Skip to main content
SecurityPlus
SecurityPlus
Explorer III
January 18, 2020
Question

FortiOS 6.0.8 Is Out

  • January 18, 2020
  • 2 replies
  • 8129 views

I notice that 6.0.8 is available. Has anyone installed it yet? Any issues discovered?

 

I see a note that there is a change to the FortiGuard protocol and port number.

 

I see a message in the Release Notes that says:

 

FortiOS 6.0.8 is no longer vulnerable to the following CVE Reference:

[ul]CVE-2018-9195[/ul]

    2 replies

    kd007
    kd007
    New Member
    January 18, 2020

    I am running into some significant issues with RDP since the install. RDP sessions will frequently fail to connect, or will constantly disconnect after a very short period. Happening on multiple clients, both on and off of VPN, where the FortiOS update is the only common denominator.

    tanr
    tanr
    New Member
    January 18, 2020

    We've been running 6.0.8 for a couple months now.  No issues that weren't in the release notes so far.

     

    @kd007, we use Windows RDP semi-regularly, between vlans, and across our IPsec VPN.  Haven't had any failures that I've seen.  Have you been able to pull the logs for some of these failures?

    TecnetRuss
    TecnetRuss
    Visitor III
    January 18, 2020

    We've also been running 6.0.8 on all our FortiGates since December and have moved most of our clients' devices to 6.0.8.  There are VPNs and RDP/RDS Gateway clients connected nearly 24/7 and we haven't heard any complaints at all.

     

    The CVE-2018-9195 fix is pretty important.  Note that the 6.0.8 upgrade adds HTTPS as a FortiGuard protocol option but doesn't enable it (unless you start fresh with a 6.0.8 factory reset config), so to be protected from the CVE-2018-9195 vulnerability you have to set the FortiGuard protocol to HTTPS after you upgrade to 6.0.8.

     

    https://docs.fortinet.com/document/fortigate/6.0.8/fortios-release-notes/901852/fortiguard-protocol-and-port-number

     

    Russ

    Toshi_Esumi
    SuperUser
    Toshi_Esumi
    SuperUser
    January 28, 2020

    You should open a case with TAC if you haven't done yet. We did that and had two co-op debugging sessions so far with TAC and our customer who is experiencing RDP drops relatively consistently, if not always, via SSL VPN. We just upgraded the SSL VPN server FG1500D to 6.0.8 without checking this thread (too late). The TAC is suspecting our case is the same as the one with the BUG ID.  We're now waiting for their outcome after analyzing the log data captured through the tests.

    Toshi_Esumi
    SuperUser
    Toshi_Esumi
    SuperUser
    January 29, 2020

    TAC identified our symptom same as the bug report. What TAC explained to us is when authd handles a timeout event related to the host, but unrelated to RDP, it unexpectedly drop sessions with the host, in our case the RDP process.

    This customer uses LDAP authentication for SSL VPN and FSSO as well. So the event to authd can be related to either of them. And there is no workaround. And the fix will be implemented with 6.0.10.

    Since 6.0.9 just came out last week, I would guess the next version would be out in early March.

    Terms & ConditionsAccessibility statement