问题
AWS inter-region / cross region VPC Peering
We have been using VPC peering for connecting two VPCs within a region. It works great and eliminates the need for a VPN. As we expand to other regions, we use VPNs to connect the VPCs across regions. VPN scaling and HA are two big issues and the connectivity is not robust. Is it possible to create VPC peering between two regions in AWS?
回答1:
AWS announced on Nov 29, 2017, that AWS started supporting inter-region VPC peering and on Feb 20, 2018 added 9 additional regions.
Amazon EC2 now allows peering relationships to be established between Virtual Private Clouds (VPCs) across different AWS regions. Inter-Region VPC Peering allows VPC resources like:
- EC2 instances
- RDS databases
- Lambda functions
running in different AWS regions to communicate with each other using private IP addresses, without requiring gateways, VPN connections or separate network appliances. As of Feb 20, 2018, inter-region VPC peering is available in:
- us-east-1 (N. Virginia) (added Nov 29, 2017)
- us-east-2 (Ohio) (added Nov 29, 2017)
- us-west-1 (Northern California) (added Feb 20, 2018)
- us-west-2 (Oregon) (added Nov 29, 2017)
- ap-south-1 (Mumbai) (added Feb 20, 2018)
- ap-southeast-1 (Singapore) (added Feb 20, 2018)
- ap-southeast-2 (Sydney) (added Feb 20, 2018)
- ap-northeast-1 (Tokyo) (added Feb 20, 2018)
- ca-central-1 (Central) (added Feb 20, 2018)
- eu-west-1 (Ireland) (added Nov 29, 2017)
- eu-west-2 (London) (added Feb 20, 2018)
- eu-west-3 EU (Paris) (added Feb 20, 2018)
- sa-east-1 (São Paulo) (added Feb 20, 2018)
For more information: Announcing Support for Inter-Region VPC Peering
Horizontally scaled
Highly available
Encrypts inter-region traffic
No single point of failure or bandwidth bottleneck
Traffic always stays on the global AWS backbone and never traverses the public internet
Reduces threat vectors, such as common exploits and DDoS attacks
来源:https://stackoverflow.com/questions/47657577/does-aws-offer-inter-region-cross-region-vpc-peering