Centralized Model: Add a VPC or VNet

Step 1

In the Multicloud Defense Controller portal click Setup in the left navigation bar.

Step 2

In the setup wizard, click Secure Account.

Step 3

Select Centralized so it is highlighted.

Step 4

Click Next.

Step 5

Add a Service VPC/VNet:

1. Name - Enter a name for the service VPC/VNet. Once created, this name is displayed in the Infrastructure > Gateways > VPCs/VNets page.

2. (AWS only)CSP Account - Use the drop-down menu to select a cloud service provider account that is already connected to the Multicloud Defense Controller. The Service VPC/VNet is deployed to the selected account.

3. Region - Use the drop-down menu to select the region where the selected cloud service provider is located.

4. CIDR Block - Enter the unique value for the Transit Gateway that the Service VPC/VNet is attaching to.

5. (GCP only) Datapath CIDR Block - Enter a valid CIDR block for datapath VPC which should not overlap with spoke VPCs.

6. (GCP only) Management CIDR Block - Enter a valid CIDR block for the management VPC.

7. Availablity Zones - Of the generated list, select at least one availability zone. We strongly recommend selected two zones for best results.

8. (Azure only) Resource Group - Use the drop-down menu to select a resource group to associate the gateway to. If there are none currently listed, you can Create Resource Group from this screen.

9. (AWS only) Transit Gateway - Use the drop-down menu to select an available transit gateway for the VPC to assocaite with. If you do not have one available, click create_new to create a transit gateway from this window.

10. (AWS and Azure only) Use NAT Gateway - check this option if you want all egress traffic to be directed through the NAT gateway. Multicloud Defense automatically creates a NAT gateway for each availability zone that is selected.

Step 6

Click Next.