Step-by-Step to configure Site-to-Site VPN in AWS

Step-by-Step to configure Site-to-Site VPN in AWS

In this blog, we will show you the step-by-step to configure a site-to-site VPN in the AWS environment.

 

REQUIREMENT

 

  • AWS Subscription

 

CREATING VPC

 

  • Login into the AWS console using the below URL.

Step-by-Step to configure Site-to-Site VPN in AWS

 

  • After successful login, click on services and select VPC under Networking & Content Delivery.

 

  • Click on Your VPCs.

 

  • To create a new VPC, click on the Create VPC button.

 

  • Provide name tag and IPv4 details and click Create.

 

  • New VPC created successfully. Click on Close button.

 

CREATING SUBNET

 

  • Click on Subnets option under the Virtual Private Cloud section.

Step-by-Step to configure Site-to-Site VPN in AWS

 

  • Click on Create subnet option.

 

  • Provide a name for your subnet and select the VPC from the drop-down list.

 

  • Then add the IPv4 CIDR block and click on the create button.

 

  • Subnet created successfully.

 

ADDING ROUTING TABLES

 

  • Click on Route Tables option.

Step-by-Step to configure Site-to-Site VPN in AWS

 

  • We will have an existing route table for the VPC which we created earlier.

 

  • Provide a relevant name for this routing table.

 

  • To associate the subnet with the routing table, Select the corresponding routing table and click on the Subnet Associations tab.

 

  • Then click on the Edit subnet Associations.

 

  • Select the subnet and click on Save button.

 

  • Now select the Route Propagation Tab.

 

  • Click on Edit Route Propagation button.

 

  • Select the Propagate checkbox and click the save button.

 

INTERNET GATEWAY CREATION

 

  • Select the Internet Gateway link under Virtual Private Cloud section.

Step-by-Step to configure Site-to-Site VPN in AWS

 

  • Click on Create Internet Gateway button.

Step-by-Step to configure Site-to-Site VPN in AWS

 

  • Provide a name and click on Create.

Step-by-Step to configure Site-to-Site VPN in AWS

 

  • Gateway created successfully.

Step-by-Step to configure Site-to-Site VPN in AWS

 

  • Select the newly created Gateway and click on Action – Attach to VPC.

Step-by-Step to configure Site-to-Site VPN in AWS

 

  • Select the VPC from the drop-down list and click on Attach.

Step-by-Step to configure Site-to-Site VPN in AWS

 

  • Now the Gateway status has changed to Attached state.

Step-by-Step to configure Site-to-Site VPN in AWS

 

  • Now we need to add the routing entry for the Internet Gateway connection. To do that, click on Routing tables link and select the entry which we create earlier.

Step-by-Step to configure Site-to-Site VPN in AWS

 

  • Select the Routes tab and click on Edit Routes.

Step-by-Step to configure Site-to-Site VPN in AWS

 

  • Click on Add Route.

Step-by-Step to configure Site-to-Site VPN in AWS

 

  • Type destination as 0.0.0.0/0 and select target as Internet Gateway from the drop-down list. Then click on Save Routes to save the changes.

Step-by-Step to configure Site-to-Site VPN in AWS

Step-by-Step to configure Site-to-Site VPN in AWS

 

  • Routes added successfully.

Step-by-Step to configure Site-to-Site VPN in AWS

 

NAT GATEWAY CREATION

 

  • Click on the NAT Gateways link under Virtual Private Cloud section.

Step-by-Step to configure Site-to-Site VPN in AWS

 

  • To create a new NAT Gateway, Click on the Create NAT Gateway link.

Step-by-Step to configure Site-to-Site VPN in AWS

 

  • Select the relevant subnet from the drop-down list. In this demo, we select AZ-Subnet. Also, click on create a new EIP link to provide a new EIP for this Gateway.

Step-by-Step to configure Site-to-Site VPN in AWS

 

  • Click on Create NAT Gateway button.

Step-by-Step to configure Site-to-Site VPN in AWS

 

  • NAT Gateway created successfully.

Step-by-Step to configure Site-to-Site VPN in AWS

 

  • It will take a few minutes to change the NAT Gateway status to available.

Step-by-Step to configure Site-to-Site VPN in AWS

 

CREATING CUSTOMER GATEWAY

 

  • Click on the Customer Gateway link under Virtual Private Network section.

Step-by-Step to configure Site-to-Site VPN in AWS

 

  • To create a new link, click on the Create Customer Gateway button.

Step-by-Step to configure Site-to-Site VPN in AWS

 

  • Provide a name for your connection and add the public address of your internal network firewall. Then click on create customer gateway button.

Step-by-Step to configure Site-to-Site VPN in AWS

 

  • Customer Gateway created successfully.

Step-by-Step to configure Site-to-Site VPN in AWS

 

  • The new connection will be available in the list.

Step-by-Step to configure Site-to-Site VPN in AWS

 

CREATING NEW VIRTUAL PRIVATE GATEWAY

 

  • Click on the Virtual Private Gateway under VPN section.

Step-by-Step to configure Site-to-Site VPN in AWS

 

  • Click on create virtual private gateway button.

Step-by-Step to configure Site-to-Site VPN in AWS

 

  • Provide a name for the new connection and click on the create button.

Step-by-Step to configure Site-to-Site VPN in AWS

 

  • Now select the connection and click on Actions – Attach VPC.

Step-by-Step to configure Site-to-Site VPN in AWS

 

  • Select the VPC from the drop-down list and click on the Attach button.

Step-by-Step to configure Site-to-Site VPN in AWS

 

  • After a few minutes, VPN status has been changed to the attached state.

Step-by-Step to configure Site-to-Site VPN in AWS

 

CREATING SITE-TO-SITE CONNECTION

 

  • Click on site-to-site connection under VPN Section.

Step-by-Step to configure Site-to-Site VPN in AWS

 

  • Click on Create VPN Connection.

Step-by-Step to configure Site-to-Site VPN in AWS

 

  • Provide a name for your connection and select the corresponding VPN and Customer Gateway from the drop-down list.

Step-by-Step to configure Site-to-Site VPN in AWS

Step-by-Step to configure Site-to-Site VPN in AWS

 

  • Under Routing Options, select the static option and provide your on-premises internal network CIDR block. Then click on the create button.

Step-by-Step to configure Site-to-Site VPN in AWS

 

  • After a few minutes, the connection status will be changed to available.

Step-by-Step to configure Site-to-Site VPN in AWS

 

  • We have completed the site-to-site configuration from AWS end. Now we need to configure our on-premises firewall to communicate with this VPN. To do that, click on the Download Configuration button.

Step-by-Step to configure Site-to-Site VPN in AWS

 

  • The settings may vary based on your internal network configuration. Select the vendor from the drop-down list and download the configuration. Hand-over to your local network administrator to proceed further.

Step-by-Step to configure Site-to-Site VPN in AWS

 

REFERENCE

https://docs.aws.amazon.com/vpn/latest/s2svpn/SetUpVPNConnections.html

 

Thanks for reading this blog. We hope it was useful for you to learn the step-by-step to configure the Site-to-Site VPN in AWS.

Share on facebook
Facebook
Share on twitter
Twitter
Share on pinterest
Pinterest
Share on linkedin
LinkedIn
More Interested Related Posts
zfs pool usage

ZFS Pool and Dataset Usage

ZFS Pool and Dataset Usage   I am back with another blog to provide the useful script to the Freebsd users to determine the zpool

Assistanz Networks

Installing Zabbix Agent in FreeBSD 12.0

Zabbix Agent Installation and Configuration Guide on FreeBSD 12.0   Zabbix is an open-source monitoring software tool for diverse IT components, including networks, servers, virtual

DirectAdmin Server Management Plans

Premium Support

24/7 End User Support from your Helpdesk
$ 99 Monthly / Server
  • Unlimited Support Plan
  • 24/7 Emergency Phone
  • Chat Support for Admin
  • Separate Account Manager
  • NDA & SLA
  • SLA Review Meetings
  • FREE Consultancy Services
  • Simple SignUp Process
  • Instant Account Activation
  •  

Platinum Support

24/7 Proactive Support
$ 49 Monthly / Server
  • Unlimited Support Plan
  • 24/7 Emergency Phone
  • Chat Support for Admin
  • Separate Account Manager
  • Advance Proactive Monitoring
  • Guaranteed SLA
  • SLA Review Meetings
  • 3rd Party Application Support
  • FREE Consultancy Services
  • Server Migration Support
  • Weekly Status Report
  • No End User Support
Popular

Unlimited Support

24/7 Support

$ 30 Monthly / Server
  • Unlimited Support Plan
  • 24/7 Support
  • Basic Monitoring
  • 30 Minutes Response Time
  • 4 Hours Resolution time for the Possible Issues
  • Security and Performance Optimization
  • React to Customers queries
  • Simple SignUp Process
  • Instant Account Activation
  • No Third party application support
  • No Migration and End User Support

Cpanel Server Management Plans

Premium Support

24/7 End User Support from your Helpdesk

$ 99 Monthly / Server
  • 24/7 End User White Label Support
  • Unlimited Number of Tickets
  • Chat Support for Admin
  • Separate Account Manager
  • Guaranteed SLA
  • Weekly Status Reports
  • FREE Consultancy Services
  • Simple SignUp Process
  • Instant Account Activation

Platinum Support

24/7 Proactive Server Management
$ 49 Monthly / Server
  • Unlimited Support Plan
  • 24/7 Emergency Phone
  • Chat Support for Admin
  • Separate Account Manager
  • Advance Proactive Monitoring
  • Guaranteed SLA
  • SLA Review Meetings
  • 3rd Party Application Support
  • FREE Consultancy Services
  • Server Migration Support
  • Weekly Status Report
  • No End User Support
Popular

Unlimited Support

24/7 Server Management

$ 29 Monthly / Server
  • Unlimited Admin Tasks
  • 24/7 Support
  • Basic Monitoring
  • 30 Minutes Response time
  • 4 hours Response time for possible issues
  • Security and Performance Optimization
  • React to Customers queries
  • No Third party application support
  • No Migration and End User Support

Cpanel Server Management Plans

Premium Support

24/7 End User Support from your Helpdesk

$ 99 Monthly / Server
  • 24/7 End User White Label Support
  • Unlimited Number of Tickets
  • Chat Support for Admin
  • Separate Account Manager
  • Guaranteed SLA
  • Weekly Status Reports
  • FREE Consultancy Services
  • Simple SignUp Process
  • Instant Account Activation

Platinum Support

24/7 Proactive Server Management
$ 49 Monthly / Server
  • Unlimited Support Plan
  • 24/7 Emergency Phone
  • Chat Support for Admin
  • Separate Account Manager
  • Advance Proactive Monitoring
  • Guaranteed SLA
  • SLA Review Meetings
  • 3rd Party Application Support
  • FREE Consultancy Services
  • Server Migration Support
  • Weekly Status Report
  • No End User Support
Popular

Unlimited Support

24/7 Server Management

$ 29 Monthly / Server
  • Unlimited Admin Tasks
  • 24/7 Support
  • Basic Monitoring
  • 30 Minutes Response time
  • 4 hours Response time for possible issues
  • Security and Performance Optimization
  • React to Customers queries
  • No Third party application support
  • No Migration and End User Support