Fortinet black logo

Creating fabric connectors for Azure

6.0.0
Copy Link
Copy Doc ID b2da32f6-d96c-11e8-b86b-00505692583a:625336
Download PDF

Creating fabric connectors for Azure

You can use FortiManager to create SDN fabric connectors for Microsoft Azure, and then install the fabric connectors to FortiGates.

The fabric connectors in FortiManager define the type of connector and include information for FortiGate to communicate with and authenticate with the products. In some cases FortiGate units must communicate with products through the Fortinet SDN Connector, and in other cases FortiGate units communicate directly with the products.

FortiGate works without Fortinet SDN Connector to communicate directly with Microsoft Azure.

Following is an overview of how to create fabric connectors for Azure by using FortiManager:

  1. Create a fabric connector object for Azure. See Creating fabric connector objects for Microsoft Azure.
  2. Create dynamic firewall address objects. See Configuring dynamic firewall addresses for fabric connectors.

    You cannot import address names from Microsoft Azure to FortiManager.

  3. In the policy package in which you will be creating the new policy, create an IPv4 policy and include the dynamic firewall address objects for Microsoft Azure. See Creating IP policies.
  4. Install the policy package to FortiGate. See Installing policy packages.

    FortiGate communicates with Microsoft Azure to dynamically populate the firewall address objects with IP addresses.

Creating fabric connectors for Azure

You can use FortiManager to create SDN fabric connectors for Microsoft Azure, and then install the fabric connectors to FortiGates.

The fabric connectors in FortiManager define the type of connector and include information for FortiGate to communicate with and authenticate with the products. In some cases FortiGate units must communicate with products through the Fortinet SDN Connector, and in other cases FortiGate units communicate directly with the products.

FortiGate works without Fortinet SDN Connector to communicate directly with Microsoft Azure.

Following is an overview of how to create fabric connectors for Azure by using FortiManager:

  1. Create a fabric connector object for Azure. See Creating fabric connector objects for Microsoft Azure.
  2. Create dynamic firewall address objects. See Configuring dynamic firewall addresses for fabric connectors.

    You cannot import address names from Microsoft Azure to FortiManager.

  3. In the policy package in which you will be creating the new policy, create an IPv4 policy and include the dynamic firewall address objects for Microsoft Azure. See Creating IP policies.
  4. Install the policy package to FortiGate. See Installing policy packages.

    FortiGate communicates with Microsoft Azure to dynamically populate the firewall address objects with IP addresses.