Scale Access to a VPC
STARTERTEAMENTERPRISE
In this guide, we'll use Firezone to scale your team's access to a VPC.
This is commonly used when you need fast, reliable access to your cloud computing resources which are located behind a cloud firewall.
After completing this guide, your team's traffic into the VPC will be load balanced across multiple Gateways for high availability.
Opening ports on your network firewall is not necessary or recommended. Firezone Gateways perform secure NAT traversal for you.
Prerequisites
- A Site reserved for this use case. Create a Site if you haven't already.
- Two or more Gateways deployed within the Site. Deploy a Gateway if you haven't done so yet.
See our Terraform examples for examples on how to automate deploying multiple Gateways to various cloud providers.
Step 1: Create a Resource
- In your admin portal, go to
Sites -> <site>
and click theAdd Resource
button. - Select
CIDR
as the Resource type. - Enter the CIDR range of the VPC you want to secure access to. This should be a range of IPv4 or IPv6 addresses that's directly reachable from the Gateway(s) in your Site.
- Name the Resource something descriptive, like
SJC demo net
. You'll refer to this name when creating a Policy in the next step. - Click
Save
.
Step 2: Create a Policy
- In the
Policies
tab, click theAdd Policy
button. - Select an appropriate Group and the the Resource you created in Step (1).
- Click
Save
.
Step 3: Done!
You should now be able to access hosts and services in the VPC you specified in Step (1).
Need additional help?
Try asking on one of our community-powered support channels:
- Discussion forums: Ask questions, report bugs, and suggest features.
- Discord server: Join discussions, meet other users, and chat with the Firezone team
- Email us: We read every message.
Or try searching the docs:
Last updated: April 24, 2024