Description | This article describes how to enable coredump HA failover and demonstrates its usage. |
Scope | FortiWeb, FortiWeb-VM HA. |
Solution |
A coredump file is generated if the system encounters a crash or the daemon restarts due to unexpected circumstances. Coredump file is mainly used by TAC to locate errors in system/daemons that could be used as a temporary workaround and fixed in future firmware releases.
Coredump file could get truncated or damaged (mainly proxyd) whereby hardware or virtual platform with higher memory capacity in some cases requires more time to fully generate coredump file. FortiWeb generally takes a maximum of 2 minutes to generate coredump file before restarting the process.
Sample of FortiWeb’s kernel log that shows coredump file being truncated:
Substantially, this would cause web application traffic interrupted because of buffer time taken by FortiWeb to generate coredump files.
Since v7.0.4GA, a CLI command was introduced to allow FortiWeb to trigger HA failover when proxyd coredump is being generated.
config server-policy settings
This would minimize traffic impact when the secondary unit immediately takes over the traffic thus allowing the primary unit to completely generate coredump files to provide more information for troubleshooting.
Note: Refer to the What to do when coredump files are truncated or damaged section of the FortiWeb administration guide for more information on corefile-ha-failover.
Under Log & Report -> Log Access -> Event, observe the core file HA monitor process taking place.
With HA override enabled:
With HA override disabled:
Export the coredump file: |
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2024 Fortinet, Inc. All Rights Reserved.