Fortinet black logo

OCI Administration Guide

Home FortiGate Public Cloud 7.2.0 OCI Administration Guide
7.2.0
7.4.0
7.2.0
7.0.0
6.4.0
6.2.0

Deploying the FortiGate-VM

Deploying the FortiGate-VM

    To deploy the FortiGate-VM:
  1. Set up the OCI virtual cloud network (VCN) environment. See Creating a VCN for same-AD HA topology.
  2. Deploy FortiGate-VMs in the environment for an active-passive configuration. See Creating a FortiGate-VM instance. To deploy FortiGate-VM from the marketplace, see Deploying FortiGate-VM via the marketplace.
  3. Configure extra VNICs for the FortiGate-VM. Ensure there are at least four network interfaces configured for each instance. See Checking the prerequisites. To create an extra VNIC, see Creating the second VNIC. To configure the extra VNIC, see Configuring the second VNIC on the FortiGate-VM.
  4. Update route rules to point to the internal/trust private IP address on the active FortiGate. Creating a separate route table for the internal/trust subnet is recommended:
    1. Go to Networking > Virtual Cloud Networks > <VCN used> > Route Tables, then click Create Route Table.
    2. Specify the route table to point to the internal/trust private IP address on the active FortiGate:

    3. Go to Networking > Virtual Cloud Networks > <VCN used>. Edit the desired subnet.
    4. Under Route Table, update the configuration to the newly created route table.
Previous
Next

Deploying the FortiGate-VM

    To deploy the FortiGate-VM:
  1. Set up the OCI virtual cloud network (VCN) environment. See Creating a VCN for same-AD HA topology.
  2. Deploy FortiGate-VMs in the environment for an active-passive configuration. See Creating a FortiGate-VM instance. To deploy FortiGate-VM from the marketplace, see Deploying FortiGate-VM via the marketplace.
  3. Configure extra VNICs for the FortiGate-VM. Ensure there are at least four network interfaces configured for each instance. See Checking the prerequisites. To create an extra VNIC, see Creating the second VNIC. To configure the extra VNIC, see Configuring the second VNIC on the FortiGate-VM.
  4. Update route rules to point to the internal/trust private IP address on the active FortiGate. Creating a separate route table for the internal/trust subnet is recommended:
    1. Go to Networking > Virtual Cloud Networks > <VCN used> > Route Tables, then click Create Route Table.
    2. Specify the route table to point to the internal/trust private IP address on the active FortiGate:

    3. Go to Networking > Virtual Cloud Networks > <VCN used>. Edit the desired subnet.
    4. Under Route Table, update the configuration to the newly created route table.
Previous
Next