FortiGate
FortiGate Next Generation Firewall utilizes purpose-built security processors and threat intelligence security services from FortiGuard labs to deliver top-rated protection and high performance, including encrypted traffic.
Jonathan_Body_FTNT
Article Id 195946
Description

This article explains how to configure the new option for HA Slave Management Reservation which was introduced in FortiOS 4.0 MR2.


Scope

FortiOS 4.0 MR2 and above.


Solution
In FortiOS 4.0MR2, there is an extension to the HA functionality. On each cluster a port is reserved for management purposes. This allows independent management of each cluster member without affecting HA. This means the HA heartbeat interface is different from the HA slave management interface.
 
To enable this option on the HA Cluster:
 
1.   Connect to the CLI of the HA master unit and perform the following commands.
config system ha
set ha-mgmt-status [enable | disable]
set ha-mgmt-interface <interface-name>
set ha-mgmt-interface-gateway
2.   Configure the system interface to be used for the HA management. This must be the same as the “ha-mgt-interface” configured in step 1.
config system interface
edit “”
set “”
3.   Connect to the slave unit and configure the same options as in steps 1 and 2.

Contributors