Creating Interfaces for Fortigate-VM

Hello,

When you deploy the .ovf file of the FortiGate-VM, 10 network interfaces are automatically assigned to the VM.

Network 1-10 is mapped to port1 - 10 on the FortiGate-VM. First to configure Layer 2, edit the settings of the VM, and change the Destination Network to the correct vswitch nic or vlan (i assume you know about how to configure those). So lets say Network 1 is mapped to WAN and Network 2 is mapped to LAN.

Then to configure Layer 3: open up the console of the FG-VM and configure the interfaces:

# config system interface

# edit port1

# set ip <WAN IP> <network mask>

# set allowaccess ping

# next

# edit port2

# set ip <LAN IP> <network mask>

# set allowaccess ping ssh http https snmp (whatever services you want to enable)

#end

Also note that the FG-VM needs to check its license at the FortiGuard cloud services. To do so a default route needs to be configured and it needs to be able to resolve DNS queries. By default the Fortinet DNS servers are used. Add default route:

# config router static

# edit 0

# set device port1

# set gateway <next hop for WAN, e.g. WAN router>

# end

These examples could change if there are actually multiple/different lan networks in the virtualised environment you connect to. So are the servers all located in the same network? What is the current gateway for those virtual networks or is this a new deployment?

More info at http://docs.fortinet.com/uploaded/files/2324/fortigate-vm-install-52.pdf