Adding a new FortiGate to an operating cluster
This procedure describes how to add a new FortiGate to a functioning cluster. Adding a new unit to a cluster does not interrupt the operation of the cluster unless you have to change how the cluster is connected to the network to accommodate the new cluster unit.
You can use this procedure to add as many units as required to the cluster.
To add a new unit to a functioning cluster
- Install the same firmware build on the new cluster unit as is running on the cluster.
- Register and apply licenses to the new cluster unit. This includes FortiCloud activation and FortiClient licensing, and entering a license key if you purchased more than 10 Virtual Domains (VDOMS). All of the FortiGates in a cluster must have the same level of licensing.
- If you are planning on adding FortiToken licenses you can do that now and configure FortiTokens or you can wait until you have formed the cluster and then add the FortiToken licenses and tokens.
- Configure the new cluster unit for HA operation with the same HA configuration as the other units in the cluster.
- If the cluster is running in Transparent mode, change the operating mode of the new cluster unit to Transparent mode.
- Power off the new cluster unit.
- Connect the new cluster unit to the cluster.
- For example, see How to set up FGCP clustering (recommended steps).
- Power on the new cluster unit.
When the unit starts it negotiates to join the cluster. After it joins the cluster, the cluster synchronizes the new unit configuration with the configuration of the primary unit.
You can add a new unit to a functioning cluster at any time. For best results the new cluster unit should:
- Have the same hardware version as the cluster units.
- Have the same firmware build as the cluster.
- Be set to the same operating mode (NAT or Transparent) as the cluster.
- Be operating in single VDOM mode.