AWS VPC Peering Connection

An AWS VPC Peering Connection is a networking connection between two VPCs that enables you to route traffic between them privately.

Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Deployments

36

Made by

Massdriver

Official

Yes

No

Compliance
No compliance
Clouds
AWS
Text Link
Tags
Networking
Text Link
Read me
Variables

aws-vpc-peering-connection

An AWS VPC peering connection is a networking connection between two AWS VPCs that enables communication between them using private IP addresses.

Use Cases

Network Migration

A peering connection can help facilitate a network migration by allowing services to be migrated from the old VPC to the new VPC individually over time while maintaining network connectivity, as opposed to a riskier all-at-once migration.

Multi-Region

By peering VPCs between two regions, they can both communicate privately and effectively act as a single multi-region private network.

Multi-Account

Peering connections can go accross AWS accounts, offering many benefits such as workload isolation, simplified account migration and enterprise capabilities (communicate across accounts without cloud account access).

Design

This bundle is designed for two scenarios:

  1. Peering two VPCs, both of which are provisioned by Massdriver and in the same account
  2. Peering two VPCs, only one of which is provisioned and managed by Massdriver

Both VPCs in Same Account Provisioned by Massdriver

In the first case, where both VPCs are managed by Massdriver and exist in the same AWS account, the user should connect both VPCs to the connection ports on the bundle (one to requester the other to accepter). The fields in the bundle configuration (“Remote VPC ARN” and “Remote VPC CIDR”) can be ignored since these values can be pulled from the accepter VPC. It doesn’t matter which VPC is the requester or accepter, they are functionally equivalent. In this scenario, the bundle will handle all the proper configuration for the peering connection, including establishing the connection, accepting it, and updating the route tables of both VPCs to enable communication across the VPCs.

VPCs in Separate Accounts, or Only One VPC Managed by Massdriver

In the second case, where one VPC isn’t managed by Massdriver, or the VPCs exist in a different account, only one of the connections is used: the requester connection. In this case, the bundle won’t be able to “accept” the peering connection on behalf of the “accepter” VPC. Additionally, the fields in the bundle configuration (“Remote VPC ARN” and “Remote VPC CIDR”) will need to be specified so the bundle can properly initiate the peering connection, and update the route tables of the Massdriver-managed requester VPC. Additional steps will need to be performed by the user in the AWS console to complete the peering connection.

Steps to Manually Accept Peering Connection

This is a summary of the tasks required to accept a peering connection and update the route tables of the VPC.

  1. Log into the AWS console for the “Accepter” account
  2. Navigate to the VPC configuration screen
  3. In the navigation pane, choose “Peering Connections”
  4. Select the pending VPC peering connection and choose “Actions” -> “Accept request”
  5. Choose “Modify route tables now”, or select “Route Tables” in the left side navigation pane
  6. Filter by the VPC ID of accepter
  7. For every route table associated with the VPC perform the following steps:
    1. Select the route table, and choose “Actions” -> “Edit Routes”
    2. Select Add Route
    3. For Destination, use the CIDR of the Requester VPC (the one managed by Massdriver)
    4. For Target, select “Peering Connection” and select the peering connection that was just created
    5. Select “Save changes”
  8. (Optional) If you would like DNS resolution across the peering connection, select the peering connection and choose “Actions” -> “Edit DNS settings” and select both “Allow accepter VPC” and “Allow requester VPC”.

Best Practices

Remote DNS Resolution

If both VPCs are managed by Massdriver, the peering connection will be configured to allow DNS resolution across the connection, allowing services to use private DNS names instead of IP addresses.

Route Table Management

Route tables will automatically be updated to allow proper routing across the peering connection (the requester VPC will always be updated, the accepter will only be updated if the VPC is in the same account and managed by Massdriver - see above)

Variable Type Description

| accepter_vpc_arn | string | IMPORTANT: Only set this value if you haven’t connected a remote “accepter” VPC to the bundle!!! If an accepter VPC is connected, this field is ignored and the value will be extracted from the connection artifact. Use this field if the remote VPC isn’t managed by Massdriver or exists in different AWS account than the requester VPC. This will require you to accept the peering connection and update the route tables of the accepter VPC manually! | | accepter_vpc_cidr | string | IMPORTANT: Only set this value if you haven’t connected a remote “accepter” VPC to the bundle!!! If an accepter VPC is connected, this field is ignored and the value will be extracted from the connection artifact. Use this field if the remote VPC isn’t managed by Massdriver or exists in different AWS account than the requester VPC. This will require you to accept the peering connection and update the route tables of the accepter VPC manually! |

System Operational

Marketplace

AWSAzure

Templates

AWSGCPAzure

Solutions

Healthcare
Internal Developer Platform
Cost Management
DevOps Advisor
Platform Engineering Accelerator

Company

About UsJobsNewsContact UsNews

Resources

PricingBlogDocsWebinars
Get Started
Massdriver Reviews
Massdriver Reviews
© Massdriver, Inc. 2024
Terms of Service
Privacy Policy
Security
Backstage
Internal Developer Platform
OpenTofu for Enterprise
Cost Management
DevOps Advisor
Platform Engineering Accelerator
Mentaware's Seamless AWS-to-Azure Migration and Market Expansion
GameStake Achieves Zero-Downtime Deployments with a 25% Reduction in Cloud Costs
How AMD Global Telemedicine Reduced Software Release Effort by 89%
Best Practices for Containerizing Web Apps with Docker
This is some text inside of a div block.
Migrating Existing OpenTofu Modules into Massdriver
This is some text inside of a div block.
Accelerate Your IaC adoption: Importing Infrastructure into Ready-Made Terraform / OpenTofu Templates
This is some text inside of a div block.
Getting Started with OpenTofu in AWS
This is some text inside of a div block.
Migrate from Heroku to Azure using Massdriver
This is some text inside of a div block.
Getting Started with OpenTofu in Azure
This is some text inside of a div block.
Writing Maintainable IaC: Use Case Specific OpenTofu / Terraform Modules
This is some text inside of a div block.
Open Office Hours
This is some text inside of a div block.
Airlock: Massdriver's New Open-Source Project
This is some text inside of a div block.
How to enable API endpoints with Massdriver apps
This is some text inside of a div block.
Open Office Hours
This is some text inside of a div block.
Generating OpenTofu / Terraform from Existing Cloud Resources
This is some text inside of a div block.
Running KubeVirt on AWS EKS
This is some text inside of a div block.
Scripting with Massdriver
This is some text inside of a div block.
Open Office Hours
This is some text inside of a div block.
Observability in Kubernetes using Jaeger
This is some text inside of a div block.
Debugging applications in Kubernetes
This is some text inside of a div block.
Observability in Kubernetes using Prometheus
This is some text inside of a div block.
Scaling Ops: Embracing platform engineering’s potential
This is some text inside of a div block.
Open Office Hours
This is some text inside of a div block.
AI Made Simple: Deploying Stable Diffusion with Massdriver and SageMaker
This is some text inside of a div block.
Test driven development with OpenTelemetry
This is some text inside of a div block.
Zero Down Time Deployments in Kubernetes
This is some text inside of a div block.
Writing Maintainable Infrastructure as Code
This is some text inside of a div block.
Massdriver Feature Showcase: Bundle Building
This is some text inside of a div block.
Massdriver Feature Showcase: Environmental Parity
This is some text inside of a div block.
AKS Made Easy on Massdriver
This is some text inside of a div block.
Best Practices for Containerizing Web Apps with Docker
This is some text inside of a div block.
Debugging Applications in Kubernetes
This is some text inside of a div block.
Best Practices for Containerizing Web Apps with Docker
This is some text inside of a div block.
Load Testing with Grafana K6
This is some text inside of a div block.
Debugging Applications in Kubernetes
This is some text inside of a div block.
Running Azure OpenAI with Massdriver
This is some text inside of a div block.
Best Practices for Containerizing Web Apps with Docker
This is some text inside of a div block.
Upgrading PostgreSQL Versions with Minimal Downtime
This is some text inside of a div block.
Deploying 3-tier Web Applications on Kubernetes with Massdriver
This is some text inside of a div block.
Massdriver Feature Showcase: Bundle Building
This is some text inside of a div block.
Massdriver Feature Showcase: Diffing Environments & Deployments
This is some text inside of a div block.
Networking
AWS