Native Mode Support for OCI
FGT_VM64_OPC now supports native mode on Oracle Cloud Infrastructure (OCI), in addition to emulation mode and paravirtualized mode. This version also supports iSCSI type hard disks.
To create a native mode FGT_VM64_OPC custom image:
- Download the FGT image for OCI. The naming convention is: FGT_VM64_OPC-v6-buildxxxx-FORTINET.out.OpenXen.zip.
- Unzip the file to get fortios.qcow2.
- Upload fortios.qcow2 to the OCI object storage and copy the file URL path (URI), for example,
https://objectstorage.us-ashburn-1.oraclecloud.com/n/fortinetoraclecloud1/b/fhua-bucket002/o/fortios.qcow2. - Log into the Oracle Cloud web portal and go to Compute > Custom Images > Import Image.
- Enter the image NAME, in this example, fhua-temp-b0838-native.
- For OPERATING SYSTEM, select Linux.
- For the OBJECT STORAGE URL, paste the URI you copied when you uploaded fortios.qcow2.
- For IMAGE TYPE, select QCOW2.
- For LAUNCH MODE, select NATIVE MODE.
- Click Import Image.
When the import is complete, the FortiGate for OCI custom image is available. In this example, the custom image name is fhua-temp-b0838-native.
To create a FGT_VM64_OPC instance with the native mode custom image:
- Log into the Oracle Cloud web portal and go to Compute > Instances > Create Instance.
- In Name your instance, enter your FGT-VM instance name.
- Select an availability domain for your instance.
- Select the image source fhua-temp-b0838-native that you configured in the previous procedure.
- For Choose instance type, select Bare Metal Machine.
- Click Change Shape and select your instance shape, for example, BM.Standard2.52.
- Leave Configure boot volume as default.
- If necessary, add your SSH key file.
- Select your Virtual cloud network and Subnet.
- Click Create.
- Wait for the instance to run.
You can access the FGT-VM using your SSH key or the default username/password of admin/ocid.
- Hover your pointer over the … to the right of the FGT-VM and click View Instance Details.
The Instance Information tab shows that Launch Mode is NATIVE.
To attach a hard disk to the FGT_VM64_OPC with iSCSI mode:
- On the Instance Details page navigation bar, click Attached Block Volumes and then click Attach Block Volume.
- In the Attach Block Volume dialog box, select ISCSI.
- Select the BLOCK VOLUME COMPARTMENT.
- Select the BLOCK VOLUME.
- Leave ACCESS as default.
- Click Attach.
- Wait for the block volume to be attached.
- In the Instance Details page, hover your pointer over the … to the right of the block volume entry and click iSCSI Commands & Information.
This dialog box shows this iSCSI's IP address and IQN.
To configure the iSCSI hard disk in FortiGate using CLI:
config system iscsi
edit "i1"
set ip <class_ip>
set iqn <string>
next
end
For example:
config system iscsi
edit "Demo-iSCSI-HD"
set ip 169.254.2.4
set iqn "iqn.2015-12.com.oracleiaas:debf5040-260a-4a28-a00e-da172baa6698"
next
end
To connect an iSCSI hard disk in FortiGate using CLI:
execute iscsi login <iscis-disk-name>
To disconnect an iSCSI hard disk in FortiGate using CLI:
execute iscsi logout <iscis-disk-name>
To check the hard disk in FortiGate and the second HD (50.0GiB) is attached:
fhua-native-Standard # d hardware deviceinfo disk Disk SYSTEM(boot) 46.6GiB type: ISCSI [IET Controller] dev: /dev/sda partition 123.0MiB, 62.0MiB free mounted: Y label: dev: /dev/sda1(boot) start: 2048 partition 1.7GiB, 1.7GiB free mounted: Y label: dev: /dev/sda2(boot) start: 264192 partition ref: 3 127.0MiB, 86.0MiB free mounted: N label: dev: /dev/sda3 start: 3932160 Disk Virtual-Disk ref: 32 50.0GiB type: ISCSI [IET Controller] dev: /dev/sdc partition ref: 33 49.2GiB, 48.9GiB free mounted: N label: LOGUSEDX6FFE3A65 dev: /dev/sdc1 start: 2048 Total available disks: 2 Max SSD disks: 8 Available storage disks: 1