Fortinet white logo
Fortinet docs logo DOCUMENT LIBRARY
Fortinet white logo
Fortinet docs logo DOCUMENT LIBRARY
Products Best Practices Hardware Guides Products A-Z
Summary
By Solution
By 4D Pillars
By Cloud
Secure Networking
Unified SASE
Security Operations
Secure SD-WAN
Secure Access Service Edge (SASE)
ZTNA
LAN Edge
Identity and Access Management
Next Generation Firewall
Public Cloud
Private Cloud
FortiCloud
Secure Networking
  • Hybrid Mesh Firewall
  • NOC Management
  • LAN
  • WAN
    • More >>
    Unified SASE
  • Single Vendor SASE
  • Cloud Network Security
  • Secure Endpoint Connectivity
  • Web Application / API Protection
    • More >>
    Security Operations
  • Security Operations Automation
  • Identity
  • Early Detection & Prevention
    • More >>
    Secure Networking
  • Hybrid Mesh Firewall
  • NOC Management
  • LAN
  • WAN
  • Communication & Surveillance
    • Unified SASE
  • Single Vendor SASE
  • Secure Endpoint Connectivity
  • Cloud Network Security
  • Cloud-Native Security
  • Web Application / API Protection
    • Security Operations
  • Security Operations Automation
  • Endpoint
  • Data Protection
  • Identity
  • Email
  • Early Detection & Prevention
  • Expert Services
  • Edge Firewall
  • Orchestration & management
  • SD Branch
  • Application Delivery
  • Single Vendor SASE
  • Secure Endpoint Connectivity
  • Secure Private Access
  • Thin Edge
  • Identity
  • Application Gateway
  • Enterprise Asset Management
  • Endpoint Agent
  • Agentless Security Posture
  • Identity
  • Wireless
  • Switching
  • Identity
  • Privilege Acccess Management
  • Next Generation Firewall
  • Orchestration & management
  • Expert Services
  • All
  • All
  • Account Management
  • SAAS Management
  • SAAS Application Security
  • Managed Services
  • Platform as a service (PAAS)
  • Other SAAS Services
    • 4D Resources
    Solution Hubs
  • 4D Pillars
  • Cloud
  • Popular Solutions

    • GCP Administration Guide

    Home FortiGate Public Cloud 7.4.0 GCP Administration Guide
    7.4.0
    7.6.0
    7.4.0
    7.2.0
    7.0.0
    6.4.0
    6.2.0

    Troubleshooting

    Troubleshooting

    Debugging cloud-init

    Retrieving the cloud-init log can be useful when issues are occurring at bootup. To retrieve the log, log in to the FortiGate-VM and type the following into the CLI:

    diag debug cloudinit show

    Output will look similar to the following:

    >> Checking metadata source gcp

    >> GCP processing json format user-data

    >> GCP trying to get config script from: https://us-central1-*********.cloudfunctions.net/fortigateautoscale-rnmlo

    >> GCP download config script successfully

    >> Run config script

    >> Finish running script

    >> FortiGate-VM64-GCPON~AND $ config system dns

    >> FortiGate-VM64-GCPON~AND (dns) $ unset primary

    >> FortiGate-VM64-GCPON~AND (dns) $ unset secondary

    >> FortiGate-VM64-GCPON~AND (dns) $ end

    >> FortiGate-VM64-GCPON~AND $ config system auto-scale

    >> FortiGate-VM64-GCPON~AND (auto-scale) $ set status enable

    >> FortiGate-VM64-GCPON~AND (auto-scale) $ set sync-interface "port1"

    >> FortiGate-VM64-GCPON~AND (auto-scale) $ set hb-interval 25

    >> FortiGate-VM64-GCPON~AND (auto-scale) $ set role slave

    >> FortiGate-VM64-GCPON~AND (auto-scale) $ set master-ip xxx.xxx.xxx.xxx

    >> FortiGate-VM64-GCPON~AND (auto-scale) $ set callback-url https://us-central1-************.cloudfunctions.net/fortigateautoscale-rnmlo

    >> FortiGate-VM64-GCPON~AND (auto-scale) $ set psksecret ****************

    >> FortiGate-VM64-GCPON~AND (auto-scale) $ end

    How to reset the elected primary FortiGate

    To reset the elected primary FortiGate, navigate to FireStore > FortiGateMasterElection and delete the only item. A new primary FortiGate is elected and a new record is created as a result.

    For details on locating FireStore > FortiGateMasterElection , see Verifying the deployment.

    Previous
    Next

    Troubleshooting

    Troubleshooting

    Debugging cloud-init

    Retrieving the cloud-init log can be useful when issues are occurring at bootup. To retrieve the log, log in to the FortiGate-VM and type the following into the CLI:

    diag debug cloudinit show

    Output will look similar to the following:

    >> Checking metadata source gcp

    >> GCP processing json format user-data

    >> GCP trying to get config script from: https://us-central1-*********.cloudfunctions.net/fortigateautoscale-rnmlo

    >> GCP download config script successfully

    >> Run config script

    >> Finish running script

    >> FortiGate-VM64-GCPON~AND $ config system dns

    >> FortiGate-VM64-GCPON~AND (dns) $ unset primary

    >> FortiGate-VM64-GCPON~AND (dns) $ unset secondary

    >> FortiGate-VM64-GCPON~AND (dns) $ end

    >> FortiGate-VM64-GCPON~AND $ config system auto-scale

    >> FortiGate-VM64-GCPON~AND (auto-scale) $ set status enable

    >> FortiGate-VM64-GCPON~AND (auto-scale) $ set sync-interface "port1"

    >> FortiGate-VM64-GCPON~AND (auto-scale) $ set hb-interval 25

    >> FortiGate-VM64-GCPON~AND (auto-scale) $ set role slave

    >> FortiGate-VM64-GCPON~AND (auto-scale) $ set master-ip xxx.xxx.xxx.xxx

    >> FortiGate-VM64-GCPON~AND (auto-scale) $ set callback-url https://us-central1-************.cloudfunctions.net/fortigateautoscale-rnmlo

    >> FortiGate-VM64-GCPON~AND (auto-scale) $ set psksecret ****************

    >> FortiGate-VM64-GCPON~AND (auto-scale) $ end

    How to reset the elected primary FortiGate

    To reset the elected primary FortiGate, navigate to FireStore > FortiGateMasterElection and delete the only item. A new primary FortiGate is elected and a new record is created as a result.

    For details on locating FireStore > FortiGateMasterElection , see Verifying the deployment.

    Previous
    Next