Thanks for the assistance! I was wondering if the convertion and new firewall introduction to the FortiManager should take place before or after upgrading the FortiManager to 7.x? As per the documentation you shared, the management devices should be upgraded first. But is there a compatability between the FortiManager running 7.x and the FortiGate(-s) still running 6.x?
@ndumaj can correct me if I'm wrong, but outside of FortiOS in your situation, you only need to confirm compatibility of FortiAnalyzer and FortiManager with the fortiOS you are on. Here are pdf links to that compatibility matrix for both
So based on the matrix, if for example you were upgrading your FAZ and FMG to 7.0.8, your fortiOS would need to be at minimum 6.2.0. Of course, to maintain security fabric on fortiOS, all of the FortiGates will need to be the exact same rev once you are done with your upgrades...and as always, consult the upgrade path utility for your model and current rev of 6.X to get you to your desired outcome of 7.0.X (as you probably will have to hop/upgrade through a several revs of code).
To upgrade the FortiOS on the devices in your Fortinet Fabric, including the transition from the FortiGate 200D to the FortiGate 200F, you can follow this recommended approach:
---- Backup Configuration: Take a backup of the configuration for each device (FortiGate 200D, FortiManager, and FortiAnalyzer) to ensure you can restore settings if needed ---- Review Release Notes: Carefully review the release notes for FortiOS 7.0 to understand any specific upgrade requirements, known issues, or feature changes that may impact your environment. ---- Compatibility Check: Verify that all the devices in your infrastructure (including FortiManager and FortiAnalyzer) are compatible with FortiOS 7.0. Consult the Fortinet documentation or contact Fortinet support if needed.
Upgrade FortiManager and FortiAnalyzer:
Upgrade FortiManager: Follow the FortiManager upgrade path recommended by Fortinet.
Upgrade FortiAnalyzer: Similarly, upgrade FortiAnalyzer to a version compatible with FortiOS 7.0.
Upgrade the Standalone FortiGate 200E:
Upgrade the FortiGate 200E device to FortiOS 7.0 using the recommended upgrade path
Upgrade the FortiGate 200D HA Pair
Test and Verify: After the upgrade, thoroughly test the functionality of each device and verify that the desired configurations are applied correctly.
Restore Configuration: If necessary, restore the backed-up configurations on each device to restore any custom settings or policies.
Monitor and Optimize: Monitor the performance and behavior of the upgraded devices and make any necessary adjustments or optimizations based on the new features and changes in FortiOS 7.0.
Remember to allocate sufficient maintenance windows and plan for potential downtime during the upgrade process. It's also advisable to consult the Fortinet documentation, release notes, and reach out to Fortinet support for any specific guidance or considerations based on your environment and device configurations.
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.