Help
FortiGate
FortiGate Next Generation Firewall utilizes purpose-built security processors and threat intelligence security services from FortiGuard labs to deliver top-rated protection and high performance, including encrypted traffic.
sjoshi
Staff
Staff

Created on ‎05-21-2023 10:27 PM Edited on ‎12-08-2025 06:42 AM By Community Manager

Article Id 257333

Troubleshooting Tip: Troubleshoot when no new firmware is available in the Firmware Management section from GUI

Description

 

This article describes what are the parameters to check when no new firmware shows available in the FortiGate GUI.

2025-10-17_22h34_03.png

 

Scope

 

FortiGate.

 

Solution

 

  • Check if the internet is working fine.
  • Check that DNS is working fine from FortiGate.
  • Check the FortiGuard connectivity is up:

 

diagnose debug rating

 

12.PNG

 

If the FortiGuard is down, it is possible to take the debug:

 

diagnose debug application update -1
diagnose debug enable
execute update-now


Note:
In case of a new device, such as the G series, and there is no available upgrade/downgrade path, the result will show an error for those commands.

osoleimani_3-1687806447796.jpeg

 

Check whether allow-remote-firmware-upgrade is enabled under central management:


config system central-management
    set allow-remote-firmware-upgrade enable
end

 

Use this to get the list of images:

 

diagnose fdsm image-list

 

Do the following changes:

 

config system fortiguard
    set update-server-location any
    set sdns-server-ip "208.91.112.220" "194.69.172"

    set source-ip X.X.X.X <----- IP assigned to the external interface going to the internet.
end

 

Try to restart the forticldd process:


fnsysctl killall forticldd

 

After restarting the process, force an update. The debug output will show the image list and upgrade matrix being updated. 
 

FGT # diagnose debug application update -1

FGT # diagnose debug console timestamp enable

FGT # diagnose debug enable

FGT # execute update-now

........

FGT # 2025-08-08 08:14:38 [3315] fds_handle_request: Received cmd 117 from pid-25131, len 4
2025-08-08 08:14:38 [3327] fds_handle_request: Image list was updated within 86400 secs.
2025-08-08 08:14:38 [470] fds_send_reply: Sending 6128 bytes data.
2025-08-08 08:14:48 [3315] fds_handle_request: Received cmd 116 from pid-25133, len 0
2025-08-08 08:14:48 [470] fds_send_reply: Sending 8 bytes data.
2025-08-08 08:14:48 [3315] fds_handle_request: Received cmd 116 from pid-25133, len 0
2025-08-08 08:14:48 [470] fds_send_reply: Sending 8 bytes data.
2025-08-08 08:14:48 [3315] fds_handle_request: Received cmd 101 from pid-25133, len 0
2025-08-08 08:14:48 [42] fds_queue_task: req-101 is added to message-controller
2025-08-08 08:14:51 [3315] fds_handle_request: Received cmd 117 from pid-25131, len 4
2025-08-08 08:14:51 [3327] fds_handle_request: Image list was updated within 86400 secs.
2025-08-08 08:14:51 [470] fds_send_reply: Sending 6128 bytes data.
2025-08-08 08:14:51 [3315] fds_handle_request: Received cmd 119 from pid-25133, len 4
2025-08-08 08:14:51 [3343] fds_handle_request: Upgrade matrix was updated within 86400 secs

 

Alternatively, it is possible to manually download the firmware from the Support portal:

  1. Log in to the support portal (support.fortinet.com).
  2. Go to Download -> Firmware Images.
  3. Choose FortiGate -> Download and choose the file for FortiGate with the .out file format.

 

Related articles:

Troubleshooting Tip: No firmware available from FortiGuard under firmware management

Technical Tip: How to control/change the FortiGate source IP for self-generated traffic

7306
Suggest New Article
Article Feedback
Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2025 Fortinet, Inc. All Rights Reserved.