Cluster Elastic IP Address (EIP) Movement:
During a failover in an active-passive (A-P) cluster, the Elastic IP (EIP) associated with the active
FortiGate instance (FGT-1) needs to be moved to the passive instance (FGT-2), which becomes the
new active instance. This ensures that the traffic directed to the EIP is now handled by FGT-2 (Option
A).
Secondary IP Address Movement:
The secondary IP address on Port2 of the current active instance (FGT-1) is moved to the same port
on the new active instance (FGT-2). This step is crucial to ensure seamless network traffic redirection
and connectivity for the services relying on that IP address (Option B).
Other Options Analysis:
Option C is incorrect because the static route modification mentioned is not directly related to the
failover process described.
Option D is incorrect because no additional route needs to be added to the HA Sync AZ2 subnet route
table to forward traffic to the Internet Gateway during a failover.
Reference:
FortiGate HA Configuration Guide: FortiGate HA
AWS Elastic IP Documentation: Elastic IP
What occurs during a failover for an active-passive (A-P) cluster that is deployed in two different
availability zones? (Choose two.)
What occurs during a failover for an active-passive (A-P) cluster that is deployed in two different
availability zones? (Choose two.)