How to deploy FortiGate Firewall in GNS3 - GNS3 Network (2022)

In this article, we will deploy the FortiGate Next-Generation Virtual Firewall directly in GNS3. In the previous article, we deploy the FortiGate Firewall in VMWare Workstation. As you already know that the GNS3 Simulator allows you to directly run KVM machines. So, we will download the FortiGate KVM Image from the support portal and deploy it in GNS3. So, let’s get started.

How to deploy FortiGate Firewall in GNS3 - GNS3 Network (1)

Table of Contents

How to deploy the FortiGate Firewall in GNS3

As we already discussed, we need to download the FortiGate KVM Firewall from the support portal. KVM stands for (Kernel-Based Virtualization Machine). KVM allows you to run the .qcow file format directly on it. You need to follow the following steps to deploy the FortiGate KVM on GNS3:

Step 1: Download the FortiGate KVM Virtual Firewall from the Support Portal

First of all, you need to download the FortiGate KVM Firewall from the FortiGate support portal. Visit thesupport portal by clicking here. Now, navigate to Download>VM Images> Select Product:FortiGate > Select Platform: KVM. In this example, I am downloading the FortiGate version 6.0.9. Now, just click on Download Button.

Note: Make sure that Download the KVM for New deployment of FortiGate.

You can refer to the below image for downloading the FortiGate KVM.

(Video) 06. Upload and Setup FOrtiGate Firewall in GNS3 Client with Basic Lab

How to deploy FortiGate Firewall in GNS3 - GNS3 Network (2)

Image Source: Fortinet

After downloading the .zip file of FortiGate KVM Firewall, you need to extract that file to a folder. After extracting, you will get a .qcow2 FortiGate KVM Firewall file as shown below:

How to deploy FortiGate Firewall in GNS3 - GNS3 Network (3)

Step 2: Download the GNS3 on your machine

I hope you already aware or you already install the GNS3 on your machine. If not, you can refer to the following links to understand & download the GNS3 Network Simulator for Windows or Linux machines. Basically, GNS3 is a Great Network Simulator tool on which you can run many Network & Network Security appliances.

  • Download GNS3

Step 3: Deploying the FortiGate VM Image in GNS3

Now, we are ready to deploy the FortiGate KVM Image in the GNS3 simulator. Currently, I’m using GNS3 2.1.21, although, the KVM deployment is the same on other GNS3 versions too. Open the GNS3 and, Navigate to Edit >> Preferences >> QEMU >> Qemu VMs and click on New. Now, give the friendly name to this VM, i.e. FortiGate_VM, and click on Next.

How to deploy FortiGate Firewall in GNS3 - GNS3 Network (4)

Now, give the RAM to the FortiGate VM Firewall. In this example, I’ve given 1024 MB RAM to the VM Image and Click on Next.

Note: The Default 15 Days Licenced VM supports only 1 CPU Core & 1024 MB of RAM.

(Video) How to setup GNS3 and add FortiGate to LAB

How to deploy FortiGate Firewall in GNS3 - GNS3 Network (5)

Now, you need to select the Console Type. In KVM we can get the Firewall CLI just by double-clicking. So, here, I’m selecting telnet. However, if you have a vnc application installed on your machine, you can select the vnc andclick on Next.

How to deploy FortiGate Firewall in GNS3 - GNS3 Network (6)

Now, In the last step, you need to select the image file you downloaded in Step 1. It will prompt you to copy that file in the GNS3 default directory, so you can copy it on the gns3 default directory, it’s recommended. Now, click on Finish.

How to deploy FortiGate Firewall in GNS3 - GNS3 Network (7)

Now, before applying your changes, you need to change the Interfaces of the VM Firewall. In this example, I am using 8 different Interfaces on the VM Firewall. However, you can change it according to your requirements. To change it, navigate to Edit >> Network (you can refer to the given image). Optionally, you can select a FortiNet icon, for this VM Image. I’ve one .svg file for the Fortinet, so I am choosing the same here.

How to deploy FortiGate Firewall in GNS3 - GNS3 Network (8)

Once, you applied the changes, you will find that a new FortiGate Firewall is ready along with your already installed appliances. Just drop down the firewall in the Project area. Right-click on this and choose the start option. Once, you start the VM, you will get the console of the Firewall, which is in the booting process.

How to deploy FortiGate Firewall in GNS3 - GNS3 Network (9)

(Video) Install fortigate firewall in GNS3 || Network

Step 4:Configuring the Interface of FortiGate KVM (Virtual Firewall) for Management

In the previous step, we successfully step the FortiGate VM in the GNS3. Now, we need to double click the VM appliance we just deployed. You will find that the Virtual FortiGate Firewall booting process is going on. Once the FortiGate VM Firewall is finished booting, you need to give the default credentials to the VM.

Note: The default username is admin and password is [blank].

Now, we need to configure one of the Interfaces so that you can access the GUI of the FortiGate VM. However, in the FortiGate VM Firewall, you didn’t have any dedicated Management Port. So, in this example, I’ll configure the ethernet1/1 port. You need to follow the following commands to configure the IP address on the ethernet1 port. We also need to provide the specific services along with the IP address on the Interface, so that we can access the GUI (Graphical User Interface) of the firewall.

To assign the IP address & services, you have to follow the given commands:

config system interface
edit port1
set mode static
set ip 192.168.1.1 255.255.255.0
set allowaccess https http ping ssh
end

The snapshot of the whole configuration is given below:

How to deploy FortiGate Firewall in GNS3 - GNS3 Network (10)

If you need to change the Hostname of the FortiGate KVM Firewall, you can follow the following commands:

config system global
set hostname GSN3-FortiGate
end

Hey! Now, you are ready to get the GUI of the Firewall. So, just follow the next step to get the GUI of FortiGate.

Step 5:Accessing the FortiGate KVM Firewall from the End Machine

In the previous step, we have done all configuration which is used to get access to the FortiGate VM. In this example, I’ve windows 7, connected like the below image:

(Video) Installing a Fortigate in GNS3 with web access

How to deploy FortiGate Firewall in GNS3 - GNS3 Network (11)

I need to provide the statically IP address in the same network on Windows 7. In our FortiGate KVM Firewall, ethernet1 is configured with 192.168.1.1, so I’ll configure the 192.168.1.10 IP address on Windows7. So, my windows 7 IP configuration looks like this:

How to deploy FortiGate Firewall in GNS3 - GNS3 Network (12)

Now, test the connectivity with the FortiGate KVM. Let’s initiate the ping to the FortiGate VM IP address, i.e. 192.168.1.1.

How to deploy FortiGate Firewall in GNS3 - GNS3 Network (13)

Now, Let’s open your favorite web browser and access the FortiGate KVM using http://192.168.1.1. If everything is perfect, you will get the GUI of the Firewall. The Fresh KVM Deskboard is looking like the below image:

How to deploy FortiGate Firewall in GNS3 - GNS3 Network (14)

How to deploy FortiGate Firewall in GNS3 - GNS3 Network (15)

That’s it! We have successfully deployed the FortiGate KVM in the GNS3 Network Simulator.

(Video) Deploy Fortigate in GNS3

Related Articles

  • How to deploy FortiGate Firewall in VMWare Workstation
  • How to Install Palo Alto VM Firewall in VMWare
  • IPSec VPN between Palo Alto and FortiGate Firewall

Summary

In this article, we configured the FortiGate Virtual Firewall directly on GNS3 Network Simulator. First, we download the FortiGate KVM Virtual Firewall from the Fortinet support portal. Then, we successfully imported the FortiGate Firewall on GNS3 Simulator. We configured 8 different Interfaces for different purposes on FortiGate KVM. However, you can install many more Network Interfaces. The FortiGate firewall by default comes with 15 days of license with limited features. After 15 days, you must buy it to continue work on the same image. We also configured one of the FortiGate VM firewalls using the CLI to gain the GUI/CLI access of the end machine. Finally, we get the FortiGate VM Firewall GUI on our end machine.

Did you like this artile? Please coment in comment box if you need further help!

Recommended: How to configure IPSec VPN between Palo Alto and FortiGate Firewall

FAQs

How configure FortiGate firewall GNS3? ›

Configure LAB setup for Fortigate Firewall in GNS3 - YouTube

Does GNS3 support FortiGate? ›

FortiGate | GNS3. Easily add pre-configured appliances in GNS3 and integrate them to your projects and labs. FortiGate Virtual Appliance offers the same level of advanced threat prevention features like the physical appliances in private, hybrid and public cloud deployment. Default username is admin, no password is set ...

How do I access FortiGate in GNS3? ›

Installing a Fortigate in GNS3 with web access - YouTube

How configure FortiGate firewall VMware? ›

Configuring Fortigate Firewall LAB in VMware Workstation Pro | Part 2

How do I enable gns3 in firewall? ›

The best way is to whitelist/exclude the entire gns3 install directory in your A/V, and make sure your firewall allows dynamips, gns3-gui, and gns3-server through on the "local/private" network. Makes sense. Thanks.

How do I download FortiGate virtual machine? ›

In the Download drop-down menu, select VM Images to access the available VM deployment packages.
  1. In the Select Product drop-down menu, select FortiGate.
  2. In the Select Platform drop-down menu, select VMware ESXi.
  3. Select the FortiOS version you want to download. ...
  4. Click the Download button and save the file.

What is FortiGate firewall? ›

Overview. FortiGate NGFWs deliver industry-leading enterprise security for any edge at any scale with full visibility and threat protection. Organizations can weave security deep into the hybrid IT architecture and build security-driven networks to achieve: Ultra-fast security, end to end.

How do I download FortiGate images? ›

4.10 for FortiGate 100D model. Click on Download > Firmware Images. Select Product. Click on Download.

How do I add FortiGate to Eve Ng? ›

FortiGate Firewall Installation in EVE-NG in 11 Steps
  1. Open WinSCP and type the IP address of EVE-NG in hostname. ...
  2. Go to the path opt->unetlab->addons->qemu on the remote machine.
  3. You have already downloaded the FortiGate Firewall image file “.qcow2”. ...
  4. Navigate to the folder from local to remote machine and upload.
Jun 29, 2021

How deploy VMware FortiGate VM? ›

Deploying the FortiGate-VM
  1. Launch the vSphere client, enter the IP address or host name of your VMware server and your user name and password, and then select Login.
  2. In the vSphere client home page, select File > Deploy OVF Template to start the OVF Template wizard.

How do I set up FortiGate virtual machine? ›

FortiGate VM Initial Configuration
  1. Connect to the FortiGate VM Web-based Manager.
  2. Upload the FortiGate VM license file.
  3. Validate the FortiGate VM license with FortiManager.
  4. Configure your FortiGate VM.
Jan 16, 2017

How do I get a FortiGate VM license? ›

Go to System > FortiGuard. In the Licence Information section, go to the Virtual Machine row and click on the link to FortiGate-VM License.

How do I set up FortiGate lab? ›

Fortigate LAB Setup
  1. Step1: Download the Fortigate VM from the Fortigate account or Internet.
  2. Step2: Extract the file and open the fortigate. ...
  3. Step3: Increase the Memory with 4 GB and set the Network Adapter as per follows:
Jan 13, 2020

How do you build a FortiGate lab? ›

Fortinet NSE4 Training - Fortigate Lab Setup (October 2020) - YouTube

How do I open FortiGate GUI? ›

If you only enabled HTTPS access, enter "https://" before the IP address. When you use HTTP rather than HTTPS to access the GUI, certain web browsers may display a warning that the connection is not private. On the FortiGate-VM GUI login screen, enter the default username "admin" and then select Login.

What is Fortinet firewall? ›

Overview. FortiGate NGFWs deliver industry-leading enterprise security for any edge at any scale with full visibility and threat protection. Organizations can weave security deep into the hybrid IT architecture and build security-driven networks to achieve: Ultra-fast security, end to end.

Videos

1. How to Configure Fortigate Firewall in GNS3
(Relaxation IT)
2. Adding FortiGate Firewall to GNS3 (FortiOS)
(Learning Machine)
3. || DEPLOY FORTIGATE FIREWALL || IN GNS3 || HINDI ||
(Krishnendu Biswas)
4. Fortigate Firewall Integrate with CISCO Switch
(TAN Kirivann)
5. FortiGate Firewall Basic setup with Lab in GNS3 | Video# 2 | Networkforyou
(Network for you)
6. Fortinet Firewall Network | GNS3 Installation on a Windows PC
(WE-Learns)

Top Articles

You might also like

Latest Posts

Article information

Author: Van Hayes

Last Updated: 09/16/2022

Views: 6237

Rating: 4.6 / 5 (66 voted)

Reviews: 89% of readers found this page helpful

Author information

Name: Van Hayes

Birthday: 1994-06-07

Address: 2004 Kling Rapid, New Destiny, MT 64658-2367

Phone: +512425013758

Job: National Farming Director

Hobby: Reading, Polo, Genealogy, amateur radio, Scouting, Stand-up comedy, Cryptography

Introduction: My name is Van Hayes, I am a thankful, friendly, smiling, calm, powerful, fine, enthusiastic person who loves writing and wants to share my knowledge and understanding with you.