deploy ips signature file using scp or similar?

Forum|Forum|11 years ago
September 30, 2014
4 replies
5732 views

Looking to script the update of ips signature files, but without ftp or tftp available (which rules out execute restore ips [ftp|tftp] etc..). Can scp be used to deploy ips signature files? If so, what is the destination filename on the FGT, any other steps required?

Best answer by journeyman

I mean the ips db file (and av, for that matter) from fortinet support - vsigupdate*.pkg and nids*.pkg.

What is the push method?

FatalHalt

New Member

The only think that I' m aware that SCP can do is backups. If there is more, I would love to see a write up or some documentation on it!

norouzi

New Member

Just FTP or TFTP is available.

You can do it from the web.

norouzi

New Member

Just FTP or TFTP is available.

You can do it from the web.

emnoc

New Member

What do you mean update the ips signature file? Are you talking about custom ips sigantures or the fortiguard provided ips-db-file ?

Either, you can manual push the IPS or even AS database file to a fortigate. Just down load the update-file from support at fortinet and use the "push" method.

On custom signatures, you could build signatures and push them via expect or something similar. if your creative and dangerous you can use fnsctl and copy files from a USB /mounted drive to the directory with in the fortigate FileSystem.

journeymanAuthorAnswer

New Member

I mean the ips db file (and av, for that matter) from fortinet support - vsigupdate*.pkg and nids*.pkg.

What is the push method?

Sign up

Login with SSO

Login to the community

Login with SSO

Scanning file for viruses.

This file cannot be downloaded