Skip to main content
Flamby
Flamby
New Member
June 10, 2025
Question

FortiSASE SPA Design Question

  • June 10, 2025
  • 1 reply
  • 770 views

Hi everyone,

I would like your input about a design discussed with my technical manager.

We have 2 on-prem Fortigates inlcuding SPA licences with each (part numbers used FC2-10-FGVVS-662-02-12 and FC-10-0400F-662-02-12), one is a VM hosted in the cloud, the other is a FG-400F in the HQ.

 

My question is, is it possible to make FortiSASE as a central point of security enforcement between both sites, knowing that the HQ doesn't host anything, the users will basically access cloud resources hosted behind the virtual FG. remote users will have accounts in fortiSASE directly.

I'm wondering if this setup is valid, if not, doesn't require anything special in terms of licensing ?

 

Might be helpful to include FortiSASE licenses here:

Enhanced Support Premium
Telephone Support Premium
FortiTrust ZTNA & CASB (users)
FortiTrust ZTNA, EPP & CASB (users)
FortiTrust SASE & CASB (users)
FortiTrust Forensic Analysis Service

 

Thank you in advance

 

 

1 reply

bokilmo8
bokilmo8
New Member
June 10, 2025

If you’re a super big or critical account where sales teams can mint your corporates money, they would happily provision a demo instance for you. Otherwise the partner you’re working with or regional distri can get a NFR instance up and running for a very small amount, this usually for 50 users

    Flamby
    FlambyAuthor
    New Member
    June 10, 2025

    Hi,

    I just wanted to know, from a design perspective, if this is going to work the way I described it (a central point of transit and security enforcement between 2 sites)

    Thank you for your input

    Terms & ConditionsAccessibility statement