Fortinet Document Library

Version:


Table of Contents

About FortiGate for GCP

Deploying FortiGate-VM on Google Cloud Marketplace

Deploying FortiGate-VM on Google Cloud Compute Engine

Deploying FortiGate-VM Using Google Cloud SDK

Use Case: High Availability for FortiGate on GCP

Security Fabric Connector Integration with GCP

Resources

Upgrade Path Tool
6.0.0
Copy Link

Deploying the FortiGate-VM Instance

  1. Go to Compute Engine > VM Instances. Click CREATE INSTANCE.

  2. Configure the instance:
    1. In the Name field, enter the desired name. Select the desired zone and machine type.

    2. Under Boot disk, click Change.
    3. On the Custom images tab, select the newly created image. Change the boot disk type as needed, and enter 10 for the Size. Click Select.

    4. Ensure the new image is selected.
    5. Select Allow HTTPS traffic. You will access the FortiGate management console using HTTPS. If you allocate multiple network interfaces to the FortiGate, this is nullified at this stage. You can configure this later. See Configuring Google Cloud Firewall Rules.
    6. Click Networking. Here you want to specify multiple network interfaces. One is located on the public-facing side of the Internet, the other facing a protected private network.

    7. Edit the first network interface. Preferably assign a static IP address. Under IP Forwarding, select On. Configure other items as needed and click Done.

    8. Click Add network interface to add the second interface for the private subnet. If you click Network there will be the list of preconfigured networks. Choose the one located in the same region as you chose to deploy the instance. Under External IP, select None.

  3. After configuring all elements, click Create.

    After 15-30 minutes, the instance should be up and running.

Resources

Deploying the FortiGate-VM Instance

  1. Go to Compute Engine > VM Instances. Click CREATE INSTANCE.

  2. Configure the instance:
    1. In the Name field, enter the desired name. Select the desired zone and machine type.

    2. Under Boot disk, click Change.
    3. On the Custom images tab, select the newly created image. Change the boot disk type as needed, and enter 10 for the Size. Click Select.

    4. Ensure the new image is selected.
    5. Select Allow HTTPS traffic. You will access the FortiGate management console using HTTPS. If you allocate multiple network interfaces to the FortiGate, this is nullified at this stage. You can configure this later. See Configuring Google Cloud Firewall Rules.
    6. Click Networking. Here you want to specify multiple network interfaces. One is located on the public-facing side of the Internet, the other facing a protected private network.

    7. Edit the first network interface. Preferably assign a static IP address. Under IP Forwarding, select On. Configure other items as needed and click Done.

    8. Click Add network interface to add the second interface for the private subnet. If you click Network there will be the list of preconfigured networks. Choose the one located in the same region as you chose to deploy the instance. Under External IP, select None.

  3. After configuring all elements, click Create.

    After 15-30 minutes, the instance should be up and running.