Installation
To successfully deploy Fortigate Connector into Cisco APIC, customers need to perform the following steps:
- Import Device Package
- Add L4-L7 Device
- Create Functional Profile
- Create Service Graph Template
- Deploy Service Graph Template.
According to the APIC deployment guide, a service device introduces a Layer 4 to Layer 7 service by this typical procedure:
- Import the device package of the service device,
- Configure a tenant who asks for network services,
- Register the device and its logical interfaces,
- Configure logical device parameters,
- Configure a layer 3 network,
- Configure a bridge domain,
- Configure an application profile,
- Configure a physical domain (or VMM domain),
- Configure a VLAN pool,
- Configure a contract
- Configure a management endpoint group (EPG),
- Configure a service graph template,
- Select default service graph template parameters,
- Attach the service graph template to a contract Configure additional configuration parameters.
To add a support of a non-Cisco firewall device in the Cisco ACI fabric based data center, a device package should be developed for the APIC. Then the remaining task is standard APIC deployment of a network service device.
Importing the Device Package
- Download Device Connector Package from Fortinet Support Web (URL) site to local storage.
- From APIC menu, Navigate to L4-L7 Services > Packages and right click on L4-L7 Device Type on the left hand panel. Select Import Device Package
Importing the Device Package
- Browse device package from local disk or share device and hit submit.
- Device package should display on the left hand panel.
Add L4-L7 Device
Remove Device Package
To remove Device Package, navigate to L4-L7 Services > Packages and right click on the Device package on the left panel and select Delete option.
Add L4-L7 Device
Within Tenant, Expand L4-L7 Services > L4-L7 Devices, right click on mouse and select “Create L4-L7 devices”