FortiGate 310B 4.0.2 HA Slave node with empty config

Forum|Forum|9 years ago
August 10, 2016
1 reply
3886 views

Hello,

I have a strange issue on two Cluster (a-p mode) of 310B with the FortiOS v4.0.2,build0099,090407.

When I'm connected to the slave via exe ha manage X and I type sh I have some errors:

cmd_process_get_obj: cmf_query_update() error

When I cheched the config on each slave I have some parts missing:

sh firewall address ==> Empty

sh firewall policy ==> Empty

The debug of hatalk and hasync display the slave's file are in sync.

I tried to reboot the slaves but the issue is still present.

I checked another cluster of 310B with the version and I have not this issue.

Anyone have an idea to debug this issue or to do a manual resync ?

Thanks for your answers.

ede_pfau

SuperUser

Looks like a severe config failure on the slave unit. I'd take it out of the cluster, 'exec factoryreset', format the flash disk in boot monitor, restore the firmware (ancient, ancient) when booting via TFTP and restore the few HA parameters and the hostname (conf sys global). Then reconnect to the cluster and watch the console port output.

IIRC the first patch releases of v4.0 were difficult. Took a lot of these until it became stable (if ever). Can't you just upgrade to v4.3.18 to use a known stable and bugfree firmware?

tquessadaAuthor

New Member

Thanks for your answer.

Il will try to replace these firewall and after I will test them with HQIP image.

Sign up

Login with SSO

Login to the community

Login with SSO

Scanning file for viruses.

This file cannot be downloaded