Thanks guys. Those are some good ideas. Kyle’s method seems possible. I think I’m going to wireshark a demo with bidirectional Twilio communication (not on the corporate network) and see how it works and then look at tunneling over an SSL VPN for inbound traffic. Hopefully the corporate next-gen Fortinet Firewalls can’t distinguish between regular https and a VPN over https.
I guess we could always run a Gateway in the cloud with a distributed setup but I’m trying to avoid that if possible.