Amazon Virtual Private Cloud Connectivity Options
Amazon Virtual Private Cloud Connectivity Options

The AWS Documentation website is getting a new look!
Try it now and let us know what you think. Switch to the new look >>

You can return to the original look by selecting English in the language selector above.

Internal User-to-Amazon VPC Connectivity Options

Internal user access to Amazon VPC resources is typically accomplished either through your Network-to-Amazon VPC Connectivity Options or the use of software remote-access VPNs to connect internal users to VPC resources. With the former option, you can reuse your existing on-premises and remote-access solutions for managing end-user access, while still providing a seamless experience connecting to AWS hosted resources. Describing on-premises internal and remote access solutions in any more detail than what has been described in Network-to-Amazon VPC Connectivity Options is beyond the scope of this document.

With software remote-access VPN, you can leverage low cost, elastic, and secure AWS services to implement remote-access solutions while also providing a seamless experience connecting to AWS hosted resources. In addition, you can combine software remote-access VPNs with your network-to-Amazon VPC options to provide remote access to internal networks if desired. This option is typically preferred by smaller companies with less extensive remote networks or who have not already built and deployed remote access solutions for their employees. For more information, see Software Remote-Access VPN.

The following table outlines the advantages and limitations of these options.

Option Use Case Advantages Limitations
Network-to-Amazon VPC Connectivity Options Virtual extension of your data center into AWS Leverages existing end-user internal and remote-access policies and technologies Requires existing end-user internal and remote access implementations
Software Remote-Access VPN Cloud-based remote-access solution to Amazon VPC and/or internal networks Leverages low-cost, elastic, and secure web services provided by AWS for implementing a remote access solution Could be redundant if internal and remote access implementations already exist