To create a multi-NIC configuration, you must first create an Amazon virtual private cloud (VPC). This is the network environment where your instances will reside.
Now create the internal subnet in that same availability zone. The internal subnet corresponds to the BIG-IP® internal VLAN.
|Availability Zone||The zone where the other subnets reside|
Amazon security groups control the inbound and outbound traffic allowed by an EC2 instance.
You can create security groups based on your needs. This specific configuration uses three security groups: one for the BIG-IP® Configuration utility, one for virtual server traffic, and one for internal traffic.
|Name tag||Inbound rules||Source|
||A secure network or, temporarily, 0.0.0.0/0 for Internet access.|
||For HTTP and HTTPS, use the port that serves the virtual traffic. Or temporarily, 0.0.0.0/0 for Internet access.|
||These two ports are used for config sync and failover between BIG-IP VEs.|