Created on 04-12-2019 02:23 AM Edited on 04-07-2022 11:56 AM By Anonymous
Description
This article describes the reason why AV definitions shows version 1.000 when all other definitions can be updated.
Solution
By default, if AV profile is not enabled on firewall policy, FortiGate will only perform update on standard AV definitions and not the extended AV definitions.
# show full antivirus setting | grep default-db
set default-db extended
If the extended AV definitions is not updated before, it will always display version 1.0000 as follows:
In order to update the extended AV definition, simply apply an AV profile to any firewall policy:
In the CLI, run the following commands to update the definitions:
#diag debug app update -1
#diag debug en
#exec update-now
After a few minutes, verify whether the extended set is updated:
Verification can also be done in CLI by entering the following command:
#diag autoupdate ver | grep -A 6 Extended
Extended set
---------
Version: 67.00562
Contract Expiry Date: Thu Dec 26 2019
Last Updated using manual update on Thu Apr 4 19:44:01 2019
Last Update Attempt: Thu Apr 4 19:44:15 2019
Result: Updates Installed
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2024 Fortinet, Inc. All Rights Reserved.