import SupportOptions from "@/components/SupportOptions"; import Link from "next/link"; import Alert from "@/components/DocsAlert"; import Image from "next/image"; import PlanBadge from "@/components/PlanBadge";

Scale Access to a VPC

</PlanBadge>

In this guide, we'll use Firezone to scale your team's access to a VPC.

This is commonly used when you need fast, reliable access to your cloud computing resources which are located behind a cloud firewall.

After completing this guide, your team's traffic into the VPC will be load balanced across multiple Gateways for high availability.

<Alert color="warning"> Opening ports on your network firewall is **not** necessary or recommended. Firezone Gateways perform secure NAT traversal for you. </Alert>

Prerequisites

A Site reserved for this use case. Create a Site if you haven't already.
Two or more Gateways deployed within the Site. Deploy a Gateway if you haven't done so yet.

<Alert color="info"> See our [Terraform examples](/kb/automate/terraform) to learn how to automate deployments to various cloud providers. </Alert>

Step 1: Create a Resource

In your admin portal, go to Sites -> <site> and click the Add Resource button.
Select CIDR as the Resource type.
Enter the CIDR range of the VPC you want to secure access to. This should be a range of IPv4 or IPv6 addresses that's directly reachable from the Gateway(s) in your Site.
Name the Resource something descriptive, like SJC demo net. You'll refer to this name when creating a Policy in the next step.
Click Save.

Step 2: Create a Policy

In the Policies tab, click the Add Policy button.
Select an appropriate Group and the the Resource you created in Step (1).
Click Save.

Step 3: Done!

You should now be able to access hosts and services in the VPC you specified in Step (1).