Download and Launch Fortigate Virtual Machine in VMWare WorkStation - NETSEC

Latest

NETSEC

Learning, Sharing, Creating

Cybersecurity Memo

Friday, May 20, 2022

Download and Launch Fortigate Virtual Machine in VMWare WorkStation

This post is to summarize the steps to download and install Fortigate Firewall VM into your VMware workstation for your lab testing. 





Related Post:

Diagram







Download VM

Log into your FortiCloud account first through support site: https://support.fortinet.com/download/firmwareimages.aspx
You will need to create your own account for Fortinet website to continue downloading VM images.

Forticloud account 's Support menu - > VM Images

Example image file: FGT_VM64-v7.4.3.F-build2573-FORTINET.out (93.47 MB)



Or Firmware Download page: (Partner Account works if you do not have subscription) jy 51sec org

Please download VM start with FGT and not start with FOS. FOS-VMs are meant to work only in closed environments without Internet access. FOS-VMs license validation process is exclusively taken care of by the FortiMeter module of FortiManager, not by FortiGuard. Upon instantiation, a FOS-VM is provided with a permanent Serial Number. The FOS-VM license status is “Valid”, and is set with a “FortiMeter grace period” value of 1 hour. (From: FOS-VM License management, validation, and troubleshooting)

FOS-VMs can get a evaluated license from your FortiCloud account. It will show in your FortiCloud account's Asset management product list page:




Launch VM into VMWare Workstation

Unzip download zip file:  e.g. FGT_VM64-v7.0.3-build0237-FORTINET.out.ovf.zip

You will get 2 VMDK disk files and 6 different OVF files. To import it into your VMWare Workstation, just double click one of ovf file then the import wizard will show up. 

Component

Description

fortios.vmdk

FortiGate-VM system hard disk in VMDK format.

datadrive.vmdk

FortiGate-VM log disk in VMDK format.

Open Virtualization Format (OVF) template files

FortiGate-VM64.ovf

OVF template based on Intel e1000 NIC driver.

FortiGate-VM64.hw04.ovf

OVF template file for older (v3.5) VMware ESX server. This file will be deprecated in future releases.

FortiGate-VMxx.hw07_vmxnet2.ovf

OVF template file for VMware vmxnet2 driver.

FortiGate-VMxx.hw07_vmxnet3.ovf

OVF template file for VMware vmxnet3 driver.

FortiGate-VM64.hw13.ovf

OVF template file for VMware ESXi 6.5 and later versions.

  • FortiGate-VM64.hw14.ovf

    • OVF template file for VMware ESXi 6.7 and later versions.

    FortiGate-VM64.vapp.ovf

    OVF template file for VMware vSphere, vCenter, and vCloud.





    Configuration Port 1 (Mgmt) Interface

    After VM complete loaded, it might need to reboot it once then you will be prompted to login:
    Default username : admin
    Password: none

    It will require you to change password right away after log in. 



    Initial Configuration for Port1 interface (Mgmt interface). 
    Using command "show system interface"

    To check port 1 (dhcp) ip address, using following two commands:


    config system interface
edit ?
    Or use command 

    show system interface ?

    Especially "edit ?", it will show all ip address of your Fortigate ports.



    From command line, set por1 a static ip to connect from your browser:
    (Note: Please make sure http enabled and static ip used. )

    config system interface
edit port1
set mode static
set ip 192.168.2.18 255.255.255.0
append allowaccess http
end
    Some commands to check interface and system status
    • Show system interface  
    • Get system status


    Web GUI Dashboard:




    Optional : Set up default gateway for Internet traffic:

    config router static
edit 1
set device port1
set gateway 192.168.2.1
end




    Config Fortigate WAN, LAN & DMZ Interfaces

    WAN




    LAN and DMZ





    Configure Firewall Rule

    Basic rule is from LAN to WAN for Internet traffic. 









    License Reset for Evaluation

    1. Backup configuration file

    2. reset system except interface and route


    execute factoryreset2

    3. remove first four lines from backed up configuration file

    4.  after you logged in using default username admin and empty password, you will see your evaluation license got reset for another 14 days. 


    5. Yon can restore your configuration file after you deleted first four lines from it. 

    Videos


    Download and Deploy Fortigate Firewall into VMWare Workstation Lab



    Step by Step Guide to Deploy Fortigate VM with Trial License in Azure



    Deploy Fortigate Firewall VM Using Azure Marketplace and From A VHD File with VM Size (1vCPU,1G RAM)



    Fortinet Fortigate Next-Generation Firewall VM Test Drive in Azure





    Read more

    Subscribe via email

    Author Image

    About Netsec
    Netsec - Learning, Sharing, Creating!

    -
    Tags:

    1 comment:

    1. heroes1412Friday, March 08, 2024

      do you have any cracked version of fortigate ova? like https://www.worldofiptv.com/resources/fortigate-for-vmware-v7-2-6-nulled.3420/
      i dont know if it is a scam or not

      ReplyDelete

    Subscribe to: Post Comments (Atom)