Tuesday, October 27, 2009

Firmware Update via USB Stick

Recently I performed a software upgrade on a Fortinet Active/Passive Cluster. The primary firewall took the upgrade ok but the secondary unit got hung up. When I rebooted the secondary unit it had remained at the old firmware version. I did not have a working USB-to-Serial converter available so was unable to perform a CLI tftp upgrade of the secondary unit. Here is how I used a USB stick to upgrade the secondary unit:

  • Format a USB stick using FAT16. This works best on a PC. The CLI USB commands on the firewall did not work for me very reliably.
  • Copy the appropriate firmware to the USB stick as "image.out".
  • Insert USB stick into firewall you want to upgrade and reboot the firewall
  • After several minutes the firewall will reboot again. Remove the USB at the beginning of this reboot.
Voila, your firewall should now be upgraded to the firmware on the USB stick.


Paulo Raponi said...

good idea...

Oscar Jacquez said...

I'll try this method with a fortigate 20C i hope this one works because the damn firewall its too expensive, ill leave feedback on the go.

Neal Brothers said...

For the newer firewall's must be FAT32