Deploy FortiSandbox-VM with the Deployment Image

Obtaining the deployment image

To obtain the deployment image:

1. Log into FortiCloud.
2. Go to Support > VM Images.
3. From the Select Product dropdown list, select FortiSandbox.
4. From the Select Platform dropdown list, select OCI.
5. Download the deployment package file. The deployment package file is named fsa-oci-vX-buildXXXX-fortinet.tar.gz, where vX is the major version number and XXXX is the build number.

Uploading the FortiSandbox deployment image to OCI

1. In OCI, go to Storage > Buckets.
   1. Click Create Bucket.
   2. Enter the Bucket Name.
   3. Set Default Storage Tier to Standard.
   4. Click Create.

   

2. Go to the bucket you created, then click Upload to upload the deployment image file xxxx. qcow2 .

   

3. Create Pre-Authenticated Requests.
   1. Click Create Pre-Authenticated Requests.

      

   2. Click Create Pre-Authenticated Requests for the uploaded image.

      

   3. Record the Pre-Authenticated Requests URL as it required in later steps.

      

4. Go to Compute > Custom Images. Click Import Image. In the Import Image dialog, complete the required fields.
   1. Enter the import image Name.
   2. Select Import from an Object Storage URL, and enter the URL link you recorded in the previous step.
   3. Set the Image type to QCOW2.
   4. Click Import Image. Wait until the IMPORTING status changes to AVAILABLE.

   

5. From the newly imported image, Click Edit details. Under Compatible shapes select VM.Standard3.Flex and click Save changes.

   

6. Click Create Instance and configure the required parameters.

   

   1. Enter the instance Name.

      

   2. Select the instance Shape.

      

   3. Configure the Networking section.

      Primary network	Click Select existing virtual cloud network and select the VCN you created.
      Subnet	Select the port1 subnet you created.
      Public IPv4 address	Select Assign a public IPv4 address.

      

   4. In the Add SSH keys section, click Save private key to download the private key. You can use the default options for the Boot volume section.

      

   5. Click Create. Wait until the PROVISIONING status changes to RUNNING.

   Deployment parameters:

   Name	Enter the FortiSandbox-VM instance name.
   Availability domain	The availability domain helps determine which shapes are available.
   Shape	A shape is a template that determines the number of CPUs, amount of memory, and other resources allocated to a newly created instance. For customized VM feature, require Intel VM.Standard3.Flex with at least 8 OCPU and 64GB memory.
   Primary network	Select Virtual cloud network
   Subnet	Select Port 1 Subnet created before
   Public IPv4 address	Select Assign a public IPv4 address for Port 1. Port 1 will be used to access and manage FortiSandbox.
   Add SSH keys	SSH to FortiSandbox-VM without entering the password

7. Go to Storage > Block Volumes, then click Create Block Volume.
   1. Enter a Name for the Block Volume.
   2. Set Volume Size to a minimum of 500GB.
   3. Click Create Block Volume. Wait for the message Block Volume Available.

   

8. Go to Compute > Instances.
   1. Click the FortiSandbox VM instance you created.
   2. Click the Attached block volumes tab.
   3. Click Attach block volume.
   4. Click Select volume and the select the volume you created.
   5. Set Attachment type to Paravirtualized.
   6. Click attach. Wait for the process to complete.

   

9. Add the new interface for Port 2.
   1. Click the Attached VNICs tab.
   2. Click Create VNIC. Configure the following settings and click Save changes, then wait for the process to complete.

   Name	Enter a name for the Port 2 interface
   select a virtual cloud network(VCN)	Select the VCN you created.
   Select Subent	Select the Port2 subnet you created.
   Private IP address	(Optional) Enter the private IP address.

   

10. Repeat Step 6 to add new interface for Port 3.
11. Reboot the FortiSandbox-VM instance. Allow approximately 10 minutes for the instance to boot for the first time.