In a FGCP cluster trying to get session sync traffic over the dedicated
interface with the set session-sync-dev command. But the corresponding
diagnose output seems to indicate it doesn't work. fgt1 (root) #
diagnose sys ha session-sync-devHA sessync...
anyone experience with a virtual (VM) standalone FortiTester on ESXi
with 2 ports and trying to run a DUT Working Mode Network Address
Translation (NAT) test with a DUT role Network Gateway? with an TP
(transparent) DUT working mode setting or an app...
anyone with experience on the diagnose debug for sessionsync (FGSP)? i
tried the -1 on 7.2.8 and think I once saw the sync packets on the
output, but at the moment I don't see anything when the system is
working normally and session sync is working. ...
haven't been able to find anything on knowledge base or while searching
in general but maybe not (well) documented. is there a way to check for
hits on routing route map / acl / prefix lists counters. like when you
create one that allows some and den...
Seeing IPAM on several places in the FortiGate 7.4.x GUI. I understand
its use but wont be using it on this deployment. Is there a way to turn
it off in the GUI? Dont seem to find it in the feature visibility.
Thank you. First time I have seen the hw-session-sync-dev mentioned.It
seems a hyper scale firewall feature and this system isn't licensed for
that. The options doesn't exist in system ha settings.
The way I read the output the probes are send, but not received on the
configured session-sync-dev. This the case on the primary and secondary
FortiGate in the FGCP cluster.The hatalk debug shows nothing odd, but
can't be 100% sure it is fine either....
and after trying some more things I "solved' it, by rebooting the
FortiTester. then next attempt worked fine, checking again tomorrow, but
probably solved. ill post again with the config (which isn't anything
special).
