Fortinet Document Library

Version:


Table of Contents

About FortiGate for AWS

Deploying FortiGate on AWS

Deploying auto scaling on AWS

Single FortiGate-VM Deployment

Use Case: High Availability for FortiGate on AWS

Security Fabric Connector Integration with AWS

Resources

Upgrade Path Tool
6.0.0
Copy Link

Creating S3 buckets with license and firewall configurations

  1. On the AWS console, create an Amazon S3 bucket at the root level for the bootstrap files.
  2. Upload the license file and configuration file(s) to the S3 bucket. In this example, one license file and two configuration files are uploaded. For example, let's have the following FortiOS CLI command statement in the config file:

    config sys global

    set hostname jkatocloudinit

    end

    This is to set a hostname as part of initial configuration at first-time launch.

  3. Amazon S3 creates bucket in a region you specify. You can choose any AWS Region that is geographically close to you to optimize latency, minimize costs, or address regulatory requirements. To choose a region, use the following code:

    {

    "bucket" : "jkatoconf",

    "region" : "us-east-2",

    "license" : "/FGVM020000130370.lic",

    "config" : "/fgtconfig-init.txt",

    }

    Although the S3 bucket and the firewall can be in different regions, it is highly recommended that they are in the same region in order to speed up the bootstrapping process.

Resources

Creating S3 buckets with license and firewall configurations

  1. On the AWS console, create an Amazon S3 bucket at the root level for the bootstrap files.
  2. Upload the license file and configuration file(s) to the S3 bucket. In this example, one license file and two configuration files are uploaded. For example, let's have the following FortiOS CLI command statement in the config file:

    config sys global

    set hostname jkatocloudinit

    end

    This is to set a hostname as part of initial configuration at first-time launch.

  3. Amazon S3 creates bucket in a region you specify. You can choose any AWS Region that is geographically close to you to optimize latency, minimize costs, or address regulatory requirements. To choose a region, use the following code:

    {

    "bucket" : "jkatoconf",

    "region" : "us-east-2",

    "license" : "/FGVM020000130370.lic",

    "config" : "/fgtconfig-init.txt",

    }

    Although the S3 bucket and the firewall can be in different regions, it is highly recommended that they are in the same region in order to speed up the bootstrapping process.