AWS

Internet User

Cornell network

Cornell Private Network

Cornell Public Network

Private Subnet

10.92.105.0/24

Public Subnet

10.92.104.0/24

Direct Connect

Service

B

Client 1

Client 2

private IP: 10.92.105.100

private IP: 10.92.104.200

public EIP: 55.44.33.22

Client 3

10.92.104.200 &

10.92.105.100

cannot be directly contacted without VPN

10.92.104.200 &

10.92.105.100

cannot be directly contacted without VPN

Virtual

Private

Gateway

(VGW)

55.44.33.22 cannot be directly contacted without NAT

Route Table 10.92.105.0/24

Destination Next Hop

10.92.104.0/23 VPC Local

10.0.0.0/8 VGW

10.92.104.0/23

Route Table 10.92.104.0/24

Destination Next Hop

10.92.104.0/23 VPC Local

10.0.0.0/8 VGW

0.0.0.0/0 IGW

Service

A

Direct Connect Routing

From AWS To AWS

10.0.0.0/8 10.92.104.0/23

Internet

Gateway

(IGW)

Public

Internet

campus

routing