External Connection (Site2Cloud) and Distributed Cloud Firewall
DCF rules can be pushed to Spoke or Transit Gateways as follows:
DCF on External Connections is supported on AWS (and AWS Government) and Azure (and Azure Government).
External Connections with DCF Prerequisites
If the following conditions are met you can enforce Distributed Cloud Firewall (DCF) rules on External Connection (Site2Cloud) interfaces:
External Connections (S2C) with DCF Capabilities
External Connections (S2C) Capabilities | Supported | Not Supported |
---|---|---|
Gateways |
|
|
Connection Type |
|
|
L4/L7 DCF |
|
No L7 enforcement on Transit Gateway |
Cloud Type |
|
|