Configuring FortiGuard service settings

Chapter 11: System Management > Configuring FortiGuard service settings

Configuring FortiGuard service settings

FortiGuard periodically updates the WAF Signature Database, IP Reputation Database, and Geo IP Database. You can go to the FortiGuard website to download the update packages that you can upload to FortiADC, or you can schedule automatic updates.

Before you begin:

If you want to perform a manual update, you must download the update file from the FortiGuard website.

You must have Read-Write permission for System settings.

To configure FortiGuard service settings:

Go to System > Settings.
Click the FortiGuard tab.
Complete the configuration as described in Table 92.
Save the configuration.

Table 92: FortiGuard service configuration
Settings	Guidelines
Support Contract
Registration and license	Review your registration and license information. If you need to change registration or if your license is about to expire, click Login Now to open the login page for the Fortinet Service & Support website in a new browser window. Note: If your license is invalid, FortiGuard does not send updates to the FortiADC. The functionality on FortiADC remains intact and useful, but it is out-of-date.
FortiGuard Services
WAF Signature Database	Review the version information. To perform a manual update, click Update to display controls that enable you to select and upload the update file.
IP Reputation Database	Review the version information. To perform a manual update, click Update to display controls that enable you to select and upload the update file.
Geo IP Database	Review the version information. To perform a manual update, click Update to display controls that enable you to select and upload the update file.
Configuration
Scheduled Update Status	Enable updates.
Scheduled Update Frequency	Every—Schedule periodic updates. Specify the time interval to perform updates. Daily—Schedule daily updates. Specify the time of day to perform the update. Weekly—Schedule weekly updates. Specify the day and time to perform the update.
Scheduled Update Day	Sunday, Monday, Tuesday, Wednesday, Thursday, Friday, Saturday.
Scheduled Update Time	HH:MM.HH is 0-23. MM is 0, 15, 30, or 45.
Override Server	If you are unable to make connections to the standard FortiGuard server, enable connection to the override server address given to you by Fortinet Service & Support.
Override Server Address	Override server IP address.
Web Filter Configure
Cache Status	Enable/disable caching of the categorical lists of websites. FortiGuard maintains massive lists of web sites classified into categories so that you can enforce categorical decisions in your rules, like "do not do SSL forward proxy for sites belonging to the Personal Privacy category."
Cache TTL	Specify cache expiration. The default is 3600. The valid range is 10 to 86,400. When the cache expires, FortiADC initiates an update from FortiGuard.
FDS Port	Specify the port to receive updates. The default is 53. An alternative is 8888.