[On-Premise] Best practice on connecting to on-premise
A customer wants to connect AWS with their on-premise network. Is there a best practice on connecting AWS to on-premise?
I searched Internet but couldn't find any self-help questions or guidance on best practices.
From my research, it seems it's reasonable to enable Site-to-Site VPN (for brevity, S2S) firstly and then enable DirectConnect (DX) when there is need for stable connection. If extra stability is needed, then consider S2S + DX simultaneously. Is this a good approach?
For now, the customer does not have a good estimate on how much the throughput will be and their PoC is just starting. They want to wait and see how it goes.
Could you provide me a good advice?
Thank you!
- 最新
- 投票最多
- 评论最多
You've pretty much answered your own question.
For starters, go with the site-to-site VPN. It's inexpensive; low risk; easy to change; and it doesn't require an estimate of how much traffic will flow through the link. As long as they monitor it and find out how much it's being used it will give them an idea of what to look for (in terms of bandwidth) when they do migrate to Direct Connect.
When using either VPN or Direct Connect, link it to Transit Gateway for the best flexibility (multiple VPCs, firewall integration, etc.).
相关内容
AWS 官方已更新 2 年前
