Addressable clients for Client VPN


I have a customer that would like to have client devices in a development environment connected using client VPN. They want to have the laptops that are connected be addressable within the VPC or through transit gateway. This is possible with some routing with OpenVPN. Is this possible with Client VPN?

Most of the docs make me think the NAT we use blocks this, but I didn't see anything saying it explicitly wasn't possible.

asked 5 years ago307 views
1 Answer
Accepted Answer

At present CVPN doesn't support route-based mode. Client connected to CVPN get NATed to an IP (CVPN creates ENI within the subnets associated) so the connection initiation is always from Client --> AWS Service.

They can use OpenVPN server (marketplace) appliance and configure it to do route based or use AWS site-to-site VPN.

answered 5 years ago
profile picture
reviewed 2 months ago

You are not logged in. Log in to post an answer.

A good answer clearly answers the question and provides constructive feedback and encourages professional growth in the question asker.

Guidelines for Answering Questions