By using AWS re:Post, you agree to the AWS re:Post Terms of Use
AWS re:Postre:Post

Site-to-Site VPN

0

Hello, My question might sound odd. I apologize for that in advance.

Does using site-to-site VPN dependent on my data center internet bandwidth limit? Say I have 50 Mbps internet from my ISP, when I set up site-to-site VPN to AWS I get 1.25Gbps bandwidth tunnel. So my question is regardless of your bandwidth allocated to you from ISP you will always get 1.25Gbps (for workloads going through the tunnel) if you setup VPN connection? Who provides you this bandwidth?

Thank you.

Topics
Networking & Content Delivery
Tags
Amazon VPCNetworking & Content DeliveryAWS Virtual Private Network (VPN)
Language
English
Aman
asked a year ago531 views
2 Answers
0
Accepted Answer

One clarification on top of the previous answer as an FYI. One VPN connection would have 2 Tunnels for high availability and if you use BGP based Active-Active tunnels and your CGW device supports ECMP routing then you can effectively get aggregate 2.5 Gbps of bandwidth per VPN when you terminate the VPN connection on Transit Gateway (VGW does not support ECMP)

In your use-case though highly likely that your ISP would throttle your bandwidth at 50 Mbps; if your application needs more bandwidth you will likely need to upgrade your internet circuit.

profile pictureAWS
EXPERT
Tushar_J
answered a year ago
0

Hello,

In the AWS VPN FAQ, you will see: "Each AWS Site-to-Site VPN connection has two tunnels and each tunnel supports a maximum throughput of up to 1.25 Gbps".

  • If, on your side, you are limited to less than 1.25 Gbps (e.g. 50 Mbps), the available bandwidth for the connection will be limited to your value (e.g. 50 Mbps).
  • But, if you have more bandwidth available on your side (e.g. 2 Gbps), the maximum bandwidth will still be limited to 1.25 Gbps.
AWS
Vincent
answered a year ago
  • Aman
    a year ago

    Thank you very much for the response Vincent.

    A follow up question. If we are doing migration of our Web, App and Database servers and may be Archive Tapes to AWS with very limited time (discount Snow devices and direct connect for this example), how can we facilitate the migration in terms of bandwidth? Is there a way? And consider as we are doing the migration we don't want our daily business workload to be affected by the bandwidth bottleneck.

    Thank you!

  • Vincent
    a year ago

    If you want to send data from on-prem to AWS but if you exclude Direct Connect or Snow devices, the remaining option is VPN. You could use multiple VPN tunnels in parallel as explained here (https://youtu.be/qmKkbuS9gRs?t=835) terminating on a Transit Gateway. It is important to understand that a single flow will still be limited to 1.25 Gbps. But if you have multiple flows, they will be able to use the multiple tunnels at the same time (ECMP). On you on-premises side, you need to work with your Internet Service Provider to get a higher bandwidth if you are limited to 50 Mbps. I don't know the quantity of data that you want to upload to AWS but if it's in the order of 50TB or more, it is strongly advised to use Snow devices (there is also a section related to Tape Data Migration in the Snowball FAQs: https://aws.amazon.com/snowball/faqs/).

You are not logged in. Log in to post an answer.

A good answer clearly answers the question and provides constructive feedback and encourages professional growth in the question asker.

Guidelines for Answering Questions

Relevant content