I will create an AWS hub and spoke network with a central firewall

Vetted Pro

Ukraine

I speak English, Ukrainian

50 orders completed

Fast, Robust, Solid: Web and Mobile Cloud Solutions

With 15+ years in software development, including 7+ years in AWS and fintech and 5+ as a Lead Solutions Architect, I help businesses turn complex ideas into secure, scalable, production-ready systems...
Vetted by Fiverr Pro

Vitalii F was selected by the Fiverr Pro team for their expertise.

Vetted for

  • Cloud Computing

  • Mobile App Development

  • Software Development

About this Gig

Vetted Pro

Centralized network security is required for many companies aiming to meet various security and compliance frameworks. It is a must-have for SOC2, and for PCI, centralized inspection is a strong architectural pattern that helps fulfill and demonstrate multiple requirements.


While it's not mandatory for HIPAA, it supports PHI monitoring and logging. For GDPR, it's also not required, but it can assist with breach detection and data loss prevention (DLP).


This solution represents a Centralized Egress Traffic Inspection across a multi-account AWS environment, using a Unicast HA FortiGate Cluster in a central networking hub.


The gig offers a complete AWS Multi-account configuration (AWS Organisation or AWS Control Tower), central hub and spoke networking solution with AWS Transit Gateway, a central networking account and a firewall to support an egress traffic inspection.


Gig Types:

- Basic: 1 AZ deployment

- Standard: 2AZs

- Premium: Unicast HA Cluster


PLEASE SEND ME A MESSAGE BEFORE BOOKING A GIG TO AVOID MISUNDERSTANDINGS OR CANCELLATIONS

Cloud provider:

Amazon Web Services

Expertise:

Installation

Migration

Development

Configuration

Cloud computing resource:

Route53

VPC

Security Groups

DNS

Other

Clients I’ve worked with
RIMA IT

RIMA IT

I was responsible for implementing secure connectivity between the client infrastructure and Applied systems. My work included VPN configuration, network routing and NAT setup, SQL Server authentication hardening, creation of a restricted read-only database interface for Pathway, and validation of secure connectivity and replication.

May 2025

My Portfolio

Related tags