FortiOS 5.6 Online Help Link FortiOS 5.4 Online Help Link FortiOS 5.2 Online Help Link FortiOS 5.0 Online Help Link
> Chapter 28 - System Administration > Central management > FortiGuard

Home > Online Help

FortiGuard

FortiManager can also connect to the FortiGuard Distribution Network (FDN) to receive push updates for IPS signatures and antivirus definitions. These updates can then be used to update multiple FortiGate units throughout an organization. By using the FortiManager as the host for updates, bandwidth use is minimized as updates are downloaded to one source instead of many.

To receive IPS and antivirus updates from FortiManager, indicate an alternate IP address on the FortiGate unit.

To configure updates from FortiManager
  1. Go to System > FortiGuard.
  2. Under AntiVirus and IPS Updates, enable both Accept push updates and Use override push.
  3. Enter the IP address of the FortiManager unit.
  4. Select Apply.

The central management FortiGuard server list can include FQDNs (354449)

This feature, introduced in FortiOS 5.4.0, implements support of FQDN, to make it an option for central-management server-list. This feature can be set through the GUI and the CLI.

GUI Changes

On System > FortiGuard > Override FortiGuard Servers > Create New / Edit, a new option, FQDN is added for Address Type.

CLI Changes

config server-list

edit 1

set server-type {update|rating}

set addr-type {ipv4|ipv6|fqdn} <== added fqdn

set server-address ipv4

set server-address6 ipv6

set fqdn FQDN <== added

end

end

 

Sending malware statistics to FortiGuard

To support following Malware trends and making zero-day discoveries, FortiGate units send encrypted statistics to FortiGuard about IPS, Application Control, and AntiVirus events detected by the FortiGuard services running on your FortiGate. FortiGuard uses the statistics collected to achieve a balance between performance and security effectiveness by moving inactive signatures to an extended signature database.

The statistics include some non-personal information that identifies your FortiGate and its country. The information is never shared with external parties. You can choose to disable the sharing of this information by entering the following CLI command.

config system global

set fds-statistics disable

end