Execute the following command: execute restore config tftp
Cybersecurity is an arms race, and firmware updates are your primary ammunition. Fortinet’s PSIRT regularly discloses vulnerabilities affecting FortiOS, and threat actors aggressively scan for devices that remain unpatched.
Maintaining your (also known as FortiOS ) is a critical task for ensuring both the performance and the security of your network. Regularly updating the firmware introduces new features, provides bug fixes, and—most importantly—addresses critical security vulnerabilities. Preparing for an Upgrade
These are incremental updates within a feature release (e.g., FortiOS 7.2.5 → 7.2.6). They focus on bug fixes, stability improvements, and resolving known issues without changing core functionality. fortigate firmware
Stable network starts with smart firmware management. Upgrade wisely!
A significant policy shift occurred in FortiOS 7.4.8 and 7.6.4. To enhance security, Fortinet implemented a forced automatic upgrade feature. If a FortiGate meets specific conditions, it will automatically update to the latest patch within its minor version. This applies to units where the maintenance contract has expired, or the device has reached End of Engineering Support (EOES). The only ways to permanently avoid this are to connect the device to FortiManager, isolate it from FortiGuard, or ensure it runs a non-EOES version. For example, v7.4 (now extended to May 2027) is currently the subject of these advisories.
Check for "Known Issues" that might impact your specific hardware or configuration [24, 26]. 3. Upgrade Procedure (GUI) Access Firmware Menu: Log in and go to System > Firmware Check for Updates: Execute the following command: execute restore config tftp
Alternatively, if you downloaded the firmware image manually, go to the tab, browse for the .out file, and click Upgrade .
For headless systems or bulk operations, the CLI via TFTP is efficient:
. To ensure a successful update, you must follow the official Fortinet Upgrade Path Stable network starts with smart firmware management
: These releases are considered stable and are recommended for production environments
Newer FortiOS builds often optimize how the software interacts with FortiGate’s specialized Security Processing Units (SPUs) and Network Processors (NPs), delivering better throughput without upgrading the physical hardware. 3. The Golden Rule: The Upgrade Path
Resolving known issues that may cause stability problems or system reboots.
Input your current FortiGate model, your current FortiOS version, and your desired target version.