Help
FortiGate
FortiGate Next Generation Firewall utilizes purpose-built security processors and threat intelligence security services from FortiGuard labs to deliver top-rated protection and high performance, including encrypted traffic.
kvarada_FTNT
Staff
Staff

Created on ‎09-25-2023 12:12 AM Edited on ‎09-25-2023 01:25 AM By Moderator

Article Id 274081

Technical Tip: Different options to trigger an HA failover (FGCP)

Description This article describes different options available to trigger an HA failover in the FGCP HA environment to make sure the traffic fails over to the backup FortiGate.
Scope FortiGate.
Solution

In Fortigate HA, the following options exist to test a fail-over:

 

Scenario 1: If override is enabled in the HA settings of both units (primary and secondary), set the HA priority of the primary FortiGate to a lower value than the secondary FortiGate's HA priority.

 

Scenario 2: If override is disabled in the HA settings of both units (primary and secondary), reset the uptime on the primary FortiGate with the following CLI command:

 

diagnose sys ha reset-uptime


Scenario 3: Choose to reboot Primary-FortiGate to force failover regardless of the configuration:

 

execute reboot

This operation will reboot the system !

Do you want to continue? (y/n) y

 

Scenario 4: Force failover regardless of the configuration and without rebooting the device:

 

execute ha failover set 1
Caution: This command will trigger an HA failover.
It is intended for testing purposes.
Do you want to continue? (y/n) y
11130
0 Kudos
Submit Article Idea
Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2024 Fortinet, Inc. All Rights Reserved.