Start by taking a fresh backup of the production FGT.
Then, on the node which is already under production, do this:
On the new node to be added:
Plug HA ports to eachother, i.e.:
No impact, no downtime.
Both nodes must be same model and at the same firmware level.
Start by taking a fresh backup of the production FGT.
Then, on the node which is already under production, do this:
I already did this steps but after that the production Fortigate crashed and i had to restore it with an backup file.
What do you mean by crashed?
Can you share all the steps you did in detail?
I configured a VLAN Interface on the HA Link. Because the other Fortigate is not in the same rack and building.
Then i walked through these steps which you wrote but with only one HA Link:
After i clicked on Ok the firewall crashed.
Try ha interface with physical interface, not VLAN interface.
Also what you mean by crashed? Do you mean config wiped? Or do you mean just lost access?
But how can i make the HA connection to the other Fortigate because they are separated physically?
The Internet connection in the company was lost. And i had to restore the firewall with an backup which i had made before the Cluster configuration.
I mean don't configure a FGT VLAN interface as ha interface, but a FGT physical interface. But for sure you can connect the HA interface to a switch-port which is on a specific dedicated VLAN.
Regarding the crash cause:
Hi @AUT_Maverick,
Is the HA interface connected to a switch? Is there other clusters or hosts in the same VLAN?
Regards,
Select Forum Responses to become Knowledge Articles!
Select the “Nominate to Knowledge Base” button to recommend a forum post to become a knowledge article.
User | Count |
---|---|
1737 | |
1107 | |
752 | |
447 | |
240 |
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2024 Fortinet, Inc. All Rights Reserved.