Resumen del contenido incluido en la página 1
UPGRADE GUIDE
Upgrade Guide for
FortiOS 3.0
www.fortinet.com�������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������
Resumen del contenido incluido en la página 2
Upgrade Guide for FortiOS 3.0 24 April 2006 01-30000-0317-20060424 © Copyright 2006 Fortinet, Inc. All rights reserved. No part of this publication including text, examples, diagrams or illustrations may be reproduced, transmitted, or translated in any form or by any means, electronic, mechanical, manual, optical or otherwise, for any purpose, without prior written permission of Fortinet, Inc. Trademarks Dynamic Threat Prevention System (DTPS), APSecure, FortiASIC, FortiBIOS, FortiBridge, F
Resumen del contenido incluido en la página 3
Contents Contents Introduction ........................................................................................ 7 About this document......................................................................................... 7 Document conventions.................................................................................. 7 Typographic conventions........................................................................ 8 Fortinet documentation ........................................
Resumen del contenido incluido en la página 4
Contents VPN ................................................................................................................... 23 IPSec .......................................................................................................... 23 SSL ............................................................................................................. 23 Certificates .................................................................................................. 23 User................
Resumen del contenido incluido en la página 5
Contents Upgrading your FortiGate unit ....................................................................... 34 Upgrading to FortiOS 3.0 ............................................................................ 34 Upgrading using the web-based manager............................................ 34 Upgrading using the CLI....................................................................... 35 Verifying the upgrade ...........................................................................
Resumen del contenido incluido en la página 6
Contents Upgrade Guide for FortiOS v3.0 6 01-30000-0317-20060424���������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������
Resumen del contenido incluido en la página 7
Introduction About this document Introduction Over the past year, Fortinet has been developing, testing and refining a new operating system for your FortiGate unit. FortiOS 3.0 is a more dynamic and robust operating system, offering you even better protection, blocking and monitoring features for your network. The Upgrade Guide provides you with information on FortiOS 3.0, and addresses any issues that may arise concerning your current configuration. With these new features, and improvemen
Resumen del contenido incluido en la página 8
Fortinet documentation Introduction Typographic conventions FortiGate documentation uses the following typographical conventions: Convention Example Keyboard input In the Gateway Name field, type a name for the remote VPN peer or client (for example, Central_Office_1). Code examples config sys global set ips-open enable end CLI command syntax config firewall policy edit id_integer set http_retry_count set natip end Document names FortiGate Administration Guide
Resumen del contenido incluido en la página 9
Introduction Customer service and technical support • FortiGate Log Message Reference Available exclusively from the Fortinet Knowledge Center, the FortiGate Log Message Reference describes the structure of FortiGate log messages and provides information about the log messages that are generated by FortiGate units. • FortiGate High Availability User Guide Contains in-depth information about the FortiGate high availability feature and the FortiGate clustering protocol. • FortiGate IPS User Gu
Resumen del contenido incluido en la página 10
Customer service and technical support Introduction Upgrade Guide for FortiOS v3.0 10 01-30000-0317-20060424�������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������
Resumen del contenido incluido en la página 11
Upgrade Notes Backing up configuration files Upgrade Notes Before downloading FortiOS 3.0, it is recommended that you read this chapter to learn about on the new features and/or changes to existing features with the operating system. This chapter describes these changes and features, new to FortiOS 3.0. We recommend also reviewing the FortiGate CLI Reference guide for the new and revised CLI commands as well as the FortiGate Administration Guide. This section includes the following: • Back
Resumen del contenido incluido en la página 12
Web-based manager changes Upgrade Notes Figure 1: LCD main menu settings for NAT/Route mode Menu [ Fortigat -> ] NAT, Standalone Figure 2: LCD main menu setting for Transparent mode Menu [ Fortigat -> ] Transparent, Standalone Web-based manager changes The system dashboard in FortiOS 3.0 has been enhanced, with various system information now categorized and additional features added to better monitor your FortiGate unit. Figure 3: System Dashboard of a FortiGate-60 System Information Serial
Resumen del contenido incluido en la página 13
Upgrade Notes Changes to the web-based manager Firmware Version The current firmware version. Select Update to install new firmware. Operation Mode The mode the FortiGate device is running in. Select Update to change the operation mode. System Resources CPU usage The CPU usage amount in percent. Memory usage The amount of memory used in percent. The history of these and other resources is available by selecting the History icon in the top right-hand corner of the System Resources categor
Resumen del contenido incluido en la página 14
USB support Upgrade Notes USB support The USB is supported in FortiOS 3.0. The FortiUSB key (purchased separately) enables you to backup configuration files and restore backed up configuration files. You can even configure the FortiGate unit to automatically install a firmware image and restore configuration settings on a system reboot using the FortiUSB key. For more information, see the Install Guide for your FortiGate unit. The following FortiGate units support the FortiUSB key: • Forti
Resumen del contenido incluido en la página 15
Upgrade Notes Other • WLAN upgrades are unsuccessfully since during the upgrade process the wireless daemon is turned off to conserve memory. • Certain IPS group settings are not carried forward. You need to manually configure these settings after upgrading. • Lists from FortiOS 2.80MR11 cannot be restored in FortiOS 3.0. Make sure to document these lists before upgrading. If you upgrade using the web-based manager, these lists may carry forward. Use both the web-based manager and CLI to
Resumen del contenido incluido en la página 16
Other Upgrade Notes Upgrade Guide for FortiOS v3.0 16 01-30000-0317-20060424���������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������������
Resumen del contenido incluido en la página 17
New features and changes System New features and changes There are several new features included in FortiOS 3.0, as well as changes to existing features. This chapter outlines the new features as well as the changes. Before you proceed to upgrade your FortiGate unit, it is recommended you review this document and the following documents to familiarize yourself the new features and changes. • FortiGate Administration Guide • FortiGate CLI Reference The following topics are included in this s
Resumen del contenido incluido en la página 18
System New features and changes Status The Status page displays the System Dashboard. The System Dashboard is categorized and five new items have been added: • CPU, memory usage statistics history • FortiGuard Subscription-based services and license information • Image of the FortiGate unit’s port status settings • Image of a FortiAnalyzer unit and its connectivity status to the FortiGate unit • An AV/IPS/Content statistics summary table. The System Dashboard also displays a login monitor t
Resumen del contenido incluido en la página 19
New features and changes System Admin The Admin menu includes two new tabs along with the previous tabs, the Administrators and Access Profile. In the Administrators tab, you can configure an access profile while configuring a new administrator. The FortiManager tab is now located in the Admin menu. The Settings tab is also new to the Admin menu. Maintenance The Maintenance menu now has only two tabs, Backup and Restore and FortiGuard Center. The Backup and Restore tab has several new o
Resumen del contenido incluido en la página 20
System New features and changes The FortiGuard Center, previously the Update Center, displays several options for enabling the FortiGate unit to connect to the Fortinet Distribution Network (FDN), and for updating antivirus and attack definitions. You can also test the availability of FortiGuard services from this page. Figure 5: FortiGuard Center page The following tabs are no longer in the Maintenance menu: • Support tab is no longer available. • Shutdown is now located on System > Stat
