Fortinet black logo

AWS Deployment Guide

Home FortiDeceptor Public Cloud 4.2.0 AWS Deployment Guide
4.2.0
5.3.0
5.2.0
5.0.0
4.2.0
4.1.0

Preparing the network in AWS

Preparing the network in AWS

To prepare the network, create a Virtual Private Cloud (VPC) and create several subnets. Next you will create an Internet Gateway and route table. Associate the subnets with the route table and then allocate an elastic IP address.

Creating a Virtual Private Cloud (VPC)

To create a VPC in AWS:
  1. In the Services menu, go to Virtual Private Cloud > Your VPCs.
  2. Click Create VPC. The Create VPC page opens.

  3. Configure the following settings:
    Name TagEnter a name for the VPC such as fdc-vpc.
    IPv4 CIDR blockEnter the IP address for the VPC

Creating subnets in the VPC

Create several subnets in VPC for FortiDeceptor management and deployment.

To create subnets in the VPC:
  1. In the Services menu, go to Virtual Private Cloud > Subnets.
  2. Click Create subnet. The Create subnet page opens.
  3. Configure the following settings:
    VPC IDSelect an ID from the dropdown.
    Subnet nameEnter a name for the subnet such as fdc-mgmnet.
    IPv4 CIDR blockEnter the IP address for the network.

Creating an internet Gateway

To create an internet Gateway:
  1. In the Services menu, go to Virtual Private Cloud > Internet Gateways.
  2. Click Create Internet Gateway. The Create Internet Gateway page opens.
  3. In the Name tag field, enter a name for the tag such as fdc-publicaccess-gw.

  4. Click Create Internet Gateway.

Creating a route table

To create a route table:
  1. In the Services menu, go to Virtual Private Cloud > Route Tables.
  2. Click Create route table. The Create route table page opens.
  3. In the Name field, enter a name for the table such as fdcvpc-defualt-route.

  4. Click Create route table.
  5. Open the route table you created to edit it.
  6. Under Edit routes, configure the following settings:

    DestinationEnter 0.0.0.0/0.
    TargetEnter the Internet gateway you created.

  7. Click Save changes.

Associating subnets with a route table

Associate a subnet with the route table to apply route rules to that specific subnet.

To associate subnets with Route Table:
  1. In the Services menu, go to Virtual Private Cloud > Subnets.
  2. Click the subnet you created. The Edit route table association page opens.
  3. In the Route table ID field, select the route table you just created.

  4. Click Save.

Allocating an elastic IP address

Allocate a public IP for public access to FortiDeceptor management port later. This step is not required for deployment.

To allocate an elastic IP address:
  1. In the Services menu, go to Virtual Private Cloud > Elastic IPs.
  2. Select an elastic IP. The Elastic IP address settings window opens.
  3. Click Allocate.

Previous
Next

Preparing the network in AWS

To prepare the network, create a Virtual Private Cloud (VPC) and create several subnets. Next you will create an Internet Gateway and route table. Associate the subnets with the route table and then allocate an elastic IP address.

Creating a Virtual Private Cloud (VPC)

To create a VPC in AWS:
  1. In the Services menu, go to Virtual Private Cloud > Your VPCs.
  2. Click Create VPC. The Create VPC page opens.

  3. Configure the following settings:
    Name TagEnter a name for the VPC such as fdc-vpc.
    IPv4 CIDR blockEnter the IP address for the VPC

Creating subnets in the VPC

Create several subnets in VPC for FortiDeceptor management and deployment.

To create subnets in the VPC:
  1. In the Services menu, go to Virtual Private Cloud > Subnets.
  2. Click Create subnet. The Create subnet page opens.
  3. Configure the following settings:
    VPC IDSelect an ID from the dropdown.
    Subnet nameEnter a name for the subnet such as fdc-mgmnet.
    IPv4 CIDR blockEnter the IP address for the network.

Creating an internet Gateway

To create an internet Gateway:
  1. In the Services menu, go to Virtual Private Cloud > Internet Gateways.
  2. Click Create Internet Gateway. The Create Internet Gateway page opens.
  3. In the Name tag field, enter a name for the tag such as fdc-publicaccess-gw.

  4. Click Create Internet Gateway.

Creating a route table

To create a route table:
  1. In the Services menu, go to Virtual Private Cloud > Route Tables.
  2. Click Create route table. The Create route table page opens.
  3. In the Name field, enter a name for the table such as fdcvpc-defualt-route.

  4. Click Create route table.
  5. Open the route table you created to edit it.
  6. Under Edit routes, configure the following settings:

    DestinationEnter 0.0.0.0/0.
    TargetEnter the Internet gateway you created.

  7. Click Save changes.

Associating subnets with a route table

Associate a subnet with the route table to apply route rules to that specific subnet.

To associate subnets with Route Table:
  1. In the Services menu, go to Virtual Private Cloud > Subnets.
  2. Click the subnet you created. The Edit route table association page opens.
  3. In the Route table ID field, select the route table you just created.

  4. Click Save.

Allocating an elastic IP address

Allocate a public IP for public access to FortiDeceptor management port later. This step is not required for deployment.

To allocate an elastic IP address:
  1. In the Services menu, go to Virtual Private Cloud > Elastic IPs.
  2. Select an elastic IP. The Elastic IP address settings window opens.
  3. Click Allocate.

Previous
Next