Identify the first checksum difference. Do not focus on errors after the first one, as they are consequences of the first error.
#diagnose sys ha cluster-csum
Master value differs from slave unit (example below in vdom 'FW12345VD01')
FW12345VD01: 92 6f 1c 66 9d 60 e4 39 a9 91 4b 81 44 b4 4d e5
FW12345VD01: 6b 09 16 4a 5b a8 0b 50 90 c4 4f 28 81 93 2b 13
#diagnose sys ha showcsum 01 FW12345VD01
MASTER : firewall.service.custom: 88cf86d105c371cf35b005f8c87b5763
SLAVE : firewall.service.custom: d93f366edcfe4cc97c9f7a2b0c45e530
#Configuration CLI
config firewall service custom
edit "srv-172.19.100.10"
edit "srv-172.19.100.10"
set subnet 172.19.100.10 255.255.255.255
diag sys ha csum-recalculate
diag system ha status
Related Articles
Technical Note: Troubleshooting a checksum mismatch in a FortiGate HA cluster
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2024 Fortinet, Inc. All Rights Reserved.