FortiGate
FortiGate Next Generation Firewall utilizes purpose-built security processors and threat intelligence security services from FortiGuard labs to deliver top-rated protection and high performance, including encrypted traffic.
dbabic
Staff
Staff
Article Id 191007

Description
This article explains how to downgrade / rollback the AV definitions, IPS definitions or IPS engine on a FortiGate unit

By it’s default configuration, FortiOS will not accept the upload to a FortiGate unit of an AV or IPS definition/engine that is older than the one which is currently installed on the unit.

The error message "Firewall has all the updates found in the given file" will be reported.

Solution
The downgrade procedure is as follows:

1) From the FortiGate CLI, launch the command:

# diagnose autoupdate downgrade enable


2) From the FortiGate GUI:
Import the AV or IPS definition/engine needed.


3) From the FortiGate CLI, launch the command:

# diagnose autoupdate downgrade disable


4) Verify if the downgrade process is fine from CLI:

# diagnose autoupdate versions


5) If necessary, disable scheduled updates from FortiGuard Distribution Network to keep imported signatures/prevent automatic updates:

# config system autoupdate schedule
# set status disable
# end

Contributors