FortiGate HA out of sync troubleshooting
Troubleshooting HA Cluster out of syn.
How to access secondary unit of HA cluster via CLI
Syntax
execute ha manage [ID] [username]
exec ha manage ?
Command
exec ha manage 1 admin
Check HA Cluster out of sync Status
#get sys ha status
To Compare Checksum between 2 HA Cluster
diag sys ha checksum cluster
Recalculate the Checksum
diag sys ha checksum recalculate
Note: Recalculating the Checksum on both HA units will fix the out-of-syn issue
Optional
FortiGate HA Troubleshooting
Run the following commands to check the mismatch right away:
diag debug config-error-log read -- (1)
diag hardware device disk -- (2)
show sys storage -- (3)
show wanopt storage -- (4)
(1): Check the output to identify issues with configuration lines that were not accepted. Try to manually configure the device configuration item listed.
(2): Check the device disk on both devices as the size and availability should match.
(3): Check the size of storage disk as it should match on both device.
(4): Check the size of wanopt disk as size should match.
To determine why HA synchronization does not occur
1. Connect to each cluster unit CLI by connected to the console port.
2. Enter the following commands to enable debugging and display HA out of sync messages.
#diagnose debug enable
#diagnose debug console timestamp enable
#diagnose debug application hatalk -1
#diagnose debug application hasync -1
Collect the console output and compare the out of sync messages
3. Enter the following commands to turn off debugging.
diagnose debug disable
diagnose debug reset
Watch video FortiGate HA out of sync troubleshooting online without registration, duration hours minute second in high quality. This video was added by user Techy-World 05 January 2023, don't forget to share it with your friends and acquaintances, it has been viewed on our site 12,603 once and liked it 107 people.