使用 AWS re:Post 即表示您同意 AWS re:Post 使用條款
AWS re:Postre:Post

Routing internet traffic via VPC from remote Site-to-Site VPN Network

0

Is it possible to route internet traffic from a remote on-premise network, via an AWS site-to-site VPN into a VPC, and out through the VPC's Internet Gateway as a means of providing the remote network with Internet access? I'm using a StrongSwan customer gateway on the remote network, and a Transit Gateway into the VPC.

主題
網路與內容交付
標籤
Amazon VPCAWS Transit GatewayAWS Virtual Private Network (VPN)
語言
English
CET
已提問 2 年前檢視次數 1025 次
1 個回答
1

Hello,

Yes, it is possible. You would need a NAT gateway for the internet egress.

This pattern is described in this link along with routing:

https://docs.aws.amazon.com/vpc/latest/tgw/transit-gateway-nat-igw.html

Please note that from TGW perspective, there are only attachments and in this case it does not matter if the spoke attachment is a VPC or a VPN, so you can disregard the fact that the example includes only VPCs.

The flow would look like below, not detail but would give you an idea:

On-premises network <== VPN ==> TGW --> VPC (NAT gateway & IGW) --> Internet

Hope this helps.

profile pictureAWS
專家
Tushar_J
已回答 2 年前

您尚未登入。 登入 去張貼答案。

一個好的回答可以清楚地回答問題並提供建設性的意見回饋,同時有助於提問者的專業成長。

回答問題指南

相關內容