What's new for Firewall in 6.0
The following list contains new firewall features added in FortiOS 6.0. Click on a link to navigate to that section for further information.
- SSH MITM deep inspection
- Creating NAT46 IP pool and multiple (secondary) NAT64 prefixes
- Application groups for NGFW policies
- Wildcard FQDNs for SSL deep inspection exemptions
- IPv6 FQDN firewall addresses
- Firewall IPv6 address templates
- Port block allocation timeout
- WAN Optimization and web cache improvements. Changes can be found at:
- WANopt storage
- WANopt cache service
- Video caching
- diagnose wad csvc
- diagnose wad worker
- SSL mirroring for policies
- ISDB and IRDB in firewall policies
- IPv6 support for GRE tunnels
- Dispatching traffic to WAD worker based on source affinity
- Explicit proxy authentication timeout
- Multiple web proxy PAC files in one VDOM
- Logging options in web proxy profiles
- Encryption strength for proxied SSH sessions
- DNS traffic in NGFW policy-mode
- Using a FortiCache as a cache service
- IPv6 SSH
- WCCP Cisco to FortiGate client using L2-forwarding tunneling