Version:

Version:

Version:

Version:

Version:

Version:

Version:

Version:

Version:

Version:

Version:

Version:


Table of Contents

Administration Guide

DB version&update info

How to check detailed db versions and update information?

  1. Check in System>Config>FortiGuard:

  2. Check current db version.

    FortiWeb # get sys upd-db-version

    Regular Virus Database Version: 00089.04670

    Extended Virus Database Version: 00089.04220

    Virus Engine Version: 00006.00137

    Waf Signature Version: 00000.00300

    IP Intelligence Signature Version: 00004.00713

    Credential Stuffing Defense Database Version: 00001.00339

    FortiSandbox Malware Signature Database Version: 0.0

    Geo Database Version: Fortiweb-Country-Build0094 2021-09-09

  3. Update db version for a module or all

    FortiWeb appliances connect to the FDN by connecting to the FDS nearest to the FortiWeb appliance by its configured time zone.

    FortiWeb # execute update    #update for a specific module

    av      update antivirus

    base    update contract, timezone and fds server list

    fwdb    update fortiweb signature(include geodb)

    hcdb    update credential stuffing defense

    irdb    update ip reputation

    FortiWeb # execute update-now    #update all modules using db

  4. Check the detailed db version & update information for all modules:

    FortiWeb # diagnose system update info

    FortiWeb signature

    ----------

    Version: 0.00300

    Expiry Date: Fri Sep 09 2022

    Last Update Date: Thu Sep 30 12:00:18 2021

    Next Update Date: Thu Sep 30 14:00:00 2021

     

    Historical versions

    ----------

    0.00299

    0.00271

     

    FortiWeb GEODB

    ----------

    Version: Fortiweb-Country-Build0094 2021-09-09

    Expiry Date: Fri Sep 09 2022

    Last Update Date: Thu Sep 30 11:47:07 2021

    Next Update Date: Thu Sep 30 14:00:00 2021

    Historical versions

    ----------

    Fortiweb-Country-Build0090 2021-08-05

     

    Regular Antivirus

    ----------

    Version: 89.04670

    Expiry Date: Fri Sep 09 2022

    Last Update Date: Thu Sep 30 12:00:20 2021

    Next Update Date: Thu Sep 30 14:00:00 2021

     

    Historical versions

    ----------

    89.04650

     

    Extended Antivirus

    ----------

    Version: 89.04220

    Expiry Date: Fri Sep 09 2022

    Last Update Date: Thu Sep 30 12:00:20 2021

    Next Update Date: Thu Sep 30 14:00:00 2021

     

    Historical versions

    ----------

    89.02540

    89.01110

     

    Antivirus Engine

    ----------

    Version: 6.00137

    Expiry Date: Fri Sep 09 2022

    Last Update Date: Thu Sep 30 12:00:20 2021

    Next Update Date: Thu Sep 30 14:00:00 2021

     

    Historical versions

    ----------

     

    IP Reputation

    ----------

    Version: 4.00713

    Expiry Date: Fri Sep 09 2022

    Last Update Date: Thu Sep 30 12:00:18 2021

    Next Update Date: Thu Sep 30 14:00:00 2021

     

    Historical versions

    ----------

    4.00712

    4.00711

     

    Harvest Credentials

    ----------

    Version: 1.00339

    Expiry Date: Fri Sep 09 2022

    Last Update Date: Thu Sep 30 12:00:18 2021

    Next Update Date: Thu Sep 30 14:00:00 2021

     

    Historical versions

    ----------

    1.00338

    1.00337

     

    FortiSandbox Malware Signature Database

    ----------

    Version: 0.0

    Expiry Date: Fri Sep 09 2022

    Last Update Date: Wed Dec 31 18:00:00 1969

    Next Update Date: Thu Sep 30 14:00:00 2021

     

    Latest errors

    ----------

    Mon Sep 27 18:01:19 2021 Failed to receive essential/anti-virus packages from 209.222.136.6:443.

    Fri Sep 24 06:01:19 2021 Failed to receive essential/anti-virus packages from 173.243.138.66:443.

    Thu Sep 23 21:39:34 2021 update network error:failed to connect servers.

    Thu Sep 23 21:39:33 2021 update network error:failed to connect servers.

     

    Fortisandbox connectivity

    ----------

    FortiSandbox DOMAIN       : 0.0.0.0

    FortiSandbox IP           : 0.0.0.0

    FortiSandbox port         : 514

    FortiSandbox connect type : Appliance

    FortiSandbox connect state: Disconnected

    FortiSandbox connect info : Fail to build FortiSandbox connection.

    FortiSandbox connect ssl  :

Why did the FortiGuard service update fail?

If your automatic FortiGuard service update is not successful, complete the following troubleshooting steps:

  1. Ensure that your firewall rules allow FortiWeb to access the Internet via TCP port 443.
  2. This is the port that FortiWeb uses to poll for and download FortiGuard service updates from the FortiGuard Distribution Network (FDN).

  3. Ensure FortiWeb can communicate with the DNS server.
  4. When it performs the initial FortiGuard service update, FortiWeb requires access to the DNS server to resolve the domain name fds.fortinet.com to the appropriate host name.

  5. Because the size of the virus signature database exceeds 200MB, an unstable network can interrupt the TCP session that downloads the database. If the download fails for this reason, obtain the latest version of the virus signature database from support.fortinet.com and perform the update manually. For details, see "Uploading signature & geography-to-IP updates" in FortiWeb Administration Guide.
  6. FortiWeb resumes automatic updates of the database at the next scheduled time.

  7. If the previous steps do not solve the problem, use the following commands to obtain additional information:
  8. diagnose debug enable

    diagnose debug application fds 7

    If you need to contact Fortinet Technical Support for assistance, provide the output of these diagnose debug commands and a configuration file.

    For more information about these commands, see the FortiWeb CLI Reference:

    https://docs.fortinet.com/product/fortiweb/

    For additional methods for verifying FortiGuard connectivity, see "Connecting to FortiGuard services" in FortiWeb Administration Guide.

DB version&update info

How to check detailed db versions and update information?

  1. Check in System>Config>FortiGuard:

  2. Check current db version.

    FortiWeb # get sys upd-db-version

    Regular Virus Database Version: 00089.04670

    Extended Virus Database Version: 00089.04220

    Virus Engine Version: 00006.00137

    Waf Signature Version: 00000.00300

    IP Intelligence Signature Version: 00004.00713

    Credential Stuffing Defense Database Version: 00001.00339

    FortiSandbox Malware Signature Database Version: 0.0

    Geo Database Version: Fortiweb-Country-Build0094 2021-09-09

  3. Update db version for a module or all

    FortiWeb appliances connect to the FDN by connecting to the FDS nearest to the FortiWeb appliance by its configured time zone.

    FortiWeb # execute update    #update for a specific module

    av      update antivirus

    base    update contract, timezone and fds server list

    fwdb    update fortiweb signature(include geodb)

    hcdb    update credential stuffing defense

    irdb    update ip reputation

    FortiWeb # execute update-now    #update all modules using db

  4. Check the detailed db version & update information for all modules:

    FortiWeb # diagnose system update info

    FortiWeb signature

    ----------

    Version: 0.00300

    Expiry Date: Fri Sep 09 2022

    Last Update Date: Thu Sep 30 12:00:18 2021

    Next Update Date: Thu Sep 30 14:00:00 2021

     

    Historical versions

    ----------

    0.00299

    0.00271

     

    FortiWeb GEODB

    ----------

    Version: Fortiweb-Country-Build0094 2021-09-09

    Expiry Date: Fri Sep 09 2022

    Last Update Date: Thu Sep 30 11:47:07 2021

    Next Update Date: Thu Sep 30 14:00:00 2021

    Historical versions

    ----------

    Fortiweb-Country-Build0090 2021-08-05

     

    Regular Antivirus

    ----------

    Version: 89.04670

    Expiry Date: Fri Sep 09 2022

    Last Update Date: Thu Sep 30 12:00:20 2021

    Next Update Date: Thu Sep 30 14:00:00 2021

     

    Historical versions

    ----------

    89.04650

     

    Extended Antivirus

    ----------

    Version: 89.04220

    Expiry Date: Fri Sep 09 2022

    Last Update Date: Thu Sep 30 12:00:20 2021

    Next Update Date: Thu Sep 30 14:00:00 2021

     

    Historical versions

    ----------

    89.02540

    89.01110

     

    Antivirus Engine

    ----------

    Version: 6.00137

    Expiry Date: Fri Sep 09 2022

    Last Update Date: Thu Sep 30 12:00:20 2021

    Next Update Date: Thu Sep 30 14:00:00 2021

     

    Historical versions

    ----------

     

    IP Reputation

    ----------

    Version: 4.00713

    Expiry Date: Fri Sep 09 2022

    Last Update Date: Thu Sep 30 12:00:18 2021

    Next Update Date: Thu Sep 30 14:00:00 2021

     

    Historical versions

    ----------

    4.00712

    4.00711

     

    Harvest Credentials

    ----------

    Version: 1.00339

    Expiry Date: Fri Sep 09 2022

    Last Update Date: Thu Sep 30 12:00:18 2021

    Next Update Date: Thu Sep 30 14:00:00 2021

     

    Historical versions

    ----------

    1.00338

    1.00337

     

    FortiSandbox Malware Signature Database

    ----------

    Version: 0.0

    Expiry Date: Fri Sep 09 2022

    Last Update Date: Wed Dec 31 18:00:00 1969

    Next Update Date: Thu Sep 30 14:00:00 2021

     

    Latest errors

    ----------

    Mon Sep 27 18:01:19 2021 Failed to receive essential/anti-virus packages from 209.222.136.6:443.

    Fri Sep 24 06:01:19 2021 Failed to receive essential/anti-virus packages from 173.243.138.66:443.

    Thu Sep 23 21:39:34 2021 update network error:failed to connect servers.

    Thu Sep 23 21:39:33 2021 update network error:failed to connect servers.

     

    Fortisandbox connectivity

    ----------

    FortiSandbox DOMAIN       : 0.0.0.0

    FortiSandbox IP           : 0.0.0.0

    FortiSandbox port         : 514

    FortiSandbox connect type : Appliance

    FortiSandbox connect state: Disconnected

    FortiSandbox connect info : Fail to build FortiSandbox connection.

    FortiSandbox connect ssl  :

Why did the FortiGuard service update fail?

If your automatic FortiGuard service update is not successful, complete the following troubleshooting steps:

  1. Ensure that your firewall rules allow FortiWeb to access the Internet via TCP port 443.
  2. This is the port that FortiWeb uses to poll for and download FortiGuard service updates from the FortiGuard Distribution Network (FDN).

  3. Ensure FortiWeb can communicate with the DNS server.
  4. When it performs the initial FortiGuard service update, FortiWeb requires access to the DNS server to resolve the domain name fds.fortinet.com to the appropriate host name.

  5. Because the size of the virus signature database exceeds 200MB, an unstable network can interrupt the TCP session that downloads the database. If the download fails for this reason, obtain the latest version of the virus signature database from support.fortinet.com and perform the update manually. For details, see "Uploading signature & geography-to-IP updates" in FortiWeb Administration Guide.
  6. FortiWeb resumes automatic updates of the database at the next scheduled time.

  7. If the previous steps do not solve the problem, use the following commands to obtain additional information:
  8. diagnose debug enable

    diagnose debug application fds 7

    If you need to contact Fortinet Technical Support for assistance, provide the output of these diagnose debug commands and a configuration file.

    For more information about these commands, see the FortiWeb CLI Reference:

    https://docs.fortinet.com/product/fortiweb/

    For additional methods for verifying FortiGuard connectivity, see "Connecting to FortiGuard services" in FortiWeb Administration Guide.