Backup

Use Wasabi cloud to backup your FortiGate Firewall configuration for 6.99$/month

par
Use Wasabi cloud to backup your FortiGate Firewall configuration for 6.99$month

Steps to implement an automated config backup solution for your FortiGate with Wasabi Cloud for 6.99$/month

  1. Create an account on wasabi cloud https://wasabi.com/fr.
  2. Create a bucket and activate the versioning.
  3. Activate the FTP/FTPS protocol in Wasabi
  4. Configure your FortiGate CLI config backup over FTP command
  5. Configure Your automation Trigger
  6. Configure Your automation Action
  7. Configure Your automation Stitch

FortiGate CLI config backup over FTP command

You can connect over FTP/FTPS to your Wasabi S3 Bucket with your account credentials. In paid plan you can create sub-user with FTP/FTPS access.

To connect to your Wasabi S3 Bucket over FTP you need :

  • The region where the bucket is created here is eu-west-2
  • The name of the Bucket, here is backup_fortigate
  • Your username/email & password of your Wasabi account here is fortigate@gitbook.deddy.me

You can connect to your Bucket with a FTP’s client https://winscp.net or https://filezilla-project.org with this configuration :

Build the FortiGate CLI Command

execute backup full-config ftp <bucket_name>/fortigate_01_config [s3.<](http://s3.eu-west-2.wasabisys.com:21/)wasabi_bucket_region>.wasabisys.[com:21](http://s3.eu-west-2.wasabisys.com:21/) <ftp_username/email> <ftp_password>

The complete FortiGate CLI Command

execute backup full-config ftp backup_fortigate/fortigate_01_config [s3.](http://s3.eu-west-2.wasabisys.com:21/)eu-west-2.wasabisys.[com:21](http://s3.eu-west-2.wasabisys.com:21/) fortigate@gitbook.deddy.me superStrongPassword

Wasabi Cloud Active the FTP/FTPS protocol in the settings

Wasabi Cloud Active the FTP/FTPS protocol in the settings
Wasabi Cloud Active the FTP/FTPS protocol in the settings

Create a Trigger in Security Fabric > Automation > Trigger

Each day the script will be executed.

fortigate automation trigger
fortigate automation trigger

Create an action in Security Fabric > Automation > Action

fortigate automation action
fortigate automation action

Create a Stitch on Security Fabric > Automation > Stitch

fortigate automation stitch - Use Wasabi cloud to backup your FortiGate Firewall configuration for 6.99$/month

How to monitor that Fortigate backups are up to date ?

You can implement a solution that monitors the last modification date of files either via the AWS S3 SDK JS library. See

How to use the AWS S3 JS SDK with Wasabi Cloud ?