Fortinet black logo

Azure Deployment Guide

Home FortiNAC-F 7.2.0 Azure Deployment Guide
7.2.0
7.4.0
7.2.0

Step 7: Create Second Network Interface (port2)

Step 7: Create Second Network Interface (port2)

If the FortiNAC Service Network will be used to restrict network access for untrusted endpoints, create a second network interface. Otherwise, this step can be skipped.

This interface represents port2 or the FortiNAC Service Network interface. DHCP, DNS, captive portal and agent communication for restricted endpoints will be served from this interface.

  1. Select Networking > Virtual network/subnet > Subnets.

  2. Click "+ Subnet".

  3. Create the subnet to which the port2 interface will be assigned.

  4. Stop VM.

  5. Click Networking

  6. Click Attach Network Interface

  7. Click Create and Attach Network Interface

  8. Configure the interface:

    • Network Interface Name: NAC Service Network

    • Select the new subnet from drill down

    • NIC network security group: Basic

    • Private IP address assignment: Static

    • Enter IP address

  9. Click Create

  10. Start VM.

  11. Reconnect via SSH to the FortiNAC VM using the static address configured within the default route (not port2).

  12. Verify both port1 and port2 are created by typing

    show system interface

Related Links

Configuring multiple network interfaces:

https://docs.microsoft.com/en-us/azure/virtual-machines/linux/multiple-nics?toc=/azure/virtual-network/toc.json

Adding and removing network interfaces:

https://docs.microsoft.com/en-us/azure/virtual-network/virtual-network-network-interface-vm

Previous
Next

Step 7: Create Second Network Interface (port2)

If the FortiNAC Service Network will be used to restrict network access for untrusted endpoints, create a second network interface. Otherwise, this step can be skipped.

This interface represents port2 or the FortiNAC Service Network interface. DHCP, DNS, captive portal and agent communication for restricted endpoints will be served from this interface.

  1. Select Networking > Virtual network/subnet > Subnets.

  2. Click "+ Subnet".

  3. Create the subnet to which the port2 interface will be assigned.

  4. Stop VM.

  5. Click Networking

  6. Click Attach Network Interface

  7. Click Create and Attach Network Interface

  8. Configure the interface:

    • Network Interface Name: NAC Service Network

    • Select the new subnet from drill down

    • NIC network security group: Basic

    • Private IP address assignment: Static

    • Enter IP address

  9. Click Create

  10. Start VM.

  11. Reconnect via SSH to the FortiNAC VM using the static address configured within the default route (not port2).

  12. Verify both port1 and port2 are created by typing

    show system interface

Related Links

Configuring multiple network interfaces:

https://docs.microsoft.com/en-us/azure/virtual-machines/linux/multiple-nics?toc=/azure/virtual-network/toc.json

Adding and removing network interfaces:

https://docs.microsoft.com/en-us/azure/virtual-network/virtual-network-network-interface-vm

Previous
Next