Skip to main content
Tech Radar
  • Tech Radar Pro
  • Tech Radar Gaming
Tech Radar Pro TechRadar IT Insights for Business
Subscribe
RSS
Asia
flag of Singapore
Singapore
Europe
flag of Danmark
Danmark
flag of Suomi
Suomi
flag of Norge
Norge
flag of Sverige
Sverige
flag of UK
UK
flag of Italia
Italia
flag of Nederland
Nederland
flag of België (Nederlands)
België (Nederlands)
flag of France
France
flag of Deutschland
Deutschland
flag of España
España
North America
flag of US (English)
US (English)
flag of Canada
Canada
flag of México
México
Australasia
flag of Australia
Australia
flag of New Zealand
New Zealand
Technology Magazines
Technology Magazines
Why subscribe?
  • The best tech tutorials and in-depth reviews
  • Try a single issue or save on a subscription
  • Issues delivered straight to your door or device
From$12.99
View
  • News
  • Reviews
  • Features
  • Expert Insights
  • Website builders
  • Web hosting
  • Security
Trending
  • Best standing desk deals
  • Best cloud storage 2023
  • What is Microsoft Teams?
  • Expert Insights

When you purchase through links on our site, we may earn an affiliate commission. Here’s how it works.

  1. Home
  2. Features
  3. Pro
Supported

What is AWS VPN, and how does it work?

By Serguei Solokhine
published 8 August 2022

Affordable, scalable Site-to-Site and Client VPN

Illustration of the letters VPN surrounded by people, devices and padlocks
(Image credit: Shutterstock)

Amazon Web Services (AWS) offers Site-to-Site and client VPN services. Client VPN is a form of remote VPN service, while Site-to-Site is a form of cloud VPN. Confused? Read our comparison piece Remote VPN vs cloud VPN for a refresher on these two VPN types.

AWS VPN encrypts network communications, making it harder for hackers to access sensitive emails, customer information, and other confidential data. In this article, we’ll explore the use cases for Site-to-Site and client VPN, and discuss unique features, pricing, and support options.

Perimeter 81 is the best business VPN

Perimeter 81 is the best business VPN

Save 250+ yearly hours on manual configuration. Deploy your entire organization within a single day. Learn why Perimeter 81 is TechRadar's choice for the best Business VPN. Ditch legacy hardware and make the move to the cloud. See how simple it is for yourself.

View Deal

Do I need Site-to-Site or client VPN?

In a business context, AWS Client VPN creates temporary, secure communication tunnels between your corporate server and your employees’ devices. The tunnels are temporary, since they disappear when an employee logs off, and reappear when they log back on. With client VPN, when an employee logs on to the company network from home, or pulls it up on their mobile device, any information exchanged between the employee’s device and your corporate network is secure.

You can use AWS Site-to-Site VPN to encrypt communication between two or more large corporate networks, such as a satellite office and head office. Site-to-Site VPN creates a permanent, high-capacity secure tunnel where an Amazon VPN gateway encrypts all communication. These permanent tunnels are more costly than the temporary ones set up by client VPN, but they transfer large volumes of data more efficiently.

Which product makes sense for you depends on your VPN needs. To secure internal communication between multiple, geographically distant networks, you need Site-to-Site VPN. If you require secure remote access for employees, you will need client VPN. It’s not uncommon for businesses to use both.

Why choose AWS VPN?

There are many cloud and remote VPN solutions, such as Perimeter 81 and NordLayer, so let’s look at what makes AWS VPN stand out. If you want to learn more about these providers, see our Perimeter 81 Review and NordLayer Review. 

On the remote VPN side, AWS VPN provides a unique, cloud-based model. Typically, you must install a VPN client on your corporate server to set up remote VPN. The remote VPN relies on the computing power of your server, and of your employees’ devices, to help encrypt communications. This can cause slowdowns in your system, and places an upper limit on the number of remote employees you can have logged on at any one time.

With AWS Client VPN, there’s no client to install. Instead, everything remains in Amazon’s cloud, significantly reducing the computation strain on your system. This translates to a faster system with fewer slowdowns and crashes for remote employees.

AWS Site-to-Site VPN’s main advantage is integration with other AWS services. Firstly, being an AWS service, it benefits from the AWS Global Accelerator. This accelerates your system’s performance by up to 60%, which is particularly noticeable for long-range communications. You can also control and troubleshoot your Site-to-Site VPN connection directly from your AWS management console.

Regardless of which VPN you choose, your data is secure. AWS VPN products use AES-256-bit encryption, the same standard used by the US government and military.

How much does AWS VPN cost?

Client VPN and Site-to-Site VPN follow different pricing models. The pricing system for both products is straightforward compared to competing brands. There are no pricing tiers, and no limit to the number of connected users.

Client VPN has two charges: $0.10 per hour for an endpoint association, and $0.05 per client per hour for client (employee) connections. To begin, you create an endpoint and associate subnets, or IP addresses, with it. This is all a bit technical, so to keep things simple, think of the endpoint as your corporate network. Remote employees will connect to this endpoint to access their apps for work. The endpoint is always active, and the base rate for one endpoint is $0.10 per hour.

When employees connect to the VPN to begin working, AWS Cloud VPN will bill you $0.05 per client per hour. So, if 10 employees connect and work for an hour, your total cost for that hour will be:

$0.05 x 10 = $0.50

Endpoint = $0.10

Total = $0.50 + $0.10 = $0.60

Pricing is simple and consistent, whether you’re a small business with a few remote workers or a major corporation employing thousands of people.

Note that the above values used data from AWS US East (Ohio), which covers connections in the entire Eastern US. A quick check of other regions indicated that pricing is similar anywhere in the world at the time of writing, but regional pricing is subject to change at any time.

Billing for Site-to-Site VPN is a little different. There are two fees: A connection fee for every Site-to-Site connection, and a data transfer fee. The connection fee for US East (Ohio) is $0.05/hour, and fees vary by region. Transferring the first 100GB of data is free. Subsequently, data transfer follows an on-demand pricing model. The higher the demand for Amazon’s services in that hour, the more expensive the data transfer will be. Transferring data during off-hours is therefore cheaper. You can check the current on-demand pricing for all regions on Amazon’s EC2 On-Demand Pricing page.

For both client and Site-to-Site VPN, AWS billing is monthly and is drawn on the 1st of each month.

What customer support does AWS VPN offer?

Amazon AWS requires a high degree of technical knowledge to set up and run. Although its solutions are often simpler than competing products from a technical standpoint, there is little built-in support. You will need to purchase one of Amazon’s Premium Support Packages or hire an in-house AWS specialist. The best option will depend on your own technical experience with AWS, and your budget. Note that AWS support isn’t limited to AWS VPN, and provides support for all products in the AWS suite.

Conclusion

Implementing any of Amazon’s IaaS (infrastructure as a service) solutions can be a complex but rewarding task, and AWS VPN is no exception. Amazon has two business VPN products: AWS Client VPN, which allows employees to securely connect to your company server when working remotely, and AWS Site-to-Site VPN, which enables two geographically distant corporate networks to communicate securely with each other. 

Both systems use military grade encryption to conceal data, and use scalable, per-hour pricing without complex price tiers. If you need a powerful, flexible IaaS VPN, consider AWS. To learn more about business VPN, see our list of the best business VPNs, and our picks for the best VPN service overall.

TechRadar created this content as part of a paid partnership with Perimeter 81. The contents of this article are entirely independent and solely reflect the editorial opinion of TechRadar.

Are you a pro? Subscribe to our newsletter

Sign up to the TechRadar Pro newsletter to get all the top news, opinion, features and guidance your business needs to succeed!

By submitting your information you agree to the Terms & Conditions and Privacy Policy and are aged 16 or over.
Serguei Solokhine
Social Links Navigation

Serguei holds degrees in finance and marketing from York University, and brings more than five years of professional experience at their intersection to his writing. His previous roles as a finance advisor involved breaking down and explaining complex concepts in everyday terms, a talent he now brings to his work as a freelance writer.

More about pro
Microsoft head quarters in France

Microsoft reveals Azure Linux is available now

Nvidia Spectrum-4 switch

Nvidia reveals a whole new kind of Ethernet for generative AI

Latest
Good morning, New Donk City.

Nintendo explains the decision behind blocking release of Dolphin emulator

See more latest ►
Most Popular
5 (more) upgrades we want to see from the Apple TV 4K

By Al GriffinMay 27, 2023

Hello Neighbor VR is terrifyingly fun: the VR games and apps I played in May 2023

By Hamish HectorMay 27, 2023

6 key reasons why you should update your earbuds in the Memorial Day sales

By Becky ScarrottMay 27, 2023

I made crispy air fryer chickpeas and it's made snacking healthy

By Victoria WoollastonMay 27, 2023

Every Disney live-action movie remake ranked, from worst to best

By Tom PowerMay 27, 2023

Amazon's Astro might not save your smart home, but it'll be your new best friend

By Josephine WatsonMay 27, 2023

Leaving Netflix in June – catch these top TV shows and movies before they go

By Amelia SchwankeMay 27, 2023

Framework could explore modular smartphones and more, hints CEO

By Desire AthowMay 27, 2023

Should you buy a Google Pixel Fold or wait for the Samsung Galaxy Z Fold 5?

By James RogersonMay 27, 2023

5 things I want to see on the rumored MacBook Air

By Michelle Rae UyMay 27, 2023

Turkey elections: will the internet withstand the final round?

By Chiara CastroMay 26, 2023

  1. A man sitting in front of his laptop with his hands outstretched and a big smile on his face.
    1
    Microsoft is finally introducing the feature that’ll make me upgrade to Windows 11
  2. 2
    Windows 11 Moment 3 update is packed with cool features – here are 5
  3. 3
    I tried smart AR running sunglasses that show me a heads-up-display like Iron Man
  4. 4
    Don’t panic: there’s a reason your iPhone’s battery is draining faster than usual
  5. 5
    The Netflix password-sharing crackdown hurts single parents like me
  1. A young AI-created humanoid touches a robot in The Creator
    1
    The Creator looks like The Last of Us, Terminator, and Star Wars rolled into one
  2. 2
    Don’t panic: there’s a reason your iPhone’s battery is draining faster than usual
  3. 3
    I tried smart AR running sunglasses that show me a heads-up-display like Iron Man
  4. 4
    5 things I want to see on the rumored MacBook Air
  5. 5
    New iPhone 15 Pro Max specs leak hints at what's not changing this year
Technology Magazines
  • ●
Technology Magazines
  • The best tech tutorials and in-depth reviews
From$12.99
View

TechRadar is part of Future US Inc, an international media group and leading digital publisher. Visit our corporate site.

  • About Us
  • Contact Future's experts
  • Contact Us
  • Terms and conditions
  • Privacy policy
  • Cookies policy
  • Advertise with us
  • Web notifications
  • Accessibility Statement
  • Careers

© Future US, Inc. Full 7th Floor, 130 West 42nd Street, New York, NY 10036.