- 최신
- 최다 투표
- 가장 많은 댓글
Hello,
With the NAT mode this will not work as you pointed out all traffic from the Clients to VPC is Source NAT'd by the OpenVPN access server, the Destination instance in a VPC will not know how to route back to the clients.
This is described in the below OpenVPN article:
https://openvpn.net/vpn-server-resources/reach-openvpn-clients-directly-from-a-private-network/
There is NAT mode and there is Routed mode, with NAT mode reverse connectivity from VPC back to client will not work because of the SNAT. Even with Routed mode connectivity to the instance in a Target VPC might work but I think it would not work via VPC Peering to another VPC as this would become transitive routing which is not allowed.
Please note, suggestions on OpenVPN are best effort here as it is not a native AWS product.
Hope this helps.
Thank you for you response. I appreciate it.
Do you sugeest having both instances in the same VPC might work?
Yes, that might work with the routed mode.
I will try that. Thank you once again
I was able to meet my needs by using a transit gateway rather than peering connection.
Thanks again for pointing me in a better direction.