# VPN Setup with AWS 1\. Login to the Monogoto portal and go to ***Network.*** 2\. Edit your **“vpneu.mono”** network (EU zone) or **"vpnus.mono"** network (US zone). ![](https://3922449203-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2F-M0mPxGpottOEfcucXOR%2Fuploads%2FdA3EGafJDLFbxz6tDXxz%2F1.png?alt=media\&token=01b5fd6f-ad87-4ece-81b7-64993ade7130) 3\. Go to **Routes** and copy Gateway IP. ![](https://3922449203-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2F-M0mPxGpottOEfcucXOR%2Fuploads%2FaWR4bW300Zl2QngaSyjw%2FVpn_Routes.png?alt=media\&token=1eb125fc-72df-496d-9900-1a48fabc753b) 4\. Login to your AWS VPC and create new ***Customer Gateway.*** ![](https://3922449203-files.gitbook.io/~/files/v0/b/gitbook-legacy-files/o/assets%2F-M0mPxGpottOEfcucXOR%2F-MYu1IIYS0r3W5GVTZ5u%2F-MYu3Z631OyxldOzqa90%2F3.png?alt=media\&token=acab74aa-e6a4-444c-9489-c69c81412487) 5\. Enter the **Gateway IP** from step #3 in the **IP Addres**s field. ![](https://3922449203-files.gitbook.io/~/files/v0/b/gitbook-legacy-files/o/assets%2F-M0mPxGpottOEfcucXOR%2F-MYu1IIYS0r3W5GVTZ5u%2F-MYu4_OB5Xi5vaxINazj%2F4.png?alt=media\&token=bb237944-7035-4a89-8177-cb3f8d4c0d5f) 6\. Create a ***Virtual Private Gateway***. ![](https://3922449203-files.gitbook.io/~/files/v0/b/gitbook-legacy-files/o/assets%2F-M0mPxGpottOEfcucXOR%2F-MYu1IIYS0r3W5GVTZ5u%2F-MYu4wpy3gdisHzziIbB%2F5.png?alt=media\&token=203eabad-8ed0-4a76-b814-6c9364beb8df) 7\. To attach the **Virtual Private Gateway** to your VPC, make sure it is selected, and under **“Actions”** select ***Attach to VPC***. In the next screen, select the appropriate VPC from the pulldown. ![](https://3922449203-files.gitbook.io/~/files/v0/b/gitbook-legacy-files/o/assets%2F-M0mPxGpottOEfcucXOR%2F-MYu1IIYS0r3W5GVTZ5u%2F-MYu7RHpZic7c1JPj3Gs%2F6.png?alt=media\&token=44718a74-765f-4788-bd47-073e216bdb3c) ![](https://3922449203-files.gitbook.io/~/files/v0/b/gitbook-legacy-files/o/assets%2F-M0mPxGpottOEfcucXOR%2F-MYu1IIYS0r3W5GVTZ5u%2F-MYu8LRq3e_DXH4zFXkq%2F7.png?alt=media\&token=83292747-8c14-49dc-9ea9-bde0ef38d71d) 8\. Go to **Site-to-Site VPN Connections** and select **Create VPN Connection**. ![](https://3922449203-files.gitbook.io/~/files/v0/b/gitbook-legacy-files/o/assets%2F-M0mPxGpottOEfcucXOR%2F-MYu1IIYS0r3W5GVTZ5u%2F-MYu9AgZvz6MymWjOvF6%2F8.png?alt=media\&token=20cef2cb-b33e-4a47-9066-3673b6609d7f) 9\. For **Virtual Private Gateway**, select the Virtual Private Gateway created in step #6. For **Customer Gateway ID**, select the Customer Gateway created in step #4. ![](https://3922449203-files.gitbook.io/~/files/v0/b/gitbook-legacy-files/o/assets%2F-M0mPxGpottOEfcucXOR%2F-MYu1IIYS0r3W5GVTZ5u%2F-MYu9QIwv0j4Y7lgBgjw%2F9.png?alt=media\&token=a8994999-bf01-495b-8e99-48a1afefb93e) 10\. For **Routing Options**, select **Static** and enter two rules: one with your AWS VPC CIDR block, and the other with the Monogoto IP pool CIDR block. ![](https://3922449203-files.gitbook.io/~/files/v0/b/gitbook-legacy-files/o/assets%2F-M0mPxGpottOEfcucXOR%2F-MYu1IIYS0r3W5GVTZ5u%2F-MYuA2pcOmmQN46AJn9E%2F10.png?alt=media\&token=007bedbf-b791-4f3c-a482-147f011df996) 11\. In the Monogoto portal, go to the **Network -> VPN** section, and select ***Add New***. ![](https://3922449203-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2F-M0mPxGpottOEfcucXOR%2Fuploads%2FjEvSfHcFPFtwgvaQyuiX%2F3.PNG?alt=media\&token=e852e8bd-2985-4acf-8ec4-c7f3f9a10765) ![](https://3922449203-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2F-M0mPxGpottOEfcucXOR%2Fuploads%2Ft95swW3oQNks3qW3zZpP%2F4.PNG?alt=media\&token=e2bc073b-c9dc-4dc5-a46a-cb612de239d9) Enter a **VPN Name** of your choice. For **Destination IP Address**, enter the **outside IP address** of **Tunnel 1** of the AWS VPN. ![](https://3922449203-files.gitbook.io/~/files/v0/b/gitbook-legacy-files/o/assets%2F-M0mPxGpottOEfcucXOR%2F-MYu1IIYS0r3W5GVTZ5u%2F-MYuCmGCr9dPnnXa3kR-%2F11.2.png?alt=media\&token=e47ab39b-95fd-4fb3-9bc5-ea583d2231f8) For **Destination Network**, enter the VPC’s IPv4 CIDR block. For **Pool Name**, select your Monogoto IP address pool. ![](https://3922449203-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2F-M0mPxGpottOEfcucXOR%2Fuploads%2F4ssIc0zdXpfpCffZKMQ0%2F5.PNG?alt=media\&token=c94680f2-6770-444a-a2a1-94161f21f532) When you are done, click **Save & Close**, and **Apply Settings**. 12\. Go back to the **VPN** section and press the ***Download VPN Config*** button. Copy the “**Pre-Shared Key**” from the downloaded config file. 13\. In AWS, go back to the **Site-to-Site Connection** you made earlier, and click **Actions -> Modify VPN Tunnel Options**. ![](https://3922449203-files.gitbook.io/~/files/v0/b/gitbook-legacy-files/o/assets%2F-M0mPxGpottOEfcucXOR%2F-MYu1IIYS0r3W5GVTZ5u%2F-MYuHQwPt0x6gpPc-xX9%2F13.png?alt=media\&token=c0a0e51a-1708-4d7a-80ae-2a5ef1513e3a) 14\. Select the **VPN Tunnel Outside IP Address** you used to create the Monogoto side of the VPN (in step #11), and paste the **Pre-Shared Key** copied from the **VPN Config**. Click **save**. ![](https://3922449203-files.gitbook.io/~/files/v0/b/gitbook-legacy-files/o/assets%2F-M0mPxGpottOEfcucXOR%2F-MYu1IIYS0r3W5GVTZ5u%2F-MYuI5P9nQSTRD3VL415%2F14.png?alt=media\&token=4db4470d-82c3-478f-865f-220000054f20) 15\. Go to your VPC’s **Route Table** and edit **Route Propagation**. ![](https://3922449203-files.gitbook.io/~/files/v0/b/gitbook-legacy-files/o/assets%2F-M0mPxGpottOEfcucXOR%2F-MYu1IIYS0r3W5GVTZ5u%2F-MYuJjKCixSTfy0U_tYM%2F16.png?alt=media\&token=9d76051c-f525-4446-b3ed-eca8c822366b) 16\. Make sure **Propagate** is checked for your **Virtual Private Gateway** and click **Save**. 17\. Make sure you add the **Monogoto IP Poo**l to all relevant **Security Groups**. That’s all – the VPN tunnel should now be connected.