Description | This article describes how to set Source IP for SYSLOG in HA Cluster. |
Scope | FortiGate. |
Solution |
At the '# config system ha' under the global VDOM, it is necessary to check if HA direct enable is enabled or not. If HA direct is enabled, the firewall will source the IP from the HA reserved management interface by default, and it will not be possible to override the source IP from the VDOM using the command '# config log syslogd override-setting'. So the solution would be to disable the 'set ha-direct disable'.
# config system ha set group-id <string> set group-name "Name" set mode a-p set password ENC "Password" set hbdev "ha1" <string> set session-pickup enable set ha-mgmt-status enable set priority <string> set monitor "port X" "port X" set ha-direct enable <----- Disable. end
Related article: https://community.fortinet.com/t5/FortiGate/Technical-Tip-Change-Source-IP-for-SYSLOG/ta-p/230218 |
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2024 Fortinet, Inc. All Rights Reserved.