Fortinet Version 3.0 Upgrading to a new firmware version, To upgrade to a new firmware version

Page 31

 

 

Setting up FortiBridge units

Installing FortiBridge unit firmware

Table 8: Firmware upgrade procedures

Procedure

Description

 

 

Upgrading to a new

Upgrade to a new FortiBridge firmware version or to a more

firmware version

recent build of the same firmware version.

 

 

Reverting to a

Revert to a previous firmware version. This procedure reverts

previous firmware

the FortiBridge unit to its factory default configuration.

version

 

 

 

Installing firmware

Install a new firmware version or revert to a previous firmware

from a system reboot

version. To use this procedure you must connect to the CLI

 

using the FortiBridge console port. This procedure reverts the

 

FortiBridge unit to its factory default configuration.

 

 

Upgrading to a new firmware version

You cannot use this procedure to re-install the current firmware or to revert to an older version of the firmware. If you need to re-install the current firmware or revert to an older firmware version, see “Reverting to a previous firmware version” on page 32.

The following procedure requires a TFTP server that you can connect to from the FortiBridge unit.

To upgrade to a new firmware version

1Make sure that the TFTP server is running.

2Copy the new firmware image file to the root directory of your TFTP server.

3Log into the CLI as an administrator with sysshutdowngrp access.

Normally this would be the admin administrator. But you can use access profiles to control administrative access. See “system accprofile” on page 57 for more information.

4Make sure the FortiBridge unit can connect to the TFTP server.

You can use the following command to ping the computer running the TFTP server. For example, if the TFTP server IP address is 192.168.1.168:

execute ping 192.168.1.168

5Enter the following command to copy the firmware image from the TFTP server to the FortiBridge unit:

execute restore image <name_str> <tftp_ip>

Where <name_str> is the name of the firmware image file on the TFTP server and <tftp_ip> is the IP address of the TFTP server. For example, if the firmware image file name is FBG_1000-v10-build010-FORTINET.outand the IP address of the TFTP server is 192.168.1.23, enter:

execute restore image FBG_1000-v10-build010-FORTINET.out 192.168.1.168

The FortiBridge unit uploads the firmware image file, upgrades to the new firmware version, and restarts. This process takes a few minutes.

6Reconnect to the CLI.

7To confirm that the new firmware image has been loaded, enter: get system status

FortiBridge Version 3.0 Administration Guide

31

09-30000-0163-20061109

Page 30 Page 32
Image 31
Page 30 Page 32
Contents M i n i s t r a t i o n G u i d e Regulatory compliance TrademarksContents Using the CLI Configuration and operating proceduresConfig CLI commands Index Execute CLI commandsPage About this document About FortiBridgeFortinet Knowledge Center Customer service and technical supportFortinet documentation Fortinet tools and documentation CDExample FortiBridge application FortiBridge operating principlesConnecting the FortiBridge-1000 copper gigabit ethernet Connecting the FortiBridge unitConnecting the FortiBridge-1000F fiber gigabit ethernet Normal mode operationHow the FortiBridge unit monitors the FortiGate unit Probes and FortiGate firewall policies Normal mode operationEnabling probes to detect FortiGate software failure Enabling probes to detect FortiGate hardware failureProbe interval and probe threshold FortiBridge power failure Bypass mode operationExample FortiGate HA cluster FortiBridge application Example configuration with other FortiGate interfaces Example configuration with other FortiGate interfaces Example configuration with other FortiGate interfaces FortiBridge unit basic information FortiBridge-1000 Package contentsMounting instructions FortiBridge-1000F Package contentsLED indicators Technical specificationsFactory default configuration ConnectorsConnecting and turning on the FortiBridge-1000 unit Connecting and turning on the FortiBridge unitTo connect and turn on the FortiBridge-1000 unit Connecting and turning on the FortiBridge-1000F unitTo connect and turn on the FortiBridge-1000F unit To connect to the FortiBridge console for the first time Connecting to the command line interface CLIConnecting to the FortiBridge console FortiBridge-1000 loginWelcome FortiBridge-1000 # Completing the basic FortiBridge configurationConnecting to the FortiBridge CLI using Telnet To connect to the CLI using TelnetTo change the management IP address Adding an administrator passwordTo add an administrator password Changing the management IP address To add static routes Changing DNS server IP addresses Adding static routes To change DNS server IP addressesAdding administrator accounts Allowing management access to the EXT 1 interfaceChanging the system time and date Installing FortiBridge unit firmware Resetting to the factory default configurationTo reset to factory defaults from the FortiBridge CLI Upgrading to a new firmware version To upgrade to a new firmware versionExecute restore image namestr tftpip Execute restore image FBG1000-v10-build010-FORTINET.outTo revert to a previous firmware version Reverting to a previous firmware versionEnter Tftp server address Installing firmware from a system rebootTo install firmware from a system reboot Hit any key to stop autobootGet system status Enter firmware image file image.outExample network settings Configuration and operating proceduresConfiguring FortiBridge probes Configuring FortiBridge probesTo configure probe settings Probe settingsConfig probe probelist ping set status enable End To enable and configure FortiBridge probesEnabling probes Go to System Status Session Config probe probelist Imap set status enable EndVerifying that probes are functioning To verify that probes are functioningTuning the failure threshold and probe interval Configuring FortiBridge alertsFortiBridge syslog To configure alert emailConfig alertemail setting set server mail.myorg.com End FortiBridge alert emailConfig log syslogd setting set server End To configure FortiBridge syslogFortiBridge Snmp To resume normal operation from bypass mode Recovering from a FortiGate failureTo add and enable an Snmp community Config system snmp community edit Set name snmp1 EndTo back up the FortiBridge configuration Manually switching between FortiBridge operating modesBacking up and restoring the FortiBridge configuration Execute switch-modeBacking up and restoring the FortiBridge configuration Backing up and restoring the FortiBridge configuration CLI basics Connecting to the FortiBridge CLI using SSH or TelnetSetting administrative access for SSH or Telnet To use the CLI to configure SSH or Telnet accessGet system interface namestr Other access methodsConnecting to the FortiBridge CLI using SSH Set allowaccess ping telnet sshTo connect to the CLI using SSH Connecting to the FortiBridge CLI using SSH or Telnet Config CLI commands Command syntax pattern Alertemail settingExamples Related Commands Example Log syslogd settingShow probe probelist Probe probelist ping http ftp pop3 smtp imapGet probe probelist Get probe probelist httpSyslog Probe settingRw w System accprofileGet system accprofile policyprofile Get system accprofileShow system accprofile Password passwordstr System adminGet system admin newadmin Get system adminShow system admin Show system console Config system console set EndSystem console Get system consoleGet system dns System dnsShow system dns Get system status Failbypass System failcloseSystem failclose Minutesinteger System globalShow system global Get system globalGet system interface internal System interface internal externalShow system interface internal System manageip Config system manageip Set ip 192.168.2.80 255.255.255.0 endDistanceinteger System routeSystem snmp community Config hostsShow system snmp community Get system snmp communityExecute CLI commands Execute backup config fbdg.cfg BackupCommand syntax Execute backup config filenamestr tftp-serveripv4Execute date datestr datestr has the form mm/dd/yyyy, where DateExecute date 09/17/2004 Execute factoryreset FactoryresetExecute ping addressipv4 host-namestr PingExecute reboot RebootExecute restore config backupconfig RestoreSwitch-mode Execute time timestr TimeTime Index 09-30000-0163-20061109 Snmp SSH
Top Page Image Contents