Deploy Gateway via Resource Manager

To deploy load balancers managed by Sophos UTM via the Resource Manager, proceed as follows:

1. In Sophos UTM navigate to AWS Management > Outbound Gateway.
2. Click on New Outbound Gateway.
   The Add Outbound Gateway dialog box opens with the activated Resource Manager checkbox.

Note – You cannot change the usage of the Resource Manager after creating the gateway.

3. Make the following settings:

   Failover Group: Define the group of load balancers for fallback.

   Note – For more information on failover groups, see chapter Fallback Scenarios.

   Group Name (if New Failover Group is selected): Enter the name of the new group.

   Position: If requested, change the position number, defining the priority of the gateway.

   AWS Subnet ID: ID of a fresh and empty AWS subnet, the gateway should be deployed to.

   Note – Do not use an existing client subnet or a subnet which is already in use.

   Networks: Insert the network object for the client subnet in the same Availability Zone.

   Comment (optional): Add a description or other information.

4. Make the following advanced settings:

   Gateway Network Prefix: If the displayed prefix is already in use, change it.

5. Click Save.

   The gateway is saved and displayed in the list.

6. Repeat the steps for second gateway using the data of the other two subnets.

You can only enable the object once CloudFormation reports the stack creation as complete.

Note – If you have to change anything like changing the manual deployment into automatic deployment, delete the Outbound Gateway and create a new one.