Software VPN-to-AWS Site-to-Site VPN

Amazon VPC provides the flexibility to combine the AWS managed VPN and software VPN options to connect multiple VPCs. With this design, you can create secure VPN tunnels between a software VPN appliance and a virtual private gateway, allowing instances in each VPC to seamlessly connect to each other using private IP addresses. This option uses a virtual private gateway in one Amazon VPC and a combination of an internet gateway and software VPN appliance in another Amazon VPC, as shown in the following figure.

Software VPN to AWS Site-to-Site VPN VPC-to-VPC Routing

Note that this design introduces a potential single point of failure into the network design. For additional information, see Appendix A: High-Level HA architecture for software VPN instances.

Additional resources

Warning Javascript is disabled or is unavailable in your browser.

To use the Amazon Web Services Documentation, Javascript must be enabled. Please refer to your browser's Help pages for instructions.

Document Conventions

Software VPN

Software remote access-to-Amazon VPC connectivity options