Routing internet traffic via VPC from remote Site-to-Site VPN Network
Is it possible to route internet traffic from a remote on-premise network, via an AWS site-to-site VPN into a VPC, and out through the VPC's Internet Gateway as a means of providing the remote network with Internet access? I'm using a StrongSwan customer gateway on the remote network, and a Transit Gateway into the VPC.
Yes, it is possible. You would need a NAT gateway for the internet egress.
This pattern is described in this link along with routing:
Please note that from TGW perspective, there are only attachments and in this case it does not matter if the spoke attachment is a VPC or a VPN, so you can disregard the fact that the example includes only VPCs.
The flow would look like below, not detail but would give you an idea:
On-premises network <== VPN ==> TGW --> VPC (NAT gateway & IGW) --> Internet
Hope this helps.
Connect remote sites using VPN to access on-prem via existing Direct Connect?Accepted Answerasked 3 months ago
Is it possible to set up a dynamic routing connection to AWS through a site-to-site VPN via a vendor?Accepted Answerasked 2 years ago
No Internet access from instance in VPC to Internetasked 2 years ago
Route all traffic from on-premise network to AWS VPC via IPSec site-to-siteasked 3 years ago
Routing VPC to VPC traffic through an on-prem firewall via Transit GatewayAccepted Answerasked a year ago
EC2 instance doesn't have access to internetasked 2 years ago
Client VPN access to VPCasked a year ago
Connection to external VPN from Windows Server 2016asked 5 months ago
Routing internet traffic via VPC from remote Site-to-Site VPN Networkasked 13 days ago
Middlebox routing - VPN clientsasked 3 months ago