Typically, connecting to AWS Public-facing services (such as Amazon S3, Glacier, etc.) is something you do over the public Internet. However, you may want the benefits of consistent latency and performance offered by using private connectivity. Although you can access these services over private connectivity from within a AWS VPC using VPC Endpoints or Service Gateways, getting there from your sites via private line usually requires leased lines from your premises to each of your cloud environments and managing the routing yourself. This method means long-term contracts and, depending on your location, may also introduce more latency than it's worth given that all of the data hairpins through your facility on its journey between the clouds.
With Pureport's Multicloud Fabric, you can quickly and easily connect two clouds together via native private connectivity. This Solution Brief focuses on accessing AWS public-facing services from a Customer Site, via Site VPN Connection and AWS Direct Connect using our Multicloud Fabric as the connection broker.
In North America, AWS allows you to privately access their publicly available services via any Direct Connect location within North America. For example, you can access an S3 bucket located in the US West (Oregon) region with a Direct Connect connection located in the US East (N. Virginia) region. Traffic traverses the Amazon's private network between the Direct Connect location and the service endpoint location.
Before you begin, you will need:
- An AWS account with permissions to create Public Interfaces
- A VPN device capable of IPSec Routed Tunnels with BGP
- A basic understanding of how the Pureport platform connects clouds and sites
Putting it together
The steps required to complete connectivity between an Azure vNet and Google public services are outlined below:
- Create a Pureport Network (see the Creating a Network article).
- Provision a Route-Based BGP VPN Connection.
- Connect your Pureport Network to AWS.
- Provision a Public Virtual Interface in your AWS account.
Supported AWS Public services
Pureport provides support for privately connecting to the following AWS Public Services:
- Amazon S3