Is it possible to create a VPN link between AZURE VNET and AWS VPC?

amazon-web-services azure site-to-site-vpn

As I found solutions on making site-to-site VPN between Azure and AWS using a software VPN server, I'm asking myself if it's possible to connect the VPN gateways (Azure VNET / AWS VPC) directly.

Is there a limitation that forbids it ?


Solution 1:

I spent some time working on this today, and as far as I can tell, it is not currently possible. While you can get the gateway IP addresses and pre-shared keys synced up, you don't seem to have any control over the IKE parameters for either cloud provider's gateways. AWS wants to use AES-128-CBC, and Azure wants to use AES-256, and that's all she wrote. (Azure may also not yet support group 2 PFS for the IPSEC parameters, but since I couldn't actually get that far, I don't know if there would be a way to address that problem.)

Unless I'm mistaken, it looks like using a software VPN on one side or the other is required for now.

Related

How to redirect Https CONNECT Request with Squid Explicit Proxy
How to block loadbalancer forwarding to a specific path?
php5-fpm configuration pm - (node) Process manager settings nodes in more layman terms
Run shell script from Apache conf or at Apache (re)start
How to set up multitenant Route53 subdomains with parent domain not on Route53?
Unable to see Scheduled Task even with access rights to SYSTEM32\Tasks
CentOS 5.5 remote kickstart installation stalls at "Starting install process." How to debug?
HP RAID array - hpacucli
IIS 7 Backup Strategy
Zabbix server SELinux policy
Postfix- open relay. How to configure so it is not?
prevent X-Forwarded-For spoofing in haproxy