Help
FortiGate
FortiGate Next Generation Firewall utilizes purpose-built security processors and threat intelligence security services from FortiGuard labs to deliver top-rated protection and high performance, including encrypted traffic.
Shashwati
Staff
Staff

Created on ‎09-13-2023 01:59 PM Edited on ‎11-25-2024 04:07 AM By Moderator

Article Id 273502

Troubleshooting Tip: HA out of synchronization 'application.list' mismatch

Description This article discusses the issue of HA out of synchronization.
Scope FortiGate v6.X and v7.X.
Solution
  1. Check System -> HA. If the HA secondary device shows as 'Not synchronized', hover the mouse on the Status:

 MicrosoftTeams-image (1).png

 

  • It will show the configuration information which is different between the Primary and Secondary Firewall.
  • The above picture shows that the Application list was mismatched between the HA pair.
  • The information seen from GUI should be validated via CLI and compared as follows (sometimes is a false out-sync).

diag sys ha checksum show <vdom_name> <object_name>

   

Example: 

 

diag sys ha checksum show root application.list (In both FortiGates of the cluster.)

 

  • If there is no difference between the checksum for that application.list, the cluster HA can be Sync as follows:

 

diagnose sys ha checksum recalculate  <--Execute on each FortiGate 4-5 times In parallel.

   

  • If there is a difference between the checksum for that application.list check via 'config application list'.
  • Edit the configuration on the secondary Firewall to match with Primary.
  • The HA pair will be synchronized again.

 

Related articles:
23621
Suggest New Article
Article Feedback
Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2025 Fortinet, Inc. All Rights Reserved.