By using AWS re:Post, you agree to the Terms of Use

VPN over Direct Connect with Direct Connect Gateway



Can Direct Connect Gateway be used to connect multiple on-premise site to multiple AWS VPC.. In addition, is it possible to setup VPN over Direct Connect to encrypt the traffic from on-premise to AWS.

Is this possible via AWS Direct Connect Gateway?


1 Answer
Accepted Answer

If someone wants to run a VPN appliance (or two - for redundancy) in each VPC then this will work. But it's an expensive way to go (many virtual appliances required; potentially significant network resources on premises also required; probably lots of configuration as VPCs come and go) so I'm not sure I'd recommend it.

Another alternative is to use a Direct Connect Public VIF (which removes the requirement for Direct Connect Gateway) and have a VPN connection to Transit Gateway. This has the advantage of using a managed service at the AWS end but has a disadvantage of limiting flows to 1.5 Gb/s and overall bandwidth to 10 Gb/s.

Is using Direct Connect Gateway a requirement?

In summary: This is probably an area where I would raise a SpecReq to drill down into requirements for encryption and the best way to achieve connectivity - as it's going to be different for every customer.

profile picture
answered 2 years ago

You are not logged in. Log in to post an answer.

A good answer clearly answers the question and provides constructive feedback and encourages professional growth in the question asker.

Guidelines for Answering Questions