How to Access Private Subnet EC2 with site to site VPN?

Question

0

If I have an AWS VPC with a private and public subnet. The public subnet has 1 EC2 instance and the private subnet has 1 EC2 instance as well. If I do a site to site VPN to my VPC from my work location. Can I access my private subnet EC2 instance via ssh using the private ip? Or do I have to do a Bastian host from my public subnet to access my private subnet EC2 instance?

Answer 1

Yes, you can access your EC2 instance in private subnet from your work location. You can configure static routing in your VPN connection. Then you will be prompted to manually enter the IP prefix for your work location network when you create the site to site VPN connection. Then you would be able to connect to your instance.