1 Answer
- Newest
- Most votes
- Most comments
1
If you want any or all of the VPCs to communicate with the on-premises networks, create a Site-to-Site VPN that connects to the Transit Gateway rather than to the shared services VPC.
As a general rule, you can't route through a VPC to a VPN tunnel. You could engineer it with some NAT or proxy service (which still might not work depending on the application) so it's far simpler to connect the VPN to the Transit Gateway.
Here's a video to explain: https://youtu.be/X_4ekgRc4C8?t=714
Relevant content
- Accepted Answerasked a year ago
- Accepted Answerasked 6 years ago
- AWS OFFICIALUpdated 2 years ago
- AWS OFFICIALUpdated a year ago
- AWS OFFICIALUpdated 19 days ago
- AWS OFFICIALUpdated 7 months ago