Help
Support Forum
The Forums are a place to find answers on a range of Fortinet products from peers and product experts.
johnlloyd_13
Contributor II

Created on ‎09-04-2024 02:40 AM Edited on ‎09-04-2024 02:42 AM

Downgrade Fortigate OS

hi,

i'll be doing an OS upgrade on a FG HA pair.

if for some reason I need to "downgrade", do I just select the OLD firmware, reboot and then restore the config referenced to the OLD firmware?

is the downgrade the same as upgrade process, i.e. i only upload the firmware in the primary/active FG, it will auto push firmware to secondary, auto reboot secondary, then auto reboot primary?

Labels:
1199
0 Kudos
1 Solution
hrahuman_FTNT
Staff
Staff

Created on ‎09-04-2024 04:46 AM

Hi,

 

If it is single upgrade then you can choose the secondary partition to restore the older upgrade image.
https://community.fortinet.com/t5/FortiGate/Technical-Tip-Selecting-an-alternate-firmware-for-the-ne...

If there are multiple firmware upgrades and you need to revert to the original version. By referring to the given article, you must format the flash with a TFTP server and load the initial firmware version. Then, restore the configuration file that was saved prior to the upgrade.

 

https://community.fortinet.com/t5/FortiGate/Technical-Tip-Formatting-and-loading-FortiGate-firmware-...

 

-Habeeb

View solution in original post

1173
3 REPLIES 3
hrahuman_FTNT
Staff
Staff

Created on ‎09-04-2024 04:46 AM

Hi,

 

If it is single upgrade then you can choose the secondary partition to restore the older upgrade image.
https://community.fortinet.com/t5/FortiGate/Technical-Tip-Selecting-an-alternate-firmware-for-the-ne...

If there are multiple firmware upgrades and you need to revert to the original version. By referring to the given article, you must format the flash with a TFTP server and load the initial firmware version. Then, restore the configuration file that was saved prior to the upgrade.

 

https://community.fortinet.com/t5/FortiGate/Technical-Tip-Formatting-and-loading-FortiGate-firmware-...

 

-Habeeb
1174
johnlloyd_13
Contributor II
In response to hrahuman_FTNT

Created on ‎09-04-2024 07:19 PM Edited on ‎09-04-2024 07:57 PM

hi,

thanks for the link!

i have HA active-passive setup.

can you please confirm which partition/OS do i choose if i want to "downgrade" from 7.2.5 > 7.2.4?

in the case below, is partition 1 = primary, then partition 2 = secondary?

do i use the command "execute set-next-reboot primary" to do a downgrade to 7.2.4?

 

FG-PRI # config global

FG-PRI (global) # diag sys flash list
Partition Image TotalSize(KB) Used(KB) Use% Active
1 FG201F-7.02-FW-build1396-230131 253871 102430 40% No <<< 7.2.4
2 FG201F-7.02-FW-build1517-230606 253871 115176 45% Yes <<< 7.2.5
3 ETDB-1.00000 28327040 249692 1% No
Image build at Jun 6 2023 16:48:30 for b1517


FG-PRI (global) # execute set-next-reboot
primary partition
secondary partition

 

1130
0 Kudos
hrahuman_FTNT
Staff
Staff

Created on ‎09-04-2024 10:20 PM

Hi,

 

Yes.It is Partition # 1 is primary and # 2 is secondary.

If you select the image which is already running then the following error will be displayed.

FG180F-3 # execute set-next-reboot primary
Image# 1 is already the default image.

 

-Habeeb

 

 

-Habeeb
1106
Announcements
Check out our Community Chatter Blog! Click here to get involved
Labels
Top Kudoed Authors
View all
Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2025 Fortinet, Inc. All Rights Reserved.