By using AWS re:Post, you agree to the AWS re:Post Terms of Use
AWS re:Postre:Post

On-premise datacentre accessing the internet via Direct Connect

0

Customer who has a datacentre with no access to internet but is connected to AWS via direct connect. Is it possible to use AWS managed network services to reach the internet? The customer would prefer to consume services provided and managed by AWS instead of looking for third party NAT devices/systems.

If this is possible, is it cost effective / best practice?

Topics
Networking & Content Delivery
Tags
AWS Direct ConnectNetworking & Content Delivery
Language
English
profile pictureAWS
Mark Sailes
asked 5 years ago1039 views
1 Answer
0
Accepted Answer

From a pure routing perspective. Another possible option is to use TransitGateway and EgressVPC attached with the Transit Gateway. Advertise prefix 0.0.0.0/0 from TGW side to on-premises. The on-premises router then sends default traffic to TGW. TGW then sends this traffic out to the Internet via Egress VPC. This can be done by adding a static route 0.0.0.0/0 with a target to EgressVPC attachment. Egress VPC can have a NAT Gateway or other third party filtering device to NAT outgoing traffic.

AWS
mehrajk
answered 5 years ago
profile picture
EXPERT
Giovanni Lauria
reviewed a month ago

You are not logged in. Log in to post an answer.

A good answer clearly answers the question and provides constructive feedback and encourages professional growth in the question asker.

Guidelines for Answering Questions

Relevant content