When an installation is performed from FortiManager, what is the recovery logic used between FortiManager and FortiGate for an FGFM tunnel?
When an installation is performed from FortiManager, what is the recovery logic used between FortiManager and FortiGate for an FGFM tunnel?
When an installation is performed from FortiManager, if the FGFM tunnel fails to reestablish, FortiGate has an automatic recovery mechanism that will unset the CLI commands related to the installation that caused the tunnel failure. This process occurs after a 15-minute delay to ensure the device can revert to a stable state if the tunnel remains down.
FortiManager 7.2 Diagnostics and Troubleshooting p.281 If the connection fails to reestablish, FortiGate applies the unset command after 15 minutes (not configurable and not based on sock timeout values). If the connection remains down, and rollback-allow-reboot is enabled on FortiManager, FortiGate reboots to recover the previous configuration from its configuration file.
A. Wrong. FortiGate applies the unset command after 15 minutes if the connection fails to reestablish. B. Wrong. If the connection fails, FortiManager tries to recover the FGFM tunnel by unsetting the command that caused the tunnel to go down. C. Wrong. If the connection fails, FortiManager tries to recover the FGFM tunnel by unsetting the command that caused the tunnel to go down. D. Correct.
D is the correct answer