Hello, just a simple question (I hope)
We want to move a Fortigate vm cluster from one datastore to another. Are there any special considerations to take into account or can we just move it and make sure all virtual (network) interfaces do match? FortiOS is 5.0.10
Thank you and regards,
Ralph
Solved! Go to Solution.
Nominating a forum post submits a request to create a new Knowledge Article based on the forum post topic. Please ensure your nomination includes a solution within the reply.
Hi
from my point of view you can do it but there is one thing to think about and to be careful:
A VM FGT is using a license file. If you load the license file to FGT afterwards FGT comunicates to FortiGuard Cloud Service to register the VM with the correspoding license file and THE IP of the instance (using IP which is used by comunicating to FortiGuard). If you come up with the new Instance in the new datacenter and "YOU DID NOT SHUTDOWN THE OLD ONE" the new instance is asap deactivated and you have to open Customer Ticket to explain etc. From this point of view YOU HAVE TO BE CAREFUL that the old instance is NOT anymore active if you bring up the new instance even it is the same as the old instance (new location). If you look on this it should work out of the box and you can do it 3 times (innofficial information) until the license will be deactivated which means: There is something like a ticker on the license which allows you to change the IP which comunicates to FortiGuard 3 times afterwards if needed you have to open Customer Ticket to ask to reset the ticker. I have many customers which did such a move like you would like to do and as long you have the old instance not active at time the new instance comes up it should work out of the box.
hope this helps.
have fun
Andrea
Hi
from my point of view you can do it but there is one thing to think about and to be careful:
A VM FGT is using a license file. If you load the license file to FGT afterwards FGT comunicates to FortiGuard Cloud Service to register the VM with the correspoding license file and THE IP of the instance (using IP which is used by comunicating to FortiGuard). If you come up with the new Instance in the new datacenter and "YOU DID NOT SHUTDOWN THE OLD ONE" the new instance is asap deactivated and you have to open Customer Ticket to explain etc. From this point of view YOU HAVE TO BE CAREFUL that the old instance is NOT anymore active if you bring up the new instance even it is the same as the old instance (new location). If you look on this it should work out of the box and you can do it 3 times (innofficial information) until the license will be deactivated which means: There is something like a ticker on the license which allows you to change the IP which comunicates to FortiGuard 3 times afterwards if needed you have to open Customer Ticket to ask to reset the ticker. I have many customers which did such a move like you would like to do and as long you have the old instance not active at time the new instance comes up it should work out of the box.
hope this helps.
have fun
Andrea
Thank you, I will take this into consideration!
Kind regards,
Ralph
Hello Andrea,
I have few questions regarding your statement.
What exactly do you mean by "shut down"?
Does the instance need to be in shut down state or is it enough if I just cut its connection to the internet?
Additionally, currently I am using FortiGate VM in AWS.
If I want to move the license within AWS to another FortiGate VM with making sure to move the elastic IP from the old instance to the new one (so the new one will have the exact same public IP) Can I use the same license file on the new device to active my FG?
Will there be a problem with the change in the serial number?
(Note: Before activation I would move the elastic IP from the original VM to the new, with this action I would cut the old VM's connection to the internet.
Thanks,
D.
Select Forum Responses to become Knowledge Articles!
Select the “Nominate to Knowledge Base” button to recommend a forum post to become a knowledge article.
User | Count |
---|---|
1558 | |
1033 | |
749 | |
443 | |
210 |
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2024 Fortinet, Inc. All Rights Reserved.