Refer to the exhibit. The image displays the configuration of a FortiAnalyzer the administrator wants to join to an existing HA cluster. What can you conclude from the configuration displayed?
A.
This FortiAnalyzer will join to the existing HA cluster as the primary.
B.
This FortiAnalyzer is configured to receive logs in its port1.
C.
This FortiAnalyzer will trigger a failover after losing communication with its peers for 10 seconds.
D.
After joining to the cluster, this FortiAnalyzer will keep an updated log database.
The answer that best fits is still B. Even though port1 is only for redundancy and is not mandatory in the case of using active-active, the image does not show which mode is being used.
Since log synchronization is disabled, the timeout is set to 30, and even though it has the preference rule for primary, the question specifies that it is joining an existing HA cluster, so initially it will join this cluster as secondary.
A. This FortiAnalyzer will join to the existing HA cluster as the primary. *NO, because a primary already exists, although the priority is high, the primary must fail for failover to occur.*
B. This FortiAnalyzer is configured to receive logs in its port1. *NO, logs are not received based on a port, in addition this port and IP is for redundancy communication*
C. This FortiAnalyzer will trigger a failover after losing communication with its peers for 10 seconds. *NO, because the value for failover should be 30 seconds since "heart beat interval" is multiplied by failover threshold*
D. *After joining to the cluster, this FortiAnalyzer will keep an updated log database.* SI, Synchronizes logs and data securely among multiple FortiAnalyzer devices. System and configuration settings applicable to HA are also synchronized. ANSWER CORRECT A
I'm sorry, the correct answer is B not A
B: In the Cluster Virtual IP section, you need to select the interface, and type the IP address for which the FortiAnalyzer device is to provide redundancy. Once the cluster is up, the devices sending their logs must point to this IP
The correct answer is D --> After joining to the cluster, this FortiAnalyzer will keep an updated log database.
https://docs.fortinet.com/document/fortianalyzer/6.4.10/administration-guide/275104/configuring-ha-options
Log Data Sync: This option is on by default. It provides real-time log synchronization among cluster members.
logical answer is C
Study Guide P. 62 " By default, the only parameter checked to trigger an automatic failover is the network reachability among cluster members."
Notice the subnet configured on FAZ and Peer Subnet is different, which means there will be reachability issue with cluster members, which may trigger failover
Not really, as stated on page 61:
As shown on the previous slide, these IP addresses (referring to Peer IP) don’t have to be on the same subnet as the cluster virtual IP.
And regarding to answer B, virtual IP:
"This is the IP that other devices need to point to send their logs once the cluster is up."
The heartbeat is 10 seconds and the threshold is 3. It doesn’t failover for another 20 seconds. ‘The answer is B.
Study Guide Pg. 61
In the Cluster Virtual IP section, you need to select the interface, and type the IP address for which the FortiAnlayzer devices to provide redundancy. This is the IP that other devices need to point to send their logs once the cluster is IP.
Other devices send logs to the cluster IP, so the Cluster Virtual IP receives logs, as the question is asking.
B is correct... A is wrong, it's configured to be *preferred* primary but that does not mean it'll be operational primary to an existing cluster (i.e. it will not preempt).
Furthermore: Fortianalyzer study guide 7.0: page 61:
In the Cluster Virtual IP section, you need to select the interface and type the IP address for which the FAZ device is to provide redundancy. This is the IP that other devices need to point to send their logs once the cluster is up.
I think is B.
If the preferred role is Primary, then this unit becomes the primary unit if it is configured first in a new HA cluster. If there is an existing primary unit, then this unit becomes a secondary unit.
Answer is A
B. Port 1 is the interface the FortiAnalyzer HA unit uses to provide redundancy, not receive logs
C. Failover Threshold is the one that does that. The number of heartbeat intervals that one of the cluster units waits to receive HA heartbeat packets from other cluster units before assuming that the other cluster units have failed. The default failover threshold is 3.
D. Log Data Sync is not checked
A. Preferred Role is selected primary, Priority is set to the highest priority possible (120).
Ref : https://docs.fortinet.com/document/fortianalyzer/6.4.10/administration-guide/275104/configuring-ha-options
A: is wrong. The unit joins an existing cluster and therefore no election will take place.
The unit will join as secondary even it is configured as primary. Here the statement from the admin guide:
"If the preferred role is Primary, then this unit becomes the primary unit if it is configured first in a new HA cluster. If there is an existing primary unit, then this unit becomes a secondary unit." (https://docs.fortinet.com/document/fortianalyzer/7.0.5/administration-guide/275104)
A voting comment increases the vote count for the chosen answer by one.
Upvoting a comment with a selected answer will also increase the vote count towards that answer by one.
So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.
D10SJoker
Highly Voted 2 years, 5 months agocr4zyluiz
Most Recent 9 months, 2 weeks agoGeorgeheich
1 year agoGeorgeheich
1 year agoMaxTalin
1 year, 4 months agoMaxTalin
1 year, 4 months agoMickder
1 year, 10 months agojayessarre
2 years, 3 months agoFikachew
2 years, 3 months agojayessarre
2 years, 3 months agokhanwoo
2 years, 3 months agoCertificateStudyingGuy
2 years, 3 months agocertmeupnow
2 years, 4 months agoRonnie89
2 years, 5 months agoRonnie89
2 years, 5 months agoD10SJoker
2 years, 5 months agopmorin
2 years, 5 months agowhatz
2 years, 4 months ago