Category Archives: Uncategorized

Fortinet three member cluster

Tonight I will be adding a third node to an existing Fortigate 3700D two node cluster.

Their information says it’s an easy job:

http://help.fortinet.com/fos50hlp/54/Content/FortiOS/fortigate-high-availability-52/HA_FGCP_more-than-two.htm

Usually all things Fortinet are as easy as they present, I’m cautiously hopeful this cutover will be also.

Well. Turns out they don’t react like a cluster because they aren’t clustered. All nodes as standalone.
Brilliant. Let’s verify:

node_1 (global) # get system ha status
Model: FortiGate-3700D
Mode: standalone
Group: 0
Debug: 0
ses_pickup: disable
number of vcluster: 0

Hmm… that mode doesn’t look right, on to number two

node_2 (global) # get system ha status
Model: FortiGate-3700D
Mode: standalone
Group: 0
Debug: 0
ses_pickup: disable
number of vcluster: 0

Yup. Not in a cluster. Back to the drawing board, as soon as I’m done drafting my findings and sending it in.
/me sighs

That feeling when your VM bites the dust…

and you don’t have a current backup.

Thankfully it was only a vSRX image as a test unit and not some super high impact virtual machine processing credit cards or anything. Let this be a warning to everyone who runs VMWare Fusion/Workstation/VirtualBox/etc., shut the machines down properly; as appliances they should gracefully recover, but there are NO GUARANTEES with VMs.

Now back to your regularly scheduled network outage.

Changes are coming . . .

I know there are no readers here, hopefully that will be what is changing. I’m going to start dropping tidbits of knowledge, funnies, and tips more frequently.

With a little luck, some skill, and help from this amazing community, this is about to take off.

Now, time to secure this thing, find a most excellent theme, and start tweaking.