AWS - Palo ALto IPSEC or AWS native IPSEC?

Showing results for 
Show  only  | Search instead for 
Did you mean: 

AWS - Palo ALto IPSEC or AWS native IPSEC?

L3 Networker

AWS - Palo ALto IPSEC or AWS native IPSEC?

Which is better any why? 





L5 Sessionator

The all depends on what type of design and throughput you are looking for?

For example if you use AWS Native IPsec then you will need to setup a VGW which has a limit of 1.25 Gbps throughput

if you setup VM-Series to Device your limit is only the bandwidth and the performance capabilities of the devices you are using for VPN. That will probably be the main thing to consider but I am sure there is more. 

The AWS VGW limit is 1.25Gbps not Mbps

@jperry1 wouldn't VM-Series to Device be slower...even if I take the VM with higest resources?



It depends on the size VM-Series you use but certain VM-series devices will give you over 2GB throughput on IPSec. At that point you are at the mercy of your Internet speed. 

Like what you see?

Show your appreciation!

Click Like if a post is helpful to you or if you just want to show your support.

Click Accept as Solution to acknowledge that the answer to your question has been provided.

The button appears next to the replies on topics you’ve started. The member who gave the solution and all future visitors to this topic will appreciate it!

These simple actions take just seconds of your time, but go a long way in showing appreciation for community members and the LIVEcommunity as a whole!

The LIVEcommunity thanks you for your participation!