Hi, I am trying to get 2 FortiVM appliances (latest version) running as HA Active-Active as lab on top of vmware esxi 5.5. However doesnot seem like it is working. I followed handbook with just basic configuration on the virtual appliances but after two vm rebooted, both VM are claiming to be the master (from get system status output)...I login to the cluster but it seems like it is VM1 first time and then later refresh as VM2. It seems like VM2 overtakes VM1 as master while VM1 doesnot want to give up but keep sending G-ARP...Plus under the HA page on Web UI, I only see one unit. Another thing I notices during troubleshooting, both VM have serial number FGVMEV0000000000. Will that cause issue? HA is supported on FortiVM, right?
Here attached are the HA configuration and running status of two VMs (rest of the config are Factory default+basic VDOM). Please let me know where I configured wrong...
On VM1:
FortiGate-VM1 (global) # show system ha config system ha set group-name "LAB-HA-Group" set mode a-a set password ENC O9BYGKJnJr set hbdev "port3" 50 set override enable end
FortiGate-VM1 (global) # get system ha status Model: FortiGate-VM64 Mode: a-a Group: 0 Debug: 0 ses_pickup: disable load_balance: disable load_balance_udp: disable schedule: Round robin. upgrade_mode: unset Master:128 FortiGate-VM1 FGVMEV0000000000 0 number of vcluster: 1 vcluster 1: work 169.254.0.1 Master:0 FGVMEV0000000000
On VM2:
FortiGate-VM2 (global) # show system ha config system ha set group-name "LAB-HA-Group" set mode a-a set password ENC O9BYGKJnJr set hbdev "port3" 50 set override enable set priority 100 end
FortiGate-VM2 (global) # get system ha status Model: FortiGate-VM64 Mode: a-a Group: 0 Debug: 0 ses_pickup: disable load_balance: disable load_balance_udp: disable schedule: Round robin. upgrade_mode: unset Master:100 FortiGate-VM2 FGVMEV0000000000 0 number of vcluster: 1 vcluster 1: work 169.254.0.1 Master:0 FGVMEV0000000000
Solved! Go to Solution.
Fortigate VM without license cannot do HA
Regards, Paulo Raponi
p****oni wrote:Fortigate VM without license cannot do HA
Evaluation license doesnot count? I doubt fortinet will give me a real license for our lab setup...
Select Forum Responses to become Knowledge Articles!
Select the “Nominate to Knowledge Base” button to recommend a forum post to become a knowledge article.
User | Count |
---|---|
1739 | |
1108 | |
752 | |
447 | |
240 |
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2024 Fortinet, Inc. All Rights Reserved.