Creating an AWS Site to Site VPN for pfSense with a Virtual Private Gateway

ACM.468 Configuring specific encryption options to prevent downgrade attacks

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

⚙️ Check out my series on Automating Cybersecurity Metrics. The Code.

🔒 Related Stories IAM | AWS Security | pfSense | Network Security

💻 Free Content on Jobs in Cybersecurity | ✉️ Sign up for the Email List

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

In the last post I was looking at the cost of my ultimate solution to connect my private network to an AWS NAT Gateway.

Calculating the Cost of An AWS Architecture plus a Region Security Warning

Initially I tried to do this without the Transit Gateway but I’ll explain why that didn’t work later. But let’s just say you only want to connect to AWS to reach instances in AWS via the VPN. You don’t need to make requests from your laptop to the Internet through AWS because you aren’t going to inspect traffic and you don’t need to connect multiple VPCs.

In that case, all you really need is an AWS Site To Site VPN with a Customer Gateway and a Virtual Private Gateway instead of…