Choice between active/active and active/passive mode FORTIGATE 50E | Fortinet Technical Discussion Forums

Join us now!

Username
Password
Verification
	Stay logged in

Forgot Your Password? Forgot your Username? Haven't received registration validation E-mail?

User Control Panel Log out

Forums
Posts

Latest Posts

Active Posts

Recently Visited

Search Results

View More
Blog

Recent Blog Posts

View More
Photos

Recent Photos

My Favorites

View More Photo Galleries
PMs

Unread PMs

Inbox

Send New PM View More
Page Extras
Menu
- Forum Themes
- Member List
- Online User List
- User Groups

Videos, Docs Library, KB
Fuse
- Fuse Fortinet User Community

Mark Thread UnreadFlat Reading Mode ❐

Hot!Choice between active/active and active/passive mode FORTIGATE 50E

Author Post Essentials Only Full Version
redhat9 New Member Total Posts : 2 Scores: 0 Reward points: 0 Joined: 2021/01/15 05:58:19 Status: offline 2021/01/15 06:16:19 (permalink) 0 Choice between active/active and active/passive mode FORTIGATE 50E Hi, i have setup active active cluster fortigate 50E but ha is out of sync. i found a littleexplanatin to setup this cluster in coobook but it's not a complete tutorial and it's my first time with cluster fortinet. can you explain me in details how to setup active/active cluster and i want to know if it's respond to my need in fact or perhaps active/passive is more adapt to my needs. Regards #1 6 Replies Related Threads
ede_pfau Expert Member Total Posts : 6466 Scores: 557 Reward points: 0 Joined: 2004/03/09 01:20:18 Location: Heidelberg, Germany Status: offline Re: Choice between active/active and active/passive mode FORTIGATE 50E 2021/01/16 03:18:53 (permalink) 0 Cluster not synchronizing has nothing to do with the HA mode. For debugging use the CLI and these instructions from the kb.fortinet.com: "Technical Note: Troubleshooting a checksum mismatch in a FortiGate HA cluster" - in newer versions of FortiOS, the command is "diag sys ha check clu [\|global\|root]" Comparing the list of CRCs of each config category will show you where the difference in config is. Compare the config files from master and slave for this section and correct it. "diag sys ha checksum recalc" will sometimes help as well. For the HA mode, my feeling is that 90% of all clusters run in a-p mode because the benefits of a-a are not crucial or needed then. Less resources, less HA traffic, not so much less throughput (which would be the strongest argument pro a-a mode). Ede " Kernel panic: Aiee, killing interrupt handler!" #2
redhat9 New Member Total Posts : 2 Scores: 0 Reward points: 0 Joined: 2021/01/15 05:58:19 Status: offline Re: Choice between active/active and active/passive mode FORTIGATE 50E 2021/01/16 05:39:46 (permalink) 0 Hello. Thanks a lot for your reply. I talk with my collegue and we need just ha activé passive. I have to go to datacenter to setup. Regards. #3
ede_pfau Expert Member Total Posts : 6466 Scores: 557 Reward points: 0 Joined: 2004/03/09 01:20:18 Location: Heidelberg, Germany Status: offline Re: Choice between active/active and active/passive mode FORTIGATE 50E 2021/01/16 06:37:28 (permalink) 0 you'll see it's not a big deal to change the mode. Would you please report if it caused a reboot? Not sure about it. Ede " Kernel panic: Aiee, killing interrupt handler!" #4
Yurisk Gold Member Total Posts : 182 Scores: 32 Reward points: 0 Joined: 2011/12/04 03:30:01 Status: offline Re: Choice between active/active and active/passive mode FORTIGATE 50E 2021/01/16 10:42:57 (permalink) 0 If you are not sure then you do NOT need Active/passive mode. Switch to A-P and everything will just work. Yuri https://yurisk.info/ #5
ede_pfau Expert Member Total Posts : 6466 Scores: 557 Reward points: 0 Joined: 2004/03/09 01:20:18 Location: Heidelberg, Germany Status: offline Re: Choice between active/active and active/passive mode FORTIGATE 50E 2021/01/16 12:07:29 (permalink) 0 @Yurisk: ?? I was not sure if changing the setting will cause a reboot. Just curious. Ede " Kernel panic: Aiee, killing interrupt handler!" #6
Yurisk Gold Member Total Posts : 182 Scores: 32 Reward points: 0 Joined: 2011/12/04 03:30:01 Status: offline Re: Choice between active/active and active/passive mode FORTIGATE 50E 2021/01/18 01:13:31 (permalink) 0 @ede_pfau - no idea either, never had to change mode to A/A on working gear, actually - never had to use Active-Active in Fortigates in production, I strive to solve/prevent problems, not to create them, who wants load balancing - have load balancers for that :) Yuri https://yurisk.info/ #7

Jump to:

© 2021 APG vNext Commercial Version 5.5