The upgrade page for Release 4.3.0 and later includes an option to upgrade the firmware on all nodes in an HA cluster from the primary node.
The following chain of events occurs when you use this option:
- The primary node pushes the firmware image to the member nodes.
- The primary node notifies the member nodes of the upgrade, and takes on their user traffic during the upgrade.
- The upgrade command is run on the member nodes, the systems are rebooted, and the member nodes send the primary node an acknowledgment that the upgrade has been completed.
- The upgrade command is run on the primary node, and it reboots. While the primary node is rebooting, a member node assumes the primary node status, and traffic fails over from the former primary node to the new primary node.
After the upgrade process is completed, the system determines whether the original node becomes the primary node, according to the HA Override settings:
- If Override is enabled, the cluster considers the Device Priority setting. Both nodes usually make a second failover in order to resume their original roles.
- If Override is disabled, the cluster considers the uptime first. The original primary node will have a smaller uptime due to the order of reboots during the firmware upgrade. Therefore, it will not resume its active role. Instead, the node with the greatest uptime will remain the new primary node. A second failover will not occur.
Before you begin, do the following:
- Make sure that you have super user permission (user admin) on the appliance whose firmware you want to upgrade.
- Download the firmware file from the Fortinet Customer Service & Support website: https://support.fortinet.com/
- Back up your configuration before beginning this procedure. Reverting to an earlier version of the firmware could reset the settings that are not compatible with the new firmware.
- Verify that the cluster node members are powered on and available on all of the network interfaces that you have configured. (Note: If required ports are not available, HA port monitoring could inadvertently trigger an additional failover, resulting in traffic interruption during the firmware update.)
- You upgrade the alternate partition. Decide which partition you want to upgrade. If necessary, click Boot Alternate Firmware to change the active/alternate partitions.
- Log into the Web UI of the primary node as the admin administrator.
- Go to System > Settings.
- Click the Maintenance tab.
- Scroll to the Upgrade section.
- Click Browse to locate and select the file.
- Enable the HA Sync option.
- Click to upload the firmware and start the upgrade process.
- Wait for the system to reboot and log you out to complete the upgrade.
- Clear the cache of your Web browser and restart it to ensure that it reloads the web UI and correctly displays all interface changes.
Note: Normally, it takes approximately up to 10 minutes to upgrade with HA Sync.