Cloud Advanced
VPC Networking — Peering, Transit GW, PrivateLink¶
AWSVPCTransit GatewayPrivateLink 5 min read
VPC connectivity: peering, Transit Gateway, PrivateLink, VPN and Direct Connect.
VPC Peering¶
Point-to-point, non-transitive. For N VPCs = N*(N-1)/2 connections. Above ~5 VPCs → Transit Gateway.
Transit Gateway¶
resource "aws_ec2_transit_gateway" "main" {
description = "Central TGW"
default_route_table_association = "enable"
}
Hub-and-spoke. Centralized route tables, cross-region peering.
PrivateLink¶
- Interface Endpoints — ENI for AWS services
- Gateway Endpoints — S3 and DynamoDB (free)
- PrivateLink Services — expose custom service via NLB
Summary¶
Peering for simple cases, TGW for hub-and-spoke, PrivateLink for private access. No unnecessary public IPs.
Need Help with Implementation?¶
Our team has experience designing and implementing modern architectures. We’re happy to help.