Fortinet black logo

SD-WAN Architecture for Enterprise

Home FortiGate / FortiOS 7.0.0 SD-WAN Architecture for Enterprise
7.0.0
7.2.0
7.0.0

Cloud on-ramp for static environments

Cloud on-ramp for static environments

A FortiGate VM may be deployed as a traditional virtual machine instance, where the IP address is static and not expected to change. In these environments, the FortiGate VM acts more like a traditional SD-WAN gateway at a datacenter that provides head-end connectivity to the branches and protection to the resources behind it (in other words, the cloud environment).

Since the IP address is not expected to change, the gateway may be configured as a traditional IPsec dialup server to which branch locations may connect for cloud services. Branch locations will have a new P1 IPsec definition for each new cloud gateway that is required. From the SD-WAN perspective, the traffic flow is similar to a corporate branch-to-gateway, since it will leave the site edge through one of the available overlays.

Previous
Next

Cloud on-ramp for static environments

A FortiGate VM may be deployed as a traditional virtual machine instance, where the IP address is static and not expected to change. In these environments, the FortiGate VM acts more like a traditional SD-WAN gateway at a datacenter that provides head-end connectivity to the branches and protection to the resources behind it (in other words, the cloud environment).

Since the IP address is not expected to change, the gateway may be configured as a traditional IPsec dialup server to which branch locations may connect for cloud services. Branch locations will have a new P1 IPsec definition for each new cloud gateway that is required. From the SD-WAN perspective, the traffic flow is similar to a corporate branch-to-gateway, since it will leave the site edge through one of the available overlays.

Previous
Next