- Verify if the FortiWeb instance has a firmware image loaded in both of the partitions with the following command:
diagnose system flash list
have 4 partitions
Image# Version TotalSize(KB) Used(KB) Use% Active
1 FV-KVM-7.2.0-build0311-221216 370760 314052 85% No
2 FV-KVM-7.2.2-build0344-230421 370760 270516 73% Yes
3 2023-04-12 00:04 92736 28 0 % No
In this case, the firmware version 7.2.2 build 0344 is active.
- To downgrade or load the alternate firmware partition, execute the following command:
diagnose system flash default 1
partnum is 4
the active partition is 2
change active partition to 1
- Reboot the FortiWeb using the following command to make partition 1 active:
execute reboot
This operation will reboot the system !
Do you want to continue? (y/n)
y
System is rebooting...
- Once the FortiWeb has finished rebooting, verify the active partition using the below command:
diagnose system flash list
have 4 partitions
Image# Version TotalSize(KB) Used(KB) Use% Active
1 FV-KVM-7.2.0-build0311-221216 370760 314052 85% Yes
2 FV-KVM-7.2.2-build0344-230421 370760 270516 73% No
3 2023-04-12 00:04 92736 28 0 % No
In this case, firmware version 7.2.0 build 0311 is now active on the device.
Note: Loading an alternate boot partition on a device in a high availability setup will result in a downgrade of that device. This can lead to a split-brain scenario in the high availability setup. To avoid this, it is necessary to follow the same steps on the secondary device as well.
|
