Help
Support Forum
The Forums are a place to find answers on a range of Fortinet products from peers and product experts.
Karoui1989
New Contributor II

Created on ‎05-21-2025 05:08 AM

HA Management Interface Reservation

Hello experts,

I have a FortiGate Active-Passive cluster (FG-101F) running version 7.2.10.

I configured the mgmt port on the firewall for management purposes.

interface mgmt.jpg
 

In the HA configuration, I wanted to add the mgmt interface under Management Interface Reservation in order to manage each cluster member separately.

However, the mgmt interface does not appear in the list. I also tried to configure it via CLI, but I received an error message indicating that the interface is unavailable.

ha config.jpg

Thank you for your help.

Labels:
765
0 Kudos
1 Solution
saneeshpv_FTNT
Staff
Staff

Created on ‎05-21-2025 06:16 AM

@Karoui1989 , This could be also because your "mgmt1" interface is referenced somewhere in the configuration (for example, used in the static route configuration or a policy). You check the reference and delete any reference to this and then you should be able to see them available for "Management Interface reservation" under HA. 

 

Regards,

Saneesh

View solution in original post

736
4 REPLIES 4
funkylicious
SuperUser
SuperUser

Created on ‎05-21-2025 05:14 AM Edited on ‎05-21-2025 05:15 AM

hi,

if you want to manage each member separately using the current setup, i would suggest using the set management-ip <> under the mgmt interface for each member and assign a new ip, other than the one already set and then you can use them for invididual tasks/access.

https://docs.fortinet.com/document/fortigate/7.4.7/administration-guide/251230 

"jack of all trades, master of none"
"jack of all trades, master of none"
761
saneeshpv_FTNT
Staff
Staff

Created on ‎05-21-2025 06:16 AM

@Karoui1989 , This could be also because your "mgmt1" interface is referenced somewhere in the configuration (for example, used in the static route configuration or a policy). You check the reference and delete any reference to this and then you should be able to see them available for "Management Interface reservation" under HA. 

 

Regards,

Saneesh

737
Karoui1989
New Contributor II
In response to saneeshpv_FTNT

Created on ‎05-21-2025 07:05 AM

problem resolved , thank you so mcuh 

722
0 Kudos
esalija
Staff
Staff

Created on ‎05-21-2025 07:03 AM

@Karoui1989 

 

Please run the below command and check the reference for the mgmt port:

diagnose sys cmdb refcnt show system.interface.name mgmt

 

Please check the KB - https://community.fortinet.com/t5/FortiGate/Technical-Tip-How-to-Check-Referenced-Objects/ta-p/19481...

 

For more details related to HA mgmt interface, check the KB - https://community.fortinet.com/t5/FortiGate/Technical-Tip-HA-Reserved-Management-Interface/ta-p/1901...

 

Best regards,

Erlin

725
Announcements
Check out our Community Chatter Blog! Click here to get involved
Labels
Top Kudoed Authors
View all
Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2025 Fortinet, Inc. All Rights Reserved.