Help
FortiGate
FortiGate Next Generation Firewall utilizes purpose-built security processors and threat intelligence security services from FortiGuard labs to deliver top-rated protection and high performance, including encrypted traffic.
osoleimani
Staff
Staff

Created on ‎06-26-2023 09:25 PM Edited on ‎10-05-2023 06:25 AM By Moderator

Article Id 261776

Technical Tip: The Common Error or Warning Messages which are appeared on the Web GUI while Upgrading the FortiGate Firmware

Description

 

This article describes the common error or warning messages which are appeared on the web GUI while upgrading the FortiGate firmware and how to check or resolve them.

 

Scope

 

FortiGate.

 

Solution

 

  1. Image file does not match the platform.

 

There are different firmware builds available on the Fortinet support portal for some FortiGate hardware models.

 

If the incorrect build is chosen for upgrading the firmware on FortiGate, the 'Image file doesn't match platform' error message appears on the web GUI as below:

 

osoleimani_0-1687806447780.jpeg

 

In order to fix the issue, the correct image should be downloaded from the Fortinet support portal.

 

osoleimani_1-1687806447790.jpeg

 

Note:

 

  1. FFW is for FortiFirewall.
  2. FWF is for FortiWifi.
  3. FGR is for FortiGate Rugged.
  4. FGT is for FortiGate.

 

      B. No firmware available from FortiGuard.

 

Sometimes this warning appeared on the Firmware Management page while upgrading the FortiGate Firmware.

This warning message indicates that FortiGate cannot get the list of available firmware images which is compatible with this particular unit from FortiGuard Distribution Network servers.

 

In order to resolve the issue, make sure FortiGate can retrieve the compatible firmware images from FortiGuard Distribution Network :

 

osoleimani_2-1687806447794.jpeg

 

By running the below CLI interface commands, the information can be verified:

 

diagnose fdsm fds-update

diagnose fdsm image-upgrade-matrix

diagnose fdsm image-list

 

The following is an example of the output of the above command in non-working and working scenarios:

 

osoleimani_3-1687806447796.jpeg

 

osoleimani_4-1687806447811.jpeg

 

osoleimani_5-1687806447814.jpeg

 

osoleimani_6-1687806447825.jpeg

 

     C. Image upgrade failed.

 

It could be possible to get this error message even though the list of available firmware versions shows on the Firmware Management page while upgrading the FortiGate Firmware.

 

osoleimani_7-1687806447833.jpeg

 

This error message indicates that remote upgrading is not allowed on the FortiGate unit or there is a connectivity issue with FortiGuard Distribution Network servers.

 

For fixing this issue, make sure the remote firmware upgrade is allowed on FortiGate in the central management setting as well as FortiGuard servers are reachable.

 

The information can be checked by using the following CLI interface commands:

 

show full-configuration system central-management | grep allow-remote-firmware-upgrade

execute ping guard.fortinet.net

execute ping service.fortiguard.net

execute ping update.fortiguard.net

 

The following is the example of the above command output when everything works as expected:

 

osoleimani_8-1687806447834.jpeg

 

osoleimani_9-1687806447846.jpeg

 

Note:

The provided FQDNs might not respond to the ping command however the most important part is that FQDNs are resolved properly.

5624
Submit Article Idea
Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2024 Fortinet, Inc. All Rights Reserved.