Follow these steps to create a virtual private gateway and a customer gateway:
- Log in to your AWS account, go to the VPC dashboard, and select Virtual Private Gateways. Click Create Virtual Private Gateway:
Create Virtual Private Gateway screen
- Give the VPG a Name tag and leave ASN in its default state. Click Create Virtual Private Gateway.
- Go back to the left-hand menu and select Site-to-Site VPN Connections. Click Create VPN Connection:
Create VPN Connection screen
- Give the VPN a Name tag and select the VPG from the drop-down menu.
- Select New from the Customer Gateway radio buttons and specify the IP address of your customer gateway device.
- If you have a BGP ASN, enter it here; otherwise, use the default private Autonomous System Number (ASN).
- Click Create VPN Connection. Once it becomes available, you will be able to download the configuration needed for the device in your data center:
Downloading the device configuration
- Go to Route Tables under the VPC menu. Select the Route Propagation tab and configure your route table to allow propagation from the Virtual Private Gateway (VPG):
Route propagation
You now have a secure network route from your data center into your AWS VPC.