Day 23: 𝐒𝐢𝐭𝐞-𝐭𝐨-𝐒𝐢𝐭𝐞 𝐕𝐏𝐍/ 𝐕𝐏𝐍 𝐂𝐥𝐨𝐮𝐝𝐇𝐮𝐛/ 𝐃𝐢𝐫𝐞𝐜𝐭 𝐂𝐨𝐧𝐧𝐞𝐜𝐭/ 𝐓𝐫𝐚𝐧𝐬𝐢𝐭 𝐆𝐚𝐭𝐞𝐰𝐚𝐲:

👉 Site-to-Site for connecting corporate server to AWS through public

👉 Direct Connect for connecting corporate server to AWS through private

👉 Cloud Hub for multiple Site-to-Site customer or client network to be connected

👉 Transit Gateway hub-and-spoke model to organize vpc, vpn, direct connect...

👉 VPC –Traffic Mirroring Allows you to capture and inspect network traffic in your VPC

Site-to-Site VPN (Virtual Private Network):

• Purpose: Site-to-Site VPN enables secure communication between a corporate data center and Amazon Web Services (AWS) over the public internet.
• How it works: It establishes a secure and encrypted connection between the on-premises network and the AWS VPC (Virtual Private Cloud).
• Use case: This is typically used when you have resources in your on-premises data center that need to communicate securely with resources in your AWS VPC.

Direct Connect:

• Purpose: Direct Connect is a dedicated network connection from your on-premises data center to AWS, providing a more reliable and consistent connection compared to the public internet.
• How it works: It involves establishing a physical connection between your on-premises router and an AWS Direct Connect location. This connection is then used to access resources in your AWS VPC.
• Use case: Direct Connect is beneficial when you require a dedicated, high-bandwidth connection between your on-premises environment and your AWS infrastructure for sensitive or critical workloads.

CloudHub:

• Purpose: Cloud Hub is a feature that allows multiple Site-to-Site VPN connections to be aggregated in a hub-and-spoke model.
• How it works: In this model, the hub is the central point that connects to multiple spoke networks (remote networks). Each spoke network connects to the hub, enabling communication between the different remote networks.
• Use case: Cloud Hub is useful when you have multiple branch offices or client networks that need to connect to a centralized AWS environment without establishing separate connections for each.

Transit Gateway:

• Purpose: Transit Gateway simplifies network architecture by acting as a hub that connects multiple VPCs, VPNs, and Direct Connects in a hub-and-spoke model.
• How it works: VPCs, VPNs, and Direct Connects connect to the Transit Gateway, allowing for efficient and scalable management of network connectivity.
• Use case: It’s beneficial for organizations with multiple VPCs or complex network architectures, providing a centralized point for managing connectivity between different environments.

VPC Traffic Mirroring:

• Purpose: VPC Traffic Mirroring allows you to capture and inspect network traffic within your VPC.
• How it works: You can configure Traffic Mirroring to copy network traffic from Elastic Network Interfaces (ENIs) of Amazon EC2 instances to a destination for analysis or monitoring.
• Use case: This is useful for troubleshooting, security analysis, and monitoring network activity within your VPC.