Help
Support Forum
The Forums are a place to find answers on a range of Fortinet products from peers and product experts.
James_G
Contributor III

Created on ‎01-23-2020 03:25 AM

FortiOS 6.0.9 is out

https://docs.fortinet.com/document/fortigate/6.0.9/fortios-release-notes/760203/introduction

 

The known issues are the shortest list I remember

46656
0 Kudos
3 Solutions
simonpt
New Contributor III
In response to ValentinoD

Created on ‎02-06-2020 01:10 PM

ValentinoD wrote:

 

Did you experience any more issues after the last update? Did the issue that you were seeing in 6.0.8 only see for RDP coming from SSLVPN?

 

Still seeing the occasional issue with RDP over SSL VPN in 6.0.9, but not nearly as often.

 

ValentinoD wrote:

We are thinking of going to 6.0.9, and while we do not have any SSL VPN on Fortigate, we do have RDP sessions going over IPSec VPN tunnels or other directly connected links.

 

If you don't use SSL VPN, you'll be fine. RDP works okay over IPsec and other links.

View solution in original post

14585
0 Kudos
simonpt
New Contributor III
In response to ValentinoD

Created on ‎02-10-2020 02:35 PM

Another issue with 6.0.9 (and perhaps earlier versions) is where a client browsing securely to a FGT virtual server will get disconnected as soon as they send a ClientHello. This isn't reproducible on all our standard virtual servers -- only on one that I'm experimenting on with some advanced features enabled.

 

Further analysis shows that the wad process is crashing. The TAC engineer matched this to a known bug (590039) and advised me that it has been fixed in 6.2.3. When I asked if it would be backported to 6.0, I was told no, it won't, and to upgrade to 6.2.3. I've asked for an explanation on why it won't be backported and haven't heard yet. That was over three weeks ago.

 

According to Fortinet's product life cycle, FOS 6.0's engineering support doesn't end until 29 March 2021. If a daemon is crashing, I don't understand why they don't fix it. I'm certainly not keen to upgrade to a new version like 6.2 just yet.

View solution in original post

14584
0 Kudos
Sebastiaan_Koopmans
Contributor II
In response to simonpt

Created on ‎02-13-2020 04:03 PM

After upgrading it looks like (currently investigation) that we have random connectivity issues to on premise Exchange servers. They loose connection/outlook freezes sometimes with no reason.

 

Tonight we have downgraded to 6.0.8 to see if this the cause.

Keep you updated

FortiAnalyzer / 6.4.0

FortiClient / 6.2.6 FortiClient EMS VM / 6.2.6

FortiGate 300D HA 6.2.4 FortiGate 500E HA 6.2.4 FortiGate 30E / 60E / 100E / 6.0.9 FortiMail VM HA / 6.4.0 FortiSandbox VM / 3.2.0

FortiWeb VM / 6.3.2

FortiManager VM / 6.4.0

View solution in original post

FortiAnalyzer / 6.4.0 FortiClient / 6.2.6 FortiClient EMS VM / 6.2.6 FortiGate 300D HA 6.2.4 FortiGate 500E HA 6.2.4 FortiGate 30E / 60E / 100E / 6.0.9 FortiMail VM HA / 6.4.0 FortiSandbox VM / 3.2.0 FortiWeb VM / 6.3.2 FortiManager VM / 6.4.0
14584
0 Kudos
21 REPLIES 21
nostalia_nse7
New Contributor

Created on ‎01-23-2020 01:15 PM

Definitely looks promising!  I have my first client upgrade happening tomorrow morning.  Then rollout to many others over the coming weeks for those that we haven't had maintenance windows yet for 6.0.8.  Hopefully the list stays short.  Also the shortest list I have seen in forever -- possibly ever.

 

6827
0 Kudos
Carl_Wallmark
Valued Contributor
In response to nostalia_nse7

Created on ‎01-23-2020 10:51 PM

If you are able to, test the RDP through SSLVPN (in the known issue section), because that is a deal breaker for me and probably most of the firewall admins out there.

FCNSA, FCNSP
---
FortiGate 200A/B, 224B, 110C, 100A/D, 80C/CM/Voice, 60B/C/CX/D, 50B, 40C, 30B
FortiAnalyzer 100B, 100C
FortiMail 100,100C
FortiManager VM
FortiAuthenticator VM
FortiToken
FortiAP 220B/221B, 11C

FCNSA, FCNSP---FortiGate 200A/B, 224B, 110C, 100A/D, 80C/CM/Voice, 60B/C/CX/D, 50B, 40C, 30BFortiAnalyzer 100B, 100CFortiMail 100,100CFortiManager VMFortiAuthenticator VMFortiTokenFortiAP 220B/221B, 11C
6827
0 Kudos
jim3cantos
New Contributor III
In response to Carl_Wallmark

Created on ‎01-24-2020 05:00 AM

There are also bugfixes in CDR, but I think they didn't corrected the one I indicated here as support said it was "594202 - AVEN Error when doing CDR for certain PDF" and I can't find it in the list of solved issues. Nobody is using CDR?

José Ignacio Martín Jiménez
José Ignacio Martín Jiménez
6827
0 Kudos
jim3cantos
New Contributor III
In response to Carl_Wallmark

Created on ‎01-24-2020 05:04 AM

Selective wrote:

If you are able to, test the RDP through SSLVPN (in the known issue section), because that is a deal breaker for me and probably most of the firewall admins out there.

In which version was introduced this one? 6.0.7 or 6.0.8?

José Ignacio Martín Jiménez
José Ignacio Martín Jiménez
6827
0 Kudos
Carl_Wallmark
Valued Contributor
In response to jim3cantos

Created on ‎01-24-2020 05:13 AM

Don´t know, I don´t run 6.0.7 or 6.0.8. It might have been introduced in 6.0.9, but if RDP fails I would stay away from that version.

FCNSA, FCNSP
---
FortiGate 200A/B, 224B, 110C, 100A/D, 80C/CM/Voice, 60B/C/CX/D, 50B, 40C, 30B
FortiAnalyzer 100B, 100C
FortiMail 100,100C
FortiManager VM
FortiAuthenticator VM
FortiToken
FortiAP 220B/221B, 11C

FCNSA, FCNSP---FortiGate 200A/B, 224B, 110C, 100A/D, 80C/CM/Voice, 60B/C/CX/D, 50B, 40C, 30BFortiAnalyzer 100B, 100CFortiMail 100,100CFortiManager VMFortiAuthenticator VMFortiTokenFortiAP 220B/221B, 11C
6827
0 Kudos
Kenundrum
Contributor III
In response to Carl_Wallmark

Created on ‎01-24-2020 06:20 AM

That bug is not listed in any prior release notes, so perhaps introduced in 6.0.9?

CISSP, NSE4

 

CISSP, NSE4
6827
0 Kudos
simonpt
New Contributor III
In response to Carl_Wallmark

Created on ‎01-25-2020 02:05 AM

Selective wrote:

Don´t know, I don´t run 6.0.7 or 6.0.8. It might have been introduced in 6.0.9, but if RDP fails I would stay away from that version.

I experienced the RDP over SSL VPN issue in 6.0.8. (I never tried it with 6.0.7.) When I saw it listed in the 6.0.9 known issues, I asked FortiTAC when it will be fixed and they said:

 

FortiOS v6.4.0 --Expected release date: last week of March, 2020 FortiOS v6.2.4 --Expected release date: last week of April, 2020 FortiOS v6.0.10 --No ETA but I think it will be released in April, 2020 along with v6.2.4

 

Funny thing is, I've now upgraded to 6.0.9 and my RDP sessions seem stable. As I write, they've been running fine now for about 20 minutes, whereas they would disconnect in less than a minute with 6.0.8. Maybe they fixed it after all.

6827
0 Kudos
ValentinoD
New Contributor
In response to simonpt

Created on ‎02-06-2020 08:25 AM

simonpt wrote:

Selective wrote:

Don´t know, I don´t run 6.0.7 or 6.0.8. It might have been introduced in 6.0.9, but if RDP fails I would stay away from that version.

I experienced the RDP over SSL VPN issue in 6.0.8. (I never tried it with 6.0.7.) When I saw it listed in the 6.0.9 known issues, I asked FortiTAC when it will be fixed and they said:

 

FortiOS v6.4.0 --Expected release date: last week of March, 2020 FortiOS v6.2.4 --Expected release date: last week of April, 2020 FortiOS v6.0.10 --No ETA but I think it will be released in April, 2020 along with v6.2.4

 

Funny thing is, I've now upgraded to 6.0.9 and my RDP sessions seem stable. As I write, they've been running fine now for about 20 minutes, whereas they would disconnect in less than a minute with 6.0.8. Maybe they fixed it after all.

Did you experience any more issues after the last update? Did the issue that you were seeing in 6.0.8 only see for RDP coming from SSLVPN?

 

We are thinking of going to 6.0.9, and while we do not have any SSL VPN on Fortigate, we do have RDP sessions going over IPSec VPN tunnels or other directly connected links.

6827
0 Kudos
simonpt
New Contributor III
In response to ValentinoD

Created on ‎02-06-2020 01:10 PM

ValentinoD wrote:

 

Did you experience any more issues after the last update? Did the issue that you were seeing in 6.0.8 only see for RDP coming from SSLVPN?

 

Still seeing the occasional issue with RDP over SSL VPN in 6.0.9, but not nearly as often.

 

ValentinoD wrote:

We are thinking of going to 6.0.9, and while we do not have any SSL VPN on Fortigate, we do have RDP sessions going over IPSec VPN tunnels or other directly connected links.

 

If you don't use SSL VPN, you'll be fine. RDP works okay over IPsec and other links.

14586
0 Kudos
Announcements
Check out our Community Chatter Blog! Click here to get involved
Labels
Top Kudoed Authors
View all
Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2025 Fortinet, Inc. All Rights Reserved.