Fortinet black logo

CLI Reference

av-ips advanced-log

av-ips

Use the following commands to configure antivirus and IPS related settings.

av-ips advanced-log

Use this command to enable logging of FortiGuard antivirus and IPS update packages received by the FortiManager unit’s built-in FDS from the external FDS.

Syntax

config fmupdate av-ips advanced-log

set log-fortigate {enable | disable}

set log-server {enable | disable}

end

Variable

Description

log-fortigate {enable | disable}

Enable/disable logging of FortiGuard antivirus and IPS service updates of FortiGate devices. Default: disable

log-server {enable | disable}

Enable/disable logging of update packages received by the built-in FDS server. Default: disable

Example

You could enable logging of FortiGuard antivirus updates to FortiClient installations and update packages downloaded by the built-in FDS from the FDS.

config fmupdate av-ips advanced-log

set log-forticlient enable

set log-server enable

end

av-ips web-proxy

Use this command to configure a web proxy if FortiGuard antivirus and IPS updates must be retrieved through a web proxy.

Syntax

config fmupdate av-ips web-proxy

set ip <ipv4_address>

set ip6 <ipv6_address>

set mode {proxy | tunnel}

set password <passwd>

set port <integer>

set status {enable | disable}

set username <string>

end

Variable

Description

ip <ipv4_address>

Enter the IPv4 address of the web proxy. Default: 0.0.0.0

ip6 <ipv6_address>

Enter the IPv6 address of the web proxy.

mode {proxy | tunnel}

Enter the web proxy mode. The following options are available:

  • proxy: HTTP proxy.
  • tunnel: HTTP tunnel.

password <passwd>

If the web proxy requires authentication, enter the password for the user name. Character limit: 63

port <integer>

Enter the port number of the web proxy. Default: 80. Range: 1 to 65535

status {enable | disable}

Enable/disable connections through the web proxy. Default: disable

username <string>

If the web proxy requires authentication, enter the user name. Character limit: 63

Example

You could enable a connection through a non-transparent web proxy on an alternate port.

config fmupdate av-ips web-proxy

set status enable

set mode proxy

set ip 10.10.30.1

set port 8890

set username avipsupdater

set password cvhk3rf3u9jvsYU

end

av-ips

Use the following commands to configure antivirus and IPS related settings.

av-ips advanced-log

Use this command to enable logging of FortiGuard antivirus and IPS update packages received by the FortiManager unit’s built-in FDS from the external FDS.

Syntax

config fmupdate av-ips advanced-log

set log-fortigate {enable | disable}

set log-server {enable | disable}

end

Variable

Description

log-fortigate {enable | disable}

Enable/disable logging of FortiGuard antivirus and IPS service updates of FortiGate devices. Default: disable

log-server {enable | disable}

Enable/disable logging of update packages received by the built-in FDS server. Default: disable

Example

You could enable logging of FortiGuard antivirus updates to FortiClient installations and update packages downloaded by the built-in FDS from the FDS.

config fmupdate av-ips advanced-log

set log-forticlient enable

set log-server enable

end

av-ips web-proxy

Use this command to configure a web proxy if FortiGuard antivirus and IPS updates must be retrieved through a web proxy.

Syntax

config fmupdate av-ips web-proxy

set ip <ipv4_address>

set ip6 <ipv6_address>

set mode {proxy | tunnel}

set password <passwd>

set port <integer>

set status {enable | disable}

set username <string>

end

Variable

Description

ip <ipv4_address>

Enter the IPv4 address of the web proxy. Default: 0.0.0.0

ip6 <ipv6_address>

Enter the IPv6 address of the web proxy.

mode {proxy | tunnel}

Enter the web proxy mode. The following options are available:

  • proxy: HTTP proxy.
  • tunnel: HTTP tunnel.

password <passwd>

If the web proxy requires authentication, enter the password for the user name. Character limit: 63

port <integer>

Enter the port number of the web proxy. Default: 80. Range: 1 to 65535

status {enable | disable}

Enable/disable connections through the web proxy. Default: disable

username <string>

If the web proxy requires authentication, enter the user name. Character limit: 63

Example

You could enable a connection through a non-transparent web proxy on an alternate port.

config fmupdate av-ips web-proxy

set status enable

set mode proxy

set ip 10.10.30.1

set port 8890

set username avipsupdater

set password cvhk3rf3u9jvsYU

end