AWS — Site-to-Site VPN Connections Overview
Published in
3 min readApr 10, 2021
Introduction to AWS VPN Connections — Virtual Private Network getting started guide!
TL;DR
AWS VPN solutions establish secure connections between your on-premises networks, remote offices, client devices, and the AWS global network. You can extend your on-premises networks to the cloud and securely access them from anywhere.
Key concepts for Site-to-Site VPN
- VPN connection: A secure connection between your on-premises equipment and your VPCs.
- VPN tunnel: An encrypted link where data can pass from the customer network to or from AWS.
- Customer Gateway (CGW): A resource that you create in AWS that represents the customer gateway device in your on-premises network.
- Customer Gateway device: A physical device or software application on your side of the Site-to-Site VPN connection.
- Virtual Private Gateway (VGW): It is the VPN concentrator on the AWS side of the VPN connection. You have to attach it to the VPC from which you want to create the Site-to-Site VPN connection.
- Transit Gateway (TGW): It is a transit hub that you can use to interconnect your VPC and on-premises networks. You can create a VPN connection as an attachment on a transit gateway.