Fortinet Firewall - Specifications
Fortinet Firewall
This part describes the specifications for deploying the Fortinet Firewall.
This VNF is based on the FortiGate image, edited by Fortinet, and performs the Firewall function.
Supported deployment modes: single and dual.
Flavors
The available sizes of flavors for Fortinet Firewall are shown below. These depend on the software versions selected.
| Standard | DPDK | |
|---|---|---|
| Extra-Small | 1 vCPU 2 GB Mem | - |
| Small | 2 vCPU 4 GB Mem | 2 vCPU 4 GB Mem |
| Medium | 4 vCPU 8 GB Mem | 4 vCPU 8 GB Mem |
| Medium | 4 vCPU 16 GB Mem | 4 vCPU 16 GB Mem |
| Large | 8 vCPU 16 GB Mem | 8 vCPU 16 GB Mem |
In case of dual topology, a flavor can be selected for each virtual device making up a Virtual Network Edge.
Interfaces
The interfaces available are listed below:
-
Interface 1: Internet interface with a Public IP address.
-
Interface 2: MPLS interface used to connect to Orange MPLS VPN via VLAN sub-interfaces (101 to 108).
For each VLAN sub-interface:
- VPN list (1..99 items):
- VPN Name
- VPN role: any-to-any, client, server
- BGP:
- Enable/Disable BGP
- AS prepend (integer 1..6)
- VPN list (1..99 items):
Software device versions
Below are the software image versions available for Fortinet Firewall.
- Fortinet_Integrated_7.2.5
- Fortinet_Integrated_7.2.5_DPDK
Service specific parameters
- Admin password of the virtual machine
- Fortinet manager IP address
- Fortinet manager serial number
- VM AS number (2 or 4 bytes)
- Equipment name
- Disk size
- VM placement
Licence
Only Bring Your Own Licence (BYOL) type is supported for Fortinet SDWAN. You need to purchase your software licence with Fortinet sales.
Security group
No default security group configured for Fortinet VNE model.