Basically I want to use UTM9 in place of a NAT for some basic traffic filtering (maybe overkill for now, but I might use it more later).
I was able to spin up the 2 subnet system as described in the tutorial and see the traffic filtering work (great!).
My problem is that I want something like 10 subnets for sectioning off different stuff at the network level, and only the subnet that contains the private side NIC/ENI seems to work. I can see traffic from other subnets hitting UTM, but getting DROPPED instead of ALLOWED.
Help?? [:S]
More detail:
VPC: 10.0.0.0/16
Public subnet: 10.0.151.0/24
Private subnet: 10.0.101.0/24
OtherPrivate subnet: 10.0.1.0/24
The UTM server lives in the public, with a second ENI in the Private. The route tables for both privates point traffic to this ENI. All security groups are wide open. (Again, the traffic is hitting UTM)
The instance in the PrivateSubnet works, but from the OtherPrivate does not.
TBC- I think I understand that I could add an EMI for each subnet, but that's not practical for as many subnets as I need, and I don't think it should be necessary.
This thread was automatically locked due to age.
