Assumptions
The deployment example in this guide uses the following ports and IP addresses:
- HUB1 is located at a private or public corporate location (for example, HQ, datacenter, colo, and so on).
- This hub provides access to one or more applications or services.
- The second hub, Cloud-Gateway, is located in a public cloud.
- The Cloud-Gateway provides access to one or more cloud applications or services.
- This gateway has only 1 WAN connection.
- ISP1 is connected to port1 on all FortiGates.
- ISP2 is connected to port2 on all FortiGates.
- LAN is connected to port3 on all FortiGates.
- Corporate datacenter LAN subnet is 192.168.1.0/24 and is learned through a BGP peer.
- The Cloud services are directly connected on port3 with the subnet 172.20.1.0/24.