- 최신
- 최다 투표
- 가장 많은 댓글
Yes, you need to have routing between 2 VPCs via peering connection (both ways) to be able to connect things in VPC B via Client VPN. In your linked document about setting up VPC peering, in each scenario the last step is setting up routing. So that instructions should work.
Difference between full and split tunnel modes is explained in https://docs.aws.amazon.com/vpn/latest/clientvpn-admin/split-tunnel-vpn.html
By default, when you have a Client VPN endpoint, all traffic from clients is routed over the Client VPN tunnel. When you enable split-tunnel on the Client VPN endpoint, we push the routes on the Client VPN endpoint route table to the device that is connected to the Client VPN endpoint. This ensures that only traffic with a destination to the network matching a route from the Client VPN endpoint route table is routed over the Client VPN tunnel.
So it is about if all your traffic goes to VPN tunnel or just those packets that are targeted to networks advertises you. Downside of full -mode is you need to provide route to internet and might not be able to reach addresses in your local (think of office environment) network.
Ps. If you think this answering your question, please click "accept" the answer. Thanks in advance!
관련 콘텐츠
AWS 공식업데이트됨 8달 전- AWS 공식업데이트됨 2년 전
- AWS 공식업데이트됨 9달 전
Thank you for your response. If you happen to know, could you please explain the reasons for the different configurations between Split Tunnel mode and Full Tunnel mode?