Dear CheckMates,

I have deployed R80.30 Mgmt server Cloudguard controller and R80.30 AutoScale Gateways in AWS.

Deployed External Network LB and Internal Application LB.

Placed internal Webserver behind Internal ALB - works fine.

(Inbound traffic from Internet to the Webserver thru LBs)

Now we need to make the outbound traffic from Internal webservers thru AutoScale GW to the internet so that we can inspect the outbound webserver traffic.

Is this feasible?.  Per sk112575 - Point 5th: 

"Web clients in private subnets are configured to use an ELB as their HTTP/HTTPS proxy.
This Proxy ELB is configured to forward TCP connections to the CloudGuard Auto Scaling group"

Per AWS team they could not make Internal ALB as proxy. Only Classic LB we can docreate ProxyProtocolPolicy.

Any comments to do will be helpful.

Regards, Prabulingam.N