How to Install FortiGate VM on VMware Workstation - EASY INSTALLATION

Video Statistics and Information

Video

Captions Word Cloud

Reddit Comments

Captions

hi guys this is the Igor attack today I will show you how to install the latest fortigate 40 OS on VMware Workstation Pro for this release it's unlimited or it has no expiration also it's very easy to install unlike the older versions afterwards we will configure any device or operating system to be part of this 40 gate virtual machine we can add either Windows operating system Linux or even Mac OS this is very useful for lab activities or if you plan to test new fortigate 40 OS firmware features [Music] first thing we have to do is install the VMware Workstation Pro if you haven't installed yet the VMware Workstation then you can check my other video tutorial on the description below on how to install the application next is we will download the 40 OS VM open your web browser enter the URL support.40net.com in order for us to download the 40 OS VM we need to have an account no worries it's free and very easy you can also download the fortigate 40 OS virtual machine image from the link on the description below I will keep it updated to the latest release if you already have an account then choose login if you don't have an account then choose register you must enter a valid email because you will receive the activation code for you to activate your account click next is enter the captcha once done click on send verification code it will now ask for the verification code it tells you that an email has been sent to your email address login to the email address you used earlier you should have received this email verification code if you haven't received the code then go back to the 40net website then click resend verification now copy the code then paste it on the box once done click next now enter your desired password you can check the password requirements minimum of 8 characters number zero to nine both uppercase and lowercase and some special characters once done click next fill up your account information make sure to fill up all the required details once completed click on agreement accept the service terms and conditions then click register account registration complete click complete Now log in using your email address and password used to sign up let's now download the fortigate 40 osvm go to support choose VM images under select product choose fortigate under select platform choose VMware esxi you can see the fortigate 40 OS VM available during the time of this recording the latest version is 7.2 you can also download the older versions if you prefer you have two download options first option is to upgrade from previous version of 40 gate for VMware second is new deployment of fortigate for VMware since this is a new deployment then we will choose the second option click download the download process will automatically starts the file size is around 80 megabytes wait for it to download the file let's now check the downloaded file since the file is compressed then we need to extract it first right click on it then choose extract files or extract all click extract we are going to import this 40gate vm.ov now open the VMware Workstation click on open a virtual machine locate the extracted file choose the file named 40gatevm.ov click on at the click open accept the terms of the license agreement click next enter your preferred virtual machine name next is you can modify the storage path you can leave it to default for me I usually store all virtual machines in my D drive to do this click browse locate where you want to store the virtual machine in my case I already created this folder named VM I usually store all my virtual machines here so that I can restore it anytime and also I can easily transfer it to different computer create a subfolder and give it a name based on your likings click ok you can see the virtual machine name and the storage path which in my case is the drive d click import wait for it to finish the process the 40 gate virtual machine has now been imported next is we will configure the bridge Network go to edit choose virtual Network editor by default there's no Bridge Network pre-configured now click change settings we have now this VM Net Zero which will be the bridge under vmnet information expand the bridge too by default it is set to automatic you can leave it to default or specify the physical network adapter where you want to bridge this virtual machine in my case I'm only using the Wi-Fi you can choose your LAN adapter if you want this depends on your network setup take note of the driver manufacturer and model which in my case is Intel dual band wireless AC 7265 now go back to the virtual Network editor I will choose my wireless adapter notice the external connection has been changed to Intel dual band wireless AC 7265 click apply to save the changes now click on edit virtual machine settings we will leave the memory to default also the processor Etc take note for the latest release we are not allowed to modify the memory and processor or else you will encounter this error from CLI it will show license invalid due to exceeding allowed 1 CPUs and 2048 megabytes Ram if in case you accidentally modify the settings then simply revert back the changes to bypass this error we only needs to modify the network adapters click on network adapter make sure the network connection is set to bridged connected directly to the physical Network this means this virtual machine will be a member of my physical Network I can ping and access this virtual machine from this physical computer or any device connected to this network this bridge network adapter would act as our Wan or the internet facing interface next is the Lan click on network adapter 2. this would be our Lan interface or internal Network select the Lan segment Click On LAN segment we will create a lan Network click on ADD give it a name we will just give it a name of Lan to make it simple click ok to apply now click the down arrow choose the Lan segment we just created we will only need this two network adapter the bridged as our Wan in the Lan segment is our LAN once done click ok now click on power on this virtual machine it will now install the fortigate virtual machine wait for it to finish the necessary process it's now formatting the disk the system is going down now it means the device will automatically reboot now wait for it to complete the startup process by default or every time you factory reset the fortigate or newly out of the box the username is admin the password is blank so simply hit enter we cannot leave the password blank you are forced to change your password please input a new password I will input admin as my password to make it simple confirm the new password we are now logged into the device now since we configured the network adapter as a bridge then it will automatically receive IP address from our physical Network let's now check what is the IP address received by the port 1 or the bridged interface enter the command-get system interface physical notice the mode is DHCP that's why it automatically receive IP address which in my case is 10.1.1.12 to check what are the administrative access enabled for this interface enter the command show system interface you can see that ping HTTP and https for GUI or web access also SSH access is enabled this means we can access this fortigate's IP address through web browser or SSH let's do a test since ping is enabled then we should be able to Ping this fortigate vmip address 10.1.1.12 open a command prompt ping 10.1.1.12 success we can ping the fortigate VM from our physical Network HTTP and https is also enabled on this interface so we should be able to access this fortigate VM through web browser open a web browser enter the fortigate vmip address which in my case is 10.1.1.12 success we can ping and access the fortigate VM from the physical machine Now log in using the default username which is admin and the password admin as we configured for this latest release you can enter a license if you have one in my case I don't have a license so I will choose the evaluation license the difference from full license is it supports foulow encryption operation only it means we can access the fortigate VM through HTTP only it has a maximum of one CPU and 2 gigabytes of memory again you cannot modify this setting or else you will have some issues it has also maximum of three interfaces firewall policies and routes each it should be no issue since we only tested for a lab if you wish to build a huge Network on gns3 using the fortigate VM then you can use the older versions where you can buy the license if you wish to buy the license then you can click on VM license now enter the email address and password you use to sign up for your 40net account earlier I am not a government user so I leave it disabled click ok to proceed you will receive a pop-up dating the license will cause the system to reboot do you want to continue click ok to proceed wait for it to reboot enter your username and password again if you receive this pop-up click later you can watch what's new on this release or you can tick don't show again then click ok you can see the details from here the host name serial number firmware version operation mode system uptime when IP address Etc let's check the notification evaluation VM license in use click on it this VM is using evaluation license basically this license will not expire which is really amazing but have some limitations let's check the interfaces go to network click on interfaces you can see the port 1 which is our internet facing interface double-click on it to edit we can put Alias as when to make it simple roll to WAN since it's our internet facing interface we can leave the IP to DHCP or you can set it manually if you prefer leave retrieve default gateway from server enabled if this is enabled then no need to configure the static route you can modify the distance if you prefer and also the administrative access once done click ok to apply the changes next is we will configure the LAN we will configure Port 2 as our Lan interface double-click on it you can enter an alias or you can leave it blank role should be land since this is our Lan interface for the addressing mode we will set it to manual so that we can assign the internal ipnet mask we will give the ipnet mask of 10.100.100.1 with 24 subnet for the administrative access we will enable https for web access ping for troubleshooting purposes and SSH for CLI access enable the DHCP server so that user can automatically connect without manually configuring their IP addresses we will set DHCP range to 10.100.100.200 to 10.100.100.254. we can specify the DNS server primary DNS would be the Google DNS we can add cloudflare DNS as our secondary DNS lease time is currently set to seven days it means DHCP users will automatically renew IP address every after seven days enable device detection this is for the fortigate to detect and identify connected devices make sure status is enabled click ok to apply the changes you can now see the changes when or Port 1 is the bridge to our physical Network Port 2 or the Lan is the one we configured on the virtual network adapter settings of this fortigate VM next is we will configure a lan device I already pre-installed Windows 11 for the sake of this video if you don't know how to install Windows operating system on VMware Workstation then you can check the link on the description below we can install and configure any operating system to be part of the fortigate VM Lan Network this Windows 11 is freshly installed I haven't done any changes yet you can install any operating system you prefer after installation click on edit virtual machine settings go to network adapter Click On LAN segment choose the Lan we configured earlier any device you set to Lan will be a member of this fortigate VM Lan Network click ok to apply the changes now click on power on this virtual machine wait for it to finish the startup process now let's open the command prompt since we enable the DHCP server then we should be able to receive IP address automatically enter the command ipconfig notice that it has received the starting dhcpip address which is 10.100.100.200 we should be able to Ping the Gateway or the fortigate as well ping 10.100.100.1 success Let's test a ping the internet or the Google DNS ping 8.8.8.8 failed this is because we haven't configured yet the policy on the fortigate VM go back to the fortigate VM under policy and objects click on firewall policy notice that there's no configured policy yet we will configure a very basic policy just for our land to access the internet click on create new for the name we will give it a name of land to win to make it simple incoming interface is the port 2 or the Lan interface you can see the IP address we configured outgoing interface is the port 1 or the internet-facing interface for the source you can select all or we can create network address for the Lan Network click on create choose address let's give a name of local LAN enter the ipnet mask 10.100.100.0 with Slash 24 subnet click ok to apply you may now click the created address for the destination choose all schedule to always services to all make sure that Nat is enabled because this is our policy going out of the internet for this demo we will just leave the security profiles disabled log allowed traffic you can leave it to default or choose all sessions for troubleshooting purposes click ok to apply the changes you can now see the created policy this policy means local land users can access everything or all no restrictions no limitations no scheduling and can use all protocols let's now go back to the windows 11 then test if we can ping the internet ping 8.8.8.8 success this Windows 11 virtual machine which is currently a member of the fortigate vmland network can now access the internet you can go back to the GUI then refresh the page notice that there's already a traffic since we just ping the Google DNS to verify we can go back to the windows 11 virtual machine open a web browser then test to browse the internet we can go to 40net.com success now let's test to access the fortigate VM or the Gateway from this Lan device enter the IP address 10.100.100.1 click on advanced tick continue enter your username and password success we can access the internet and also we can access the Florida gate VM from the Lan Network you can now do a lab test and also you can import this fortigate VM to gns3 you can check my other videos for other fortigate tutorials well that's all for today's demonstration and I really hope you like this video if you are new to my Channel please don't forget to like share subscribe and click on the notification Bell for more amazing tutorials thank you and see you in the next video

Info

Channel: IgoroTech Official

Views: 19,980

Rating: undefined out of 5

Keywords: how to install fortigate vm on vmware workstation - google.com, how to install fortigate vm on vmware workstation - youtube.com, fortigate, fortios 7, fortigate VM latest release, how to install fortigate on vmware - google.com, how to install fortigate on vmware - youtube.com, how to install fortigate on gns3, import fortigate on gns3, install fortigate on vmware workstation, fortigate basic configuration, how to configure fortigate, fortinet fortigate, latest release, firewall

Id: bzDTFAy-Tac

Channel Id: undefined

Length: 19min 16sec (1156 seconds)

Published: Thu Sep 01 2022