Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 4 replies
  • Subscribers 4 subscribers
  • Views 7993 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Sophos and the AWS ELB

L1meFire
In AWS, I'm trying to position Sophos between an External ELB and an Internal ELB balancing traffic to web servers.

External ELB -> Sophos -> Internal ELB -> Web Servers

The External ELB can point at Sophos instances with no issues.  Given that the ELB doesn't have an IP address only a DNS name, I obviously can't NAT to it.  Is there a way of directing the traffic to the Internal ELB once it hits Sophos?  In other words, how can I sandwich Sophos between the two ELBs, north to south?


This thread was automatically locked due to age.
Parents
  • 0
    Hi, L1meFire, and welcome to the User BB!  I haven't asked the question before - have you asked whether an ELB, let alone two, will gain you any advantage?  

    Cheers - Bob  

    Sorry for any short responses.  Posted from my iPhone.
     
    Sophos UTM Community Moderator
    Sophos Certified Architect - UTM
    Sophos Certified Engineer - XG
    Gold Solution Partner since 2005
    MediaSoft, Inc. USA
Reply
  • 0
    Hi, L1meFire, and welcome to the User BB!  I haven't asked the question before - have you asked whether an ELB, let alone two, will gain you any advantage?  

    Cheers - Bob  

    Sorry for any short responses.  Posted from my iPhone.
     
    Sophos UTM Community Moderator
    Sophos Certified Architect - UTM
    Sophos Certified Engineer - XG
    Gold Solution Partner since 2005
    MediaSoft, Inc. USA
Children
  • 0 in reply to BAlfson
    I didn't see an answer to the original question of whether you could NAT to an AWS ELB, which uses a domain name.  I assume from one line in the documentation that this is possible, but I don't see how.

    Any assistance or links to relevant documentation would be appreciated.

    As to your question of why someone would want to do the following:
    ELB=>[Sophos]=>ELB=>Instances

    The first ELB provides failover/redundancy across AWS AZs.  The second ELB not only provides the ability to autoscale, but also provides redundancy for failed instances. 

    Thanks,

    Scott
Cookie Information Banner