Help
FortiGate
FortiGate Next Generation Firewall utilizes purpose-built security processors and threat intelligence security services from FortiGuard labs to deliver top-rated protection and high performance, including encrypted traffic.
nradia_FTNT
Staff
Staff

Created on ‎04-29-2025 05:45 AM Edited on ‎09-15-2025 10:38 PM By Moderator

Article Id 389624

Technical Tip: How to check FortiGuard Server status on FortiGate

Description This article describes how to check the FortiGuard status on FortiGate.
Scope

FortiGate.
Solution

On the FortiGate GUI, go under System -> FortiGuard, check the license information, which is displayed as expired.

 

fortiguard1.jpeg

 

Verify the license information of FortiGate on support.fortinet.com, which displays as active.

 

licence.png

 

As per the article mentioned below, run the debugs on FortiGate CLI. Some debug commands for FortiGuard:

 

diagnose debug reset

diagnose debug application update -1

diagnose debug console timestamp enable

diagnose debug enable

 

Force FortiGuard update after running debug:

 

execute update-now

 

Example:

 

2025-04-28 11:58:35 upd_pkg_create_update_req[711]-Update comp 0x410
2025-04-28 11:58:35 pack_obj[202]-Packing obj=Protocol=3.2|Command=Update|Firmware=FGT60F-FW-6.04-2095|SerialNumber=xxxx UpdateMethod=0|AcceptDelta=0|Contr
actItem=xxxx |DataItem=01000000FSCI00100-00000.00000-0000000000
2025-04-28 11:58:35 get_fcpr_response[308]-Unpacked obj: Protocol=3.2|Response=204|Firmware=FPT033-FW-6.9-0236|SerialNumber=FPT-FGT-DELL0406|Server=FDSG|Persistent=fal
se|PEER_IP=212.203.79.78|ResponseItem=01000000FSCI00100:200*03001000FSSI00000:200
2025-04-28 11:58:35 get_fcpr_response[348]-Wan ip=[212.203.79.78]
2025-04-28 11:58:35 installUpdatePackage[1197]-Online Update freezed, expiry=680f5195, current=680f514b
2025-04-28 11:58:35 upd_install_pkg[1357]-Failed pkg install (-14)
2025-04-28 11:58:35 __upd_act_update[348]-Failed installing pkg
2025-04-28 11:58:35 upd_comm_disconnect_fds[499]-Disconnecting FDS 173.243.140.6:443
2025-04-28 11:58:35 [204] __ssl_data_ctx_free: Done
2025-04-28 11:58:35 [1093] ssl_free: Done
2025-04-28 11:58:35 [196] __ssl_cert_ctx_free: Done
2025-04-28 11:58:35 [1103] ssl_ctx_free: Done
2025-04-28 11:58:35 [1084] ssl_disconnect: Shutdown
2025-04-28 11:58:35 upd_act_HA_contract_info[810]-Error updating FSCI -1
2025-04-28 11:58:35 do_update[518]-UPDATE failed

 

If Anycast is enabled on FortiGate, verify the status. To check if Anycast servers are up or experiencing an outage, see this document: FGT Anycast Query.

 

If the issue persists, try rebooting the FortiGate as a last resort.

 

Related articles:

Technical Tip: FortiGuard is not reachable via Anycast default method
Troubleshooting Tip: Unable to connect to FortiGuard servers

 

736
0 Kudos
Suggest New Article
Article Feedback
Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2025 Fortinet, Inc. All Rights Reserved.