Site-to-Site VPN

Learn about the features of the Site-to-Site VPN service.

So far, we have learned how a VPC can be connected to another VPC, but there could also be requirements where an on-prem data center network needs to be connected to the VPC.

As the resources within a VPC can’t directly communicate with any resources outside the VPC, an interconnection must be established between the VPC and remote network so that the network traffic can flow from one side to the other.

To accomplish this, AWS provides a service called Site-to-Site VPN that securely connects AWS VPC and the remote network over the internet using Internet Protocol security (IPsec).

Site-to-Site VPN components

The following diagram shows the components involved in a Site-to-Site VPN connection.

Get hands-on with 1400+ tech skills courses.