Free FortiGate Install and Configuration | Create Fortigate LAB for Training

1. Downloading Free FortiGate VM

Fortinet offers a free version of FortiGate VM for various hypervisors including VMware, Hyper-V, KVM, and more. Follow these steps to download it:

  1. Visit the Fortinet Support Portal:
    • Go to Fortinet Support.
    • Log in or create a new account if you don’t have one.
  2. Download the FortiGate VM:
    • Navigate to the “Download” section.
    • Select “VM Images” and choose the appropriate hypervisor (e.g., VMware ESXi, Microsoft Hyper-V, etc.).
    • Download the FortiGate VM package.

2. Deploying FortiGate VM on Your Hypervisor

The deployment process may vary slightly depending on your hypervisor. Below are steps for VMware ESXi:

  1. Deploy OVF Template:
    • Open your VMware vSphere Client.
    • Right-click on your desired host or cluster and select “Deploy OVF Template.”
    • Follow the wizard, selecting the downloaded FortiGate VM OVF file.
    • Configure the VM settings (name, datastore, network mapping, etc.).
    • Finish the deployment process.
  2. Power On the VM:
    • Once the deployment is complete, power on the FortiGate VM.

3. Initial Configuration

  1. Access the FortiGate Console:
    • Use the vSphere Client to open the console of the FortiGate VM.
    • The initial login credentials are usually admin for the username and a blank password.
  2. Set the Password:
    • You will be prompted to set a new password for the admin user.
  3. Configure the Management Interface:
    • Assign an IP address to the management interface.
    • Example commands:

config system interface
edit port1
set ip 192.168.1.99/24
set allowaccess http https ping ssh
next
end

  1. Access the Web Interface:
    • Open a web browser and navigate to https://<management-ip>.
    • Log in with the admin credentials.

4. Basic Setup via Web Interface

  1. System Settings:
    • Navigate to System > Settings.
    • Set the hostname, time zone, and DNS servers.
  2. Network Configuration:
    • Configure additional interfaces if needed under Network > Interfaces.
    • Create VLANs, set up DHCP, etc.
  3. Security Policies:
    • Define security policies to control traffic flow under Policy & Objects > IPv4 Policy.
    • Set source and destination interfaces, addresses, and services.
  4. Enable Features:
    • Enable and configure additional features like IPS, Antivirus, Web Filtering, etc., under Security Profiles.

5. Connecting to the Internet

  1. WAN Interface Configuration:
    • Configure the WAN interface with the appropriate settings (static IP, DHCP, PPPoE, etc.).
  2. Routing:
    • Set up a default route under Network > Static Routes pointing to the WAN gateway.
  3. NAT Configuration:
    • Configure NAT settings under Policy & Objects > NAT.

6. Licensing

  • The free version of FortiGate VM comes with limited features. For full functionality, you may need to purchase a license and activate it under System > FortiGuard.

vCenter Installation and Configuration

Prerequisites:

  1. Hardware Requirements:
    • Verify that your hardware meets the requirements for vCenter installation.
    • Ensure that the hardware is on the VMware Compatibility Guide.
  2. Software Requirements:
    • Download the vCenter Server installer from the VMware website.
  3. Database:
    • Decide whether to use the embedded PostgreSQL database or an external database like Microsoft SQL Server or Oracle.

Installation Steps:

  1. Run the Installer:
    • Mount the vCenter Server ISO or run the installer directly.
    • Select “vCenter Server” from the installer menu.
  2. Introduction:
    • Click “Next” on the introduction screen.
  3. Accept the License Agreement:
    • Read and accept the license agreement.
  4. Select Deployment Type:
    • Choose between a vCenter Server with an embedded Platform Services Controller (PSC) or an external PSC.
  5. System Configuration:
    • Enter the system name and set the Single Sign-On (SSO) password.
    • Configure the network settings.
  6. Select Database:
    • Choose between the embedded PostgreSQL database or an external database.
    • If using an external database, provide the database connection details.
  7. SSO Configuration:
    • Configure the Single Sign-On (SSO) domain and site name.
  8. Inventory Size:
    • Select the size of your inventory (tiny, small, medium, large, or x-large).
  9. vCenter Service Account:
    • Provide a username and password for the vCenter Server service account.
  10. Select Installation Location:
    • Choose the installation directory for vCenter.
  11. Configure CEIP:
    • Choose whether to join the Customer Experience Improvement Program.
  12. Ready to Install:
    • Review the configuration settings and click “Install” to begin the installation.
  13. Installation Progress:
    • Monitor the installation progress.
  14. Complete the Installation:
    • Once the installation is complete, click “Finish.”

Post-Installation Steps:

  1. Access vCenter Server:
    • Open a web browser and navigate to the vCenter Server URL (https://<vCenterServer>/vsphere-client).
  2. Configure vCenter Services:
    • Log in using the SSO administrator credentials.
    • Configure additional vCenter services if necessary.
  3. License vCenter Server:
    • Apply the license key to vCenter Server.
  4. Add ESXi Hosts:
    • In the vSphere Client, add the ESXi hosts to the vCenter inventory.
  5. Create Datacenter and Clusters:
    • Organize your infrastructure by creating datacenters and clusters.
  6. Configure Networking and Storage:
    • Set up networking and storage configurations.
  7. Create Virtual Machines:
    • Start creating virtual machines within the vCenter environment.
  8. Set Up Backup and Monitoring:
    • Implement backup solutions and configure monitoring for your vSphere environment.

Remember to refer to the official VMware documentation for the version you are installing, as steps may vary slightly based on the specific release.

FortiGate Automation-Send Microsoft Teams Notification

Hello every one , in this video I will introduce how can you integrate your fortigate firewall with Microsoft teams and get notification in case of admin login failed, Also I will describe fortigate automation service to do some actions for triggered events.

1. Configure Microsoft Teams Incoming Webhook:

  • Log in to your Microsoft Teams account and navigate to the channel where you want to receive notifications.
  • Click on the three dots (…) next to the channel name and select “Connectors.”
  • Search for “Incoming Webhook” and click on it to configure.
  • Give your webhook a name and customize its settings, such as the icon that will be displayed with messages.
  • Once configured, a unique webhook URL will be generated. Copy and save this URL, as you’ll need it to send notifications from FortiGate to Teams.

2. Configure FortiGate Automation:

  • Access your FortiGate firewall’s web interface or CLI.

a. Define Triggering Events:

– Depending on your specific use case, you’ll want to define the events or conditions that trigger notifications. For example, you might want to send notifications when: – A critical security event is detected (e.g., intrusion attempts, malware activity). – A specific network condition is met (e.g., bandwidth threshold exceeded). – Configuration changes are made on the firewall.

b. Create a Custom Script or Action:

  • FortiGate Automation typically involves creating custom scripts or actions using FortiScript (for CLI-based automation) or FortiManager (for GUI-based automation).
  • Here’s an example of a custom FortiScript that sends a notification to Microsoft Teams using the webhook URL:
  # Define the Microsoft Teams webhook URL
  set teams_webhook_url "https://yourteamswebhookurl"

  # Define the message to send
  set message "A critical security event has been detected on FortiGate!"

  # Construct the JSON payload
  set json_payload '{"text": "'$message'"}'

  # Send the HTTP POST request to Microsoft Teams
  execute log "Sending Microsoft Teams notification..."
  execute external "post $teams_webhook_url" $json_payload

c. Customize the Message:

- You can customize the message within the script to include details about the triggered event, such as date, time, event type, and any relevant information.

3. Test the Automation:

  • To test the automation, trigger the event or condition that should initiate the notification. Check Microsoft Teams to ensure that the message is sent and received correctly.

4. Enable the Automation:

  • Once you have successfully tested the automation and are confident in its functionality, you can enable it in your FortiGate configuration.

5. Monitoring and Fine-Tuning:

  • Regularly monitor the automation to ensure that it continues to work as expected. If needed, you can make adjustments to the script or action to meet changing requirements or address any issues that may arise.

By following these detailed steps, you can set up a robust automation system within FortiGate to send Microsoft Teams notifications whenever specific events occur, helping you stay informed about critical network and security events in real-time.