FortiOS Handbook - What's New

Recommendations

Info

GUI Refresh New Consoles New Consoles In FortiOS 5.4, a variety of new consoles have been added to FortiView: FortiView Policies console The new Policies console works similarly to other FortiView consoles, yet allows administrators to monitor policy activity, and thereby decide which policies are most and least active. This helps the administer to discern which policies are unused and can be deleted. In addition, you have the ability to click on any policy in the table to drill down to the Policies list and view or edit that policy. You can view this new console in either Table or Bubble Chart view. FortiView Interfaces console The new Interfaces console works similarly to other FortiView consoles and allows administrators to perform current and historical monitoring per interface, with the ability to monitor bandwidth in particular. You can view this new console in either Table or Bubble Chart view. FortiView Countries console A new Countries console has been introduced to allow administrators to filter traffic according to source and destination countries. This console includes the option to view the Country Map visualization (see below). FortiView Device Topology console The new Device Topology console provides an overview of your network structure in the form of a Network Segmentation Tree diagram (see below). FortiView Traffic Shaping console A new Traffic Shaping console has been introduced to improve monitoring of existing Traffic Shapers. Information displayed includes Shaper info, Sessions, Bandwidth, Dropped Bytes, and more. FortiView Threat Map console A new Threat Map console has been introduced to monitor risks coming from various international locations arriving at a specific location, depicted by the location of a FortiGate on the map (see below). FortiView Failed Authentication console A Failed Authentication console has been added under FortiView that allows you to drill down an entry to view the logs. This new console is particularly useful in determining whether or not the FortiGate is under a brute force attack. If an administrator sees multiple failed login attempts from the same IP, they could (for example) add a local-in policy to block that IP. The console provides a list of unauthorized connection events in the log, including the following: Whats New for FortiOS 5.4.0 Fortinet Technologies Inc. 22
New Consoles GUI Refresh • unauthorized access to an admin interface (telnet, ssh, http, https, etc.) • failure to query for SNMP (v3) or outside of authorized range (v1, v2, v3) • failed attempts to establish any of the following: • Dial-up IPsec VPN connections • Site-to-site IPsec VPN connections • SSL VPN connections • FGFM tunnel FortiView WiFi Clients console The WiFi Clients console has been added to FortiView in FortiOS 5.4. As you might expect, you can use this console to display top wireless user network usage and information. You can drilldown to filter the information that is displayed. Information displayed includes Device, Source IP, Source SSID, AP, and more. New FortiView Visualizations New visualization support has been added to FortiView via the Bubble Chart and the Country Map. Bubble Chart Visualization 23 Whats New for FortiOS 5.4.0 Fortinet Technologies Inc.
Page 1 and 2: FortiOS Handbook - What's New VERSI
Page 3 and 4: TABLE OF CONTENTS Change Log 12 Int
Page 5 and 6: Certification 66 Vulnerability Scan
Page 7 and 8: ADVPN support for NAT device (29979
Page 9 and 10: Routing 112 RFC support added in Fo
Page 11 and 12: Administrator password updates (292
Page 13 and 14: How this guide is organized Introdu
Page 15 and 16: Security profile features available
Page 17 and 18: Proxy mode and flow mode antivirus
Page 19 and 20: New options for editing policies fr
Page 21: Edit in CLI GUI Refresh For example
Page 25 and 26: New Consoles GUI Refresh Threat Map
Page 27 and 28: New Consoles GUI Refresh Right-clic
Page 29 and 30: New Consoles GUI Refresh 7-day time
Page 31 and 32: New Consoles Cloud Access Security
Page 33 and 34: New Consoles Web Application Firewa
Page 35 and 36: New Consoles DNS Filter DNS Filter
Page 37 and 38: New Consoles DNS Filter set srcintf
Page 39 and 40: FortiCache External Security Device
Page 41 and 42: FortiMail External Security Devices
Page 43 and 44: Pushing malicious URLs to Web Filte
Page 45 and 46: FortiClient Monitoring and Quaranti
Page 47 and 48: FortiClient Monitoring and Quaranti
Page 49 and 50: New button added to "Clone" Shapers
Page 51 and 52: WAN links WAN link load balancing E
Page 53 and 54: Priority rules WAN link load balanc
Page 55 and 56: Status check WAN link load balancin
Page 57 and 58: Adding a virtual wire pair Virtual
Page 59 and 60: Adding a virtual wire pair firewall
Page 61 and 62: Authentication New feature catalog
Page 67 and 68: Device identification New feature c
Page 69 and 70: Device identification New feature c
Page 71 and 72: Diagnose command changes New featur
Page 73 and 74:
Diagnose command changes New featur
Page 75 and 76:
Explicit web proxy New feature cata
Page 77 and 78:
Explicit web proxy New feature cata
Page 79 and 80:
Firewall New feature catalog • "H
Page 81 and 82:
Firewall New feature catalog traffi
Page 83 and 84:
FortiGate VM New feature catalog Fo
Page 85 and 86:
Hardware acceleration New feature c
Page 87 and 88:
High Availability New feature catal
Page 89 and 90:
IPsec VPN New feature catalog IPsec
Page 91 and 92:
IPsec VPN New feature catalog ... s
Page 93 and 94:
IPsec VPN New feature catalog intro
Page 95 and 96:
IPv6 New feature catalog FortiGate
Page 97 and 98:
Load balancing New feature catalog
Page 99 and 100:
New Features New feature catalog Lo
Page 101 and 102:
New Features New feature catalog Fr
Page 103 and 104:
Managing a FortiSwitch with FortiGa
Page 105 and 106:
Maximum values changes New feature
Page 107 and 108:
Networking New feature catalog Fort
Page 109 and 110:
Networking New feature catalog Supp
Page 111 and 112:
Networking New feature catalog end
Page 113 and 114:
RFC support added in FortiOS 5.4 Ne
Page 115 and 116:
Security Profiles New feature catal
Page 117 and 118:
Page 119 and 120:
Page 121 and 122:
Page 123 and 124:
Page 125 and 126:
Session-aware Load Balancing (SLBC)
Page 127 and 128:
SSL VPN New feature catalog end DTL
Page 129 and 130:
System New feature catalog New star
Page 131 and 132:
System New feature catalog end end
Page 133 and 134:
System New feature catalog You can
Page 135 and 136:
System New feature catalog The TFTP
Page 137 and 138:
System New feature catalog Certific
Page 139 and 140:
VDOMs New feature catalog From the
Page 141 and 142:
WAN Optimization New feature catalo
Page 143 and 144:
WiFi New feature catalog In the CLI
Page 145 and 146:
WiFi New feature catalog set wtp-gr
Page 147 and 148:
WiFi New feature catalog A new conf
Page 149 and 150:
WiFi New feature catalog Opportunis
Page 151:
Copyright© 2015 Fortinet, Inc. All
show all

FortiOS Handbook - What's New

Create successful ePaper yourself

Delete template?

Save as template?