Hello,

We are offering VPC with VCD 10.5. Some customers are looking to use NGFW firewall instead of the NSX-T T1 gateway. For these cases, we run a Fortigate virtual Firewall with VDOM outside of VCD. Then we create direct network in the VPC to connect VM networks to the perimeter firewall. This works fine.

Where things get tricky, is for customer that want to use TKGm. My understanding is that TKGm cannot be deployed on a direct network since it uses the loadbalancer from the T1. Hence it needs to be deployed on a routed network. But in such case, I dont see how I can attach this T1 to my Fortigate firewall. Is there any way to do this?