Fortinet Forum
The Forums are a place to find answers on a range of Fortinet products from peers and product experts.
fjulianom
New Contributor III

Upgrading FortiGate from 5.2.3 to 6.4.8

Hi community,

 

Can anyone help me about the procedure how to upgrade a FortiGate 60D from 5.2.3 to 6.4.8. I have taken a look at the Upgrade Path Tool, but it doesn't show either 5.2.3 nor 6.4.8. Any ideas?

 

Regards,

Julián

1 Solution
abarad
Staff
Staff

Hi Julián,

Please be notified that the minimum firmware version supported for the 60D firewall is V5.2.9 & Maximum it can go till V6.0.14
You cannot upgrade FortiGate firewall 60D to version  6.4.8.

Any firmware version upgrade or downgrade has to be checked on the upgrade tool to know the list of firmware versions supported and that can be upgraded to :
https://docs.fortinet.com/upgrade-tool

-> For upgrading legacy OS you can follow the below documentation:-

Upgrade path for legacy firmware :
https://kb.fortinet.com/kb/documentLink.do?externalId=FD45543

-> For step by step approach for firmware upgrade and downgrade with standard practices; Kindly follow the below documentation :

Upgrade Path Document:-

https://kb.fortinet.com/kb/documentLink.do?externalID=10948      ---> Upgrade guide
https://docs.fortinet.com/upgrade-tool                                              ---> Upgrade path.
https://kb.fortinet.com/kb/documentLink.do?externalID=FD35329 ---> Best Practices for firmware upgrades and downgrades

View solution in original post

8 REPLIES 8
abarad
Staff
Staff

Hi Julián,

Please be notified that the minimum firmware version supported for the 60D firewall is V5.2.9 & Maximum it can go till V6.0.14
You cannot upgrade FortiGate firewall 60D to version  6.4.8.

Any firmware version upgrade or downgrade has to be checked on the upgrade tool to know the list of firmware versions supported and that can be upgraded to :
https://docs.fortinet.com/upgrade-tool

-> For upgrading legacy OS you can follow the below documentation:-

Upgrade path for legacy firmware :
https://kb.fortinet.com/kb/documentLink.do?externalId=FD45543

-> For step by step approach for firmware upgrade and downgrade with standard practices; Kindly follow the below documentation :

Upgrade Path Document:-

https://kb.fortinet.com/kb/documentLink.do?externalID=10948      ---> Upgrade guide
https://docs.fortinet.com/upgrade-tool                                              ---> Upgrade path.
https://kb.fortinet.com/kb/documentLink.do?externalID=FD35329 ---> Best Practices for firmware upgrades and downgrades

fjulianom
New Contributor III

Hi abarad,

Thanks for your interest. For the document for upgrading legacy OS I understand I should upgrade from 5.2.3 to 5.2.5, (I think I can do this directly without go through 5.2.4). Then, once upgraded to 5.2.5 I upgrade to 5.2.7, and then to 5.2.9. Once upgraded to 5.2.9 I can follow the path according to the Upgrade Path Tool. Am I correct?

 

upgrade_path.png

 

Regards,

Julián

abarad

Hi Julian,

Please note that if your firewall is in production it is recommended to follow upgrade path (in this case legacy os) .If firewall is not in production you can flash format Device and directly upgrade firewall to latest upgrade patch.

fjulianom
New Contributor III

Hi abarad,

 

Good recommendation. However, this firewall is in production, so I will follow the upgrade path. But the upgrade path I indicated is correct?

 

5.2.3 --> 5.2.5 --> 5.2.7 --> 5.2.9 --> according to the Upgrade Path Tool to 6.0.14.

 

Regards,

Julián

 

abarad


Hi Julian,

 

Please follow 5.2.3 --> 5.2.4 --> 5.2.4 --> 5.2.9 --> then according to the Upgrade Path Tool to 6.0.14.

Also go through release notes of 6 series firewall you are planning to upgrade to (To have clarity about new features, known and
resolved issues detailed)

Regards,

Akshay Barad

abarad

Hi Julian,

Ignore the above post.

Please follow the updated post.

 

5.2.3 --> 5.2.4 --> 5.2.5 --> 5.2.7 --> 5.2.9 then according to the Upgrade Path Tool to 6.0.14.

Also, go through release notes of 6 series firewall you are planning to upgrade to (To have clarity about new features, known and
resolved issues detailed)

Regards,

Akshay Barad

 

fjulianom
New Contributor III

Hi Akshay,

 

Why can't I go from 5.2.3 to 5.2.5 directly and I can go from 5.2.5 to 5.2.7, and from 5.2.7 to 5.2.9 directly? This is not indicated in the document for upgrading legacy OS. According to FortiOS 5.2.5 Release Notes: "FortiOS version 5.2.5 officially supports upgrade from version 5.2.3 or later.".

 

Regards,

Julián

fjulianom
New Contributor III

Hi Akshay,

 

Last question. Now I have some security profiles which are flow-based and others that are proxy-based. When I upgrade from 5.2.13 to 5.4.10 (according to the upgrade path tool), how will the system inspection mode be? Because in version 5.2.x the inspection mode is set per security profile, and in version 5.4.x the inspection mode is set per system/VDOM. I investigated in Fortinet guides and release notes but I find nothing which explain this.

 

Regards,

Julián