{"id":363,"date":"2022-05-13T18:58:33","date_gmt":"2022-05-13T22:58:33","guid":{"rendered":"https:\/\/opentextbc.ca\/fortigatefirewall\/chapter\/deploy-fortigate-in-azure\/"},"modified":"2023-08-29T16:28:03","modified_gmt":"2023-08-29T20:28:03","slug":"deploy-fortigate-in-azure","status":"publish","type":"chapter","link":"https:\/\/opentextbc.ca\/fortigatefirewall\/chapter\/deploy-fortigate-in-azure\/","title":{"raw":"10.2 Deploy FortiGate in Azure","rendered":"10.2 Deploy FortiGate in Azure"},"content":{"raw":"<div class=\"textbox textbox--learning-objectives\"><header class=\"textbox__header\">\n<p class=\"textbox__title\">Learning Objectives<\/p>\n\n<\/header>\n<ul>\n \t<li>Create a FortiGate firewall in Azure through Marketplace<\/li>\n \t<li>Identify FortiGate subnets in Azure<\/li>\n<\/ul>\n<\/div>\n<div class=\"textbox shaded\"><strong>Scenario<\/strong>: In this lab, we'll learn how to deploy FortiGate in Azure.<\/div>\n<ol>\n \t<li>Go to Azure Marketplace and search for FortiGate.\n\n[caption id=\"attachment_352\" align=\"aligncenter\" width=\"500\"]<img class=\"wp-image-352\" src=\"https:\/\/opentextbc.ca\/wp-content\/uploads\/sites\/438\/2022\/04\/ScreenShot00001.png\" alt=\"Search for FortiGate in the Market Place\" width=\"500\" height=\"334\"> Figure 10.38: Search for FortiGate[\/caption]<\/li>\n \t<li>Select Fortinet FortiGate Next-Generation Firewall.\n\n[caption id=\"attachment_353\" align=\"aligncenter\" width=\"887\"]<img class=\"wp-image-353\" src=\"https:\/\/opentextbc.ca\/wp-content\/uploads\/sites\/438\/2023\/08\/ScreenShot00002.png\" alt=\"Select Fortinet FG Next-Gen\" width=\"887\" height=\"534\"> Figure 10.39: Select Fortinet FG Next-Gen[\/caption]<\/li>\n \t<li>Then, Select Single VM from dropdown list.\n\n[caption id=\"attachment_354\" align=\"aligncenter\" width=\"500\"]<img class=\"wp-image-354\" src=\"https:\/\/opentextbc.ca\/wp-content\/uploads\/sites\/438\/2023\/08\/ScreenShot00003.png\" alt=\"Select Single VM\" width=\"500\" height=\"146\"> Figure 10.40: Select Single VM[\/caption]<\/li>\n \t<li>Create a firewall information as Figure 10.41.\n\n[caption id=\"attachment_355\" align=\"aligncenter\" width=\"500\"]<img class=\"wp-image-355\" src=\"https:\/\/opentextbc.ca\/wp-content\/uploads\/sites\/438\/2023\/08\/ScreenShot00004.png\" alt=\"Create a Fortinet firewall\" width=\"500\" height=\"398\"> Figure 10.41: Create a Fortinet firewall[\/caption]<\/li>\n \t<li>Leave other tabs as default and press on <strong>\u201cReview+ create\u201d<\/strong>. It will validate your information and then you can create a FortiGate Firewall.\n\n[caption id=\"attachment_356\" align=\"aligncenter\" width=\"500\"]<img class=\"wp-image-356\" src=\"https:\/\/opentextbc.ca\/wp-content\/uploads\/sites\/438\/2023\/08\/ScreenShot00005.png\" alt=\"Validate Configuration\" width=\"500\" height=\"372\"> Figure 10.42: Validate configuration[\/caption]<\/li>\n \t<li>Then, it will start deployment of FortiGate. It takes around <strong>5 minutes<\/strong> to deploy FortiGate.\n\n[caption id=\"attachment_358\" align=\"aligncenter\" width=\"856\"]<img class=\"wp-image-357\" src=\"https:\/\/opentextbc.ca\/wp-content\/uploads\/sites\/438\/2023\/08\/ScreenShot00006.png\" alt=\"Deployment is in Progress\" width=\"856\" height=\"431\"> Figure 10.43: Deployment is in progress[\/caption]\n\n[caption id=\"attachment_358\" align=\"aligncenter\" width=\"1085\"]<img class=\"wp-image-358 size-full\" src=\"https:\/\/opentextbc.ca\/wp-content\/uploads\/sites\/438\/2023\/08\/ScreenShot00007.png\" alt=\"Deployment is complete\" width=\"1085\" height=\"320\"> Figure 10.44: Deployment is complete[\/caption]<\/li>\n \t<li>After deployment is completed, go to <strong>Resource group<\/strong> &gt; <strong>FortiGate<\/strong> &gt; <strong>Overview<\/strong> and look for FortiGate Public IP address.\n\n[caption id=\"attachment_360\" align=\"aligncenter\" width=\"1351\"]<img class=\"wp-image-359 size-full\" src=\"https:\/\/opentextbc.ca\/wp-content\/uploads\/sites\/438\/2023\/08\/ScreenShot00008.png\" alt=\"FortiGate Public IP Address\" width=\"1351\" height=\"748\"> Figure 10.45: FortiGate public IP address[\/caption]\n\n[caption id=\"attachment_360\" align=\"aligncenter\" width=\"1115\"]<img class=\"wp-image-360 size-full\" src=\"https:\/\/opentextbc.ca\/wp-content\/uploads\/sites\/438\/2023\/08\/ScreenShot00009.png\" alt=\"FortiGate Public IP Address\" width=\"1115\" height=\"417\"> Figure 10.46: FortiGate public IP address[\/caption]<\/li>\n \t<li>Type the IP address in the browser. You should be able to see the FortiGate credentials page. Enter your username and password to login in the firewall.\n\n[caption id=\"attachment_362\" align=\"aligncenter\" width=\"1470\"]<img class=\"wp-image-361 size-full\" src=\"https:\/\/opentextbc.ca\/wp-content\/uploads\/sites\/438\/2023\/08\/ScreenShot00010.png\" alt=\"FortiGate Firewall Credential Page to enter username and password \" width=\"1470\" height=\"662\"> Figure 10.47: FortiGate firewall credential page[\/caption]\n\n[caption id=\"attachment_362\" align=\"aligncenter\" width=\"500\"]<img class=\"wp-image-362\" src=\"https:\/\/opentextbc.ca\/wp-content\/uploads\/sites\/438\/2023\/08\/ScreenShot00011.png\" alt=\"FortiGate dashboard\" width=\"500\" height=\"299\"> Figure 10.48: FortiGate dashboard[\/caption]<\/li>\n \t<li>Based on Fortinet description, we have three subnets in Azure for FortiGate. <strong>External<\/strong>, <strong>Internal<\/strong> and <strong>Protected<\/strong>. If you are planning to connect a new virtual machine to the firewall internal interface, you should connect it to the Protected subnet.<\/li>\n<\/ol>\n<table class=\"grid\" style=\"width: 100%;\" cellspacing=\"0\"><caption>Table 10.2: FortiGate Subnet description in Azure<\/caption>\n<thead>\n<tr class=\"TableStyle-FortinetTable-Head-Header1\">\n<th class=\"TableStyle-FortinetTable-HeadE-Column1-Header1\">Subnet<\/th>\n<th class=\"TableStyle-FortinetTable-HeadD-Column2-Header1\">Description<\/th>\n<\/tr>\n<\/thead>\n<tbody>\n<tr class=\"TableStyle-FortinetTable-Body-Body1\">\n<td class=\"TableStyle-FortinetTable-BodyE-Column1-Body1\">Subnet1<\/td>\n<td class=\"TableStyle-FortinetTable-BodyD-Column2-Body1\">External subnet used to connect the FortiGate-VM to the Internet.<\/td>\n<\/tr>\n<tr class=\"TableStyle-FortinetTable-Body-Body2\">\n<td class=\"TableStyle-FortinetTable-BodyE-Column1-Body2\">Subnet2<\/td>\n<td class=\"TableStyle-FortinetTable-BodyD-Column2-Body2\">Internal subnet used as a transit network to one or multiple protected networks containing backend services, such as the web server.<\/td>\n<\/tr>\n<tr class=\"TableStyle-FortinetTable-Body-Body1\">\n<td class=\"TableStyle-FortinetTable-BodyB-Column1-Body1\">Subnet3<\/td>\n<td class=\"TableStyle-FortinetTable-BodyA-Column2-Body1\">Protected subnet used to deploy services. You can deploy multiples of these subnets. The traffic is sent to the FortiGate for inspection using UDR.<\/td>\n<\/tr>\n<\/tbody>\n<\/table>","rendered":"<div class=\"textbox textbox--learning-objectives\">\n<header class=\"textbox__header\">\n<p class=\"textbox__title\">Learning Objectives<\/p>\n<\/header>\n<ul>\n<li>Create a FortiGate firewall in Azure through Marketplace<\/li>\n<li>Identify FortiGate subnets in Azure<\/li>\n<\/ul>\n<\/div>\n<div class=\"textbox shaded\"><strong>Scenario<\/strong>: In this lab, we&#8217;ll learn how to deploy FortiGate in Azure.<\/div>\n<ol>\n<li>Go to Azure Marketplace and search for FortiGate.<br \/>\n<figure id=\"attachment_352\" aria-describedby=\"caption-attachment-352\" style=\"width: 500px\" class=\"wp-caption aligncenter\"><img loading=\"lazy\" decoding=\"async\" class=\"wp-image-352\" src=\"https:\/\/opentextbc.ca\/wp-content\/uploads\/sites\/438\/2022\/04\/ScreenShot00001.png\" alt=\"Search for FortiGate in the Market Place\" width=\"500\" height=\"334\" srcset=\"https:\/\/opentextbc.ca\/fortigatefirewall\/wp-content\/uploads\/sites\/438\/2022\/04\/ScreenShot00001.png 822w, https:\/\/opentextbc.ca\/fortigatefirewall\/wp-content\/uploads\/sites\/438\/2022\/04\/ScreenShot00001-300x200.png 300w, https:\/\/opentextbc.ca\/fortigatefirewall\/wp-content\/uploads\/sites\/438\/2022\/04\/ScreenShot00001-768x513.png 768w, https:\/\/opentextbc.ca\/fortigatefirewall\/wp-content\/uploads\/sites\/438\/2022\/04\/ScreenShot00001-65x43.png 65w, https:\/\/opentextbc.ca\/fortigatefirewall\/wp-content\/uploads\/sites\/438\/2022\/04\/ScreenShot00001-225x150.png 225w, https:\/\/opentextbc.ca\/fortigatefirewall\/wp-content\/uploads\/sites\/438\/2022\/04\/ScreenShot00001-350x234.png 350w\" sizes=\"auto, (max-width: 500px) 100vw, 500px\" \/><figcaption id=\"caption-attachment-352\" class=\"wp-caption-text\">Figure 10.38: Search for FortiGate<\/figcaption><\/figure>\n<\/li>\n<li>Select Fortinet FortiGate Next-Generation Firewall.<br \/>\n<figure id=\"attachment_353\" aria-describedby=\"caption-attachment-353\" style=\"width: 887px\" class=\"wp-caption aligncenter\"><img loading=\"lazy\" decoding=\"async\" class=\"wp-image-353\" src=\"https:\/\/opentextbc.ca\/wp-content\/uploads\/sites\/438\/2023\/08\/ScreenShot00002.png\" alt=\"Select Fortinet FG Next-Gen\" width=\"887\" height=\"534\" \/><figcaption id=\"caption-attachment-353\" class=\"wp-caption-text\">Figure 10.39: Select Fortinet FG Next-Gen<\/figcaption><\/figure>\n<\/li>\n<li>Then, Select Single VM from dropdown list.<br \/>\n<figure id=\"attachment_354\" aria-describedby=\"caption-attachment-354\" style=\"width: 500px\" class=\"wp-caption aligncenter\"><img loading=\"lazy\" decoding=\"async\" class=\"wp-image-354\" src=\"https:\/\/opentextbc.ca\/wp-content\/uploads\/sites\/438\/2023\/08\/ScreenShot00003.png\" alt=\"Select Single VM\" width=\"500\" height=\"146\" srcset=\"https:\/\/opentextbc.ca\/fortigatefirewall\/wp-content\/uploads\/sites\/438\/2023\/08\/ScreenShot00003.png 1058w, https:\/\/opentextbc.ca\/fortigatefirewall\/wp-content\/uploads\/sites\/438\/2023\/08\/ScreenShot00003-300x87.png 300w, https:\/\/opentextbc.ca\/fortigatefirewall\/wp-content\/uploads\/sites\/438\/2023\/08\/ScreenShot00003-1024x298.png 1024w, https:\/\/opentextbc.ca\/fortigatefirewall\/wp-content\/uploads\/sites\/438\/2023\/08\/ScreenShot00003-768x224.png 768w, https:\/\/opentextbc.ca\/fortigatefirewall\/wp-content\/uploads\/sites\/438\/2023\/08\/ScreenShot00003-65x19.png 65w, https:\/\/opentextbc.ca\/fortigatefirewall\/wp-content\/uploads\/sites\/438\/2023\/08\/ScreenShot00003-225x66.png 225w, https:\/\/opentextbc.ca\/fortigatefirewall\/wp-content\/uploads\/sites\/438\/2023\/08\/ScreenShot00003-350x102.png 350w\" sizes=\"auto, (max-width: 500px) 100vw, 500px\" \/><figcaption id=\"caption-attachment-354\" class=\"wp-caption-text\">Figure 10.40: Select Single VM<\/figcaption><\/figure>\n<\/li>\n<li>Create a firewall information as Figure 10.41.<br \/>\n<figure id=\"attachment_355\" aria-describedby=\"caption-attachment-355\" style=\"width: 500px\" class=\"wp-caption aligncenter\"><img loading=\"lazy\" decoding=\"async\" class=\"wp-image-355\" src=\"https:\/\/opentextbc.ca\/wp-content\/uploads\/sites\/438\/2023\/08\/ScreenShot00004.png\" alt=\"Create a Fortinet firewall\" width=\"500\" height=\"398\" srcset=\"https:\/\/opentextbc.ca\/fortigatefirewall\/wp-content\/uploads\/sites\/438\/2023\/08\/ScreenShot00004.png 1013w, https:\/\/opentextbc.ca\/fortigatefirewall\/wp-content\/uploads\/sites\/438\/2023\/08\/ScreenShot00004-300x239.png 300w, https:\/\/opentextbc.ca\/fortigatefirewall\/wp-content\/uploads\/sites\/438\/2023\/08\/ScreenShot00004-768x611.png 768w, https:\/\/opentextbc.ca\/fortigatefirewall\/wp-content\/uploads\/sites\/438\/2023\/08\/ScreenShot00004-65x52.png 65w, https:\/\/opentextbc.ca\/fortigatefirewall\/wp-content\/uploads\/sites\/438\/2023\/08\/ScreenShot00004-225x179.png 225w, https:\/\/opentextbc.ca\/fortigatefirewall\/wp-content\/uploads\/sites\/438\/2023\/08\/ScreenShot00004-350x278.png 350w\" sizes=\"auto, (max-width: 500px) 100vw, 500px\" \/><figcaption id=\"caption-attachment-355\" class=\"wp-caption-text\">Figure 10.41: Create a Fortinet firewall<\/figcaption><\/figure>\n<\/li>\n<li>Leave other tabs as default and press on <strong>\u201cReview+ create\u201d<\/strong>. It will validate your information and then you can create a FortiGate Firewall.<br \/>\n<figure id=\"attachment_356\" aria-describedby=\"caption-attachment-356\" style=\"width: 500px\" class=\"wp-caption aligncenter\"><img loading=\"lazy\" decoding=\"async\" class=\"wp-image-356\" src=\"https:\/\/opentextbc.ca\/wp-content\/uploads\/sites\/438\/2023\/08\/ScreenShot00005.png\" alt=\"Validate Configuration\" width=\"500\" height=\"372\" srcset=\"https:\/\/opentextbc.ca\/fortigatefirewall\/wp-content\/uploads\/sites\/438\/2023\/08\/ScreenShot00005.png 998w, https:\/\/opentextbc.ca\/fortigatefirewall\/wp-content\/uploads\/sites\/438\/2023\/08\/ScreenShot00005-300x223.png 300w, https:\/\/opentextbc.ca\/fortigatefirewall\/wp-content\/uploads\/sites\/438\/2023\/08\/ScreenShot00005-768x572.png 768w, https:\/\/opentextbc.ca\/fortigatefirewall\/wp-content\/uploads\/sites\/438\/2023\/08\/ScreenShot00005-65x48.png 65w, https:\/\/opentextbc.ca\/fortigatefirewall\/wp-content\/uploads\/sites\/438\/2023\/08\/ScreenShot00005-225x168.png 225w, https:\/\/opentextbc.ca\/fortigatefirewall\/wp-content\/uploads\/sites\/438\/2023\/08\/ScreenShot00005-350x261.png 350w\" sizes=\"auto, (max-width: 500px) 100vw, 500px\" \/><figcaption id=\"caption-attachment-356\" class=\"wp-caption-text\">Figure 10.42: Validate configuration<\/figcaption><\/figure>\n<\/li>\n<li>Then, it will start deployment of FortiGate. It takes around <strong>5 minutes<\/strong> to deploy FortiGate.<br \/>\n<figure id=\"attachment_358\" aria-describedby=\"caption-attachment-358\" style=\"width: 856px\" class=\"wp-caption aligncenter\"><img loading=\"lazy\" decoding=\"async\" class=\"wp-image-357\" src=\"https:\/\/opentextbc.ca\/wp-content\/uploads\/sites\/438\/2023\/08\/ScreenShot00006.png\" alt=\"Deployment is in Progress\" width=\"856\" height=\"431\" \/><figcaption id=\"caption-attachment-358\" class=\"wp-caption-text\">Figure 10.43: Deployment is in progress<\/figcaption><\/figure>\n<figure id=\"attachment_358\" aria-describedby=\"caption-attachment-358\" style=\"width: 1085px\" class=\"wp-caption aligncenter\"><img loading=\"lazy\" decoding=\"async\" class=\"wp-image-358 size-full\" src=\"https:\/\/opentextbc.ca\/wp-content\/uploads\/sites\/438\/2023\/08\/ScreenShot00007.png\" alt=\"Deployment is complete\" width=\"1085\" height=\"320\" srcset=\"https:\/\/opentextbc.ca\/fortigatefirewall\/wp-content\/uploads\/sites\/438\/2023\/08\/ScreenShot00007.png 1085w, https:\/\/opentextbc.ca\/fortigatefirewall\/wp-content\/uploads\/sites\/438\/2023\/08\/ScreenShot00007-300x88.png 300w, https:\/\/opentextbc.ca\/fortigatefirewall\/wp-content\/uploads\/sites\/438\/2023\/08\/ScreenShot00007-1024x302.png 1024w, https:\/\/opentextbc.ca\/fortigatefirewall\/wp-content\/uploads\/sites\/438\/2023\/08\/ScreenShot00007-768x227.png 768w, https:\/\/opentextbc.ca\/fortigatefirewall\/wp-content\/uploads\/sites\/438\/2023\/08\/ScreenShot00007-65x19.png 65w, https:\/\/opentextbc.ca\/fortigatefirewall\/wp-content\/uploads\/sites\/438\/2023\/08\/ScreenShot00007-225x66.png 225w, https:\/\/opentextbc.ca\/fortigatefirewall\/wp-content\/uploads\/sites\/438\/2023\/08\/ScreenShot00007-350x103.png 350w\" sizes=\"auto, (max-width: 1085px) 100vw, 1085px\" \/><figcaption id=\"caption-attachment-358\" class=\"wp-caption-text\">Figure 10.44: Deployment is complete<\/figcaption><\/figure>\n<\/li>\n<li>After deployment is completed, go to <strong>Resource group<\/strong> &gt; <strong>FortiGate<\/strong> &gt; <strong>Overview<\/strong> and look for FortiGate Public IP address.<br \/>\n<figure id=\"attachment_360\" aria-describedby=\"caption-attachment-360\" style=\"width: 1351px\" class=\"wp-caption aligncenter\"><img loading=\"lazy\" decoding=\"async\" class=\"wp-image-359 size-full\" src=\"https:\/\/opentextbc.ca\/wp-content\/uploads\/sites\/438\/2023\/08\/ScreenShot00008.png\" alt=\"FortiGate Public IP Address\" width=\"1351\" height=\"748\" srcset=\"https:\/\/opentextbc.ca\/fortigatefirewall\/wp-content\/uploads\/sites\/438\/2023\/08\/ScreenShot00008.png 1351w, https:\/\/opentextbc.ca\/fortigatefirewall\/wp-content\/uploads\/sites\/438\/2023\/08\/ScreenShot00008-300x166.png 300w, https:\/\/opentextbc.ca\/fortigatefirewall\/wp-content\/uploads\/sites\/438\/2023\/08\/ScreenShot00008-1024x567.png 1024w, https:\/\/opentextbc.ca\/fortigatefirewall\/wp-content\/uploads\/sites\/438\/2023\/08\/ScreenShot00008-768x425.png 768w, https:\/\/opentextbc.ca\/fortigatefirewall\/wp-content\/uploads\/sites\/438\/2023\/08\/ScreenShot00008-65x36.png 65w, https:\/\/opentextbc.ca\/fortigatefirewall\/wp-content\/uploads\/sites\/438\/2023\/08\/ScreenShot00008-225x125.png 225w, https:\/\/opentextbc.ca\/fortigatefirewall\/wp-content\/uploads\/sites\/438\/2023\/08\/ScreenShot00008-350x194.png 350w\" sizes=\"auto, (max-width: 1351px) 100vw, 1351px\" \/><figcaption id=\"caption-attachment-360\" class=\"wp-caption-text\">Figure 10.45: FortiGate public IP address<\/figcaption><\/figure>\n<figure id=\"attachment_360\" aria-describedby=\"caption-attachment-360\" style=\"width: 1115px\" class=\"wp-caption aligncenter\"><img loading=\"lazy\" decoding=\"async\" class=\"wp-image-360 size-full\" src=\"https:\/\/opentextbc.ca\/wp-content\/uploads\/sites\/438\/2023\/08\/ScreenShot00009.png\" alt=\"FortiGate Public IP Address\" width=\"1115\" height=\"417\" srcset=\"https:\/\/opentextbc.ca\/fortigatefirewall\/wp-content\/uploads\/sites\/438\/2023\/08\/ScreenShot00009.png 1115w, https:\/\/opentextbc.ca\/fortigatefirewall\/wp-content\/uploads\/sites\/438\/2023\/08\/ScreenShot00009-300x112.png 300w, https:\/\/opentextbc.ca\/fortigatefirewall\/wp-content\/uploads\/sites\/438\/2023\/08\/ScreenShot00009-1024x383.png 1024w, https:\/\/opentextbc.ca\/fortigatefirewall\/wp-content\/uploads\/sites\/438\/2023\/08\/ScreenShot00009-768x287.png 768w, https:\/\/opentextbc.ca\/fortigatefirewall\/wp-content\/uploads\/sites\/438\/2023\/08\/ScreenShot00009-65x24.png 65w, https:\/\/opentextbc.ca\/fortigatefirewall\/wp-content\/uploads\/sites\/438\/2023\/08\/ScreenShot00009-225x84.png 225w, https:\/\/opentextbc.ca\/fortigatefirewall\/wp-content\/uploads\/sites\/438\/2023\/08\/ScreenShot00009-350x131.png 350w\" sizes=\"auto, (max-width: 1115px) 100vw, 1115px\" \/><figcaption id=\"caption-attachment-360\" class=\"wp-caption-text\">Figure 10.46: FortiGate public IP address<\/figcaption><\/figure>\n<\/li>\n<li>Type the IP address in the browser. You should be able to see the FortiGate credentials page. Enter your username and password to login in the firewall.<br \/>\n<figure id=\"attachment_362\" aria-describedby=\"caption-attachment-362\" style=\"width: 1470px\" class=\"wp-caption aligncenter\"><img loading=\"lazy\" decoding=\"async\" class=\"wp-image-361 size-full\" src=\"https:\/\/opentextbc.ca\/wp-content\/uploads\/sites\/438\/2023\/08\/ScreenShot00010.png\" alt=\"FortiGate Firewall Credential Page to enter username and password\" width=\"1470\" height=\"662\" srcset=\"https:\/\/opentextbc.ca\/fortigatefirewall\/wp-content\/uploads\/sites\/438\/2023\/08\/ScreenShot00010.png 1470w, https:\/\/opentextbc.ca\/fortigatefirewall\/wp-content\/uploads\/sites\/438\/2023\/08\/ScreenShot00010-300x135.png 300w, https:\/\/opentextbc.ca\/fortigatefirewall\/wp-content\/uploads\/sites\/438\/2023\/08\/ScreenShot00010-1024x461.png 1024w, https:\/\/opentextbc.ca\/fortigatefirewall\/wp-content\/uploads\/sites\/438\/2023\/08\/ScreenShot00010-768x346.png 768w, https:\/\/opentextbc.ca\/fortigatefirewall\/wp-content\/uploads\/sites\/438\/2023\/08\/ScreenShot00010-65x29.png 65w, https:\/\/opentextbc.ca\/fortigatefirewall\/wp-content\/uploads\/sites\/438\/2023\/08\/ScreenShot00010-225x101.png 225w, https:\/\/opentextbc.ca\/fortigatefirewall\/wp-content\/uploads\/sites\/438\/2023\/08\/ScreenShot00010-350x158.png 350w\" sizes=\"auto, (max-width: 1470px) 100vw, 1470px\" \/><figcaption id=\"caption-attachment-362\" class=\"wp-caption-text\">Figure 10.47: FortiGate firewall credential page<\/figcaption><\/figure>\n<figure id=\"attachment_362\" aria-describedby=\"caption-attachment-362\" style=\"width: 500px\" class=\"wp-caption aligncenter\"><img loading=\"lazy\" decoding=\"async\" class=\"wp-image-362\" src=\"https:\/\/opentextbc.ca\/wp-content\/uploads\/sites\/438\/2023\/08\/ScreenShot00011.png\" alt=\"FortiGate dashboard\" width=\"500\" height=\"299\" srcset=\"https:\/\/opentextbc.ca\/fortigatefirewall\/wp-content\/uploads\/sites\/438\/2023\/08\/ScreenShot00011.png 1105w, https:\/\/opentextbc.ca\/fortigatefirewall\/wp-content\/uploads\/sites\/438\/2023\/08\/ScreenShot00011-300x179.png 300w, https:\/\/opentextbc.ca\/fortigatefirewall\/wp-content\/uploads\/sites\/438\/2023\/08\/ScreenShot00011-1024x612.png 1024w, https:\/\/opentextbc.ca\/fortigatefirewall\/wp-content\/uploads\/sites\/438\/2023\/08\/ScreenShot00011-768x459.png 768w, https:\/\/opentextbc.ca\/fortigatefirewall\/wp-content\/uploads\/sites\/438\/2023\/08\/ScreenShot00011-65x39.png 65w, https:\/\/opentextbc.ca\/fortigatefirewall\/wp-content\/uploads\/sites\/438\/2023\/08\/ScreenShot00011-225x134.png 225w, https:\/\/opentextbc.ca\/fortigatefirewall\/wp-content\/uploads\/sites\/438\/2023\/08\/ScreenShot00011-350x209.png 350w\" sizes=\"auto, (max-width: 500px) 100vw, 500px\" \/><figcaption id=\"caption-attachment-362\" class=\"wp-caption-text\">Figure 10.48: FortiGate dashboard<\/figcaption><\/figure>\n<\/li>\n<li>Based on Fortinet description, we have three subnets in Azure for FortiGate. <strong>External<\/strong>, <strong>Internal<\/strong> and <strong>Protected<\/strong>. If you are planning to connect a new virtual machine to the firewall internal interface, you should connect it to the Protected subnet.<\/li>\n<\/ol>\n<table class=\"grid\" style=\"width: 100%; border-spacing: 0px;\">\n<caption>Table 10.2: FortiGate Subnet description in Azure<\/caption>\n<thead>\n<tr class=\"TableStyle-FortinetTable-Head-Header1\">\n<th class=\"TableStyle-FortinetTable-HeadE-Column1-Header1\">Subnet<\/th>\n<th class=\"TableStyle-FortinetTable-HeadD-Column2-Header1\">Description<\/th>\n<\/tr>\n<\/thead>\n<tbody>\n<tr class=\"TableStyle-FortinetTable-Body-Body1\">\n<td class=\"TableStyle-FortinetTable-BodyE-Column1-Body1\">Subnet1<\/td>\n<td class=\"TableStyle-FortinetTable-BodyD-Column2-Body1\">External subnet used to connect the FortiGate-VM to the Internet.<\/td>\n<\/tr>\n<tr class=\"TableStyle-FortinetTable-Body-Body2\">\n<td class=\"TableStyle-FortinetTable-BodyE-Column1-Body2\">Subnet2<\/td>\n<td class=\"TableStyle-FortinetTable-BodyD-Column2-Body2\">Internal subnet used as a transit network to one or multiple protected networks containing backend services, such as the web server.<\/td>\n<\/tr>\n<tr class=\"TableStyle-FortinetTable-Body-Body1\">\n<td class=\"TableStyle-FortinetTable-BodyB-Column1-Body1\">Subnet3<\/td>\n<td class=\"TableStyle-FortinetTable-BodyA-Column2-Body1\">Protected subnet used to deploy services. You can deploy multiples of these subnets. The traffic is sent to the FortiGate for inspection using UDR.<\/td>\n<\/tr>\n<\/tbody>\n<\/table>\n","protected":false},"author":124,"menu_order":2,"template":"","meta":{"pb_show_title":"on","pb_short_title":"","pb_subtitle":"","pb_authors":[],"pb_section_license":""},"chapter-type":[],"contributor":[],"license":[],"class_list":["post-363","chapter","type-chapter","status-publish","hentry"],"part":313,"_links":{"self":[{"href":"https:\/\/opentextbc.ca\/fortigatefirewall\/wp-json\/pressbooks\/v2\/chapters\/363","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/opentextbc.ca\/fortigatefirewall\/wp-json\/pressbooks\/v2\/chapters"}],"about":[{"href":"https:\/\/opentextbc.ca\/fortigatefirewall\/wp-json\/wp\/v2\/types\/chapter"}],"author":[{"embeddable":true,"href":"https:\/\/opentextbc.ca\/fortigatefirewall\/wp-json\/wp\/v2\/users\/124"}],"version-history":[{"count":1,"href":"https:\/\/opentextbc.ca\/fortigatefirewall\/wp-json\/pressbooks\/v2\/chapters\/363\/revisions"}],"predecessor-version":[{"id":364,"href":"https:\/\/opentextbc.ca\/fortigatefirewall\/wp-json\/pressbooks\/v2\/chapters\/363\/revisions\/364"}],"part":[{"href":"https:\/\/opentextbc.ca\/fortigatefirewall\/wp-json\/pressbooks\/v2\/parts\/313"}],"metadata":[{"href":"https:\/\/opentextbc.ca\/fortigatefirewall\/wp-json\/pressbooks\/v2\/chapters\/363\/metadata\/"}],"wp:attachment":[{"href":"https:\/\/opentextbc.ca\/fortigatefirewall\/wp-json\/wp\/v2\/media?parent=363"}],"wp:term":[{"taxonomy":"chapter-type","embeddable":true,"href":"https:\/\/opentextbc.ca\/fortigatefirewall\/wp-json\/pressbooks\/v2\/chapter-type?post=363"},{"taxonomy":"contributor","embeddable":true,"href":"https:\/\/opentextbc.ca\/fortigatefirewall\/wp-json\/wp\/v2\/contributor?post=363"},{"taxonomy":"license","embeddable":true,"href":"https:\/\/opentextbc.ca\/fortigatefirewall\/wp-json\/wp\/v2\/license?post=363"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}