Fortinet FortiGate FortiGate-1000A Administration Manual page 107
Fortinet fortigate fortigate-1000a: user guide
Hide thumbs
Also See for FortiGate FortiGate-1000A:
- Install manual (58 pages) ,
- Quick start manual (2 pages) ,
- Administration manual (458 pages)
Table of Contents
Advertisement
System Config
FortiGate-1000A/FA2 Administration Guide
To view and manage logs for individual cluster units
1
Connect to the cluster and log into the web-based manager.
2
Go to Log&Report > Log Access.
The Traffic log, Event log, Attack log, Antivirus log, Web Filter log, and Email Filter log
for the primary unit are displayed.
The HA Cluster pull-down list displays the serial number of the FortiGate unit for which
logs are displayed.
3
Select the serial number of one of the cluster units to display the logs for that cluster
unit.
You can view, search and manage logs saved to memory or logs saved to the hard
disk, depending on the configuration of the cluster unit.
To monitor cluster units for failover
If the primary unit in the cluster fails, the units in the cluster renegotiate to select a new
primary unit. Failure of the primary unit results in the following:
•
If SNMP is enabled, the new primary FortiGate unit sends the trap message "HA
switch". This trap indicates that the primary unit in an HA cluster has failed and has
been replaced with a new primary unit.
•
The cluster contains fewer FortiGate units. The failed primary unit no longer
appears on the Cluster Members list.
•
The host name and serial number of the primary cluster unit changes.
•
The new primary unit logs the following messages to the event log:
HA slave became master
Detected HA member dead
If a subordinate unit fails, the cluster continues to function normally. Failure of a
subordinate unit results in the following:
•
The cluster contains fewer FortiGate units. The failed unit no longer appears on the
Cluster Members list.
•
The master unit logs the following message to the event log:
Detected HA member dead
To manage individual cluster units
This procedure describes how to log into the primary unit CLI and from there to
connect to the CLI of subordinate units. You log into the subordinate unit using the
ha_admin administrator account. This built-in administrator account gives you read
and write permission on the subordinate unit.
1
Use SSH to connect to the cluster and log into the CLI.
Connect to any cluster interface configured for SSH administrative access to log into
the cluster.
You can also use a direct cable connection to log into the primary unit CLI. To do this
you must know which unit is the primary unit.
01-28011-0254-20051115
HA
107
Advertisement
Table of Contents
