VPC Connections

Build on your understanding of the AWS VPC by learning about key connections and networks.

We'll cover the following

AWS Site-to-Site VPN
AWS VPN CloudHub
Direct Connect
Direct Connect resiliency
Direct Connect gateway
Transit Gateway
Networking combinations
AWS ClassicLink

AWS Site-to-Site VPN

By default, AWS resources can’t communicate with remote data centers. However, AWS allows us to configure an AWS Site-to-Site VPN connection between our private or corporate data centers and an AWS VPC.

To set up an AWS Site-to-Site VPN, we need the following:

Virtual private gateway (VPG): A VPG is a VPN endpoint on the AWS side of a Site-to-Site VPN connection. It can only be attached to one VPC at a time.
Customer gateway device: A physical device or software application on the data center side of the Site-to-Site VPN connection.
Customer gateway: An AWS resource that provides information about a customer gateway device.
Route propagation: Once the VPG and customer gateway are set up, we enable route propagation for the VPG in the VPC route table for the AWS Site-to-Site connection to work.

Note: If we need to ping an EC2 instance from on-site servers, we have to allow inbound access to the Internet Control Message Protocol (ICMP) in the instance security group.

Get hands-on with 1200+ tech skills courses.

Introduction

Getting Started with AWS

AWS IAM

AWS EC2

AWS Load Balancers and Auto Scaling Groups

AWS Storage Services

AWS Databases

AWS ElastiCache

AWS Elastic Beanstalk and CloudFront

AWS CloudFormation

AWS Monitoring

AWS VPC

AWS Route 53

AWS Security Services and Encryption

AWS Systems Manager

Important AWS Services

AWS SysOps Administrator Practice Exams

VPC Connections

AWS Site-to-Site VPN