Can I associate multiple EIPs to single internal IP
In my AWS instance, I only have one network interface, and one internal IP address from my subnet 10.1.1.0/24, let's say it's 10.1.1.66, I have 10 EIPs, 52.2.2.1 - 52.2.2.10 as well.
Can I associate these 10 public EIPs to my single internal IP 10.1.1.66? My instance has code to direct these 10 public IPs to different web services. Thanks
EIP's are associated to private IPv4 addresses on ENI's. From the docs:
Each private IPv4 address can be associated with a single Elastic IP address, and vice versa.
The instance size will determine how many ENI's can be associated, and how many IP addresses can be assigned to each ENI. This is documented here.
In a /24 subnet you've got more than enough address space for the 10 private addresses you'll need to assign and associate EIP's with. You'll want to make sure the instance type you choose has not just the number of IP's you'd expect to associate today, but to plan for growth as well.
Other considerations you should think through, too, include protecting this instance with a firewall and ensuring the ability to auto-scale if needed.
I understood the default EIP associating policy cannot do this, but we should have the chance to do this multiple EIP's to one private IP mapping if I use AWS Firewall. Is this possible? In my on-prem Fortigate firewall, I can do this mapping easily.
Can you be specific as to which firewall? I'm assuming you're talking about AWS WAF, not AWS Network Firewall, but want to be sure. An Elastic Load Balancer might be the best approach here, depending on architecture.
Relevant questions
Public ip address connectivity in AWS
AWS-User-3394524asked 3 months agoCan I associate multiple EIPs to single internal IP
Accepted AnswerAWS-User-8431016asked 11 days agoInstance network isolation?
David Gasked 3 years agoSite to Site VPN with Private and Public - Mikrotik
SteveKenneyasked 9 months agoUpdating the Elastic IP address of a Network Load Balancer
MrJibusasked a year agoWhy can an instance in a target group not reach itself via NLB?
Accepted AnswerAWS-User-9561119asked 2 years agoHow to create secondary private ip with AWS CDK?
TheBlobasked 2 months agoS2S VPN tunnels up but no communication.
PatWillsasked 13 days agoENI and public IP address
Gustavomanoelasked 3 years agoAre internal IP's static?
David Gasked 3 years ago
No, that's not possible. AWS Network Firewall doesn't provide any NAT functionality.