Secure Fortigate (Active / Passive HA ELB ) Management external.

Question

Secure Fortigate (Active / Passive HA ELB ) Management external.

desmphil opened this issue 2 years ago · 1 comments

HI,

Ive deployed the active / passive template with 4NIC on each VM and ELB and ILB.

I want to secure the remote management PORT (NIC4) externally, using the NSG.
In the template deployment there is only 1 NSG (externally) assigned to all the NIC

I believe there should be a second NSG for the Management Ports in the templates?

Answer 1 · 2022-04-07T23:17:03.000Z

Hi,

The templates provide a starting point. On the FortiGate, it it possible to apply access control and limit access.

If you want additional control it is always possible to update the general NSG which allows all traffic and is required by Azure or to create a new NSG that is specific for the HA Management network.

Regards,

Joeri