Fortinet white logo
Fortinet docs logo DOCUMENT LIBRARY
Fortinet white logo
Fortinet docs logo DOCUMENT LIBRARY
Products Best Practices Hardware Guides Products A-Z
Summary
By Solution
By 4D Pillars
By Cloud
Secure Networking
Unified SASE
Security Operations
Secure SD-WAN
Secure Access Service Edge (SASE)
ZTNA
LAN Edge
Identity and Access Management
Next Generation Firewall
Public Cloud
Private Cloud
FortiCloud
Secure Networking
  • Hybrid Mesh Firewall
  • NOC Management
  • LAN
  • WAN
    • More >>
    Unified SASE
  • Single Vendor SASE
  • Cloud Network Security
  • Secure Endpoint Connectivity
  • Web Application / API Protection
    • More >>
    Security Operations
  • Security Operations Automation
  • Identity
  • Early Detection & Prevention
    • More >>
    Secure Networking
  • Hybrid Mesh Firewall
  • NOC Management
  • LAN
  • WAN
  • Communication & Surveillance
    • Unified SASE
  • Single Vendor SASE
  • Secure Endpoint Connectivity
  • Cloud Network Security
  • Cloud-Native Security
  • Web Application / API Protection
    • Security Operations
  • Security Operations Automation
  • Endpoint
  • Data Protection
  • Identity
  • Email
  • Early Detection & Prevention
  • Expert Services
  • Edge Firewall
  • Orchestration & management
  • SD Branch
  • Application Delivery
  • Single Vendor SASE
  • Secure Endpoint Connectivity
  • Secure Private Access
  • Thin Edge
  • Identity
  • Application Gateway
  • Enterprise Asset Management
  • Endpoint Agent
  • Agentless Security Posture
  • Identity
  • Wireless
  • Switching
  • Identity
  • Privilege Acccess Management
  • Next Generation Firewall
  • Orchestration & management
  • Expert Services
  • All
  • All
  • Account Management
  • SAAS Management
  • SAAS Application Security
  • Managed Services
  • Platform as a service (PAAS)
  • Other SAAS Services
    • 4D Resources
    Solution Hubs
  • 4D Pillars
  • Cloud
  • Popular Solutions

    • FortiSandbox VM on GCP

    Home FortiSandbox Public Cloud 5.0.0 FortiSandbox VM on GCP
    5.0.0
    5.0.0
    4.4.0
    4.2.3

    About FortiSandbox VM for GCP

    About FortiSandbox VM for GCP

    Introduction

    Fortinet’s FortiSandbox for GCP enables organizations to defend against advanced threats in the cloud. It works with network, email, endpoint, and other security measures, or as an extension of on-premises security architecture to leverage scale with complete control.

    FortiSandbox is available on the GCP Marketplace.

    You can install FortiSandbox on GCP as a standalone zero-day threat prevention or you can configure it to work with your existing FortiGate, FortiMail, or FortiWeb GCP instances to identify malicious and suspicious files, ransomware, and network threats.

    For more information, contact Fortinet Customer Service & Support.

    Note

    This document contains images from GCP interface. Some images and text may not reflect the current GCP version. Where possible, we have noted the version the image is based on.

    For the most accurate GCP information, please refer to the product documentation.

    License Type: BYOL

    FortiSandbox GCP only supports the BYOL license type. With BYOL, you purchase the firmware license from Fortinet and upload it to the unit manually.

    Guest VM Running Mode (Nested and Non-Nested)

    FortiSandbox supports 2 Guest VM running mode on the GCP Platform:

    Nested mode

    FortiSandbox runs the guest VMs inside the appliance allowing for more control for those VMs. The Nested mode supports more types of VMs, including the Default VM, Optional VM, Custom VM and Cloud VM.

    Prerequisite:

    The selected instance type running FortiSandbox must support virtual machine nested virtualization. Currently, GCP only supports the nested virtualization running on the Intel processor instances. For more details, please refer to the GCP Nested Virtualization documentation.

    Non-Nested mode

    FortiSandbox runs all guest VMs outside the appliance. The Non-Nested mode only supports Custom VM and Cloud VM. Each Custom VM clone runs as an independent GCP instance outside of FortiSandbox, and the Cloud VM runs on the Fortinet cloud platform.

    Running FortiSandbox on the Non-Nested mode does not need the support of the VM nested virtualization.

    Setting the Guest VM Running Mode

    For fresh FortiSandbox installation, if the selected instance type supports nested virtualization, FortiSandbox will run in the Nested mode by default. Otherwise, it will run in the Non-Nested mode.

    For the existing instance, upgrading the firmware will not affect or change the current operating mode.

    To identify the current running mode of FortiSandbox , go to Dashboard >System Information widget after startup: Model: FortiSandbox-GCP-Nested is Nested mode and Model: FortiSandbox-GCP is Non-Nested.

    After installation, you can switch the Guest VM running mode by modifying the GCP configuration. For more information, see Configure GCP Config Settings in Configure GCP Config Settings.

    Previous
    Next

    About FortiSandbox VM for GCP

    About FortiSandbox VM for GCP

    Introduction

    Fortinet’s FortiSandbox for GCP enables organizations to defend against advanced threats in the cloud. It works with network, email, endpoint, and other security measures, or as an extension of on-premises security architecture to leverage scale with complete control.

    FortiSandbox is available on the GCP Marketplace.

    You can install FortiSandbox on GCP as a standalone zero-day threat prevention or you can configure it to work with your existing FortiGate, FortiMail, or FortiWeb GCP instances to identify malicious and suspicious files, ransomware, and network threats.

    For more information, contact Fortinet Customer Service & Support.

    Note

    This document contains images from GCP interface. Some images and text may not reflect the current GCP version. Where possible, we have noted the version the image is based on.

    For the most accurate GCP information, please refer to the product documentation.

    License Type: BYOL

    FortiSandbox GCP only supports the BYOL license type. With BYOL, you purchase the firmware license from Fortinet and upload it to the unit manually.

    Guest VM Running Mode (Nested and Non-Nested)

    FortiSandbox supports 2 Guest VM running mode on the GCP Platform:

    Nested mode

    FortiSandbox runs the guest VMs inside the appliance allowing for more control for those VMs. The Nested mode supports more types of VMs, including the Default VM, Optional VM, Custom VM and Cloud VM.

    Prerequisite:

    The selected instance type running FortiSandbox must support virtual machine nested virtualization. Currently, GCP only supports the nested virtualization running on the Intel processor instances. For more details, please refer to the GCP Nested Virtualization documentation.

    Non-Nested mode

    FortiSandbox runs all guest VMs outside the appliance. The Non-Nested mode only supports Custom VM and Cloud VM. Each Custom VM clone runs as an independent GCP instance outside of FortiSandbox, and the Cloud VM runs on the Fortinet cloud platform.

    Running FortiSandbox on the Non-Nested mode does not need the support of the VM nested virtualization.

    Setting the Guest VM Running Mode

    For fresh FortiSandbox installation, if the selected instance type supports nested virtualization, FortiSandbox will run in the Nested mode by default. Otherwise, it will run in the Non-Nested mode.

    For the existing instance, upgrading the firmware will not affect or change the current operating mode.

    To identify the current running mode of FortiSandbox , go to Dashboard >System Information widget after startup: Model: FortiSandbox-GCP-Nested is Nested mode and Model: FortiSandbox-GCP is Non-Nested.

    After installation, you can switch the Guest VM running mode by modifying the GCP configuration. For more information, see Configure GCP Config Settings in Configure GCP Config Settings.

    Previous
    Next