Fortinet black logo

Cookbook

Verifying the cluster configuration from the CLI

Copy Link
Copy Doc ID 4d801240-7ccc-11e9-81a4-00505692583a:170285
Download PDF

Verifying the cluster configuration from the CLI

If a cluster is formed, do the following to verify its status and configuration:

  1. Log into each cluster unit's CLI. You can use the GUI CLI console, SSH, or a direct console port connection.
  2. Enter the command get system status. Look for the current HA mode in the command output. If the cluster is operating correctly and you have connected to the primary unit, you see something like this:

    Current HA mode: a-a, master

  3. Connect to the backup unit using the execute ha manage command or connect directly to the console port of the backup FortiGate. If the cluster is operating correctly, you see something like this:

    Current HA mode: a-a, backup

  4. If the FortiGate is not operating in HA mode, the get system status command output is something like this:

    Current HA mode: standalone

  5. Verify that the get system ha status command displays all cluster units. For example, in a cluster of three FortiGate units, the command output is something like this:

    Master: 5001d-slot3 , FG-5KD3914800344

    Slave : 5001d-slot5 , FG-5KD3914800353

    Slave : 5001d-slot4 , FG-5KD3914800284

  6. To verify that the HA configuration is correct and the same for each cluster unit, enter the get system ha command.

    get system ha

    group-id : 0

    group-name : External-HA-cluster

    mode : a-p

    password : *

    hbdev : "port3" 50 "port4" 50

    .

    .

    .

Verifying the cluster configuration from the CLI

If a cluster is formed, do the following to verify its status and configuration:

  1. Log into each cluster unit's CLI. You can use the GUI CLI console, SSH, or a direct console port connection.
  2. Enter the command get system status. Look for the current HA mode in the command output. If the cluster is operating correctly and you have connected to the primary unit, you see something like this:

    Current HA mode: a-a, master

  3. Connect to the backup unit using the execute ha manage command or connect directly to the console port of the backup FortiGate. If the cluster is operating correctly, you see something like this:

    Current HA mode: a-a, backup

  4. If the FortiGate is not operating in HA mode, the get system status command output is something like this:

    Current HA mode: standalone

  5. Verify that the get system ha status command displays all cluster units. For example, in a cluster of three FortiGate units, the command output is something like this:

    Master: 5001d-slot3 , FG-5KD3914800344

    Slave : 5001d-slot5 , FG-5KD3914800353

    Slave : 5001d-slot4 , FG-5KD3914800284

  6. To verify that the HA configuration is correct and the same for each cluster unit, enter the get system ha command.

    get system ha

    group-id : 0

    group-name : External-HA-cluster

    mode : a-p

    password : *

    hbdev : "port3" 50 "port4" 50

    .

    .

    .