Step 1: Add Alibaba Cloud as a provider to your Conductor

Set up Alibaba Cloud as a cloud provider in your Conductor to make deploying cloud Airwall Gateways and High-availability standby Conductor easier.

To add Alibaba Cloud as a provider, you need to:

  • Get Alibaba Cloud Access Key credentials
  • Set up Alibaba Cloud as a cloud provider in the Conductor

Get Alibaba Cloud Access Key credentials

Alibaba Cloud accounts and RAM users have identities. Alibaba Cloud services use credentials for authentication.

For example, Alibaba Cloud services use passwords for authentication when you log on to a console. In this case, your email and password are the credentials.

Alibaba Cloud uses AccessKey pairs for authentication when you make API calls. An AccessKey pair consists of an AccessKey ID and an AccessKey secret. For the most up-to-date instructions, see Alibaba Cloud API overview - Alibaba Cloud API overview| Alibaba Cloud Documentation Center

  1. Create or go to your Alibaba Cloud RAM account. For details, see Create a RAM user - Getting Started| Alibaba Cloud Documentation Center, or the most recent content from Alibaba Cloud.
  2. To get your Alibaba Cloud AccessKey pair, in Alibaba Cloud go to the RAM console.
  3. Under Users, scroll down to User AccessKeys. Create a new Access Key by selecting Create AccessKey.
    Alibaba Cloud User AccessKeys
  4. Note down your AccessKey ID and secret.
Once you have your ID and secret, you’ll use them in the next step to add Alibaba Cloud as a cloud provider in the Conductor.

Set up Alibaba Cloud as a cloud provider

  1. In the Conductor, select the gear icon in the upper-right to access the Settings page.
  2. Select the Cloud providers tab and click + Add Cloud Providers.
  3. In the Add Cloud Providers. dialog, select the check-mark to the right of Alibaba Cloud and click Next
  4. Enter your Alibaba Cloud access and secret keys, and choose an option for Alibaba Cloud route injection.
    Add Cloud Provider dialog showing where to add your Access Key ID and secret
  5. The Alibaba Cloud route injection setting determines how new routes are added to the Alibaba Cloud routing table. The routes are for traffic on your protected overlay network between protected devices and the Airwall Gateway. Here are the recommended settings depending on your deployment details:
    • If you are using a Airwall Relay, set to Disabled.
    • If you want to handle traffic for devices individually, set to Individual traffic.
    • If you want one route to send all traffic to the overlay port on the Airwall Gateway, set to All traffic.
      Note: All traffic is effectively ‘full tunnel’ mode. With Individual traffic, you could add routes that send traffic around the Airwall Gateway.
  6. By Default region, select the Refresh icon to get the list of regions from the provider, and then select your default region.
  7. Click Finish

    Your Alibaba Cloud provider is displayed in the Configured Cloud Providers list.