FortiGate Next Generation Firewall utilizes purpose-built security processors and threat intelligence security services from FortiGuard labs to deliver top-rated protection and high performance, including encrypted traffic.
This article describes the steps to troubleshoot and resolve the issue of unable to connect a secondary firewall to FortiAnalyzer in a High Availability (HA) Active-Active (A-A) autoscaling setup. The article provides a detailed solution to help users identify and fix the problem.
Scope
FortiGate, FortiAnalyzer.
Solution
To troubleshoot and resolve the issue of unable to connect a secondary firewall to FortiAnalyzer in a High Availability (HA) Active-Active (A-A) autoscaling setup, follow these steps:
Make sure the secondary firewall is properly configured and connected to the network.
Verify that the FortiAnalyzer is configured to accept connections from the secondary firewall.
Check the network diagram and ensure that the IP addressing is correctly configured.
Go to FortiGate -> System -> HA and verify that the HA mode is set to Active-Active.
Go to FortiAnalyzer -> System -> Settings and verify that the FortiAnalyzer is configured to accept connections from the secondary firewall.
Check the debug logs and error messages to identify any issues with the connection.
If issues are found, make the necessary changes to the configuration and retry the connection.
