AWS re:Post을(를) 사용하면 다음에 동의하게 됩니다. AWS re:Post 이용 약관
AWS re:Postre:Post

Route all traffic from on-premise network to AWS VPC via IPSec site-to-site

0

I'm going to build my whole datacenter on private subnet AWS VPC (LDAP, RADIUS, Database, etc.)
I want all traffic from on-premise network goes to the AWS VPC, then to the Internet.
Now I can successfully connect to my EC2 database server in the private subnet via IPSec site-to-site connection, but cannot connect to the Internet.
The Internet traffic is already forwarded by the customer gateway.
Any idea, help or suggestion about the infrastructure is really appreciate !!!

주제
네트워킹 및 콘텐츠 전송
태그
아마존 VPC
언어
English
AdamVu
질문됨 5년 전659회 조회
1개 답변
0

Hi,
You will not be able to access the Internet based on the diagram you provided due to transitive peering not supported:
https://docs.aws.amazon.com/vpc/latest/peering/invalid-peering-configurations.html#edge-to-edge-vgw

However, it appears that you can re-architect your system to use the Transit Gateway, which will allow you to route on-premise Internet traffic through your AWS site-to-site VPN:
https://www.reddit.com/r/aws/comments/a67t6g/transit_gateway/
https://docs.aws.amazon.com/vpc/latest/tgw/tgw-vpn-attachments.html

Hope this helps,
-randy

RandyTakeshita
답변함 5년 전

로그인하지 않았습니다. 로그인해야 답변을 게시할 수 있습니다.

좋은 답변은 질문에 명확하게 답하고 건설적인 피드백을 제공하며 질문자의 전문적인 성장을 장려합니다.

질문 답변하기에 대한 가이드라인

관련 콘텐츠