Perform this task if you need multiple virtual systems to share an interface (a
Shared Gateway) to the Internet. This task presumes:
You configured an interface with a globally-routable IP address, which will be the shared gateway.
You completed the prior task,
Configure Virtual Systems. For the interface, you chose the external-facing interface with the globally-routable IP address.
When configuring the virtual systems, in the
Visible Virtual System
field, you checked the boxes of all virtual systems that must communicate to be visible to each other.
Device > Shared Gateway, click
and enter an
Enter a helpful
Name, preferably including the
of the gateway.
field, select a DNS proxy object if you want to apply DNS proxy rules to the interface.
that connects to the outside world.
Configure the zone for the shared gateway.
When adding objects such as zones or interfaces to a shared gateway, the shared gateway itself will be listed as an available vsys in the
Network > Zones
a new zone by
Location, select the shared gateway for which you are creating a zone.
Zone Protection Profile
—Optionally select a zone protection profile (or configure one later) that provides flood, reconnaissance, or packet-based attack protection.
—Optionally select a log forwarding profile for forwarding zone protection logs to an external system.
Optionally select the
Enable User Identification
check box to enable User-ID for the shared gateway.