Fortinet black logo

GCP Administration Guide

Home FortiGate Public Cloud 7.4.0 GCP Administration Guide
7.4.0
7.4.0
7.2.0
7.0.0
6.4.0
6.2.0

FortiGate Autoscale for GCP features

FortiGate Autoscale for GCP features

Major components

Component

Description

Instance group
  • Contains one to many FortiGate-VMs (pay as you go licensing model). Dynamically scales out or scale in based on cpu_utilization.
    		•

    configset folder

    Contains files that are loaded as the initial configuration for a new FortiGate-VM instance.

    baseconfig
  • Base configuration. You can modify this file as needed to meet your network requirements. Configset placeholders explain placeholders such as {SYNC_INTERFACE}.
    		•

    Tables in Firestore

    Required to store information such as health check monitoring, primary election, state transitions, and so on. You should not modify these records unless required for troubleshooting purposes.

    Configset placeholders

    When the FortiGate-VM requests the configuration from the autoscaling function, the placeholders in the following table are replaced with associated environment variables stored in Cloud Functions:

    Placeholder

    Type

    Description

    {SYNC_INTERFACE}

    Text

    Interface for FortiGate-VMs to synchronize information.

    All characters must be lowercase.

    {CALLBACK_URL}

    URL

    Cloud Functions URL to interact with the autoscaling handler script.

    Automatically generated during the Terraform deployment.

    {PSK_SECRET}

    Text

    Preshared key used in FortiOS.

    Randomly generated during the Terraform deployment.

    Note

    Changes to the PSK secret after FortiGate Autoscale for GCP has been deployed are not reflected here. For new instances to be spawned with the changed PSK secret, this environment variable will need to be manually updated.

    {ADMIN_PORT}

    Number

    A port number specified for administration login.

    A positive integer such as 443 etc.

    Default value: 8443.

    Note

    Changes to the admin port after deployment are not reflected here. For new instances to be spawned with the changed admin port, this environment variable will need to be updated.
    Previous
    Next

    FortiGate Autoscale for GCP features

    Major components

    Component

    Description

    Instance group
  • Contains one to many FortiGate-VMs (pay as you go licensing model). Dynamically scales out or scale in based on cpu_utilization.
    		•

    configset folder

    Contains files that are loaded as the initial configuration for a new FortiGate-VM instance.

    baseconfig
  • Base configuration. You can modify this file as needed to meet your network requirements. Configset placeholders explain placeholders such as {SYNC_INTERFACE}.
    		•

    Tables in Firestore

    Required to store information such as health check monitoring, primary election, state transitions, and so on. You should not modify these records unless required for troubleshooting purposes.

    Configset placeholders

    When the FortiGate-VM requests the configuration from the autoscaling function, the placeholders in the following table are replaced with associated environment variables stored in Cloud Functions:

    Placeholder

    Type

    Description

    {SYNC_INTERFACE}

    Text

    Interface for FortiGate-VMs to synchronize information.

    All characters must be lowercase.

    {CALLBACK_URL}

    URL

    Cloud Functions URL to interact with the autoscaling handler script.

    Automatically generated during the Terraform deployment.

    {PSK_SECRET}

    Text

    Preshared key used in FortiOS.

    Randomly generated during the Terraform deployment.

    Note

    Changes to the PSK secret after FortiGate Autoscale for GCP has been deployed are not reflected here. For new instances to be spawned with the changed PSK secret, this environment variable will need to be manually updated.

    {ADMIN_PORT}

    Number

    A port number specified for administration login.

    A positive integer such as 443 etc.

    Default value: 8443.

    Note

    Changes to the admin port after deployment are not reflected here. For new instances to be spawned with the changed admin port, this environment variable will need to be updated.
    Previous
    Next