VIPs, interface IP addresses, and policies are created on the cloud FortiGate-VM to allow access to the remote servers.
- On the FortiGate EC2 instance, edit the Elastic Network Interface that corresponds to port2. In this example, Network Interface eth1.
- Go to Actions > Manage IP Addresses.
- Add two private IP address in the 10.0.2.0/24 subnet.
These address will be used in the VIPs on the FortiGate. This ensures that traffic to these IP addresses is routed to the FortiGate by AWS.
- Click Yes, Update.
Go to Policy & Objects > Virtual IPs and click Create New > Virtual IP.
Configure the following:
External IP address/range
Map to IPv4 address/range