purge

      Purges all unused IPv6 FQDNs.
    Previous
    Next

    What's new

    What's new

    The following sections describe new features, enhancements, and changes in FortiProxy 7.2.11:

    Changed options for Log HTTP Transaction

    The options for Log HTTP Transaction changed from All, Security Profiles, Disable to Enable and Disable in the following locations:

    Changes to logging behavior for HTTP CONNECT

    In FortiProxy 7.2.11, HTTP transaction log no longer exists for HTTP CONNECT. UA, rawdata, and status code information is now merged into the HTTPS log for cert-inspect HTTPS traffic.

    "204 allow" and "Preview" headers support for ICAP servers

    FortiProxy 7.2.11 adds support for "204 allow" and "Preview" headers for ICAP servers.

    For preview headers, the maximum preview data length is 4096 bytes. You can enable or disable message preview using the new set message-preview subcommand under config icap local-server.

    FortiNBI enhancement

    FortiProxy 7.2.11 automatically installs the FortiNBI application after a new FortiNBI installer is uploaded from the cloud into FortiProxy. You no longer need to manually download or install the FortiNBI application for an upgrade.

    CLI changes

    FortiProxy 7.2.11 includes the following CLI changes:

    • config system automation-action—Use the new set password subcommand to script password to replace %%PASSWD%% tag in the script. Use cases include replacing a password tag for sftp/ftp server password.

    • config authentication setting—Use the new set log-auth-request [enable|disable] subcommand to configure whether to enable logging of authentication requests.

    • config firewall policy—The values of the set log-http-transaction option changed from [all | utm | disable] to [enable | disable].

    • diagnose firewall fqdn6—Use this new command to retrieve IPv6 FQDN information. The following arguments are supported:

      Argument

      Description
      list Displays the list of IPv6 FQDNs.
      get

      Displays one IPv6 FQDN.
      flush

      Flushes IPv6 information of FQDN.
      purge

      Purges all unused IPv6 FQDNs.
    Previous
    Next