Connect On-Prem to AWS VPC (FULL VPN + BGP Lab – Real World)
⏱ Timestamps
00:00 Intro – What You’ll Learn (AWS VPC + On-Prem Connection)
00:49 Tunnel Verification Preview (Live Demo)
01:04 Channel Introduction & Credentials
02:21 Lab Overview – Getting Started
02:24 Configure Subnets (Enable Auto Public IP)
03:26 Configure Second Public Subnet
03:55 Enable DNS in VPC
04:29 AWS Subnet IP Explained (Why 251 IPs)
05:31 On-Prem vs AWS IP Addressing
06:32 Reserved AWS IP Addresses Explained
08:13 Launch EC2 Instance (AWS Server Setup)
10:00 Configure Network Settings (VPC, Subnet, Security Group)
11:39 Instance Initialization & Connection
12:50 Security Group Configuration (Allow Traffic)
15:27 Verify EC2 Private IP & Routing
16:38 AWS Routing & Gateway Explanation
17:42 VMware NAT & Local Lab Network Explained
19:33 Transition to VPN Configuration
20:00 AWS VPN Setup Overview
20:31 Create Customer Gateway (On-Prem Side)
23:25 Create Virtual Private Gateway (AWS Side)
24:40 Enable Route Propagation
25:31 Create Site-to-Site VPN Connection
27:09 Download VPN Configuration (Cisco)
29 Fix VPN Tunnel (Critical Config) IPSec Phase 1 & 2)
31:36 Apply Crypto & Security Settings
35:36 Configure Pre-Shared Key & DPD
36:22 Configure Tunnel Interface
37:14 Verify Tunnel Status (UP)
37:31 Configure BGP Routing
38:46 Network Aggregation Strategy (/20 Explained)
43:33 Apply BGP Network & Aggregation
44:17 Verify BGP Summary & Routes
45:46 Confirm Tunnel UP in AWS Console
46:14 Verify Route Tables (AWS Side)
47:39 Verify IPSec Status (Phase 1 & 2)
48:27 Test Connectivity (Ping AWS ↔ On-Prem)
49:25 Verify BGP Advertised Routes
50:23 Advanced Testing (Loopback Simulation)
52:52 Validate Aggregation Range
54:55 Test Out-of-Range Traffic (Failure Case)
55:27 Configure Second Tunnel (Redundancy)
58:40 Verify Dual BGP Neighbors
59:17 Confirm Both Tunnels UP
01:00:02 IPSec & Encryption Verification
01:01:01 Prove VPN is Working (Real Test)
01:02:43 Fix Issue (Enable ICMP in Security Group)
01:04:04 Final Verification (Successful Ping)
01:04:21 Confirm Tunnel & BGP Redundancy
01:05:01 Final Route Table Check
01:06:09 Conclusion & Key Takeaways
In this video, you’ll learn how to connect your on-prem network to an AWS VPC using a Site-to-Site VPN with BGP — step by step using real-world configurations.
This is not just theory. You’ll see how network engineers actually deploy, troubleshoot, and verify VPN tunnels in production environments.
This is Part 3 Of the hybrid cloud networking series
• AWS Site-to-Site VPN with BGP: Connecting ... Part 2
• On-Prem to AWS VPC Connection (Real Lab Wa... Part 1
🚀 What you’ll learn:
How to build a custom AWS VPC from scratch
Configure Site-to-Site VPN (IPSec)
Set up and understand BGP routing
Verify tunnel status and troubleshoot issues
Perform real connectivity tests (AWS ↔ On-Prem)
Understand AWS reserved IP addresses and subnet behavior
💡 This video is perfect for:
Network Engineers (CCNA / CCNP / CCIE)
Cloud Engineers (AWS / Azure)
DevOps Engineers working with hybrid cloud
Anyone preparing for real-world networking jobs
🛠️ Tools used:
AWS (Free Tier)
Cisco Firewall / Router
VMware Workstation (Lab Environment)
📌 Key Topics:
AWS VPC, Site-to-Site VPN, BGP, IPSec, Hybrid Cloud Networking, Route Tables, Troubleshooting VPN
👍 If you found this helpful, like, subscribe, and share.
#AWS #Networking #BGP #VPN #CloudComputing #AWSTutorial #NetworkEngineer
📌 Series Playlist:
https:/ / @networkreggie
👍 Don’t forget to like and subscribe for more real-world cloud and networking tutorials.