This website uses Cookies. Click Accept to agree to our website's cookie use as described in our Privacy Policy. Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
ABOUT CHECKMATES CYBER SECURITY COMMUNITY & FAQ
Create a Post
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Are you a member of CheckMates?

×
Sign in with your Check Point UserCenter/PartnerMap account to access more great content and get a chance to win some Apple AirPods! If you don't have an account, create one now for free!
Kumar_Sambhav
Participant
‎2017-05-29 12:01 AM
Jump to solution

Unable to connect aws instance from internet

Hi,

This is for AWS:

I am unable to connect to ec2 instances from Internet,which are behind vSec firewall. I have given elastic IP to instance and on firewall natted the instance object with eslactic IP.

I do not see the traffic on firewall itself. Any help/suggestions are appreciated.

0 Kudos
1 Solution

Accepted Solutions
PhoneBoy
Admin
Admin
‎2017-05-29 06:29 AM
Jump to solution

Did you put the elastic IP on the vSEC instance or the instance you're trying to protect?

The packet flow must be: Internet > vSEC Gateway > EC2 instance.

Which means the elastic IP must be associated with a secondary interface on the vSEC instance.

Refer to the R77.30 vSEC for Amazon Web Services (AWS) Getting Started Guide​ for the correct steps.

View solution in original post

0 Kudos
2 Replies
PhoneBoy
Admin
Admin
‎2017-05-29 06:29 AM
Jump to solution

Did you put the elastic IP on the vSEC instance or the instance you're trying to protect?

The packet flow must be: Internet > vSEC Gateway > EC2 instance.

Which means the elastic IP must be associated with a secondary interface on the vSEC instance.

Refer to the R77.30 vSEC for Amazon Web Services (AWS) Getting Started Guide​ for the correct steps.

0 Kudos
Kumar_Sambhav
Participant
‎2017-05-29 11:11 PM
In response to PhoneBoy
Jump to solution

Thanks a lot Dameon.

I am able to access now. I assigned a private ip to external interface, associated that IP with elastic IP and then wrote one NAT rule for destination.

That was really helpful

0 Kudos

Leaderboard

Epsum factorial non deposit quid pro quo hic escorol.

View All ≫
UPCOMING CLOUDMATES EVENTS
    All CloudMates Events