AWS — Site-to-Site VPN Connections Overview

Introduction to AWS VPN Connections — Virtual Private Network getting started guide!

AWS Site-to-Site VPN Connections

TL;DR

AWS VPN solutions establish secure connections between your on-premises networks, remote offices, client devices, and the AWS global network. You can extend your on-premises networks to the cloud and securely access them from anywhere.

Key concepts for Site-to-Site VPN

• VPN connection: A secure connection between your on-premises equipment and your VPCs.
• VPN tunnel: An encrypted link where data can pass from the customer network to or from AWS.
• Customer Gateway (CGW): A resource that you create in AWS that represents the customer gateway device in your on-premises network.
• Customer Gateway device: A physical device or software application on your side of the Site-to-Site VPN connection.
• Virtual Private Gateway (VGW): It is the VPN concentrator on the AWS side of the VPN connection. You have to attach it to the VPC from which you want to create the Site-to-Site VPN connection.
• Transit Gateway (TGW): It is a transit hub that you can use to interconnect your VPC and on-premises networks. You can create a VPN connection as an attachment on a transit gateway.