AWS IPsec VPN

• VPN connection: A secure connection between your on-premises equipment and your VPCs.
• VPN tunnel(기본 이중화): An encrypted link where data can pass from the customer network to or from AWS. Each VPN connection includes two VPN tunnels which you can simultaneously use for high availability.
• Customer gateway(기본 이중화): An AWS resource which provides information to AWS about your customer gateway device.
• Customer gateway device: A physical device or software application on your side of the Site-to-Site VPN connection.
• Static routes : A customer private ip range.
• 형태 : Tunnel1 - Active/Standby, Tunnel2 - Active/Standby로 on-premise equipment쪽에서는 4개, AWS쪽에서는 2개 설정

 

참고 : https://docs.aws.amazon.com/vpn/latest/s2svpn/VPC_VPN.html