Technically, this is possible. Customer will have to use Cert Based VPN connection. They cannot use PSK VPNs to achieve this.
- Create CGW with cert based VPN with no CGW IP
- Create BGP Based VPN connection using this new CGW. Don't use Static VPNs (While it will work but not recommended).
- Install Certs and configure VPN on each CGW device
CGW 1 (Cert1) - Tunnel1- |- vpn-<id> CGW 2 (Cert2) - Tunnel2-
I wouldn't recommend this approach if customer isn't technical + Nobody likes Cert VPNs :)
If only one of the tunnels of site to site vpn is down, is communication possible?Accepted Answer
Can I delete one VPN tunnel from site-to-site VPN connection ?asked 7 months ago
How can I make a third-party cloud vpn connection?
Site to Site VPN Issueasked 6 months ago
multiple VPN connections with same VPCAccepted Answerasked 5 years ago
Is it possible to set up a dynamic routing connection to AWS through a site-to-site VPN via a vendor?Accepted Answerasked 2 years ago
Important notice about your AWS Account regarding VPN connectionsasked 3 months ago
Terminate each Site-to-Site VPN Tunnels to Multiple Customer GatewaysAccepted Answerasked 2 years ago
AWS site-to-site VPN tunnelsAccepted Answerasked 3 years ago
Site to Site IPSec VPN to multiple on-prem firewallsasked 8 months ago