Fortinet white logo
Fortinet white logo

Cookbook

Adding VDOMs with FortiGate v-series

Adding VDOMs with FortiGate v-series

Each FortiGate-VM base license type allows a default number of VDOMs. This recipe provides sample procedures to add VDOMs beyond the default number using separately purchased VDOM licenses.

This recipe consists of the following steps:

  1. Activate the FortiGate-VM with the base license.
  2. Add more VDOMs to the FortiGate-VM.
To activate the FortiGate-VM with the base license:
  1. Purchase and register the FortiGate-VM base license in FortiCare:
    1. Purchase the FortiGate-VM base license from Fortinet or a Fortinet reseller.
    2. You receive a license certification with a registration code. Open the certification.
    3. Log in to Fortinet Customer Service & Support.
    4. Go to Asset > Register/Activate and enter the provided registration code.
    5. Follow the registration process. The serial number generates and displays on the Registration Completion page.
    6. Go to Asset > Manage/View Products. Click the serial number to download the license file.
  2. Upload the FortiGate-VM base license file to FortiOS:
    1. Log in to the FortiGate-VM GUI.
    2. In Dashboard > Status, in the Virtual Machine widget, click FortiGate VM License.
    3. Click the Upload button.
    4. Select the FortiGate-VM base license file, then click OK. The FortiGate-VM reboots after applying the base license.
  3. Verify the FortiGate-VM base license status and VDOM information:
    1. Log in to the FortiGate-VM GUI.
    2. In Dashboard > Status, in the Virtual Machine widget, ensure that there is a checkmark in front of the FortiGate-VM base license name. The checkmark indicates that the base license is valid.
    3. You can check VDOM information using the CLI. The following output shows that the maximum number of VDOMs is currently one. This is correct since the FortiGate-VM base license only supports the default root VDOM that the system uses.

      FGVM4VTM19000476 # get system status

      Version: FortiGate-VM64 v6.2.0,build0866,190328 (GA)

      Virus-DB: 69.00091(2019-06-07 12:19)

      Extended DB: 1.00000(2018-04-09 18:07)

      Extreme DB: 1.00000(2018-04-09 18:07)

      IPS-DB: 14.00610(2019-05-09 00:14)

      IPS-ETDB: 0.00000(2001-01-01 00:00)

      APP-DB: 14.00610(2019-05-09 00:14)

      INDUSTRIAL-DB: 14.00610(2019-05-09 00:14)

      Serial-Number: FGVM4VTM19000476

      IPS Malicious URL Database: 2.00325(2019-06-07 03:56)

      Botnet DB: 4.00490(2019-05-30 10:00)

      License Status: Valid

      License Expires: 2020-04-30

      VM Resources: 2 CPU/4 allowed, 3022 MB RAM/6144 MB allowed

      Log hard disk: Available

      Hostname: FGVM4VTM19000476

      Operation Mode: NAT

      Current virtual domain: root

      Max number of virtual domains: 1

      Virtual domains status: 1 in NAT mode, 0 in TP mode

      Virtual domain configuration: disable

      FIPS-CC mode: disable

      Current HA mode: standalone

      Branch point: 0866

      Release Version Information: GA

      FortiOS x86-64: Yes

      System time: Fri Jun 7 14:04:55 2019

To add more VDOMs to the FortiGate-VM:

You can repeat this procedure multiple times to stack multiple VDOM licenses on the same FortiGate-VM.

  1. Purchase and register the FortiGate-VM upgrade license in FortiCare. This example adds 15 VDOMs:
    1. Purchase the FortiGate-VM upgrade license from Fortinet or a Fortinet reseller.
    2. You receive a license certification with a registration code. Open the certification.
    3. Log in to Fortinet Customer Service & Support.
    4. Go to Asset > Register/Activate and enter the provided registration code.
    5. On the Specify License Confirmation Information screen, enter the FortiGate-VM serial number to apply the VDOM upgrade license to the FortiGate-VM. In this example, the FortiGate-VM serial number is FGVM4VTM19000476.

    6. Follow the registration process.
    7. Go to Asset > Manage/View Products > . Select the desired product, then click License & Key. The VDOM upgrade license displays under Registered License(s), and a key for adding 15 VDOMs (in this example M6JSD-8EE32-VHIJB-N) displays under Available Key(s).

  2. Apply the FortiGate-VM upgrade license key to FortiOS:
    1. Log in to the FortiGate-VM CLI in the local console or using SSH.
    2. Apply the VDOM upgrade license key:

      FGVM4VTM19000476 # execute upd-vd-license M6JSD-8EE32-VHIJB-N

      update vdom license succeeded

  3. Verify the FortiGate-VM VDOM information:
    1. Log in to the FortiGate-VM CLI in the local console or using SSH.
    2. Check VDOM information using the CLI. The following output shows that the maximum number of VDOMs is currently 15. When you add VDOMs for the first time on a FortiGate-VM v-series instance, FortiOS does not count the default VDOM, as the default VDOM is the so-called root VDOM that the system uses and FortiOS does not treat it as a countable VDOM in terms of VDOM addition. Therefore, as in this example, if your FortiGate-VM had the default VDOM configuration, then you add 15 VDOMs, FortiOS displays the maximum VDOM number as 15, not 16.

      FGVM4VTM19000476 # get system status

      Version: FortiGate-VM64 v6.2.0,build0866,190328 (GA)

      Virus-DB: 69.00091(2019-06-07 12:19)

      Extended DB: 1.00000(2018-04-09 18:07)

      Extreme DB: 1.00000(2018-04-09 18:07)

      IPS-DB: 14.00610(2019-05-09 00:14)

      IPS-ETDB: 0.00000(2001-01-01 00:00)

      APP-DB: 14.00610(2019-05-09 00:14)

      INDUSTRIAL-DB: 14.00610(2019-05-09 00:14)

      Serial-Number: FGVM4VTM19000476

      IPS Malicious URL Database: 2.00325(2019-06-07 03:56)

      Botnet DB: 4.00490(2019-05-30 10:00)

      License Status: Valid

      License Expires: 2020-04-30

      VM Resources: 2 CPU/4 allowed, 3022 MB RAM/6144 MB allowed

      Log hard disk: Available

      Hostname: FGVM4VTM19000476

      Operation Mode: NAT

      Current virtual domain: root

      Max number of virtual domains: 15

      Virtual domains status: 1 in NAT mode, 0 in TP mode

      Virtual domain configuration: disable

      FIPS-CC mode: disable

      Current HA mode: standalone

      Branch point: 0866

      Release Version Information: GA

      FortiOS x86-64: Yes

      System time: Fri Jun 7 14:39:27 2019

Adding VDOMs with FortiGate v-series

Adding VDOMs with FortiGate v-series

Each FortiGate-VM base license type allows a default number of VDOMs. This recipe provides sample procedures to add VDOMs beyond the default number using separately purchased VDOM licenses.

This recipe consists of the following steps:

  1. Activate the FortiGate-VM with the base license.
  2. Add more VDOMs to the FortiGate-VM.
To activate the FortiGate-VM with the base license:
  1. Purchase and register the FortiGate-VM base license in FortiCare:
    1. Purchase the FortiGate-VM base license from Fortinet or a Fortinet reseller.
    2. You receive a license certification with a registration code. Open the certification.
    3. Log in to Fortinet Customer Service & Support.
    4. Go to Asset > Register/Activate and enter the provided registration code.
    5. Follow the registration process. The serial number generates and displays on the Registration Completion page.
    6. Go to Asset > Manage/View Products. Click the serial number to download the license file.
  2. Upload the FortiGate-VM base license file to FortiOS:
    1. Log in to the FortiGate-VM GUI.
    2. In Dashboard > Status, in the Virtual Machine widget, click FortiGate VM License.
    3. Click the Upload button.
    4. Select the FortiGate-VM base license file, then click OK. The FortiGate-VM reboots after applying the base license.
  3. Verify the FortiGate-VM base license status and VDOM information:
    1. Log in to the FortiGate-VM GUI.
    2. In Dashboard > Status, in the Virtual Machine widget, ensure that there is a checkmark in front of the FortiGate-VM base license name. The checkmark indicates that the base license is valid.
    3. You can check VDOM information using the CLI. The following output shows that the maximum number of VDOMs is currently one. This is correct since the FortiGate-VM base license only supports the default root VDOM that the system uses.

      FGVM4VTM19000476 # get system status

      Version: FortiGate-VM64 v6.2.0,build0866,190328 (GA)

      Virus-DB: 69.00091(2019-06-07 12:19)

      Extended DB: 1.00000(2018-04-09 18:07)

      Extreme DB: 1.00000(2018-04-09 18:07)

      IPS-DB: 14.00610(2019-05-09 00:14)

      IPS-ETDB: 0.00000(2001-01-01 00:00)

      APP-DB: 14.00610(2019-05-09 00:14)

      INDUSTRIAL-DB: 14.00610(2019-05-09 00:14)

      Serial-Number: FGVM4VTM19000476

      IPS Malicious URL Database: 2.00325(2019-06-07 03:56)

      Botnet DB: 4.00490(2019-05-30 10:00)

      License Status: Valid

      License Expires: 2020-04-30

      VM Resources: 2 CPU/4 allowed, 3022 MB RAM/6144 MB allowed

      Log hard disk: Available

      Hostname: FGVM4VTM19000476

      Operation Mode: NAT

      Current virtual domain: root

      Max number of virtual domains: 1

      Virtual domains status: 1 in NAT mode, 0 in TP mode

      Virtual domain configuration: disable

      FIPS-CC mode: disable

      Current HA mode: standalone

      Branch point: 0866

      Release Version Information: GA

      FortiOS x86-64: Yes

      System time: Fri Jun 7 14:04:55 2019

To add more VDOMs to the FortiGate-VM:

You can repeat this procedure multiple times to stack multiple VDOM licenses on the same FortiGate-VM.

  1. Purchase and register the FortiGate-VM upgrade license in FortiCare. This example adds 15 VDOMs:
    1. Purchase the FortiGate-VM upgrade license from Fortinet or a Fortinet reseller.
    2. You receive a license certification with a registration code. Open the certification.
    3. Log in to Fortinet Customer Service & Support.
    4. Go to Asset > Register/Activate and enter the provided registration code.
    5. On the Specify License Confirmation Information screen, enter the FortiGate-VM serial number to apply the VDOM upgrade license to the FortiGate-VM. In this example, the FortiGate-VM serial number is FGVM4VTM19000476.

    6. Follow the registration process.
    7. Go to Asset > Manage/View Products > . Select the desired product, then click License & Key. The VDOM upgrade license displays under Registered License(s), and a key for adding 15 VDOMs (in this example M6JSD-8EE32-VHIJB-N) displays under Available Key(s).

  2. Apply the FortiGate-VM upgrade license key to FortiOS:
    1. Log in to the FortiGate-VM CLI in the local console or using SSH.
    2. Apply the VDOM upgrade license key:

      FGVM4VTM19000476 # execute upd-vd-license M6JSD-8EE32-VHIJB-N

      update vdom license succeeded

  3. Verify the FortiGate-VM VDOM information:
    1. Log in to the FortiGate-VM CLI in the local console or using SSH.
    2. Check VDOM information using the CLI. The following output shows that the maximum number of VDOMs is currently 15. When you add VDOMs for the first time on a FortiGate-VM v-series instance, FortiOS does not count the default VDOM, as the default VDOM is the so-called root VDOM that the system uses and FortiOS does not treat it as a countable VDOM in terms of VDOM addition. Therefore, as in this example, if your FortiGate-VM had the default VDOM configuration, then you add 15 VDOMs, FortiOS displays the maximum VDOM number as 15, not 16.

      FGVM4VTM19000476 # get system status

      Version: FortiGate-VM64 v6.2.0,build0866,190328 (GA)

      Virus-DB: 69.00091(2019-06-07 12:19)

      Extended DB: 1.00000(2018-04-09 18:07)

      Extreme DB: 1.00000(2018-04-09 18:07)

      IPS-DB: 14.00610(2019-05-09 00:14)

      IPS-ETDB: 0.00000(2001-01-01 00:00)

      APP-DB: 14.00610(2019-05-09 00:14)

      INDUSTRIAL-DB: 14.00610(2019-05-09 00:14)

      Serial-Number: FGVM4VTM19000476

      IPS Malicious URL Database: 2.00325(2019-06-07 03:56)

      Botnet DB: 4.00490(2019-05-30 10:00)

      License Status: Valid

      License Expires: 2020-04-30

      VM Resources: 2 CPU/4 allowed, 3022 MB RAM/6144 MB allowed

      Log hard disk: Available

      Hostname: FGVM4VTM19000476

      Operation Mode: NAT

      Current virtual domain: root

      Max number of virtual domains: 15

      Virtual domains status: 1 in NAT mode, 0 in TP mode

      Virtual domain configuration: disable

      FIPS-CC mode: disable

      Current HA mode: standalone

      Branch point: 0866

      Release Version Information: GA

      FortiOS x86-64: Yes

      System time: Fri Jun 7 14:39:27 2019