Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

CDK Sample: Securely Access VPN exposed services with AWS PrivateLink #790

Open
1 of 2 tasks
Dringho opened this issue Jan 4, 2023 · 0 comments
Open
1 of 2 tasks

CDK Sample: Securely Access VPN exposed services with AWS PrivateLink #790

Dringho opened this issue Jan 4, 2023 · 0 comments
Labels
feature-request A feature should be added or improved. language/python Related to Python examples p2

Comments

@Dringho
Copy link

Dringho commented Jan 4, 2023
edited

Describe the feature

A secure way to integrate with services providers that require communication going through IPSEC-VPN connectivity, which is the case of many regulators in LATAM.
The solution involves using PrivateLink to decouple the network related association with the provider.
This schema can also be reversed to be used to expose services through VPN securely.

Use Case

(Based on Enterprise Customer need)

  • Joining through VPN Networking with a provider that may have CIDR collision can be challenging and require many workarounds to make it happen.
  • Joining through VPN Networking with another entity leads to an increased security perimeter if done in the same network that you normally operate and it's hard to control that only allowed traffic is permitted

Proposed Solution

SbPay Provider VPN PrivateLink(1)(1)-Page-1

This sample uses three stacks, one to simulate the external producer (which uses openswan to connect to AWS-VPN), one to implement the Transit account, and a last one for the Consumer of the service

Other Information

No response

Acknowledgements

  • I may be able to implement this feature request
  • This feature might incur a breaking change

Language

Python
@Dringho Dringho added feature-request A feature should be added or improved. needs-triage This issue or PR still needs to be triaged. labels Jan 4, 2023
@kaiz-io kaiz-io added language/python Related to Python examples p2 and removed needs-triage This issue or PR still needs to be triaged. labels Oct 24, 2023
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
feature-request A feature should be added or improved. language/python Related to Python examples p2
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@kaiz-io @Dringho