Technical Tip: Unable to select Antivirus or Web Filter profiles in Firewall Policies on FortiGate/FortiWiFi 30/31G
| Description | This article describes the inability to choose Antivirus and Web Filter profiles on FortiGate, and FortiWiFi 30/31G. |
| Scope | FortiGate, FortiWiFi-30/31G. |
| Solution | When trying to enable a Webfilter or Antivirus UTM feature in a firewall policy, the drop-down sections used to select the profiles of these 2 UTMs return the message 'This field is required'.
But the other UTMs like DNS Filter, Application Control, IPS, etc. can be selected without an issue.
This issue is fixed in the v7.2.11 release for the 30G/31G device. The user must install the special build 6542 for this device, which is already available on the support.fortinet.com v7.2.11 firmware download page.
The Firmware upgrade to v7.2.11 for 30G/31G might have an issue with upgrading due to 'Image upgrade failed. Firmware is not valid.' because it is a special build OS. Refer to this: Troubleshooting Tip: FortiGate upgrade fails - 'Image upgrade failed'
For reference: FortiGate upgrade fails - 'Image upgrade failed'
Also, there is the below workaround, where the Webfilter & Antivirus profiles can be enabled using the CLI.
config firewall policy set utm-status enable set av-profile <profile_name> set webfilter-profile <profile_name> end |
