Ao usar o AWS re:Post, você concorda com os AWS re:Post Termos de uso
AWS re:Postre:Post

How can I access resources in a peered VPC over site to site VPN?

0

Hi, I have a peering connection setup between VPC A and VPC B. And I've also setup a site to site VPN connection to VPC A. How can I access the resources in VPC B through the site to site VPN connection?

Tópicos
Rede e entrega de conteúdo
Tags
Amazon VPCRede e entrega de conteúdoAWS Virtual Private Network (VPN)
Idioma
English
blacktulip11
feita há 2 anos3364 visualizações
1 Resposta
3
Resposta aceita

The short answer is you can't because VPC peering doesn't support transitive routing. The rule for transitive routing is that the traffic must either originate or terminate on a network interface in the VPC. This is why VPC Peering isn't transitive - no network interface is involved, so no route table. Also this is why Transit Gateway is transitive as its attachment points in a VPC use network interfaces.

The usual approach is for your site-to-site VPN to have VIFs to each VPC, or better still, to use Transit Gateway.

Another workaround is using a proxy instance to put a network interface into that VPC you want to transit through. See for example the standard "Transit VPC" Strategy that was more commonly used before Transit Gateway came along.

ESPECIALISTA
skinsman
respondido há 2 anos
profile picture
ESPECIALISTA
Sedat Salman
avaliado há 10 meses
profile pictureAWS
ESPECIALISTA
Brettski-AWS
avaliado há 2 anos

Você não está conectado. Fazer login para postar uma resposta.

Uma boa resposta responde claramente à pergunta, dá feedback construtivo e incentiva o crescimento profissional de quem perguntou.

Diretrizes para responder a perguntas

Conteúdo relevante