Guide on Configuring Virtual Machines to Use FortiGate

JoelHarl · ‎06-04-2017

Hello,

I successfully followed "Fortinet FortiGate Virtual Appliance for Microsoft Azure Quick Start Guide". However, is there a guide on how to configure new Virtual Machines to work with FortiGate?

I have set my new virtual machine to use the FortiGate Protected VNET.

I have also assigned it to my Internal SubNet.

I have set the Public IP Address to "None" - the reasoning being traffic should be routed via FortiNet?

Network Security Group (firewall) "None".

Any assistance gratefully received.

MartHofm · ‎06-28-2017

Hi,

to get a NVA (network virtual appliance) up and running in Azure, it´s all about UDR (user definined routing) Tables.

https://github.com/MicrosoftDocs/azure-docs/blob/master/articles/virtual-network/virtual-networks-dm...

You don´t need the NSGs in the frontend and backend subnet in the example above, can also route all traffic through the nva.

This post can also help understanding Azure Networking, but it´s more for NVA HA:

https://fusecommunity.fortinet.com/p/fo/st/thread=2787&post=23655&posted=1#p23655

greetings

Martin

MartHofm · ‎06-28-2017

What i forgot to say, you also need to configure the routes to your Subnets on your Fortigate.