Technical Tip: Configuring Address Object for FortiManager Cloud in FortiGate
| Description | This article describes how an address object can be created for FortiManager Cloud in FortiGate. |
| Scope | FortiGate, FortiManager Cloud. |
| Solution | Sometimes, it may be necessary to create an address object for FortiManager Cloud to be used in policies.
An address object for FortiManager Cloud can be created by going to the FortiGate -> Policy & Objects -> Addresses -> Create New -> Address and configuring the address as follows: FQDN: fortimanager.forticloud.com.
The following image shows an example of an address object for FortiManager Cloud in FortiGate that should be able to resolve to the correct IP.
The Address object can then be referenced, to a firewall policy. For example, a firewall policy can be created in FortiGate by going to Policy & Objects -> Firewall Policy -> Create New, and the address object for FortiManager Cloud created previously can be referenced in the Source/Destination field as shown in the Firewall Policy configuration below.
FortiGate can resolve this FQDN, as seen from the output of the command below:
If FortiGate is unable to resolve the FQDN object, this is likely due to the DNS server being unable to resolve the FQDN. Make sure to use a DNS server that can resolve fortimanager.forticloud.com in FortiGate -> Network -> DNS.
Related article: |
