FortiGate Specifications for Firewall Instances
Fortigate Next Generation Firewall instance has 2 interfaces as described below.
Fortigate VM instance interfaces | Description | Inbound Security Group Rule |
---|---|---|
eth0 (on subnet -Public-FW-ingress-egress-AZ-a) |
Egress or Untrusted interface |
Allow ALL |
eth1 (on subnet -dmz-firewall) |
LAN or Trusted interface |
Allow ALL (Do not change) |
Note that firewall instance eth1 is on the same subnet as FireNet Gateway eth2 interface.
Starting from Release 5.4, Fortigate bootstrap configuration is supported. |
For basic configuration, refer to this FortiGate AWS example configuration guide.