Accelerated Site-to-Site VPN

🔄 Traditional Setup: VGW ↔ CGW

  • VGW = Virtual Private Gateway (AWS side).

  • CGW = Customer Gateway (your on-premises side).

  • Standard VPN connection over the public internet.

🔼 Modern Setup: CGW → TGW → VPC(n)

  • Replace VGW with Transit Gateway (TGW).

  • Transit Gateway connects one CGW to multiple VPCs easily.

  • Simplifies management and scales better.

🚀 Enhanced Setup: CGW → Global Accelerator → TGW → VPC(n)

  • Add AWS Global Accelerator between CGW and TGW.

  • Global Accelerator provides optimized routing through the AWS global network.

  • Avoids public internet as much as possible for better performance and reliability.

Accelerated VPN

  • Performance enhancement for VPN traffic.

  • More direct and efficient path between CGW and AWS.

  • Reduces latency, increases speed, and improves reliability.

🧠 Quick Summary

Evolution Stage
Description

VGW ↔ CGW

Traditional VPN using public internet

CGW → TGW → VPC(n)

Modern scalable setup using Transit Gateway

CGW → Global Accelerator → TGW → VPC(n)

High-performance VPN with optimized AWS network routing

Last updated