Hello all.
recently our fortimail v6.4.3, which is configured in active\passive cluster, hang a bit.
as result transport queue was stopped, port 25 closed, no messages was received\deliver to\from internet.
GUI was not accessible, and the only way to bring system back to life was reboot virtual machine, from hypervisor level.
And my question is regarding HA cluster, isn't it should activate passive node in such cases, to take over transport service?
Hello @koldun2006 ,
In an Active-Passive HA configuration when the primary unit fails, the secondary unit becomes the new primary unit and assumes the duty of email processing.
During the failover, no mail data or configuration changes are lost, but some in-progress email deliveries may be interrupted. These interrupted deliveries may need to be restarted, but most email clients and servers can gracefully handle this.
Additional failover behaviors may be configured by specifying "On Failure" to be :
Hi
Failover doesn't occur if the secondary node still receives heartbeats from primary. I guess that's what probably unfortunately happened to your cluster.
In such specific situations an active-active cluster is better, since the sending servers would redirect mails to the second MX.
Try keep your FML to the latest patch in order to fix known bugs.
Select Forum Responses to become Knowledge Articles!
Select the “Nominate to Knowledge Base” button to recommend a forum post to become a knowledge article.
User | Count |
---|---|
1740 | |
1108 | |
752 | |
447 | |
240 |
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2024 Fortinet, Inc. All Rights Reserved.