Created on 02-21-2023 06:19 AM Edited on 01-21-2024 11:23 AM By Stephen_G
Description |
This article describes how to handle an issue that may be observed while receiving the alert email or logs on FortiGate as follows:
Message meets Alert condition
In the output of command ‘diagnose autoupdate versions’, 'Connectivity failure’ as Result for ‘Attack Definitions’ is visible as follows:
Attack Definitions --------- Version: 6.00741 Contract Expiry Date: Wed Jul 26 2023 Last Updated using manual update on Tue Dec 1 02:30:00 2015 Last Update Attempt: Thu Aug 27 11:52:52 2020 Result: Connectivity failure
Even after manually updating FortiGate using the command ‘execute update-now’, this error will show up under the result of ‘Attack Definitions’. |
Scope | FortiGate. |
Solution |
These ‘Attack Definitions’ refers to IPS databases that can be verified using the following command:
show full-configuration ips global
If the ‘extended’ database is being used in IPS, FortiGate does not update the normal database along with it or vice versa. FortiOS only requests packages for the configured IPS DB set.
Afterwards, attempt to manually update the FortiGate using the command ‘execute update-now’. After, verify the attempt succeeded with the command ‘diagnose autoupdate versions’: the output should show that the ‘Attack Definitions’ was updated.
Attack Definitions --------- Version: 22.00491 Contract Expiry Date: Wed Jul 26 2023 Last Updated using manual update on Wed Feb 8 10:34:41 2023 Last Update Attempt: Wed Feb 8 10:34:41 2023 Result: Updates Installed
Note: The IPS security profile must be applied applied to the firewall policy before updating manually (by using 'execute update-now'). |
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2024 Fortinet, Inc. All Rights Reserved.