TGW Route Table entries
I just saw a session about Advanced Architecture with TGW where we show an example of a TGW with 4 attachments (2 VPCs, 1 DGW, 1 VPN). All attachments are associated with the single TGW route table and propagate their routes to it. Nevertheless the RT only shows 3 entries. The presenter says that’s due to DX is leveraged as primary connection to onPrem here and VPN only as a backup.
In my understanding of path selection behavior DX propagated routes are preferred over VPN propagated routes. So what is the reason that the RT of the TGW does not show all 4 entries?
I’ve built that setup in a lab environment and can confirm that you only see 3 entries there - VPN is missing. Only when you failover to VPN, the DX propagated routes are not shown anymore in the TGW RT.
This is a "normal" behavior that you can also see with physical router. If multiple routes to the same destination are received, they only place the one with the highest priority in their routing table.
On a high level this is due to the decoupling of routing information base (rib) and forwarding information base (fib). The rib takes care of the path selection, e.g. calculates the best path for each known destination (based on different rules and algorithms) and places only this one in the fib, so if there is a packet received that needs to be forwarded the router only needs to look up the next hop in the fib and forwards the packet without the need to calculate the best path every time.
I guess it's just the same for TGW route table, I hope someone here can confirm that :-)
Relevant questions
AWS Transit Gateway isolated routing with Shared Services
Accepted Answerasked 2 years agoTrying to determine if we could even get jumbo frames all the way from an EC2 instance in a VPC connected to a TGW back to a customer CNF via Direct Connect.
Accepted Answerasked 2 years agoAWS Transit Gateway attachment pricing
Accepted Answerasked 2 years agoControling BGP Route Propagation in Transit Gateway
Accepted Answerasked 2 years agoMigrate VPN to Direct Connect+Transit Gateway
Accepted Answerasked 3 years agoTGW Route Table entries
Accepted Answerasked a year agoTransit Gateway - Propagated route limit per Routing Table
Accepted Answerasked 3 years agoMigrate from Private VIF to Transit VIF
Accepted Answerasked 2 years agoAWS Transit Gateway Site-to-Site VPN Dynamic routes limit of 100. Is it per Connection or Aggregate?
Accepted AnswerTransit Gateway: Connect two DCs via VPN with overlapping CIDR range
Accepted Answerasked 2 years ago