Created on 01-08-2015 07:36 AM Edited on 06-10-2024 11:39 AM By Stephen_G
Description
When the HA is used in the FortiGate with active-active mode, the traffic may not perform the load balance with the TCP traffic as expected.
Sometimes, it is not possible to configure the load balance with the HA in active-active mode properly.
Scope
FortiGate
Solution
This article assumes HA has been joined in active-active mode already.
To load balance TCP traffic besides proxy sessions, use the following CLI commands.
config system ha
set load-balance-all enable <- Disabled by default. (Enable to load balance TCP sessions. Disable to load balance proxy sessions only.)
end
After, it will be possible to check the traffic again.
Both HA units will load balance the TCP traffic afterwards.
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2024 Fortinet, Inc. All Rights Reserved.