Home A - Z
Page Index

An Otter Wiki 
# Fortigate in the Cloud


AWS Gateway Load Balancer (GWLB)


You should absolutely know this flow.

Traffic flow in AWS:

Traffic from protected VPC
Routed to GWLBe
Sent to FortiGate CNF
Security inspection happens
Allowed traffic returns to internet gateway

Key concepts:


GWLB = scalable entry point
GWLBe = endpoint referenced in route tables
Used for HA and scaling

Azure deployment flow

Azure equivalent:

GWLB tied to VNET
Traffic forwarded to CNF
CNF enforces policy
Traffic exits through Azure NAT Gateway
0 1 2 3 4 5 6 7 8 9 0 1 2 3 4 5 6 7 8 9 0 1 2 3 4 5 6 7 8 9 0 1 2 3 4 5 6 7 8 9