Sumit shows you how to
configure an AWS VPN
using Direct Connect

I want to establish a virtual private network (VPN) connection from my local network to my Amazon Virtual Private Cloud (Amazon VPC) over an AWS Direct Connect (DX) connection.

An AWS VPN over a DX connection to your VPC is likely faster and more secure than a VPN over the internet. An AWS VPN connection over a DX connection provides consistent levels of throughput and encryption algorithms that protect your data.

  1. Create your DX connection.
  2. Create a public virtual interface for your DX connection. For Prefixes you want to advertise, enter your customer gateway device’s public IP address and any network prefixes that you want to advertise.
    Note: Your public virtual interface receives all AWS public IP address prefixes from each AWS Region (except the AWS China Region). These include the public IP addresses of AWS managed VPN endpoints.
  3. Create a new VPN connection. Be sure to use the same customer gateway’s public IP address that you used in the previous step.
    Note: The customer gateway can be configured in Border Gateway Protocol (BGP) with an Autonomous System Number (ASN).
  4. Configure your VPN to connect to your VPC. For sample configurations, see Scenarios and Examples.

Did this page help you? Yes | No

Back to the AWS Support Knowledge Center

Need help? Visit the AWS Support Center

Published: 2016-08-19

Updated: 2018-11-06