Fortinet black logo

GCP Administration Guide

Deploying the FortiGate-VM instance

Copy Link
Copy Doc ID 62d32ecf-687f-11ea-9384-00505692583a:977377
Download PDF

Deploying the FortiGate-VM instance

  1. Go to Compute Engine > VM Instances. Click CREATE INSTANCE.

  2. Configure the instance:
    1. In the Name field, enter the desired name. Select the desired zone and machine type.

    2. Under Boot disk, click Change.
    3. On the Custom images tab, select the newly created image. Change the boot disk type as needed, and enter 10 for the Size. Click Select.

    4. Ensure the new image is selected.
    5. Select Allow HTTPS traffic. You will access the FortiGate management console using HTTPS. If you allocate multiple network interfaces to the FortiGate, this is nullified at this stage. You can configure this later. See Configuring Google Cloud firewall rules.
    6. Click Networking. Here you want to specify multiple network interfaces. One is located on the public-facing side of the Internet, the other facing a protected private network.

    7. Edit the first network interface. Preferably assign a static IP address. Under IP Forwarding, select On. Configure other items as needed and click Done.

    8. Click Add network interface to add the second interface for the private subnet. If you click Network there will be the list of preconfigured networks. Choose the one located in the same region as you chose to deploy the instance. Under External IP, select None.

  3. After configuring all elements, click Create.

    After 15-30 minutes, the instance should be up and running.

Deploying the FortiGate-VM instance

  1. Go to Compute Engine > VM Instances. Click CREATE INSTANCE.

  2. Configure the instance:
    1. In the Name field, enter the desired name. Select the desired zone and machine type.

    2. Under Boot disk, click Change.
    3. On the Custom images tab, select the newly created image. Change the boot disk type as needed, and enter 10 for the Size. Click Select.

    4. Ensure the new image is selected.
    5. Select Allow HTTPS traffic. You will access the FortiGate management console using HTTPS. If you allocate multiple network interfaces to the FortiGate, this is nullified at this stage. You can configure this later. See Configuring Google Cloud firewall rules.
    6. Click Networking. Here you want to specify multiple network interfaces. One is located on the public-facing side of the Internet, the other facing a protected private network.

    7. Edit the first network interface. Preferably assign a static IP address. Under IP Forwarding, select On. Configure other items as needed and click Done.

    8. Click Add network interface to add the second interface for the private subnet. If you click Network there will be the list of preconfigured networks. Choose the one located in the same region as you chose to deploy the instance. Under External IP, select None.

  3. After configuring all elements, click Create.

    After 15-30 minutes, the instance should be up and running.