Network - VPC - Network to VPN Connectivity Flashcards
What is a AWS Managed VPN?
AWS managed IPSec VPN connection over your existing internet
When should AWS Managed VPN be used?
quick and simple way to establish secure tunnel connection to a VPC.
What does AWS Managed VPN support?
static and BGP peering and routing
What are the limitation of AWS Managed VPN?
dependent upon your internet connection
How is AWS Managed VPN setup?
- choose appliance to act as customer gateway(router)
- create VPN connection in AWS and download cfg file for your customer gateway
- cfg your customer gateway using the info from the cfg file
- generate traffic to force tunnel
- setup routing if needed
What is AWS Direct Connect?
dedicated network connection over private lines into the AWS backbone
When should AWS Direct Connect be used?
when the customer requires a large pipe into AWS and lots of resources
What are the pros and cons of AWS Direct connect?
more predictable performance; cost reduction; up to 10 GBps connections, support BGP/May require additional telecom and hosting provider relationships and new circuits
How is AWS Direct Connect established?
working with your existing provider, creating virtual interfaces to connect to VPCs or other AWS services
What is Direct Connect Plus?
IPsec VPN connection over private lines; when you want to add encryption over Direct Connect; more secure than Direct Connect alone
What are the pros and cons of Direct Connect Plus?
more secure, but more complex
What is the AWS VPN cloudhub?
connects locations in a hub and spoke using AWS’s virtual private gateway
When would you use the AWS VPN cloudhub?
to link remote offices for backup or primary WAR to access AWS resources
What are the pros and cons of using AWS VPN cloudhub?
reuses existing internet connection; no redundancy
How is the AWS VPN cloudhub established?
assign multiple customer gateways to a virtual private gateway, each with their own BGP ASN
