FortiGate
FortiGate Next Generation Firewall utilizes purpose-built security processors and threat intelligence security services from FortiGuard labs to deliver top-rated protection and high performance, including encrypted traffic.
Jonathan_Body_FTNT
Article Id 194692
Description
After upgrading a FortiGate or FortiCarrier device to v4.0 MR2 Patch Release 3 (B0303), traffic traversing ports through FMC-XG2, ASM-CE4, ADM-XE2, or ADM-FE8 modules may cease for a short period and then resume.
 
IPS or Flow-AV updates received from the FortiGuard system cause ports on the cards to transition to a down state for a short period of time. The ports do recover automatically, however traffic fails to pass through the interface while it is in a down state.
 
A software correction will be applied in 4.0 MR2 Patch Release 4. Fortinet recommends not using FortiOS v4.0 MR2 Patch Release 3 (B0303) with any of the affected FortiGate or FortiCarrier models in conjunction with any of the listed modules.

Scope
The scope is limited to the following FortiGate and FortiCarrier models running FortiOS v4.0 MR2 Patch Release 3 (B0303) and with either a FMC-XG2, ASM-CE4, ADM-XE2, or ADM-FE8 module installed.
  • FortiGate-1240B
  • FortiGate-3016B
  • FortiGate-3810A
  • FortiGate-3950B/3951B
  • FortiGate-5001A
  • FortiCarrier-3810A
  • FortiCarrier-3950B/3951B
  • FortiCarrier-5001A
Customers using the above FortiGate or FortiCarrier models, but without the specifically mentioned modules are not affected by this issue, and may upgrade to FortiOS v4.0 MR2 Patch Release 3.

Contributors