Gateways are a type of NetFoundry endpoint that you can install on your LAN in order to send and receive packets between your local network and a NetFoundry network. This is different from a client, in which only the client computer has access to the NetFoundry network.
There are two types of gateways - those for clouds, and those for customer-premises VM hypervisors (called a vCPE gateway) in a datacenter, main office, or branch. Cloud gateways support both public and private clouds, such as AWS, Azure, Azure Stack, Cloud Foundry, Open Stack, and so on. You can launch cloud gateways directly from the cloud vendor marketplace. You can download vCPE gateways from the NetFoundry downloads page in a variety of formats suited for various hypervisors.
When you install a gateway on your LAN, it can serve two roles:
- As an ingress gateway it will allow anyone on the local network to reach whatever AppWANs it is a member of. When you assign a gateway to an AppWAN, it becomes an ingress gateway.
- As an egress gateway it can be used to reach services, like a web server, across an AppWAN. When you create a service and assign it to a gateway, it becomes an egress gateway.
Gateways can be both ingress and egress at the same time.
Creating and managing gateways
To manage your gateways on the console, choose Manage Gateways from the navigation menu. From this page you can:
- Create a new gateway
- Edit existing gateways
- Delete gateways
Click on a gateway row to view details about that gateway. Click the blue plus-sign in the upper right corner to create a new gateway. Use the ellipsis menu at the end of each row to take actions on an individual gateway, like deleting and sharing.
Create a new gateway and share it with others
From the Manage Gateways page, click the blue plus-sign icon to create a new gateway:
- Gateway type: Choose a gateway based on its location. There are vCPE gateways for datacenters and branches, and there are cloud gateways for AWS and Azure
- Gateway name: Give this gateway a unique name to identify it
- Location: Specify the region where the gateway will be installed
Click the "Create" button to continue.
On the confirmation screen, take note of the Registration Key. When you launch the gateway, you need this information. This key is a security measure to prevent unauthorized people from joining your network. Keep it safe. If it is compromised then delete the gateway from your network immediately.
If you are not the one launching the gateway, you can email these details to someone else. Click on the share icon in the upper-right hand corner of the page.
Viewing details about a gateway
The gateway dashboard will show you an events timeline, historical usage information, memberships to Endpoint Groups and AppWANs, and services the gateway is hosting.