Help
FortiGate
FortiGate Next Generation Firewall utilizes purpose-built security processors and threat intelligence security services from FortiGuard labs to deliver top-rated protection and high performance, including encrypted traffic.
FortiNitish
Staff
Staff

Created on ‎04-18-2023 04:14 AM Edited on ‎10-30-2023 03:51 AM By Moderator

Article Id 252916

Technical Tip: How to break a HA cluster and use one of the members as standalone

Description This article describes how to break a HA cluster and use one of the members as a standalone.
Scope FortiGate.
Solution

Before changing the HA mode of the FortiGate, one of the cluster members must be removed.

 

It is possible to remove it either by removing all the cables or also shutting down the FortiGate from CLI using:

 

execute shutdown

 

Note: To prevent a split brain scenario in your network, it's essential to remove the cables connecting hbdev(Heart-Beat) interface only after disconnecting all other network cables. By following this procedure, you can avoid the risk of triggering a split brain situation, where both nodes in an HA configuration believe they are the Active/Primary device.

 

The CLI displays a message when the shutdown is complete.

 

Make sure that it is possible to connect to the FortiGate needed as a standalone by using console access or using a management interface.

 

In the active unit to configure as a standalone, run the below commands:

 

config global

    config sys ha

        set mode standalone

    end
4543
0 Kudos
Submit Article Idea
Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2024 Fortinet, Inc. All Rights Reserved.