Public Cloud 201: Advanced FortiGate Deployments on AWS

You will learn how FortiGates can address the following standard concerns and requirements when migrating applications and workloads to public cloud.

Common Concerns:

• Exposure to inbound internet attacks
• Environment and application segmentation to reduce exploit blast radius
• Next generation firewall (NGFW) protection and URL filtering for outbound web traffic
• Simple security policy across corporate cyber infrastructure

Common Requirements:

• Regional, highly available architecture (multiple availability zones (AZs))
• NGFW protection featuring FortiGate FortiGuard advanced protection
• Logging of all traffic

Workshop Goals

You will learn how to use FortiGate NGFW deployed as AWS EC2 instances to protect traffic flows in Advanced AWS architecture patterns, as well as some fundamental AWS networking concepts.

The intent is to help clarify the following:

• Advanced AWS networking concepts such as VPC Peering, Transit Gateway (TGW), Gateway Load Balancer (GWLB), and Cloud WAN (CWAN)
• Use of FortiGate instances in AWS to secure inbound, outbound, and East/West traffic flows
• AWS architectures with Transit Gateway (TGW), Gateway Load Balancer (GWLB), Cloud WAN (CWAN), and the FortiGate security VPC concept