eherot/Basic VPC Setup.md

Created November 6, 2019 16:07

Star () You must be signed in to star a gist
Fork () You must be signed in to fork a gist

Learn more about clone URLs
Clone this repository at <script src="https://gist.github.com/eherot/ef1800c5a0ff7dd540abbf4d2b8b55e0.js"></script>
Save eherot/ef1800c5a0ff7dd540abbf4d2b8b55e0 to your computer and use it in GitHub Desktop.

Download ZIP

How to set up a basic VPC with a VPN

Raw

Basic VPC Setup.md

Required things

The VPN
An Internet gateway
A route table (meaining the route to 0.0.0.0/0 should go through the above internet gateway)
A public subnet (meaning it should be "associated" with the above route table)
An elastic IP address
An EC2 instance (your VPN server) running in the above subnet and associated with the above elastic IP

Optional things (but that you'll almost certainly want)

At least one NAT Gateway
A private route (meaning the route to 0.0.0.0/0 should go through the above NAT Gateway)
A private subnet (to host the stuff you want to access with the VPN)

Security groups

"vpn" - This group will be associated with the VPN server. It needs one rule allowing traffic IN from 0.0.0.0/0 on the OpenVPN port (usually UDP/1194). Allowing connections from your local IP on port 22 is also helpful.
"default" - This group will be associated with everything else and it needs one rule allowing traffic on all ports from the above "vpn" group.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment