Securely gain access to your cloud resources using a Site-to-Site VPN IP Security (IPSec) setup or via a Client VPN Transport Layer Security (TLS) tunnel.
Nobus Site-to-Site VPN extends your data center or branch office to the cloud via IP Security (IPSec) tunnels, and supports connecting to both virtual private gateway and Nobus Transit Gateway. You can optionally run Border Gateway Protocol (BGP) over the IPSec tunnel for a highly available solution.
Nobus Site-to-Site VPN creates IPSec tunnels to a virtual gateway or Nobus Transit Gateway. Traffic in the tunnel between these endpoints can be encrypted with AES128 or AES256 and use Diffie-Hellman groups for key exchange, providing Perfect Forward Secrecy. Nobus Site-to-Site VPN will authenticate with SHA1 or SHA2 hashing functions.
With Nobus Site-to-Site VPN you can create failover and CloudHub solutions with Nobus Direct Connect. CloudHub enables your remote sites to communicate with each other, and not just with the VPC. It operates on a simple hub-and-spoke model that you can use with or without a VPC. This design is suitable for customers with multiple branch offices and existing internet connections who would like to implement a convenient, potentially low-cost hub-and-spoke model for primary or backup connectivity between these remote offices.
Nobus Site-to-Site VPN offers customizable tunnel options including inside tunnel IP address, pre-shared key, and Border Gateway Protocol Autonomous System Number (BGP ASN). In this way, you can set up multiple secure VPN tunnels to increase the bandwidth for your applications or for resiliency in case of a down time. In addition, equal-cost multi-path routing (ECMP) is available with Nobus Site-to-Site VPN on Nobus Transit Gateway to help increase the traffic bandwidth over multiple paths.
Nobus Site-to-Site VPN supports NAT Traversal applications so that you can use private IP addresses on private networks behind routers with a single public IP address facing the internet.