Hello Community,
We recently upgraded an existing Fortigate Rugged 60-F (FGR-60F) cluster from 7.0.x to 7.2.x. The cluster was in sync and operating fine in 7.0.x but failed to establish the HA cluster after the FortiOS upgrade. After troubleshooting this with Fortinet we learned that even though there is only one SKU for order placement (FGR-60F), Fortinet itself has various generations of this hardware platform (currently 5). The first 2 generations came with only one power supply and since the 3rd generation a 2nd power supply was added to the platform.
The problem now is that FortiOS 7.2.x added new command statements (config system vin-alarm) that only work on gen 3-5 which results in a configuration difference between gen 1-2 and 3-5 that prevents clusters from being able to get in sync.
How can you tell what generation of hardware you have? Two ways:
I am expecting that multiple customers might run into issues that are not directly obvious since with no other Fortigate model series did we ever have to pay attention to Generations of hardware. The rule of thumb was always that if the models are the same then you can cluster.
I don't know why Fortinet would not offer a software fix for this (to enable/disable this feature) so that different generations of hardware can sync, but with this current situation you can only ask Fortinet for an RMA and you have to make sure that they send you a matching generation back to avoid this conflict.
I can see this to become a major issue once more customers change FortiOS versions or have to deal with RMA's not letting them sync their clusters due to the received RMA not being of the right generation....
FortiGate #fortios #rugged #fgr-60f #highavailability
Nominating a forum post submits a request to create a new Knowledge Article based on the forum post topic. Please ensure your nomination includes a solution within the reply.
Hello @MichaelHinz ,
Can you run command "get sys status", there you will be able to see the part number of the device being used.
Select Forum Responses to become Knowledge Articles!
Select the “Nominate to Knowledge Base” button to recommend a forum post to become a knowledge article.
User | Count |
---|---|
1707 | |
1093 | |
752 | |
446 | |
231 |
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2024 Fortinet, Inc. All Rights Reserved.