Deploying Geo Cluster Members without an Elastic IP
When you deploy the Geo Cluster
Two or more Security Gateways that work together in a redundant configuration - High Availability, or Load Sharing. without associating an Elastic IP to the Cluster Members, then you must create, in the Security VPC, a VPC Endpoint with the EC2 service.
This enables the Cluster Members to connect to the EC2 service.
This is required during failover, when the Cluster Members need to connect to AWS Amazon® Web Services. Public cloud platform that offers global compute, storage, database, application and other cloud services. and change the routing tables to point on the new Active Member.
To create the VPC Endpoint:
-
In Amazon's VPC console, go the Endpoint tab and select Create Endpoint.
-
In the Service Name, select the EC2 service.
-
Select the Security VPC of the Cluster Members.
-
Click Create endpoint.
For more about this service, see VPC Endpoints.