Fortinet black logo

CLI Reference

system fabric-connectors

system fabric-connectors

Use this command to notify the load balancer to distribute the traffic to the new master node when fail-over occurs.

Syntax

config system fabric-connectors

set name <string>

set type {oci | azure}

set tenant-ocid <string>

set user-ocid <string>

set compartment-ocid <string>

set loadbalancer-ocid <string>

set server-region-type {commercial | government}

set server-region <region-id>

set private-key <userdef>

set rg-name <string>

set sub-id <string>

set tenant-id <string>

set pass <passwd>

set app-id <string>

set nicFWBA <string>

set nicFWBB <string>

set public-ip <string>

end

Commands for OCI Active-Passive HA settings

Variable

Description

Default

tenant-ocid <string>

To get the OCI tenant ID:

  1. Log in to OCI.
  2. Go to Governance and Administration > Administration > Tenancy Details.
  3. Click the Tenancy you want to use.
  4. Copy the OCID of this Tenancy.
No default

user-ocid <string>

To get the User ID:

  1. Log in to OCI.
  2. Go to Governance and Administration > Identity > User.
  3. Click the user you want to use.
  4. Copy the OCID of this user.
No default

compartment-ocid <string>

To get the OCI compartment ID:

  1. Log in to OCI.
  2. Go to Governance and Administration > Identity > Compartments.
  3. Click the compartment that your load balancer is located in.
  4. Copy the OCID of this Tenancy.

Note: If you don't have a compartment, you can leave this option empty.

No default

loadbalancer-ocid <string>

To get the OCI LoadBalancer ID:

  1. Log in to OCI.
  2. Go to Core Infrastructure > Networking > Load Balancers.
  3. Click the load balancer used for the HA cluster.
  4. Copy the OCID of this load balancer.
No default

server-region-type {commercial | government}

If your OCI server region is either “US Federal Cloud with DISA Impact Level 5 Authorization Regions” or “US Government Cloud with FedRAMP Authorization Regions”, please enter Government. Otherwise please select Commercial.

commercial

server-region <region-id>

Enter the Region Identifier of your load balancer.

No default

private-key <userdef>

Specify the private key you have generated

for authentication when FortiWeb-VM connects to the load balancer.
See Generating RSA key.

No default
Commands for Azure Active-Passive HA settings

For Azure Active-Passive HA settings, it's recommended to configure the settings through GUI, where you can download a script to get the values. See Configuring Active-Passive HA.

Variable

Description

Default

rg-name <string>

Enter the resource group name No default

sub-id <string>

Enter the subcription ID. No default

tenant-id <string>

Enter the tenant ID. No default

pass <passwd>

Enter the function applicaiton password. No default

app-id <string>

Enter the function applicaiton ID. No default

nicFWBA <string>

Enter the interface name in FWBA. No default

nicFWBB <string>

Enter the interface name in FWBB.

No default

public-ip <string>

Enter the name of the master FortiWeb-VM's public IP.

No default

system fabric-connectors

system fabric-connectors

Use this command to notify the load balancer to distribute the traffic to the new master node when fail-over occurs.

Syntax

config system fabric-connectors

set name <string>

set type {oci | azure}

set tenant-ocid <string>

set user-ocid <string>

set compartment-ocid <string>

set loadbalancer-ocid <string>

set server-region-type {commercial | government}

set server-region <region-id>

set private-key <userdef>

set rg-name <string>

set sub-id <string>

set tenant-id <string>

set pass <passwd>

set app-id <string>

set nicFWBA <string>

set nicFWBB <string>

set public-ip <string>

end

Commands for OCI Active-Passive HA settings

Variable

Description

Default

tenant-ocid <string>

To get the OCI tenant ID:

  1. Log in to OCI.
  2. Go to Governance and Administration > Administration > Tenancy Details.
  3. Click the Tenancy you want to use.
  4. Copy the OCID of this Tenancy.
No default

user-ocid <string>

To get the User ID:

  1. Log in to OCI.
  2. Go to Governance and Administration > Identity > User.
  3. Click the user you want to use.
  4. Copy the OCID of this user.
No default

compartment-ocid <string>

To get the OCI compartment ID:

  1. Log in to OCI.
  2. Go to Governance and Administration > Identity > Compartments.
  3. Click the compartment that your load balancer is located in.
  4. Copy the OCID of this Tenancy.

Note: If you don't have a compartment, you can leave this option empty.

No default

loadbalancer-ocid <string>

To get the OCI LoadBalancer ID:

  1. Log in to OCI.
  2. Go to Core Infrastructure > Networking > Load Balancers.
  3. Click the load balancer used for the HA cluster.
  4. Copy the OCID of this load balancer.
No default

server-region-type {commercial | government}

If your OCI server region is either “US Federal Cloud with DISA Impact Level 5 Authorization Regions” or “US Government Cloud with FedRAMP Authorization Regions”, please enter Government. Otherwise please select Commercial.

commercial

server-region <region-id>

Enter the Region Identifier of your load balancer.

No default

private-key <userdef>

Specify the private key you have generated

for authentication when FortiWeb-VM connects to the load balancer.
See Generating RSA key.

No default
Commands for Azure Active-Passive HA settings

For Azure Active-Passive HA settings, it's recommended to configure the settings through GUI, where you can download a script to get the values. See Configuring Active-Passive HA.

Variable

Description

Default

rg-name <string>

Enter the resource group name No default

sub-id <string>

Enter the subcription ID. No default

tenant-id <string>

Enter the tenant ID. No default

pass <passwd>

Enter the function applicaiton password. No default

app-id <string>

Enter the function applicaiton ID. No default

nicFWBA <string>

Enter the interface name in FWBA. No default

nicFWBB <string>

Enter the interface name in FWBB.

No default

public-ip <string>

Enter the name of the master FortiWeb-VM's public IP.

No default