Single FortiGate-VM deployment
You can deploy the FortiGate-VM enterprise firewall for AWS as a virtual appliance in AWS (infrastructure as a service (IaaS)). This section shows you how to install and configure a single instance FortiGate-VM in AWS to provide a full next generation firewall/unified threat management security solution to protect your workloads in the AWS IaaS.
Networking is a core component in using AWS services, and using virtual private clouds, subnets, and virtual gateways help you to secure your resources at the networking level.
This section covers the deployment of simple web servers, but you can use this deployment type for any type of public resource protection with only slight modifications. With this architecture as a starting point, you can implement more advanced solutions, including multitiered solutions.
The example creates two subnets:
Subnet |
Connects the FortiGate-VM to... |
---|---|
Subnet1 |
AWS virtual gateway on the public-facing side. |
Subnet2 |
Windows server on the private side. |