Help
FortiGate
FortiGate Next Generation Firewall utilizes purpose-built security processors and threat intelligence security services from FortiGuard labs to deliver top-rated protection and high performance, including encrypted traffic.
jintrah_FTNT
Staff
Staff

Created on ‎12-29-2025 04:55 AM Edited on ‎01-02-2026 01:08 AM By Community Manager

Article Id 424503

Technical Tip: Upgrading FortiProxy cluster devices with uninterruptible upgrade and sequential upgrade options

Description This article describes the process followed while upgrading FortiProxy devices in cluster.
Scope FortiProxy.
Solution

By default, FortiProxy cluster has uninterruptible upgrade and sequential upgrade settings enabled. 

proxy.png

 

Default Behavior:

By default, FortiProxy clusters have the following HA settings enabled:

  1. uninterruptible-upgrade: Enabled (minimizes downtime by upgrading subordinates first).
  2. sequential-upgrade: Enabled (upgrades secondary nodes one at a time in larger clusters).

 

Upgrade behavior:

  1. Both enabled (default): The upgrade is done on secondary devices one at a time. After all the secondary devices are upgraded, a new master is chosen among them, followed by the upgrade of the current master.

  2. Sequential-upgrade disabled: The upgrade is done on all secondary devices at once, followed by the upgrade of the current master.

  3. Uninterruptible-upgrade disabled: All the cluster members are upgraded simultaneously (faster but causes full service interruption).

 

Note: This also applies to FortiProxy cluster in config-sync only mode.
119
0 Kudos
Suggest New Article
Article Feedback
Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2026 Fortinet, Inc. All Rights Reserved.