DOCUMENT LIBRARY

GCP Administration Guide

About FortiGate-VM for GCP
Deploying FortiGate-VM on Google Cloud Marketplace
Deploying FortiGate-VM on Google Cloud Compute Engine
Deploying FortiGate-VM using Google Cloud SDK
- Using the Google Cloud SDK to deploy FortiGate-VM
- Bootstrapping FortiGate at initial boot-up
Deploying FortiGate-VM using Terraform
High availability for FortiGate-VM on GCP
- Deploying FortiGate-VM HA on GCP in one zone
  - Deploying FortiGate HA using the GCP GUI
  - Deploying FortiGate HA using the Google Cloud command interface
    - Checking the prerequisites
    - Deploying the FortiGate-VM
- Deploying FortiGate-VM HA on GCP between multiple zones
Security Fabric connector integration with GCP
Deploying auto scaling on GCP
VPN for FortiGate-VM on GCP
- Site-to-site IPsec VPNs between HA VPN on GCP

Home FortiGate Public Cloud 6.2.0 GCP Administration Guide

6.2.0

Verify the deployment

Log in to the GCP console and navigate to Firestore.
Navigate to the FortiGateMasterElection table.
Make note of the primary FortiGate-VM IP address and ensure the voteState is done. See below for an example:
Navigate to the FortiGateAutoscale table and confirm that instances have been added to the cluster. Following is an example of a healthy cluster:

The masterIp field displays the IP address of the primary FortiGate-VM.

When an instance is removed from a cluster its record will not be deleted.

Verify the instance group

Log in to the primary FortiGate-VM instance using the public IP address from step 3 of Verify the deployment. The default admin port is 8443 and the default username/password is admin/<instance-id>.
Cluster information is displayed on the main dashboard:
VPN status is under Monitor > Ipsec Monitor, which shows the current connections between the FortiGates in the cluster.
Additional settings can be found in the Firestore collection under SETTINGS. See below for an example:

Cluster monitoring

Various cluster metrics are displayed in the GCP console under Compute > Instance Groups > YOUR-FORTIGATE-AUTOSCALE_CLUSTER > Monitor.

From here you can see the scale in and scale out actions that have been performed, as well as cluster health data.

Cluster health data

Use Operations (formerly Stackdriver) for additional logging information, including scaling of the Function.

Verify the deployment

Log in to the GCP console and navigate to Firestore.
Navigate to the FortiGateMasterElection table.
Make note of the primary FortiGate-VM IP address and ensure the voteState is done. See below for an example:
Navigate to the FortiGateAutoscale table and confirm that instances have been added to the cluster. Following is an example of a healthy cluster:

The masterIp field displays the IP address of the primary FortiGate-VM.

When an instance is removed from a cluster its record will not be deleted.

Verify the instance group

Log in to the primary FortiGate-VM instance using the public IP address from step 3 of Verify the deployment. The default admin port is 8443 and the default username/password is admin/<instance-id>.
Cluster information is displayed on the main dashboard:
VPN status is under Monitor > Ipsec Monitor, which shows the current connections between the FortiGates in the cluster.
Additional settings can be found in the Firestore collection under SETTINGS. See below for an example:

Cluster monitoring

Various cluster metrics are displayed in the GCP console under Compute > Instance Groups > YOUR-FORTIGATE-AUTOSCALE_CLUSTER > Monitor.

From here you can see the scale in and scale out actions that have been performed, as well as cluster health data.

Cluster health data

Use Operations (formerly Stackdriver) for additional logging information, including scaling of the Function.

Secure Networking

Hybrid Mesh Firewall

NOC Management

LAN

WAN

Unified SASE

Single Vendor SASE

Cloud Network Security

Secure Endpoint Connectivity

Web Application / API Protection

Security Operations

Security Operations Automation

Identity

Early Detection & Prevention

Secure Networking

Hybrid Mesh Firewall

NOC Management

LAN

WAN

Communication & Surveillance

Unified SASE

Single Vendor SASE

Secure Endpoint Connectivity

Cloud Network Security

Cloud-Native Security

Web Application / API Protection

Security Operations

Security Operations Automation

Endpoint

Data Protection

Identity

Email

Early Detection & Prevention

Expert Services

Edge Firewall

Orchestration & management

SD Branch

Application Delivery

Single Vendor SASE

Secure Endpoint Connectivity

Secure Private Access

Thin Edge

Identity

Application Gateway

Enterprise Asset Management

Endpoint Agent

Agentless Security Posture

Identity

Wireless

Switching

Identity

Privilege Acccess Management

Next Generation Firewall

Orchestration & management

Expert Services

All

All

Account Management

SAAS Management

SAAS Application Security

Managed Services

Platform as a service (PAAS)

Other SAAS Services

4D Pillars

Cloud

Popular Solutions

GCP Administration Guide

Verify the deployment

Verify the deployment

Verify the instance group

Cluster monitoring

Verify the deployment

Verify the deployment

Verify the instance group

Cluster monitoring