原先以為只要更改HA Config裡的priority參數,就可以切換Master/Slave,
(FortiGate Priority數值越高,優先權越高)
後來發現FortiGate-01 & FortiGate-02在設定HA參數時,都是設定Set override disable,
造成不會切換Master / Slave。
於FortiGate 3000-01及Fortigate 3000-02中修改Set override enable,
此時更換Proirity數值,即會自動切換Master / Slave。
Forti3000-1 # show system ha
config system ha
set group-id 1
set mode a-p
set hbdev "internal" 25 "port1" 50
set arps 3
set session-pickup enable
set override disable
set priority 150
set monitor "external" "internal" "port1" "port4/ha"
end
Forti3000-1 # config system ha
Forti3000-1 (ha) # set override enable
切換至FortiGate 3000-02的方法
Forti3000-1 # execute ha manage
<0> Subsidary unit FG30002C05400127
