Skip to main content
AlexandreL
AlexandreL
New Member
September 5, 2016
Solved

[HA Issue][v5.4.1] Going back to standalone after a reboot.

  • September 5, 2016
  • 2 replies
  • 24093 views

Hi everybody.

 

I'm setting up a new Fortigate HA cluster (300D) and i have a strange issue. Each time i have to reboot a node of the cluster, he came back as a standalone Fortigate. 

 

Any idea how i can resolve that ? This is pretty annoying.

 

Here is the HA configuration. 

config system ha
set group-name "Toto"
set mode a-p
set password ENC toto
set hbdev "mgmt1" 50 "mgmt2" 50 
set session-pickup enable
set ha-mgmt-status enable
set ha-mgmt-interface "Management" <= this is actually a vlan interface
set ha-mgmt-interface-gateway x.x.x
set override disable
end

    Best answer by pyy

    Hi Can you try to unset this

    set ha-mgmt-interface "Management" <= this is actually a vlan interface

    and dont use vlan interface just a physical

    2 replies

    ede_pfau
    SuperUser
    ede_pfau
    SuperUser
    September 5, 2016

    Could you please clarify: the FGT is a master in HA after reboot, or standalone i.e. not in HA mode?

     

    If it is a master, then I'd try to use different ports for the HA heartbeat. The management ports have restrictions.

    AlexandreL
    AlexandreLAuthor
    New Member
    September 5, 2016

    After reboot the FGT is in standalone mode.

     

    If the master (or the slave) is rebooted, he lost the HA configuration and is shown as a FGT working in standalone mode when i connect to it using serial.

    The Management interface (vlan) also disappear after the reboot. Everythings else seems to remains.

    michaelbazy_FTNT
    Staff
    michaelbazy_FTNT
    Staff
    September 7, 2016

    I would raise a support ticket with Fortinet to be sure that It Will be fixed in the next release.

    To "patch" the issue in your environment, I would backup the config for each member, put It on usb sticks and renaming it on all sticks "fgt_system.conf" then have it plugged on each member (be sure to check the ha part). 

    That way, when your fortigates are rebooting, they load the config file from the usb stick.

    Let me know if that xorks for you.

    Regards,

    michaelbazy_FTNT
    Staff
    michaelbazy_FTNT
    Staff
    September 7, 2016

    Also : 

    @claumakurumure

    @ede_pfau Starting 5.2, FortiOS supports PPPoE & DHCP interfaces in HA!
    Terms & ConditionsAccessibility statement