Direct Connect and Direct Connect Gateways

Video Activity
Join over 3 million cybersecurity professionals advancing their career
Sign up with
Required fields are marked with an *
or

Already have an account? Sign In »

Time
19 hours 19 minutes
Difficulty
Intermediate
CEU/CPE
20
Video Transcription
00:00
>> Picking up on where we left off
00:00
from our last lecture on different ways
00:00
that you can communicates between
00:00
the Cloud and your On-premise network.
00:00
Direct Connect and Direct Connect Gateways
00:00
are another option that you want to consider.
00:00
Learning objectives for this lesson
00:00
are going to be to talk about
00:00
that and how that compares with site-to-site VPN.
00:00
Direct connect establishes a secure dedicated connection
00:00
between your office and AWS.
00:00
This isn't a way that
00:00
you're going to be communicating from
00:00
VPC to your office over the public Internet.
00:00
This is not over the public Internet.
00:00
This is going to be through
00:00
a dedicated fiber-optic lines
00:00
between the AWS data-center and your office.
00:00
Now you can have one gig,
00:00
you're going to have 10 gig.
00:00
Those are two different options there.
00:00
But the reasons why you may want to do
00:00
this is because the regulatory compliance,
00:00
or you're really wanting to
00:00
make sure that your connection is
00:00
secured and there's no possible way
00:00
of it being tampered with.
00:00
Not that there isn't a possible way,
00:00
but your best chances of not getting tampered with.
00:00
This is a very good way to do this.
00:00
But with that comes some prices.
00:00
Some pricing is there, so make sure
00:00
that you are aware of that.
00:00
Now how does this compare to site-to-site VPN?
00:00
AWS VPN is encrypted.
00:00
It's a VPN tunnel,
00:00
and it's going to be over the Internet.
00:00
Direct Connect bypass the public Internet
00:00
altogether because they use
00:00
dedicated fiber optic networks
00:00
to connect between your office and AWS.
00:00
Really the difference there,
00:00
ones over the Internet,
00:00
it's going to be cost-effective and it's secure,
00:00
but still can technically
00:00
be tampered with or misconfigured.
00:00
The other one is going to be underground or over wires or
00:00
however that works on
00:00
a physical network infrastructure level.
00:00
But you get what I'm saying here.
00:00
One is not over the Internet,
00:00
the other one is over the Internet.
00:00
Keep that in mind. That was a quick one.
00:00
To summarize. We talked about Direct Connects and we
00:00
highlighted differences between
00:00
that and site-to-site VPN.
00:00
If you have any questions,
00:00
feel free to reach out or check the documentation.
00:00
I'll see you guys in the next lecture.
Up Next