Description |
This article describes that In FortiWeb HA cluster, ifthere is no dedicated reserve management IP (ha-mgmt-interface), both master and slave units will share the same interface IP addresses.
So only the master unit can be accessed by GUI or CLI. If the log in the slave unit needs to retrieved, procedure below can be used. |
Scope | FortiWeb. |
Solution |
1) Enable file upload.
# config system setting set enable-file-upload enable end
2) Log in to the master unit and execute command below to export the log in the slave unit.
FWB_master # diagnose system ha export-eventlog <id> please input peer box index. <1> Subsidary unit FVVM020000100001 <2> Subsidary unit FVVM020000100002
FWB_master # diagnose system ha export-eventlog 1 24/04/2022:00:00:00 25/04/2022:23:59:00 log file export-eventlog-1.tgz has been get.
Download it from System -> Maintenance -> Backup&Restore from GUI.
3) Download the event log file in GUI of the master unit. Go to System-> Maintenance -> Backup&Restore, select 'Download'.
The log file of the slave unit is now available for review. For example:
v010xxxxdate=2022-04-25 time=11:25:34 log_id=10000023 msg_id=000000005220 device_id= FVVM020000-----2 vd="root" timezone="(GMT+8:00)Kuala Lumpur,Singapore" timezone_dayst="GMTc-8" type=event subtype="system" pri=information trigger_policy="N/A" user=system ui=system action=start status=success msg="Backup daemon started"
Related document: https://docs.fortinet.com/document/fortiweb/6.3.7/cli-reference/471801/system-ha-export-eventlog |
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2024 Fortinet, Inc. All Rights Reserved.