We use cookies on our website to ensure we provide you with the best experience on our website. By using our website, you agree to the use of cookies for analytics and personalized content.This website uses cookies. More Information
It seems like your browser didn't download the required fonts. Please revise your security settings and try again.
Barracuda CloudGen Firewall

Secure Access Concentrator in the Public Cloud

  • Last updated on

The Secure Access Concentrator can be deployed in Azure and AWS if your Secure Connectors are geographically dispersed and/or your backend systems are hosted in Azure and/or AWS. The FSAC connects your Secure Connectors with your cloud resources and allows you to monitor the traffic between the Secure Connector and the private subnets. If VPN connectivity is required, the Access Concentrator is used in combination with an F-Series Firewall. You have two options for setting up the Secure Access Concentrator. The deployment steps are the same as the steps required for an on-premises Access Concentrator.

Access Concentrator and F-Series Firewall in the Public Cloud, Control Center on-premises 

In this scenario, the Secure Connectors connect to the public IP address of the Access Concentrator. Management traffic from the Secure Connectors is sent either through a dedicated Access Concentrator to Control Center VPN Tunnel, or through the site-to-site VPN tunnel of an additional F-Series Firewall is present that connects your on-premises datacenter to the cloud.

Azure_SAC_Integration_CC_onprem.png

Access Concentrator, F-Series Firewall, and Control Center in Azure or AWS

The client connects to the public IP address of the Access Concentrator. Traffic to the backend is routed either through the optional F-Series Firewall, or directly to the backend subnets. Management traffic from the Secure Connectors is forwarded by the Access Concentrator directly to the Control Center in the cloud. The Access Concentrator can act as the outgoing gateways for the backend services, or if site-to-site, or client-to-site VPN connectivity is required, the Access Concentrator is configured to work in tandem with an additional F-Series Firewall acting as the border firewall.

SAC_Integration_CC_Cloud.png

Last updated on