Description
This article explains how to manually upgrade the IPS Engine on a FortiGate.
Scope
FortiGate.
Solution
The IPS Engine can be upgraded manually as follows:
Login to the GUI and go to System -> FortiGuard -> IPS & Application Control
Login to the GUI and go to System -> FortiGuard -> IPS & Application Control
Select 'Upgrade Database', browse the new IPS Engine package and select 'apply'.
After upgrading the IPS Engine, restart it by using the following CLI command:
diagnose test application ipsmonitor 99
Note: Performing the activity of upgrading the IPS engine will terminate all TCP sessions.
From both the GUI and CLI, it is possible to check IPS Engine version before and after an upgrade.
CLI:
CLI:
diag autoupdate versions | grep "IPS Attack" -A 6
Note: If when opening FortiGuard, there are no license information about Intrusion Prevention (IPS Engine version, IPS License, etc), enable Intrusion Prevention on System -> Feature Visibility -> Intrusion Prevention.
After this, go back to FortiGuard and all IPS related information should be available.
Note: If device has evaluation license or no valid license, updating the database is not allowed.
