# Installing FileMage Gateway on Amazon Web Services

FileMage Gateway is available on AWS as a virtual machine (VM) image. The VM image contains a fully configured installation of FileMage Gateway ready to be used on AWS.

# Deploying the VM from the marketplace

  1. Go to the marketplace listing page.

  2. Click Continue to Subscribe. You will be prompted to sign in to your AWS account if you aren't already signed in.

aws

  1. Review the terms and conditions, then click Continue to Configuration.

  2. Select the region you want to deploy to in the Region drop down.

  3. Click Continue to Launch.

  4. For Choose Action, select Launch through EC2.

  5. Click Launch.

aws

# Launch Instance Wizard

  1. Choose an instance size, then click Next.

  2. Configure your network settings.

  3. We recommend attaching a IAM role with the following IAM policy.

{
    "Version": "2012-10-17",
    "Statement": [
        {
            "Effect": "Allow",
            "Action": [
                "s3:ListBucket",
                "s3:GetBucketLocation"
            ],
            "Resource": [
                "arn:aws:s3:::example-bucket",
                "arn:aws:s3:::example-bucket2"
            ]
        },
        {
            "Effect": "Allow",
            "Action": [
                "s3:GetObject",
                "s3:PutObject",
                "s3:DeleteObject",
                "s3:AbortMultipartUpload"
            ],
            "Resource": [
                "arn:aws:s3:::example-bucket/*",
                "arn:aws:s3:::example-bucket2/*"
            ]
        }
    ]
}
  1. Click Next.

  2. Configure your storage options. For most scenarios, you may leave the default minimum. File data is never written to disk. Significant disk space usage comes only from the audit log. On average, each 1 million audit events stored will consume 1gb of disk space.

  3. Click Next.

  4. Add tags as needed.

  5. Click Next.

  6. Select Create a new security group, then customize security group settings as needed.

Description Ports
OS SSH 22
Web Portal 80, 443
SFTP 2222
FTP Command 21
FTP Passive 32768-60999

Note

To use SFTP in Linux on port 22 sshd must be reconfigured to use a different port.

Restrict Administrative Ports

It is strongly recommended that you restrict access to the web portal (80, 443) and SSH (22) to trusted IP ranges.

  1. Click Review and Launch.

  2. Review your settings and click and Launch.