Configuring AWS TGW Edge Segmentation

  1. After creating your AWS TGW, connect it to an existing AWS Transit Gateway:

    1. Go to Networking > Connectivity > AWS TGW.

    2. Click the desired AWS TGW in the list.

    3. On the Attachments tab, attach a Transit Gateway.

  2. Create an external connection. Go to Networking > Connectivity > External Connections.

    1. Click +External Connection.

  3. Use the information in External Device Settings to configure and save your external connection:

    • Connect Public Cloud to: External Device > BGP over IPsec

    • Local Gateway: Select a Transit Gateway previously connected to an AWS TGW.

    • Local ASN: The ASN of the BGP device on your side of the connection.

    • Remote ASN: The ASN of the BGP peer or neighbor to which your BGP router is establishing a connection.

  4. To set up AWS TGW Edge Segmentation:

    1. Go to Cloud Fabric > Gateways > Transit Gateways and click the Transit Gateway that you previously attached to the AWS TGW.

    2. On the Settings tab, under CSP Related Settings, select the external connection you created from the AWS TGW Edge Segmentation Connection drop-down.

    3. Toggle Enabled to On.

  5. To ensure that the domains in the AWS TGW and the selected Transit Gateway can communicate with each other:

    1. Go to Network > Connectivity > AWS TGW and select the AWS TGW where the Transit Gateway was attached and that now has an external connection.

    2. On the Connection Policies tab, change the Connection Policy to Connected for the external connection you created (now prefixed with Aviatrix_Edge_Domain).