Description
This article describes how and why FortiGate uses the Extended DB as its default antivirus DB.
The Normal DB option is no longer supported.
For FortiGate models that support Extreme DB, choose Extended DB or Extreme DB.
Scope
All currently supported versions of FortiGate.
Solution
Under the config antivirus settings, the default-db parameter has been removed.
FortiGate models that support an extreme set database have a new use-extreme-db parameter.
By default, use-extreme-db is disabled so that FortiGate uses its normal and extended set databases.
When use-extreme-db is enabled, FortiGate uses the extreme set database.
Upgrade support
Upgrading from 6.2.x to 6.4.0 causes the following changes:
| Before upgrade |
After upgrade |
| default-db = normal |
use-extreme-db = disable (hidden on low-end models) |
| default-db = extended |
use-extreme-db = disable (hidden on low-end models) |
| default-db = extreme |
use-extreme-db = enable |
Antivirus settings from the CLI
On low end models, the use-extreme-db option is hidden.
This example shows the CLI captured on FortiGate-101E.
show full-configuration
config antivirus settings
set grayware enable
set override-timeout 0
end
On higher end models, use-extreme-db is available.
This example shows the CLI captured on FortiGate-600D:
show full-configuration
config antivirus settings
set use-extreme-db enable
set grayware enable
set override-timeout 0
end
set use-extreme-db ?
enable <----- Enable extreme AVDB.
disable <----- Disable extreme AVDB.
Upon adding the set use-extreme-db enable configuration setting, 'Extreme set' will be updated.
Extreme set
---------
Version: 1.00000 signed
Contract Expiry Date: Wed Jan 5 2028
Last Updated using manual update on Mon Apr 9 18:07:00 2018
Last Update Attempt: n/a
Result: Updates Installed -------------------------------------------->>>
