system : autoupdate push-update
 
autoupdate push-update
Use this command to configure push updates. The FortiGuard Distribution Network (FDN) can push updates to FortiGate units to provide the fastest possible response to critical situations such as software exploits or viruses. You must register the FortiGate unit before it can receive push updates.
When you configure a FortiGate unit to allow push updates, the FortiGate unit sends a SETUP message to the FDN. The next time an update is released, the FDN notifies all FortiGate units that are configured for push updates that a new update is available. Within 60 seconds of receiving a push notification, the FortiGate unit requests an update from the FDN.
By using this command, you can enable or disable push updates. You can also configure push IP address and port overrides. If the FDN must connect to the FortiGate unit through a NAT device, you must configure port forwarding on the NAT device and add the port forwarding information to the push update override configuration.
 
You cannot receive push updates through a NAT device if the external IP address of the NAT device is dynamic (for example, set using PPPoE or DHCP).
Syntax
config system autoupdate push-update
set status {enable | disable}
set override {enable | disable}
set address <push_ipv4>
set port <FDN_port>
end
Variable
Description
Default
status {enable | disable}
Enable or disable FDN push updates.
disable
override {enable | disable}
Enable an override of push updates. Select enable if the FortiGate unit connects to the FDN through a NAT device.
disable
address <push_ipv4>
Enter the External IP address that the FDN connects to if you want to enable push override. This is the address of the external interface of your NAT device.
0.0.0.0
port <FDN_port>
Enter the port that the FDN connects to. This can be port 9443 by default or a different port that you assign.
9443