FortiGate Next-Generation Firewall technology delivers complete content and network protection by combining stateful inspection with a comprehensive suite of powerful security features.
Application control, antivirus, IPS, Web filtering and VPN along with advanced features such as an extreme threat database, vulnerability management and flow-based inspection work in concert to identify and mitigate the latest complex security threats. The security-hardened FortiOS operating system is purpose-built for inspection and identification of malware and supports direct Single Root I/O Virtualization (SR-IOV) for higher & more consistent performance.
FortiGate firewall for AWS supports "Unicast HA" to allow active/passive HA configurations. When a failure is detected, the passive firewall instance becomes active and utilizes AWS API calls to configure its interfaces/ports. Unicast Active-Passive HA is supported on FortiGate 5.6.3+, 6.0.0+, 7.0.0+, and 7.2.0+.
Please ensure the connectivity to FortiCare (https://directregistration.fortinet.com:443) by checking all related setup on security groups, ACLs, IGW, route tables, public IP address...etc.
Additional FortiGate features that require separate licenses are not supported on On-Demand instances. Use BYOL instances in such cases. Please contact awssales@fortinet.com with any questions.

C6i instances are supported by FortiGate 6.4.8+, 7.0.3+, and 7.2.0+ only
C5n instances are supported by FortiGate 6.0.0+, 6.4.0+, 7.0.0+, and 7.2.0+ only
C5 instances are supported by FortiGate 5.6.4+, 6.0.0+, 6.4.0+, and 7.0.0+ only.

Please contact awssales@fortinet.com with any questions.