I have deployed an Active-Passive XG Firewall setup in AWS following the proper guide and have full routing and sorted out the health check on the load balancer for incoming services. One issue I am having is the incoming traffic is being NAT'd to the GRE inside address of the Sophos appliance. Is this expected or have I missed a step in the configuration.
The reason I need to know is the docs say to use a 169.254.x.x/29 address for the GRE tunnel, so the Windows systems cannot route to these without a static route being used, which makes using native AWS services difficult when you can't edit their routing tables.
This thread was automatically locked due to age.