Description
This article describes how to resolve a scenario where no new firmware is listed in the Firmware Management section of the GUI.
Scope
FortiGate, FortiGuard.
Solution
- Run the following commands to make sure that the FortiGuard Distribution Network has the images updated on FDN Servers.
diag fdsm image-upgrade-matrix
diag fdsm image-list
diag fdsm fds-update
diag fdsm image-list
diag fdsm fds-update
The above commands will list all the compatible firmware images & versions that are retrieved from FDN. If this is successful, there will be no issues communicating with the FortiGuard distribution list.
Note:
In case of a new device such as G series and there is no available upgrade/downgrade path, the result will show an error for those commands.
- allow-remote-firmware-upgrade is enabled by default. If it was disabled previously, enable it by running the following command:
config system central-management
set allow-remote-firmware-upgrade enable
end
This will enable remotely upgrading the firmware on this FortiGate from the central management server (FortiGuard by default).
After this change, it will be possible to find the recommended firmware:
If FortiGuard Firmware is still not available then upgrade to a version that has End of Support (EOS) manually. After that, all the images should be visible.
Note: Versions 5.0 up to 7.0 are End of Engineering Support (EOES). Consider upgrading the firmware level on the device to a supported version (7.2 up to 7.6). Here check the firmware path and compatibility depending on the hardware: Upgrade tool.
Related article:
