FortiGate Cloud-Native Firewall

Dlaczego potrzebujesz FortiGate CNF?

78% organizacji ma security gaps w cloud workloads. Self-managed firewalls w AWS wymagają capacity planning, patching, HA configuration. Native AWS tools nie zapewniają advanced threat protection.

FortiGate CNF to AWS-native managed NGFW z auto-scaling i FortiGuard threat intelligence. Zero infrastructure management - Fortinet zarządza patching, updates i availability. Pay-as-you-go bez upfront costs.

Jak to działa?

AWS-Native Architecture

Managed service integration:

• AWS Gateway Load Balancer integration
• VPC endpoint deployment
• Auto-scaling based on traffic
• Multi-AZ high availability
• Native AWS networking

FortiOS Foundation

Enterprise NGFW capabilities:

• Same FortiOS jak on-premise
• Consistent security policies
• FortiGuard protection
• SSL inspection
• Application control

Managed Operations

Fortinet handles operations:

• Automatic updates i patches
• Capacity scaling
• High availability
• Performance optimization
• 24/7 monitoring

Główne funkcje

Threat Protection

• IPS/IDS
• Antivirus/anti-malware
• Web filtering
• DNS security
• FortiGuard threat intel

Traffic Inspection

• North-south (internet traffic)
• East-west (VPC to VPC)
• Egress filtering
• Ingress protection
• SSL/TLS inspection

Policy Management

• Centralized policy console
• Per-VPC policies
• Microsegmentation
• Consistent z on-prem FortiGate
• API automation

Logging & Visibility

• CloudWatch integration
• FortiAnalyzer support
• Traffic analytics
• Compliance reporting
• Real-time dashboards

Deployment Model

Architecture:

Internet <-> FortiGate CNF <-> Your VPCs
                   |
          AWS Gateway Load Balancer
                   |
        Endpoints in each VPC

Integration:

• AWS Transit Gateway
• VPC peering support
• Multiple AWS accounts
• Cross-region deployment

FortiGate CNF vs Self-Managed

Dla kogo?

• AWS-first organizacje szukające managed security
• DevOps teams bez dedicated security ops
• Enterprise z consistent hybrid security requirements
• Firmy szukające predictable cloud security costs

Korzyści

Dla IT: Zero infrastructure management, auto-scaling, simplified operations

Dla bezpieczeństwa: FortiGuard protection, east-west visibility, consistent policies

Dla biznesu: Pay-as-you-go, faster time-to-security, reduced OpEx

Specyfikacja

FAQ

Czym CNF różni się od FortiGate-VM? CNF to managed service - Fortinet zarządza infrastructure. FortiGate-VM to self-managed VM w twojej AWS account.

Czy potrzebuję Gateway Load Balancer? Tak. FortiGate CNF wykorzystuje AWS Gateway Load Balancer dla traffic distribution.

Jak wygląda pricing? Pay-as-you-go based na traffic i enabled features. Bez upfront commitment.

Czy mogę użyć tych samych policies co on-prem? Tak. FortiOS foundation zapewnia consistent policies między CNF i FortiGate on-premise.

Czy CNF obsługuje east-west traffic? Tak. VPC to VPC inspection przez Transit Gateway integration.

Jak działają updates? Automatic. Fortinet zarządza patching, firmware updates, signature updates.

Czy dostępna jest integracja z FortiManager? FortiManager support dla unified management hybrid deployments.

Czy CNF wspiera SSL inspection? Tak. TLS decryption i inspection dla deep packet analysis.

Jakie regiony AWS są wspierane? Major AWS regions. Check availability dla specific region.

Jak wygląda wsparcie? Fortinet support dla service issues. nFlo jako partner oferuje AWS architecture consulting.