Support Forum
The Forums are a place to find answers on a range of Fortinet products from peers and product experts.
fortired213413
New Contributor II

FGT HA

I'm facing issue while accessing the sec box

I tried taking the direct mgmt connection but im not able to ping nor access the sec fgt

 

though the primary box works fine

1 Solution
sjoshi
Staff
Staff

Hi,

 

It is expected that you wont be able to ping or access the Passive device in A-P setup on FGT

If you run :-

get router info routing-table all

you will not see any route on the routing table and if you make the same box primary then it works

Let us know if this helps.
Salon Raj Joshi

View solution in original post

5 REPLIES 5
Toshi_Esumi
SuperUser
SuperUser

What is the model of your FGT? Are you using the built-in MGMT/MGMT1 port? How did you configured HA and the MGMT port?
Share us those config under "config sys int" then "edit mgmt(1)", and "config sys ha" in CLI.

Toshi

dingjerry_FTNT

Hi @fortired213413 ,

 

Please share your HA configuration and relevant interface configuration.

Regards,

Jerry
vbandha
Staff
Staff

Hello @fortired213413 

If the HA is showing secondary fortigate then you can get access to secondary fortigate via the cli on primary:

https://community.fortinet.com/t5/FortiGate/Technical-Tip-How-to-access-secondary-unit-of-HA-cluster...

 

execute ha manage [ID] [username]

 

Another option is to get direct console access to that fortigate. 

 

Regards,

Varun 

sjoshi
Staff
Staff

Hi,

 

It is expected that you wont be able to ping or access the Passive device in A-P setup on FGT

If you run :-

get router info routing-table all

you will not see any route on the routing table and if you make the same box primary then it works

Let us know if this helps.
Salon Raj Joshi
dingjerry_FTNT

Hi @fortired213413 ,

 

I am still waiting for your FGT configuration.

 

But I think that you need direct access to the Secondary FGT device.  If so, what you need is the HA management interface.  

 

I am not sure what your FGT firmware version is.  Please check this doc and you can also select the FortiOS version in the doc:

 

https://docs.fortinet.com/document/fortigate/7.4.0/administration-guide/313152/out-of-band-managemen...

Regards,

Jerry
Announcements

Select Forum Responses to become Knowledge Articles!

Select the “Nominate to Knowledge Base” button to recommend a forum post to become a knowledge article.

Labels
Top Kudoed Authors