Producent oprogramowania Fortinet udostępnił najnowszą wersję dla FortiAnalyzer o oznaczeniu 7.0.7. Dzięki aktualizacji, został naprawiony problem dotyczący monitorowania i przeglądania przepustowości technologii SD-WAN. Ponadto, producent skorygował błędy dotyczące pamięci masowej wraz z zużyciem procesora. Po więcej informacji, zapraszam do dalszej części materiału.
Aktualnie wspierane modele:
| FortiAnalyzer | FAZ-150G, FAZ-200F, FAZ-300F, FAZ-300G, FAZ-400E, FAZ-800F, FAZ-800G, FAZ-1000F, FAZ-2000E,
FAZ-3000F, FAZ-3000G, FAZ-3500E, FAZ-3500F, FAZ-3500G, FAZ-3700F, FAZ-3700G, FAZ-3900E |
| FortiAnalyzer VM | FAZ_DOCKER, FAZ-VM64, FAZ_VM64_ALI, FAZ-VM64-AWS, FAZ-VM64-Azure, FAZ-VM64-GCP, FAZ-VM64-HV (including Hyper-V 2016, 2019), FAZ-VM64-IBM, FAZ-VM64-KVM, FAZ-VM64-OPC, FAZ-VM64-Xen (for both Citrix and Open Source Xen) |
Rozwiązane problemy:
Device Manager
| Bug ID | Description |
|---|---|
| 814008 | Sort function for logs and average log rate (logs/sec) does not work in Device Manager. |
| 824296 | FortiAnalyzer does not show the „root VDOM” under its Device Manager. |
| 833448 | The device SYSLOG-00000000 appears repeatedly even after being removed from the unregistered devices. |
FortiSOC
| Bug ID | Description |
|---|---|
| 775589 | FortiAnalyzer does not provide any details on status of Fabric Connectors. |
| 848284 | Despite having relevant event logs, created playbook does not get triggered. |
| 849070 | Playbook run successfully on the FortiAnalyzer but there is not any stitches triggered on the FortiGate. |
FortiView
| Bug ID | Description |
|---|---|
| 727056 | SD-WAN Monitor may show incorrect bandwidth. |
| 744791 | „Failed Authentication Attempts” logs under the System tab of FortiView are blank. |
| 798471 | Top SD-WAN Device Throughput widget is displaying wrong numbers. |
| 841717 | The Data displayed on FortiView is inconsistent with the exported Top Website Domains PDF report. |
Log View
| Bug ID | Description |
|---|---|
| 704206 | When filtering with „Action” and „Source IP” under Traffic menu, the filter output may be incorrect with the combination of smart action with any other field. |
| 785559 | Filtering messages using the smart action field might not display the proper results. |
| 837554 | The Fabric log contains „::ffff:” prefix in front of the value of any IPv4 related fields. |
| 839350 | Devices’ entries under the Log Group of the Log View are not displayed. |
| 855783 | FortiAnalyzer event log file cannot be downloaded in „CSV” format. |
| 858682 | The data icon under the Log View for ADOM FortiMail/FortiWeb do not properly display the log details. |
Others
| Bug ID | Description |
|---|---|
| 827787 | The CPU and Disk I/O usage of the FortiAnalyzer appear to be constantly high. |
| 838182 | Logs are not being inserted into the secondary FortiAnalyzer. |
| 839910 | The „diagnose test application oftpd” command does not display any outputs for some FortiGate devices registered on FortiAnalyzer. |
| 841622 | FortiAnalyzer does not download the IOC DB updates when FortiManager acts as the local FortiGuard Server. |
| 845871 | FortiAnalyzer stopped accepting logs and status of the devices turned into red. |
| 860113 | The primary FortiAnalyzer can show the logs in Log View. The synchronization between primary and secondary fails and the secondary doesn’t show the last logs. |
Reports
| Bug ID | Description |
|---|---|
| 704187 | Bandwidth and Application Report’s data does not match with the Top Application data on FortiView. |
| 722233 | The generated report does not display data but its dataset query contains data. |
| 837826 | The event logs does not create any event logs whenever reports are being generated via „run report”. |
| 844563 | Hodex Time shown on table chart does not matchwith the configured time periodfor the previous XX days in report. |
System Settings
| Bug ID | Description |
|---|---|
| 782431 | SNMPv3 stopped working after upgrading. |
| 814471 | Despite having a proper license, new ADOMs cannot be created and error message „maximum number of ADOMs has been reached.” is displayed. |
| 839783 | When Interface type is in Aggregate mode the „Administrative Access” services are not displayed correctly based on what they have been configured. |
| 849824 | Under the Event’s System logs, Adding Filter „Fortiguard web filter services are NOT reachable” does not display any logs. |
| 853855 | The log forwarding filter does not seem to work properly as expected on FortiAnalyzer. |
Common Vulnerabilities and Exposures
Visit https://fortiguard.com/psirt for more information.
| Bug ID | CVE references |
|---|---|
| 868880 | FortiAnalyzer 7.0.7 is no longer vulnerable to the following CVE Reference:
|
Notatki producenta: FortiAnalyzer 7.0.7
Pozdrawiamy,
Zespół B&B
Bezpieczeństwo w biznesie
