Configure Cloud Access with AWS

• Ordering: External Cloud Access
• Under VPN > Add External Cloud Access you can connect a public cloud directly to Enterprise Connect.

Prerequisites

---

• Make sure you know your IP concept. If you do not have an IP concept, Swisscom will be happy to support you in creating one: Swisscom Cloud Data Center - Professional Services
• You have already configured a Global Range: Global Ranges, Grey Ranges and Templates
• If you want to access the cloud from one of your locations, you need to order and configure it first: Configure EC-XS/S Configure EC-M/L

Amazon Web Services (AWS): Direct Connect

---

• You can connect an AWS Direct Connect directly to Enterprise Connect
• To do this, you must first select the commercial External Cloud Access order/remove
• A few minutes after ordering, you can perform the technical configuration.
• Please read in the AWS documents what you need to configure to configure an AWS Direct Connect. Note: AWS Direct Connect must specify Equinix as the provider.

1. Under VPN > select Add External Cloud Access

2. Select the instance that you ordered in Order Management.

   • The information you provided in Order Management is displayed here.
   • You can configure the Metro where you have your AWS Cloud instance.

3. Enter your AWS account and the Direct Connect Gateway Amazon Side ASN on your Direct Connect page (default: 64512)

   • Then enter one or more IP subnets in the External Subnets tab, which you want to make accessible in your AWS Cloud.
   • In the Advertised Subnets tab, you specify the IP subnets that you want to make accessible from AWS. Note: If you want to route all traffic from the AWS Cloud to Enterprise Connect, e.g. to also use AWS to travel to the Internet, via the Central Firewall, you can configure the default route 0.0.0.0/0 here.
   • If you have all configured this information, you can send this order via the shopping cart.
   • Execution takes a few minutes.
   • Then, vpn displays an External Cloud Access (ECA) tile with the name as it was determined in Order Management.

4. Make a note of the following information:

   • BGP ASN (5 digits)
   • Router peer IP addresses (primary and secondary)
   • Amazon router peer IP addresses (primary and secondary)
   • BGP Authentication Key

5. Now configure your AWS Cloud on the AWS Management Console (using the information you noted earlier). Cloud-to-Cloud)