How to Connect to AWS in a Quick & Inexpensive way Part 2:

-

 



Architecture Benefits

1.     End to End Dynamic Routing.

a.     BGP .

b.     ECMP.

2.     Highly Available.

a.     Dual Firewalls.

b.     Dual IPSec Tunnels.

3.     Scalable.

a.     IPSec Tunnels.

b.     AWS Firewalls.

4.     Secure.

a.     End to End Encrypted Traffic  to AWS (IPSec).

b.     Encrypted Apps (https, SSH, FTPS, etc).

5.     Throughput: 2x 5.6Gbps.

Traffic Flow

1.     On-Prem network.

2.     IPSEC ECMP (Load Balancing) To FWs

3.     GRE Tunnels.

4.     TGW Peer Attachment

5.     VPC (Servers or Endpoints)


Consider Donating to allow me to make more useful videos for you  . When you donate I will provide a discount code in my training store. Go to the discount page here.

 
  1. Go to the Training store for mode in-depth training 
  2. Go to the Training Index to checkout all the courses we have available 
Disclaimer: The information posted here is informational only. Ricardo Gutierrez won’t be held liable for any mishaps, failures or any other negative outcome. It is the reader’s responsibility to make their own decisions and act on them.

Comments

  1. Catherine LoweSeptember 8, 2025 at 5:52 AM

    The traffic flow explanation makes it easy to visualize the end-to-end connection. I’ve personally struggled with secure IPSec tunnels to AWS in the past, so the dual tunnel approach sounds promising. Do you notice any latency impact with GRE tunneling in this architecture?

    ReplyDelete

Post a Comment

Popular posts from this blog

CLOUD MODELS – PROS AND CONS – PRIVATE CLOUD – IAAS

-
Image
  It is up to the IT department and infrastructure to provide scalable, secure, high performing and fast deliverable solutions that will aid the business to be successful. CIOs have to make the critical decision to choose the right infrastructure that will meet the demands of the business and the market. A bad decision can be the demise of a line of business or the business as whole. With all the IT infrastructure options we have at our disposal as of 2021, IT CIOs need to pick what makes sense from a cost, speed to deliver, performance, scalability and security. To name a few. This article will provide information on the different cloud computing models. I will go over the advantages and disadvantages of the four most widely cloud models. Private Cloud (on prem). IaaS (Infrastructure as a Service). PaaS: (Platform as a Service). SaaS: Software as a Service Consider Donating   to allow me to make more useful videos for you  and keep this space (your space) ad free. When y...
Read more

How to Connect to AWS in a Quick & Inexpensive way Part 1: Comparing Connection Types

-
Image
  Why Connect Your DC to AWS? Connect to your Internal Web Apps in AWS. Database Synchronization in AWS. File Transfers to & from AWS. Encrypt Traffic between Onprem & AWS. Temporary (DX) or Backup connection SDWAN Entry Point Key differences between the two vpn connection types S2S IPSEC VPN To TGW 1.25Gbps per IPSec Tunnel. IPSec from On-Prem Terminates on the TGW. Lower Cost & Simpler Architecture. Quick Setup. S2S IPSEC VPN Using GRE Tunnels to the TGW 5.6Gbps per IPSec Tunnel. IPSec from On-Prem Terminates on an NVA. Need 1+ NVA ( PA CloudBlade, PA Firewalls, Cisco CSR). Higher Cost, but Higher Throughput. More Complex Setup, but Quicker than Using Direct Connect. Consider Donating   to allow me to make more useful videos for you  . When you donate I will provide a discount code in my   training store . Go to the discount page here.   Go to the  Training store  for mode in-depth training  Go to the  Training Index  to c...
Read more