Configuring TGW route tables
Since traffic from customer VPC A and customer VPC B must be routed via the security subnet and cannot be forward directly, you must configure the following on the TGW route table for east-west traffic.
To configure TGW route tables:
- Go to VPC Dashboard > Transit Gateways > Transit Gateway Route Tables.
- Delete the automatically generated route table and its associations. You will create two new TGW route tables.
- Create the TGW default route table:
- On the Associations tab, associate the route table with Customer A and Customer B VPCs.
- On the Propagations tab, propagate the route table to the security VPC.
- On the Routes tab, add a default route to send all traffic to the security VPC.
- Create the east-west route table:
- On the Associations tab, associate the route table with the security VPC.
- On the Propagations tab, propagate the route table to Customer A and Customer B VPCs.
- On the Routes tab, define customer A and B VPC routes.