Downgrading from version 4.0 to 3.0

Direct FortiMail firmware downgrade from v4.0 to v3.0 is not supported. If you have to install v3.0 firmware on a v4.0 box, all configuration and mail data will be erased.

In addition, you can only clean install the v3.0 firmware using direct console connection.

To install v3.0 firmware

1. Follow the procedures described in “Clean installing firmware” on page 694. 2. After you downgrade the firmware, perform “execute formatmaildisk”, “execute formatlogdisk”, and “execute factoryreset” to format the hard disk and reset the unit to factory defaults.
2. Configure the unit’s IP address and other network settings.
3. Load back the v3.0 configuration if applicable.

Reconnecting to the FortiMail unit

After downgrading to a previous firmware version, the FortiMail unit reverts to default settings for the installed firmware version, including the IP addresses of network interfaces through which you connect to the FortiMail web UI and/or CLI.

Use either of the following procedures if the FortiMail unit has been reset to a default configuration and you need to reconnect to the web UI.

If your FortiMail unit has not been reset to its default configuration, but you cannot connect to the web UI or CLI, you can restore the firmware, resetting the FortiMail unit to its default configuration in order to reconnect using the default network interface IP address. For more information, see “Clean installing firmware” on page 694.

To reconnect using the LCD panel

2. Press Enter to display the interface list.
3. Use the up or down arrows to highlight the network interface that is connected to your management computer, and press Enter.
4. Press Enter for IP Address.
5. Use the up and down arrows to increase or decrease each number of each IP address digit. Press Enter to go to the next IP address digit or press Esc to move to the previous digit.
6. After selecting the last IP address digit, press Enter to save the IP address.
7. Repeat steps 4 to 6 to enter the netmask address for the network interface.
8. After selecting the last netmask address digit, press Enter to save the netmask address.
9. Press Esc to return to the Main Menu.

The network interface’s IP address and netmask is saved. You can now reconnect to either the web UI or CLI through that network interface using. For information on restoring the configuration, see “Restoring the configuration” on page 692.

To reconnect using the CLI

1. Connect your management computer to the FortiMail console port using a RJ-45 to DB-9 serial cable or a null-modem cable.
2. Start HyperTerminal, enter a name for the connection and click OK.
3. Configure HyperTerminal to connect directly to the communications (COM) port on your computer and click OK.
4. Select the following port settings and click OK:

Bits per second	9600
Data bits	8
Parity	None
Stop bits	1
Flow control	None

5. Press Enter to connect to the FortiMail CLI.

The login prompt appears.

6. Type admin and press Enter twice.

The following prompt appears: Welcome!

7. Enter the following command:

set system interface <interface_str> mode static ip <address_ipv4>

<mask_ipv4>

where:

• <interface_str> is the name of the network interface, such as port1
• <address_ipv4> is the IP address of the network interface, such as 192.168.1.10
• <mask_ipv4> is the netmask of the network interface, such as 255.255.255.0

8. Enter the following command:

set system interface <interface_str> config allowaccess

<accessmethods_str>

where:

• <interface_str> is the name of the network interface configured in the previous step, such as port1
• <accessmethods_str> is a space-delimited list of the administrative access protocols that you want to allow on that network interface, such as ping ssh https

The network interface’s IP address and netmask is saved. You can now reconnect to either the web UI or CLI through that network interface. For information on restoring the configuration, see “Restoring the configuration” on page 692.

Restoring the configuration

You can restore a backup copy of the configuration file from your local PC using either the web UI or CLI. For information about configuration backup, see “Backup and restore” on page 218.

If you have just downgraded or restored the firmware of the FortiMail unit, restoring the configuration file can be used to reconfigure the FortiMail unit from its default settings.

To restore the configuration file using the web UI

1. Clear your browser’s cache. If your browser is currently displaying the web UI, also refresh the page.
2. Log in to the web UI.
3. In the advanced management mode, go to Maintenance > System > Configuration.
4. Under Restore Configuration, click Local PC.
5. Click Browse to locate and select the configuration file that you want to restore, then click Restore.

The FortiMail unit restores the configuration file and reboots.Time required varies by the size of the file and the speed of your network connection.

6. After restoring the configuration file, verify that the settings have been successfully loaded. For details on verifying the configuration restoration, see “Verifying the configuration” on page 694.
7. Initiate a connection from your management computer to the CLI of the FortiMail unit, and log in as the admin administrator, or an administrator account that has system configuration read and write privileges.
8. Connect a network interface of the FortiMail unit directly or to the same subnet as a TFTP server.
9. Copy the new firmware image file to the root directory of the TFTP server.
10. Verify that the TFTP server is currently running, and that the FortiMail unit can reach the TFTP server.

To use the FortiMail CLI to verify connectivity, enter the following command:

execute ping 192.168.1.168 where 192.168.1.168 is the IP address of the TFTP server.

5. Enter the following command: execute restore config tftp <file_name> <tftp_ipv4>

The following message appears:

This operation will overwrite the current settings!

(The current admin password will be preserved.)

Do you want to continue? (y/n)

6. Enter y.

The FortiMail unit restores the configuration file and reboots. Time required varies by the size of the file and the speed of your network connection.

7. After restoring the configuration file, verify that the settings have been successfully loaded. For details on verifying the configuration restoration, see “Verifying the configuration” on page 694.

Having trouble configuring your Fortinet hardware or have some questions you need answered? Check Out The Fortinet Guru Youtube Channel! Want someone else to deal with it for you? Get some consulting from Fortinet GURU!