Virus and attack definitions updates and registration

Updating antivirus and attack definitions

 

 

Adding an override server

If you cannot connect to the FDN or if your organization provides antivirus and attack updates using their own FortiResponse server, you can use the following procedure to add the IP address of an override FortiResponse server.

1Go to System > Update.

2Select Use override server address and add the IP address of a FortiResponse server.

3Select Apply.

The FortiGate unit tests the connection to the override server.

If the FortiResponse Distribution Network setting changes to available, the FortiGate unit has successfully connected to the override server.

If the FortiResponse Distribution Network stays set to not available, the FortiGate unit cannot connect to the override server. Check the FortiGate configuration and the network configuration to make sure you can connect to the override FortiResponse server from the FortiGate unit.

Manually updating antivirus and attack definitions

You can use the following procedure to update the antivirus and attack definitions at any time. To run this procedure the FortiGate unit must be able to connect to the FDN or to an override FortiResponse server.

1Go to System > Update.

2Select Update Now to update the antivirus and attack definitions.

If the connection to the FDN or override server is successful, the web-based manager displays a message similar to the following:

Your update request has been sent. Your database will be updated in a few minutes. Please check your update page for the status of the update.

After a few minutes, if an update is available, the System Update page lists new version information for antivirus definitions, the antivirus engine, or for attack definitions. The System Status page will also displays new dates and version numbers for antivirus and attack definitions. Messages are recorded to the event log indicating whether the update was successful or not.

Configuring push updates

The FDN can push updates to FortiGate units to provide the fastest possible response to critical situations. You must register the FortiGate unit before it can receive push updates. See “Registering the FortiGate unit” on page 126.

If the FDN must connect to the FortiGate unit through a NAT device, see “Push updates through a NAT device” on page 120.

Push updates are not supported if the FortiGate unit must use a proxy server to connect to the FDN. See “Scheduled updates through a proxy server” on page 124 for more information.

FortiGate-400 Installation and Configuration Guide

119

Page 118 Page 120
Page 119
Image 119
Fortinet 400 Adding an override server, Manually updating antivirus and attack definitions, Configuring push updates, 119
Page 118 Page 120
Top Page Image Contents