[Fortinet-Fortigate] fortigate Raid Rebuild
– Raid-Rebuild 진행 순서 –
1. diagnose test 진행 후 hardware 이상이 없을 시
Raid-Rebuild 및 Raid 구성 진행
2. Raid-Rebuild 는 Degraded 의 경우 Status : Degraded 인 상태로
Background-Rebuilding 으로 작업 진행
3. 신규로 Raid 구성 시 Hard-Disk 가 Format 이 되고, 장비의 Reboot 이후
Status : OK 인 상태로 Background-Synchronizing 으로 진행
1. diagnose test (hqip) 진행 후 hardware 이상이 없을 시
Raid-Rebuild 및 Raid 구성 진행
-. HQIP
FGT1KC0000000000 #
FGT1KC0000000000 # execute reboot
This operation will reboot the system !
Do you want to continue? (y/n)y
The system is going down NOW !!
System is rebooting…
FGT1KC0000000000 #
Please stand by while rebooting the system.
Restarting system.
FortiGate-1000C (18:29-01.20.2012)
Ver:04000024
Serial number:FGT1KC0000000000
RAM activation
CPU(00:00000000 abcdefgh): MP initialization
CPU(02:00000000 abcdefgh): MP initialization
CPU(04:00000000 abcdefgh): MP initialization
CPU(06:00000000 abcdefgh): MP initialization
Total RAM: 8192MB
Enabling cache…Done.
Scanning PCI bus…Done.
Allocating PCI resources…Done.
Enabling PCI resources…Done.
Zeroing IRQ settings…Done.
Verifying PIRQ tables…Done.
Boot up, boot device capacity: 7638MB.
Press any key to display configuration menu…
…
[G]: Get firmware image from TFTP server.
[F]: Format boot device.
[B]: Boot with backup firmware and set as default.
[I]: Configuration and information.
[Q]: Quit menu and continue to boot with default firmware.
[H]: Display this list of options.
Enter Selection [G]:
Enter G,F,B,I,Q,or H:
Please connect TFTP server to Ethernet port “MGMT1”.
Enter TFTP server address [192.168.1.168]: 1.1.1.10
Enter local address [192.168.1.188]: 1.1.1.1
Enter firmware image file name [image.out]: FGT_1000C-HQIP.2.3.2.2321.OUT
MAC:000000000000
############################
Total 29555299 bytes data downloaded.
Verifying the integrity of the firmware image.
Total 262144kB unzipped.
Save as Default firmware/Backup firmware/Run image without saving:[D/B/R]?r
………………………………………………………………………………………………………………………………………………………………………………………………………………………………….
Reading boot image 2189128 bytes.
Initializing firewall…
System is started.
FORTITEST/FGT1KC0000000000 login: admin
Password:
Test program loading(HQIP, Build2321,Jul 18 2012 16:17:40) …
Engine Version: v1.0 Build 2321. Jul 18 2012 16:17:10
You are running HQIP test program. To start testing, login as “admin” without password, and type:
diagnose hqip start
Welcome !
FORTITEST/FGT1KC0000000000 #
FORTITEST/FGT1KC0000000000 #
FORTITEST/FGT1KC0000000000 #
FORTITEST/FGT1KC0000000000 #
FORTITEST/FGT1KC0000000000 # diagnose hqip start
HQIP mode is: all
Fortinet Hardware Quick Inspection
Instructions:
– Wire the network ports as following for NIC loopback test.
[MGMT1 – MGMT2] [WAN1 – WAN2] [PORT1 – PORT2] [PORT3 – PORT4] … [PORT23 – PORT24]
– Install USB Key (if any) to the USB ports.
Press any key to continue …
Test Begin at UTC Time Thu Jun 15 07:37:50 2017
==> BIOS Integrity Check
….
….
….
Total 1 NP4 devices tested, 0 failed
<== NPU DDR Memory Test – PASS
==> NMI Button Test
Instruction: Press NMI button. Test will automatically pass. If button is not respond, press ENTER.
<== NMI Button Test – PASS
==> LED Test
Instruction: For each of the following LED tests, please press SPACEBAR for PASS, or ENTER for FAILURE.
Please press SPACEBAR to begin…
1. [STATUS – GREEN] [ALARM – AMBER] [HA – GREEN] [FAIL OPEN – GREEN] PASS
2. [STATUS – RED] [ALARM – RED] [HA – RED] [FAIL OPEN – RED] PASS
3. [STATUS – OFF] [ALARM – OFF] [HA – OFF] [FAIL OPEN – GREEN] PASS
4. [NIC LINK/ACT – GREEN] [NIC SPEED – ON] Share Port Copper PASS
5. [NIC LINK/ACT – GREEN] [NIC SPEED – ON] Share Port Fiber PASS
<== LED Test – PASS
Test End at UTC Time Thu Jun 15 07:47:23 2017
Elapsed Time: 573 Seconds(9m33s).
========================= Fortinet Hardware Quick Inspection Report =========================
BIOS Integrity Check: PASS
System Configuration Check: PASS
Memory Test: PASS
CPU Test: PASS
CPU/Memory Performance Test: PASS
FortiASIC Test: PASS (1 ASICs)
USB Test: N/A (0 USB Devices)
Boot Device Test: PASS
Hard Disk Test: PASS (2 Hard Disks)
Network Interface Controller Test: fail X ————————— The network interface was tested without a cable connection.
Network Interface Controller Second Round Test: fail X —- ”
NPU DDR Memory Test: PASS (1 NPU Devices)
NMI Button Test: PASS
LED Test: PASS
========================= Fortinet Hardware Quick Inspection <xxx FAILED xxx> ========================
FORTITEST/FGT1KC0000000000 #
FORTITEST/FGT1KC0000000000 #
2. Raid-Rebuild 는 Degraded 의 경우 Status : Degraded 인 상태로
Background-Rebuilding 으로 작업 진행
FGT1KC0000000000 #
FGT1KC0000000000 # execute disk raid status
RAID Level: Raid-1
RAID Status: Degraded
RAID Size: 60GB
Disk 1: OK Not-Used 60GB
Disk 2: OK Used 60GB
FGT1KC0000000000 #
FGT1KC0000000000 #
FGT1KC0000000000 # execute disk raid rebuild
<Enter>
FGT1KC0000000000 # execute disk raid rebuild
Rebuild started.
FGT1KC0000000000 # execute disk raid status
RAID Level: Raid-1
RAID Status: Degraded (Background-Rebuilding) (4%)
RAID Size: 60GB
Disk 1: OK Used 60GB
Disk 2: OK Used 60GB
FGT1KC0000000000 #
FGT1KC0000000000 #
….
….
….
FGT1KC0000000000 # execute disk raid status
RAID Level: Raid-1
RAID Status: Degraded (Background-Rebuilding) (73%)
RAID Size: 60GB
Disk 1: OK Used 60GB
Disk 2: OK Used 60GB
….
….
….
FGT1KC0000000000 #
FGT1KC0000000000 # execute disk raid status
RAID Level: Raid-1
RAID Status: OK
RAID Size: 60GB
Disk 1: OK Used 60GB
Disk 2: OK Used 60GB
FGT1KC0000000000 #
* No reboot required
3. 신규로 Raid 구성 시 Hard-Disk 가 Format 이 되고, 장비의 Reboot 이후
Status : OK 인 상태로 Background-Synchronizing 으로 진행
FGT1KC0000000000 #
FGT1KC0000000000 # execute reboot
This operation will reboot the system !
Do you want to continue? (y/n)y
The system is going down NOW !!
System is rebooting…
FGT1KC0000000000 #
Please stand by while rebooting the system.
Restarting system.
FortiGate-1000C (18:29-01.20.2012)
Ver:04000024
Serial number:FGT1KC0000000000
RAM activation
CPU(00:00000000 abcdefgh): MP initialization
CPU(02:00000000 abcdefgh): MP initialization
CPU(04:00000000 abcdefgh): MP initialization
CPU(06:00000000 abcdefgh): MP initialization
Total RAM: 8192MB
Enabling cache…Done.
Scanning PCI bus…Done.
Allocating PCI resources…Done.
Enabling PCI resources…Done.
Zeroing IRQ settings…Done.
Verifying PIRQ tables…Done.
Boot up, boot device capacity: 7638MB.
Press any key to display configuration menu…
..
[G]: Get firmware image from TFTP server.
[F]: Format boot device.
[B]: Boot with backup firmware and set as default.
[I]: Configuration and information.
[Q]: Quit menu and continue to boot with default firmware.
[H]: Display this list of options.
Enter Selection [G]:
Enter G,F,B,I,Q,or H:
All data will be erased,continue:[Y/N]?
Formatting boot device…
…………………………
Format boot device completed.
Enter G,F,B,I,Q,or H:
Please connect TFTP server to Ethernet port “MGMT1”.
Enter TFTP server address [192.168.1.168]: 1.1.1.10
Enter local address [192.168.1.188]: 1.1.1.1
Enter firmware image file name [image.out]: FGT_1000C-v5-build0736-FORTINET.out ———-> New firmware.
MAC:000000000000
#####################################
Total 39652844 bytes data downloaded.
Verifying the integrity of the firmware image.
Total 262144kB unzipped.
Save as Default firmware/Backup firmware/Run image without saving:[D/B/R]?d
Programming the boot device now.
………………………………………………………………………………………………………………………………………………………………………………………………………………………………….
Reading boot image 1428707 bytes.
Initializing firewall…
System is starting…
Starting system maintenance…
Scanning /dev/sdc1… (100%)
Formatting shared data partition … done!
FGT1KC0000000000 login:
FGT1KC0000000000 login: admin
Password:
Welcome !
FGT1KC0000000000 #
FGT1KC0000000000 #
FGT1KC0000000000 #
FGT1KC0000000000 #
FGT1KC0000000000 # get sys status
Version: FortiGate-1000C v5.2.9,build0736,160906 (GA)
Virus-DB: 16.00560(2012-10-19 08:31)
Extended DB: 1.00000(2012-10-17 15:46)
Extreme DB: 1.00000(2012-10-17 15:47)
IPS-DB: 5.00555(2014-10-07 01:21)
IPS-ETDB: 0.00000(2001-01-01 00:00)
Serial-Number: FGT1KC0000000000
Botnet DB: 1.00000(2012-05-28 22:51)
BIOS version: 04000024
System Part-Number: P08904-04
Log hard disk: Need format
Hostname: FGT1KC0000000000
Operation Mode: NAT
Current virtual domain: root
Max number of virtual domains: 10
Virtual domains status: 1 in NAT mode, 0 in TP mode
Virtual domain configuration: disable
FIPS-CC mode: disable
Current HA mode: standalone
Branch point: 736
Release Version Information: GA
FortiOS x86-64: Yes
System time: Wed Jun 14 23:54:51 2017
FGT1KC0000000000 #
FGT1KC0000000000 #
FGT1KC0000000000 #
FGT1KC0000000000 #
FGT1KC0000000000 # execute disk list
Disk HDD1 ref: 255 55.9GB type: SSD [ATA ABCDEFG00000-000] dev: /dev/sda
Disk HDD2 ref: 16 55.9GB type: SSD [ATA ABCDEFG00001-000] dev: /dev/sdb
FGT1KC0000000000 #
FGT1KC0000000000 #
FGT1KC0000000000 #
FGT1KC0000000000 # execute disk raid status
RAID Level: Unavailable
RAID Status: Unavailable
RAID Size: 0GB
Disk 1: OK Not-Used 60GB
Disk 2: OK Not-Used 60GB
FGT1KC0000000000 #
FGT1KC0000000000 #
FGT1KC0000000000 # execute disk raid enable
<RAID level> supported: Raid-0, Raid-1 (default: Raid-0)
FGT1KC0000000000 # execute disk raid enable Raid-1
<Enter>
FGT1KC0000000000 # execute disk raid enable Raid-1
This will erase all data on the log disk, and system will reboot!
Do you want to continue? (y/n)y
Raid-1 created with 2 disks.
Performing format on the requested disk(s) and rebooting, please wait…
FGT1KC0000000000 # Formatting the disk…
– unmounting /data2 : ok
Formatting /dev/md0 label abcdefg000000000 … done
The system is going down NOW !!
Please stand by while rebooting the system.
Restarting system.
FortiGate-1000C (18:29-01.20.2012)
Ver:04000024
Serial number:FGT1KC0000000000
RAM activation
CPU(00:00000000 abcdefgh): MP initialization
CPU(02:00000000 abcdefgh): MP initialization
CPU(04:00000000 abcdefgh): MP initialization
CPU(06:00000000 abcdefgh): MP initialization
Total RAM: 8192MB
Enabling cache…Done.
Scanning PCI bus…Done.
Allocating PCI resources…Done.
Enabling PCI resources…Done.
Zeroing IRQ settings…Done.
Verifying PIRQ tables…Done.
Boot up, boot device capacity: 7638MB.
Press any key to display configuration menu…
……
Reading boot image 1428707 bytes.
Initializing firewall…
System is starting…
FGT1KC0000000000 login:
FGT1KC0000000000 login: admin
Password:
Welcome !
FGT1KC0000000000 #
FGT1KC0000000000 #
FGT1KC0000000000 #
FGT1KC0000000000 #
FGT1KC0000000000 #
FGT1KC0000000000 # execute disk list
Disk RAID ref: 255 55.0GB, 54.8GB free type: RAID [RAID level 1] dev: /dev/md0
Disk HDD1 ref: 256 55.9GB type: SSD [ATA ABCDEFG00000-000] dev: /dev/sda
Disk HDD2 ref: 16 55.9GB type: SSD [ATA ABCDEFG00001-000] dev: /dev/sdb
FGT1KC0000000000 #
FGT1KC0000000000 #
FGT1KC0000000000 #
FGT1KC0000000000 # execute disk raid status
RAID Level: Raid-1
RAID Status: OK (Background-Synchronizing) (18%)
RAID Size: 60GB
Disk 1: OK Used 60GB
Disk 2: OK Used 60GB
FGT1KC0000000000 #
FGT1KC0000000000 #
….
….
….
FGT1KC0000000000 # execute disk raid status
RAID Level: Raid-1
RAID Status: OK (Background-Synchronizing) (59%)
RAID Size: 60GB
Disk 1: OK Used 60GB
Disk 2: OK Used 60GB
….
….
….
FGT1KC0000000000 # execute disk raid status
RAID Level: Raid-1
RAID Status: OK
RAID Size: 60GB
Disk 1: OK Used 60GB
Disk 2: OK Used 60GB
FGT1KC0000000000 # execute disk raid status
RAID Level: Raid-1
RAID Status: OK
RAID Size: 60GB
Disk 1: OK Used 60GB
Disk 2: OK Used 60GB
FGT1KC0000000000 #
FGT1KC0000000000 #
FGT1KC0000000000 # get sys status
Version: FortiGate-1000C v5.2.9,build0736,160906 (GA)
Virus-DB: 16.00560(2012-10-19 08:31)
Extended DB: 1.00000(2012-10-17 15:46)
Extreme DB: 1.00000(2012-10-17 15:47)
IPS-DB: 5.00555(2014-10-07 01:21)
IPS-ETDB: 0.00000(2001-01-01 00:00)
Serial-Number: FGT1KC0000000000
Botnet DB: 1.00000(2012-05-28 22:51)
BIOS version: 04000024
System Part-Number: P08904-04
Log hard disk: Available
Hostname: FGT1KC0000000000
Operation Mode: NAT
Current virtual domain: root
Max number of virtual domains: 10
Virtual domains status: 1 in NAT mode, 0 in TP mode
Virtual domain configuration: disable
FIPS-CC mode: disable
Current HA mode: standalone
Branch point: 736
Release Version Information: GA
FortiOS x86-64: Yes
System time: Thu Jun 15 00:12:26 2017
FGT1KC0000000000 #
FGT1KC0000000000 #
** Recommended OS-version: v5.6.8, v6.0.5, v6.2.0 (20190805) **
