Chapter 10- Cloud Technologies
10-5 Deploy FortiGate in AWS
- Create a VPC, public and private subnet, Internet Gateway, route tables
- Create a FortiGate firewall in AWS through Market Place
- Identify FortiGate subnets in AWS
1- Create a VPC
2- Create a subnet
3- Create an Internet Gateway
4- Create a new Public Route
By default, name of the “built-in route” is “-“. Rename it to Private Route
Go to Route tables> create route table
5- Create Key Pair
Go to EC2- Key Pairs > Create Key Pair
6- Create Instances
Go to EC2 – Instances >Launch instances
7- Add a new private subnet interface
8- Disable Source and Destination check on both FG Private and Public Subnet
9- Edit private route table.
10- Verify Public and Private IP address of FG
11- Accessing FortiGate on AWS
Type the IP address in the browser. You should be able to see the FortiGate credentials page. Enter your username and password to login to the firewall.
You should set port1 and port2 as DHCP client to receive an IP address from External and LAN subnet. Port1 is belong to External subnet or the Internet and port2 is belong to the LAN.
|Port1||External subnet used to connect the FortiGate-VM to the Internet.|
|Port2||LAN subnet used to deploy services.|