Connect to AWS Direct Connect

Overview

AWS Direct Connect is a cloud service solution that makes it easy to establish a dedicated network connection from a customer’s premises to Amazon Web Services (AWS). With AWS Direct Connect, customers can create private links between any AWS Direct Connect location and their data center, office, or colocation facility. In many cases, this can reduce the customer’s network costs, increase bandwidth throughput, and provide a more consistent network experience than Internet-based connections.

Customers can use AWS Direct Connect to access the following resources, while maintaining network separation between the customer’s public and private environments:

• Public resources such as objects stored in Amazon Simple Storage Service (Amazon S3) using public globally routable IP address space

• Private resources such as Amazon Elastic Compute Cloud (Amazon EC2) instances that are running within Amazon Virtual Private Cloud (VPC)

Note

View AWS Direct Connect FAQs for more information.

Concepts

VPC virtual private cloud, a network environment under AWS account.
Subnet A range of IP address inside VPC.
VGW Virtual gateway of VPC.
DXGW Direct Connect gateway associating with multiple VGW.
VIF Virtual interface, the final downlink port of AWS side. Public VIF access to public service such as Amazon S3, private VIF access to VPC.
Interconnects Zenlayer’s physical connect to AWS as Business Partner.
Hosted connections Under Interconnects, we distribute logical connections to clients by VLAN.Multi-tier port speed is optional. Customers need to configure one VIF for their own use.
Connections As a user role, Zenlayer applies to AWS for physical connection to further distinguish customers through VIF. Connection port speed 1 G / 10 G (when customers have big bandwidth demand, they might also apply to AWS Connections directly).
Virtual interfaces VIF, belongs to different Connections, and will be distributed by Zenlayer by VLAN.

Procedures

Assume an example that a client deploys a local router at Hong Kong, intending to connect AWS at Singapore.

Create a Virtual Private Cloud - VPC

On the AWS Virtual Private Cloud service page, go to Your VPCs > Create VPC, and fill in the name and IP address (which can also be modified later).

Create a Virtual Private Gateway - VGW

Go to Direct Connect service page, select Virtual private gateways > Create virtual private gateway.

Create a Direct Connect gateway - DXGW

Go to Direct Connect service page, select Direct Connect gateways > Create Direct Connect gateway.

Attach VPC and VGW

Click the virtual private gateway you created, it will jump to another page as shown below, and then attach to your VPC.

Result

After successful attachment, you can see the VPC information and status as follows:

Associate VGW and DXGW

On the same page as previous step, select Direct Connection gateway associations, and associate it with the direct connect gateway you have created.

Accept VIF/ Connection mode

Zenlayer offers two available modes. Please accept the mode once it is created for you.

VIF mode

After Zenlayer sets up VIF mode for you, you can accept it from the Virtual interfaces, and then associate it with the Direct Connect gateway (if you are not connected).

Connection mode

After Zenlayer sets up Connection mode for you, you can accept it from the Connections.

Different from VIF mode, you need to create a virtual interface to establish BGP peer.

Establish BGP Peer

Configure AWS peering

In connection mode, configure the peer IP, ASN and authentication key of the devices on both sides according to the VIF you created, and establish BGP peers through Add peering.

When BGP peer is configured, the BGP state will become available.

Configure local router

Complete the BGP configuration on the local router as planned. Ensure that the BGP session state is established, and the virtual interface state is available. After that, they can learn routing from each other.