Fortinet Document Library

Version:

6.4.0
6.2.0
FortiVoice / FortiFone FortiGate / FortiOS FortiAnalyzer FortiManager FortiWeb FortiTester FortiProxy FortiAuthenticator FortiADC FortiSandbox FortiWeb Manager

Table of Contents

Azure Cookbook

Resources

Upgrade Path Tool
Home Azure/Azure Stack FortiGate / FortiOS
6.4 6.2 6.0 5.6

Azure Cookbook

6.2.0
6.4.0
6.2.0
Download PDF
Copy Link

Template parameters

The custom template requires input for all fields provided. All italicized entries below are for example purposes only. Replace these with your own values as pertains to your environment. It is a good idea to draw a network diagram similar to the one presented earlier, replacing the values with your own, before proceeding with invoking the template.

Parameter

Value

BASICS

Subscription

My test subscription

Resource group

MYRESOURCEGROUP

Location

West Europe

SETTINGS

 

Location

West Europe. This must be the same as the BASICS > Location.

Admin Username

fortiadmin. Choose a username other than root or admin.

Admin Password

MyPassword12. Choose a password with character complexity.

FortiGate Name Prefix

FGHA

FortiGate Image SKU

Fortinet_fg-vm

FortiGate Version

latest

Instance Type

Standard F4. Choose instances that support at least four network interfaces to configure HA.

Public IP New Or Existing

new

Public IP2New Or Existing

new

Public IP3New Or Existing

new

Public IP Address Name

FGTClusterPublicIP

Public IP Address Resource Group

MYRESOURCEGROUP. This must be the same as the Resource group under BASICS.

Public IP Address2Name

FGTAMgmtPublicIP

Public IP Address2Resource Group

MYRESOURCEGROUP

Public IP Address3Name

FGTBMgmtPublicIP

Public IP Address3Resource Group

MYRESOURCEGROUP

Public IP Address Type

Static

Vnet New Or Existing

new

Vnet Name

FGHAVNet. When naming from an existing VNet, ensure it already exists.

Vnet Resource Group

MYRESOURCEGROUP

Vnet Address Prefix

10.0.0.0/16

Subnet1Name

EntrySubnet

Subnet1Prefix

10.0.1.0/24

Subnet2Name

TransitSubnet

Subnet2Prefix

10.0.2.0/24

FGT-A-IP-Subnet2

10.0.2.4

Subnet3Name

HASyncSubnet

Subnet3Prefix

10.0.3.0/24

Subnet4Name

ManagementSubnet

Subnet4Prefix

10.0.4.0/24

Subnet5Name

ProtectedSubnet

Subnet5Prefix

10.0.5.0/24

Fortinet Tags

<keep intact>

Artifacts Base Url

<keep intact>

You are required to enter values in all fields. If you see blank fields, manually enter values.

note icon

You must replace subnets and IP addresses with your own based on your VNet variables. The resource group name shown as "MYRESOURCEGROUP" in the example should be the same in BASICS and SETTINGS. Otherwise, deployment will fail.

After inputting all values, agree to the terms and conditions. You can also select Pin to dashboard if desired.

After this, the new FortiGate-VM active-passive HA deployment is in progress. Check your notifications (a bell icon) for more information. Deploying with a custom template can take time, so be patient.

Resources

Upgrade Path Tool

Template parameters

The custom template requires input for all fields provided. All italicized entries below are for example purposes only. Replace these with your own values as pertains to your environment. It is a good idea to draw a network diagram similar to the one presented earlier, replacing the values with your own, before proceeding with invoking the template.

Parameter

Value

BASICS

Subscription

My test subscription

Resource group

MYRESOURCEGROUP

Location

West Europe

SETTINGS

 

Location

West Europe. This must be the same as the BASICS > Location.

Admin Username

fortiadmin. Choose a username other than root or admin.

Admin Password

MyPassword12. Choose a password with character complexity.

FortiGate Name Prefix

FGHA

FortiGate Image SKU

Fortinet_fg-vm

FortiGate Version

latest

Instance Type

Standard F4. Choose instances that support at least four network interfaces to configure HA.

Public IP New Or Existing

new

Public IP2New Or Existing

new

Public IP3New Or Existing

new

Public IP Address Name

FGTClusterPublicIP

Public IP Address Resource Group

MYRESOURCEGROUP. This must be the same as the Resource group under BASICS.

Public IP Address2Name

FGTAMgmtPublicIP

Public IP Address2Resource Group

MYRESOURCEGROUP

Public IP Address3Name

FGTBMgmtPublicIP

Public IP Address3Resource Group

MYRESOURCEGROUP

Public IP Address Type

Static

Vnet New Or Existing

new

Vnet Name

FGHAVNet. When naming from an existing VNet, ensure it already exists.

Vnet Resource Group

MYRESOURCEGROUP

Vnet Address Prefix

10.0.0.0/16

Subnet1Name

EntrySubnet

Subnet1Prefix

10.0.1.0/24

Subnet2Name

TransitSubnet

Subnet2Prefix

10.0.2.0/24

FGT-A-IP-Subnet2

10.0.2.4

Subnet3Name

HASyncSubnet

Subnet3Prefix

10.0.3.0/24

Subnet4Name

ManagementSubnet

Subnet4Prefix

10.0.4.0/24

Subnet5Name

ProtectedSubnet

Subnet5Prefix

10.0.5.0/24

Fortinet Tags

<keep intact>

Artifacts Base Url

<keep intact>

You are required to enter values in all fields. If you see blank fields, manually enter values.

note icon

You must replace subnets and IP addresses with your own based on your VNet variables. The resource group name shown as "MYRESOURCEGROUP" in the example should be the same in BASICS and SETTINGS. Otherwise, deployment will fail.

After inputting all values, agree to the terms and conditions. You can also select Pin to dashboard if desired.

After this, the new FortiGate-VM active-passive HA deployment is in progress. Check your notifications (a bell icon) for more information. Deploying with a custom template can take time, so be patient.