FortiGate Next Generation Firewall utilizes purpose-built security processors and threat intelligence security services from FortiGuard labs to deliver top-rated protection and high performance, including encrypted traffic.
Description This articles explain how to install the IPS database.
The IPS database update button (Go to System -> FortiGuard -> Upgrade Database/Package) is now only available if the unit is licensed and connected to the internet. If there is no internet connection in the unit, there is no way to determine if they have a valid license or not.
Solution To install the IPS database offline, it can be achieved via CLI only:
Download the IPS database from the support.fortinet.com -> Download -> FortiGuard Service Updates -> search for the unit model, i.e.100E then download 'Attack Definition'.
Install TFTP server in one of the LAN PC, which has a connection to the FortiGate. Store the IPS database file in the TFTP server and then run the following command on the FortiGate CLI:
Install an IPS update from a TFTP server
#execute restore ips tftp Restore IPS database from TFTP server. {string} IPS database file name on the TFTP server. {ip} IP address.
Syntax:
#exe restore ips tftp <database_file_name> <TFTP server IP>
