Help
FortiGate
FortiGate Next Generation Firewall utilizes purpose-built security processors and threat intelligence security services from FortiGuard labs to deliver top-rated protection and high performance, including encrypted traffic.
anikolov
Staff
Staff

Created on ‎12-31-2021 05:33 AM Edited on ‎01-27-2023 02:42 AM By Staff

Article Id 202302

Technical Tip: Explanation to 'old' update values in 'get system status' output

Description.


This article describes the old values that you get from the '# get system status' and '# diagnose autoupdate versions' output.

 

The output of this command might lead to the impression that FortiGate is not updating its database from FortiGuard.

 

Scope

 

FortiGate

 

Solution.

 

See the example below:

 

FORTIGATE-Minjo# get system status

Version: FortiGate-VM64 v6.4.8,build1914,211117 (GA)

Virus-DB: 89.08260(2021-12-31 00:20)

Extended DB: 89.08260(2021-12-31 00:19)

Extreme DB: 1.00000(2018-04-09 18:07) <----- Last update – old value.

IPS-DB: 6.00741(2015-12-01 02:30) <----- Last update – old value.

IPS-ETDB: 19.00232(2021-12-30 04:57)

APP-DB: 19.00232(2021-12-30 04:57)

INDUSTRIAL-DB: 19.00232(2021-12-30 04:57)

Serial-Number: FGVM04TM21-----8

IPS Malicious URL Database: 3.00231(2021-12-30 15:23)

 

# diagnose autoupdate versions

 

Antivirus databases


Extended set
---------
Version: 91.00000 signed
Contract Expiry Date: Fri Feb 17 2023
Last Updated using scheduled update on Thu Jan 26 17:08:52 2023
Last Update Attempt: Thu Jan 26 17:38:24 2023
Result: No Updates

Extreme set
---------
Version: 1.00000 <----- not updated
Contract Expiry Date: Fri Feb 17 2023
Last Updated using manual update on Mon Apr 9 18:07:00 2018
Last Update Attempt: n/a
Result: Updates Installed

 

The default database for antivirus is the extended database and for IPS it varies depending on the model of the FortiGate.

The other database that is not in use does not get updated unless in use.

 

It is possible to switch to the other databases:

 

- For antivirus:
https://community.fortinet.com/t5/FortiGate/Technical-Tip-Antivirus-database/ta-p/193129

 

- For IPS:
https://community.fortinet.com/t5/FortiGate/Technical-Tip-Changing-the-IPS-database/ta-p/197371?exte...

 

Changing the antivirus to extreme and the IPS to regular in my example using the previous two articles has resulted with these values:

 

FORTIGATE-Minjo # get system status

Version: FortiGate-VM64 v6.4.8,build1914,211117 (GA)

Virus-DB: 89.08264(2021-12-31 04:20)

Extended DB: 89.08264(2021-12-31 04:19)

Extreme DB: 89.08220(2021-12-29 16:31) <----- Now it is updated.

IPS-DB: 19.00232(2021-12-30 04:57) <----- Now it is updated.

IPS-ETDB: 19.00232(2021-12-30 04:57)

APP-DB: 19.00232(2021-12-30 04:57)

INDUSTRIAL-DB: 19.00232(2021-12-30 04:57)

Serial-Number: FGVM04TM21-----8

IPS Malicious URL Database: 3.00231(2021-12-30 15:23)

 

# diagnose autoupdate versions

 

Antivirus databases

 

Extended set
---------
Version: 91.00021 signed
Contract Expiry Date: Fri Feb 17 2023
Last Updated using scheduled update on Fri Jan 27 10:08:31 2023
Last Update Attempt: Fri Jan 27 10:14:22 2023
Result: No Updates

Extreme set
---------
Version: 90.09975 signed <----- Now database is updated
Contract Expiry Date: Fri Feb 17 2023
Last Updated using manual update on Fri Jan 27 10:14:22 2023
Last Update Attempt: Fri Jan 27 10:14:22 2023
Result: Updates Installed

Labels:
1217
0 Kudos
Submit Article Idea
Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2024 Fortinet, Inc. All Rights Reserved.