Fortinet Document Library

Version:

Version:

Version:

Version:

Version:

Version:


Table of Contents

Administration Guide

Testing firmware before installing it

You can test a new firmware image by temporarily running it from memory, without saving it to disk. By keeping your existing firmware on disk, if the evaluation fails, you do not have to re-install your previous firmware. Instead, you can quickly revert to your existing firmware by simply rebooting the FortiMail unit.

To test a new firmware image
  1. Connect your management computer to the FortiMail console port using a RJ-45 to DB-9 serial cable or a null-modem cable.
  2. Initiate a connection from your management computer to the CLI of the FortiMail unit. Requires login as “admin” or an administrator with read and write privileges to the system configuration.
  3. Connect port1 of the FortiMail unit directly or to the same subnet as a TFTP server.
  4. Copy the new firmware image file to the root directory of the TFTP server.
  5. Verify that the TFTP server is currently running, and that the FortiMail unit can reach the TFTP server.
  6. To use the FortiMail CLI to verify connectivity, enter the following command:

    execute ping 192.168.1.168

    where 192.168.1.168 is the IP address of the TFTP server.

  7. Enter the following command to restart the FortiMail unit:
  8. execute reboot

  9. As the FortiMail units starts, a series of system startup messages are displayed.
  10. Press any key to display configuration menu........

  11. Immediately press a key to interrupt the system startup.
  12. Note

    You have only three seconds to press a key. If you do not press a key soon enough, the FortiMail unit reboots and you must log in and repeat the execute reboot command.

    If you successfully interrupt the startup process, the following messages appears:

    [G]: Get firmware image from TFTP server.

    [F]: Format boot device.

    [B]: Boot with backup firmware and set as default.

    [I]: Configuration and information.

    [Q]: Quit menu and continue to boot with default firmware.

    [H]: Display this list of options.

     

    Enter G,F,B,I,Q,or H:

  13. Type G to get the firmware image from the TFTP server.
  14. The following message appears:

    Enter TFTP server address [192.168.1.168]:

  15. Type the IP address of the TFTP server and press Enter.
  16. The following message appears:

    Enter Local Address [192.168.1.188]:

  17. Type a temporary IP address that can be used by the FortiMail unit to connect to the TFTP server.
  18. The following message appears:

    Enter File Name [image.out]:

  19. Type the firmware image file name and press Enter.
  20. The FortiMail unit downloads the firmware image file from the TFTP server and displays a message similar to the following:

    Save as Default firmware/Backup firmware/Run image without saving:[D/B/R]

  21. Type R.
  22. The FortiMail image is loaded into memory and uses the current configuration, without saving the new firmware image to disk.

  23. To verify that the new firmware image has been loaded, log in to the CLI and type:
  24. get system status

  25. Test the new firmware image.
  • If the new firmware image operates successfully, you can install it to disk, overwriting the existing firmware, using the procedure Installing firmware.
  • If the new firmware image does not operate successfully, reboot the FortiMail unit to discard the temporary firmware and resume operation using the existing firmware.

See also

Backup and restore

Installing firmware

Testing firmware before installing it

You can test a new firmware image by temporarily running it from memory, without saving it to disk. By keeping your existing firmware on disk, if the evaluation fails, you do not have to re-install your previous firmware. Instead, you can quickly revert to your existing firmware by simply rebooting the FortiMail unit.

To test a new firmware image
  1. Connect your management computer to the FortiMail console port using a RJ-45 to DB-9 serial cable or a null-modem cable.
  2. Initiate a connection from your management computer to the CLI of the FortiMail unit. Requires login as “admin” or an administrator with read and write privileges to the system configuration.
  3. Connect port1 of the FortiMail unit directly or to the same subnet as a TFTP server.
  4. Copy the new firmware image file to the root directory of the TFTP server.
  5. Verify that the TFTP server is currently running, and that the FortiMail unit can reach the TFTP server.
  6. To use the FortiMail CLI to verify connectivity, enter the following command:

    execute ping 192.168.1.168

    where 192.168.1.168 is the IP address of the TFTP server.

  7. Enter the following command to restart the FortiMail unit:
  8. execute reboot

  9. As the FortiMail units starts, a series of system startup messages are displayed.
  10. Press any key to display configuration menu........

  11. Immediately press a key to interrupt the system startup.
  12. Note

    You have only three seconds to press a key. If you do not press a key soon enough, the FortiMail unit reboots and you must log in and repeat the execute reboot command.

    If you successfully interrupt the startup process, the following messages appears:

    [G]: Get firmware image from TFTP server.

    [F]: Format boot device.

    [B]: Boot with backup firmware and set as default.

    [I]: Configuration and information.

    [Q]: Quit menu and continue to boot with default firmware.

    [H]: Display this list of options.

     

    Enter G,F,B,I,Q,or H:

  13. Type G to get the firmware image from the TFTP server.
  14. The following message appears:

    Enter TFTP server address [192.168.1.168]:

  15. Type the IP address of the TFTP server and press Enter.
  16. The following message appears:

    Enter Local Address [192.168.1.188]:

  17. Type a temporary IP address that can be used by the FortiMail unit to connect to the TFTP server.
  18. The following message appears:

    Enter File Name [image.out]:

  19. Type the firmware image file name and press Enter.
  20. The FortiMail unit downloads the firmware image file from the TFTP server and displays a message similar to the following:

    Save as Default firmware/Backup firmware/Run image without saving:[D/B/R]

  21. Type R.
  22. The FortiMail image is loaded into memory and uses the current configuration, without saving the new firmware image to disk.

  23. To verify that the new firmware image has been loaded, log in to the CLI and type:
  24. get system status

  25. Test the new firmware image.
  • If the new firmware image operates successfully, you can install it to disk, overwriting the existing firmware, using the procedure Installing firmware.
  • If the new firmware image does not operate successfully, reboot the FortiMail unit to discard the temporary firmware and resume operation using the existing firmware.

See also

Backup and restore

Installing firmware