Fortinet black logo

FortiGate Cloud WLAN Deployment Guide

Home FortiAP / FortiWiFi 7.0.0 FortiGate Cloud WLAN Deployment Guide

Introduction

7.0.0
7.0.0
Copy Link
Copy Doc ID 53b9aa70-06cd-11ed-bb32-fa163e15d75b:343574
Download PDF

Introduction

Executive Summary

This deployment guide is intended to cover the key configuration needs of Fortinet Wi-Fi deployments at small branch and mid-size locations—ranging from a few to several dozen (or more) FortiAPs—using FortiGate Cloud management. FortiGate Cloud manages on-site FortiGates which, in turn, serve as the local WLAN controller of a site's FortiAPs. This deployment model is applicable to single or multiple sites, the key factors being that each site uses a FortiGate, the FortiGate directly manages the FortiAPs, and the FortiGate Cloud service is used to manage and configure the FortiGate(s). This model is also often described as Secure SD-Branch.

Although Fortinet Switches are an excellent choice and there are advantages to an all-Fortinet network, this guide is written with the assumption of generic switches.

One of the great strengths of Fortinet's Security Driven Networking architecture is that with Fortinet, wireless traffic can be tunneled to the FortiGate, where a full security stack inspection can be applied before the traffic is routed to the final destination and no traffic escapes a security inspection.

See the FortiGate Cloud WLAN Architecture Guide for more details.

All FortiGates include a full WiFi & Switch Controller as part of FortiOS. There is no additional licensing required, either for the WiFi Controller itself, or for the number of FortiAPs it can manage. The number of FortiAPs manageable is only limited by the hardware capacity of the FortiGate model. Refer to the FortiGate Data Sheet(s) to confirm the AP capacity of each FortiGate model.

Intended Audience

This guide is intended for an audience who is interested in deploying a FortiGate and Fortinet WLAN solution that will be managed via the FortiGate Cloud portal. Readers should have a basic understanding of networking, wireless, and security concepts before they begin. Interested audience may include:

  • Network, Wireless, and Security architects

  • Network, Wireless, and Security engineers

About this guide

After reading the FortiGate Cloud WLAN Architecture Guide, readers should have an understanding of the components, features, and designs that are offered by Fortinet's Wireless solution. Readers should evaluate their environment to determine whether this architecture and design is suitable for them before proceeding.

This deployment guide presents one of many possible ways to deploy Fortinet solutions. It may also omit specific steps where readers must make design decisions to further configure their devices. We recommended that readers review supplementary material found in product administration guides, example guides, cookbooks, release notes, and other documents where appropriate.

Previous
Next

Introduction

Executive Summary

This deployment guide is intended to cover the key configuration needs of Fortinet Wi-Fi deployments at small branch and mid-size locations—ranging from a few to several dozen (or more) FortiAPs—using FortiGate Cloud management. FortiGate Cloud manages on-site FortiGates which, in turn, serve as the local WLAN controller of a site's FortiAPs. This deployment model is applicable to single or multiple sites, the key factors being that each site uses a FortiGate, the FortiGate directly manages the FortiAPs, and the FortiGate Cloud service is used to manage and configure the FortiGate(s). This model is also often described as Secure SD-Branch.

Although Fortinet Switches are an excellent choice and there are advantages to an all-Fortinet network, this guide is written with the assumption of generic switches.

One of the great strengths of Fortinet's Security Driven Networking architecture is that with Fortinet, wireless traffic can be tunneled to the FortiGate, where a full security stack inspection can be applied before the traffic is routed to the final destination and no traffic escapes a security inspection.

See the FortiGate Cloud WLAN Architecture Guide for more details.

All FortiGates include a full WiFi & Switch Controller as part of FortiOS. There is no additional licensing required, either for the WiFi Controller itself, or for the number of FortiAPs it can manage. The number of FortiAPs manageable is only limited by the hardware capacity of the FortiGate model. Refer to the FortiGate Data Sheet(s) to confirm the AP capacity of each FortiGate model.

Intended Audience

This guide is intended for an audience who is interested in deploying a FortiGate and Fortinet WLAN solution that will be managed via the FortiGate Cloud portal. Readers should have a basic understanding of networking, wireless, and security concepts before they begin. Interested audience may include:

  • Network, Wireless, and Security architects

  • Network, Wireless, and Security engineers

About this guide

After reading the FortiGate Cloud WLAN Architecture Guide, readers should have an understanding of the components, features, and designs that are offered by Fortinet's Wireless solution. Readers should evaluate their environment to determine whether this architecture and design is suitable for them before proceeding.

This deployment guide presents one of many possible ways to deploy Fortinet solutions. It may also omit specific steps where readers must make design decisions to further configure their devices. We recommended that readers review supplementary material found in product administration guides, example guides, cookbooks, release notes, and other documents where appropriate.

Previous
Next