{"id":26653,"date":"2023-12-06T12:36:00","date_gmt":"2023-12-06T12:36:00","guid":{"rendered":"https:\/\/cloud-cod.com\/?p=26653"},"modified":"2024-01-15T08:47:14","modified_gmt":"2024-01-15T08:47:14","slug":"connecting-3rd-party-aws-vpcs-with-aviatrix-environment","status":"publish","type":"post","link":"https:\/\/cloud-cod.com\/index.php\/2023\/12\/06\/connecting-3rd-party-aws-vpcs-with-aviatrix-environment\/","title":{"rendered":"Connecting 3rd party AWS VPCs with Aviatrix environment"},"content":{"rendered":"\t\t<div data-elementor-type=\"wp-post\" data-elementor-id=\"26653\" class=\"elementor elementor-26653\" data-elementor-post-type=\"post\">\n\t\t\t\t\t\t\t\t\t<section class=\"elementor-section elementor-top-section elementor-element elementor-element-eae7a47 elementor-section-boxed elementor-section-height-default elementor-section-height-default\" data-id=\"eae7a47\" data-element_type=\"section\">\n\t\t\t\t\t\t<div class=\"elementor-container elementor-column-gap-default\">\n\t\t\t\t\t<div class=\"elementor-column elementor-col-100 elementor-top-column elementor-element elementor-element-04649ef\" data-id=\"04649ef\" data-element_type=\"column\">\n\t\t\t<div class=\"elementor-widget-wrap elementor-element-populated\">\n\t\t\t\t\t\t\t\t<div class=\"elementor-element elementor-element-80ea13a elementor-toc--minimized-on-tablet elementor-widget elementor-widget-table-of-contents\" data-id=\"80ea13a\" data-element_type=\"widget\" data-settings=\"{&quot;exclude_headings_by_selector&quot;:[],&quot;marker_view&quot;:&quot;bullets&quot;,&quot;headings_by_tags&quot;:[&quot;h2&quot;,&quot;h3&quot;,&quot;h4&quot;,&quot;h5&quot;,&quot;h6&quot;],&quot;icon&quot;:{&quot;value&quot;:&quot;fas fa-circle&quot;,&quot;library&quot;:&quot;fa-solid&quot;},&quot;minimize_box&quot;:&quot;yes&quot;,&quot;minimized_on&quot;:&quot;tablet&quot;,&quot;hierarchical_view&quot;:&quot;yes&quot;,&quot;min_height&quot;:{&quot;unit&quot;:&quot;px&quot;,&quot;size&quot;:&quot;&quot;,&quot;sizes&quot;:[]},&quot;min_height_tablet&quot;:{&quot;unit&quot;:&quot;px&quot;,&quot;size&quot;:&quot;&quot;,&quot;sizes&quot;:[]},&quot;min_height_mobile&quot;:{&quot;unit&quot;:&quot;px&quot;,&quot;size&quot;:&quot;&quot;,&quot;sizes&quot;:[]}}\" data-widget_type=\"table-of-contents.default\">\n\t\t\t\t<div class=\"elementor-widget-container\">\n\t\t\t<style>\/*! elementor-pro - v3.17.0 - 01-11-2023 *\/\n.elementor-widget-table-of-contents .elementor-toc__header-title{color:var(--header-color)}.elementor-widget-table-of-contents.elementor-toc--collapsed .elementor-toc__toggle-button--collapse,.elementor-widget-table-of-contents:not(.elementor-toc--collapsed) .elementor-toc__toggle-button--expand{display:none}.elementor-widget-table-of-contents .elementor-widget-container{min-height:var(--box-min-height);border:var(--box-border-width,1px) solid var(--box-border-color,#9da5ae);border-radius:var(--box-border-radius,3px);background-color:var(--box-background-color);transition:min-height .4s;overflow:hidden}.elementor-toc__header{display:flex;align-items:center;justify-content:space-between;padding:var(--box-padding,20px);background-color:var(--header-background-color);border-bottom:var(--separator-width,1px) solid var(--box-border-color,#9da5ae)}.elementor-toc__header-title{font-size:18px;margin:0;color:var(--header-color)}.elementor-toc__toggle-button{cursor:pointer;display:inline-flex}.elementor-toc__toggle-button i{color:var(--toggle-button-color)}.elementor-toc__toggle-button svg{height:1em;width:1em;fill:var(--toggle-button-color)}.elementor-toc__spinner-container{text-align:center}.elementor-toc__spinner{font-size:2em}.elementor-toc__spinner.e-font-icon-svg{height:1em;width:1em}.elementor-toc__body{padding:var(--box-padding,20px);max-height:var(--toc-body-max-height);overflow-y:auto}.elementor-toc__body::-webkit-scrollbar{width:7px}.elementor-toc__body::-webkit-scrollbar-thumb{background-color:#babfc5;border-radius:10px}.elementor-toc__list-wrapper{list-style:none;padding:0}.elementor-toc__list-item{margin-bottom:.5em}.elementor-toc__list-item.elementor-item-active{font-weight:700}.elementor-toc__list-item .elementor-toc__list-wrapper{margin-top:.5em;margin-left:var(--nested-list-indent,1em)}.elementor-toc__list-item-text:hover{color:var(--item-text-hover-color);-webkit-text-decoration:var(--item-text-hover-decoration);text-decoration:var(--item-text-hover-decoration)}.elementor-toc__list-item-text.elementor-item-active{color:var(--item-text-active-color);-webkit-text-decoration:var(--item-text-active-decoration);text-decoration:var(--item-text-active-decoration)}.elementor-toc__list-item-text-wrapper{display:flex;align-items:center}.elementor-toc__list-item-text-wrapper:before,.elementor-toc__list-item-text-wrapper i{margin-right:8px;color:var(--marker-color)}.elementor-toc__list-item-text-wrapper svg{margin-right:8px;fill:var(--marker-color);height:var(--marker-size,.5em);width:var(--marker-size,.5em)}.elementor-toc__list-item-text-wrapper i{font-size:var(--marker-size,.5em)}.elementor-toc__list-item-text-wrapper:before{font-size:var(--marker-size,1em)}.elementor-toc--content-ellipsis .elementor-toc__list-item-text{white-space:nowrap;overflow:hidden;text-overflow:ellipsis}.elementor-toc__list-items--collapsible>.elementor-toc__list-wrapper>.elementor-toc__list-item>.elementor-toc__list-wrapper{display:none}.elementor-toc__heading-anchor{position:absolute}.elementor-toc__body .elementor-toc__list-item-text{color:var(--item-text-color);-webkit-text-decoration:var(--item-text-decoration);text-decoration:var(--item-text-decoration)}.elementor-toc__body .elementor-toc__list-item-text:hover{color:var(--item-text-hover-color);-webkit-text-decoration:var(--item-text-hover-decoration);text-decoration:var(--item-text-hover-decoration)}.elementor-toc__body .elementor-toc__list-item-text.elementor-item-active{color:var(--item-text-active-color);-webkit-text-decoration:var(--item-text-active-decoration);text-decoration:var(--item-text-active-decoration)}ol.elementor-toc__list-wrapper{counter-reset:item}ol.elementor-toc__list-wrapper .elementor-toc__list-item{counter-increment:item}ol.elementor-toc__list-wrapper .elementor-toc__list-item-text-wrapper:before{content:counters(item,\".\") \". \"}<\/style>\t\t<div class=\"elementor-toc__header\">\n\t\t\t<h4 class=\"elementor-toc__header-title\">\n\t\t\t\tSITEMAP\t\t\t<\/h4>\n\t\t\t\t\t\t\t<div class=\"elementor-toc__toggle-button elementor-toc__toggle-button--expand\" role=\"button\" tabindex=\"0\" aria-controls=\"elementor-toc__80ea13a\" aria-expanded=\"true\" aria-label=\"Open table of contents\"><i aria-hidden=\"true\" class=\"fas fa-chevron-down\"><\/i><\/div>\n\t\t\t\t<div class=\"elementor-toc__toggle-button elementor-toc__toggle-button--collapse\" role=\"button\" tabindex=\"0\" aria-controls=\"elementor-toc__80ea13a\" aria-expanded=\"true\" aria-label=\"Close table of contents\"><i aria-hidden=\"true\" class=\"fas fa-chevron-up\"><\/i><\/div>\n\t\t\t\t\t<\/div>\n\t\t<div id=\"elementor-toc__80ea13a\" class=\"elementor-toc__body\">\n\t\t\t<div class=\"elementor-toc__spinner-container\">\n\t\t\t\t<i class=\"elementor-toc__spinner eicon-animation-spin eicon-loading\" aria-hidden=\"true\"><\/i>\t\t\t<\/div>\n\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t<div class=\"elementor-element elementor-element-6710b0e elementor-widget elementor-widget-heading\" data-id=\"6710b0e\" data-element_type=\"widget\" data-widget_type=\"heading.default\">\n\t\t\t\t<div class=\"elementor-widget-container\">\n\t\t\t<style>\/*! elementor - v3.17.0 - 01-11-2023 *\/\n.elementor-heading-title{padding:0;margin:0;line-height:1}.elementor-widget-heading .elementor-heading-title[class*=elementor-size-]>a{color:inherit;font-size:inherit;line-height:inherit}.elementor-widget-heading .elementor-heading-title.elementor-size-small{font-size:15px}.elementor-widget-heading .elementor-heading-title.elementor-size-medium{font-size:19px}.elementor-widget-heading .elementor-heading-title.elementor-size-large{font-size:29px}.elementor-widget-heading .elementor-heading-title.elementor-size-xl{font-size:39px}.elementor-widget-heading .elementor-heading-title.elementor-size-xxl{font-size:59px}<\/style><h2 class=\"elementor-heading-title elementor-size-default\">Introduction<\/h2>\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t<div class=\"elementor-element elementor-element-4e13a5e elementor-widget elementor-widget-text-editor\" data-id=\"4e13a5e\" data-element_type=\"widget\" data-widget_type=\"text-editor.default\">\n\t\t\t\t<div class=\"elementor-widget-container\">\n\t\t\t<style>\/*! elementor - v3.17.0 - 01-11-2023 *\/\n.elementor-widget-text-editor.elementor-drop-cap-view-stacked .elementor-drop-cap{background-color:#69727d;color:#fff}.elementor-widget-text-editor.elementor-drop-cap-view-framed .elementor-drop-cap{color:#69727d;border:3px solid;background-color:transparent}.elementor-widget-text-editor:not(.elementor-drop-cap-view-default) .elementor-drop-cap{margin-top:8px}.elementor-widget-text-editor:not(.elementor-drop-cap-view-default) .elementor-drop-cap-letter{width:1em;height:1em}.elementor-widget-text-editor .elementor-drop-cap{float:left;text-align:center;line-height:1;font-size:50px}.elementor-widget-text-editor .elementor-drop-cap-letter{display:inline-block}<\/style>\t\t\t\t<p>Some time ago my colleague Przemek Konitz (<a href=\"https:\/\/conix.pl\/?p=1784\">https:\/\/conix.pl\/?p=1784<\/a>) created a blog article about how to connect 3rd party Azure VNETs with the Aviatrix environment. Recently, I have been asked a similar question but for AWS. The question is: How to connect 3rd party AWS VPC with the existing Aviatrix environment?<\/p>\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t<div class=\"elementor-element elementor-element-ea670f4 elementor-widget elementor-widget-text-editor\" data-id=\"ea670f4\" data-element_type=\"widget\" data-widget_type=\"text-editor.default\">\n\t\t\t\t<div class=\"elementor-widget-container\">\n\t\t\t\t\t\t\t<p>It is not possible to just mirror the solution that is used in Azure (the one with Azure VNET Peering between 3rd party VNET and the Aviatrix environment).<\/p><p>The reason is that AWS VPC Peering has limitations that make such a design not possible:<\/p><ul><li>AWS will drop the packets not destined for Peered VPC<\/li><li>AWS route next-hop cannot be ENI\/instance in another VPC<\/li><\/ul>\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t<div class=\"elementor-element elementor-element-734e411 elementor-widget elementor-widget-heading\" data-id=\"734e411\" data-element_type=\"widget\" data-widget_type=\"heading.default\">\n\t\t\t\t<div class=\"elementor-widget-container\">\n\t\t\t<h2 class=\"elementor-heading-title elementor-size-default\">Solution #1 - BGPoIPSEC VPN between 3rd party AWS VPG and Aviatrix Gateway<\/h2>\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t<div class=\"elementor-element elementor-element-9298d02 elementor-widget elementor-widget-image\" data-id=\"9298d02\" data-element_type=\"widget\" data-widget_type=\"image.default\">\n\t\t\t\t<div class=\"elementor-widget-container\">\n\t\t\t<style>\/*! elementor - v3.17.0 - 01-11-2023 *\/\n.elementor-widget-image{text-align:center}.elementor-widget-image a{display:inline-block}.elementor-widget-image a img[src$=\".svg\"]{width:48px}.elementor-widget-image img{vertical-align:middle;display:inline-block}<\/style>\t\t\t\t\t\t\t\t\t\t\t\t\t<a href=\"http:\/\/cloud-cod.com\/wp-content\/uploads\/2023\/12\/opt1_AWS_VPG.png\" data-elementor-open-lightbox=\"yes\" data-elementor-lightbox-title=\"opt1_AWS_VPG\" data-elementor-lightbox-description=\"AWS VPG\" data-e-action-hash=\"#elementor-action%3Aaction%3Dlightbox%26settings%3DeyJpZCI6MjY2ODcsInVybCI6Imh0dHBzOlwvXC9jbG91ZC1jb2QuY29tXC93cC1jb250ZW50XC91cGxvYWRzXC8yMDIzXC8xMlwvb3B0MV9BV1NfVlBHLnBuZyJ9\">\n\t\t\t\t\t\t\t<img loading=\"lazy\" decoding=\"async\" width=\"768\" height=\"530\" src=\"https:\/\/cloud-cod.com\/wp-content\/uploads\/2023\/12\/opt1_AWS_VPG-768x530.png\" class=\"attachment-medium_large size-medium_large wp-image-26687\" alt=\"AWS VPG\" srcset=\"https:\/\/cloud-cod.com\/wp-content\/uploads\/2023\/12\/opt1_AWS_VPG-768x530.png 768w, https:\/\/cloud-cod.com\/wp-content\/uploads\/2023\/12\/opt1_AWS_VPG-300x207.png 300w, https:\/\/cloud-cod.com\/wp-content\/uploads\/2023\/12\/opt1_AWS_VPG-1024x706.png 1024w, https:\/\/cloud-cod.com\/wp-content\/uploads\/2023\/12\/opt1_AWS_VPG-1536x1059.png 1536w, https:\/\/cloud-cod.com\/wp-content\/uploads\/2023\/12\/opt1_AWS_VPG.png 1543w\" sizes=\"auto, (max-width: 768px) 100vw, 768px\" \/>\t\t\t\t\t\t\t\t<\/a>\n\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t<div class=\"elementor-element elementor-element-60aaeeb elementor-widget elementor-widget-text-editor\" data-id=\"60aaeeb\" data-element_type=\"widget\" data-widget_type=\"text-editor.default\">\n\t\t\t\t<div class=\"elementor-widget-container\">\n\t\t\t\t\t\t\t<p>The BGPoIPSEC tunnel(s) can be built between AWS VPG (deployed in 3rd party&#8217;s Account) and Aviatrix Gateway (could be either Transit GW or Spoke GW).<\/p><p>Advantages:<\/p><ul><li>Access to 3rd party Account is not required<\/li><\/ul><p>Things to consider:<\/p><ul><li>3rd party must deploy a Virtual Private Gateway (VPG) &#8211; additional cost (hourly VPN connection price [3rd party Account] + data transfer charges [3rd party Account])<ul><li><a style=\"font-family: var( --e-global-typography-text-font-family ), Sans-serif; font-weight: var( --e-global-typography-text-font-weight ); background-color: #ffffff; font-size: 0.875rem;\" href=\"https:\/\/aws.amazon.com\/vpn\/pricing\/\">https:\/\/aws.amazon.com\/vpn\/pricing\/<\/a><span style=\"color: var( --e-global-color-text ); font-family: var( --e-global-typography-text-font-family ), Sans-serif; font-weight: var( --e-global-typography-text-font-weight ); font-size: 0.875rem;\"> (VPG cost)<\/span><\/li><li><a href=\"https:\/\/aws.amazon.com\/ec2\/pricing\/on-demand\/\">https:\/\/aws.amazon.com\/ec2\/pricing\/on-demand\/<\/a> (data transfer cost)<\/li><\/ul><\/li><\/ul><ul><li>Limited throughput because of IPSEC<\/li><\/ul>\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t<div class=\"elementor-element elementor-element-7626f57 elementor-widget elementor-widget-heading\" data-id=\"7626f57\" data-element_type=\"widget\" data-widget_type=\"heading.default\">\n\t\t\t\t<div class=\"elementor-widget-container\">\n\t\t\t<h2 class=\"elementor-heading-title elementor-size-default\">Solution #2 - BGPoGRE between AWS TGW and Aviatrix Gateway<\/h2>\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t<div class=\"elementor-element elementor-element-43444e3 elementor-widget elementor-widget-image\" data-id=\"43444e3\" data-element_type=\"widget\" data-widget_type=\"image.default\">\n\t\t\t\t<div class=\"elementor-widget-container\">\n\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t<a href=\"http:\/\/cloud-cod.com\/wp-content\/uploads\/2023\/12\/opt2_BGPoGRE-1.png\" data-elementor-open-lightbox=\"yes\" data-elementor-lightbox-title=\"opt2_BGPoGRE\" data-e-action-hash=\"#elementor-action%3Aaction%3Dlightbox%26settings%3DeyJpZCI6MjY3MDAsInVybCI6Imh0dHBzOlwvXC9jbG91ZC1jb2QuY29tXC93cC1jb250ZW50XC91cGxvYWRzXC8yMDIzXC8xMlwvb3B0Ml9CR1BvR1JFLTEucG5nIn0%3D\">\n\t\t\t\t\t\t\t<img loading=\"lazy\" decoding=\"async\" width=\"768\" height=\"392\" src=\"https:\/\/cloud-cod.com\/wp-content\/uploads\/2023\/12\/opt2_BGPoGRE-1-768x392.png\" class=\"attachment-medium_large size-medium_large wp-image-26700\" alt=\"\" srcset=\"https:\/\/cloud-cod.com\/wp-content\/uploads\/2023\/12\/opt2_BGPoGRE-1-768x392.png 768w, https:\/\/cloud-cod.com\/wp-content\/uploads\/2023\/12\/opt2_BGPoGRE-1-300x153.png 300w, https:\/\/cloud-cod.com\/wp-content\/uploads\/2023\/12\/opt2_BGPoGRE-1-1024x523.png 1024w, https:\/\/cloud-cod.com\/wp-content\/uploads\/2023\/12\/opt2_BGPoGRE-1-1536x784.png 1536w, https:\/\/cloud-cod.com\/wp-content\/uploads\/2023\/12\/opt2_BGPoGRE-1-2048x1046.png 2048w\" sizes=\"auto, (max-width: 768px) 100vw, 768px\" \/>\t\t\t\t\t\t\t\t<\/a>\n\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t<div class=\"elementor-element elementor-element-173ead6 elementor-widget elementor-widget-text-editor\" data-id=\"173ead6\" data-element_type=\"widget\" data-widget_type=\"text-editor.default\">\n\t\t\t\t<div class=\"elementor-widget-container\">\n\t\t\t\t\t\t\t<p>This solution leverages AWS TGW deployed in our Account.<br \/>Main characteristics:<\/p><ul><li>A CONNECT Attachment will be built on top of the underlay VPC Attachment (quite a complicated design).<\/li><li>BGP will be built on top of the GRE.<\/li><li>Aviatrix TGW-O is not used.<\/li><\/ul><p>Advantages:<\/p><ul><li>Throughput is not limited. AWS underlay will be used<\/li><li>BGP connection will be visible in Aviatrix CoPilot<\/li><li>Access to 3rd party Account is not required<\/li><\/ul><p>Things to consider:<\/p><ul><li>AWS TGW will be used \u2013 additional cost<ul><li>TGW VPC attachment per hour [VPC owners \u2013 3rd party Account + and our Account] + data transfer charges [TGW owner &#8211; our Account] + TGW Connect attachment [TGW owner \u2013 our Account])<\/li><li><a href=\"https:\/\/aws.amazon.com\/transit-gateway\/pricing\/\">https:\/\/aws.amazon.com\/transit-gateway\/pricing\/<\/a><\/li><\/ul><\/li><\/ul><ul><li>AWS TGW will not be visible in Aviatrix CoPilot<\/li><li>AWS TGW is not orchestrated by Aviatrix Controller<\/li><li>AWS TGW Routing must be created \u201cmanually\u201d (AWS Console or TF Code)<\/li><li>AWS TGW Attachment will be shared (using AWS RAM service) with 3rd party Account (no additional cost)<\/li><li>CIDR and ASN must be assigned to AWS TGW<\/li><\/ul><p>Note: there is also another \u201cversion\u201d of this integration.<\/p><p>The BGPoIPSEC could be used. There will be no VPC-Attachment and Connect Attachment with Aviatrix Transit in such a case.<\/p><p>Instead, the TGW VPN Attachment could be used to create BGPoISPEC tunnels.<\/p>\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t<div class=\"elementor-element elementor-element-02d2840 elementor-widget elementor-widget-heading\" data-id=\"02d2840\" data-element_type=\"widget\" data-widget_type=\"heading.default\">\n\t\t\t\t<div class=\"elementor-widget-container\">\n\t\t\t<h2 class=\"elementor-heading-title elementor-size-default\">Solution #3 - AWS TGW VPC Attachment with 3rd party VPC<\/h2>\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t<div class=\"elementor-element elementor-element-e9fa21e elementor-widget elementor-widget-image\" data-id=\"e9fa21e\" data-element_type=\"widget\" data-widget_type=\"image.default\">\n\t\t\t\t<div class=\"elementor-widget-container\">\n\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t<a href=\"http:\/\/cloud-cod.com\/wp-content\/uploads\/2023\/12\/opt3_VPCAttachment.png\" data-elementor-open-lightbox=\"yes\" data-elementor-lightbox-title=\"opt3_VPCAttachment\" data-elementor-lightbox-description=\"AWS TGW VPC Attachment\" data-e-action-hash=\"#elementor-action%3Aaction%3Dlightbox%26settings%3DeyJpZCI6MjY2OTUsInVybCI6Imh0dHBzOlwvXC9jbG91ZC1jb2QuY29tXC93cC1jb250ZW50XC91cGxvYWRzXC8yMDIzXC8xMlwvb3B0M19WUENBdHRhY2htZW50LnBuZyJ9\">\n\t\t\t\t\t\t\t<img loading=\"lazy\" decoding=\"async\" width=\"768\" height=\"432\" src=\"https:\/\/cloud-cod.com\/wp-content\/uploads\/2023\/12\/opt3_VPCAttachment-768x432.png\" class=\"attachment-medium_large size-medium_large wp-image-26695\" alt=\"AWS TGW VPC Attachment\" srcset=\"https:\/\/cloud-cod.com\/wp-content\/uploads\/2023\/12\/opt3_VPCAttachment-768x432.png 768w, https:\/\/cloud-cod.com\/wp-content\/uploads\/2023\/12\/opt3_VPCAttachment-300x169.png 300w, https:\/\/cloud-cod.com\/wp-content\/uploads\/2023\/12\/opt3_VPCAttachment-1024x575.png 1024w, https:\/\/cloud-cod.com\/wp-content\/uploads\/2023\/12\/opt3_VPCAttachment-1536x863.png 1536w, https:\/\/cloud-cod.com\/wp-content\/uploads\/2023\/12\/opt3_VPCAttachment.png 1899w\" sizes=\"auto, (max-width: 768px) 100vw, 768px\" \/>\t\t\t\t\t\t\t\t<\/a>\n\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t<div class=\"elementor-element elementor-element-4a6bb19 elementor-widget elementor-widget-text-editor\" data-id=\"4a6bb19\" data-element_type=\"widget\" data-widget_type=\"text-editor.default\">\n\t\t\t\t<div class=\"elementor-widget-container\">\n\t\t\t\t\t\t\t<p>This solution leverages AWS TGW deployed in our Account (similarly to option #2).<\/p>\n<p>Aviatrix TGW-O is not used.<\/p>\n<p>There will be a Route configured in Integration-Spoke Subnets RTs pointing towards 3rdp-VPC (with nh = tgw-attachment)<\/p>\n<p>Advantages:<\/p>\n<ul>\n<li>Throughput is not limited. AWS underlay will be used<\/li>\n<li>It is not required to onboard the 3rd party Account to the Aviatrix Controller<\/li>\n<li>Full control of 3rdp party CIDRs advertised from Integration-Spoke to Transit (&#8220;Customized Spoke Advertised CIDRs&#8221; feature can be used)<\/li>\n<\/ul>\n<p>Things to consider:<\/p>\n<ul>\n<li>AWS TGW will be used \u2013 additional cost\n<ul>\n<li>TGW VPC attachment per hour [VPC owners \u2013 3rd party Account and our Account] + data transfer charges [TGW owner &#8211; our Account])<\/li>\n<li><a href=\"https:\/\/aws.amazon.com\/transit-gateway\/pricing\/\">https:\/\/aws.amazon.com\/transit-gateway\/pricing\/<\/a><\/li>\n<\/ul>\n<\/li>\n<\/ul>\n<ul>\n<li>AWS TGW will not be visible in Aviatrix CoPilot<\/li>\n<li>AWS TGW is not orchestrated by Aviatrix Controller<\/li>\n<li>AWS TGW Routing created \u201cmanually\u201d (AWS Console or TF Code)<\/li>\n<li>AWS TGW Attachment will be shared (using AWS RAM service) with 3rd party Account (no additional cost)<\/li>\n<\/ul>\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t<div class=\"elementor-element elementor-element-7137cdd elementor-widget elementor-widget-text-editor\" data-id=\"7137cdd\" data-element_type=\"widget\" data-widget_type=\"text-editor.default\">\n\t\t\t\t<div class=\"elementor-widget-container\">\n\t\t\t\t\t\t\t<p>Details of this solution, incl. Terraform code:\u00a0<a href=\"https:\/\/cloud-cod.com\/index.php\/2024\/01\/09\/aws-tgw-vpc-attachment-with-3rd-party-vpc-using-aws-ram\/\">https:\/\/cloud-cod.com\/index.php\/2024\/01\/09\/aws-tgw-vpc-attachment-with-3rd-party-vpc-using-aws-ram\/<\/a><\/p>\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t<div class=\"elementor-element elementor-element-f4d254c elementor-widget elementor-widget-heading\" data-id=\"f4d254c\" data-element_type=\"widget\" data-widget_type=\"heading.default\">\n\t\t\t\t<div class=\"elementor-widget-container\">\n\t\t\t<h2 class=\"elementor-heading-title elementor-size-default\">Solution #4 - Aviatrix Orchestrated AWS TGW VPC Attachment with 3rd party VPC<\/h2>\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t<div class=\"elementor-element elementor-element-95bfbe0 elementor-widget elementor-widget-text-editor\" data-id=\"95bfbe0\" data-element_type=\"widget\" data-widget_type=\"text-editor.default\">\n\t\t\t\t<div class=\"elementor-widget-container\">\n\t\t\t\t\t\t\t<p>This solution is a &#8220;better version&#8221; of solution #3. The beauty of it is that the creation\/management\/maintenance of AWS TGW, VPC Attachment, Routing, Policies is orchestrated by Aviatrix Controller.<\/p>\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t<div class=\"elementor-element elementor-element-5d4adcf elementor-widget elementor-widget-image\" data-id=\"5d4adcf\" data-element_type=\"widget\" data-widget_type=\"image.default\">\n\t\t\t\t<div class=\"elementor-widget-container\">\n\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t<a href=\"http:\/\/cloud-cod.com\/wp-content\/uploads\/2023\/12\/opt4_TGWO.png\" data-elementor-open-lightbox=\"yes\" data-elementor-lightbox-title=\"opt4_TGWO\" data-e-action-hash=\"#elementor-action%3Aaction%3Dlightbox%26settings%3DeyJpZCI6MjY2OTYsInVybCI6Imh0dHBzOlwvXC9jbG91ZC1jb2QuY29tXC93cC1jb250ZW50XC91cGxvYWRzXC8yMDIzXC8xMlwvb3B0NF9UR1dPLnBuZyJ9\">\n\t\t\t\t\t\t\t<img loading=\"lazy\" decoding=\"async\" width=\"768\" height=\"430\" src=\"https:\/\/cloud-cod.com\/wp-content\/uploads\/2023\/12\/opt4_TGWO-768x430.png\" class=\"attachment-medium_large size-medium_large wp-image-26696\" alt=\"\" srcset=\"https:\/\/cloud-cod.com\/wp-content\/uploads\/2023\/12\/opt4_TGWO-768x430.png 768w, https:\/\/cloud-cod.com\/wp-content\/uploads\/2023\/12\/opt4_TGWO-300x168.png 300w, https:\/\/cloud-cod.com\/wp-content\/uploads\/2023\/12\/opt4_TGWO-1024x573.png 1024w, https:\/\/cloud-cod.com\/wp-content\/uploads\/2023\/12\/opt4_TGWO-1536x860.png 1536w, https:\/\/cloud-cod.com\/wp-content\/uploads\/2023\/12\/opt4_TGWO.png 1897w\" sizes=\"auto, (max-width: 768px) 100vw, 768px\" \/>\t\t\t\t\t\t\t\t<\/a>\n\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t<div class=\"elementor-element elementor-element-3230087 elementor-widget elementor-widget-text-editor\" data-id=\"3230087\" data-element_type=\"widget\" data-widget_type=\"text-editor.default\">\n\t\t\t\t<div class=\"elementor-widget-container\">\n\t\t\t\t\t\t\t<p>This solution leverages AWS TGW deployed in our Account (similarly to option #3) but the AWS TGW will be built through Aviatrix Controller.<\/p>\n<p>The 3rd party Account must be onboarded to the Aviatrix Controller to orchestrate the attachment.<\/p>\n<p>Aviatrix TGW-O can be used. As already stated, it gives full AWS TGW visibility in CoPilot and full AWS TGW Orchestration done by Aviatrix Controller when it comes to TGW Attachments, Routes, Policies, etc.<\/p>\n<p>Advantages:<\/p>\n<ul>\n<li>Throughput is not limited. AWS underlay will be used<\/li>\n<li>AWS TGW orchestrated by Aviatrix Controller<\/li>\n<li>AWS TGW visible in CoPilot<\/li>\n<li>AWS TGW Attachment sharing is not required (AWS RAM) because the 3rd party Account is onboarded<\/li>\n<\/ul>\n<p>Things to consider:<\/p>\n<ul>\n<li>AWS TGW will be used \u2013 additional cost (TGW VPC attachment per hour [VPC owners \u2013 3rd party Account and our Account] + data transfer charges [TGW owner &#8211; our Account])<\/li>\n<li><a href=\"https:\/\/aws.amazon.com\/transit-gateway\/pricing\/\">https:\/\/aws.amazon.com\/transit-gateway\/pricing\/<\/a><\/li>\n<\/ul>\n<ul>\n<li>The 3rd party Account must be onboarded to Aviatrix Controller (either using Access Key Credentials or IAM Roles)<\/li>\n<\/ul>\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t<div class=\"elementor-element elementor-element-2bcd97c elementor-widget elementor-widget-text-editor\" data-id=\"2bcd97c\" data-element_type=\"widget\" data-widget_type=\"text-editor.default\">\n\t\t\t\t<div class=\"elementor-widget-container\">\n\t\t\t\t\t\t\t<p>Details of this solution, incl. Terraform code:\u00a0<a href=\"https:\/\/cloud-cod.com\/index.php\/2023\/12\/27\/aviatrix-orchestrated-aws-tgw-vpc-attachment-with-3rd-party-vpc\/\">https:\/\/cloud-cod.com\/index.php\/2023\/12\/27\/aviatrix-orchestrated-aws-tgw-vpc-attachment-with-3rd-party-vpc\/<\/a><\/p>\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t\t<\/div>\n\t\t<\/div>\n\t\t\t\t\t\t\t<\/div>\n\t\t<\/section>\n\t\t\t\t\t\t\t<\/div>\n\t\t","protected":false},"excerpt":{"rendered":"<p>Recently, I have been asked a question: How to connect 3rd party AWS VPC with the existing Aviatrix environment?<\/p>\n","protected":false},"author":2,"featured_media":26704,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"om_disable_all_campaigns":false,"_monsterinsights_skip_tracking":false,"_monsterinsights_sitenote_active":false,"_monsterinsights_sitenote_note":"","_monsterinsights_sitenote_category":0,"footnotes":""},"categories":[14,21],"tags":[],"class_list":["post-26653","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-aviatrix","category-aws"],"uagb_featured_image_src":{"full":["https:\/\/cloud-cod.com\/wp-content\/uploads\/2023\/12\/blog_post_11_awstgw.png",934,735,false],"thumbnail":["https:\/\/cloud-cod.com\/wp-content\/uploads\/2023\/12\/blog_post_11_awstgw-150x150.png",150,150,true],"medium":["https:\/\/cloud-cod.com\/wp-content\/uploads\/2023\/12\/blog_post_11_awstgw-300x236.png",300,236,true],"medium_large":["https:\/\/cloud-cod.com\/wp-content\/uploads\/2023\/12\/blog_post_11_awstgw-768x604.png",768,604,true],"large":["https:\/\/cloud-cod.com\/wp-content\/uploads\/2023\/12\/blog_post_11_awstgw.png",800,630,false],"1536x1536":["https:\/\/cloud-cod.com\/wp-content\/uploads\/2023\/12\/blog_post_11_awstgw.png",934,735,false],"2048x2048":["https:\/\/cloud-cod.com\/wp-content\/uploads\/2023\/12\/blog_post_11_awstgw.png",934,735,false],"onepress-blog-small":["https:\/\/cloud-cod.com\/wp-content\/uploads\/2023\/12\/blog_post_11_awstgw-300x150.png",300,150,true],"onepress-small":["https:\/\/cloud-cod.com\/wp-content\/uploads\/2023\/12\/blog_post_11_awstgw-480x300.png",480,300,true],"onepress-medium":["https:\/\/cloud-cod.com\/wp-content\/uploads\/2023\/12\/blog_post_11_awstgw-640x400.png",640,400,true]},"uagb_author_info":{"display_name":"Jakub","author_link":"https:\/\/cloud-cod.com\/index.php\/author\/jakub\/"},"uagb_comment_info":219,"uagb_excerpt":"Recently, I have been asked a question: How to connect 3rd party AWS VPC with the existing Aviatrix environment?","_links":{"self":[{"href":"https:\/\/cloud-cod.com\/index.php\/wp-json\/wp\/v2\/posts\/26653","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/cloud-cod.com\/index.php\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/cloud-cod.com\/index.php\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/cloud-cod.com\/index.php\/wp-json\/wp\/v2\/users\/2"}],"replies":[{"embeddable":true,"href":"https:\/\/cloud-cod.com\/index.php\/wp-json\/wp\/v2\/comments?post=26653"}],"version-history":[{"count":64,"href":"https:\/\/cloud-cod.com\/index.php\/wp-json\/wp\/v2\/posts\/26653\/revisions"}],"predecessor-version":[{"id":27174,"href":"https:\/\/cloud-cod.com\/index.php\/wp-json\/wp\/v2\/posts\/26653\/revisions\/27174"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/cloud-cod.com\/index.php\/wp-json\/wp\/v2\/media\/26704"}],"wp:attachment":[{"href":"https:\/\/cloud-cod.com\/index.php\/wp-json\/wp\/v2\/media?parent=26653"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/cloud-cod.com\/index.php\/wp-json\/wp\/v2\/categories?post=26653"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/cloud-cod.com\/index.php\/wp-json\/wp\/v2\/tags?post=26653"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}