Skip to content

Commit

Permalink
FGT: update accelerated connections, cleanup naming
Browse files Browse the repository at this point in the history
  • Loading branch information
@jvhoof
jvhoof committed Jul 30, 2024
1 parent f4aba75 commit e138e4c
Show file tree
Hide file tree
Showing 5 changed files with 31 additions and 31 deletions.
6 changes: 3 additions & 3 deletions FortiGate/A-Single-VM/createUiDefinition.json
View file
Original file line number Diff line number Diff line change
Expand Up @@ -881,17 +881,17 @@
}
]
},
"visible": "[and(equals(steps('networking').acceleratednetworksection.acceleratednetworking, 'true'),steps('networking').acceleratednetworksection.acceleratedconnectionscheck)]"
"visible": "[and(steps('networking').acceleratednetworksection.acceleratedconnectionscheck,equals(basics('fortiGateInstanceArchitecture'),'x64'),not(contains(steps('instance').instancetype_x64.selection_x64, 'v5')))]"
},
{
"name": "AccelConnwarning",
"type": "Microsoft.Common.InfoBox",
"visible": "[steps('networking').acceleratednetworksection.AcceleratedConnectionCheck]",
"options": {
"icon": "Warning",
"text": "This feature is currently in Preview, please contact Fortinet at '[email protected]'. Verify the limitations with Microsoft on supported regions. Currently Dv5 instance types are not supported.",
"uri": "https://learn.microsoft.com/en-us/azure/networking/nva-accelerated-connections"
}
},
"visible": "[and(equals(steps('networking').acceleratednetworksection.acceleratednetworking, 'true'),steps('networking').acceleratednetworksection.acceleratedconnectionscheck)]"
}
]
}
Expand Down
6 changes: 3 additions & 3 deletions FortiGate/Active-Active-ELB-ILB/createUiDefinition.json
View file
Original file line number Diff line number Diff line change
Expand Up @@ -1200,17 +1200,17 @@
}
]
},
"visible": "[and(equals(steps('networking').acceleratednetworksection.acceleratednetworking, 'true'),steps('networking').acceleratednetworksection.acceleratedconnectionscheck)]"
"visible": "[and(steps('networking').acceleratednetworksection.acceleratedconnectionscheck,equals(basics('fortiGateInstanceArchitecture'),'x64'),not(contains(steps('instance').instancetype_x64.selection_x64, 'v5')))]"
},
{
"name": "AccelConnwarning",
"type": "Microsoft.Common.InfoBox",
"visible": "[steps('networking').acceleratednetworksection.AcceleratedConnectionCheck]",
"options": {
"icon": "Warning",
"text": "This feature is currently in Preview, please contact Fortinet at '[email protected]'. Verify the limitations with Microsoft on supported regions. Currently Dv5 instance types are not supported.",
"uri": "https://learn.microsoft.com/en-us/azure/networking/nva-accelerated-connections"
}
},
"visible": "[and(steps('networking').acceleratednetworksection.acceleratedconnectionscheck,equals(basics('fortiGateInstanceArchitecture'),'x64'),not(contains(steps('instance').instancetype_x64.selection_x64, 'v5')))]"
}
]
}
Expand Down
6 changes: 3 additions & 3 deletions FortiGate/Active-Passive-ELB-ILB/createUiDefinition.json
View file
Original file line number Diff line number Diff line change
Expand Up @@ -941,17 +941,17 @@
}
]
},
"visible": "[and(equals(steps('networking').acceleratednetworksection.acceleratednetworking, 'true'),steps('networking').acceleratednetworksection.acceleratedconnectionscheck)]"
"visible": "[and(steps('networking').acceleratednetworksection.acceleratedconnectionscheck,equals(basics('fortiGateInstanceArchitecture'),'x64'),not(contains(steps('instance').instancetype_x64.selection_x64, 'v5')))]"
},
{
"name": "AccelConnwarning",
"type": "Microsoft.Common.InfoBox",
"visible": "[steps('networking').acceleratednetworksection.AcceleratedConnectionCheck]",
"options": {
"icon": "Warning",
"text": "This feature is currently in Preview, please contact Fortinet at '[email protected]'. Verify the limitations with Microsoft on supported regions. Currently Dv5 instance types are not supported.",
"uri": "https://learn.microsoft.com/en-us/azure/networking/nva-accelerated-connections"
}
},
"visible": "[and(steps('networking').acceleratednetworksection.acceleratedconnectionscheck,equals(basics('fortiGateInstanceArchitecture'),'x64'),not(contains(steps('instance').instancetype_x64.selection_x64, 'v5')))]"
}
]
}
Expand Down
38 changes: 19 additions & 19 deletions FortiGate/Active-Passive-SDN/azuredeploy.json
View file
Original file line number Diff line number Diff line change
Expand Up @@ -626,8 +626,8 @@
"subnet2Id": "[if(equals(parameters('vnetNewOrExisting'),'new'),resourceId('Microsoft.Network/virtualNetworks/subnets', variables('vnetName'),parameters('subnet2Name')),resourceId(parameters('vnetResourceGroup'),'Microsoft.Network/virtualNetworks/subnets', variables('vnetName'),parameters('subnet2Name')))]",
"subnet3Id": "[if(equals(parameters('vnetNewOrExisting'),'new'),resourceId('Microsoft.Network/virtualNetworks/subnets', variables('vnetName'),parameters('subnet3Name')),resourceId(parameters('vnetResourceGroup'),'Microsoft.Network/virtualNetworks/subnets', variables('vnetName'),parameters('subnet3Name')))]",
"subnet4Id": "[if(equals(parameters('vnetNewOrExisting'),'new'),resourceId('Microsoft.Network/virtualNetworks/subnets', variables('vnetName'),parameters('subnet4Name')),resourceId(parameters('vnetResourceGroup'),'Microsoft.Network/virtualNetworks/subnets', variables('vnetName'),parameters('subnet4Name')))]",
"fgaVmName": "[concat(parameters('fortiGateNamePrefix'),'-FGT-A')]",
"fgbVmName": "[concat(parameters('fortiGateNamePrefix'),'-FGT-B')]",
"fgaVmName": "[concat(parameters('fortiGateNamePrefix'),'-fgt-a')]",
"fgbVmName": "[concat(parameters('fortiGateNamePrefix'),'-fgt-b')]",
"fmgCustomData": "[if(equals(parameters('fortiManager'),'yes'),concat('\nconfig system central-management\nset type fortimanager\n set fmg ',parameters('fortiManagerIP'),'\nset serial-number ', parameters('fortiManagerSerial'), '\nend\n config system interface\n edit port1\n append allowaccess fgfm\n end\n config system interface\n edit port2\n append allowaccess fgfm\n end\n'),'')]",
"customDataHeader": "Content-Type: multipart/mixed; boundary=\"12345\"\nMIME-Version: 1.0\n\n--12345\nContent-Type: text/plain; charset=\"us-ascii\"\nMIME-Version: 1.0\nContent-Transfer-Encoding: 7bit\nContent-Disposition: attachment; filename=\"config\"\n\n",
"fgaCustomDataBody": "[concat('config system sdn-connector\nedit AzureSDN\nset type azure\nset ha-status enable\nset resource-group ', resourceGroup().name, '\nset subscription-id ', subscription().subscriptionId, '\nconfig nic\nedit ', variables('fgaNic1Name'), '\nconfig ip\nedit ipconfig1\nset public-ip ', variables('publicIP1Name'), '\nnext\nend\nnext\nend\nconfig route-table\nedit ', variables('routeTableName'), '\nconfig route\nedit toDefault\nset next-hop ', variables('sn2IPfga'), '\nnext\nend\nnext\nend\nend\nconfig router static\n edit 1\n set gateway ', variables('sn1GatewayIP'), '\n set device port1\n next\n edit 2\n set dst ', parameters('vnetAddressPrefix'), '\n set gateway ', variables('sn2GatewayIP'), '\n set device port2\n next\n edit 3\nset dst 168.63.129.16 255.255.255.255\nset device port2\n set gateway ', variables ('sn2GatewayIP'), '\n next\nedit 4\nset dst 168.63.129.16 255.255.255.255\nset device port1\n set gateway ', variables ('sn1GatewayIP'), '\n next\n end\n config system interface\n edit port1\n set mode static\n set ip ', variables('sn1IPfga'), '/', variables('sn1CIDRmask'), '\n set description external\n next\n edit port2\n set mode static\n set ip ', variables('sn2IPfga'), '/', variables('sn2CIDRmask'), '\n set description internal\n next\n edit port3\n set mode static\n set ip ', variables('sn3IPfga'), '/', variables('sn3CIDRmask'), '\n set description hasyncport\n next\n edit port4\n set mode static\n set ip ', variables('sn4IPfga'), '/', variables('sn4CIDRmask'), '\n set description hammgmtport\n set allowaccess ping https ssh ftm\n next\n end\n config system ha\n set group-name AzureHA\n set mode a-p\n set hbdev port3 100\n set session-pickup enable\n set session-pickup-connectionless enable\n set ha-mgmt-status enable\n config ha-mgmt-interfaces\n edit 1\n set interface port4\n set gateway ', variables('sn4GatewayIP'),'\n next\n end\n set override disable\n set priority 255\n set unicast-hb enable\n set unicast-hb-peerip ', variables('sn3IPfgb'), '\n end\n', variables('fmgCustomData'), parameters('fortiGateAdditionalCustomData'), '\n')]",
Expand Down Expand Up @@ -894,7 +894,7 @@
"condition": "[equals(parameters('publicIP1NewOrExisting'), 'new')]",
"type": "Microsoft.Network/publicIPAddresses",
"name": "[variables('publicIP1Name')]",
"apiVersion": "2023-04-01",
"apiVersion": "2023-06-01",
"location": "[parameters('location')]",
"tags": "[ if(contains(parameters('tagsByResource'), 'Microsoft.Network/publicIPAddresses'), union(parameters('fortinetTags'),parameters('tagsByResource')['Microsoft.Network/publicIPAddresses']), parameters('fortinetTags')) ]",
"sku": {
Expand All @@ -912,7 +912,7 @@
"condition": "[equals(parameters('publicIP2NewOrExisting'), 'new')]",
"type": "Microsoft.Network/publicIPAddresses",
"name": "[variables('publicIP2Name')]",
"apiVersion": "2023-04-01",
"apiVersion": "2023-06-01",
"location": "[parameters('location')]",
"tags": "[ if(contains(parameters('tagsByResource'), 'Microsoft.Network/publicIPAddresses'), union(parameters('fortinetTags'),parameters('tagsByResource')['Microsoft.Network/publicIPAddresses']), parameters('fortinetTags')) ]",
"sku": {
Expand All @@ -927,7 +927,7 @@
"condition": "[equals(parameters('publicIP3NewOrExisting'), 'new')]",
"type": "Microsoft.Network/publicIPAddresses",
"name": "[variables('publicIP3Name')]",
"apiVersion": "2023-04-01",
"apiVersion": "2023-06-01",
"location": "[parameters('location')]",
"tags": "[ if(contains(parameters('tagsByResource'), 'Microsoft.Network/publicIPAddresses'), union(parameters('fortinetTags'),parameters('tagsByResource')['Microsoft.Network/publicIPAddresses']), parameters('fortinetTags')) ]",
"sku": {
Expand All @@ -941,7 +941,7 @@
{
"type": "Microsoft.Network/networkInterfaces",
"name": "[variables('fgaNic1Name')]",
"apiVersion": "2023-04-01",
"apiVersion": "2023-06-01",
"location": "[parameters('location')]",
"tags": "[ if(contains(parameters('tagsByResource'), 'Microsoft.Network/networkInterfaces'), union(parameters('fortinetTags'),parameters('tagsByResource')['Microsoft.Network/networkInterfaces'],variables('fastpathtag')), union(parameters('fortinetTags'),variables('fastpathtag'))) ]",
"dependsOn": [
Expand Down Expand Up @@ -974,7 +974,7 @@
{
"type": "Microsoft.Network/networkInterfaces",
"name": "[variables('fgbNic1Name')]",
"apiVersion": "2023-04-01",
"apiVersion": "2023-06-01",
"location": "[parameters('location')]",
"tags": "[ if(contains(parameters('tagsByResource'), 'Microsoft.Network/networkInterfaces'), union(parameters('fortinetTags'),parameters('tagsByResource')['Microsoft.Network/networkInterfaces'],variables('fastpathtag')), union(parameters('fortinetTags'),variables('fastpathtag'))) ]",
"dependsOn": [
Expand Down Expand Up @@ -1007,7 +1007,7 @@
{
"type": "Microsoft.Network/networkInterfaces",
"name": "[variables('fgaNic2Name')]",
"apiVersion": "2023-04-01",
"apiVersion": "2023-06-01",
"location": "[parameters('location')]",
"tags": "[ if(contains(parameters('tagsByResource'), 'Microsoft.Network/networkInterfaces'), union(parameters('fortinetTags'),parameters('tagsByResource')['Microsoft.Network/networkInterfaces'],variables('fastpathtag')), union(parameters('fortinetTags'),variables('fastpathtag'))) ]",
"dependsOn": [
Expand Down Expand Up @@ -1039,7 +1039,7 @@
{
"type": "Microsoft.Network/networkInterfaces",
"name": "[variables('fgbNic2Name')]",
"apiVersion": "2023-04-01",
"apiVersion": "2023-06-01",
"location": "[parameters('location')]",
"tags": "[ if(contains(parameters('tagsByResource'), 'Microsoft.Network/networkInterfaces'), union(parameters('fortinetTags'),parameters('tagsByResource')['Microsoft.Network/networkInterfaces'],variables('fastpathtag')), union(parameters('fortinetTags'),variables('fastpathtag'))) ]",
"dependsOn": [
Expand Down Expand Up @@ -1072,7 +1072,7 @@
{
"type": "Microsoft.Network/networkInterfaces",
"name": "[variables('fgaNic3Name')]",
"apiVersion": "2023-04-01",
"apiVersion": "2023-06-01",
"location": "[parameters('location')]",
"tags": "[ if(contains(parameters('tagsByResource'), 'Microsoft.Network/networkInterfaces'), union(parameters('fortinetTags'),parameters('tagsByResource')['Microsoft.Network/networkInterfaces']), parameters('fortinetTags')) ]",
"dependsOn": [
Expand Down Expand Up @@ -1102,7 +1102,7 @@
{
"type": "Microsoft.Network/networkInterfaces",
"name": "[variables('fgbNic3Name')]",
"apiVersion": "2023-04-01",
"apiVersion": "2023-06-01",
"location": "[parameters('location')]",
"tags": "[ if(contains(parameters('tagsByResource'), 'Microsoft.Network/networkInterfaces'), union(parameters('fortinetTags'),parameters('tagsByResource')['Microsoft.Network/networkInterfaces']), parameters('fortinetTags')) ]",
"dependsOn": [
Expand Down Expand Up @@ -1133,7 +1133,7 @@
{
"type": "Microsoft.Network/networkInterfaces",
"name": "[variables('fgaNic4Name')]",
"apiVersion": "2023-04-01",
"apiVersion": "2023-06-01",
"location": "[parameters('location')]",
"tags": "[ if(contains(parameters('tagsByResource'), 'Microsoft.Network/networkInterfaces'), union(parameters('fortinetTags'),parameters('tagsByResource')['Microsoft.Network/networkInterfaces']), parameters('fortinetTags')) ]",
"dependsOn": [
Expand Down Expand Up @@ -1164,7 +1164,7 @@
{
"type": "Microsoft.Network/networkInterfaces",
"name": "[variables('fgbNic4Name')]",
"apiVersion": "2023-04-01",
"apiVersion": "2023-06-01",
"location": "[parameters('location')]",
"tags": "[ if(contains(parameters('tagsByResource'), 'Microsoft.Network/networkInterfaces'), union(parameters('fortinetTags'),parameters('tagsByResource')['Microsoft.Network/networkInterfaces']), parameters('fortinetTags')) ]",
"dependsOn": [
Expand Down Expand Up @@ -1196,14 +1196,14 @@
{
"type": "Microsoft.Compute/virtualMachines",
"name": "[variables('fgaVmName')]",
"apiVersion": "2023-03-01",
"apiVersion": "2023-09-01",
"location": "[parameters('location')]",
"tags": "[ if(contains(parameters('tagsByResource'), 'Microsoft.Compute/virtualMachines'), union(parameters('fortinetTags'),parameters('tagsByResource')['Microsoft.Compute/virtualMachines']), parameters('fortinetTags')) ]",
"identity": {
"type": "SystemAssigned"
},
"zones": "[if(variables('useAZ'), variables('zone1'), json('null'))]",
"plan": "[if(and(equals(variables('fortiGateImageSku'),'fortinet_fg-vm'),not(equals(parameters('customImageReference'),''))), json('null'), variables('virtualMachinePlan'))]",
"plan": "[if(and(or(equals(variables('fortiGateImageSku'),'fortinet_fg-vm'),equals(variables('fortiGateImageSku'),'fortinet_fg-vm_arm64')),not(equals(parameters('customImageReference'),''))), json('null'), variables('virtualMachinePlan'))]",
"dependsOn": [
"[variables('fgaNic1Id')]",
"[variables('fgaNic2Id')]",
Expand All @@ -1222,7 +1222,7 @@
"customData": "[variables('fgaCustomData')]"
},
"storageProfile": {
"imageReference": "[if(and(equals(variables('fortiGateImageSku'),'fortinet_fg-vm'),not(equals(parameters('customImageReference'),''))), variables('imageReferenceCustomImage'), variables('imageReferenceMarketplace'))]",
"imageReference": "[if(and(or(equals(variables('fortiGateImageSku'),'fortinet_fg-vm'),equals(variables('fortiGateImageSku'),'fortinet_fg-vm_arm64')),not(equals(parameters('customImageReference'),''))), variables('imageReferenceCustomImage'), variables('imageReferenceMarketplace'))]",
"osDisk": {
"createOption": "FromImage"
},
Expand Down Expand Up @@ -1272,14 +1272,14 @@
{
"type": "Microsoft.Compute/virtualMachines",
"name": "[variables('fgbVmName')]",
"apiVersion": "2023-03-01",
"apiVersion": "2023-09-01",
"location": "[parameters('location')]",
"tags": "[ if(contains(parameters('tagsByResource'), 'Microsoft.Compute/virtualMachines'), union(parameters('fortinetTags'),parameters('tagsByResource')['Microsoft.Compute/virtualMachines']), parameters('fortinetTags')) ]",
"identity": {
"type": "SystemAssigned"
},
"zones": "[if(variables('useAZ'), variables('zone2'), json('null'))]",
"plan": "[if(and(equals(variables('fortiGateImageSku'),'fortinet_fg-vm'),not(equals(parameters('customImageReference'),''))), json('null'), variables('virtualMachinePlan'))]",
"plan": "[if(and(or(equals(variables('fortiGateImageSku'),'fortinet_fg-vm'),equals(variables('fortiGateImageSku'),'fortinet_fg-vm_arm64')),not(equals(parameters('customImageReference'),''))), json('null'), variables('virtualMachinePlan'))]",
"dependsOn": [
"[variables('fgbNic1Id')]",
"[variables('fgbNic2Id')]",
Expand All @@ -1298,7 +1298,7 @@
"customData": "[variables('fgbCustomData')]"
},
"storageProfile": {
"imageReference": "[if(and(equals(variables('fortiGateImageSku'),'fortinet_fg-vm'),not(equals(parameters('customImageReference'),''))), variables('imageReferenceCustomImage'), variables('imageReferenceMarketplace'))]",
"imageReference": "[if(and(or(equals(variables('fortiGateImageSku'),'fortinet_fg-vm'),equals(variables('fortiGateImageSku'),'fortinet_fg-vm_arm64')),not(equals(parameters('customImageReference'),''))), variables('imageReferenceCustomImage'), variables('imageReferenceMarketplace'))]",
"osDisk": {
"createOption": "FromImage"
},
Expand Down
6 changes: 3 additions & 3 deletions FortiGate/Active-Passive-SDN/createUiDefinition.json
View file
Original file line number Diff line number Diff line change
Expand Up @@ -975,7 +975,7 @@
"domainNameLabel": "DNS name linked to this public IP"
},
"defaultValue": {
"publicIpAddressName": "[if(equals(basics('fortiGateNamePrefix'),''),'FGTAPClusterPublicIP',concat(basics('fortiGateNamePrefix'),'-FGT-PIP'))]",
"publicIpAddressName": "[if(equals(basics('fortiGateNamePrefix'),''),'fgtapclusterpublicip',concat(basics('fortiGateNamePrefix'),'-fgt-pip'))]",
"domainNameLabel": "mydomain"
},
"constraints": {
Expand All @@ -1001,7 +1001,7 @@
"domainNameLabel": "DNS name linked to this public IP"
},
"defaultValue": {
"publicIpAddressName": "[if(equals(basics('fortiGateNamePrefix'),''),'FGTAMgmtPublicIP',concat(basics('fortiGateNamePrefix'),'-FGT-A-MGMT-PIP'))]",
"publicIpAddressName": "[if(equals(basics('fortiGateNamePrefix'),''),'fgtamgmtpublicip',concat(basics('fortiGateNamePrefix'),'-fgt-a-mgmt-pip'))]",
"domainNameLabel": "mydomain"
},
"constraints": {
Expand All @@ -1027,7 +1027,7 @@
"domainNameLabel": "DNS name linked to this public IP"
},
"defaultValue": {
"publicIpAddressName": "[if(equals(basics('fortiGateNamePrefix'),''),'FGTBMgmtPublicIP',concat(basics('fortiGateNamePrefix'),'-FGT-B-MGMT-PIP'))]",
"publicIpAddressName": "[if(equals(basics('fortiGateNamePrefix'),''),'fgtbmgmtpublicip',concat(basics('fortiGateNamePrefix'),'-fgt-b-mgmt-pip'))]",
"domainNameLabel": "mydomain"
},
"constraints": {
Expand Down

0 comments on commit e138e4c

Please sign in to comment.