Description | This article describes the process of allowing air-gapped FortiGate devices to connect to FortiManager for FortiGuard updates and related FDN services. |
Scope | FortiGate, FortiManager. |
Solution |
In general, air-gapped FortiGates are not permitted to connect to the internet. However, they need to connect to the FDN server for FortiGuard updates, license and subscription validation, etc.
config system central-management set type fortimanager config server-list edit 1 set server-type update rating next end end
di de res
di de app update -1 di de en exec update-now
Disable the debug after 5 minutes:
di de res
Note: In some cases, FortiGate might encounter an FDN connection issue after several hours due to FortiManager undoing the configuration changes. |
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2025 Fortinet, Inc. All Rights Reserved.