Skip to main content
JohnHogman
JohnHogman
New Member
August 15, 2025
Question

Deploy HA Active/Passive FG in Azure marketplace with SDN connector

  • August 15, 2025
  • 3 replies
  • 1058 views

Hi,

I have a problem.

I'm trying to deploy a Fortigate HA Active/Passive SDN connector cluster.

If I go to marketplace, Choose the Fortigate Azure application and with the plan "Active-passive HA with fabric connector failover", I can't choose the desired VM type that is in the sizing guide.
The sizing guide says that I should choose the D2s_V5 VM. But it isn't in the list.

If I instead choose to deploy a single firewall from the marketplace, the D2s_V5 VM is there to choose.

Any suggestions? Am I missing something?

3 replies

Anthony_E
Staff
Anthony_E
Staff
August 18, 2025

Hello John,


Thank you for using the Community Forum. I will seek to get you an answer or help. We will reply to this thread with an update as soon as possible.


Thanks,

Best Regards
Anthony_E
Staff
Anthony_E
Staff
August 20, 2025

Hello John,

 

We are still looking for someone to help you.

We will come back to you ASAP.


Thanks,

Best Regards
Anthony_E
Staff
Anthony_E
Staff
August 22, 2025

Hi John,

 

To deploy an HA Active/Passive FortiGate in Azure Marketplace with an SDN Connector, follow these steps:

  1. Prepare Azure Environment: Ensure your Azure subscription is properly configured and registered with necessary resource providers like `Microsoft.Network` and `Microsoft.ClassicNetwork`.
  2. Access Control: Verify that both FortiGate VMs have write access to the necessary Azure resources. Refer to the FortiGate Public Cloud 7.4.0 Admin Guide for detailed access control setup.
  3. Deploy FortiGate VMs: Use the Azure Marketplace to deploy the FortiGate VMs. Ensure you select the appropriate size and region for your deployment.
  4. Configure SDN Connector: Set up the SDN Connector on both FortiGate VMs. This will manage the failover process by moving the public IP address and updating route tables during a failover event.
  5. Set Up HA Configuration: Deploy the HA Active/Passive cluster using the templates provided by Fortinet. You can find these templates and detailed instructions on the Fortinet GitHub repository: [Fortinet Azure Templates](https://github.com/fortinet/azure-templates/tree/main/FortiGate/Active-Passive-SDN).
  6. Verify Configuration: Ensure the SDN Connector is correctly configured to handle failover. Check the configuration against the examples provided in the documentation to ensure accuracy.
  7. Testing: Test the failover process to ensure that the public IP and route tables are correctly updated during a failover event.
Best Regards
Terms & ConditionsAccessibility statement