Fortinet black logo

SD-WAN Deployment for MSSPs

Home FortiGate / FortiOS 7.2.0 SD-WAN Deployment for MSSPs
7.2.0
7.2.0
7.0.0
6.4.0

Introduction

Introduction

This document describes Fortinet's recommended approach to configuring our Secure SD-WAN Solution for Managed Service Providers. It guides you through a deployment of the Fortinet Secure SD-WAN Solution that consists of fully functional FortiGate (FGT) devices deployed on every site and centrally managed by FortiManager (FMG) and FortiAnalyzer (FAZ).

The solution design and components are described in detail in the SD-WAN / SD-Branch Architecture for MSSPs document, which must be read in conjunction with this guide. Here we will be guiding you through the recommended deployment steps, using an advanced dual-region SD-WAN project as an example. The deployment steps and the example project are described in detail in the Deployment overview chapter.

Our aim is to present an approach with the following important characteristics:

  • Generic: suitable for a wide variety of topologies with a mix of different site types
  • Flexible: allows (but not requires!) every detail to be customized
  • Reusable: provides a high degree of similarity (and re-usability) between different projects
  • Automation-friendly: suitable for fully automated provisioning using API
  • Infrastructure as Code (IaC) friendly: includes plain-text project descriptions in a declarative (also considered implementation-agnostic) language, which is both human and machine-readable, and allows for easy review, traceability, version control, and more

This approach is recommended for Managed Service Providers, who are the main target audience for this document. However, this approach may benefit any type of customer looking for the characteristics mentioned above.

Previous
Next

More Links

For comments and feedback about this document, visit the Fortinet Community site. Login required.

Introduction

This document describes Fortinet's recommended approach to configuring our Secure SD-WAN Solution for Managed Service Providers. It guides you through a deployment of the Fortinet Secure SD-WAN Solution that consists of fully functional FortiGate (FGT) devices deployed on every site and centrally managed by FortiManager (FMG) and FortiAnalyzer (FAZ).

The solution design and components are described in detail in the SD-WAN / SD-Branch Architecture for MSSPs document, which must be read in conjunction with this guide. Here we will be guiding you through the recommended deployment steps, using an advanced dual-region SD-WAN project as an example. The deployment steps and the example project are described in detail in the Deployment overview chapter.

Our aim is to present an approach with the following important characteristics:

  • Generic: suitable for a wide variety of topologies with a mix of different site types
  • Flexible: allows (but not requires!) every detail to be customized
  • Reusable: provides a high degree of similarity (and re-usability) between different projects
  • Automation-friendly: suitable for fully automated provisioning using API
  • Infrastructure as Code (IaC) friendly: includes plain-text project descriptions in a declarative (also considered implementation-agnostic) language, which is both human and machine-readable, and allows for easy review, traceability, version control, and more

This approach is recommended for Managed Service Providers, who are the main target audience for this document. However, this approach may benefit any type of customer looking for the characteristics mentioned above.

Previous
Next