What can the administrator do to fix this problem?

An administrator has configured two fortiGate devices for an HA cluster. While testing HA failover, the administrator notices that some of the switches in the network continue to send traffic to the former primary device

What can the administrator do to fix this problem?
A . Verify that the speed and duplex settings match between me FortiGate interfaces and the connected switch ports
B . Configure set link -failed signal enable under-config system ha on both Cluster members
C . Configure remote Iink monitoring to detect an issue in the forwarding path
D . Configure set send-garp-on-failover enables under config system ha on both cluster members

Answer: D

Explanation:

When an HA failover occurs, it’s important that all connected devices recognize the new primary device to ensure traffic flows to the correct unit. To address this issue, the administrator should:

Configure set send-garp-on-failover enable under config system ha on both cluster members.

This setting will make the new primary FortiGate send Gratuitous ARP (GARP) packets upon failover, which helps to update the MAC address tables in the network switches immediately, thereby directing traffic to the new primary device.

Subscribe
Notify of
guest
0 Comments
Inline Feedbacks
View all comments