This article describes the required steps in order to establish connectivity with your AWS VPC (you only ever have to do this step once in the AWS region of you have provisioned your VPSA on).
After submitting your VPSA creation request (along with your AWS information) Zadara has created a new virtual interface in your account but for security reasons that connection will be inactive until you accept it.
- Verify/Create VGW (Virtual Private Gateway)
- Attach Direct Connect Virtual interfaces to your VPC
- Updating the VPC Route Table
Direct Connect Virtual Interfaces must be attached to a VGW (Virtual Gateway).
From your AWS Management Console, open the VPC service (under the upper menu "services" section)
On the left navigation menu, scroll down and open the "Virtual Private Gateways" section.
In case you already have an existing VGW, verify that it is attached to the VPC that will be connected to your VPSA, and proceed to the next step.
In case you do not have a VGW, click on "Create Virtual Private Gateway" - give your VGW a name, and approve its creation.
From the VGW section, select the newly created VGW and attach it to your VPC
Attach Direct Connect Virtual interfaces to your VPC
Now that we have created a VGW, we can accept the Direct Connect Virtual Interfaces offered by Zadara, navigate to the Direct Connect service using the upper menu "Services" section.
If you don't see any pending interfaces make sure you are in the right region. The current region is always displayed in the upper right corner of the AWS console.
Select the checkbox of the first connection, accept the warning in the south pane, and click "Accept Virtual Interface".
In the confirmation prompt, select your VGW and approve. Repeat the process for the secondary virtual interface. Please note - it may take up to 10 minutes for the connection become available. In case your Direct Connect refuses to come up - please contact us at email@example.com.
Updating the VPC Route Table
We will need to adjust the VPC Route table in order to allow proper connectivity to the VPSA.
Open the VPC service, and open the Route Table section from the left menu.
We will need to allow "route propagation" for the VGW, click on "Edit route propagation" and select the "Propagate" checkbox.
It can take up to 15 minutes for route propagation to complete. Once it does your route table should have an additional route to Zadara's VPSA network subnet.
That’s it! at this point your VPSA should be accessible for access from within your VPC. In order to manage it, open its Management IP address as described in Zadara's Provisioning Portal.
Reminder - the management IP is accessible only from within your VPC network.