Hi, I need to create a VPN to allow any employee to connect to our ERP server that is located in our office. I check services like nordlayer but it’s kind of expensive, because we only need it about 3-4 hours per week.
Someone know if this is actually possible, to to this with AWS VPN? I saw that you pay per hour of connection and GB transferred
Note: I can’t use a service like no-ip or connect direct with the IP because our router doesn’t let me to open the required ports
Ready-made solutions built for this would be those the likes of Tailscale, ZeroTier, Cloudflare WARP.
A roll-your-own soln would be as you think - have your office connect ‘out’ to a VPS on which you’re running a VPN server, have users also connect to this same VPN server and make sure the VPS is routing traffic between them and your coporate subnet(s).
You can setup a tailscale on your office machines. The easiest and fastest solution.
AWS client VPN is annoyingly (and opaquely) expensive so would avoid that. Lots of low cost/free options Pritunl, OpenVPN (has cloud offering), Twingate, Cloudflare
I use Pritunl. Very simple to install and manage. And its free
Why do you think AWS will be able to help if you want your employees to connect to your office?
You will need to connect your office to AWS as an EC2 instance in this case.
This can be done using openvpn or other vpn solution.
In this case the vpn server will need to be in AWS and the clients will be your employees and the office network that has to be accessed. Then allow traffic between the two.
There will be other solutions too.
If you use both services services under the aws vpn umbrella in the right way: yes. Or you could roll your own solution in a ec2 instance.
- site2site vpn: IPsec connection from your on-premise server to an aws vpc.
- client vpn: openvpn connections from employees to the same aws vpc.
I install zerotier and works perfectly