| Problem | Prevention | |--------|-------------| | HA split-brain after upgrade | Upgrade passive unit first, then failover | | SSL VPN stops working | Check vpn ssl settings – sometimes defaults reset | | Lost dashboard/widgets | Keep screenshots of custom dashboards | | IPS/Web filter breaks | Re-upload the same IPS DB after upgrade |
No. But you should always upgrade for vulnerabilities (e.g., CVE-2024-23113). Otherwise: fortigate firmware
Upgrading FortiGates in an HA cluster | Administration Guide | Problem | Prevention | |--------|-------------| | HA