Barracuda Secure Access Controller for AWS
Access resources hosted in AWS
Access Controller and CloudGen Firewall in the Public Cloud, Control Center On-Premises
In this scenario, the Secure Connectors connect to the public IP address of the Access Controller. Management traffic from the Secure Connectors is sent either through a dedicated Access Controller to a Control Center VPN tunnel, or through the site-to-site VPN tunnel of an additional CloudGen Firewall that connects your on-premises data center to the cloud.
Access Controller, CloudGen Firewall, and Control Center in Azure or AWS
The client connects to the public IP address of the Access Controller. Traffic to the backend is routed either through the optional CloudGen Firewall, or directly to the backend subnets. Management traffic from the Secure Connectors is forwarded by the Access Controller directly to the Control Center in the cloud. The Access Controller can act as the outgoing gateway for the backend services, or if site-to-site or client-to-site VPN connectivity is required, the Access Controller is configured to work in tandem with an additional CloudGen Firewall acting as the border firewall.