Simple Notification Service (SNS)
Kinesis + MQ
Databases & Analytics
Site to Site VPN
  • By default, instances that you launch into an VPC can't communicate with your own (remote) network.
  • You can enable access to your remote network from your VPC by creating an Site-to-Site VPN connection, and configuring routing to pass traffic through the connection.
  • It supports Internet Protocol security (IPsec) VPN connections.


  • VPN connection:
    • A secure connection between your on-premises equipment and your VPCs.
  • VPN tunnel:
    • An encrypted link where data can pass from the customer network to or from AWS.
    • Each VPN connection includes two VPN tunnels which you can simultaneously use for high availability.
  • Customer gateway device:
    • A physical device or software application on the customer's side of the Site-to-Site VPN connection.
  • Virtual private gateway:
    • VPN concentrator on the Amazon side of the Site-to-Site VPN connection.
Copy link