By using AWS re:Post, you agree to the AWS re:Post Terms of Use
AWS re:Postre:Post

Transit Gateway attachmet

0

Hello,

Is there a way to filter direct connect and VPN traffic with AWS firewall without using transit gateway?

Thanks

  • Sanjeev Gopal
    2 years ago

    Are you looking to filter traffic between the VPN and DX, or between the VPC/Internet and the VPN/DX?

Topics
Security, Identity, & ComplianceNetworking & Content Delivery
Tags
AWS Network FirewallAWS Transit Gateway
Language
English
rePost-User-0382502
asked 2 years ago330 views
1 Answer
0

For the North-South inspection TGW is mandatory, see below section from this blog

North-South: Centralized on-premises egress & ingress via Transit Gateway and Transit VIF/Direct Connect gateway/AWS Site-to-Site VPN

Let’s expand the previous model and add inspection for North-South traffic between AWS VPC and on-premises via AWS Transit Gateway. AWS Transit Gateway can connect to your on-premises via AWS Direct Connect or via AWS Site-to-Site VPN.

A key requirement for this model is to connect AWS Direct Connect using Transit VIF to AWS Transit Gateway. In case of VPN to on-premises, AWS Site-to-Site VPN can also be used and must be established to AWS Transit Gateway as per Figure 9.

Enter image description here

profile pictureAWS
EXPERT
Tushar_J
answered 2 years ago

You are not logged in. Log in to post an answer.

A good answer clearly answers the question and provides constructive feedback and encourages professional growth in the question asker.

Guidelines for Answering Questions

Relevant content