currently we have an AWS client vpn setup to give users access to our VPC. We are using active directory groups to allow certain users access to ip ranges. However, we would like to allow some users to only access an internal load balancer we have set up. The ip addresses on the internal ELB change sometimes and break the rules we have set up.
Is there a better way to set up the network so users can access only that load balancer?
