# VPN Setup with AWS 1\. Login to the Monogoto portal and go to ***Network.*** 2\. Edit your **“vpneu.mono”** network (EU zone) or **"vpnus.mono"** network (US zone). ![](/files/wGTI1Sg2RiBxxsrAJJ9a) 3\. Go to **Routes** and copy Gateway IP. ![](/files/jKgDfRzfinCup6QEcN3k) 4\. Login to your AWS VPC and create new ***Customer Gateway.*** ![](/files/-MYu3Z631OyxldOzqa90) 5\. Enter the **Gateway IP** from step #3 in the **IP Addres**s field. ![](/files/-MYu4_OB5Xi5vaxINazj) 6\. Create a ***Virtual Private Gateway***. ![](/files/-MYu4wpy3gdisHzziIbB) 7\. To attach the **Virtual Private Gateway** to your VPC, make sure it is selected, and under **“Actions”** select ***Attach to VPC***. In the next screen, select the appropriate VPC from the pulldown. ![](/files/-MYu7RHpZic7c1JPj3Gs) ![](/files/-MYu8LRq3e_DXH4zFXkq) 8\. Go to **Site-to-Site VPN Connections** and select **Create VPN Connection**. ![](/files/-MYu9AgZvz6MymWjOvF6) 9\. For **Virtual Private Gateway**, select the Virtual Private Gateway created in step #6. For **Customer Gateway ID**, select the Customer Gateway created in step #4. ![](/files/-MYu9QIwv0j4Y7lgBgjw) 10\. For **Routing Options**, select **Static** and enter two rules: one with your AWS VPC CIDR block, and the other with the Monogoto IP pool CIDR block. ![](/files/-MYuA2pcOmmQN46AJn9E) 11\. In the Monogoto portal, go to the **Network -> VPN** section, and select ***Add New***. ![](/files/SBgXAamg072ntJzPApRB) ![](/files/qvySgkwc0GoSgm9M0btM) Enter a **VPN Name** of your choice. For **Destination IP Address**, enter the **outside IP address** of **Tunnel 1** of the AWS VPN. ![](/files/-MYuCmGCr9dPnnXa3kR-) For **Destination Network**, enter the VPC’s IPv4 CIDR block. For **Pool Name**, select your Monogoto IP address pool. ![](/files/38omxcpplaNkWT7SQTmn) When you are done, click **Save & Close**, and **Apply Settings**. 12\. Go back to the **VPN** section and press the ***Download VPN Config*** button. Copy the “**Pre-Shared Key**” from the downloaded config file. 13\. In AWS, go back to the **Site-to-Site Connection** you made earlier, and click **Actions -> Modify VPN Tunnel Options**. ![](/files/-MYuHQwPt0x6gpPc-xX9) 14\. Select the **VPN Tunnel Outside IP Address** you used to create the Monogoto side of the VPN (in step #11), and paste the **Pre-Shared Key** copied from the **VPN Config**. Click **save**. ![](/files/-MYuI5P9nQSTRD3VL415) 15\. Go to your VPC’s **Route Table** and edit **Route Propagation**. ![](/files/-MYuJjKCixSTfy0U_tYM) 16\. Make sure **Propagate** is checked for your **Virtual Private Gateway** and click **Save**. 17\. Make sure you add the **Monogoto IP Poo**l to all relevant **Security Groups**. That’s all – the VPN tunnel should now be connected. --- # Agent Instructions: Querying This Documentation If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question. Perform an HTTP GET request on the current page URL with the `ask` query parameter: ``` GET https://docs.monogoto.io/advanced-console/platform/vpn-setup-examples/vpn-setup-to-3rd-party-aws-account-1.md?ask= ``` The question should be specific, self-contained, and written in natural language. The response will contain a direct answer to the question and relevant excerpts and sources from the documentation. Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.