l
Public-b:For Availability Zone, select the b option for the region that you are
in. CIDR block: 10.0.2.0/24
l
Private-b: For Availability Zone, select the b option for the region that you are
in. CIDR block: 10.0.31.0/24
l
Data: For Availability Zone, select the a zone for the region that you are in.
CIDR block: 10.0.50.0/24. Optional: If you plan to replicate the external data-
base across a PostgreSQL cluster, then create a Data-b subnet in Availability
Zone b with a CIDRblock of 10.0.51.0/24.
l
Bastion: For Availability Zone, select either zone. CIDR block: 10.0.0.0/24
6. After the subnets are created, edit the route tables on the Public and the Bastion sub-
nets to use the route table that is configured for the associated internet gateway (IGW).
And edit the Private and Data subnets to use the route table that is configured for the
network address translator (NAT).
l
To determine which route table is configured with the IGW or the NAT, click
Route Tables in AWS dashboard. Select one of the two route table links to open
the property page. Look at the Target value at Routes > Destination> 0.0.0.0/0.
The Target value differentiates the type of route and will either start with the
igw- or nat- string.
l
To update route tables, VPC >Subnets > [subnet_name] > Route table > Edit
route table association.
Configure security groups
The VPCwizard creates a single security group that you will not use. Create the following
security groups (Security Groups >Create security group). The EC2 hosts will be installed
into these groups across two Availability Zones as shown in the slide-diagram above.
l
Create a new security group:Private. This is where all 4 nodes of Tableau Server will
be installed. Later in the installation process, the Private security group will be asso-
ciated with the 10.0.30.0/24 and 10.0.31.0/24 subnets.
l
Create a new security group: Public. This is where proxy servers will be installed. Later
in the installation process, the Public security group will be associated with the
10.0.1.0/24 and 10.0.2.0/24 subnets.
l
Create a new security group: Data. This is where the PostgreSQLexternal Tableau
repository will be installed. Later in the installation process, the Data security group will
be associated with the 10.0.50.0/24 (and optionally, 10.0.51.0/24) subnet.
24 Tableau Software
Tableau Server Enterprise Deployment Guide