Technical Tip: Verifying which Internet Service database type and version installed on FortiOS-based units

FortiOS 6.2.11 and above.

FortiOS 6.4.10 and above.

FortiOS 7.0.4 and above.

Starting with FortiOS 6.2.11, 6.4.10, 7.0.4, and 7.2.1 releases, 3 Internet-service databases of different sizes (mini, standard, and full) are available on FortiGuard and can be installed on FortiGate devices and VMs.

By default, the size of the internet-service database downloaded from FortiGuard and installed on a FortiGate device or VM depends on the hardware platform and type.

On FortiOS 6.2.11 and above, or 6.4.10 and above, the Internet-service database selected to be downloaded and installed is chosen by FortiOS based on the hardware platform and type and cannot be changed.

On FortiOS 7.0.4 and above, or 7.2.1 and above, the Internet-service database selected to be downloaded and installed is by default chosen by FortiOS on the hardware platform and type but can manually be changed afterward using the 'internet-service-database' variable located in config system global.

Knowing which Internet-service database is effectively downloaded and installed can usually be done using the 'diagnose autoupdate versions' command.

1) Case where the internet-service database full version is selected for download.

# diagnose autoupdate versions

…

Internet-service Full Database <<<<<

---------

Version: 7.02812 signed

Contract Expiry Date: n/a

Last Updated using scheduled update on Wed Nov  9 03:47:44 2022

Last Update Attempt: Wed Nov  9 09:32:09 2022

Result: No Updates

…

2) Case where the internet-service database standard version is selected for download.

# diagnose autoupdate versions

…

Internet-service Standard Database <<<<<

---------

Version: 7.02812 signed

Contract Expiry Date: n/a

Last Updated using manual update on Wed Nov  9 09:35:09 2022

Last Update Attempt: Wed Nov  9 09:35:09 2022

Result: Updates Installed

…

3) Case where internet-service database mini version is selected for download.

# diagnose autoupdate versions

…

Internet-service Mini Database <<<<<

---------

Version: 7.02812 signed

Contract Expiry Date: n/a

Last Updated using manual update on Wed Nov  9 09:36:29 2022

Last Update Attempt: Wed Nov  9 09:36:29 2022

Result: Updates Installed

…

It is also possible to use the 'diagnose test update info' command in order to get more detailed information such as the FDS object unique identifiers knowing that, by design, Internet-service database IDs are split into 3 parts separated by a dash as detailed below:

Part 1: an internet-service database identifier indicating the database type and the FortiOS version to which it applies:

06002000FFDB00306 - FortiOS 6.2 Internet-service Database App file

06002000FFDB00606 - FortiOS 6.2 Internet-service Database Map file (mini database)

06002000FFDB00406 - FortiOS 6.2 Internet-service Database Map file (standard database)

06002000FFDB00506 - FortiOS 6.2 Internet-service Database Map file (full database)

06004000FFDB00307 - FortiOS 6.4 Internet-service Database App file

06004000FFDB00607 - FortiOS 6.4 Internet-service Database Map file (mini database)

06004000FFDB00407 - FortiOS 6.4 Internet-service Database Map file (standard database)

06004000FFDB00507 - FortiOS 6.4 Internet-service Database Map file (full database)

There is no more Internet-service Database Apps in FortiOS 7.0.

07000000FFDB01107 - FortiOS 7.0 Internet-service Database Map file (mini database)

07000000FFDB00907 - FortiOS 7.0 Internet-service Database Map file (standard database)

07000000FFDB01007 - FortiOS 7.0 Internet-service Database Map file (full database)

There is no more Internet-service Database Apps in FortiOS 7.2.

07002000FFDB02108 - FortiOS 7.2 Internet-service Database Map file (mini database)

07002000FFDB01908 - FortiOS 7.2 Internet-service Database Map file (standard database)

07002000FFDB02008 - FortiOS 7.2 Internet-service Database Map file (full database)

Part 2: the version of the database such as version 7.02805 will be encoded as '00007.02805'.

Part 3: the date and time the database is downloaded encoded in the format 'YYMMDDHHMM' such as November 4, 2022 at 11:01 PM will be encoded '2211042301'.

For example, a FortiOS 6.2 Internet-service full database version 7.02805 downloaded on November 4, 2022 at 11:01 PM will be encoded as '06002000FFDB00506-00007.02805-2211042301'.

It should be noted that all Internet-service Database entries which are not applicable to a device or not downloaded and installed have the corresponding version set to '00000.00000' and date/time set to '0101010000'.

For example, a FortiOS 6.2 Internet-service standard database version not downloaded and installed will be encoded '06002000FFDB00406-00000.00000-0101010000'.