Fortinet white logo
Fortinet docs logo DOCUMENT LIBRARY
Fortinet white logo
Fortinet docs logo DOCUMENT LIBRARY
Products Best Practices Hardware Guides Products A-Z
Summary
By Solution
By 4D Pillars
By Cloud
Secure Networking
Unified SASE
Security Operations
Secure SD-WAN
Secure Access Service Edge (SASE)
ZTNA
LAN Edge
Identity and Access Management
Next Generation Firewall
Public Cloud
Private Cloud
FortiCloud
Secure Networking
  • Hybrid Mesh Firewall
  • NOC Management
  • LAN
  • WAN
    • More >>
    Unified SASE
  • Single Vendor SASE
  • Cloud Network Security
  • Secure Endpoint Connectivity
  • Web Application / API Protection
    • More >>
    Security Operations
  • Security Operations Automation
  • Identity
  • Early Detection & Prevention
    • More >>
    Secure Networking
  • Hybrid Mesh Firewall
  • NOC Management
  • LAN
  • WAN
  • Communication & Surveillance
    • Unified SASE
  • Single Vendor SASE
  • Secure Endpoint Connectivity
  • Cloud Network Security
  • Cloud-Native Security
  • Web Application / API Protection
    • Security Operations
  • Security Operations Automation
  • Endpoint
  • Data Protection
  • Identity
  • Email
  • Early Detection & Prevention
  • Expert Services
  • Edge Firewall
  • Orchestration & management
  • SD Branch
  • Application Delivery
  • Single Vendor SASE
  • Secure Endpoint Connectivity
  • Secure Private Access
  • Thin Edge
  • Identity
  • Application Gateway
  • Enterprise Asset Management
  • Endpoint Agent
  • Agentless Security Posture
  • Identity
  • Wireless
  • Switching
  • Identity
  • Privilege Acccess Management
  • Next Generation Firewall
  • Orchestration & management
  • Expert Services
  • All
  • All
  • Account Management
  • SAAS Management
  • SAAS Application Security
  • Managed Services
  • Platform as a service (PAAS)
  • Other SAAS Services
    • 4D Resources
    Solution Hubs
  • 4D Pillars
  • Cloud
  • Popular Solutions

    • User Guide

    Home FortiAppSec Cloud User Guide

    FortiADC Integration with One-Click GSLB

    FortiADC Integration with One-Click GSLB

    Perform the following steps to configure GSLB. This section is split into two parts:

    New customers

    Follow the steps to set up GSLB for the first time.

    Link the FortiADC to GSLB
    Caution

    The FortiADC device must be registered. Check this under FortiADC > System > FortiGuard > Support Contract > Registration.
    1. Log into FortiADC.
    2. Navigate to Security Fabric > Fabric Connectors > GSLB) Click edit on the far right. Here you will connect FortiADC to GSLB.
    3. Configure basic settings.
      1. Set status to on - on/off (enable/disable GSLB service)
      2. Set the interval to the default (15) - How often the FortiADC will attempt to connect to the One-Click Cloud Server.
      3. Set the Cloud Server URL to the default (https://1click.fortigslb.com) - URL of the One-Click Cloud Server.
    4. Click Save.
      Caution

      Ensure the Cloud Status on the top is green. Green means the connection has succeeded, whereas red indicates failure. The Assigned DNS Server shows the DNS server address. "Not assigned" means the DNS Server is not assigned.

      If it is red, moving the cursor onto it will result in an error message showing up.

      There may be some lag time. Refresh if necessary.

    5. In a second browser tab/window, log into FortiAppSec Cloud, and navigate to GSLB. Refresh the page to check if your organization now appears on the Management Console dashboard. The default organization is labeled 'Default.' For details on the current dashboard, refer to the Overview section.
    6. Return to FortiADC > root > Server Load Balance > Virtual Server. Create a virtual server with GSLB enabled and set the Host/Domain name. Go to General and enable the One Click GSLB Server. This will reveal the Host Name and Domain Name.
    7. After you save, the virtual server's information will show in WAF > System > Settings > GSLB (or WAF > Security Fabric > Fabric Connectors > GSLB for FortiADC releases 6.0 and above). Your virtual servers should show up at the bottom under Virtual Server. If configured correctly, the FortiADC will send the IP addresses, host name and domain name to GSLB, which will then load-balance with these virtual servers.
      Note

      If over 50 virtual servers have enabled GSLB, we recommend using at least 30 seconds as GSLB's interval.

    View virtual servers in GSLB
    1. Go to GSLB and click into individual organization. In this example we are selecting the default organization, "default". We will see the virtual servers in GSLB.
    2. In the individual organization, go to Fabric Connectors. The name is the FortiADC serial number. The type is FortiADC. The data center is the default or the first data center you already configured in Cloud. Click edit and you will see your virtual servers. Note: The load balancing may take a little while to start when the "green" is lit in the FortiADC.
    3. In Profiles > Pool you will see the automatically generated virtual server pools that the Cloud has done for you. Click edit on the far right to see the IP addresses of the virtual servers. They are pooled according to your PREFERRED method. See the Virtual Server Pool section for more information.

    Returning customers

    This section assumes that you have already enabled GSLB and know how to create new virtual servers with GSLB enabled.

    To add more virtual servers into GSLB and support certain services:

    1. Go to FortiADC > Server Load Balance > Virtual Server > edit Virtual Server > General > Enable One Click GSLB Server and enter Host/Domain Name.
    2. After you save, all the virtual servers that enabled GSLB will show up in the list.

    Further steps for modifications:

    If you want to modify FQDN host/domain name or disable Virtual Server GSLB function, there are two ways.

    Method 1

    Go to GSLB to edit the virtual server that has already enabled GSLB.

    From GSLB 2.0.0, FortiADC supports editing the virtual server directly inside the FortiADC GSLB module.

    You can edit the Virtual Server and modify One Click GSLB-related parameters. To do so, disable One Click GSLB server. The virtual server will disappear from GSLB list afterwards.

    Method 2

    Go to FortiADC > Server Load Balance > Virtual Server > edit Virtual Server > General. You can modify the FQDN host/domain name or disable Virtual Server GSLB function here.

    How to transform FortiADC GSLB to FortiAppSec Cloud GSLB

    Object type

    FortiADC location

    FortiAppSec Cloud location
    Data Center

    Global Load Balance > Global Object > Data Center

    GSLB > Virtual Server > Data Center
    Server

    Global Load Balance > Global Object > Server

    GSLB > Virtual Server > Fabric Connectors
    Location

    Global Load Balance > FQDN Settings > Location List

    GSLB > Service > Location
    Virtual Server Pool

    Global Load Balance > FQDN Settings > Virtual Server Pool

    GSLB > Service > Virtual Server Pool
    FQDN

    Global Load Balance > FQDN Settings > Host

    GSLB > Service > FQDN

    Zone

    Global Load Balance > Zone Tools > Zone

    GSLB > DNS
    Health Check

    Shared Resources > Health Check > Health Check

    GSLB > Health Check

    Add FQDN with FortiADC

    Perform the following steps to add an FQDN with FortiADC.

    1. Create FQDN in GSLB services.
    2. Create FQDN member and create new Virtual Server Pool. Then choose the virtual server from FortiADC into Pool. The virtual server from FortiADC will now work in GSLB services.
    3. FortiADC virtual servers are synced with the Cloud, so please make sure to select the correct virtual server when adding it to the Pool
    Previous
    Next

    FortiADC Integration with One-Click GSLB

    FortiADC Integration with One-Click GSLB

    Perform the following steps to configure GSLB. This section is split into two parts:

    New customers

    Follow the steps to set up GSLB for the first time.

    Link the FortiADC to GSLB
    Caution

    The FortiADC device must be registered. Check this under FortiADC > System > FortiGuard > Support Contract > Registration.
    1. Log into FortiADC.
    2. Navigate to Security Fabric > Fabric Connectors > GSLB) Click edit on the far right. Here you will connect FortiADC to GSLB.
    3. Configure basic settings.
      1. Set status to on - on/off (enable/disable GSLB service)
      2. Set the interval to the default (15) - How often the FortiADC will attempt to connect to the One-Click Cloud Server.
      3. Set the Cloud Server URL to the default (https://1click.fortigslb.com) - URL of the One-Click Cloud Server.
    4. Click Save.
      Caution

      Ensure the Cloud Status on the top is green. Green means the connection has succeeded, whereas red indicates failure. The Assigned DNS Server shows the DNS server address. "Not assigned" means the DNS Server is not assigned.

      If it is red, moving the cursor onto it will result in an error message showing up.

      There may be some lag time. Refresh if necessary.

    5. In a second browser tab/window, log into FortiAppSec Cloud, and navigate to GSLB. Refresh the page to check if your organization now appears on the Management Console dashboard. The default organization is labeled 'Default.' For details on the current dashboard, refer to the Overview section.
    6. Return to FortiADC > root > Server Load Balance > Virtual Server. Create a virtual server with GSLB enabled and set the Host/Domain name. Go to General and enable the One Click GSLB Server. This will reveal the Host Name and Domain Name.
    7. After you save, the virtual server's information will show in WAF > System > Settings > GSLB (or WAF > Security Fabric > Fabric Connectors > GSLB for FortiADC releases 6.0 and above). Your virtual servers should show up at the bottom under Virtual Server. If configured correctly, the FortiADC will send the IP addresses, host name and domain name to GSLB, which will then load-balance with these virtual servers.
      Note

      If over 50 virtual servers have enabled GSLB, we recommend using at least 30 seconds as GSLB's interval.

    View virtual servers in GSLB
    1. Go to GSLB and click into individual organization. In this example we are selecting the default organization, "default". We will see the virtual servers in GSLB.
    2. In the individual organization, go to Fabric Connectors. The name is the FortiADC serial number. The type is FortiADC. The data center is the default or the first data center you already configured in Cloud. Click edit and you will see your virtual servers. Note: The load balancing may take a little while to start when the "green" is lit in the FortiADC.
    3. In Profiles > Pool you will see the automatically generated virtual server pools that the Cloud has done for you. Click edit on the far right to see the IP addresses of the virtual servers. They are pooled according to your PREFERRED method. See the Virtual Server Pool section for more information.

    Returning customers

    This section assumes that you have already enabled GSLB and know how to create new virtual servers with GSLB enabled.

    To add more virtual servers into GSLB and support certain services:

    1. Go to FortiADC > Server Load Balance > Virtual Server > edit Virtual Server > General > Enable One Click GSLB Server and enter Host/Domain Name.
    2. After you save, all the virtual servers that enabled GSLB will show up in the list.

    Further steps for modifications:

    If you want to modify FQDN host/domain name or disable Virtual Server GSLB function, there are two ways.

    Method 1

    Go to GSLB to edit the virtual server that has already enabled GSLB.

    From GSLB 2.0.0, FortiADC supports editing the virtual server directly inside the FortiADC GSLB module.

    You can edit the Virtual Server and modify One Click GSLB-related parameters. To do so, disable One Click GSLB server. The virtual server will disappear from GSLB list afterwards.

    Method 2

    Go to FortiADC > Server Load Balance > Virtual Server > edit Virtual Server > General. You can modify the FQDN host/domain name or disable Virtual Server GSLB function here.

    How to transform FortiADC GSLB to FortiAppSec Cloud GSLB

    Object type

    FortiADC location

    FortiAppSec Cloud location
    Data Center

    Global Load Balance > Global Object > Data Center

    GSLB > Virtual Server > Data Center
    Server

    Global Load Balance > Global Object > Server

    GSLB > Virtual Server > Fabric Connectors
    Location

    Global Load Balance > FQDN Settings > Location List

    GSLB > Service > Location
    Virtual Server Pool

    Global Load Balance > FQDN Settings > Virtual Server Pool

    GSLB > Service > Virtual Server Pool
    FQDN

    Global Load Balance > FQDN Settings > Host

    GSLB > Service > FQDN

    Zone

    Global Load Balance > Zone Tools > Zone

    GSLB > DNS
    Health Check

    Shared Resources > Health Check > Health Check

    GSLB > Health Check

    Add FQDN with FortiADC

    Perform the following steps to add an FQDN with FortiADC.

    1. Create FQDN in GSLB services.
    2. Create FQDN member and create new Virtual Server Pool. Then choose the virtual server from FortiADC into Pool. The virtual server from FortiADC will now work in GSLB services.
    3. FortiADC virtual servers are synced with the Cloud, so please make sure to select the correct virtual server when adding it to the Pool
    Previous
    Next