VPC 5

Question 1

VGWs

What do VGWs connect?

Answer 1

Gateway connecting VPC to non-AWS networks

Question 2

VGWs

What actual thing(s) are provisioned when you create a VGW?

Answer 2

Two ENIs, in separate AZs

Question 3

VGWs

How many VPCs can a VGW connect to?

Answer 3

At most 1, but could be zero (like for Cloud Hub in VPN mesh networks)

Question 4

VGWs

How do you move a connection attached to one VGW onto another VPC?

Answer 4

Move the VGW! It maintains its connection while moving!

Question 5

VGWs

What specific things can connect to a VGW?

Answer 5

DX (Private VIF), DX Gateway (many VGWs share a DX), S2S VPN

Question 6

VGWs

Speed cap for a VGW?

Answer 6

1.25 Gbps, even if there are multiple VPNs on the VGW

Question 7

VGWs

What protocol do VGWs speak?

Answer 7

BGP - Border Gateway Protocol

Question 8

VGWs

What is BGP used for, in a nutshell?

Answer 8

Protocol to automaticaly advertise and exchange CIDR prefixes on a WAN

Question 9

VGWs

What networking assignments do VGWs have?

Answer 9

Private ASN (defaults to 64512, the lowest, non-reserved number)

Question 10

VGWs

Are VGWs HA?

Answer 10

Yes. Like IGWs, they are multi-AZ. Each VGW gets 2 public IPs, each in different AZ.

Question 11

VGWs

How do you connect more than one VPN or DX to a single VPC?

Answer 11

Connect everything to a single VGW: it’s a WAN device with an ASN, can handle lots of routing.

Question 12

VGWs

How does VPC routing work with a VGW?

Answer 12

Turn on Route Propagation: VGW adds advertised CIDRs to VPC’s Route Table.

Question 13

VGWs

What is Cloud Hub?

Answer 13

Multiple VPNS on a VGW, but all VPNs can communicate with each other.

Question 14

VGWs

Big requirement for Cloud Hub to work?

Answer 14

Every VPN site has to have a unique ASN since VGWs only talk BGP.