What is Network Manager? - Amazon VPC

What is Network Manager?

Network Manager enables you to centrally manage your AWS Cloud WAN core network and your AWS Transit Gateway network across AWS accounts, Regions, and on-premises locations. For information on managing an AWS Cloud WAN core network, see the AWS Cloud WAN User Guide.

Network Manager concepts

The following are the key concepts when using Network Manager to manage transit gateways.

  • Global network — A single, private network that acts as the high-level container for your network objects. A global network can contain both AWS Transit Gateways and other AWS Cloud WAN core networks. You can see these on the Network Manager console.

  • Device — Represents a physical or a virtual appliance in an on-premises network, data center, AWS Cloud, or other cloud providers.

  • Connection — Represents connectivity between two devices. The connection can be between a physical or virtual appliance and a third-party virtual appliance inside a VPC, or it can be between physical appliances in an on-premises network.

  • Link — Represents a single internet connection from a site.

  • Site — Represents a physical on-premises location. It could be a branch, office, store, campus, or a data center.

Home Region

The home Region is the AWS Region where data related to your use of your AWS Network Manager global network is aggregated and stored. Network Manager aggregates and stores this information in the home Region to provide you with a central dashboard with visualized insights into your global network. Currently, Network Manager only supports US West (Oregon) as the home Region.

  • Network Manager aggregates and stores regional usage data associated with the transit gateways specified from the AWS Regions you're using to the US West (Oregon) Region.

  • Network Manager aggregates and stores regional usage data associated with the transit gateways from the AWS GovCloud (US) Regions to the AWS GovCloud (US-West) Region.

  • Once established, you can't change the home Region.

We aggregate and store this regional usage data from the AWS Regions you are using to US West (Oregon) using Amazon Simple Queue Service (SQS) and Amazon Simple Storage Service (S3). This data includes but is not limited to:

  • Topology data for registered transit gateways

  • Event data for transit gateways and VPNs

  • Transit gateway IDs for registering transit gateways into a global network

  • (Optional) Location data related to your device and site registrations

  • (Optional) Provider and link data related to your link registrations

  • (Optional) IP address and CIDR ranges used in transit gateway Connect peers

All movement and data aggregation occurs over a secure and encrypted channel and stored with encryption at rest. We use a third-party, Mapbox, to create maps of your global network. We send the resource identifiers collected during device and site registrations to Mapbox to generate those maps.

How to get started with Network Manager

Use the following resources to help you use Network Manager.


There are no additional fees for using Network Manager to manage transit gateways networks. You are charged the standard fees for the network resources that you manage in your global network (such as transit gateways). For more information about pricing, see AWS Transit Gateway pricing.