I've configured a 2 legged Sophos UTM in AWS with the configuration below. I am able to surf the internet from instances in the private subnet that the private NI is in, but I am not able to access the internet from instances any of the other three private subnets in the VPC (one in the same AZ and two in a different AZ). Please feel free to point me to any doc that covers this as I have come up short (e.g. found doc, but it did not explicitly cover this scenario of multiple private subnets without adding a NI for each private subnet).
Sophos UTM in public subnet
eth0 in public subnet with Elastic IP attached
eth1 in private subnet (DMZ)
The private subnets share the same ACL and Route table (allow all access between the private subnets)
Firewall rule: VPC --> any
Masquerading rule: VPc --> Public interface
Web Filtering: allowed: VPC Transparent mode
Static Routing: VPC --> Gateway in the private subnet eth1 is in
DNS: allowed: VPC forwarders: VPC DNS (e.g. AWS)
This thread was automatically locked due to age.
