At AWS re:Invent 2021, the ability to peer VTGWs to AWS TGWs in the same region, also referred to as intra-region peering was announced. VMware and AWS have been working on this solution diligently and we are excited to announce VMware Cloud on AWS support for this new capability in this announcement blog. Equally exciting is that this feature will be available to VMware Cloud on AWS customers with SDDCs that are on any version. To get access to this feature, please reach out to your VMware account team.
This article will delve into one of the use cases and the details of the configuration for this feature. Before we get into the configuration, let’s review the primary use case for this solution.
It’s not uncommon for our customers to have a footprint of native AWS services in a region that use AWS TGW connectivity in addition to a VMware Cloud on AWS SDDC footprint. Prior to the intra-region peering feature customers would have to either use IPSec VPNs or Transit VPC architectures to provide the connectivity they required. While this works, there is additional protocol and management overhead with either approach and potential bandwidth bottlenecks. With the intra-region peering option, topologies can transition from the one depicted in Figure 1 to the topology illustrated in Figure 2.
Figure 1 – Transit VPC Architecture for Intra-Region Connectivity
Figure 2 – Intra-Region VTGW to TGW Peering
The elimination of additional connectivity points simplifies the design by reducing the number of hops, route tables that would need management and reduces attachments.
Now that we’ve established the primary use case, we can focus on a specific topology and review the configuration steps. The topology in Figure 3 will be built throughout the remainder of this article.
Figure 3 – Intra-Region VTGW to TGW Peering Topology for Lab
To begin building this topology, we’ll start in the VMC Console and go to the SDDC Groups tab where we’ll navigate to the SDDC Group we want to configure the intra-region peering session in
For more details refer: VMware Transit Connect Intra-Region Peering