Integrating AWS Client VPN with AWS Network Firewall
Networking & Content Delivery Blog
This article discusses how to integrate AWS Client VPN with AWS Network Firewall to inspect remote access VPN traffic and add network security controls. It covers two deployment patterns:
Specifically, the article covers:
- How AWS Client VPN routing works (tunnel all vs split tunnel modes)
- Single VPC architecture: Deploying Client VPN and Network Firewall in the same VPC
- Centralized model: Using separate VPCs for Client VPN and Network Firewall, connected via Transit Gateway
- Benefits and considerations for each deployment model
- Conclusion highlighting key points to keep in mind when integrating Client VPN with Network Firewall
The AWS News Feed is currently looking for gold sponsors. If you want to support the AWS community and reach a large audience of AWS professionals, consider sponsoring the AWS News Feed.
Related articles
Apr 9
2024
2024
AWS Client VPN and AWS Verified Access migration and interoperability patterns
Aug 26
2025
2025
AWS Client VPN now supports connectivity to IPv6 resources
Apr 24
2026
2026
AWS Client VPN now supports native AWS Transit Gateway integration
Jan 22
2025
2025
AWS Client VPN announces support for concurrent VPN connections
The AWS News Feed is currently looking for silver sponsors. If you want to support the AWS community and reach a large audience of AWS professionals, consider sponsoring the AWS News Feed.