Deploy a Barracuda NextGen Firewall F-Series HA cluster in the Amazon AWS Cloud to ensure that your AWS resources are always available. For the backend servers to always use the active firewall instance, the AWS route table is rewritten each time a takeover event occurs. Incoming traffic can be directed to the active firewall by either Amazon Load Balancer for TCP connections or the DNS-based Route 53.
Deploy a high availability cluster
Create a high availability cluster by deploying two F-Series Firewall VMs in the same subnet and availability set. Replicate the number of network interfaces and attach them to the same subnets with static IP addresses.
For more information, see How to Configure a High Availability Cluster in AWS using the Web Portal.
AWS route table rewriting with AWS cloud integration
The routes in the AWS route table are limited to one VM as the gateway device. When you are using a high availability cluster as the gateway, the IP address of the gateway VM changes when the virtual server fails over. AWS cloud integration and route table rewriting allow both firewall VMs to access the AWS cloud fabric and reconfigure the routing table when a failover occurs.
For more information, see How to Configure Cloud Integration for AWS.