I will create an AWS hub and spoke network with a central firewall
Fast, Robust, Solid: Web and Mobile Cloud Solutions
Vetted by Fiverr Pro
Vitalii F was selected by the Fiverr Pro team for their expertise.
Vetted for
Cloud Computing
Mobile App Development
Software Development
About this Gig
Vetted Pro
Centralized network security is required for many companies aiming to meet various security and compliance frameworks. It is a must-have for SOC2, and for PCI, centralized inspection is a strong architectural pattern that helps fulfill and demonstrate multiple requirements.
While it's not mandatory for HIPAA, it supports PHI monitoring and logging. For GDPR, it's also not required, but it can assist with breach detection and data loss prevention (DLP).
This solution represents a Centralized Egress Traffic Inspection across a multi-account AWS environment, using a Unicast HA FortiGate Cluster in a central networking hub.
The gig offers a complete AWS Multi-account configuration (AWS Organisation or AWS Control Tower), central hub and spoke networking solution with AWS Transit Gateway, a central networking account and a firewall to support an egress traffic inspection.
Gig Types:
- Basic: 1 AZ deployment
- Standard: 2AZs
- Premium: Unicast HA Cluster
PLEASE SEND ME A MESSAGE BEFORE BOOKING A GIG TO AVOID MISUNDERSTANDINGS OR CANCELLATIONS
Cloud provider:
Amazon Web Services
Cloud computing resource:
Route53
•
VPC
•
Security Groups
•
DNS
•
Other
Clients I’ve worked with
RIMA IT
I was responsible for implementing secure connectivity between the client infrastructure and Applied systems. My work included VPN configuration, network routing and NAT setup, SQL Server authentication hardening, creation of a restricted read-only database interface for Pathway, and validation of secure connectivity and replication.
May 2025
My Portfolio
Other Cloud Computing Services I Offer
FAQ
Can you create a multi-account solution using AWS Control Tower customizarion?
Yes, this is posible
Can you deploy a custom Firewall?
Yes, but I do not provide firewall configuration services. You should use your Security Engineer for this task.
Can you use VPC peering connections instead of TGW?
No, I do not provide this service under this gig contract. However, you may contact me personally, and we can discuss how to best meet your request.

