UDP LoadBalanced VPN using DNS

This feature is available from version 2.7. AWS does not allow you to create loadbalancers for TCP VPN gateways. To circumvent this issue, we utilize Route53 services of AWS to create a round robin based UDP LoadBalanced VPN Gateways.

This feature allows you to combine the features of LoadBalancing of UDP VPN Gateways and larger throughput of UDP VPN tunnels.

Configuration Workflow

Tips: Upgrade to the latest version. Make sure you are running 2.7+

  1. Create VPN Gateways from Gateways Page. Make sure you have VPN Enabled and ELB disabled.

  2. Create DNS Loadbalancers a. Go to OpenVPN->Advanced->UDP Loadbalancer b. Click “+New” button

    1. Select cloud type and account (Currently only supported on AWS)
    2. Enter the hosted zone name ( This must exist in your AWS Route53)
    3. VPN Service name is a unique identifier fot the Loadbalancer. For example a service name “vpn1” and hosted zone “aviatrix.com” will create a DNS entry “vpn.aviatrix.com”
    4. Select the Gateways that need to be added to the Loadbalancer. If you dont see
      any gateways, you may not have created non ELB VPN Gateways.
    5. Hit “OK” and this creates the UDP LoadBalancer
  3. Add VPN Users. a. Add VPN Users directly to the LoadBalancer by going to OpenVPN->VPN Users page b. In the VPC ID/LB /DNS select the loadbalancer created in Step 2. (“Example:vpn.aviatrix.com”) c. Populate the username and email fields and the VPN user is created

  4. (Optional) Edit DNS LoadBalancer a. You can add or delete gateways to the load balancer after it has been created