Fortinet black logo

OCI Administration Guide

Configuring the OCI VCN

Copy Link
Copy Doc ID ec495562-6887-11ea-9384-00505692583a:440244
Download PDF

Configuring the OCI VCN

To configure the OCI VCN:
  1. In the OCI console, go to Networking > Virtual Cloud Networks > Subnets.
  2. Ensure that the VCN contains the following eight subnets (four in AD1 and four in AD2):

    AD1 subnet

    AD2 subnet

    Purpose

    net11-external

    net21-external

    External data traffic on the public network-facing side.

    net12-internal

    net22-internal

    Internal data traffic on the protected/trusted network-facing side.

    net13-heartbeat

    net23-heartbeat

    Heartbeat between two FortiGate nodes. This is unicast communication.

    net14-mgmt

    net24-mgmt

    Dedicated management interface use.

  3. Go to Route Tables.
  4. Configure an internal routing table, setting the default gateway as FGT-A-AD1 NIC2's primary IP address (10.0.12.21). You can create this routing table after configuring NIC2 on FGT-A-AD1. Two subnets, net12-internal and net22-internal, use this routing table.
  5. Configure an external routing table, setting the default gateway as this VCN's Internet gateway. The remaining six subnets use this routing table.

Configuring the OCI VCN

To configure the OCI VCN:
  1. In the OCI console, go to Networking > Virtual Cloud Networks > Subnets.
  2. Ensure that the VCN contains the following eight subnets (four in AD1 and four in AD2):

    AD1 subnet

    AD2 subnet

    Purpose

    net11-external

    net21-external

    External data traffic on the public network-facing side.

    net12-internal

    net22-internal

    Internal data traffic on the protected/trusted network-facing side.

    net13-heartbeat

    net23-heartbeat

    Heartbeat between two FortiGate nodes. This is unicast communication.

    net14-mgmt

    net24-mgmt

    Dedicated management interface use.

  3. Go to Route Tables.
  4. Configure an internal routing table, setting the default gateway as FGT-A-AD1 NIC2's primary IP address (10.0.12.21). You can create this routing table after configuring NIC2 on FGT-A-AD1. Two subnets, net12-internal and net22-internal, use this routing table.
  5. Configure an external routing table, setting the default gateway as this VCN's Internet gateway. The remaining six subnets use this routing table.