This website uses Cookies. Click Accept to agree to our website's cookie use as described in our Privacy Policy. Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
ABOUT CHECKMATES & FAQ
Create a Post
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Are you a member of CheckMates?

×
Sign in with your Check Point UserCenter/PartnerMap account to access more great content and get a chance to win some Apple AirPods! If you don't have an account, create one now for free!
Prabulingam_N1
Advisor
‎2020-02-12 03:50 AM

R80.30 AWS - AutoScaleGW for Outbound traffic from Internal Webservers

Dear CheckMates,

 

I have deployed R80.30 Mgmt server Cloudguard controller and R80.30 AutoScale Gateways in AWS.

Deployed External Network LB and Internal Application LB.

Placed internal Webserver behind Internal ALB - works fine.

(Inbound traffic from Internet to the Webserver thru LBs)

 

Now we need to make the outbound traffic from Internal webservers thru AutoScale GW to the internet so that we can inspect the outbound webserver traffic.

Is this feasible?.  Per sk112575 - Point 5th: 

"Web clients in private subnets are configured to use an ELB as their HTTP/HTTPS proxy.
This Proxy ELB is configured to forward TCP connections to the CloudGuard Auto Scaling group"

 

Per AWS team they could not make Internal ALB as proxy. Only Classic LB we can docreate ProxyProtocolPolicy.

 

Any comments to do will be helpful.

 

Regards, Prabulingam.N

 

0 Kudos
2 Replies
This widget could not be displayed.

Leaderboard

Epsum factorial non deposit quid pro quo hic escorol.

View All ≫
UPCOMING CLOUDMATES EVENTS
    All CloudMates Events