/fortigate-autoscale-aws

AWS Transit Gateway can be used to connect Amazon Virtual Private Clouds (VPCs) and their on-premises networks to a single gateway. FortiGate Autoscale with Transit Gateway integration extends the protection to all networks connected to the Transit Gateway.

Primary LanguageTypeScriptMIT LicenseMIT

FortiGate Autoscale for AWS

An implementation of FortiGate Autoscale for the Amazon AWS platform API with a Dynamo DB storage backend.

This project provides multi-group Auto Scaling functionality for Fortinet FortiGate EC2 instances to form an HA cluster with failover protection. For deployment on other cloud platforms, visit the relevant repository:

This project has the following features:

  1. Multi-group Hybrid Licensing models:
    1. BYOL-Only: 1 dynamically scalable Auto Scaling group of (0 or more) Bring Your Own License (BYOL) FortiGate instances.
    2. PAYG-Only: 1 dynamically scalable Auto Scaling group of (0 or more) on-demand FortiGate instances.
    3. Hybrid: 1 fix-sized Auto Scaling group of 2 (or more) BYOL FortiGate instances, and 1 dynamically scalable Auto Scaling group of (0 or more) on-demand FortiGate instances.
  2. AWS Transit Gateway integration.
  3. FortiAnalyzer integration.

Deployment packages

To obtain the deployment package, use one of the following:

  • Download the package aws-cloudformation.zip directly from the project release page.
  • Manually generate the deployment package in your local workspace:
    1. From the project release page, download the source code (.zip or .tar.gz) for the latest version.
    2. Extract the source code into the project directory in your local workspace.
    3. Run npm install to initialize the project at the project root directory.
    4. Run npm run build-artifacts to generate the local deployment package.
    5. The deployment package aws-cloudformation.zip will be available in the dist/artifacts directory.

Architectural diagrams

Autoscale 3.0 architectural diagram

More diagrams are available in docs/diagrams

Technical documentation

Deployment guide

Deployment guides are available from the Fortinet Document Library:

Launch a demo

New VPC, no-TGW Existing VPC, no-TGW TGW Integration (new VPC)
Launch Stack Launch Stack Launch Stack

Support

Fortinet-provided scripts in this and other GitHub projects do not fall under the regular Fortinet technical support scope and are not supported by FortiCare Support Services. For direct issues, please refer to the Issues tab of this GitHub project. For other questions related to this project, contact github@fortinet.com.

License

License © Fortinet Technologies. All rights reserved.