AWS announces AWS Interconnect – multicloud (preview), providing simple, resilient, high-speed private connections to other cloud service providers. AWS Interconnect - multicloud is easy to configure and provides high-speed, resilient connectivity with dedicated bandwidth, enabling customers to interconnect AWS networking services such as AWS Transit Gateway, AWS Cloud WAN, and Amazon VPC to other cloud service providers with ease.
How do I associate a Direct Connect gateway to a transit gateway in another account?
I want to associate my AWS Direct Connect gateway in my AWS account to a transit gateway that’s in another account.
Resolution
Requirements:
- Verify that your Direct Connect gateway and transit gateway use different Autonomous System Number (ASN) values.
- In the account that owns the transit gateway, verify that the AWS Identity and Access Management (IAM) user has CreateDirectConnectGatewayAssociationProposal permissions to perform the required actions.
- In the account that owns the Direct Connect gateway, verify that the IAM user has AcceptDirectConnectGatewayAssociationProposal permissions to perform the required actions.
Note: The following steps also apply to a transit gateway that you share through AWS Resource Access Manager (AWS RAM). You can associate a Direct Connect gateway with up to 6 transit gateways. AWS doesn't increase this quota.
Create an association proposal from the transit gateway account
Complete the following steps:
- Open the Direct Connect console from the account that owns the transit gateway.
- In the navigation pane, choose Transit gateways.
- From the list of transit gateways, select the transit gateway that you want to associate with the Direct Connect gateway.
- Choose Associate Direct Connect gateway.
- Under Association account type, choose Another account.
- Enter the following association settings:
For Direct Connect gateway ID, enter the ID.
For Direct Connect gateway owner account ID, enter the account ID of the account that owns the Direct Connect gateway.
For Allowed prefixes, enter the CIDR blocks that's allowed to route through the association. - Choose Associate Direct Connect gateway.
Note: The association appears under Pending Direct Connect gateway proposals.
Accept the association proposal from the account that owns the Direct Connect gateway
Complete the following steps:
- Open the Direct Connect console from the account that owns the Direct Connect gateway.
- In the navigation pane, choose Direct Connect gateways.
- Select the Direct Connect gateway that has the pending association proposal.
- Find the pending association under Association proposals.
- Select the pending association, and then choose Accept.
Configure the routes and your route table
After you accept the association proposal, take the following actions:
- Verify that your route table has the correct routes between the on-premises network and Amazon Virtual Private Cloud (Amazon VPC) that attach to the transit gateway.
- Add routes in your transit gateway route table to send remote network traffic to the Direct Connect gateway attachment.
- Configure allowed prefixes in your Direct Connect gateway to reach remote network traffic.
Related information
Associate or disassociate AWS Direct Connect with a transit gateway
Why can't I associate a transit gateway to my Direct Connect gateway?
- Language
- English
