Fortinet Document Library

Version:


Table of Contents

AWS Cookbook

Resources

Upgrade Path Tool

AWS Cookbook

6.4.0
Download PDF
Copy Link

Configuring TGW route tables

Since traffic from customer VPC A and customer VPC B must be routed via the security subnet and cannot be forward directly, you must configure the following on the TGW route table for east-west traffic.

To configure TGW route tables:
  1. Go to VPC Dashboard > Transit Gateways > Transit Gateway Route Tables.
  2. Delete the automatically generated route table and its associations. You will create two new TGW route tables.
  3. Create the TGW default route table:
    1. On the Associations tab, associate the route table with Customer A and Customer B VPCs.
    2. On the Propagations tab, propagate the route table to the security VPC.
    3. On the Routes tab, add a default route to send all traffic to the security VPC.
  4. Create the east-west route table:
    1. On the Associations tab, associate the route table with the security VPC.
    2. On the Propagations tab, propagate the route table to Customer A and Customer B VPCs.
    3. On the Routes tab, define customer A and B VPC routes.

Resources

Configuring TGW route tables

Since traffic from customer VPC A and customer VPC B must be routed via the security subnet and cannot be forward directly, you must configure the following on the TGW route table for east-west traffic.

To configure TGW route tables:
  1. Go to VPC Dashboard > Transit Gateways > Transit Gateway Route Tables.
  2. Delete the automatically generated route table and its associations. You will create two new TGW route tables.
  3. Create the TGW default route table:
    1. On the Associations tab, associate the route table with Customer A and Customer B VPCs.
    2. On the Propagations tab, propagate the route table to the security VPC.
    3. On the Routes tab, add a default route to send all traffic to the security VPC.
  4. Create the east-west route table:
    1. On the Associations tab, associate the route table with the security VPC.
    2. On the Propagations tab, propagate the route table to Customer A and Customer B VPCs.
    3. On the Routes tab, define customer A and B VPC routes.