Fortinet Document Library

Version:


Table of Contents

About FortiGate for Azure

Deploying FortiGate on Azure

Deploying auto scaling on Azure

Single FortiGate-VM Deployment

Use case: High availability for FortiGate on Azure

Use case: Automatically updating dynamic addresses using Fabric connector

Resources

Upgrade Path Tool
6.0.0
Copy Link

Configurable variables

The following is a list of variables used during deployment and referenced in other sections of this guide:

Variable name

Description

Application ID

Application ID found on your registered application.

Application secret

Key added to the application.

Tenant ID

Directory ID on the Active Directory (AD) of your current subscription.

Resource group

Resource group that the Function App or the autoscale device and their components will be deployed in. Each service should be deployed into its own resource group.

Location

Region the resource will be deployed in.

App Name

Name of the Azure function.

Db Name

Name of the Cosmos database.

Storage Account Type

Storage account type.

Restapp_id

Refer to Setting up a service principal.

Autoscale_resource_group

Resource group name that the FortiGate autoscale template will be deployed in.

Scale_name

VMSS name that the FortiGate is deployed in.

FGT_config

Base configurations that FortiGate uses for cloudinit.

Package_Res_Url

Public URL of the zip file that contains the code for deploying the FortiGate autoscale function app.

instanceType

VM instance you want to deploy the FortiGate-VM with. The default is Standard_F2.

vnetName

Azure virtual network name.

Vnetaddressprfix

Virtual network prefix.

Subnet1name

Subnet1 name.

Subnet1prefix

Subnet1 prefix.

Subnet2name

Subnet2 name.

Subnet2prefix

Subnet2 prefix.

Subnet2loadbalancerip

Static IP address of the load balancer of the internal load balancer on subnet2.

Subnet3name

Subnet3 name.

Subnet3prefix

Subnet 3 prefix.

Subnet3loadbalancerip

Static IP address of the load balancer of the internal load balancer on subnet3.

Public IP address name

Public IP address name.

Vmss Name

Azure VM scale set name.

Capacity

It is recommended to use the default value.

mincapacity

maxcapacity

scaleupthreshold

scaledownthreshold

Adminusername

FortiGate admin username.

AdminPassword

FortiGate admin user password. This must include at least one uppercase letter, one lowercase letter, one digit, and one special character (such as !@#$%). The password must be between 11 and 26 characters in length.

EndPoints

Function App public URL.

artifactsBaseUrl

Locations where update_userdata.json is located.

Resources

Configurable variables

The following is a list of variables used during deployment and referenced in other sections of this guide:

Variable name

Description

Application ID

Application ID found on your registered application.

Application secret

Key added to the application.

Tenant ID

Directory ID on the Active Directory (AD) of your current subscription.

Resource group

Resource group that the Function App or the autoscale device and their components will be deployed in. Each service should be deployed into its own resource group.

Location

Region the resource will be deployed in.

App Name

Name of the Azure function.

Db Name

Name of the Cosmos database.

Storage Account Type

Storage account type.

Restapp_id

Refer to Setting up a service principal.

Autoscale_resource_group

Resource group name that the FortiGate autoscale template will be deployed in.

Scale_name

VMSS name that the FortiGate is deployed in.

FGT_config

Base configurations that FortiGate uses for cloudinit.

Package_Res_Url

Public URL of the zip file that contains the code for deploying the FortiGate autoscale function app.

instanceType

VM instance you want to deploy the FortiGate-VM with. The default is Standard_F2.

vnetName

Azure virtual network name.

Vnetaddressprfix

Virtual network prefix.

Subnet1name

Subnet1 name.

Subnet1prefix

Subnet1 prefix.

Subnet2name

Subnet2 name.

Subnet2prefix

Subnet2 prefix.

Subnet2loadbalancerip

Static IP address of the load balancer of the internal load balancer on subnet2.

Subnet3name

Subnet3 name.

Subnet3prefix

Subnet 3 prefix.

Subnet3loadbalancerip

Static IP address of the load balancer of the internal load balancer on subnet3.

Public IP address name

Public IP address name.

Vmss Name

Azure VM scale set name.

Capacity

It is recommended to use the default value.

mincapacity

maxcapacity

scaleupthreshold

scaledownthreshold

Adminusername

FortiGate admin username.

AdminPassword

FortiGate admin user password. This must include at least one uppercase letter, one lowercase letter, one digit, and one special character (such as !@#$%). The password must be between 11 and 26 characters in length.

EndPoints

Function App public URL.

artifactsBaseUrl

Locations where update_userdata.json is located.