cluster base config enable

By default, this function is disabled, and the FW starts with configurations in the configuration file.

Application Scenarios

In cluster deployment, if one FW restarts, the other FW takes over all services during the restart. In this period, the service processing FW may have configurations added, deleted, or modified. If you require the FW automatically synchronize configurations from the service processing FW after its restart, run the cluster base config enable command so that the FW starts only with basic cluster configurations and synchronizes other service configurations from the service processing FW.

Configuration Impact

Only configurations that can be backed up, such as security policies and NAT policies can be automatically synchronized. Configurations that cannot be backed up remain as earlier and are used as basic configurations for the initial startup.

Basic configurations include cluster related configurations, IP address configurations of the interface, and configurations of adding the interface to the security zone.

Precautions

Ensure that the cluster base config enable command is configured on every cluster member. If the command is configured only on one FW, the cluster configuration backup function does not work.

Configurations synchronized by the FW from the peer device are not automatically saved to the configuration file. After the synchronization completes, run the save command to save the configurations.

If the cluster status is abnormal and the configuration cannot be restored, you can restore the configuration from the local device two hours later.

In a scenario where the management backup device backs up the configuration from the management master device, if the management master device is faulty and offline, the management backup device restores the configuration from the local device 10 minutes later.