We have a A-A cluster with two 500E FortiGates. The secondary unit is not actively in use, but should be synchronized - and it normally is.
Tried a firmware upgrade from 7.0.3 to 7.0.5 that kept on failing without any warnings or errors. Just kept spinning forever.
Noticed today a HA warning "Not synchronized". Looks like there are 4 tables out of sync:
Any suggestion where I start to fix this?
-PM
Since FortiOS 7.0 shows what is not in sync, your job is a bit easier. There are several ways to identify the exact mismatch and to correct it. Probably the easiest options are:
A)Export configs from both units, compare them with diff and manually correct the differences. There will most likely be some missing dependencies in ISDB and replacement messages.
B)Load the config from primary unit to the secondary one. Just ensure to manually adjust settings that do not sync in the cluster (hostname, ha settings, dedicated management interfaces, etc.) prior to the actual import.
C)If unsure, open a support ticket and you will be helped there ;-).
HTH,
Boris
Select Forum Responses to become Knowledge Articles!
Select the “Nominate to Knowledge Base” button to recommend a forum post to become a knowledge article.
User | Count |
---|---|
1735 | |
1107 | |
752 | |
447 | |
240 |
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2024 Fortinet, Inc. All Rights Reserved.