AWS Transit Gateway using multiple site VPN connections to a single VPC
I'm using multiple remote (end-user) sites with private networks across the globe. Each private network might have conflicting CIDR ranges (since they're owned by seperate entities) because they aren’t connected today with each other. Each private network has a public IP bearing firewall. If I want connect them to AWS Transit Gateway using multiple VPCs in AWS, would this architecture cause any scalibility issues (other than the 5,000 limit of transit gateway)? Are there any other design patterns that I can leverage for this scenario?
- 최신
- 최다 투표
- 가장 많은 댓글
If you connect to VPN using the provider's TGW, an IP clash can occur.
If the connections are TCP-based and only initiated in one way, then consider using AWS PrivateLink. With AWS PrivateLink, IP overlap issues are removed, because you can either VPN into a dedicated VPC with AWS PrivateLink, or you can provision your own private link. For more information, see the Private Access to Saas Applications section in this whitepaper, or review this YouTube video.
관련 콘텐츠
AWS 공식업데이트됨 9달 전- AWS 공식업데이트됨 10달 전
