How to make VDOM IN FORTIGATE

hashem-s (34)in #fortigate • 7 years ago

In previous post we practice to make a firewall clustering with to different instance of Fortigates.

In this post i want to describe how to make virtual firewall On this scenario. virtual firewall in Fortigaes is called VDOM that is acronym of Virtual-Domain. if you enable virtual domain On your firewalls you can have logical firewall that can serve traffic independently. this feature could help you to save money in many various situations.
OK let's start to implement this scenario.

After executing this command a VDOM called root created automatic and all interfaces placed on this VDOM.
Now you can create your desire VDOM as your needs. follow these commands:

FG # config vdom
FG (vdom) # edit EXTRANET
current vf=EXTRANET:2
FG (EXTRANET) # next

FG (vdom) # edit INTRANET
current vf=INTRANET:3

FG (INTRANET) #
FG (INTRANET) # end

FG #

Now you should define interfaces for these VDOMs. follow these commands:

FG #
FG # config global
FG (global) # config system interface

FG (interface) # edit port10

FG (port10) # set vdom S2M-FG

FG (port10) # set ip 10.10.10.100/24

FG (port10) # show
config system interface
edit "port10"
set vdom "EXTRANET"
set ip 10.10.10.100 255.255.255.0
set type physical
set snmp-index 11
next
end

FG (port10) #

Continue this approach for all required interfaces.
Now you should define routes as your needs. follow these command:

FG #
FG # config vdom
FG (vdom) # edit EXTRANET
current vf=EXTRANET:2

FG (EXTRANET) # config router static

FG (static) # edit 1

FG (1) # show
config router static
edit 1
set gateway 10.10.10.1
set device "port10"
next
end

FG (1) # next

FG (static) #

And continue to complete your required routes.

congratulation for first Fortigate clustering.

follow me for juniper and cisco tricks in next posts.

#vdom #clustering #firewall #network

7 years ago in #fortigate by hashem-s (34)

Sort:

steemitboard (66) 6 years ago

Congratulations @hashem-s! You have received a personal award!

1 Year on Steemit
_{Click on the badge to view your Board of Honor.}

Do not miss the last post from @steemitboard!

Participate in the SteemitBoard World Cup Contest!
Collect World Cup badges and win free SBD
Support the Gold Sponsors of the contest: @good-karma and @lukestokes

Do you like SteemitBoard's project? Then Vote for its witness and get one more award!

$0.00

[-]

steemitboard (66) 5 years ago

Congratulations @hashem-s! You received a personal award!

Happy Birthday! - You are on the Steem blockchain for 2 years!

_{You can view your badges on your Steem Board and compare to others on the Steem Ranking}

Vote for @Steemitboard as a witness to get one more award and increased upvotes!

$0.00

How to make VDOM IN FORTIGATEsteemCreated with Sketch.

FG # config vdom FG (vdom) # edit EXTRANET current vf=EXTRANET:2 FG (EXTRANET) # next FG (vdom) # edit INTRANET current vf=INTRANET:3 FG (INTRANET) # FG (INTRANET) # end FG # Now you should define interfaces for these VDOMs. follow these commands:

Vote for @Steemitboard as a witness to get one more award and increased upvotes!

How to make VDOM IN FORTIGATE

FG # config vdom
FG (vdom) # edit EXTRANET
current vf=EXTRANET:2
FG (EXTRANET) # next

FG (vdom) # edit INTRANET
current vf=INTRANET:3

FG (INTRANET) #
FG (INTRANET) # end

FG #

Now you should define interfaces for these VDOMs. follow these commands: