config load-balance setting
FortiGate-7000 Load balancing commands
max-miss-heartbeats <heartbeats>
Set the number of missed heartbeats before a worker is considered to have failed. If this many heartbeats are not
received from a worker, this indicates that the worker is not able to process data traffic and no more traffic will be
sent to this worker.
The time between heartbeats is 0.2 seconds. Range is 3 to 300. 3 means 0.6 seconds, 10 (the default) means 2
seconds, and 300 means 60 seconds.
max-miss-mgmt-heartbeats <heartbeats>
Set the number of missed management heartbeats before a worker is considering to have failed. If a
management heartbeat fails, there is a communication problem between a worker and other workers. This
communication problem means the worker may not be able to synchronize configuration changes, sessions, the
kernel routing table, the bridge table and so on with other workers. If a management heartbeat failure occurs, no
traffic will be sent to the worker.
The time between management heartbeats is 1 second. Range is 3 to 300 seconds. The default is 20 seconds.
weighted-load-balance {disable | enable}
Enable weighted load balancing depending on the slot weight. Use the config slot command to set the weight for
each slot.
dp-load-distribution-method {round-robin | src-ip | dst-ip | src-dst-ip | src-ip-sport | dst-ip-
dport | src-dst-ip-sport-dport}
Set the method used to distribute sessions among workers. Usually you would only need to change the method if
you had specific requirements or you found that the default method wasn’t distributing sessions in the manner
that you would prefer. The default is src-dst-ip-sport-dport which means sessions are identified by their source
address and port and destination address and port.
round-robin
Directs new requests to the next slot regardless of response time or number of connections.
src-ip
traffic load is distributed across all slots according to source IP address.
dst-ip
traffic load is statically distributed across all slots according to destination IP address.
src-dst-ip
traffic load is distributed across all slots according to the source and destination IP addresses.
src-ip-sport
traffic load is distributed across all slots according to the source IP address and source port.
dst-ip-dport
traffic load is distributed across all slots according to the destination IP address and destination
port.
src-dst-ipsport-dport
traffic load is distributed across all slots according to the source and destination IP
address, source port, and destination port. This is the default load balance schedule and represents true session-
aware load balancing.
config workers
Set the weight and enable or disable each worker. Use the edit command to specify the slot the worker is installed
in. You can enable or disable each worker and set each worker's weight.
85
FortiGate-7000
Fortinet Technologies Inc.