Cloud-init
In autoscaling, a FortiGate-VM uses cloud-init
to preconfigure the instances when they first come up. During template deployment, an internal API gateway endpoint is created.
A FortiGate-VM sends requests to the endpoint to retrieve necessary configuration after initialization.
In 7.2.8 and later versions, FIPS-CC cipher mode is silently enabled when configured via cloud-init.
Use this FortiOS CLI command to display information for your devices:
diagnose debug cloudinit show
You can retrieve VPN output with this FortiOS CLI command:
# diagnose vpn tun list