I can't establish an Amazon Virtual Private Cloud (VPC) peering connection between my VPCs.

A VPC peering connection is a networking connection between two VPCs that enables you to route traffic between them using private IP addresses. Instances in either VPC can communicate with each other as if they are within the same network. VPC peering network connectivity failure is usually caused by incorrect or missing route tables or firewall rules.

To resolve connectivity issues across VPC peering connections, follow these steps:

  1. Verify that the VPC peering connection is active.
  2. Check route tables to verify that correct routes exist for peering connections to the IP address range of peered VPCs via the appropriate peering gateway. See Updating Route Tables for Your VPC Peering Connections.
  3. Verify that an ALLOW rule exists for the required traffic in each peered VPC's network access control list (ACL) table. See Recommended Network ACL Rules for Your VPC.
  4. Verify that security group rules allow network traffic between the peered VPCs. See Security Groups for Your VPC.
  5. Ensure that no firewall rules (for example, iptables on Linux or Windows Firewall on Windows) are blocking network traffic between the peered VPCs.
  6. Use network utilities like traceroute (Linux) or tracert (Windows) to ensure that no firewalls are blocking network traffic between the peered VPCs.

VPC, peering connection, firewall, ACL, route tables, tracert, traceroute

Did this page help you? Yes | No

Back to the AWS Support Knowledge Center

Need help? Visit the AWS Support Center.