Posted On: Sep 21, 2021

Today, AWS Site-to-Site VPN released an updated Download Configuration utility. Customers can now generate configuration templates for compatible Customer Gateway (CGW) devices, simplifying how customers setup VPN connections to AWS.

This update also adds support for downloading configuration templates using a new API and Internet Key Exchange version 2 (IKEv2) parameters for many popular CGW devices; see the Your Customer Gateway page for compatible devices. As IKEv2 supports the latest security algorithms, reduced protocol complexity, and simpler security association (SA) negotiation, Site-to-Site VPN encourages customers to move to IKEv2. 

Customers can create and download configuration templates using either the AWS Management Console, or by using two new APIs — GetVpnConnectionDeviceTypes and GetVpnConnectionDeviceSampleConfiguration. For more information, the Getting Started with VPN user guide and the AWS Site-to-Site VPN API reference may be helpful.

These features are available to customers across all AWS commercial and AWS GovCloud Regions.