Site to Site VPN

  • By default, instances that you launch into an VPC can't communicate with your own (remote) network.

  • You can enable access to your remote network from your VPC by creating an Site-to-Site VPN connection, and configuring routing to pass traffic through the connection.

  • It supports Internet Protocol security (IPsec) VPN connections.

Components

  • VPN connection:

    • A secure connection between your on-premises equipment and your VPCs.

  • VPN tunnel:

    • An encrypted link where data can pass from the customer network to or from AWS.

    • Each VPN connection includes two VPN tunnels which you can simultaneously use for high availability.

  • Customer gateway device:

    • A physical device or software application on the customer's side of the Site-to-Site VPN connection.

  • Virtual private gateway:

    • VPN concentrator on the Amazon side of the Site-to-Site VPN connection.

PreviousBastion HostsNextDirect Connect

Last updated