AWS - Site to Site VPN

Posted on 2019-05-11 |

Basic Steps

Cloudformation

VPC with only private subnet; route table declared
VGW created and attached to VPC;
Propagation allowed via vgw to route table
CGW information declared;

Create Site2SiteVPN

Pay attention to IPSec Tunnel Interconnection IP CIDR
https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-properties-ec2-vpnconnection-vpntunneloptionsspecification.html
Download configuration and run from client side
- Pay attention to propagation CIDR

Client Side

Confirm the Client Gateway support BGP
Allocate the IpSec tunnel interconnection ip cidr
Allocate AWS VPC IP range
Confirm Data Centre Propagating IP Rages (default will be 0.0.0.0)

Reward Makes Perfect

Post author: Rachel Rui Liu
Post link: https://racheliurui.github.io/2019/05/11/markdown/AWS/AWS2018/Site2SiteVPN/
Copyright Notice: All articles in this blog are licensed under CC BY-NC-SA 3.0 unless stating additionally.

0%