Connectivity

This section provides the purpose, elements, and actions performed on the Connectivity pages.

External Connections (S2C)
AWS TGW
Native Peering
External CA Certificates

Purpose

The External Connections (Site2Cloud) page configures and manages Site2Cloud connections between Aviatrix Gateways and external devices.

Elements

Connectivity: External Connections (S2C)

+ External Connection button: Starts the workflow to create a new External Device, AWS Virtual Gateway, Azure Virtual Network Gateway, or Microsoft SSE Solution connection.
BGP Settings button: Configures BGP settings to receive notifications on overlapping BGP address and route limitations, and to set the maximum BGP AS path length.
External Connections (S2C) table: Displays the list of existing S2C connections and their details.
Delete button: Removes an existing S2C connection from the table.
Actions button: Download configuration files, connectivity Diagnostics, and BGP Diagnostics for an S2C connection.

Actions

Create External Connection

To create an external Site2Cloud connection:

Go to Networking > Connectivity > External Connections (S2C).
Click + External Connection.
Select the connection type (External Device, AWS Virtual Gateway, Azure Virtual Network Gateway, or Microsoft SSE Solution).
Configure the connection parameters (Name, Tunnel Type, Local Gateway, Remote Device IP, subnets, and BGP settings as applicable).
Click Save.

The new external connection appears in the External Connections (S2C) table.

Parameter Details

Sl. No.	CoPilot Parameter Name	Description
1	Name	Name of the external connection.
2	Tunnel Type	Type of tunnel used for the connection, for example BGP over IPsec.
3	Local Gateway	Name of the Aviatrix Gateway that initiates the connection.
4	Local Gateway IP	Public IP address of the local gateway.
5	Gateway Interface	Network interface on the local gateway used for the tunnel.
6	Remote Device IP	Public IP address of the remote device.
7	Local Subnet	Subnet or tag advertised from the local side.
8	Remote Subnet	Subnet or tag advertised from the remote side.
9	Local ASN	Autonomous system number used by the local gateway.
10	Remote ASN	Autonomous system number used by the remote device.
11	BGP Local IP	Local IP address used for the BGP session.
12	BGP Neighbor IP	Remote IP address used for the BGP session.
13	BGP Neighbor Status	Current status of the BGP session.
14	BFD Status	Status of Bidirectional Forwarding Detection for the connection.

Configure BGP Settings

To configure BGP settings for Site2Cloud connections:

Go to Networking > Connectivity > External Connections (S2C).
Click BGP Settings.
Configure notifications for overlapping BGP address and route limitations.
Set the maximum BGP AS path length.
Save your changes.

BGP settings apply to all Site2Cloud connections using BGP.

Delete External Connection

To delete an external Site2Cloud connection:

Go to Networking > Connectivity > External Connections (S2C).
Locate the connection in the External Connections (S2C) table.
Click the Delete button for the connection.
Confirm the deletion.

The connection is removed from the table.

Download Configuration or Run Diagnostics

To download configuration files or run diagnostics for an S2C connection:

Go to Networking > Connectivity > External Connections (S2C).
Locate the connection in the External Connections (S2C) table.
Click the Actions button for the connection.
Select Download configuration files, Connectivity Diagnostics, or BGP Diagnostics as needed.

Configuration files and diagnostic results are downloaded or displayed.

BGP over LAN: In AWS, BGP over LAN allows BGP-enabled Spoke Gateways to connect to third-party instances in the same VPC without IPsec or GRE. In Azure, it allows connection to third-party instances in the same VNet. Each connection can connect to one or at most two third-party instances. BGP over LAN is not supported for GCP, OCI, and Alibaba Cloud. For Azure, you must indicate the number of LAN interfaces (maximum eight). Adding new LAN interfaces to an Azure Spoke Gateway reboots the gateway and may cause traffic disruption. You cannot delete an interface after the Spoke Gateway is created.

Purpose

The AWS TGW page creates AWS Transit Gateway and manages the integration by attaching an Aviatrix Transit Gateway and other AWS resources, reviewing TGW attachments, and controlling routing and network domain connections for hybrid and multicloud deployments.

Elements

+ AWS TGW button: Starts the workflow to create a new AWS Transit Gateway.
Audit Settings button: Turns On or Off Auto Audit (Every night) for TGW attachments.
AWS TGW table: Displays the list of existing AWS TGWs and their details.
Edit button: Modifies an existing AWS TGW from the table.
Delete button: Removes an existing AWS TGW from the table.
Actions button: Audits the AWS TGW and views the TGW routes.

Actions

Create AWS TGW

To create an AWS Transit Gateway:

Go to Networking > Connectivity > AWS TGW.
Click + AWS TGW.
Configure the AWS TGW parameters (Name, Account, Region, TGW CIDR, and other settings).
Save the configuration.

The new AWS TGW appears in the AWS TGW table.

Parameter Details

Sl. No.	CoPilot parameter name	Description
1	Name	Name assigned to the AWS Transit Gateway.
2	TGW ID	AWS-generated identifier of the AWS Transit Gateway.
3	Account	AWS account where the AWS Transit Gateway is created.
4	Cloud	Cloud provider associated with the Transit Gateway.
5	Region	AWS region where the Transit Gateway resides.
6	FireNet Inspection Mode	Inspection mode used when integrating the AWS Transit Gateway with FireNet.
7	Peered AWS TGWs	Number or list of AWS Transit Gateways peered with this gateway.
8	TGW CIDR	CIDR block assigned to the AWS Transit Gateway.

Configure Audit Settings

To configure audit settings for TGW attachments:

Go to Networking > Connectivity > AWS TGW.
Click Audit Settings.
Turn Auto Audit (Every night) On or Off for TGW attachments.
Save your changes.

Audit settings apply to all AWS TGW attachments.

Edit AWS TGW

To edit an existing AWS TGW:

Go to Networking > Connectivity > AWS TGW.
Locate the AWS TGW in the table and click the Edit button.
Update the desired parameters.
Save your changes.

Changes take effect after saving.

Delete AWS TGW

To delete an AWS TGW:

Go to Networking > Connectivity > AWS TGW.
Locate the AWS TGW in the table and click the Delete button.
Confirm the deletion.

The AWS TGW is removed from the table.

Audit AWS TGW

To audit an AWS TGW:

Go to Networking > Connectivity > AWS TGW.
Locate the AWS TGW in the table and click the Actions button.
Select Audit to run the TGW attachment audit.

The audit results are displayed.

View TGW Routes

To view TGW routes:

Go to Networking > Connectivity > AWS TGW.
Locate the AWS TGW in the table and click the Actions button.
Select View TGW routes.

The TGW routes are displayed.

Purpose

The Native Peering page manages native cloud VPC or VNet peering connections to enable direct connectivity without using Transit Gateways.

Elements

+ Native Peering button: Starts the workflow to create a new native peering connection.
Native Peering table: Displays the list of existing native peering connections and their details.
Delete button: Removes an existing native peering connection from the table.

Actions

Create Native Peering

To create a native peering connection:

Go to Networking > Connectivity > Native Peering.
Click + Native Peering.
Configure the peering parameters (VPC/VNet pairs, regions, accounts, and CIDR blocks).
Save the configuration.

The new native peering connection appears in the Native Peering table.

Parameter Details

Sl. No.	CoPilot parameter name	Description
1	Name	Name of the native peering connection.
2	VPC/VNet 1	First VPC or VNet in the peering connection.
3	VPC/VNet 1 CIDR	CIDR block of the first VPC or VNet.
4	Region 1	Cloud region of the first VPC or VNet.
5	Account 1	Cloud account that owns the first VPC or VNet.
6	VPC/VNet 2	Second VPC or VNet in the peering connection.
7	VPC/VNet 2 CIDR	CIDR block of the second VPC or VNet.
8	Region 2	Cloud region of the second VPC or VNet.
9	Account 2	Cloud account that owns the second VPC or VNet.

Delete Native Peering

To delete a native peering connection:

Go to Networking > Connectivity > Native Peering.
Locate the connection in the Native Peering table and click the Delete button.
Confirm the deletion.

The native peering connection is removed from the table.

Purpose

The External CA Certificates page manages external certificate authority certificates used to authenticate and secure Aviatrix connections.

Elements

+ Certificate button: Starts the workflow to add a new external CA certificate.
Download Aviatrix CA Certificate button: Downloads the Aviatrix CA certificate for external use.
External CA Certificates table: Displays the list of existing external CA certificates and their details.
Delete button: Removes an existing external CA certificate from the table.

Actions

Add External CA Certificate

To add an external CA certificate:

Go to Networking > Connectivity > External CA Certificates.
Click + Certificate.
Upload or configure the certificate and enter the required details.
Save the certificate.

The new certificate appears in the External CA Certificates table.

Parameter Details

Sl. No.	CoPilot parameter name	Description
1	Name	Name assigned to the external CA certificate.
2	Unique Serial	Unique serial number of the certificate.
3	Issuer Name	Certificate authority that issued the certificate.
4	Common Name	Common name defined in the certificate.
5	Expiration	Date and time when the certificate expires.

Download Aviatrix CA Certificate

To download the Aviatrix CA certificate for external use:

Go to Networking > Connectivity > External CA Certificates.
Click Download Aviatrix CA Certificate.

The Aviatrix CA certificate is downloaded for external use.

Delete External CA Certificate

To delete an external CA certificate:

Go to Networking > Connectivity > External CA Certificates.
Locate the certificate in the External CA Certificates table and click the Delete button.
Confirm the deletion.

The certificate is removed from the table.

Concepts & Architecture

Guides

Reference

Purpose

Elements

Actions

Parameter Details

Purpose

Elements

Actions

Parameter Details

Purpose

Elements

Actions

Parameter Details

Purpose

Elements

Actions

Parameter Details

Concepts & Architecture

Guides

Reference

​Purpose

​Elements

​Actions

​Parameter Details

​Purpose

​Elements

​Actions

​Parameter Details

​Purpose

​Elements

​Actions

​Parameter Details

​Purpose

​Elements

​Actions

​Parameter Details

Purpose

Elements

Actions

Parameter Details

Purpose

Elements

Actions

Parameter Details

Purpose

Elements

Actions

Parameter Details

Purpose

Elements

Actions

Parameter Details