I’ve setup an AWS instance of VyOS and got a number of site-to-site tunnels setup and running. However, the instance has only one interface eth0 (EIP attached)
My question: is it possible to setup the VyOS instance to look more like a traditional firewall with outside and inside interfaces - eth0 and eth1 respectively.
I want to be able to add Firewall Rules (ACL’s) on the traffic, but it gets confusing fast with only the one interface as all traffic goes in/out the same interface.
Any thoughts, suggestions welcome.
Thanks in advance,