Scheduling updates

Keeping the built-in FDS up-to-date is important to provide current FortiGuard update packages and rating lookups to requesting devices. This is especially true as new viruses, malware, and spam sources pop up on a very frequent basis. By configuring a scheduled update, you are guaranteed to have a relatively recent version of database updates.

A FortiManager system acting as an FDS synchronizes its local copies of FortiGuard update packages with the FDN when:

l you manually initiate an update request by selecting Update Now l it is scheduled to poll or update its local copies of update packages l if push updates are enabled, it receives an update notification from the FDN

If the network is interrupted when the FortiManager system is downloading a large file, it downloads all files again when the network resumes.

To schedule antivirus and IPS updates:

1. Go to FortiGuard Management > Advanced Settings.
2. Select the arrow to expand FortiGuard Antivirus and IPS Settings; FortiGuard antivirus and IPS settings.
3. Select the check box beside Schedule RegularUpdates.
4. Specify an hourly, daily, or weekly schedule.
5. Select Apply.

To schedule Web Filtering and Email Filter polling:

1. Go to FortiGuard Management > Advanced Settings.
2. Select the arrow to expand FortiGuard Web Filterand Email FilterSettings.
3. In Polling Frequency, select the number of hours and minutes of the polling interval.
4. Select Apply.

Accessing public FortiGuard web and email filter servers

You can configure the FortiManager system to allow the managed FortiGate units to access public FortiGuard web filter or email filter network servers in the event local FortiGuard web filter or email filter server URL lookups fail. You can specify private servers where the FortiGate units can send URL queries.

Overriding FortiGuard Server

Logging events related to

To access public FortiGuard web and email filter servers:

1. Go to FortiGuard Management > Advanced Settings.
2. Expand Override FortiGuard Server(Local FortiManager).
3. Select the add icon next to Additional number of private FortiGuard servers (excluding this one) ( 0 ). Select the delete icon to remove entries.
4. Type the IP Address for the server, and select its Time Zone.
5. Repeat step 4 as often as required. You can include up to ten additional servers.
6. Select the additional options to set where the FDS updates come from, and if the managed FortiGate units can access these servers if the local FDS is not available.
   • Check the Enable Antivirus and IPS update Service forPrivate Server if you want the FDS updates to come from a private server.
   • Check the Enable Web Filterand Email FilterService forPrivate Server if you want the updates to come from a private server.
   • Click Allow FortiGates to access public FortiGuard servers when private servers unavailable if you want to the updates to come from public servers in case the private servers are unavailable.
7. Select Apply.