Changing the FortiGate firmware

System status

 

 

Note: Installing firmware replaces the current antivirus and attack definitions with the definitions included with the firmware release that you are installing. After you install new firmware, use the procedure “Manually initiating antivirus and attack definitions updates” on page 75 to make sure that antivirus and attack definitions are up to date. You can also use the CLI command execute updatecenter updatenow to update the antivirus and attack definitions.

To use the following procedure you must have a TFTP server that the FortiGate unit can connect to.

To revert to a previous firmware version using the CLI

1Make sure that the TFTP server is running.

2Copy the new firmware image file to the root directory of the TFTP server.

3Log into the FortiGate CLI as the admin administrative user.

4Make sure the FortiGate unit can connect to the TFTP server.

You can use the following command to ping the computer running the TFTP server. For example, if the TFTP server's IP address is 192.168.1.168:

execute ping 192.168.1.168

5Enter the following command to copy the firmware image from the TFTP server to the FortiGate unit:

execute restore image <name_str> <tftp_ip>

Where <name_str> is the name of the firmware image file on the TFTP server and <tftp_ip> is the IP address of the TFTP server. For example, if the firmware image file name is FGT_300-v250-build045-FORTINET.outand the IP address of the TFTP server is 192.168.1.168, enter:

execute restore image FGT_300-v250-build045-FORTINET.out 192.168.1.168

The FortiGate unit uploads the firmware image file. After the file uploads, a message similar to the following is displayed:

Get image from tftp server OK.

This operation will downgrade the current firmware version! Do you want to continue? (y/n)

6Type Y.

7The FortiGate unit reverts to the old firmware version, resets the configuration to factory defaults, and restarts. This process takes a few minutes.

8Reconnect to the CLI.

9To confirm that the new firmware image has been loaded, enter: get system status

10Restore your previous configuration. Use the following command: execute restore config

11Update antivirus and attack definitions. For information, see “Manually initiating antivirus and attack definitions updates” on page 75, or from the CLI, enter: execute updatecenter updatenow

58

Fortinet Inc.

Page 57 Page 59
Page 58
Image 58
Fortinet 50A user manual To revert to a previous firmware version using the CLI
Page 57 Page 59
Top Page Image Contents