HA Cluster Link-monitoring Failover kinda working....

I have a two unit HA cluster (override disable). Working with Remote link failover.

http://docs.fortinet.com/uploaded/files/2177/fortigate-ha-526.pdf

(page 243)

I am able to successfully fail the cluster over when ever I break the Link-Monitor. But once the Slave becomes the new Master, After the 'pingserver-flip-timeout 6' expires, if I kill the Link-Monitor AGAIN it will not failback to the orginal Master.

The behavior I expect would be If I just leave the ping monitor broke (failed state), The HA cluster should keep just failing its self over to the other unit ever 6 minutes.

---

config system link-monitor

HA2 (test1) # get name : test1 srcintf : port1 server: == [ 172.20.40.1 ] address: 172.20.40.1 protocol : ping gateway-ip : 172.20.40.1 source-ip : 0.0.0.0 interval : 1 timeout : 1 failtime : 1 recoverytime : 3 ha-priority : 10 update-cascade-interface: disable update-static-route : enable status : enable

---- HA1 (test1) # get name : test1 srcintf : port1 server: == [ 172.20.40.1 ] address: 172.20.40.1 protocol : ping gateway-ip : 172.20.40.1 source-ip : 0.0.0.0 interval : 1 timeout : 1 failtime : 1 recoverytime : 3 ha-priority : 10 update-cascade-interface: disable update-static-route : enable status : enable

--

config system ha set group-id 99 set group-name "test1" set mode a-p set password P@ssword123 set hbdev "port23" 1 "port24" 1 set hb-interval 1 set hb-lost-threshold 2 set session-pickup enable set session-pickup-connectionless enable set ha-mgmt-status enable set ha-mgmt-interface "mgmt2" set ha-mgmt-interface-gateway 172.16.1.1 set override disable set monitor "port1" "port2" "port3" "port4" set pingserver-monitor-interface "port1" set pingserver-failover-threshold 10 <------------------- set pingserver-slave-force-reset disable set pingserver-flip-timeout 6  <------------------- set ha-direct enable end

edit "port1" set vdom "dmz" set ip 172.20.40.2 255.255.255.192 set allowaccess ping fgfm set fail-detect enable set fail-detect-option detectserver set type physical set alias "dmz" set snmp-index 5 set secondary-IP enable config ipv6 set ip6-allowaccess ping set ip6-address 2707:b200:f303:3::100/64 end

==================

Has anyone ever seen this type of behavior? 

Thanks!