Deploying Engines on cloud-based virtualization platforms

You can deploy Engines on cloud-based virtualization platforms, such as the Amazon Web Services (AWS) cloud and the Microsoft Azure cloud.

Engines on cloud-based virtualization platforms provide VPN connectivity, access control, and inspection for services hosted on cloud-based virtualization platforms.

For information about deploying Engines in the AWS cloud, see the document How to deploy Forcepoint FlexEdge Secure SD-WAN in the Amazon Web Services cloud and Knowledge Base article 10156.

For information about deploying Engines in the Azure cloud, see the document How to deploy Forcepoint FlexEdge Secure SD-WAN in the Azure cloud and Knowledge Base article 14485.

After deployment, you can manage Engines on cloud-based virtualization platforms using the Management Client in the same way as other Engines. If you deploy Engines that use the scaling feature, you can only preview the Engines and make changes to the Firewall policies.

Note: Only Single Engine in the Firewall/VPN role are supported. Master Engines and Virtual Engines are not supported.

Licensing

Two licensing models are supported.
  • Bring Your Own License — You pay only the AWS or Azure standard runtime fee for the Engine instance. You must install a license for the Engine in the Secure SD-WAN Manager.
  • Hourly (pay as you go license) — You pay the AWS or Azure standard runtime fee for the Engine instance plus an hourly license fee based on the runtime of the Engine. No license installation is needed for the Engine in the Secure SD-WAN Manager.

For features that require separate licenses, the Secure SD-WAN Manager automatically detects which licensing model the Engine uses.