Configuring An Ha Cluster - Fortinet FortiGate FortiGate-1000A Administration Manual
Fortinet fortigate fortigate-1000a: user guide
Hide thumbs
Also See for FortiGate FortiGate-1000A:
- Install manual (58 pages) ,
- Quick start manual (2 pages) ,
- Administration manual (458 pages)
Table of Contents
Advertisement
System Config
Configuring an HA cluster
10
12
FortiGate-1000A/FA2 Administration Guide
Use the following procedures to create an HA cluster consisting of two or more
FortiGate units. These procedures describe how to configure each of the FortiGate
units for HA operation and then how to connect the FortiGate units to form a cluster.
Once the cluster is connected you can configure it in the same way as you would
configure a standalone FortiGate unit.
•
To configure a FortiGate unit for HA operation
•
To connect a FortiGate HA cluster
•
To add a new unit to a functioning cluster
•
To configure weighted-round-robin weights
•
To configure load balancing TCP and virus scanning traffic
To configure a FortiGate unit for HA operation
Each FortiGate unit in the cluster must have the same HA configuration. Use the
following procedure to configure each FortiGate unit for HA operation.
Note: The following procedure does not include steps for configuring heartbeat devices and
interface monitoring. Both of these HA settings should be configured after the cluster is up and
running.
1
Power on the FortiGate unit to be configured.
2
Connect to the web-based manager.
3
Give the FortiGate unit a unique host name.
See
"To change FortiGate host name" on page
individual cluster units.
4
Go to System > Config > HA.
5
Select HA.
6
Select the HA mode.
7
Select a Group ID for the cluster.
The Group ID must be the same for all FortiGate units in the HA cluster.
8
Optionally change the Unit Priority.
See
"Unit Priority" on page
9
If required, select Override master.
See
"Override Master" on page
Enter and confirm a password for the HA cluster.
11
If you are configuring Active-Active HA, select a schedule.
See
"Schedule" on page
Select Apply.
The FortiGate unit negotiates to establish an HA cluster. When you select apply you
may temporarily lose connectivity with the FortiGate unit as the HA cluster negotiates
and because the FGCP changes the MAC address of the FortiGate unit interfaces
(see
"Group ID" on page
table of your management PC by deleting the ARP table entry for the FortiGate unit.
97.
97.
98.
96). To be able to reconnect sooner, you can update the ARP
01-28011-0254-20051115
38. Use host names to identify
HA
101
Advertisement
Table of Contents
