In order for a customer to leverage Aviatrix Firenet to orchestrate the deployment and insertion of NGFWs, customers must leverage Aviatrix gateways in the spokes VPC/VNETs in order to program the necessary routing to insert the firewall into the traffic flow?
FireNet is a solution for integrating firewalls in the AWS TGW deployment.
Aer creang Firewall Domain we have to launch Aviatrix FireNet Gateway.
This step leverages the Transit Network workflow to launch one Aviatrix gateway for FireNet deployment.
If you have HA enabled, it automatically sets up the HA gateway for FireNet deployment.
Specify Security Domain for Firewall Inspecon - if you wish to inspect traffic between on-prem to VPC,
connect Aviatrix Edge Domain to the Firewall Domain. This means on-prem traffic to any Spoke VPC is
routed to the firewall first and then it is forwarded to the destination Spoke VPC. Conversely, any Spoke
VPC traffic destined to on-prem is routed to the firewall first and then forwarded to on-prem.