This article shows you how to manually deploy the Outbound Gateways (OGWs) into the remote VPC.
The following sections are covered:
Applies to the following Sophos products and versions UTM on AWS Marketplace
If your clients or applications are in different VPCs than your UTM’s, you can use the Sophos supplied CloudFormation template to deploy OGWs, which will then route traffic to Worker UTMs over a VPC Peer connection via GRE tunnels.
To deploy OGWs, you must have the following network configuration:
The CloudFormation Template (CFT) will now gather information used to configure both the Outbound Gateway (OGW) and access across the VPC Peer connection to the UTM.
Complete the following fields in the CFT:
Stack creation will take about 5 minutes and upon completion will provide the information needed to create your UTM OGW definition.
Prior to creating the OGW definition on your UTM, you’ll need to gather the following information:
Once you have this information, you’re ready to create your OGW definition on your UTM.
With the OGWs successfully created and the client subnet route tables properly updated, you’re now ready to begin inspecting outbound traffic.
For steps on how to set up outbound UTM Web Protection policies, see the following:
If you've spotted an error or would like to provide feedback on this article, please use the section below to rate and comment on the article. This is invaluable to us to ensure that we continually strive to give our customers the best information possible.
Every comment submitted here is read (by a human) but we do not reply to specific technical questions. For technical support post a question to the community. Or click here for new feature/product improvements. Alternatively for paid/licensed products open a support ticket.