FortiGate Next Generation Firewall utilizes purpose-built security processors and threat intelligence security services from FortiGuard labs to deliver top-rated protection and high performance, including encrypted traffic.
This article describes how to break a HA cluster and use one of the members as a standalone.
Scope
FortiGate.
Solution
Before changing the HA mode of the FortiGate, one of the cluster members must be removed.
It is possible to remove it either by removing all the cables or also shutting down the FortiGate from CLI using:
execute shutdown
Note:
To prevent a split brain scenario in your network, it's essential to remove the cables connecting hbdev(Heart-Beat) interface only after disconnecting all other network cables. By following this procedure, you can avoid the risk of triggering a split brain situation, where both nodes in an HA configuration believe they are the Active/Primary device.
The CLI displays a message when the shutdown is complete.
Make sure that it is possible to connect to the FortiGate needed as a standalone by using console access or using a management interface.
In the active unit to configure as a standalone, run the below commands:
