Network & Security FAQ
Common questions about VPC, firewall, load balancing, VPN, and security services on NeoCloud.
VPC & Networking
What type of VPC is available?
Three tiers are available:
- Basic — OpenStack security groups
- Standard — Includes Fortinet Next-Generation Firewall (NGFW)
- Performance — Includes Fortinet NGFW
Exact differences between Standard and Performance tiers are to be confirmed.
I want to authenticate against my existing Active Directory. Is that possible?
Yes, via site-to-site VPN on Standard or Performance VPC.
Firewall
Do I get a managed firewall?
Yes, on Standard and Performance VPC tiers (FortiGate-based). The Basic VPC does not include advanced firewall features.
Can the firewall perform SSL/TLS inspection on my traffic?
Yes, supported on FortiGate-based VPC tiers.
Is an Intrusion Prevention System (IPS) available?
Not supported in the current infrastructure.
Is there DDoS protection at the network edge?
Not supported in the current infrastructure.
Is a Web Application Firewall (WAF) available for HTTP traffic?
Not supported in the current infrastructure.
Can firewall logs be sent to a SIEM for security monitoring?
Not supported in the current infrastructure.
Does the firewall meet compliance standards (ISO, SOC2)?
Not supported in the current infrastructure.
Is Zero Trust Network Access supported as an alternative to VPN?
Not supported in the current infrastructure.
Load Balancing
Is L4/L7 load balancing available?
Yes.
- FortiGate VPC: L4 via FortiGate VIPs
- Basic VPC: L4 via Octavia Load Balancer
- L7: F5 NGINX Ingress Controller with VirtualServer CRD in both VPC types
VPN
I want to set up a permanent VPN tunnel to my office network. Is that available?
Yes. Site-to-site VPN can be set up after coordination with the Cloud Services team.
Does the VPN support multi-factor authentication?
Yes. FortiGate supports MFA via FortiToken and RADIUS integration.
DNS
Is managed DNS available?
Not supported in the current infrastructure.